Recent vulnerabilities

Recent vulnerabilities from
Select from 69 available sources using the dropdown above.
ID CVSS Description Vendor Product Published Updated
CVE-1999-0712
N/A
A vulnerability in Caldera Open Administration Sy… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.560Z
CVE-1999-0736
N/A
The showcode.asp sample file in IIS and Site Serv… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.805Z
CVE-1999-0737
N/A
The viewcode.asp sample file in IIS and Site Serv… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.942Z
CVE-1999-0738
N/A
The code.asp sample file in IIS and Site Server a… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.945Z
CVE-1999-0739
N/A
The codebrws.asp sample file in IIS and Site Serv… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.968Z
CVE-1999-0741
N/A
QMS CrownNet Unix Utilities for 2060 allows root … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.812Z
CVE-1999-0748
N/A
Buffer overflows in Red Hat net-tools package. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.981Z
CVE-1999-0750
N/A
Hotmail allows Javascript to be executed via the … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.595Z
CVE-1999-0767
N/A
Buffer overflow in Solaris libc, ufsrestore, and … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.850Z
CVE-1999-0776
N/A
Alibaba HTTP server allows remote attackers to re… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.983Z
CVE-1999-0792
N/A
ROUTERmate has a default SNMP community name whic… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:38.087Z
CVE-1999-0795
N/A
The NIS+ rpc.nisd server allows remote attackers … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.983Z
CVE-1999-0798
N/A
Buffer overflow in bootpd on OpenBSD, FreeBSD, an… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:38.129Z
CVE-1999-0816
N/A
The Motorola CableRouter allows any remote user t… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:38.130Z
CVE-1999-0818
N/A
Buffer overflow in Solaris kcms_configure via a l… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:38.206Z
CVE-1999-0821
N/A
FreeBSD seyon allows local users to gain privileg… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:38.326Z
CVE-1999-0822
N/A
Buffer overflow in Qpopper (qpop) 3.0 allows remo… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:38.127Z
CVE-1999-0825
N/A
The default permissions for UnixWare /var/mail al… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:38.105Z
CVE-1999-0827
N/A
By default, Internet Explorer 5.0 and other versi… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:38.083Z
CVE-1999-0828
N/A
UnixWare pkg commands such as pkginfo, pkgcat, an… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:38.080Z
CVE-1999-0829
N/A
HP Secure Web Console uses weak encryption. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:38.109Z
CVE-1999-0830
N/A
Buffer overflow in SCO UnixWare Xsco command via … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:38.239Z
CVE-1999-0840
N/A
Buffer overflow in CDE dtmail and dtmailpr progra… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:38.121Z
CVE-1999-0841
N/A
Buffer overflow in CDE mailtool allows local user… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:38.125Z
CVE-1999-0843
N/A
Denial of service in Cisco routers running NAT vi… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:38.146Z
CVE-1999-0844
N/A
Denial of service in MDaemon WorldClient and WebC… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:38.124Z
CVE-1999-0845
N/A
Buffer overflow in SCO su program allows local us… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:38.063Z
CVE-1999-0846
N/A
Denial of service in MDaemon 2.7 via a large numb… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:38.021Z
CVE-1999-0850
N/A
The default permissions for Endymion MailMan allo… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:38.086Z
CVE-1999-0852
N/A
IBM WebSphere sets permissions that allow a local… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:38.295Z
ID CVSS Description Vendor Product Published Updated
CVE-1999-0622
N/A
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "A component service related to DNS service is running. N/A N/A 2000-02-04T05:00:00.000Z 2003-03-21T10:00:00.000Z
CVE-1999-0623
N/A
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The X Windows service is running. N/A N/A 2000-02-04T05:00:00.000Z 2003-03-21T10:00:00.000Z
CVE-1999-0624
N/A
The rstat/rstatd service is running. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.709Z
CVE-1999-0625
N/A
The rpc.rquotad service is running. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.710Z
CVE-1999-0629
N/A
The ident/identd service is running. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.674Z
CVE-1999-0630
N/A
The NT Alerter and Messenger services are running. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.690Z
CVE-1999-0631
N/A
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The NFS service is running. N/A N/A 2000-02-04T05:00:00.000Z 2003-03-21T10:00:00.000Z
CVE-1999-0632
N/A
The RPC portmapper service is running. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.686Z
CVE-1999-0633
N/A
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The HTTP/WWW service is running. N/A N/A 2000-02-04T05:00:00.000Z 2003-03-21T10:00:00.000Z
CVE-1999-0634
N/A
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The SSH service is running. N/A N/A 2000-02-04T05:00:00.000Z 2003-03-21T10:00:00.000Z
CVE-1999-0635
N/A
The echo service is running. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.728Z
CVE-1999-0636
N/A
The discard service is running. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.728Z
CVE-1999-0637
N/A
The systat service is running. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.734Z
CVE-1999-0638
N/A
The daytime service is running. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.690Z
CVE-1999-0639
N/A
The chargen service is running. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:36.981Z
CVE-1999-0640
N/A
The Gopher service is running. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.588Z
CVE-1999-0641
N/A
The UUCP service is running. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.607Z
CVE-1999-0642
N/A
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "A POP service is running. N/A N/A 2000-02-04T05:00:00.000Z 2003-03-21T10:00:00.000Z
CVE-1999-0643
N/A
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The IMAP service is running. N/A N/A 2000-02-04T05:00:00.000Z 2003-03-21T10:00:00.000Z
CVE-1999-0644
N/A
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The NNTP news service is running. N/A N/A 2000-02-04T05:00:00.000Z 2003-03-21T10:00:00.000Z
CVE-1999-0645
N/A
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The IRC service is running. N/A N/A 2000-02-04T05:00:00.000Z 2003-03-21T10:00:00.000Z
CVE-1999-0646
N/A
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The LDAP service is running. N/A N/A 2000-02-04T05:00:00.000Z 2003-03-21T10:00:00.000Z
CVE-1999-0647
N/A
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The bootparam (bootparamd) service is running. N/A N/A 2000-02-04T05:00:00.000Z 2003-05-08T09:00:00.000Z
CVE-1999-0648
N/A
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The X25 service is running. N/A N/A 2000-02-04T05:00:00.000Z 2003-03-21T10:00:00.000Z
CVE-1999-0649
N/A
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The FSP service is running. N/A N/A 2000-02-04T05:00:00.000Z 2005-11-02T10:00:00.000Z
CVE-1999-0650
N/A
The netstat service is running, which provides se… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.577Z
CVE-1999-0651
N/A
The rsh/rlogin service is running. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.528Z
CVE-1999-0652
N/A
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "A database service is running, e.g. a SQL server, Oracle, or mySQL. N/A N/A 2000-02-04T05:00:00.000Z 2005-11-02T10:00:00.000Z
CVE-1999-0653
N/A
A component service related to NIS+ is running. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.499Z
CVE-1999-0654
N/A
The OS/2 or POSIX subsystem in NT is enabled. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.952Z
ID Description Published Updated
ID Severity Description Published Updated
ghsa-p8jx-x2vw-wm33
8.8 (3.1)
Code execution in org.apache.storm:storm-core 2018-10-17T19:48:06Z 2024-04-19T19:46:39Z
ghsa-q35p-chc6-7x57
6.5 (3.1)
Moderate severity vulnerability that affects org.apache.storm:storm-core 2018-10-17T19:48:18Z 2021-09-16T19:20:04Z
ghsa-4r64-wf76-c53p
7.5 (3.1)
In blynk-server a Directory Traversal exists 2018-10-17T19:52:52Z 2022-04-27T14:26:22Z
ghsa-c8cc-p3j7-4c7f
5.9 (3.1)
Moderate severity vulnerability that affects org.apache.mesos:mesos 2018-10-17T19:54:14Z 2021-09-08T21:43:33Z
ghsa-rhq2-2574-78mc
7.5 (3.1)
Unzip function in ZipUtil.java in Hutool allows remote attackers to overwrite arbitrary files via d… 2018-10-17T19:54:53Z 2022-04-27T14:42:53Z
ghsa-7px3-6f6g-hxcj
5.5 (3.1)
XML external entity expansion in org.apache.solr:solr-core 2018-10-17T19:55:34Z 2024-03-04T23:38:56Z
ghsa-3pph-2595-cgfh
7.5 (3.1)
There is a XML external entity expansion (XXE) vulnerability in Apache Solr 2018-10-17T19:55:46Z 2024-03-04T20:32:45Z
ghsa-rc9v-h28f-jcmf
5.5 (3.1)
There is a XML external entity expansion (XXE) vulnerability in Apache Solr config files 2018-10-17T19:56:04Z 2024-03-04T22:58:14Z
ghsa-mh7g-99w9-xpjm
9.8 (3.1)
Remote code execution occurs in Apache Solr 2018-10-17T19:56:17Z 2024-04-12T21:09:29Z
ghsa-v596-fwhq-8x48
5.3 (3.1)
Improper Input Validation in org.springframework.security:spring-security-core, org.springframework… 2018-10-17T20:01:54Z 2024-03-15T15:51:03Z
ghsa-rcpf-vj53-7h2m
6.5 (3.1)
Denial of Service in org.springframework:spring-core 2018-10-17T20:02:20Z 2024-03-06T20:59:14Z
ghsa-cxrj-66c5-9fmh
8.8 (3.1)
Spring Framework when used in combination with any versions of Spring Security contains an authoriz… 2018-10-17T20:05:49Z 2024-03-14T21:08:21Z
ghsa-p5hg-3xm3-gcjg
9.8 (3.1)
Spring Framework allows applications to expose STOMP over WebSocket endpoints 2018-10-17T20:05:59Z 2025-01-31T18:51:12Z
ghsa-g8hw-794c-4j9g
5.9 (3.1)
Path Traversal in org.springframework:spring-core 2018-10-17T20:07:03Z 2024-03-07T21:32:20Z
ghsa-4487-x383-qpph
7.5 (3.1)
Possible privilege escalation in org.springframework:spring-core 2018-10-17T20:27:47Z 2024-03-08T20:42:23Z
ghsa-3rmv-2pg5-xvqj
9.8 (3.1)
Spring Framework has Improperly Implemented Security Check for Standard 2018-10-17T20:28:00Z 2025-01-31T19:35:35Z
ghsa-45vg-2v73-vm62
Moderate severity vulnerability that affects org.springframework:spring-core 2018-10-17T20:28:20Z 2024-03-05T18:20:18Z
ghsa-6v7w-535j-rq5m
5.5 (3.1)
Pivotal Spring Framework DoS Attack with XML Input 2018-10-17T20:29:12Z 2024-03-05T18:17:31Z
