Recent vulnerabilities

Recent vulnerabilities from
Select from 69 available sources using the dropdown above.
ID CVSS Description Vendor Product Published Updated
CVE-2026-6257
9.2 (4.0)
9.1 (3.1)
Vvveb CMS v1.0.8 Remote Code Execution via Media Management Vvveb
 Vvveb CMS
 2026-04-20T19:09:45.927Z 2026-04-21T19:50:26.897Z
CVE-2026-6248
8.1 (3.1)
wpForo Forum <= 3.0.5 - Authenticated (Subscriber+) Ar… tomdever
 wpForo Forum
 2026-04-20T18:31:33.290Z 2026-04-21T17:35:30.317Z
CVE-2026-6060
4.5 (3.1)
Possible DoS via SQL Box OTRS AG
 OTRS
 2026-04-20T18:20:01.664Z 2026-04-20T18:48:48.185Z
CVE-2026-41389
6.3 (4.0)
5.8 (3.1)
OpenClaw 2026.4.7 < 2026.4.15 - Arbitrary File Read vi… OpenClaw
 OpenClaw
 2026-04-20T17:48:43.704Z 2026-04-20T18:05:03.103Z
CVE-2026-23753
4.8 (4.0)
4.8 (3.1)
GFI HelpDesk < 4.99.9 Stored XSS via charset Parameter GFI Software
 HelpDesk
 2026-04-20T17:33:59.134Z 2026-04-21T13:31:13.580Z
CVE-2026-23752
4.8 (4.0)
4.8 (3.1)
GFI HelpDesk < 4.99.9 Stored XSS via companyname Parameter GFI Software
 HelpDesk
 2026-04-20T17:33:23.424Z 2026-04-20T18:09:59.603Z
CVE-2026-23756
5.1 (4.0)
5.4 (3.1)
GFI HelpDesk < 4.99.9 Stored XSS via Troubleshooter St… GFI Software
 HelpDesk
 2026-04-20T17:30:51.162Z 2026-04-20T18:08:49.925Z
CVE-2026-23758
5.1 (4.0)
6.4 (4.0)
GFI HelpDesk < 4.99.9 Stored XSS via editsubject Parameter GFI Software
 HelpDesk
 2026-04-20T17:30:06.853Z 2026-04-20T17:45:55.788Z
CVE-2026-23757
5.1 (4.0)
5.4 (3.1)
GFI HelpDesk < 4.99.10 Stored XSS via Reports Module GFI Software
 HelpDesk
 2026-04-20T17:27:56.067Z 2026-04-20T18:07:01.630Z
CVE-2026-6662
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
ericc-ch copilot-api Token Endpoint server.ts cors cro… ericc-ch
 copilot-api
 2026-04-20T17:00:17.800Z 2026-04-20T18:09:27.691Z
CVE-2026-35154
6.3 (3.1)
Dell PowerProtect Data Domain appliances, version… Dell
 PowerProtect Data Domain appliances
 2026-04-20T16:50:56.856Z 2026-04-22T03:56:08.697Z
CVE-2026-26951
6.7 (3.1)
Dell PowerProtect Data Domain, versions 7.7.1.0 t… Dell
 PowerProtect Data Domain
 2026-04-20T16:44:49.612Z 2026-04-22T03:56:07.580Z
CVE-2026-22761
6.7 (3.1)
Dell PowerProtect Data Domain, versions 8.5 throu… Dell
 PowerProtect Data Domain
 2026-04-20T16:39:40.268Z 2026-04-22T03:56:06.445Z
CVE-2026-26942
6.7 (3.1)
Dell PowerProtect Data Domain, versions 8.5 throu… Dell
 PowerProtect Data Domain
 2026-04-20T16:34:43.219Z 2026-04-22T03:56:05.261Z
CVE-2026-26943
7.2 (3.1)
Dell PowerProtect Data Domain, versions 7.7.1.0 t… Dell
 PowerProtect Data Domain
 2026-04-20T16:28:53.110Z 2026-04-22T03:56:04.147Z
CVE-2026-28684
6.6 (3.1)
python-dotenv: Symlink following in set_key allows arb… theskumar
 python-dotenv
 2026-04-20T16:25:12.302Z 2026-04-20T17:43:09.477Z
CVE-2026-40488
8.7 (4.0)
OpenMage LTS has Customer File Upload Extension Blockl… OpenMage
 magento-lts
 2026-04-20T16:23:07.429Z 2026-04-20T16:55:05.724Z
CVE-2026-24506
7.2 (3.1)
Dell PowerProtect Data Domain, versions 7.7.1.0 t… Dell
 PowerProtect Data Domain
 2026-04-20T16:22:37.689Z 2026-04-22T03:56:02.944Z
CVE-2026-40098
5.3 (4.0)
OpenMage LTS imports cross-user wishlist item via shar… OpenMage
 magento-lts
 2026-04-20T16:19:55.157Z 2026-04-20T18:10:44.490Z
CVE-2026-41445
8.7 (4.0)
8.8 (3.1)
KissFFT Integer Overflow Heap Buffer Overflow via kiss… mborgerding
 kissfft
 2026-04-20T16:18:50.371Z 2026-04-20T17:57:10.156Z
CVE-2026-24505
7.2 (3.1)
Dell PowerProtect Data Domain, versions 8.5 throu… Dell
 PowerProtect Data Domain
 2026-04-20T16:15:46.863Z 2026-04-22T03:56:00.561Z
CVE-2026-25525
4.9 (3.1)
OpenMage LTS has Path Traversal Filter Bypass in Dataf… OpenMage
 magento-lts
 2026-04-20T16:14:14.366Z 2026-04-21T13:27:55.707Z
CVE-2026-25524
8.1 (3.1)
OpenMage LTS's Phar Deserialization leads to Remote Co… OpenMage
 magento-lts
 2026-04-20T16:11:16.922Z 2026-04-20T16:54:43.603Z
CVE-2026-24504
7.2 (3.1)
Dell PowerProtect Data Domain, versions 7.7.1.0 t… Dell
 PowerProtect Data Domain
 2026-04-20T16:08:35.314Z 2026-04-22T03:55:59.007Z
CVE-2026-25883
5.8 (3.1)
Vexa Webhook Feature has a SSRF Vulnerability Vexa-ai
 vexa
 2026-04-20T16:04:36.584Z 2026-04-20T16:36:21.221Z
CVE-2026-25058
7.5 (3.1)
Vexa's unauthenticated internal transcript endpoint ex… Vexa-ai
 vexa
 2026-04-20T16:03:06.639Z 2026-04-20T16:12:27.988Z
CVE-2026-23774
7.2 (3.1)
Dell PowerProtect Data Domain with Data Domain Op… Dell
 PowerProtect Data Domain
 2026-04-20T15:58:46.965Z 2026-04-22T03:55:57.514Z
CVE-2026-26944
8.8 (3.1)
Dell PowerProtect Data Domain, versions 7.7.1.0 t… Dell
 PowerProtect Data Domain
 2026-04-20T15:51:30.118Z 2026-04-22T03:55:56.073Z
CVE-2026-24468
5.3 (3.1)
OpenAEV Vulnerable to Username/Email Enumeration Throu… OpenAEV-Platform
 openaev
 2026-04-20T15:45:48.572Z 2026-04-20T16:24:44.061Z
CVE-2026-24467
9.1 (3.1)
OpenAEV's Improper Password Reset Token Management Lea… OpenAEV-Platform
 openaev
 2026-04-20T15:40:56.203Z 2026-04-20T16:21:50.299Z
ID CVSS Description Vendor Product Published Updated
CVE-2026-22051
2.3 (4.0)
StorageGRID (formerly StorageGRID Webscale) versi… NETAPP
 StorageGRID (formerly StorageGRID Webscale)
 2026-04-20T21:27:36.822Z 2026-04-21T13:40:46.948Z
CVE-2026-0930
2.3 (4.0)
Potential wolfSSHd Buffer out-of-bounds Read on Window… wolfSSL
 wolfSSH
 2026-04-20T21:28:33.227Z 2026-04-21T13:37:15.647Z
CVE-2026-5928
7.5 (3.1)
Static buffer overflow in deprecated nis_local_principal The GNU C Library
 glibc