ghsa-pgf9-h69p-pcgf
8.6 (3.1)
Files or Directories Accessible to External Parties in org.springframework:spring-core 2018-10-17T20:29:33Z 2024-03-05T18:07:02Z
ghsa-8crv-49fr-2h6j
7.5 (3.1)
Spring Security and Spring Framework may not recognize certain paths that should be protected 2018-10-17T20:30:12Z 2024-03-05T17:55:31Z
ghsa-387v-84cv-9qmc
7.5 (3.1)
Improper Limitation of a Pathname ('Path Traversal') in org.apache.solr:solr-core 2018-10-18T16:40:43Z 2022-09-17T00:06:46Z
ghsa-w6gv-3r3v-gwgj
5.9 (3.1)
keycloak-core vulnerable to timing attacks against JWS token verification 2018-10-18T16:47:41Z 2023-09-07T20:31:12Z
ghsa-778x-2mqv-w6xw
Moderate severity vulnerability that affects org.keycloak:keycloak-core 2018-10-18T16:48:01Z 2020-06-16T21:21:49Z
ghsa-qgm9-232x-hwpx
Moderate severity vulnerability that affects org.keycloak:keycloak-core 2018-10-18T16:48:15Z 2021-01-29T17:10:10Z
ghsa-95m6-mjh3-58gm
8.1 (3.1)
Improper Authentication in org.keycloak:keycloak-core 2018-10-18T16:48:41Z 2022-09-17T00:55:51Z
ghsa-jc6q-27mw-p55w
7.5 (3.1)
Keycloak vulnerable to infinite loop based Denial of Service 2018-10-18T16:49:29Z 2022-09-13T23:31:40Z
ghsa-c77r-6f64-478q
6.5 (3.1)
keycloak-core discloses system properties 2018-10-18T16:49:40Z 2023-09-07T20:32:14Z
ghsa-h7j7-pw3v-3v3x
4.9 (3.1)
Moderate severity vulnerability that affects org.keycloak:keycloak-core 2018-10-18T16:49:54Z 2021-09-14T15:43:06Z
ghsa-959q-32g8-vvp7
Moderate severity vulnerability that affects org.keycloak:keycloak-core 2018-10-18T16:50:05Z 2020-06-16T21:27:40Z
ghsa-r32r-3977-cgc3
7.5 (3.1)
Keycloak vulnerable to uncontrolled resource consumption 2018-10-18T16:50:20Z 2022-09-13T23:34:44Z
ID Severity Description Package Published Updated
pysec-2019-246
6.5 (3.1)
In Exiv2 0.27.99.0, there is an out-of-bounds read in Exiv2::MrwImage::readMetadata() in … exiv2 2019-07-28T19:15:00Z 2024-11-21T14:22:49.597801Z
pysec-2019-26
invenio-previewer before 1.0.0a12 allows XSS. invenio-previewer 2019-07-29T14:15:00Z 2019-07-31T19:44:00Z
pysec-2019-24
invenio-app before 1.1.1 allows host header injection. invenio-app 2019-07-29T15:15:00Z 2019-08-01T16:12:00Z
pysec-2019-25
invenio-communities before 1.0.0a20 allows XSS. invenio-communities 2019-07-29T15:15:00Z 2019-08-01T16:59:00Z
pysec-2019-27
invenio-records before 1.2.2 allows XSS. invenio-records 2019-07-29T15:15:00Z 2019-08-01T16:29:00Z
pysec-2019-152
A vulnerability was found in openstack-ironic-inspector all versions excluding 5.0.2, 6.0… ironic-inspector 2019-07-30T17:15:00Z 2021-07-05T00:01:21.998814Z
pysec-2019-192
A flaw was discovered in the python-novajoin plugin, all versions up to, excluding 1.1.1,… novajoin 2019-07-30T17:15:00Z 2021-08-27T03:22:09.442632Z
pysec-2019-2
A flaw was discovered in the way Ansible templating was implemented in versions before 2.… ansible 2019-07-30T23:15:00Z 2021-01-28T16:39:00Z
pysec-2019-11
An issue was discovered in Django 1.11.x before 1.11.23, 2.1.x before 2.1.11, and 2.2.x b… django 2019-08-02T15:15:00Z 2020-08-24T17:37:00Z
pysec-2019-12
An issue was discovered in Django 1.11.x before 1.11.23, 2.1.x before 2.1.11, and 2.2.x b… django 2019-08-02T15:15:00Z 2020-08-24T17:37:00Z
pysec-2019-14
An issue was discovered in Django 1.11.x before 1.11.23, 2.1.x before 2.1.11, and 2.2.x b… django 2019-08-02T15:15:00Z 2020-08-24T17:37:00Z
pysec-2019-114
Prior to Spark 2.3.3, in certain situations Spark would write user data to local disk une… pyspark 2019-08-07T17:15:00Z 2020-06-23T00:15:00Z
pysec-2019-13
An issue was discovered in Django 1.11.x before 1.11.23, 2.1.x before 2.1.11, and 2.2.x b… django 2019-08-09T13:15:00Z 2019-08-28T13:15:00Z
pysec-2019-140
Pallets Werkzeug before 0.15.3, when used with Docker, has insufficient debugger PIN rand… werkzeug 2019-08-09T15:15:00Z 2019-09-11T00:15:00Z
pysec-2019-219
Recommender before 2018-07-18 allows XSS. recommender-xblock 2019-08-09T16:15:00Z 2019-08-15T16:48:00Z
pysec-2019-191
An issue was discovered in OpenStack Nova before 17.0.12, 18.x before 18.2.2, and 19.x be… nova 2019-08-09T19:15:00Z 2021-08-27T03:22:09.327110Z
pysec-2019-104
** DISPUTED ** core.py in Mitogen before 0.2.8 has a typo that drops the unidirectional-r… mitogen 2019-08-18T20:15:00Z 2019-08-30T11:38:00Z
pysec-2019-106
NLTK Downloader before 3.4.5 is vulnerable to a directory traversal, allowing attackers t… nltk 2019-08-22T16:15:00Z 2020-03-27T10:15:00Z
pysec-2019-178
When the Elastic APM agent for Python versions before 5.1.0 is run as a CGI script, there… elastic-apm 2019-08-22T17:15:00Z 2021-08-27T03:22:03.550445Z
pysec-2019-19
django-js-reverse (aka Django JS Reverse) before 0.9.1 has XSS via js_reverse_inline. django-js-reverse 2019-08-23T13:15:00Z 2019-08-26T17:39:00Z
pysec-2019-23
All versions of the HTTPie package prior to version 1.0.3 are vulnerable to Open Redirect… httpie 2019-08-23T17:15:00Z 2019-09-02T18:15:00Z
pysec-2019-144
An issue was discovered in the arrayfire crate before 3.6.0 for Rust. Addition of the rep… arrayfire 2019-08-26T18:15:00Z 2021-06-10T06:51:33.535067Z
pysec-2019-174
Multiple CSRF issues exist in MicroPyramid Django CRM 0.2.1 via /change-password-by-admin… django-crm 2019-08-27T15:15:00Z 2021-08-27T03:21:57.382280Z
pysec-2019-126
** DISPUTED ** In Supervisor through 4.0.2, an unauthenticated user can read log files or… supervisor 2019-09-10T17:15:00Z 2019-09-17T22:15:00Z
pysec-2019-236
An issue was discovered in py-lmdb 0.97. For certain values of md_flags, mdb_node_add doe… lmdb 2019-09-11T15:15:00Z 2021-12-14T08:17:08.199974Z
pysec-2019-237
An issue was discovered in py-lmdb 0.97. For certain values of mp_flags, mdb_page_touch d… lmdb 2019-09-11T15:15:00Z 2021-12-14T08:17:08.271573Z
pysec-2019-238
An issue was discovered in py-lmdb 0.97. mdb_node_del does not validate a memmove in the … lmdb 2019-09-11T15:15:00Z 2021-12-14T08:17:08.339672Z
pysec-2019-239
An issue was discovered in py-lmdb 0.97. For certain values of mn_flags, mdb_cursor_set t… lmdb 2019-09-11T15:15:00Z 2021-12-14T08:17:08.407956Z
pysec-2019-240
An issue was discovered in py-lmdb 0.97. There is a divide-by-zero error in the function … lmdb 2019-09-11T15:15:00Z 2021-12-14T08:17:08.476513Z
pysec-2019-221
Home Assistant before 0.67.0 was vulnerable to an information disclosure that allowed an … homeassistant 2019-09-23T16:15:00Z 2021-11-24T22:47:02.221265Z
ID Description Updated
ID Description Published Updated
mal-2022-2280 Malicious code in custdev-sapui5-infra-util (npm) 2022-06-20T18:20:46Z 2022-06-20T18:20:47Z
mal-2022-3485 Malicious code in grunt-with-node-sass (npm) 2022-06-20T18:20:46Z 2022-06-20T18:20:47Z
mal-2022-4559 Malicious code in merakigo (npm) 2022-06-20T18:20:46Z 2022-06-20T18:20:47Z
mal-2022-4936 Malicious code in npm-maven-adapter (npm) 2022-06-20T18:20:47Z 2022-06-20T18:20:47Z
mal-2022-5600 Malicious code in rbflugplan (npm) 2022-06-20T18:20:47Z 2022-06-20T18:20:48Z
mal-2022-5719 Malicious code in red-bull-global-onboarding (npm) 2022-06-20T18:20:47Z 2022-06-20T18:20:48Z
mal-2022-6154 Malicious code in skypecast-attendee (npm) 2022-06-20T18:20:47Z 2022-06-20T18:20:48Z
mal-2022-1846 Malicious code in cbs-toolkit (npm) 2022-06-20T18:20:48Z 2022-06-20T18:20:49Z
mal-2022-189 Malicious code in @cutoffurmind/ui-kit (npm) 2022-06-20T18:20:48Z 2022-06-20T18:20:49Z
mal-2022-2163 Malicious code in console-shim (npm) 2022-06-20T18:20:48Z 2022-06-20T18:20:48Z
mal-2022-6233 Malicious code in speed-tracer (npm) 2022-06-20T18:20:48Z 2022-06-20T18:20:48Z
mal-2022-1951 Malicious code in cmpld (npm) 2022-06-20T18:20:49Z 2022-06-20T18:20:49Z
mal-2022-2269 Malicious code in ct-notify (npm) 2022-06-20T18:20:49Z 2022-06-20T18:20:49Z
mal-2022-4270 Malicious code in lead_front_components (npm) 2022-06-20T18:20:49Z 2022-06-20T18:20:57Z
mal-2022-4709 Malicious code in mrg-icons (npm) 2022-06-20T18:20:49Z 2022-06-20T18:20:50Z
mal-2022-3699 Malicious code in http-proxy-middelware (npm) 2022-06-20T18:20:50Z 2022-06-20T18:20:51Z
mal-2022-7226 Malicious code in worki-js-library (npm) 2022-06-20T18:20:50Z 2022-06-20T18:20:50Z
mal-2022-7359 Malicious code in youla-js (npm) 2022-06-20T18:20:50Z 2022-06-20T18:20:51Z
mal-2022-249 Malicious code in @epc-tools/typescript (npm) 2022-06-20T20:08:23Z 2022-06-20T20:08:24Z
mal-2022-235 Malicious code in @epc-apps/edge-lambdas (npm) 2022-06-20T20:08:25Z 2022-06-20T20:08:25Z
mal-2022-2673 Malicious code in edx_cli (npm) 2022-06-20T20:08:32Z 2022-06-20T20:08:32Z
mal-2022-6612 Malicious code in topicmodeling (npm) 2022-06-20T20:08:32Z 2022-06-20T20:08:33Z
mal-2022-1663 Malicious code in bpk-component-graphic-promo (npm) 2022-06-20T20:08:33Z 2022-06-20T20:08:33Z
mal-2022-1855 Malicious code in cdk-cli-wrapper (npm) 2022-06-20T20:08:33Z 2022-06-20T20:08:34Z
mal-2022-3563 Malicious code in harp-atlas-tools (npm) 2022-06-20T20:08:33Z 2022-06-20T20:08:33Z
mal-2022-3564 Malicious code in harp-theme-tools (npm) 2022-06-20T20:08:33Z 2022-06-20T20:08:34Z
mal-2022-1704 Malicious code in bsc-library (npm) 2022-06-20T20:08:34Z 2022-06-20T20:08:35Z
mal-2022-5201 Malicious code in pancake-cake-vault (npm) 2022-06-20T20:08:34Z 2022-06-20T20:08:35Z
mal-2022-5474 Malicious code in profile-nft-gamification (npm) 2022-06-20T20:08:34Z 2022-06-20T20:08:35Z
mal-2022-6332 Malicious code in stripe-identity-react-native (npm) 2022-06-20T20:08:34Z 2022-06-20T20:08:34Z
ID Description Published Updated
ID Description Published Updated
wid-sec-w-2024-1479 Red Hat Enterprise Linux/WebKitGTK: Mehrere Schwachstellen ermöglichen Ausführen von beliebigem Programmcode mit Benutzerrechten 2020-09-29T22:00:00.000+00:00 2024-06-30T22:00:00.000+00:00
wid-sec-w-2026-0012 Red Hat Enterprise Linux: Mehrere Schwachstellen 2020-09-29T22:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2022-1724 libvirt: Schwachstelle ermöglicht Denial of Service 2020-10-01T22:00:00.000+00:00 2024-09-02T22:00:00.000+00:00
wid-sec-w-2022-0340 Linux Kernel: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2020-10-04T22:00:00.000+00:00 2022-12-26T23:00:00.000+00:00
wid-sec-w-2023-2404 OpenSC: Mehrere Schwachstellen ermöglichen Denial of Service 2020-10-05T22:00:00.000+00:00 2023-09-20T22:00:00.000+00:00
wid-sec-w-2023-0694 tigervnc: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2020-10-06T22:00:00.000+00:00 2024-07-04T22:00:00.000+00:00
wid-sec-w-2022-0044 Apache HttpComponents: Schwachstelle ermöglicht Täuschung des Nutzers 2020-10-07T22:00:00.000+00:00 2025-07-07T22:00:00.000+00:00
wid-sec-w-2023-2467 Apache Tomcat: Schwachstelle ermöglicht Offenlegung von Informationen 2020-10-11T22:00:00.000+00:00 2026-03-26T23:00:00.000+00:00
wid-sec-w-2024-1478 PowerDNS: Schwachstelle ermöglicht Denial of Service 2020-10-12T22:00:00.000+00:00 2024-06-30T22:00:00.000+00:00
wid-sec-w-2022-1762 Linux Kernel: Mehrere Schwachstellen 2020-10-13T22:00:00.000+00:00 2024-06-24T22:00:00.000+00:00
wid-sec-w-2025-0019 Red Hat JBoss Enterprise Application Platform: Mehrere Schwachstellen 2020-10-13T22:00:00.000+00:00 2025-01-07T23:00:00.000+00:00
wid-sec-w-2024-3745 Linux Kernel - BlueZ: Mehrere Schwachstellen 2020-10-14T22:00:00.000+00:00 2025-01-27T23:00:00.000+00:00
wid-sec-w-2025-1396 Red Hat JBoss Enterprise Application Platform: Schwachstelle ermöglicht Denial of Service 2020-10-14T22:00:00.000+00:00 2025-06-24T22:00:00.000+00:00
wid-sec-w-2022-2090 Linux Kernel: Schwachstelle ermöglicht Offenlegung von Informationen 2020-10-15T22:00:00.000+00:00 2024-06-09T22:00:00.000+00:00
wid-sec-w-2024-0091 FreeType: Schwachstelle ermöglicht Codeausführung 2020-10-19T22:00:00.000+00:00 2024-01-15T23:00:00.000+00:00
wid-sec-w-2022-2242 Oracle Java SE: Mehrere Schwachstellen 2020-10-20T22:00:00.000+00:00 2025-04-29T22:00:00.000+00:00
wid-sec-w-2023-1048 Oracle Construction and Engineering: Mehrere Schwachstellen 2020-10-20T22:00:00.000+00:00 2024-02-04T23:00:00.000+00:00
wid-sec-w-2023-0340 Verschiedene Cisco Produkte: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2020-10-21T22:00:00.000+00:00 2023-02-12T23:00:00.000+00:00
wid-sec-w-2023-0624 ImageMagick: Schwachstelle ermöglicht Denial of Service 2020-10-22T22:00:00.000+00:00 2024-10-14T22:00:00.000+00:00
wid-sec-w-2024-0090 Red Hat Software Collections: Schwachstelle ermöglicht XXE 2020-10-22T22:00:00.000+00:00 2024-01-15T23:00:00.000+00:00
wid-sec-w-2023-1547 Eclipse Jetty: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2020-10-25T23:00:00.000+00:00 2024-06-03T22:00:00.000+00:00
wid-sec-w-2023-0174 Samba: Mehrere Schwachstellen 2020-10-28T23:00:00.000+00:00 2024-04-22T22:00:00.000+00:00
wid-sec-w-2022-1270 QEMU: Schwachstellen ermöglichen Denial of Service 2020-11-02T23:00:00.000+00:00 2024-09-02T22:00:00.000+00:00
wid-sec-w-2022-0193 Red Hat Enterprise Linux: Mehrere Schwachstellen 2020-11-03T23:00:00.000+00:00 2023-09-27T22:00:00.000+00:00
wid-sec-w-2024-1801 SaltStack Salt: Mehrere Schwachstellen 2020-11-03T23:00:00.000+00:00 2025-01-06T23:00:00.000+00:00
wid-sec-w-2024-3161 OpenLDAP: Schwachstelle ermöglicht Denial of Service 2020-11-03T23:00:00.000+00:00 2024-10-14T22:00:00.000+00:00
wid-sec-w-2023-0557 python-cryptography: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2020-11-04T23:00:00.000+00:00 2025-07-10T22:00:00.000+00:00
wid-sec-w-2022-1481 MIT Kerberos: Schwachstelle ermöglicht Denial of Service 2020-11-05T23:00:00.000+00:00 2023-01-11T23:00:00.000+00:00
wid-sec-w-2022-0999 Intel Prozessoren: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen 2020-11-10T23:00:00.000+00:00 2025-10-12T22:00:00.000+00:00
wid-sec-w-2023-1966 X.Org X11: Schwachstelle ermöglicht Privilegieneskalation 2020-11-10T23:00:00.000+00:00 2023-08-03T22:00:00.000+00:00
ID Description Published Updated
icsa-18-046-01 Nortek Linear eMerge E3 Series 2018-02-15T00:00:00.000000Z 2018-02-15T00:00:00.000000Z
icsa-18-046-02 GE D60 Line Distance Relay 2018-02-15T00:00:00.000000Z 2018-02-15T00:00:00.000000Z
icsa-18-046-03 Schneider Electric IGSS Mobile 2018-02-15T00:00:00.000000Z 2018-02-15T00:00:00.000000Z
icsa-18-046-04 Schneider Electric StruxureOn Gateway 2018-02-15T00:00:00.000000Z 2018-02-15T00:00:00.000000Z
icsa-18-051-01 ABB netCADOPS Web Application 2018-02-20T00:00:00.000000Z 2018-02-20T00:00:00.000000Z
icsa-18-058-01a Siemens SIMATIC Industrial PCs (Update A) 2018-02-22T00:00:00.000000Z 2020-02-10T00:00:00.000000Z
icsa-18-058-02 Delta Electronics WPLSoft 2018-02-27T00:00:00.000000Z 2018-02-27T00:00:00.000000Z
icsa-18-058-03 Emerson ControlWave Micro Process Automation Controller 2018-02-27T00:00:00.000000Z 2018-02-27T00:00:00.000000Z
icsma-18-058-01 Medtronic 2090 Carelink Programmer Vulnerabilities (Update C) 2018-02-27T00:00:00.000000Z 2020-01-30T00:00:00.000000Z
icsma-18-058-02 Philips Intellispace Portal ISP Vulnerabilities 2018-02-27T00:00:00.000000Z 2018-02-27T00:00:00.000000Z
icsa-18-060-01 ICSA-18-060-01_Siemens SIMATIC, SIMOTION, and SINUMERIK (Update A) 2018-03-01T00:00:00.000000Z 2018-04-19T00:00:00.000000Z
icsa-18-060-02 Moxa OnCell G3100-HSPA Series 2018-03-01T00:00:00.000000Z 2018-03-01T00:00:00.000000Z
icsa-18-060-03 Delta Electronics Delta Industrial Automation DOPSoft 2018-03-01T00:00:00.000000Z 2018-03-01T00:00:00.000000Z
icsa-18-065-01 Hirschmann Automation and Control GmbH Classic Platform Switches 2018-03-06T00:00:00.000000Z 2018-03-06T00:00:00.000000Z
icsa-18-065-02 Schneider Electric SoMove Software and DTM Software Components 2018-03-06T00:00:00.000000Z 2018-03-06T00:00:00.000000Z
icsa-18-065-03 Eaton ELCSoft 2018-03-06T00:00:00.000000Z 2018-03-06T00:00:00.000000Z
icsa-18-067-01 Siemens SIPROTEC 4, SIPROTEC Compact, DIGSI 4, and EN100 Ethernet Module (Update D) 2018-03-08T00:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-18-067-02 ICSA-18-067-02_Siemens SIPROTEC 4, SIPROTEC Compact, and Reyrolle Devices using the EN100 Ethernet Communication Module Extension (Update B) 2018-03-08T00:00:00.000000Z 2019-02-12T00:00:00.000000Z
icsa-18-072-01 Omron CX-Supervisor (Update A) 2018-03-13T00:00:00.000000Z 2018-12-20T00:00:00.000000Z
icsa-18-072-02 OSIsoft PI Data Archive 2018-03-13T00:00:00.000000Z 2018-03-13T00:00:00.000000Z
icsa-18-072-03 OSIsoft PI Vision 2018-03-13T00:00:00.000000Z 2018-03-13T00:00:00.000000Z
icsa-18-072-04 OSIsoft PI Web API 2018-03-13T00:00:00.000000Z 2018-03-13T00:00:00.000000Z
icsa-18-079-01 Geutebruck IP Cameras 2018-03-20T00:00:00.000000Z 2018-03-20T00:00:00.000000Z
icsa-18-079-02 Siemens SIMATIC, SINUMERIK, and PROFINET IO (Update D) 2018-03-20T00:00:00.000000Z 2023-05-09T00:00:00.000000Z
icsa-18-081-01 ICSA-18-081-01 Siemens SIMATIC WinCC OA UI Mobile App 2018-03-20T00:00:00.000000Z 2018-03-20T00:00:00.000000Z
icsa-18-081-02 Beckhoff TwinCAT 2018-03-22T00:00:00.000000Z 2018-03-22T00:00:00.000000Z
icsa-18-086-01 Schneider Electric Modicon Premium, Modicon Quantum, Modicon M340, and Modicon BMXNOR0200 2018-03-27T00:00:00.000000Z 2018-03-27T00:00:00.000000Z
icsa-18-088-02 Siemens TIM 1531 IRC 2018-03-27T00:00:00.000000Z 2020-02-10T00:00:00.000000Z
icsa-18-088-03 Siemens SIMATIC PCS 7, SIMATIC WinCC, SIMATIC WinCC Runtime Professional, and SIMATIC NET PC Software (Update G) 2018-03-27T00:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsma-18-086-01 Philips Alice 6 Vulnerabilities (Update B) 2018-03-27T00:00:00.000000Z 2018-12-13T00:00:00.000000Z
ID Description Published Updated
cisco-sa-20190717-cfnm-statcred Cisco FindIT Network Management Software Static Credentials Vulnerability 2019-07-17T16:00:00+00:00 2019-07-17T16:00:00+00:00
cisco-sa-20190717-cvdsd-wmauth Cisco Vision Dynamic Signage Director REST API Authentication Bypass Vulnerability 2019-07-17T16:00:00+00:00 2019-07-17T16:00:00+00:00
cisco-sa-20190717-ise-sql-inject Cisco Identity Services Engine Blind SQL Injection Vulnerability 2019-07-17T16:00:00+00:00 2019-07-17T16:00:00+00:00
cisco-sa-20190717-ise-xss Cisco Identity Services Engine Cross-Site Scripting Vulnerability 2019-07-17T16:00:00+00:00 2019-08-06T17:39:12+00:00
cisco-sa-20190717-sbss-redirect Cisco Small Business Series Switches Open Redirect Vulnerability 2019-07-17T16:00:00+00:00 2019-07-17T16:00:00+00:00
cisco-sa-20190717-spa500-command Cisco Small Business SPA500 Series IP Phones Local Command Execution Vulnerability 2019-07-17T16:00:00+00:00 2019-07-17T16:00:00+00:00
cisco-sa-20190717-wsma-info Cisco Industrial Network Director Web Services Management Agent Unauthorized Information Disclosure Vulnerability 2019-07-17T16:00:00+00:00 2019-07-17T16:00:00+00:00
cisco-sa-20190731-nxos-bo Cisco Nexus 9000 Series ACI Mode Switch Software Link Layer Discovery Protocol Buffer Overflow Vulnerability 2019-07-31T16:00:00+00:00 2019-09-26T17:35:34+00:00
cisco-sa-20190806-sb220-auth_bypass Cisco Small Business 220 Series Smart Switches Authentication Bypass Vulnerability 2019-08-06T14:00:00+00:00 2019-08-21T14:24:09+00:00
cisco-sa-20190806-sb220-inject Cisco Small Business 220 Series Smart Switches Command Injection Vulnerability 2019-08-06T14:00:00+00:00 2019-08-21T14:20:46+00:00
cisco-sa-20190806-sb220-rce Cisco Small Business 220 Series Smart Switches Remote Code Execution Vulnerabilities 2019-08-06T14:00:00+00:00 2019-08-21T14:27:53+00:00
cisco-sa-20190807-asa-multi Cisco Adaptive Security Appliance Smart Tunnel Vulnerabilities 2019-08-07T16:00:00+00:00 2019-08-29T13:00:21+00:00
cisco-sa-20190807-asa-privescala Cisco Adaptive Security Appliance Software Web-Based Management Interface Privilege Escalation Vulnerability 2019-08-07T16:00:00+00:00 2019-08-07T16:00:00+00:00
cisco-sa-20190807-esm-inject Cisco Email Security Appliance Header Injection Vulnerability 2019-08-07T16:00:00+00:00 2019-09-26T20:01:12+00:00
cisco-sa-20190807-fmc-xss Cisco Firepower Management Center Persistent Cross-Site Scripting Vulnerability 2019-08-07T16:00:00+00:00 2019-08-21T14:36:50+00:00
cisco-sa-20190807-fnd-dos Cisco IoT Field Network Director TLS Renegotiation Denial of Service Vulnerability 2019-08-07T16:00:00+00:00 2019-08-07T16:00:00+00:00
cisco-sa-20190807-ftd-bypass Cisco Firepower Threat Defense Software File Policy Bypass Vulnerability 2019-08-07T16:00:00+00:00 2019-08-20T13:28:20+00:00
cisco-sa-20190807-hypflex-csrf Cisco HyperFlex Software Cross-Site Request Forgery Vulnerability 2019-08-07T16:00:00+00:00 2019-08-07T16:00:00+00:00
cisco-sa-20190807-iosxr-isis-dos-1910 Cisco IOS XR Software Intermediate System-to-Intermediate System Denial of Service Vulnerability 2019-08-07T16:00:00+00:00 2019-08-20T15:38:21+00:00
cisco-sa-20190807-iosxr-isis-dos-1918 Cisco IOS XR Software Intermediate System-to-Intermediate System Denial of Service Vulnerability 2019-08-07T16:00:00+00:00 2019-08-20T15:38:21+00:00
cisco-sa-20190807-nfv-cli-path Cisco Enterprise NFV Infrastructure Software Path Traversal Vulnerability 2019-08-07T16:00:00+00:00 2019-08-07T16:00:00+00:00
cisco-sa-20190807-nfv-commandinj Cisco Enterprise NFV Infrastructure Software Command Injection Vulnerability 2019-08-07T16:00:00+00:00 2019-08-07T16:00:00+00:00
cisco-sa-20190807-nfv-fileread Cisco Enterprise NFV Infrastructure Software Web Portal Arbitrary File Read Vulnerability 2019-08-07T16:00:00+00:00 2019-08-07T16:00:00+00:00
cisco-sa-20190807-nfv-privescal Cisco Enterprise NFV Infrastructure Software Privilege Escalation Vulnerability 2019-08-07T16:00:00+00:00 2019-08-07T16:00:00+00:00
cisco-sa-20190807-nfv-pwrecov Cisco Enterprise NFV Infrastructure Software Password Recovery Vulnerability 2019-08-07T16:00:00+00:00 2019-08-07T16:00:00+00:00
cisco-sa-20190807-nfv-read Cisco Enterprise NFV Infrastructure Software Arbitrary File Read Vulnerabilities 2019-08-07T16:00:00+00:00 2019-08-07T16:00:00+00:00