 2026-04-20T20:37:31.743Z 2026-04-21T19:49:59.071Z
CVE-2026-5450
9.8 (3.1)
scanf %mc off-by-one heap buffer overflow The GNU C Library
 glibc
 2026-04-20T20:55:41.170Z 2026-04-21T19:49:53.221Z
CVE-2026-5358
N/A
REJECTED: CVE-2026-5358 is rejected for two reasons. Firstly it has been discovered that no NIS+ client or server was ever released for any Linux-based OS distributions and as such this makes the API provisional and unused. Secondly it has been discovered that the NIS+ cold start cache (/var/nis/NIS_COLD_START) cannot be bypassed and as such the API can only be called with a trusted server from the pre-populated cache. The use of a trusted server means no trust boundary is crossed and this is therefore considered a normal bug. N/A N/A 2026-04-20T20:37:23.178Z 2026-04-22T13:04:20.656Z
CVE-2026-4852
6.4 (3.1)
Image Source Control Lite – Show Image Credits and Cap… webzunft
 Image Source Control Lite – Show Image Credits and Captions
 2026-04-20T20:26:53.256Z 2026-04-21T13:53:14.507Z
CVE-2026-34403
5.5 (4.0)
Nginx-UI vulnerable to Cross-Site WebSocket Hijacking … 0xJacky
 nginx-ui
 2026-04-20T20:16:47.597Z 2026-04-21T13:36:46.510Z
CVE-2026-33626
7.5 (3.1)
LMDeploy Vulnerable to Server-Side Request Forgery (SS… InternLM
 lmdeploy
 2026-04-20T20:29:19.558Z 2026-04-21T19:50:13.326Z
CVE-2026-33432
7.7 (4.0)
Roxy-WI has Pre-Authentication LDAP Injection that Lea… roxy-wi
 roxy-wi
 2026-04-20T20:26:52.217Z 2026-04-21T17:38:09.523Z
CVE-2026-33431
5.7 (4.0)
Roxy-WI Vulnerable to Authenticated Arbitrary File Rea… roxy-wi
 roxy-wi
 2026-04-20T20:24:15.319Z 2026-04-21T13:42:19.802Z
CVE-2026-33031
8.6 (4.0)
Nginx-UI: Disabled users retain full API access throug… 0xJacky
 nginx-ui
 2026-04-20T20:12:07.905Z 2026-04-21T13:35:20.144Z
CVE-2026-32613
10 (3.1)
Spinnaker vulnerable to RCE via expression parsing due… spinnaker
 spinnaker
 2026-04-20T20:07:24.697Z 2026-04-22T03:56:18.686Z
CVE-2026-32604
10 (3.1)
Spinnaker vulnerable to RCE when using gitrepo artifac… spinnaker
 spinnaker
 2026-04-20T20:00:57.517Z 2026-04-22T03:56:17.486Z
CVE-2026-29648
8.8 (3.1)
In OpenXiangShan NEMU, when Smstateen is enabled,… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:50:38.197Z
CVE-2026-29647
6.5 (3.1)
In OpenXiangShan NEMU, insufficient Smstateen per… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:50:43.685Z
CVE-2026-29646
9.8 (3.1)
In OpenXiangShan NEMU prior to 55295c4, when runn… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:50:49.314Z
CVE-2026-29642
7.8 (3.1)
A local attacker who can execute privileged CSR o… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:50:54.758Z
CVE-2026-6550
4.7 (3.1)
5.7 (4.0)
Key commitment policy bypass via shared key cache in A… AWS
 AWS Encryption SDK for Python
 2026-04-20T19:20:23.383Z 2026-04-20T19:44:11.685Z
CVE-2026-6257
9.2 (4.0)
9.1 (3.1)
Vvveb CMS v1.0.8 Remote Code Execution via Media Management Vvveb
 Vvveb CMS
 2026-04-20T19:09:45.927Z 2026-04-21T19:50:26.897Z
CVE-2026-6249
8.7 (4.0)
8.8 (3.1)
Vvveb CMS 1.0.8 Remote Code Execution via Media Upload Vvveb
 Vvveb CMS
 2026-04-20T19:57:37.655Z 2026-04-21T13:43:17.635Z
CVE-2026-5478
8.1 (3.1)
Everest Forms <= 3.4.4 - Unauthenticated Arbitrary Fil… wpeverest
 Everest Forms – Contact Form, Payment Form, Quiz, Survey & Custom Form Builder
 2026-04-20T19:27:08.159Z 2026-04-21T13:33:57.569Z
CVE-2026-32311
9.3 (4.0)
Command Injection and Docker container escape allows r… reconurge
 flowsint
 2026-04-20T19:56:32.521Z 2026-04-21T13:44:08.776Z
CVE-2026-32135
7.7 (4.0)
NanoMQ has Heap Buffer Overflow in URI Parameter Parsing nanomq
 nanomq
 2026-04-20T19:23:09.704Z 2026-04-21T13:33:14.607Z
CVE-2026-29649
9.8 (3.1)
NEMU contains an implementation flaw in its RISC-… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:51:00.279Z
CVE-2026-29645
7.5 (3.1)
NEMU (OpenXiangShan/NEMU) before v2025.12.r2 cont… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:51:06.424Z
CVE-2026-6248
8.1 (3.1)
wpForo Forum <= 3.0.5 - Authenticated (Subscriber+) Ar… tomdever
 wpForo Forum
 2026-04-20T18:31:33.290Z 2026-04-21T17:35:30.317Z
CVE-2026-6060
4.5 (3.1)
Possible DoS via SQL Box OTRS AG
 OTRS
 2026-04-20T18:20:01.664Z 2026-04-20T18:48:48.185Z
CVE-2025-11249
N/A
This CVE id was assigned as a duplicate of CVE-2025-66414. N/A N/A 2026-04-20T18:52:18.108Z
CVE-2026-41389
6.3 (4.0)
5.8 (3.1)
OpenClaw 2026.4.7 < 2026.4.15 - Arbitrary File Read vi… OpenClaw
 OpenClaw
 2026-04-20T17:48:43.704Z 2026-04-20T18:05:03.103Z
CVE-2026-39112
5.4 (3.1)
Cross Site Scripting vulnerability in Apartment V… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-20T18:07:53.479Z
ID Description Published Updated
ID Severity Description Published Updated
ghsa-q7h9-pvj5-g9fp
In the Linux kernel, the following vulnerability has been resolved: X.509: Fix out-of-bounds acces… 2026-04-20T12:32:00Z 2026-04-20T12:32:00Z
ghsa-x858-8gr5-586m
5.1 (4.0)
Fudo Enterprise in versions from 5.5.0 through 5.6.2 allows low privileged users to access certain … 2026-04-20T12:31:59Z 2026-04-20T12:31:59Z
ghsa-vrr8-h7fq-ghr8
4.0 (3.1)
ProjectDiscovery Nuclei 3 before 3.8.0 allows DSL expression injection. This affects use of -env-va… 2026-04-20T09:30:45Z 2026-04-20T09:30:45Z
ghsa-vr46-pfqh-wpf8
7.3 (3.1)
5.5 (4.0)
A vulnerability was determined in 1024bit extend-deep up to 0.1.6. The impacted element is an unkno… 2026-04-20T09:30:45Z 2026-04-20T09:30:45Z
ghsa-q2rh-xrfv-8x3m