cisco-sa-20190807-nfv-xss Cisco Enterprise NFV Infrastructure Software Cross-site Scripting Vulnerability 2019-08-07T16:00:00+00:00 2019-08-07T16:00:00+00:00
cisco-sa-20190807-nfvis-authbypass Cisco Enterprise NFV Infrastructure Software Web-Based Management Interface Authentication Bypass Vulnerability 2019-08-07T16:00:00+00:00 2019-08-07T16:00:00+00:00
cisco-sa-20190807-nfvis-vnc-authbypass Cisco Enterprise NFV Infrastructure Software VNC Authentication Bypass Vulnerability 2019-08-07T16:00:00+00:00 2019-08-07T16:00:00+00:00
cisco-sa-20190807-sd-wan-bypass Cisco SD-WAN Solution Packet Filtering Bypass Vulnerability 2019-08-07T16:00:00+00:00 2020-02-21T22:48:42+00:00
ID Description Published Updated
msrc_cve-2020-26541 The Linux kernel through 5.8.13 does not properly enforce the Secure Boot Forbidden Signature Database (aka dbx) protection mechanism. This affects certs/blacklist.c and certs/system_keyring.c. 2020-10-02T00:00:00.000Z 2020-10-05T00:00:00.000Z
msrc_cve-2020-26570 The Oberthur smart card software driver in OpenSC before 0.21.0-rc1 has a heap-based buffer overflow in sc_oberthur_read_file. 2020-10-02T00:00:00.000Z 2021-12-16T00:00:00.000Z
msrc_cve-2020-26571 The gemsafe GPK smart card software driver in OpenSC before 0.21.0-rc1 has a stack-based buffer overflow in sc_pkcs15emu_gemsafeGPK_init. 2020-10-02T00:00:00.000Z 2021-12-16T00:00:00.000Z
msrc_cve-2020-26572 The TCOS smart card software driver in OpenSC before 0.21.0-rc1 has a stack-based buffer overflow in tcos_decipher. 2020-10-02T00:00:00.000Z 2021-12-16T00:00:00.000Z
msrc_cve-2020-27194 An issue was discovered in the Linux kernel before 5.8.15. scalar32_min_max_or in kernel/bpf/verifier.c mishandles bounds tracking during use of 64-bit values aka CID-5b9fbeb75b6a. 2020-10-02T00:00:00.000Z 2020-11-02T00:00:00.000Z
msrc_cve-2020-27619 In Python 3 through 3.9.0 the Lib/test/multibytecodec_support.py CJK codec tests call eval() on content retrieved via HTTP. 2020-10-02T00:00:00.000Z 2020-11-10T00:00:00.000Z
msrc_cve-2020-27675 An issue was discovered in the Linux kernel through 5.9.1 as used with Xen through 4.14.x. drivers/xen/events/events_base.c allows event-channel removal during the event-handling loop (a race condition). This can cause a use-after-free or NULL pointer dereference as demonstrated by a dom0 crash via events for an in-reconfiguration paravirtualized device aka CID-073d0552ead5. 2020-10-02T00:00:00.000Z 2020-11-04T00:00:00.000Z
msrc_cve-2020-7020 Elasticsearch versions before 6.8.13 and 7.9.2 contain a document disclosure flaw when Document or Field Level Security is used. Search queries do not properly preserve security permissions when executing certain complex queries. This could result in the search disclosing the existence of documents the attacker should not be able to view. This could result in an attacker gaining additional insight into potentially sensitive indices. 2020-10-02T00:00:00.000Z 2021-12-01T00:00:00.000Z
msrc_cve-2020-0569 Out of bounds write in Intel(R) PROSet/Wireless WiFi products on Windows 10 may allow an authenticated user to potentially enable denial of service via local access. 2020-11-02T00:00:00.000Z 2026-02-18T14:24:26.000Z
msrc_cve-2020-15436 Use-after-free vulnerability in fs/block_dev.c in the Linux kernel before 5.8 allows local users to gain privileges or cause a denial of service by leveraging improper access to a certain error field. 2020-11-02T00:00:00.000Z 2020-12-03T00:00:00.000Z
msrc_cve-2020-15437 The Linux kernel before version 5.8 is vulnerable to a NULL pointer dereference in drivers/tty/serial/8250/8250_core.c:serial8250_isa_init_ports() that allows local users to cause a denial of service by using the p->serial_in pointer which uninitialized. 2020-11-02T00:00:00.000Z 2020-12-03T00:00:00.000Z
msrc_cve-2020-15999 Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. 2020-11-02T00:00:00.000Z 2025-02-08T00:00:00.000Z
msrc_cve-2020-25013 JetBrains ToolBox before version 1.18 is vulnerable to a Denial of Service attack via a browser protocol handler. 2020-11-02T00:00:00.000Z 2025-10-01T23:11:04.000Z
msrc_cve-2020-25207 JetBrains ToolBox before version 1.18 is vulnerable to Remote Code Execution via a browser protocol handler. 2020-11-02T00:00:00.000Z 2025-10-01T23:11:05.000Z
msrc_cve-2020-25650 A flaw was found in the way the spice-vdagentd daemon handled file transfers from the host system to the virtual machine. Any unprivileged local guest user with access to the UNIX domain socket path `/run/spice-vdagentd/spice-vdagent-sock` could use this flaw to perform a memory denial of service for spice-vdagentd or even other processes in the VM system. The highest threat from this vulnerability is to system availability. This flaw affects spice-vdagent versions 0.20 and previous versions. 2020-11-02T00:00:00.000Z 2022-01-19T00:00:00.000Z
msrc_cve-2020-25651 A flaw was found in the SPICE file transfer protocol. File data from the host system can end up in full or in parts in the client connection of an illegitimate local user in the VM system. Active file transfers from other users could also be interrupted resulting in a denial of service. The highest threat from this vulnerability is to data confidentiality as well as system availability. This flaw affects spice-vdagent versions 0.20 and prior. 2020-11-02T00:00:00.000Z 2022-01-19T00:00:00.000Z
msrc_cve-2020-25652 A flaw was found in the spice-vdagentd daemon where it did not properly handle client connections that can be established via the UNIX domain socket in `/run/spice-vdagentd/spice-vdagent-sock`. Any unprivileged local guest user could use this flaw to prevent legitimate agents from connecting to the spice-vdagentd daemon resulting in a denial of service. The highest threat from this vulnerability is to system availability. This flaw affects spice-vdagent versions 0.20 and prior. 2020-11-02T00:00:00.000Z 2022-01-19T00:00:00.000Z
msrc_cve-2020-25653 A race condition vulnerability was found in the way the spice-vdagentd daemon handled new client connections. This flaw may allow an unprivileged local guest user to become the active agent for spice-vdagentd possibly resulting in a denial of service or information leakage from the host. The highest threat from this vulnerability is to data confidentiality as well as system availability. This flaw affects spice-vdagent versions 0.20 and prior. 2020-11-02T00:00:00.000Z 2022-01-19T00:00:00.000Z
msrc_cve-2020-25694 A flaw was found in PostgreSQL versions before 13.1 before 12.5 before 11.10 before 10.15 before 9.6.20 and before 9.5.24. If a client application that creates additional database connections only reuses the basic connection parameters while dropping security-relevant parameters an opportunity for a man-in-the-middle attack or the ability to observe clear-text transmissions could exist. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. 2020-11-02T00:00:00.000Z 2020-11-20T00:00:00.000Z
msrc_cve-2020-25695 A flaw was found in PostgreSQL versions before 13.1 before 12.5 before 11.10 before 10.15 before 9.6.20 and before 9.5.24. An attacker having permission to create non-temporary objects in at least one schema can execute arbitrary SQL functions under the identity of a superuser. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. 2020-11-02T00:00:00.000Z 2020-11-20T00:00:00.000Z
msrc_cve-2020-25696 A flaw was found in the psql interactive terminal of PostgreSQL in versions before 13.1 before 12.5 before 11.10 before 10.15 before 9.6.20 and before 9.5.24. If an interactive psql session uses \gset when querying a compromised server the attacker can execute arbitrary code as the operating system account running psql. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. 2020-11-02T00:00:00.000Z 2020-12-08T00:00:00.000Z
msrc_cve-2020-25705 A flaw in ICMP packets in the Linux kernel may allow an attacker to quickly scan open UDP ports. This flaw allows an off-path remote attacker to effectively bypass source port UDP randomization. Software that relies on UDP source port randomization are indirectly affected as well on the Linux Based Products (RUGGEDCOM RM1224: All versions between v5.0 and v6.4 SCALANCE M-800: All versions between v5.0 and v6.4 SCALANCE S615: All versions between v5.0 and v6.4 SCALANCE SC-600: All versions prior to v2.1.3 SCALANCE W1750D: v8.3.0.1 v8.6.0 and v8.7.0 SIMATIC Cloud Connect 7: All versions SIMATIC MV500 Family: All versions SIMATIC NET CP 1243-1 (incl. SIPLUS variants): Versions 3.1.39 and later SIMATIC NET CP 1243-7 LTE EU: Version 2020-11-02T00:00:00.000Z 2020-12-03T00:00:00.000Z
msrc_cve-2020-27152 An issue was discovered in ioapic_lazy_update_eoi in arch/x86/kvm/ioapic.c in the Linux kernel before 5.9.2. It has an infinite loop related to improper interaction between a resampler and edge triggering aka CID-77377064c3a9. 2020-11-02T00:00:00.000Z 2020-11-17T00:00:00.000Z
msrc_cve-2020-28196 MIT Kerberos 5 (aka krb5) before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1_encode.c support for BER indefinite lengths lacks a recursion limit. 2020-11-02T00:00:00.000Z 2021-10-15T00:00:00.000Z
msrc_cve-2020-28362 Go before 1.14.12 and 1.15.x before 1.15.4 allows Denial of Service. 2020-11-02T00:00:00.000Z 2026-02-18T01:11:30.000Z
msrc_cve-2020-28366 Arbitrary code execution in go command with cgo in cmd/go and cmd/cgo 2020-11-02T00:00:00.000Z 2024-06-30T07:00:00.000Z
msrc_cve-2020-28367 Arbitrary code execution via the go command with cgo in cmd/go 2020-11-02T00:00:00.000Z 2026-02-18T02:13:20.000Z
msrc_cve-2020-28915 A buffer over-read (at the framebuffer layer) in the fbcon code in the Linux kernel before 5.8.15 could be used by local attackers to read kernel memory aka CID-6735b4632def. 2020-11-02T00:00:00.000Z 2020-12-03T00:00:00.000Z
msrc_cve-2020-28941 An issue was discovered in drivers/accessibility/speakup/spk_ttyio.c in the Linux kernel through 5.9.9. Local attackers on systems with the speakup driver could cause a local denial of service attack aka CID-d41227544427. This occurs because of an invalid free when the line discipline is used more than once. 2020-11-02T00:00:00.000Z 2020-12-03T00:00:00.000Z
msrc_cve-2020-28974 A slab-out-of-bounds read in fbcon in the Linux kernel before 5.9.7 could be used by local attackers to read privileged information or potentially crash the kernel aka CID-3c4e0dff2095. This occurs because KD_FONT_OP_COPY in drivers/tty/vt/vt.c can be used for manipulations such as font height. 2020-11-02T00:00:00.000Z 2020-12-02T00:00:00.000Z
ID Description Published Updated
ncsc-2026-0092 Kwetsbaarheden verholpen in Fortinet FortiWeb 2026-03-12T07:46:15.529522Z 2026-03-12T07:46:15.529522Z
ncsc-2026-0093 Kwetsbaarheden verholpen in GitLab 2026-03-12T14:42:46.936248Z 2026-03-12T14:42:46.936248Z
ncsc-2026-0094 Kwetsbaarheden verholpen in Cisco IOS XR 2026-03-12T14:44:08.106602Z 2026-03-12T14:44:08.106602Z