9.8 (3.1)
9.3 (4.0)
EasyFlow .NET developed by Digiwin has a SQL Injection vulnerability, allowing unauthenticated remo… 2026-04-20T09:30:45Z 2026-04-20T09:30:45Z
ghsa-p78m-rc6g-qfwc
6.3 (3.1)
2.1 (4.0)
A vulnerability was detected in langgenius dify up to 0.6.9. This vulnerability affects the functio… 2026-04-20T09:30:45Z 2026-04-20T09:30:45Z
ghsa-jp7c-75vm-9jwh
3.5 (3.1)
2.0 (4.0)
A vulnerability has been found in langgenius dify up to 1.13.3. Impacted is the function openInNewT… 2026-04-20T09:30:45Z 2026-04-20T09:30:45Z
ghsa-f5h4-jpqg-93m3
9.8 (3.1)
9.3 (4.0)
EasyFlow .NET developed by Digiwin has a SQL Injection vulnerability, allowing unauthenticated remo… 2026-04-20T09:30:45Z 2026-04-20T09:30:45Z
ghsa-8v5m-jghx-mmxr
6.3 (3.1)
2.1 (4.0)
A vulnerability was found in SonicCloudOrg sonic-server up to 2.0.0. The affected element is the fu… 2026-04-20T09:30:45Z 2026-04-20T09:30:45Z
ghsa-7gm3-fv82-7h98
6.3 (3.1)
2.1 (4.0)
A security vulnerability has been detected in TransformerOptimus SuperAGI up to 0.0.14. This affect… 2026-04-20T09:30:45Z 2026-04-20T09:30:45Z
ghsa-5qr4-57wv-4r2w
7.3 (3.1)
5.5 (4.0)
A weakness has been identified in TransformerOptimus SuperAGI up to 0.0.14. Affected by this issue … 2026-04-20T09:30:45Z 2026-04-20T09:30:45Z
ghsa-544v-v93w-x43g
8.1 (3.1)
7.2 (4.0)
ThreatSonar Anti-Ransomware developed by TeamT5 has an Arbitrary File Deletion vulnerability. Authe… 2026-04-20T09:30:45Z 2026-04-20T09:30:45Z
ghsa-49hc-46g6-4c47
8.8 (3.1)
8.7 (4.0)
ThreatSonar Anti-Ransomware developed by TeamT5 has an Privilege Escalation vulnerability. Authenti… 2026-04-20T09:30:45Z 2026-04-20T09:30:45Z
ghsa-337w-xf2q-h5w2
6.3 (3.1)
2.1 (4.0)
A flaw has been found in langgenius dify up to 1.13.3. This issue affects the function parse_openai… 2026-04-20T09:30:45Z 2026-04-20T09:30:45Z
ghsa-32w9-6rwg-p96w
9.1 (3.1)
9.4 (4.0)
A command injection vulnerability was found in the PPTP VPN Clients on the ADM. The vulnerability a… 2026-04-20T09:30:45Z 2026-04-22T15:31:33Z
ghsa-3224-28wc-whrh
7.8 (3.1)
8.5 (4.0)
SKYSEA Client View and SKYMEC IT Manager provided by Sky Co.,LTD. configure the installation folder… 2026-04-20T09:30:45Z 2026-04-20T09:30:45Z
ghsa-2chg-78hj-c2w2
6.3 (3.1)
2.1 (4.0)
A security flaw has been discovered in TransformerOptimus SuperAGI up to 0.0.14. Affected by this v… 2026-04-20T09:30:45Z 2026-04-20T09:30:45Z
ghsa-pg76-qgmq-mvpq
6.3 (3.1)
2.1 (4.0)
A vulnerability was identified in TransformerOptimus SuperAGI up to 0.0.14. Affected is the functio… 2026-04-20T09:30:44Z 2026-04-20T09:30:44Z
ghsa-hq9j-qh3w-qvg3
3.1 (3.1)
1.3 (4.0)
A vulnerability was found in liangliangyy DjangoBlog up to 2.1.0.0. This affects an unknown functio… 2026-04-20T09:30:44Z 2026-04-20T09:30:44Z
ghsa-9772-r9rh-h65v
3.5 (3.1)
The Email Encoder WordPress plugin before 2.3.4 does not sanitise and escape some of its settings,… 2026-04-20T09:30:44Z 2026-04-20T15:31:52Z
ghsa-6fpm-qhmq-mwq8
6.3 (3.1)
2.1 (4.0)
A vulnerability was determined in TransformerOptimus SuperAGI up to 0.0.14. This impacts the functi… 2026-04-20T09:30:44Z 2026-04-20T09:30:44Z
ghsa-46vm-f48w-xhvv
9.9 (3.1)
8.6 (4.0)
A stack-based buffer overflow vulnerability was found in the VPN Clients on the ADM. The issue stem… 2026-04-20T09:30:44Z 2026-04-22T15:31:33Z
ghsa-q2v9-jfqm-jfw4
6.3 (3.1)
2.1 (4.0)
A flaw has been found in liangliangyy DjangoBlog up to 2.1.0.0. The affected element is the functio… 2026-04-20T06:31:28Z 2026-04-20T06:31:28Z
ghsa-gccw-6jq7-5553
3.7 (3.1)
2.9 (4.0)
A vulnerability has been found in liangliangyy DjangoBlog up to 2.1.0.0. The impacted element is an… 2026-04-20T06:31:28Z 2026-04-20T06:31:28Z
ghsa-f3q6-69f3-vwch
5.3 (3.1)
5.5 (4.0)
A vulnerability was detected in lm-sys fastchat up to 0.2.36. Impacted is the function add_text of … 2026-04-20T06:31:28Z 2026-04-20T06:31:28Z
ghsa-crx8-wpv6-jrj2
7.3 (3.1)
5.5 (4.0)
A weakness has been identified in modelscope agentscope up to 1.0.18. This vulnerability affects th… 2026-04-20T06:31:28Z 2026-04-20T06:31:28Z
ghsa-5h65-jx66-j7p5
5.3 (3.1)
5.5 (4.0)
A security vulnerability has been detected in lm-sys fastchat up to 0.2.36. This issue affects the … 2026-04-20T06:31:28Z 2026-04-20T06:31:28Z
ghsa-v66p-f7x3-4794
6.3 (3.1)
2.1 (4.0)
A vulnerability was detected in langflow-ai langflow up to 1.8.3. The impacted element is the funct… 2026-04-20T06:31:27Z 2026-04-20T06:31:27Z
ghsa-rv83-rw8p-jww8
4.3 (3.1)
2.1 (4.0)
A vulnerability has been found in Lagom WHMCS Template up to 2.4.2. This impacts an unknown functio… 2026-04-20T06:31:27Z 2026-04-20T06:31:27Z
ghsa-pg7r-p32f-3m9r
7.3 (3.1)
5.5 (4.0)
A vulnerability was found in rickxy Hospital Management System up to 88a4290d957dc5bdde8a56e5ad451a… 2026-04-20T06:31:27Z 2026-04-20T06:31:27Z
ID Severity Description Package Published Updated
pysec-2022-292
Improper Handling of Length Parameter Inconsistency in GitHub repository ikus060/rdiffweb… rdiffweb 2022-09-26T19:15:00Z 2022-09-28T14:57:05.110777Z
pysec-2022-291
Improper Handling of Length Parameter Inconsistency in GitHub repository ikus060/rdiffweb… rdiffweb 2022-09-26T17:16:00Z 2022-09-28T14:57:05.063685Z
pysec-2022-293
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffwe… rdiffweb 2022-09-26T13:15:00Z 2022-09-28T18:56:44.570005Z
pysec-2022-295
Improper Cleanup on Thrown Exception in GitHub repository ikus060/rdiffweb prior to 2.4.8. rdiffweb 2022-09-26T11:15:00Z 2022-09-28T20:45:53.940487Z