ncsc-2026-0095 Kwetsbaarheid verholpen in pac4j-jwt 2026-03-12T14:45:51.156512Z 2026-03-12T14:45:51.156512Z
ncsc-2026-0096 Kwetsbaarheden verholpen in Veeam Backup & Replication 2026-03-12T14:54:08.200676Z 2026-03-12T14:54:08.200676Z
ncsc-2026-0097 Kwetsbaarheden verholpen in Google Chrome 2026-03-13T08:33:43.877125Z 2026-03-13T08:33:43.877125Z
ncsc-2026-0098 Kwetsbaarheden verholpen in Apple iOS en iPadOS 2026-03-13T08:41:19.155490Z 2026-03-13T08:41:19.155490Z
ncsc-2026-0099 Kwetsbaarheid verholpen in Oracle Identity Manager en Oracle Web Services Manager 2026-03-20T15:56:12.716324Z 2026-03-20T15:56:12.716324Z
ncsc-2026-0100 Kwetsbaarheden verholpen in Citrix Netscaler ADC en Netscaler Gateway 2026-03-23T13:43:30.957806Z 2026-03-23T13:43:30.957806Z
ncsc-2026-0101 Kwetsbaarheden verholpen in Apple iOS en iPadOS 2026-03-25T14:02:07.392994Z 2026-03-25T14:02:07.392994Z
ncsc-2026-0102 Kwetsbaarheden verholpen in Apple macOS 2026-03-25T14:15:56.073353Z 2026-03-25T14:15:56.073353Z
ncsc-2026-0103 Kwetsbaarheden verholpen in GitLab 2026-03-26T09:48:10.874427Z 2026-03-26T09:48:10.874427Z
ncsc-2026-0104 Kwetsbaarheden verholpen in Cisco IOS XE Software 2026-03-26T09:50:03.269095Z 2026-03-26T09:50:03.269095Z
ncsc-2026-0105 Kwetsbaarheden verholpen in Cisco Nexus Dashboard en Nexus Dashboard Insights 2026-04-03T08:20:48.187725Z 2026-04-03T08:20:48.187725Z
ncsc-2026-0106 Kwetsbaarheden verholpen in Cisco Integrated Management Controller 2026-04-03T10:34:46.145536Z 2026-04-03T10:34:46.145536Z
ncsc-2026-0107 Kwetsbaarheid verholpen in FortiClient EMS van Fortinet 2026-04-04T13:49:19.002116Z 2026-04-04T13:49:19.002116Z
ncsc-2026-0108 Kwetsbaarheid verholpen in Juniper Networks Junos OS Evolved 2026-04-10T12:06:13.479822Z 2026-04-10T12:06:13.479822Z
ncsc-2026-0109 Kwetsbaarheden verholpen in Synology SSL VPN Client 2026-04-10T12:11:00.859799Z 2026-04-10T12:11:00.859799Z
ncsc-2026-0110 Kwetsbaarheid verholpen in Cisco Smart Software Manager On-Prem 2026-04-10T14:28:58.703642Z 2026-04-10T14:28:58.703642Z
ncsc-2026-0111 Kwetsbaarheid verholpen in Adobe Acrobat 2026-04-12T08:42:18.844193Z 2026-04-13T09:38:04.129352Z
ncsc-2026-0112 Kwetsbaarheden verholpen in Siemens producten 2026-04-14T11:37:21.682429Z 2026-04-14T11:37:21.682429Z
ncsc-2026-0113 Kwetsbaarheden verholpen in SAP-producten 2026-04-14T12:55:40.388960Z 2026-04-14T12:55:40.388960Z
ncsc-2026-0114 Kwetsbaarheden verholpen in Microsoft Developer tools 2026-04-14T19:18:58.666745Z 2026-04-14T19:18:58.666745Z
ncsc-2026-0115 Kwetsbaarheid verholpen in Microsoft Defender 2026-04-14T19:19:48.691858Z 2026-04-15T08:54:16.881135Z
ncsc-2026-0116 Kwetsbaarheden verholpen in Microsoft Office 2026-04-14T19:20:56.343558Z 2026-04-14T19:20:56.343558Z
ncsc-2026-0117 Kwetsbaarheden verholpen in Microsoft Azure 2026-04-14T19:23:30.733725Z 2026-04-14T19:23:30.733725Z
ncsc-2026-0118 Kwetsbaarheden verholpen in Microsoft SQL Server 2026-04-14T19:24:22.610160Z 2026-04-14T19:24:22.610160Z
ncsc-2026-0119 Kwetsbaarheden verholpen in Microsoft Windows 2026-04-15T08:53:38.926894Z 2026-04-15T08:53:38.926894Z
ncsc-2026-0120 Kwetsbaarheden verholpen in Fortinet FortiAnalyzer en FortiManager 2026-04-15T12:20:38.675602Z 2026-04-15T12:20:38.675602Z
ncsc-2026-0121 Kwetsbaarheden verholpen in Fortinet FortiSandbox 2026-04-15T12:23:16.801183Z 2026-04-15T12:23:16.801183Z
ID Description Published Updated
ID Description Published Updated
opensuse-su-2019:2317-1 Security update for GraphicsMagick 2019-10-16T05:41:17Z 2019-10-16T05:41:17Z
opensuse-su-2019:2318-1 Security update for epiphany 2019-10-16T05:41:27Z 2019-10-16T05:41:27Z
opensuse-su-2019:2319-1 Security update for libopenmpt 2019-10-16T05:41:36Z 2019-10-16T05:41:36Z
opensuse-su-2019:2321-1 Security update for GraphicsMagick 2019-10-16T13:25:29Z 2019-10-16T13:25:29Z
opensuse-su-2019:2333-1 Security update for sudo 2019-10-17T08:21:26Z 2019-10-17T08:21:26Z
opensuse-su-2019:2340-1 Security update for dhcp 2019-10-19T22:19:08Z 2019-10-19T22:19:08Z
opensuse-su-2019:2341-1 Security update for dhcp 2019-10-19T22:19:29Z 2019-10-19T22:19:29Z
opensuse-su-2019:2343-1 Security update for libpcap 2019-10-20T16:18:04Z 2019-10-20T16:18:04Z
opensuse-su-2019:2344-1 Security update for tcpdump 2019-10-20T16:18:13Z 2019-10-20T16:18:13Z
opensuse-su-2019:2345-1 Security update for libpcap 2019-10-20T16:18:19Z 2019-10-20T16:18:19Z
opensuse-su-2019:2347-1 Security update for lighttpd 2019-10-20T17:22:17Z 2019-10-20T17:22:17Z
opensuse-su-2019:2348-1 Security update for tcpdump 2019-10-20T18:19:33Z 2019-10-20T18:19:33Z
opensuse-su-2019:2361-1 Security update for libreoffice 2019-10-21T22:25:35Z 2019-10-21T22:25:35Z
opensuse-su-2019:2364-1 Security update for gcc7 2019-10-22T14:23:29Z 2019-10-22T14:23:29Z
opensuse-su-2019:2365-1 Security update for gcc7 2019-10-22T16:20:44Z 2019-10-22T16:20:44Z
opensuse-su-2019:2376-1 Security update for procps 2019-10-26T14:24:29Z 2019-10-26T14:24:29Z
opensuse-su-2019:2379-1 Security update for procps 2019-10-26T16:24:57Z 2019-10-26T16:24:57Z
opensuse-su-2019:2385-1 Security update for openconnect 2019-10-27T11:24:22Z 2019-10-27T11:24:22Z
opensuse-su-2019:2388-1 Security update for openconnect 2019-10-27T15:24:56Z 2019-10-27T15:24:56Z
opensuse-su-2019:2389-1 Security update for python 2019-10-27T15:25:03Z 2019-10-27T15:25:03Z
opensuse-su-2019:2392-1 Security update for the Linux Kernel 2019-10-27T18:35:05Z 2019-10-27T18:35:05Z
opensuse-su-2019:2393-1 Security update for python 2019-10-27T19:22:28Z 2019-10-27T19:22:28Z
opensuse-su-2019:2394-1 Security update for zziplib 2019-10-28T09:20:38Z 2019-10-28T09:20:38Z
opensuse-su-2019:2395-1 Security update for sysstat 2019-10-28T09:20:48Z 2019-10-28T09:20:48Z
opensuse-su-2019:2396-1 Security update for zziplib 2019-10-28T09:20:56Z 2019-10-28T09:20:56Z
opensuse-su-2019:2397-1 Security update for sysstat 2019-10-28T11:22:25Z 2019-10-28T11:22:25Z
opensuse-su-2019:2398-1 Security update for lz4 2019-10-28T19:27:56Z 2019-10-28T19:27:56Z
opensuse-su-2019:2399-1 Security update for lz4 2019-10-28T19:28:07Z 2019-10-28T19:28:07Z
opensuse-su-2019:2408-1 Security update for nfs-utils 2019-10-29T15:27:20Z 2019-10-29T15:27:20Z
opensuse-su-2019:2415-1 Security update for binutils 2019-10-30T17:25:53Z 2019-10-30T17:25:53Z
ID Description Published Updated
ID Description Published Updated
rhsa-2005:838 Red Hat Security Advisory: php security update 2005-11-10T19:19:00+00:00 2025-11-21T17:29:43+00:00
rhsa-2005:825 Red Hat Security Advisory: lm_sensors security update 2005-11-10T19:22:00+00:00 2025-11-21T17:29:42+00:00
rhsa-2005:839 Red Hat Security Advisory: lynx security update 2005-11-12T00:10:00+00:00 2025-11-21T17:29:44+00:00
rhsa-2005:810 Red Hat Security Advisory: gdk-pixbuf security update 2005-11-15T14:30:00+00:00 2025-11-21T17:29:41+00:00
rhsa-2005:811 Red Hat Security Advisory: gtk2 security update 2005-11-15T14:40:00+00:00 2025-11-21T17:29:41+00:00
rhsa-2005:850 Red Hat Security Advisory: imap security update 2005-12-06T14:33:00+00:00 2025-11-21T17:29:48+00:00
rhsa-2005:840 Red Hat Security Advisory: xpdf security update 2005-12-06T14:40:00+00:00 2025-11-21T17:29:44+00:00
rhsa-2005:848 Red Hat Security Advisory: libc-client security update 2005-12-06T14:46:00+00:00 2025-11-21T17:29:47+00:00
rhsa-2005:882 Red Hat Security Advisory: openssl, php, mod_ssl, mod_imap security update for Stronghold 2005-12-19T17:29:00+00:00 2025-11-21T17:29:49+00:00
rhsa-2005:878 Red Hat Security Advisory: cups security update 2005-12-20T14:20:00+00:00 2025-11-21T17:29:48+00:00
rhsa-2005:867 Red Hat Security Advisory: gpdf security update 2005-12-20T14:24:00+00:00 2025-11-21T17:29:47+00:00
rhsa-2005:864 Red Hat Security Advisory: udev security update 2005-12-20T14:26:00+00:00 2025-11-21T17:29:47+00:00
rhsa-2005:880 Red Hat Security Advisory: perl security update 2005-12-20T14:33:00+00:00 2025-11-21T17:29:48+00:00
rhsa-2005:843 Red Hat Security Advisory: netpbm security update 2005-12-20T14:42:00+00:00 2025-11-21T17:29:44+00:00
rhsa-2005:875 Red Hat Security Advisory: curl security update 2005-12-20T14:46:00+00:00 2025-11-21T17:29:47+00:00
rhsa-2005:868 Red Hat Security Advisory: kdegraphics security update 2005-12-20T14:52:00+00:00 2025-11-21T17:29:51+00:00
rhsa-2005:881 Red Hat Security Advisory: perl security update 2005-12-20T15:00:00+00:00 2025-11-21T17:29:49+00:00
rhsa-2006:0159 Red Hat Security Advisory: httpd security update 2006-01-05T15:59:00+00:00 2025-11-21T17:29:55+00:00
rhsa-2006:0164 Red Hat Security Advisory: mod_auth_pgsql security update 2006-01-06T02:50:00+00:00 2025-11-21T17:29:57+00:00
rhsa-2006:0179 Red Hat Security Advisory: auth_ldap security update 2006-01-10T19:32:00+00:00 2025-11-21T17:29:58+00:00
rhsa-2006:0157 Red Hat Security Advisory: struts security update for Red Hat Application Server 2006-01-11T18:38:00+00:00 2025-11-21T17:29:54+00:00
rhsa-2006:0163 Red Hat Security Advisory: cups security update 2006-01-11T18:46:00+00:00 2025-11-21T17:29:57+00:00
rhsa-2006:0156 Red Hat Security Advisory: ethereal security update 2006-01-11T18:58:00+00:00 2025-11-21T17:29:54+00:00
rhsa-2006:0177 Red Hat Security Advisory: gpdf security update 2006-01-11T19:04:00+00:00 2025-11-21T17:29:58+00:00
rhsa-2006:0158 Red Hat Security Advisory: apache security update 2006-01-17T08:23:00+00:00 2025-11-21T17:29:55+00:00
rhsa-2006:0101 Red Hat Security Advisory: kernel security update 2006-01-17T08:36:00+00:00 2025-11-21T17:29:51+00:00
rhsa-2006:0140 Red Hat Security Advisory: kernel security update 2006-01-19T16:03:00+00:00 2025-11-21T17:29:53+00:00
rhsa-2006:0160 Red Hat Security Advisory: tetex security update 2006-01-19T17:38:00+00:00 2025-11-21T17:30:01+00:00
rhsa-2006:0184 Red Hat Security Advisory: kdelibs security update 2006-01-19T17:50:00+00:00 2025-11-21T17:29:58+00:00
rhsa-2006:0190 Red Hat Security Advisory: kernel security update 2006-02-01T17:48:00+00:00 2025-11-21T17:29:59+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
suse-su-2016:1019-1 Security update for the Linux Kernel 2016-04-12T15:48:36Z 2016-04-12T15:48:36Z
suse-su-2016:1023-1 Security update for samba 2016-04-12T18:36:55Z 2016-04-12T18:36:55Z
suse-su-2016:1024-1 Security update for samba 2016-04-12T18:42:33Z 2016-04-12T18:42:33Z
suse-su-2016:1022-1 Security update for samba 2016-04-12T18:46:15Z 2016-04-12T18:46:15Z
suse-su-2016:1026-1 Security update for xerces-c 2016-04-13T09:32:03Z 2016-04-13T09:32:03Z
suse-su-2016:1028-1 Security update for samba 2016-04-13T14:32:30Z 2016-04-13T14:32:30Z
suse-su-2016:1034-1 Security update for Linux Kernel Live Patch 11 2016-04-14T11:41:11Z 2016-04-14T11:41:11Z
suse-su-2016:1031-1 Security update for Linux Kernel Live Patch 0 for SP 1 2016-04-14T11:41:48Z 2016-04-14T11:41:48Z
suse-su-2016:1032-1 Security update for Linux Kernel Live Patch 1 for SP 1 2016-04-14T11:42:53Z 2016-04-14T11:42:53Z
suse-su-2016:1035-1 Security update for Linux Kernel Live Patch 2 for SP 1 2016-04-14T11:44:46Z 2016-04-14T11:44:46Z
suse-su-2016:1033-1 Security update for Linux Kernel Live Patch 3 for SP 1 2016-04-14T11:44:55Z 2016-04-14T11:44:55Z
suse-su-2016:1040-1 Security update for Linux Kernel Live Patch 4 2016-04-14T14:30:35Z 2016-04-14T14:30:35Z
suse-su-2016:1038-1 Security update for Linux Kernel Live Patch 6 2016-04-14T14:30:47Z 2016-04-14T14:30:47Z
suse-su-2016:1037-1 Security update for Linux Kernel Live Patch 7 2016-04-14T14:31:00Z 2016-04-14T14:31:00Z
suse-su-2016:1041-1 Security update for Linux Kernel Live Patch 8 2016-04-14T14:31:11Z 2016-04-14T14:31:11Z
suse-su-2016:1039-1 Security update for Linux Kernel Live Patch 9 2016-04-14T14:31:21Z 2016-04-14T14:31:21Z
suse-su-2016:1045-1 Security update for Linux Kernel Live Patch 10 2016-04-15T09:23:59Z 2016-04-15T09:23:59Z
suse-su-2016:1046-1 Security update for Linux Kernel Live Patch 5 2016-04-15T09:24:19Z 2016-04-15T09:24:19Z
suse-su-2016:1057-1 Security update for openssl 2016-04-15T15:21:50Z 2016-04-15T15:21:50Z
suse-su-2016:1088-1 Security update for krb5 2016-04-18T07:17:35Z 2016-04-18T07:17:35Z
suse-su-2016:1089-1 Security update for libgcrypt 2016-04-18T07:18:36Z 2016-04-18T07:18:36Z
suse-su-2016:1090-1 Security update for icu 2016-04-18T10:31:48Z 2016-04-18T10:31:48Z
suse-su-2016:1091-1 Security update for lhasa 2016-04-18T11:33:42Z 2016-04-18T11:33:42Z
suse-su-2016:1100-1 Security update for cairo 2016-04-19T09:32:28Z 2016-04-19T09:32:28Z
suse-su-2016:1102-1 Security update for the Linux Kernel 2016-04-19T13:59:53Z 2016-04-19T13:59:53Z
suse-su-2016:1140-1 Security update for giflib 2016-04-25T07:16:35Z 2016-04-25T07:16:35Z
suse-su-2016:1139-1 Security update for giflib 2016-04-25T07:18:40Z 2016-04-25T07:18:40Z
suse-su-2016:1138-1 Security update for yast2-users 2016-04-25T07:31:51Z 2016-04-25T07:31:51Z
suse-su-2016:1145-1 Security update for php53 2016-04-25T13:37:35Z 2016-04-25T13:37:35Z
suse-su-2016:1146-1 Security update for portus 2016-04-25T14:28:51Z 2016-04-25T14:28:51Z
ID Description Published Updated
alsa-2023:0808 Important: firefox security update 2023-02-20T00:00:00Z 2023-02-21T17:34:13Z
alsa-2023:0810 Important: firefox security update 2023-02-20T00:00:00Z 2023-02-21T17:40:39Z
alsa-2023:0821 Important: thunderbird security update 2023-02-20T00:00:00Z 2023-02-21T17:44:48Z
alsa-2023:0824 Important: thunderbird security update 2023-02-20T00:00:00Z 2023-02-21T17:50:38Z
alsa-2023:0832 Important: kernel security and bug fix update 2023-02-21T00:00:00Z 2023-09-15T13:41:48Z
alsa-2023:0833 Moderate: python3 security update 2023-02-21T00:00:00Z 2023-03-13T16:37:05Z
alsa-2023:0835 Moderate: python-setuptools security update 2023-02-21T00:00:00Z 2023-02-21T18:08:50Z
alsa-2023:0837 Moderate: systemd security and bug fix update 2023-02-21T00:00:00Z 2023-03-13T16:36:50Z
alsa-2023:0838 Important: samba security update 2023-02-21T00:00:00Z 2023-03-13T16:37:01Z
alsa-2023:0842 Moderate: tar security update 2023-02-21T00:00:00Z 2023-02-21T18:34:26Z
alsa-2023:0848 Moderate: php:8.0 security update 2023-02-21T00:00:00Z 2023-02-21T18:44:47Z
alsa-2023:0852 Moderate: httpd:2.4 security and bug fix update 2023-02-21T00:00:00Z 2023-02-21T18:53:08Z
alsa-2023:0854 Important: kernel-rt security and bug fix update 2023-02-21T00:00:00Z 2023-02-21T21:49:05Z
alsa-2023:0855 Moderate: pcs security update 2023-02-21T00:00:00Z 2023-02-21T18:58:55Z
alsa-2023:0902 Important: webkit2gtk3 security update 2023-02-22T00:00:00Z 2023-02-23T10:40:06Z
alsa-2023:0903 Important: webkit2gtk3 security update 2023-02-22T00:00:00Z 2023-02-23T10:43:07Z
alsa-2023:0946 Moderate: openssl security and bug fix update 2023-02-28T00:00:00Z 2023-02-28T19:45:58Z
alsa-2023:0951 Important: kernel security and bug fix update 2023-02-28T00:00:00Z 2023-09-15T13:41:48Z
alsa-2023:0952 Moderate: python-setuptools security update 2023-02-28T00:00:00Z 2023-02-28T17:39:56Z
alsa-2023:0953 Moderate: python3.9 security update 2023-02-28T00:00:00Z 2023-02-28T19:58:01Z
alsa-2023:0954 Moderate: systemd security update 2023-02-28T00:00:00Z 2023-02-28T20:03:26Z
alsa-2023:0957 Moderate: lua security update 2023-02-28T00:00:00Z 2023-02-28T20:06:58Z
alsa-2023:0958 Moderate: vim security update 2023-02-28T00:00:00Z 2023-02-28T18:13:21Z
alsa-2023:0959 Moderate: tar security update 2023-02-28T00:00:00Z 2023-02-28T18:20:34Z
alsa-2023:0965 Moderate: php security update 2023-02-28T00:00:00Z 2023-02-28T18:26:14Z
alsa-2023:0970 Moderate: httpd security and bug fix update 2023-02-28T00:00:00Z 2023-02-28T18:31:17Z
alsa-2023:0974 Moderate: pcs security update 2023-02-28T00:00:00Z 2023-02-28T18:35:52Z
alsa-2023:0979 Important: kernel-rt security and bug fix update 2023-02-28T00:00:00Z 2023-02-28T18:38:31Z
alsa-2023:1067 Important: pesign security update 2023-03-06T00:00:00Z 2023-03-06T21:02:20Z
alsa-2023:1068 Moderate: libjpeg-turbo security update 2023-03-06T00:00:00Z 2023-03-06T21:26:40Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
osv-2020-1555 Global-buffer-overflow in OT::VarData::get_scalars 2020-07-31T00:01:23.638346Z 2022-04-13T03:04:33.071761Z
osv-2020-1558 Stack-buffer-overflow in dst_print_s2k 2020-08-01T00:00:10.494492Z 2022-04-13T03:04:35.162017Z
osv-2020-1559 UNKNOWN WRITE in hb_vector_t<CFF::parsed_cs_op_t>::resize 2020-08-01T00:00:38.407395Z 2022-04-13T03:04:33.197301Z
osv-2020-1563 UNKNOWN READ in OT::VariationSelectorRecord::operator= 2020-08-01T00:00:59.284106Z 2022-04-13T03:04:32.902373Z
osv-2020-1564 Use-of-uninitialized-value in pb_encode_varint 2020-08-02T00:00:28.082567Z 2022-04-13T03:04:32.622428Z
osv-2020-1565 Heap-buffer-overflow in allocate_field 2020-08-02T00:00:39.707050Z 2022-04-13T03:04:32.612067Z
osv-2020-1566 Heap-buffer-overflow in ndpi_workflow_process_packet 2020-08-02T00:01:17.893681Z 2022-04-13T03:04:36.216084Z
osv-2020-1567 Heap-buffer-overflow in allocate_field 2020-08-02T00:01:18.300186Z 2022-04-13T03:04:32.617326Z
osv-2020-1570 Heap-buffer-overflow in x265::PicYuv::copyFromPicture 2020-08-03T00:00:09.880989Z 2022-04-13T03:04:32.407749Z
osv-2020-1573 Use-of-uninitialized-value in void ArduinoJsonNUMBER_71::Utf8::encodeCodepoint<ArduinoJsonNUMBER_71::StringCop 2020-08-04T00:00:11.334079Z 2022-04-13T03:04:39.357700Z
osv-2020-1577 Heap-buffer-overflow in QPointF::x 2020-08-04T00:00:33.938651Z 2023-02-24T02:29:58.691557Z
osv-2020-1587 UNKNOWN WRITE in count_blocks 2020-08-07T00:01:06.228767Z 2022-04-13T03:04:38.708481Z
osv-2020-1591 UNKNOWN READ in ft_smooth_overlap_spans 2020-08-08T00:00:13.898741Z 2022-04-13T03:04:34.883018Z
osv-2020-1595 Use-of-uninitialized-value in cryptofuzz::module::Nettle::OpSymmetricDecrypt 2020-08-11T00:00:35.680707Z 2022-04-13T03:04:35.088457Z
osv-2020-1597 UNKNOWN WRITE in avifDecoderDataFillImageGrid 2020-08-12T00:00:12.469996Z 2022-04-13T03:29:21.202851Z
osv-2020-1598 Use-of-uninitialized-value in longest_match 2020-08-12T00:00:12.956208Z 2022-04-13T03:04:41.014335Z
osv-2020-1599 Use-of-uninitialized-value in slide_hash 2020-08-12T00:00:13.402621Z 2022-04-13T03:04:40.986860Z
osv-2020-1600 Use-of-uninitialized-value in fuzzing::memory::memory_test_msan 2020-08-12T00:00:30.834222Z 2022-04-13T03:04:35.016255Z
osv-2020-1606 UNKNOWN READ in hb_set_digest_lowest_bits_t<unsigned long, 4u>::may_have 2020-08-14T00:01:09.886475Z 2022-04-13T03:04:33.225527Z
osv-2020-1609 Heap-buffer-overflow in fdisk_partname 2020-08-14T00:01:33.935815Z 2022-04-13T03:04:34.136019Z
osv-2020-1610 Segv on unknown address in Imf_2_5::hufUncompress 2020-08-14T00:01:49.720909Z 2022-04-13T03:37:36.826015Z
osv-2020-1611 Heap-buffer-overflow in yaml_emitter_emit_flow_mapping_key 2020-08-14T00:01:51.615528Z 2022-04-13T03:04:41.717390Z
osv-2020-1623 Heap-use-after-free in xmlXIncludeIncludeNode 2020-08-16T00:01:16.093615Z 2022-04-13T03:04:39.927181Z
osv-2020-1629 Segv on unknown address in wabt::BinaryReader::PrintError 2020-08-19T00:00:06.787048Z 2023-02-24T01:54:39.392108Z
osv-2020-1641 Use-of-uninitialized-value in us_internal_dispatch_ready_poll 2020-08-21T00:01:21.212570Z 2022-04-13T03:04:41.019439Z
osv-2020-1643 Heap-use-after-free in UA_NodeMap_delete 2020-08-22T00:00:17.203907Z 2022-04-13T03:04:41.375264Z
osv-2020-1655 Heap-buffer-overflow in zmq_z85_decode 2020-08-24T00:01:20.386536Z 2022-04-13T03:04:32.792589Z
osv-2020-1656 Heap-buffer-overflow in macho_is_32 2020-08-24T00:01:51.084869Z 2022-04-13T03:04:42.172036Z
osv-2020-1661 Use-of-uninitialized-value in fuzzing::memory::memory_test_msan 2020-08-25T00:00:58.570983Z 2022-04-13T03:04:35.027684Z
osv-2020-1664 Negative-size-param in BaseMemStream<char const>::getChars 2020-08-27T00:00:08.371618Z 2022-04-13T03:04:37.336851Z
ID Description Published Updated
rustsec-2025-0155 `rands` was removed from crates.io for malicious code 2025-02-10T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2025-0159 `sophosfirewall-python` was removed from crates.io for malicious code 2025-02-15T12:00:00Z 2026-03-30T21:40:18Z
rustsec-2025-0015 Denial of Service via malicious Web Push endpoint 2025-02-16T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0007 *ring* is unmaintained 2025-02-20T12:00:00Z 2025-03-06T21:16:59Z
rustsec-2025-0013 resolve is unmaintained 2025-02-21T12:00:00Z 2025-03-07T15:52:15Z
rustsec-2025-0008 Openh264 Decoding Functions Heap Overflow Vulnerability 2025-02-24T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0011 `openpgp-card-sequoia` is unmaintained. 2025-03-04T12:00:00Z 2025-03-07T15:47:21Z
rustsec-2025-0012 `backoff` is unmaintained. 2025-03-04T12:00:00Z 2025-08-06T09:33:04Z
rustsec-2025-0010 Versions of *ring* prior to 0.17 are unmaintained. 2025-03-05T12:00:00Z 2025-03-07T15:46:47Z
rustsec-2025-0009 Some AES functions may panic when overflow checking is enabled. 2025-03-06T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0014 humantime is unmaintained 2025-03-08T12:00:00Z 2025-03-13T00:41:50Z
rustsec-2025-0156 `tree-sitter-pkl` was removed from crates.io for malicious code 2025-03-10T12:00:00Z 2026-03-30T21:40:18Z
rustsec-2025-0149 World Writable Directory in /var/log/below Allows Local Privilege Escalation 2025-03-12T12:00:00Z 2026-02-08T07:26:28Z
rustsec-2025-0016 Use after free in `Parc` and `Prc` due to missing lifetime constraints 2025-03-13T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0017 The `trust-dns` project has been rebranded to `hickory-dns` 2025-03-23T12:00:00Z 2025-03-23T07:00:21Z