pysec-2022-288
The package joblib from 0 and before 1.2.0 are vulnerable to Arbitrary Code Execution via… joblib 2022-09-26T05:15:00Z 2022-10-10T13:42:48.035346Z
pysec-2022-290
Session Fixation in GitHub repository ikus060/rdiffweb prior to 2.4.7. rdiffweb 2022-09-23T10:15:00Z 2022-09-26T18:52:54.831168Z
pysec-2022-289
Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.4.7. rdiffweb 2022-09-22T19:15:00Z 2022-09-26T17:03:24.164223Z
pysec-2022-284
Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.4.6. rdiffweb 2022-09-22T10:15:00Z 2022-09-22T22:39:18.498564Z
pysec-2022-285
Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.4.6. rdiffweb 2022-09-21T20:15:00Z 2022-09-23T06:43:04.843450Z
pysec-2022-287
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository ikus060… rdiffweb 2022-09-21T17:15:00Z 2022-09-23T18:53:22.606477Z
pysec-2022-283
Improper Privilege Management in GitHub repository octoprint/octoprint prior to 1.8.3. octoprint 2022-09-21T12:15:00Z 2022-09-22T17:04:30.556436Z
pysec-2022-282
If an attacker comes into the possession of a victim's OctoPrint session cookie through w… octoprint 2022-09-21T12:15:00Z 2022-09-22T17:04:30.485402Z
pysec-2022-286
Unrestricted Upload of File with Dangerous Type in GitHub repository octoprint/octoprint … octoprint 2022-09-21T10:15:00Z 2022-09-23T18:53:21.529642Z
pysec-2022-280
In Apache Airflow 2.3.0 through 2.3.4, there was an open redirect in the webserver's `/co… apache-airflow 2022-09-21T08:15:00Z 2022-09-21T10:45:51.897136Z
pysec-2022-279
In Apache Airflow 2.3.0 through 2.3.4, part of a url was unnecessarily formatted, allowin… apache-airflow 2022-09-21T08:15:00Z 2022-09-21T10:45:51.858507Z
pysec-2022-43058
7.5 (3.1)
WASM3 v0.5.0 was discovered to contain a segmentation fault via the component op_Select_i… pywasm3 2022-09-20T18:15:00+00:00 2023-08-17T03:22:33.607469+00:00
pysec-2022-43125
9.8 (3.1)
The d8s-python for python, as distributed on PyPI, included a potential code-execution ba… democritus-strings 2022-09-19T16:15:00Z 2024-11-21T14:22:44.941258Z
pysec-2022-43124
9.8 (3.1)
The d8s-xml for python, as distributed on PyPI, included a potential code-execution backd… democritus-strings 2022-09-19T16:15:00Z 2024-11-21T14:22:44.889277Z
pysec-2022-43123
9.8 (3.1)
The d8s-netstrings for python, as distributed on PyPI, included a potential code-executio… democritus-strings 2022-09-19T16:15:00Z 2024-11-21T14:22:44.834592Z
pysec-2022-43122
9.8 (3.1)
The d8s-grammars for python, as distributed on PyPI, included a potential code-execution … democritus-strings 2022-09-19T16:15:00Z 2024-11-21T14:22:44.785522Z
pysec-2022-43121
9.8 (3.1)
The d8s-math for python, as distributed on PyPI, included a potential code-execution back… democritus-strings 2022-09-19T16:15:00Z 2024-11-21T14:22:44.735083Z
pysec-2022-43120
9.8 (3.1)
The d8s-json for python, as distributed on PyPI, included a potential code-execution back… democritus-strings 2022-09-19T16:15:00Z 2024-11-21T14:22:44.684065Z
pysec-2022-43119
9.8 (3.1)
The d8s-archives for python, as distributed on PyPI, included a potential code-execution … democritus-strings 2022-09-19T16:15:00Z 2024-11-21T14:22:44.633699Z
pysec-2022-43117
9.8 (3.1)
The d8s-pdfs for python, as distributed on PyPI, included a potential code-execution back… democritus-networking 2022-09-19T16:15:00Z 2024-11-21T14:22:44.53409Z
pysec-2022-43116
9.8 (3.1)
The d8s-utility for python, as distributed on PyPI, included a potential code-execution b… democritus-networking 2022-09-19T16:15:00Z 2024-11-21T14:22:44.483759Z
pysec-2022-43115
9.8 (3.1)
The d8s-ip-addresses for python, as distributed on PyPI, included a potential code-execut… democritus-networking 2022-09-19T16:15:00Z 2024-11-21T14:22:44.428296Z
pysec-2022-43114
9.8 (3.1)
The d8s-mpeg for python, as distributed on PyPI, included a potential code-execution back… democritus-networking 2022-09-19T16:15:00Z 2024-11-21T14:22:44.376649Z
pysec-2022-43112
9.8 (3.1)
The d8s-asns for python, as distributed on PyPI, included a potential code-execution back… democritus-networking 2022-09-19T16:15:00Z 2024-11-21T14:22:44.27716Z
pysec-2022-43111
9.8 (3.1)
The d8s-html for python, as distributed on PyPI, included a potential code-execution back… democritus-networking 2022-09-19T16:15:00Z 2024-11-21T14:22:44.226888Z
pysec-2022-43107
9.8 (3.1)
The d8s-ip-addresses for python, as distributed on PyPI, included a potential code-execut… democritus-hypothesis 2022-09-19T16:15:00Z 2024-11-21T14:22:44.021497Z
ID Description Updated
ID Description Published Updated
mal-2026-2146 Malicious code in databricks-clean-room-orchestrator (PyPI) 2026-03-24T22:21:37Z 2026-03-24T22:21:37Z
mal-2026-2145 Malicious code in compose-rl (PyPI) 2026-03-24T22:21:23Z 2026-03-24T23:14:27Z
mal-2026-2152 Malicious code in target-iceberg (PyPI) 2026-03-24T22:20:29Z 2026-03-24T22:20:29Z
mal-2026-2151 Malicious code in tap-wordpress (PyPI) 2026-03-24T22:19:29Z 2026-03-24T22:19:29Z
mal-2026-2142 Malicious code in roboat-util (PyPI) 2026-03-24T20:33:53Z 2026-03-24T20:33:53Z
mal-2026-2143 Malicious code in roboated (PyPI) 2026-03-24T20:30:36Z 2026-03-24T20:30:36Z
mal-2026-2141 Malicious code in corexloader (PyPI) 2026-03-24T20:07:25Z 2026-03-24T20:07:25Z
mal-2026-2140 Malicious code in coreloader (PyPI) 2026-03-24T20:07:01Z 2026-03-24T20:07:01Z
mal-2026-2139 Malicious code in stats-helpers (PyPI) 2026-03-24T19:42:44Z 2026-03-24T19:42:44Z
mal-2026-2138 Malicious code in open-vp-cal (PyPI) 2026-03-24T19:30:00Z 2026-03-24T19:30:00Z
mal-2026-2398 Malicious code in xrpl-hooks-ide (npm) 2026-03-24T16:04:59Z 2026-04-07T14:41:26Z
mal-2026-2397 Malicious code in wraith-module (npm) 2026-03-24T16:04:43Z 2026-04-07T14:41:26Z
mal-2026-2396 Malicious code in voodoo-internal-api (npm) 2026-03-24T16:03:29Z 2026-04-07T14:41:26Z
mal-2026-2395 Malicious code in uuidvalidatorarabis (npm) 2026-03-24T16:03:12Z 2026-04-07T14:41:25Z
mal-2026-2394 Malicious code in typescript-mock-data (npm) 2026-03-24T16:02:29Z 2026-04-07T14:41:25Z
mal-2026-2393 Malicious code in this-is-my-test-package (npm) 2026-03-24T16:01:46Z 2026-04-07T14:41:25Z
mal-2026-2392 Malicious code in stormbreaker-shade (npm) 2026-03-24T16:00:27Z 2026-04-07T14:41:25Z
mal-2026-2391 Malicious code in ssr-catalogue-sfcc (npm) 2026-03-24T16:00:16Z 2026-04-07T14:41:25Z
mal-2026-2390 Malicious code in ssh-common (npm) 2026-03-24T16:00:14Z 2026-04-07T14:41:25Z
mal-2026-2389 Malicious code in spectral-module (npm) 2026-03-24T16:00:11Z 2026-04-07T14:41:25Z
mal-2026-2388 Malicious code in spectral-engine (npm) 2026-03-24T16:00:10Z 2026-04-07T14:41:25Z
mal-2026-2387 Malicious code in securefiles-common (npm) 2026-03-24T15:59:00Z 2026-04-07T14:41:24Z
mal-2026-2386 Malicious code in react-native-forter (npm) 2026-03-24T15:57:26Z 2026-04-07T14:41:24Z
mal-2026-2385 Malicious code in product-status (npm) 2026-03-24T15:56:11Z 2026-04-07T14:41:24Z
mal-2026-2384 Malicious code in piyush_test_vadapav (npm) 2026-03-24T15:55:29Z 2026-04-07T14:41:24Z
mal-2026-2383 Malicious code in phantom-module (npm) 2026-03-24T15:55:16Z 2026-04-07T14:41:24Z
mal-2026-2382 Malicious code in osc-datagrid-validator (npm) 2026-03-24T15:54:42Z 2026-04-07T14:41:24Z
mal-2026-2381 Malicious code in onb-enrichment (npm) 2026-03-24T15:54:10Z 2026-04-07T14:41:24Z
mal-2026-2380 Malicious code in nodecognivault (npm) 2026-03-24T15:53:30Z 2026-04-07T14:41:23Z
mal-2026-2379 Malicious code in node-neurograde (npm) 2026-03-24T15:53:27Z 2026-04-07T14:41:23Z
ID Description Published Updated
ID Description Published Updated
wid-sec-w-2025-2574 Qualys Cloud Agent: Schwachstelle ermöglicht Privilegieneskalation 2025-11-11T23:00:00.000+00:00 2025-11-11T23:00:00.000+00:00
wid-sec-w-2025-2573 Intel Prozessoren: Schwachstelle ermöglicht Privilegieneskalation 2025-11-11T23:00:00.000+00:00 2025-11-11T23:00:00.000+00:00
wid-sec-w-2025-2572 Adobe Photoshop: Schwachstelle ermöglicht Codeausführung 2025-11-11T23:00:00.000+00:00 2025-11-11T23:00:00.000+00:00
wid-sec-w-2025-2571 Citrix Systems ADC und NetScaler: Schwachstelle ermöglicht Cross-Site Scripting 2025-11-11T23:00:00.000+00:00 2025-11-11T23:00:00.000+00:00
wid-sec-w-2025-2570 Arista EOS: Schwachstelle ermöglicht Denial of Service 2025-11-11T23:00:00.000+00:00 2025-11-16T23:00:00.000+00:00
wid-sec-w-2025-2569 AMD EPYC-Prozessoren und Arm Trusted Firmware: Mehrere Schwachstellen 2025-11-11T23:00:00.000+00:00 2025-11-23T23:00:00.000+00:00
wid-sec-w-2025-2568 Red Hat Enterprise Linux (kea): Mehrere Schwachstellen ermöglichen Denial of Service 2025-11-11T23:00:00.000+00:00 2025-12-03T23:00:00.000+00:00
wid-sec-w-2025-2567 Grafana: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen 2025-11-11T23:00:00.000+00:00 2025-11-11T23:00:00.000+00:00
wid-sec-w-2025-2566 Mozilla Firefox und Firefox ESR: Mehrere Schwachstellen 2025-11-11T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2565 Adobe Creative Cloud Applikationen: Mehrere Schwachstellen 2025-11-11T23:00:00.000+00:00 2025-11-13T23:00:00.000+00:00
wid-sec-w-2025-2564 Microsoft Windows und Windows Server: Mehrere Schwachstellen 2025-11-11T23:00:00.000+00:00 2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2563 Microsoft Azure Linux: Mehrere Schwachstellen 2025-11-11T23:00:00.000+00:00 2025-12-14T23:00:00.000+00:00
wid-sec-w-2025-2562 Microsoft SQL Server: Schwachstelle ermöglicht Privilegieneskalation 2025-11-11T23:00:00.000+00:00 2025-11-11T23:00:00.000+00:00
wid-sec-w-2025-2561 Microsoft Office Produkte: Mehrere Schwachstellen 2025-11-11T23:00:00.000+00:00 2025-11-11T23:00:00.000+00:00
wid-sec-w-2025-2560 Microsoft Dynamics 365: Mehrere Schwachstellen 2025-11-11T23:00:00.000+00:00 2025-11-11T23:00:00.000+00:00
wid-sec-w-2025-2559 Microsoft Visual Studio Produkte: Mehrere Schwachstellen 2025-11-11T23:00:00.000+00:00 2025-11-11T23:00:00.000+00:00
wid-sec-w-2025-2558 Microsoft Azure: Schwachstelle ermöglicht Codeausführung 2025-11-11T23:00:00.000+00:00 2025-11-11T23:00:00.000+00:00
wid-sec-w-2025-2557 Microsoft Configuration Manager: Schwachstelle ermöglicht Erlangen von Administratorrechten 2025-11-11T23:00:00.000+00:00 2025-11-11T23:00:00.000+00:00
wid-sec-w-2025-2556 Intel Graphics Driver: Mehrere Schwachstellen 2025-11-11T23:00:00.000+00:00 2025-11-11T23:00:00.000+00:00
wid-sec-w-2025-2555 Intel Rapid Storage Technology: Schwachstelle ermöglicht Privilegieneskalation 2025-11-11T23:00:00.000+00:00 2025-11-11T23:00:00.000+00:00
wid-sec-w-2025-2554 Intel Driver and Support Assistant: Schwachstelle ermöglicht Privilegieneskalation 2025-11-11T23:00:00.000+00:00 2025-11-11T23:00:00.000+00:00
wid-sec-w-2025-2553 Intel Server Configuration Utility: Schwachstelle ermöglicht Privilegieneskalation 2025-11-11T23:00:00.000+00:00 2025-11-11T23:00:00.000+00:00
wid-sec-w-2025-2552 UEFI Server Firmware (Xeon 6): Schwachstelle ermöglicht Privilegieneskalation und DoS 2025-11-11T23:00:00.000+00:00 2025-11-11T23:00:00.000+00:00
wid-sec-w-2025-2551 Intel oneAPI Math Kernel Library: Schwachstelle ermöglicht Denial of Service 2025-11-11T23:00:00.000+00:00 2025-11-11T23:00:00.000+00:00
wid-sec-w-2025-2550 Intel 800 Series Ethernet (ESXi RDMA): Schwachstelle ermöglicht Denial of Service 2025-11-11T23:00:00.000+00:00 2025-11-13T23:00:00.000+00:00
wid-sec-w-2025-2549 Intel PROSet Wireless WiFi Software: Mehrere Schwachstellen ermöglichen Denial of Service 2025-11-11T23:00:00.000+00:00 2025-11-12T23:00:00.000+00:00
wid-sec-w-2025-2546 Axis Axis OS: Mehrere Schwachstellen 2025-11-10T23:00:00.000+00:00 2025-11-12T23:00:00.000+00:00
wid-sec-w-2025-2545 Apache OFBiz: Mehrere Schwachstellen 2025-11-10T23:00:00.000+00:00 2025-11-12T23:00:00.000+00:00
wid-sec-w-2025-2544 Gladinet Triofox: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen und potenziell Codeausführung 2025-11-10T23:00:00.000+00:00 2025-11-10T23:00:00.000+00:00
wid-sec-w-2025-2543 Dell PowerScale OneFS: Schwachstelle ermöglicht Offenlegung von Informationen 2025-11-10T23:00:00.000+00:00 2025-11-10T23:00:00.000+00:00
ID Description Published Updated
icsa-24-263-03 IDEC CORPORATION WindLDR and WindO/I-NV4 2024-09-19T06:00:00.000000Z 2024-09-19T06:00:00.000000Z
icsa-24-263-02 IDEC Products (Update A) 2024-09-19T06:00:00.000000Z 2026-02-18T07:00:00.000000Z
icsa-24-263-01 Rockwell Automation RSLogix 5 and RSLogix 500 2024-09-19T06:00:00.000000Z 2024-09-19T06:00:00.000000Z
icsa-24-261-03 Yokogawa Dual-redundant Platform for Computer (PC2CKM) 2024-09-17T06:00:00.000000Z 2024-09-17T06:00:00.000000Z
icsa-24-261-02 Millbeck Communications Proroute H685t-w 2024-09-17T06:00:00.000000Z 2024-09-17T06:00:00.000000Z
icsa-24-256-25 Rockwell Automation ThinManager 2024-09-12T06:00:00.000000Z 2024-09-12T06:00:00.000000Z
icsa-24-256-24 Rockwell Automation Pavilion8 2024-09-12T06:00:00.000000Z 2024-09-12T06:00:00.000000Z
icsa-24-256-23 Rockwell Automation FactoryTalk View Site 2024-09-12T06:00:00.000000Z 2024-09-12T06:00:00.000000Z
icsa-24-256-22 Rockwell Automation FactoryTalk Batch View 2024-09-12T06:00:00.000000Z 2024-09-12T06:00:00.000000Z
icsa-24-256-21 Rockwell Automation 5015-U8IHFT 2024-09-12T06:00:00.000000Z 2024-09-12T06:00:00.000000Z
icsa-24-256-20 Rockwell Automation AADvance Trusted SIS Workstation 2024-09-12T06:00:00.000000Z 2024-09-12T06:00:00.000000Z
icsa-24-256-19 Rockwell Automation OptixPanel 2024-09-12T06:00:00.000000Z 2024-09-12T06:00:00.000000Z
icsa-24-256-18 Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix 5380 2024-09-12T06:00:00.000000Z 2024-09-12T06:00:00.000000Z
icsa-24-256-17 AutomationDirect DirectLogic H2-DM1E 2024-09-12T06:00:00.000000Z 2024-09-12T06:00:00.000000Z
va-24-254-01 IBM webMethods Integration Multiple Vulnerabilities 2024-09-10T20:08:00Z 2024-09-10T20:08:00Z
va-24-254-02 TopQuadrant TopBraid EDG Insecure External Password Storage and XXE Vulnerabilities 2024-09-10T16:03:00Z 2025-02-13T20:00:00Z
icsma-24-254-01 BPL Medical Technologies PWS-01-BT and BPL Be Well Android Application 2024-09-10T06:00:00.000000Z 2024-09-10T06:00:00.000000Z
icsa-24-254-03 Rockwell Automation SequenceManager 2024-09-10T06:00:00.000000Z 2024-09-10T06:00:00.000000Z
icsa-24-254-02 iniNet Solutions SpiderControl SCADA Web Server 2024-09-10T06:00:00.000000Z 2024-09-10T06:00:00.000000Z
icsa-24-254-01 Viessmann Climate Solutions SE Vitogate 300 2024-09-10T06:00:00.000000Z 2024-09-10T06:00:00.000000Z
icsa-25-014-03 Schneider Electric EcoStruxure 2024-09-10T00:00:00.000000Z 2024-09-10T00:00:00.000000Z
icsa-25-014-02 Schneider Electric Vijeo Designer and EcoStruxureâ„¢ Machine Expert (Update A) 2024-09-10T00:00:00.000000Z 2025-07-08T04:00:00.000000Z
icsa-24-261-01 Siemens SIMATIC S7-200 SMART Devices 2024-09-10T00:00:00.000000Z 2024-09-10T00:00:00.000000Z
icsa-24-256-16 Siemens Third-Party Component in SICAM and SITIPE Products 2024-09-10T00:00:00.000000Z 2025-12-09T00:00:00.000000Z
icsa-24-256-15 Siemens Industrial Products 2024-09-10T00:00:00.000000Z 2025-07-08T00:00:00.000000Z
icsa-24-256-14 Siemens SIMATIC SCADA and PCS 7 Systems 2024-09-10T00:00:00.000000Z 2025-01-14T00:00:00.000000Z
icsa-24-256-13 Siemens SCALANCE W700 2024-09-10T00:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-24-256-12 Siemens Tecnomatix Plant Simulation 2024-09-10T00:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-24-256-11 Siemens Industrial Edge Management 2024-09-10T00:00:00.000000Z 2024-09-10T00:00:00.000000Z
icsa-24-256-10 Siemens SINEMA 2024-09-10T00:00:00.000000Z 2024-09-10T00:00:00.000000Z
ID Description Published Updated
cisco-sa-expressway-filewrite-bsfvwuev Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerabilities 2022-05-18T16:00:00+00:00 2023-01-17T20:24:01+00:00
cisco-sa-ece-strd-xss-bqfxo9d2 Cisco Enterprise Chat and Email Stored Cross-Site Scripting Vulnerability 2022-05-18T16:00:00+00:00 2022-06-21T16:11:25+00:00
cisco-sa-cspc-multi-xss-tydfjhwb Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities 2022-05-18T16:00:00+00:00 2022-06-28T14:43:56+00:00
cisco-sa-vmge-infodc-wpskamhp Cisco SD-WAN vManage Software Information Disclosure Vulnerability 2022-05-04T16:00:00+00:00 2022-05-04T16:00:00+00:00
cisco-sa-smb-rv-cmd-inj-8pv9jmjd Cisco Small Business RV Series Routers Command Injection Vulnerabilities 2022-05-04T16:00:00+00:00 2022-05-04T16:00:00+00:00