rustsec-2025-0018 Potential out-of-bounds read with a malformed ELF file and the HashTable API. 2025-03-26T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0019 `array-init-cursor` in version 0.2.0 and below is unsound when used with types that implement `Drop` 2025-03-27T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0032 Safe API can cause heap-buffer-overflow 2025-03-27T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0033 Public API without sufficient bounds checking 2025-03-27T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0020 Risk of buffer overflow in `PyString::from_object` 2025-04-01T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0021 SHA-1 collision attacks are not detected 2025-04-03T12:00:00Z 2025-04-08T07:10:04Z
rustsec-2025-0022 Use-After-Free in `Md::fetch` and `Cipher::fetch` 2025-04-04T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0023 Broadcast channel calls clone in parallel, but does not require `Sync` 2025-04-07T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0024 crossbeam-channel: double free on Drop 2025-04-08T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0035 Multiple soundness issues in `macroquad` 2025-04-23T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0031 Unsound public API in unmaintained crate 2025-04-24T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0038 Out of bounds access in public safe API 2025-04-24T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0063 Possible unsound public API 2025-04-25T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0025 rustc-serialize is unmaintained 2025-04-28T12:00:00Z 2025-04-28T13:38:14Z
rustsec-2025-0027 Panic in mp3-metadata due to the lack of bounds checking 2025-04-28T12:00:00Z 2025-10-28T06:02:18Z
ID Description Published Updated
bit-node-2023-44487 2024-03-06T10:58:56.877Z 2026-02-11T09:09:18.507Z
bit-grafana-2021-43813 Directory Traversal in Grafana 2024-03-06T10:58:57.080Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-35133 Moodle: ssrf risk due to insufficient check on the curl blocked hosts 2024-03-06T10:58:57.190Z 2025-05-20T10:02:07.006Z
bit-dotnet-2022-21986 .NET Denial of Service Vulnerability 2024-03-06T10:58:58.279Z 2025-05-20T10:02:07.006Z
bit-nginx-2022-41742 NGINX ngx_http_mp4_module vulnerability CVE-2022-41742 2024-03-06T10:58:59.003Z 2025-05-20T10:02:07.006Z
bit-magento-2021-28563 Magento Commerce improper Authorization via the 'Create Customer' endpoint 2024-03-06T10:58:59.368Z 2026-03-20T09:47:33.381Z
bit-golang-2022-32189 Panic when decoding Float and Rat types in math/big 2024-03-06T10:59:01.492Z 2025-05-20T10:02:07.006Z
bit-jenkins-2021-21697 2024-03-06T10:59:02.688Z 2025-04-03T14:40:37.652Z
bit-envoy-2021-28683 2024-03-06T10:59:03.268Z 2025-04-03T14:40:37.652Z
bit-discourse-2023-25819 Discourse tags with no visibility are leaking into og:article:tag 2024-03-06T10:59:03.903Z 2025-05-20T10:02:07.006Z
bit-mongodb-2020-7923 Specific GeoQuery can cause DoS against MongoDB Server 2024-03-06T10:59:03.972Z 2026-03-20T09:47:33.381Z
bit-gitlab-2023-4647 Allocation of Resources Without Limits or Throttling in GitLab 2024-03-06T10:59:04.306Z 2025-05-20T10:02:07.006Z
bit-mariadb-2022-27451 2024-03-06T10:59:05.281Z 2025-04-03T14:40:37.652Z
bit-grafana-2021-43798 Grafana path traversal 2024-03-06T10:59:06.588Z 2026-03-20T09:47:33.381Z
bit-mlflow-2023-2356 Relative Path Traversal in mlflow/mlflow 2024-03-06T10:59:06.605Z 2025-05-20T10:02:07.006Z
bit-drupal-2020-11023 Potential XSS vulnerability in jQuery 2024-03-06T10:59:06.711Z 2025-10-22T09:08:25.162Z
bit-airflow-2021-35936 No Authentication on Logging Server 2024-03-06T10:59:07.153Z 2025-05-20T10:02:07.006Z
bit-node-2023-39332 2024-03-06T10:59:07.902Z 2025-11-06T13:25:46.476Z
bit-dotnet-2021-41355 .NET Core and Visual Studio Information Disclosure Vulnerability 2024-03-06T10:59:07.911Z 2025-05-20T10:02:07.006Z
bit-magento-2021-28556 Magento Commerce DOM-based cross-site scripting (XSS) could lead to arbitrary javascript execution 2024-03-06T10:59:08.920Z 2026-03-20T09:47:33.381Z
bit-moodle-2023-35132 Moodle: minor sql injection risk on mnet sso access control page 2024-03-06T10:59:08.929Z 2025-05-20T10:02:07.006Z
bit-openblas-2021-4048 2024-03-06T10:59:09.580Z 2025-04-03T14:40:37.652Z
bit-nginx-2022-41741 NGINX ngx_http_mp4_module vulnerability CVE-2022-41741 2024-03-06T10:59:11.025Z 2025-05-20T10:02:07.006Z
bit-jenkins-2021-21696 2024-03-06T10:59:13.605Z 2025-04-03T14:40:37.652Z
bit-gitlab-2023-4630 Missing Authorization in GitLab 2024-03-06T10:59:13.676Z 2025-05-20T10:02:07.006Z
bit-golang-2022-32148 Exposure of client IP addresses in net/http 2024-03-06T10:59:14.057Z 2025-05-20T10:02:07.006Z
bit-odoo-2021-45111 2024-03-06T10:59:14.505Z 2025-04-03T14:40:37.652Z
bit-mongodb-2020-7921 Administrative action may disable enforcement of per-user IP whitelisting 2024-03-06T10:59:14.555Z 2025-05-20T10:02:07.006Z
bit-envoy-2021-28682 2024-03-06T10:59:14.669Z 2025-04-03T14:40:37.652Z
bit-mariadb-2022-27449 2024-03-06T10:59:14.825Z 2025-04-03T14:40:37.652Z
ID Description Published Updated
cleanstart-2026-dk70097 In libexpat before 2 2026-04-21T00:38:59.570153Z 2026-04-20T05:52:44Z
cleanstart-2026-af45008 When multiple server blocks are configured to share the same IP address and port, an attacker can use session resumption to bypass client certificate authentication requirements on these servers 2026-04-21T00:40:00.550928Z 2026-04-20T07:28:24Z
cleanstart-2026-fo49462 Security fixes for ghsa-3xc5-wrhm-f963 applied in versions: 1.31.1-r0 2026-04-22T00:36:28.593230Z 2026-04-21T09:53:20Z
cleanstart-2026-al68245 filippo 2026-04-22T00:37:28.755649Z 2026-04-21T09:29:42Z
cleanstart-2026-lt06489 Security fixes for ghsa-72hv-8253-57qq applied in versions: 3.6.4-r4 2026-04-22T00:37:51.095485Z 2026-04-21T07:42:07Z
cleanstart-2026-kb76878 When applications specify HTTP response headers for servlet applications using Spring Security, there is the possibility that the HTTP Headers will not be written 2026-04-22T00:39:59.241183Z 2026-04-21T09:47:18Z
cleanstart-2026-lf33811 In libexpat before 2 2026-04-22T00:40:28.653558Z 2026-04-21T09:26:32Z
cleanstart-2026-bb70412 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions 2026-04-22T00:41:59.291167Z 2026-04-21T09:28:36Z
cleanstart-2026-kx82113 In libexpat before 2 2026-04-23T00:37:25.300123Z 2026-04-22T09:49:02Z
cleanstart-2026-hm96194 In libexpat before 2 2026-04-23T00:37:25.660354Z 2026-04-22T09:49:02Z
cleanstart-2026-is05941 CLIENT_CERT authentication does not fail as expected for some scenarios when soft fail is disabled vulnerability in Apache Tomcat, Apache Tomcat Native 2026-04-23T00:39:55.461024Z 2026-04-22T06:13:27Z
ID Description Published Updated
ID Description Updated
ID Description Published Updated
ID Description Published Updated
certa-2004-avi-019 Vulnérabilité du filtre H.323 du garde-barrière Firewall-1 2004-01-29T00:00:00.000000 2004-01-29T00:00:00.000000
certa-2004-avi-020 Multiples vulnérabilités dans Internet Explorer 2004-02-03T00:00:00.000000 2004-02-03T00:00:00.000000
certa-2004-avi-021 Déni de service des commutateurs Cisco 6000, 6500 et 7600 2004-02-05T00:00:00.000000 2004-02-05T00:00:00.000000
certa-2004-avi-022 Vulnérabilité du garde-barrière Firewall-1 2004-02-05T00:00:00.000000 2004-02-05T00:00:00.000000
certa-2004-avi-023 Vulnérabilité de shmat sur les noyaux BSD 2004-02-06T00:00:00.000000 2004-02-19T00:00:00.000000
certa-2004-avi-024 Vulnérabilités de RealOne Player 2004-02-09T00:00:00.000000 2004-02-09T00:00:00.000000
certa-2004-avi-025 Vulnérabilité de GNU Radius 2004-02-09T00:00:00.000000 2004-02-09T00:00:00.000000
certa-2004-avi-026 Vulnérabilité dans mailman 2004-02-09T00:00:00.000000 2004-05-12T00:00:00.000000
certa-2004-avi-027 Vulnérabilité de Checkpoint VPN-1 2004-02-09T00:00:00.000000 2004-02-13T00:00:00.000000
certa-2004-avi-028 Vulnérabilité IPv6 dans les noyaux BSD 2004-02-10T00:00:00.000000 2004-02-20T00:00:00.000000
certa-2004-avi-029 Vulnérabilité du serveur HTTP Apache-SSL 2004-02-10T00:00:00.000000 2004-05-12T00:00:00.000000
certa-2004-avi-030 Vulnérabilités sur Oracle9i Database 2004-02-10T00:00:00.000000 2004-02-10T00:00:00.000000
certa-2004-avi-031 Vulnérabilité de Windows Internet Naming Service (WINS) 2004-02-11T00:00:00.000000 2004-02-11T00:00:00.000000
certa-2004-avi-032 Failles multiples dans la librairie ASN.1 de Microsoft 2004-02-11T00:00:00.000000 2004-02-11T00:00:00.000000
certa-2004-avi-033 Vulnérabilité du client de messagerie Mutt 2004-02-12T00:00:00.000000 2004-05-13T00:00:00.000000
certa-2004-avi-034 Multiples vulnérabilités de XFree86 et XSun 2004-02-12T00:00:00.000000 2005-06-03T00:00:00.000000
certa-2004-avi-035 Vulnérabilité dans VirtualPC pour Mac 2004-02-12T00:00:00.000000 2004-02-12T00:00:00.000000
certa-2004-avi-036 Vulnérabilité de cgiemail 2004-02-12T00:00:00.000000 2004-02-12T00:00:00.000000
certa-2004-avi-037 Vulnérabilités de la bibliothèque PWLib 2004-02-13T00:00:00.000000 2004-05-13T00:00:00.000000
certa-2004-avi-038 Vulnérabilité dans le serveur samba 2004-02-13T00:00:00.000000 2004-06-09T00:00:00.000000
certa-2004-avi-039 Vulnérabilités dans Sophos Anti-Virus 2004-02-16T00:00:00.000000 2004-02-16T00:00:00.000000
certa-2004-avi-040 Vulnérabilité de eTrust Antivirus 2004-02-16T00:00:00.000000 2004-02-16T00:00:00.000000
certa-2004-avi-357 Vulnérabilités du lecteur PDF xpdf et de ses dérivés et du service d'impression CUPS 2004-02-17T00:00:00.000000 2004-11-26T00:00:00.000000
certa-2004-avi-041 Vulnérabilité de Clamav 2004-02-18T00:00:00.000000 2004-02-18T00:00:00.000000
certa-2004-avi-042 Vulnérabilité du noyau linux 2004-02-18T00:00:00.000000 2004-04-06T00:00:00.000000
certa-2004-avi-043 Vulnérabilité de Metamail 2004-02-19T00:00:00.000000 2004-05-24T00:00:00.000000
certa-2004-avi-044 Vulnérabilité de plusieurs logiciels de Zone Labs 2004-02-19T00:00:00.000000 2004-02-19T00:00:00.000000
certa-2004-avi-045 Vulnérabilité dans Ipswitch Imail Server 2004-02-20T00:00:00.000000 2004-02-20T00:00:00.000000
certa-2004-avi-046 Vulnérabilité dans Oracle9i Application et Dabase Server 2004-02-23T00:00:00.000000 2004-02-23T00:00:00.000000
certa-2004-avi-047 Multiples vulnérabilités sous Mac OS X 2004-02-25T00:00:00.000000 2004-02-25T00:00:00.000000
ID Description Published Updated
jvndb-2012-000056 FeedDemon vulnerable to arbitrary script execution 2012-06-07T15:39+09:00 2012-06-07T15:39+09:00
jvndb-2012-000046 Flash Player issue in implementations of the Same Origin Policy 2012-06-11T15:05+09:00 2012-06-13T16:39+09:00
jvndb-2012-000057 Dolphin Browser vulnerable in the WebView class 2012-06-14T14:20+09:00 2012-06-14T14:20+09:00
jvndb-2012-000062 WEB PATIO vulnerable to cross-site scripting 2012-06-19T12:35+09:00 2012-06-19T12:35+09:00
jvndb-2012-000060 SmallPICT vulnerable to cross-site scripting 2012-06-19T14:00+09:00 2012-06-19T14:00+09:00
jvndb-2012-000061 WEB PATIO vulnerable to cross-site scripting 2012-06-19T14:31+09:00 2012-06-19T14:31+09:00
jvndb-2012-000063 Python SimpleHTTPServer vulnerable to cross-site scripting 2012-06-19T14:38+09:00 2012-12-26T18:01+09:00