cisco-sa-sbrv-rce-oylqbl9u Cisco Small Business RV Series Routers Remote Code Execution Vulnerability 2022-05-04T16:00:00+00:00 2022-05-04T16:00:00+00:00
cisco-sa-ros-dos-x7h7xhkk Cisco TelePresence Collaboration Endpoint and RoomOS Software Vulnerabilities 2022-05-04T16:00:00+00:00 2022-05-06T20:13:28+00:00
cisco-sa-nfvis-mul-7dysrx9 Cisco Enterprise NFV Infrastructure Software Vulnerabilities 2022-05-04T16:00:00+00:00 2022-05-04T16:00:00+00:00
cisco-sa-clamav-html-xauok8mr ClamAV HTML Scanning Memory Leak Vulnerability Affecting Cisco Products: May 2022 2022-05-04T16:00:00+00:00 2022-12-15T19:13:16+00:00
cisco-sa-clamav-dos-zazbwrvg ClamAV TIFF File Parsing Denial of Service Vulnerability Affecting Cisco Products: May 2022 2022-05-04T16:00:00+00:00 2022-12-15T19:03:44+00:00
cisco-sa-clamav-dos-vl9x58p4 ClamAV Truncated File Denial of Service Vulnerability Affecting Cisco Products: May 2022 2022-05-04T16:00:00+00:00 2022-05-04T20:36:47+00:00
cisco-sa-clamav-dos-prvgchld ClamAV CHM File Parsing Denial of Service Vulnerability Affecting Cisco Products: May 2022 2022-05-04T16:00:00+00:00 2022-12-14T18:46:44+00:00
cisco-sa-ftd-xmlinj-8gwjgzke Cisco Firepower Threat Defense Software XML Injection Vulnerability 2022-04-27T16:00:00+00:00 2022-04-27T16:00:00+00:00
cisco-sa-ftd-tcp-dos-km9shhou Cisco Firepower Threat Defense Software TCP Proxy Denial of Service Vulnerability 2022-04-27T16:00:00+00:00 2022-04-27T16:00:00+00:00
cisco-sa-ftd-snort3-dos-aq38lvdm Cisco Firepower Threat Defense Software DNS Enforcement Denial of Service Vulnerability 2022-04-27T16:00:00+00:00 2022-04-27T16:00:00+00:00
cisco-sa-ftd-snort-dos-hd2hfgm Cisco Firepower Threat Defense Software Snort Out of Memory Denial of Service Vulnerability 2022-04-27T16:00:00+00:00 2022-04-27T16:00:00+00:00
cisco-sa-ftd-sidns-bypass-3pza5po Cisco Firepower Threat Defense Software Security Intelligence DNS Feed Bypass Vulnerability 2022-04-27T16:00:00+00:00 2022-04-27T16:00:00+00:00
cisco-sa-ftd-dos-jnnjm4wb Cisco Firepower Threat Defense Software Denial of Service Vulnerability 2022-04-27T16:00:00+00:00 2022-04-27T16:00:00+00:00
cisco-sa-ftd-amp-local-dos-cufwrjxt Cisco Firepower Threat Defense Software Local Malware Analysis Denial of Service Vulnerability 2022-04-27T16:00:00+00:00 2022-04-27T16:00:00+00:00
cisco-sa-fmc-xss-sfpecvgt Cisco Firepower Management Center Software Cross-Site Scripting Vulnerability 2022-04-27T16:00:00+00:00 2022-04-28T16:24:30+00:00
cisco-sa-fmc-xss-qxz4uakm Cisco Firepower Management Center Software Cross-Site Scripting Vulnerabilities 2022-04-27T16:00:00+00:00 2022-04-27T16:00:00+00:00
cisco-sa-fmc-security-bypass-jhod29gg Cisco Firepower Management Center File Upload Security Bypass Vulnerability 2022-04-27T16:00:00+00:00 2022-04-28T16:29:27+00:00
cisco-sa-fmc-infdisc-gujwrwqu Cisco Firepower Management Center Software Information Disclosure Vulnerability 2022-04-27T16:00:00+00:00 2022-04-27T16:00:00+00:00
cisco-sa-asaftd-mgmt-privesc-bmfmuvye Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Interface Privilege Escalation Vulnerability 2022-04-27T16:00:00+00:00 2022-06-01T16:39:47+00:00
cisco-sa-asaftd-ipsec-mitm-cknlr4 Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software IPsec IKEv2 VPN Information Disclosure Vulnerability 2022-04-27T16:00:00+00:00 2022-06-01T17:03:06+00:00
cisco-sa-asaftd-dos-njvawoeq Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software DNS Inspection Denial of Service Vulnerability 2022-04-27T16:00:00+00:00 2024-05-22T15:57:10+00:00
cisco-sa-asafdt-webvpn-dos-tzpsyern Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Interface Denial of Service Vulnerability 2022-04-27T16:00:00+00:00 2022-11-09T16:02:33+00:00
cisco-sa-asa-ssl-vpn-heap-zlx3fdx Cisco Adaptive Security Appliance Software Clientless SSL VPN Heap Overflow Vulnerability 2022-04-27T16:00:00+00:00 2022-06-01T16:25:45+00:00
cisco-sa-asa-dos-tl4ua4aa Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Remote Access SSL VPN Denial of Service Vulnerability 2022-04-27T16:00:00+00:00 2022-08-10T19:07:55+00:00
cisco-sa-webex-xss-w47amqak Cisco Webex Meetings Cross-Site Scripting Vulnerability 2022-04-20T16:00:00+00:00 2022-04-20T16:00:00+00:00
ID Description Published Updated
msrc_cve-2025-69645 Binutils objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed DWARF debug information. A logic error in the handling of DWARF compilation units can result in an invalid offset_size value being used inside byte_get_little_endian, leading to an abort (SIGABRT). The issue was observed in binutils 2.44. A local attacker can trigger the crash by supplying a malicious input file. 2026-03-02T00:00:00.000Z 2026-04-14T14:40:00.000Z
msrc_cve-2025-69644 An issue was discovered in Binutils before 2.46. The objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed debug information. A logic flaw in the handling of DWARF location list headers can cause objdump to enter an unbounded loop and produce endless output until manually interrupted. This issue affects versions prior to the upstream fix and allows a local attacker to cause excessive resource consumption by supplying a malicious input file. 2026-03-02T00:00:00.000Z 2026-03-11T01:02:56.000Z
msrc_cve-2025-67030 CVE-2025-67030 2026-03-02T00:00:00.000Z 2026-04-01T01:57:06.000Z
msrc_cve-2025-66413 Git for Windows leaks NTLM hash when cloning from an attacker-controlled server 2026-03-02T00:00:00.000Z 2026-03-27T01:39:51.000Z
msrc_cve-2025-66215 OpenSC: Stack-buffer-overflow WRITE in card-oberthur 2026-03-02T00:00:00.000Z 2026-04-09T01:39:25.000Z
msrc_cve-2025-66038 OpenSC: `sc_compacttlv_find_tag` can return out-of-bounds pointers 2026-03-02T00:00:00.000Z 2026-04-14T14:43:34.000Z
msrc_cve-2025-66037 OpenSC: Out of Bounds vulnerability 2026-03-02T00:00:00.000Z 2026-04-09T01:39:31.000Z
msrc_cve-2025-49010 OpenSC: Stack-buffer-overflow WRITE in GET RESPONSE 2026-03-02T00:00:00.000Z 2026-04-14T14:43:29.000Z
msrc_cve-2025-13462 tarfile: Skip DIRTYPE normalization during GNU LONGNAME/LONGLINK handling 2026-03-02T00:00:00.000Z 2026-04-22T01:39:57.000Z
msrc_cve-2024-14027 xattr: switch to CLASS(fd) 2026-03-02T00:00:00.000Z 2026-03-11T14:36:33.000Z
msrc_cve-2006-10003 XML::Parser versions through 2.47 for Perl has an off-by-one heap buffer overflow in st_serial_stack 2026-03-02T00:00:00.000Z 2026-04-08T01:40:48.000Z
msrc_cve-2006-10002 XML::Parser versions through 2.47 for Perl could overflow the pre-allocated buffer size cause a heap corruption (double free or corruption) and crashes 2026-03-02T00:00:00.000Z 2026-03-20T01:04:46.000Z
msrc_cve-2026-26119 Windows Admin Center Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-02-17T08:00:00.000Z
msrc_cve-2026-24302 Azure Arc Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-04-10T07:00:00.000Z
msrc_cve-2026-24300 Azure Front Door Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-02-05T08:00:00.000Z
msrc_cve-2026-23655 Microsoft ACI Confidential Containers Information Disclosure Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21537 Microsoft Defender for Endpoint Linux Extension Remote Code Execution Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21535 Microsoft Teams Information Disclosure Vulnerability 2026-02-10T08:00:00.000Z 2026-02-19T08:00:00.000Z
msrc_cve-2026-21533 Windows Remote Desktop Services Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21532 Azure Function Information Disclosure Vulnerability 2026-02-10T08:00:00.000Z 2026-02-05T08:00:00.000Z
msrc_cve-2026-21531 Azure SDK for Python Remote Code Execution Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21529 Azure HDInsight Spoofing Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21528 Azure IoT Explorer Information Disclosure Vulnerability 2026-02-10T08:00:00.000Z 2026-02-19T08:00:00.000Z
msrc_cve-2026-21527 Microsoft Exchange Server Spoofing Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21525 Windows Remote Access Connection Manager Denial of Service Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21523 GitHub Copilot and Visual Studio Code Remote Code Execution Vulnerability 2026-02-10T08:00:00.000Z 2026-04-20T07:00:00.000Z
msrc_cve-2026-21522 Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21519 Desktop Window Manager Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21518 GitHub Copilot and Visual Studio Code Security Feature Bypass Vulnerability 2026-02-10T08:00:00.000Z 2026-04-01T07:00:00.000Z
msrc_cve-2026-21516 GitHub Copilot for Jetbrains Remote Code Execution Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
ID Description Published Updated
ncsc-2024-0253 Kwetsbaarheid verholpen in Adobe Photoshop 2024-06-13T13:31:15.643260Z 2024-06-13T13:31:15.643260Z
ncsc-2024-0252 Kwetsbaarheden verholpen in Microsoft Dynamics 2024-06-11T18:23:19.082621Z 2024-06-11T18:23:19.082621Z
ncsc-2024-0251 Kwetsbaarheden verholpen in Microsoft Office 2024-06-11T18:20:51.628241Z 2024-06-11T18:20:51.628241Z
ncsc-2024-0250 Kwetsbaarheden verholpen in Microsoft Visual Studio 2024-06-11T18:18:10.131111Z 2024-06-11T18:18:10.131111Z
ncsc-2024-0249 Kwetsbaarheden verholpen in Microsoft Azure 2024-06-11T18:15:29.806897Z 2024-06-11T18:15:29.806897Z
ncsc-2024-0248 Kwetsbaarheden verholpen in Microsoft Windows 2024-06-11T18:06:57.087085Z 2024-06-11T18:11:31.381556Z
ncsc-2024-0246 Kwetsbaarheden verholpen in Siemens producten 2024-06-11T13:29:25.912614Z 2024-06-11T13:29:25.912614Z
ncsc-2024-0247 Kwetsbaarheden verholpen in SAP producten 2024-06-11T12:37:09.525507Z 2024-06-11T12:37:09.525507Z
ncsc-2024-0245 Kwetsbaarheden verholpen in Trend Micro Apex One 2024-06-11T11:51:02.976099Z 2024-06-11T11:51:02.976099Z
ncsc-2024-0244 Kwetsbaarheden verholpen in Schneider Electric Sage RTU systemen 2024-06-11T11:33:48.933251Z 2024-06-11T11:33:48.933251Z
ncsc-2024-0243 Kwetsbaarheden verholpen in PHP 2024-06-10T07:02:05.106950Z 2024-06-10T07:02:05.106950Z
ncsc-2024-0242 Kwetsbaarheden verholpen in RoundCube Webmail 2024-06-07T11:01:13.397121Z 2024-06-07T11:01:13.397121Z
ncsc-2024-0241 Kwetsbaarheden verholpen in FortiNet FortiWebManager 2024-06-07T07:22:27.233971Z 2024-06-07T07:22:27.233971Z
ncsc-2024-0240 Kwetsbaarheden verholpen in Google Android en Samsung Mobile 2024-06-07T07:21:29.492650Z 2024-06-07T07:21:29.492650Z
ncsc-2024-0239 Kwetsbaarheden verholpen in Solarwinds Platform 2024-06-07T06:26:01.172456Z 2024-06-07T06:26:01.172456Z
ncsc-2024-0238 Kwetsbaarheid verholpen in Check Point VPN producten 2024-05-30T07:56:46.220112Z 2024-05-30T07:56:46.220112Z
ncsc-2024-0237 Kwetsbaarheden verholpen in GitLab Enterprise Edition en Community Edition 2024-05-27T11:26:30.888877Z 2024-05-27T11:26:30.888877Z
ncsc-2024-0236 Kwetsbaarheden verholpen in Ivanti Endpoint Manager 2024-05-27T07:11:10.705670Z 2024-06-14T09:37:49.413035Z
ncsc-2024-0235 