jvndb-2012-000065 Zenphoto vulnerable to cross-site scripting 2012-07-03T14:49+09:00 2012-07-03T14:49+09:00
jvndb-2012-000064 Yome Collection for Android issue in management of IMEI 2012-07-03T14:57+09:00 2012-07-03T14:57+09:00
jvndb-2012-000066 Ruby hash table implementation vulnerable to denial-of-service 2012-07-06T17:11+09:00 2012-07-06T17:11+09:00
jvndb-2012-000067 Movable Type plugin MT4i vulnerable to cross-site scripting 2012-07-06T17:14+09:00 2012-07-06T17:14+09:00
jvndb-2012-000068 YY-BOARD vulnerable to cross-site scripting 2012-07-06T17:19+09:00 2012-07-06T17:19+09:00
jvndb-2012-000069 Movable Type plugin MT4i vulnerable to cross-site scripting 2012-07-06T17:24+09:00 2012-07-06T17:24+09:00
jvndb-2012-000070 Yahoo! Browser vulnerable in the WebView class 2012-07-13T15:00+09:00 2012-07-20T12:12+09:00
jvndb-2012-003244 Privilege escalation vulnerability in Hitachi JP1/NETM/DM 2012-07-23T17:13+09:00 2012-07-23T17:13+09:00
jvndb-2012-000071 Sleipnir Mobile for Android vulnerable in the WebView class 2012-07-24T14:05+09:00 2012-07-24T14:05+09:00
jvndb-2012-000009 Multiple web browsers vulnerable in processing Tranfer-Encoding header 2012-07-30T14:53+09:00 2012-07-30T14:53+09:00
jvndb-2012-000072 Yahoo! Toolbar (for Chrome, Safari) vulnerable to toolbar alteration 2012-07-30T14:56+09:00 2012-08-02T16:33+09:00
jvndb-2012-000073 GoodReader vulnerable to cross-site scripting 2012-08-02T14:46+09:00 2012-08-02T14:46+09:00
jvndb-2012-000074 LINE for Android vulnerable in handling of implicit intents 2012-08-07T13:33+09:00 2012-08-07T13:33+09:00
jvndb-2012-000075 Sleipnir Mobile for Android vulnerable to arbitrary Java method execution 2012-08-08T14:39+09:00 2012-08-08T14:39+09:00
jvndb-2012-000076 Sleipnir Mobile for Android vulnerable to arbitrary script execution 2012-08-08T14:43+09:00 2012-08-08T14:43+09:00
jvndb-2012-003525 Cross-site Scripting Vulnerability in JP1/Integrated Management - Service Support 2012-08-10T15:05+09:00 2012-08-10T15:05+09:00
jvndb-2012-000077 Multiple GREE Android applications vulnerable in the WebView class 2012-08-17T15:52+09:00 2012-08-17T15:52+09:00
jvndb-2012-000078 mixi for Android information management vulnerability 2012-08-17T15:58+09:00 2012-08-17T15:58+09:00
jvndb-2012-000079 Adobe Reader fails to properly handle signatures 2012-08-30T13:57+09:00 2014-05-23T18:34+09:00
jvndb-2012-000080 Opera address bar spoofing vulnerability 2012-08-30T14:00+09:00 2013-06-26T13:48+09:00
jvndb-2012-000081 Cybozu Live for Android vulnerable to arbitrary Java method execution 2012-09-03T10:34+09:00 2012-09-03T10:34+09:00
jvndb-2012-000082 Cybozu Live for Android vulnerable in the WebView class 2012-09-03T10:41+09:00 2012-09-03T10:41+09:00
jvndb-2012-000083 Cybozu KUNAI for Android vulnerable to arbitrary Java method execution 2012-09-07T16:39+09:00 2012-09-07T16:39+09:00
ID Description Published Updated
cnvd-2015-00741 BusyBox本地安全绕过漏洞 2015-01-28 2015-01-29
cnvd-2015-00743 LibTIFF存在多个拒绝服务漏洞(CNVD-2015-00743) 2015-01-28 2015-01-29
cnvd-2015-00744 LibTIFF存在多个拒绝服务漏洞(CNVD-2015-00744) 2015-01-28 2015-01-29
cnvd-2015-00745 FerretCMS存在多个HTML注入漏洞 2015-01-28 2015-01-29
cnvd-2015-00746 FerretCMS任意文件上传漏洞 2015-01-28 2015-01-29
cnvd-2015-00747 FerretCMS跨站脚本漏洞 2015-01-28 2015-01-29
cnvd-2015-00748 WebKit内存破坏漏洞(CNVD-2015-00748) 2015-01-28 2015-01-29
cnvd-2015-00749 WebKit内存破坏漏洞(CNVD-2015-00749) 2015-01-28 2015-01-29
cnvd-2015-00750 WebKit内存破坏漏洞(CNVD-2015-00750) 2015-01-28 2015-01-29
cnvd-2015-00751 socat远程拒绝服务漏洞(CNVD-2015-00751) 2015-01-28 2015-01-29
cnvd-2015-00752 Linux Kernel Crypto API本地安全绕过漏洞(CNVD-2015-00752) 2015-01-28 2015-01-29
cnvd-2015-00753 Linux Kernel Crypto API本地安全绕过漏洞(CNVD-2015-00753) 2015-01-28 2015-01-29
cnvd-2015-00754 Infinite Automation Systems Mango Automation跨站脚本漏洞 2015-01-28 2015-01-29
cnvd-2015-00755 MantisBT跨站脚本漏洞 2015-01-28 2015-01-29
cnvd-2015-00756 MantisBT不当访问控制漏洞 2015-01-28 2015-01-29
cnvd-2015-00757 MantisBT SQL注入漏洞 2015-01-28 2015-01-29
cnvd-2015-00758 Apple MAC OS X Yosemite信息泄露漏洞(CNVD-2015-00758) 2015-01-28 2015-01-29
cnvd-2015-00759 Apple MAC OS X Yosemite信息泄露漏洞(CNVD-2015-00759) 2015-01-28 2015-01-29
cnvd-2015-00760 Apple MAC OS X Yosemite安全绕过漏洞 2015-01-28 2015-01-29
cnvd-2015-00761 Apple MAC OS X Yosemite信息泄露漏洞(CNVD-2015-00761) 2015-01-28 2015-01-29
cnvd-2015-00762 PHP 'exif_process_unicode'函数远程代码执行漏洞 2015-01-28 2015-01-29
cnvd-2015-00763 HP SiteScope远程权限提升漏洞 2015-01-28 2015-01-29
cnvd-2015-00838 SupportCenter Plus存在多个跨站脚本漏洞 2015-01-28 2015-01-30
cnvd-2015-00839 FluxBB本地PHP文件包含漏洞 2015-01-28 2015-01-30
cnvd-2015-00742 Saurus CMS存在多个跨站脚本漏洞 2015-01-29 2015-01-30
cnvd-2015-00775 多个Schneider Electric产品堆栈缓冲区溢出漏洞 2015-01-29 2015-01-30
cnvd-2015-00810 Google Chrome Blink拒绝服务漏洞(CNVD-2015-00810) 2015-01-29 2015-01-30
cnvd-2015-00811 Google Chrome Skia拒绝服务漏洞(CNVD-2015-00811) 2015-01-29 2015-01-30
cnvd-2015-00812 Google Chrome PDFium拒绝服务漏洞 2015-01-29 2015-01-30
cnvd-2015-00813 Pivotal Software RabbitMQ management插件跨站脚本漏洞(CNVD-2015-00813) 2015-01-29 2015-01-30
ID Description Published Updated
bdu:2015-03171 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03172 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03173 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03174 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03175 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03176 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03177 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03178 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03179 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03180 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03181 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03182 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03183 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03184 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03185 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03186 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03187 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03188 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03189 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03190 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03191 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03192 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03193 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03194 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03195 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03196 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03197 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03198 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03199 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03200 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
ID Description Updated
var-202011-1547 Advantech WebAccess/HMI Designer is a man-machine interface integrated development tool. … 2022-05-04T09:15:37.403000Z
var-202011-1526 Rockchip Microelectronics Co., Ltd. has a R&D team specializing in system-level chip desi… 2022-05-04T09:15:37.415000Z
var-202011-1295 A CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnera… 2022-05-04T09:15:37.678000Z
var-202011-1273 A CWE-125: Out-of-Bounds Read vulnerability exists in the Web Server on Modicon M340, Mod… 2022-05-04T09:15:37.753000Z
var-202011-1275 A CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnera… 2022-05-04T09:15:37.776000Z
var-202011-1274 A CWE-787: Out-of-bounds Write vulnerability exists in the Web Server on Modicon M340, Mo… 2022-05-04T09:15:37.799000Z
var-202011-1252 Improper access control vulnerability in TCP/IP function included in the firmware of MELS… 2022-05-04T09:15:37.828000Z
var-202011-1250 Session fixation vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R… 2022-05-04T09:15:37.854000Z
var-202011-1249 Buffer overflow vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R … 2022-05-04T09:15:40.640000Z
var-202011-1251 NULL pointer dereferences vulnerability in TCP/IP function included in the firmware of ME… 2022-05-04T09:15:40.665000Z
var-202011-1254 Resource Management Errors vulnerability in TCP/IP function included in the firmware of M… 2022-05-04T09:15:40.693000Z
var-202011-1253 Improper neutralization of argument delimiters in a command ('Argument Injection') vulner… 2022-05-04T09:15:40.720000Z
var-202011-0413 SAP NetWeaver AS ABAP (Web Dynpro), versions - 731, 740, 750, 751, 752, 753, 754, 755, 78… 2022-05-04T09:15:41.487000Z
var-202010-1640 Shanghai ZLAN Information Technology Co., Ltd. is a high-tech enterprise that provides in… 2022-05-04T09:15:41.760000Z
var-202010-1619 P-660HW-T1 is a wireless router product of Zhongqin Communication Equipment Trading (Shan… 2022-05-04T09:15:41.769000Z
var-202010-1598 D-Link DIR-852 is a wireless router. D-Link DIR-852 has a command execution vulnerabi… 2022-05-04T09:15:41.779000Z
var-202010-1367 IBM Resilient SOAR V38.0 could allow an attacker on the internal net work to provide the … 2022-05-04T09:15:42.045000Z
var-202010-1092 User enumeration vulnerability can be exploited to get a list of user accounts and person… 2022-05-04T09:15:42.517000Z
var-202009-1720 Redmi Note 7 generally refers to Redmi Note 7. Redmi Note 7 is the first product of Xiaom… 2022-05-04T09:15:43.375000Z
var-202009-1678 Siemens is a global technology company that provides customers with solutions in the fiel… 2022-05-04T09:15:43.397000Z
var-202008-1327 KingView is an industrial automation configuration software produced by Beijing Yakong Te… 2022-05-04T09:15:45Z
var-202008-1285 China Pulian Technology Co., Ltd. is the world's leading supplier of network communicatio… 2022-05-04T09:15:45.023000Z
var-202007-1477 Xiaomi Mi 6 is a flagship device officially released by Xiaomi on April 19, 2017. The… 2022-05-04T09:15:46.167000Z
var-202006-1928 DrayTek Vigor series routers are dual-WAN security firewall routers designed for medium-s… 2022-05-04T09:15:50.430000Z
var-202006-1907 Advantech WebAccessNode is a HMI/SCADA monitoring software based entirely on IE browser … 2022-05-04T09:15:50.440000Z
var-202006-1886 Shenzhen Jixiang Tengda Technology Co., Ltd. is a leading global network equipment provid… 2022-05-04T09:15:50.452000Z
var-202005-1117 Zhejiang Dahua Technology Co., Ltd. is a video-centric intelligent IoT solution provider … 2022-05-04T09:15:52.127000Z
var-202005-1075 Zhejiang Dahua Technology Co., Ltd. is a video-centric intelligent IoT solution provider … 2022-05-04T09:15:52.153000Z
var-202004-2261 Xinhua III Group is committed to characterization solutions. Provide one-stop digital sol… 2022-05-04T09:15:53.910000Z
var-202004-2240 Ruijie RG-RSR20-14E is a multi-service router. Ruijie RG-RSR20-14E has a command exec… 2022-05-04T09:15:53.922000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated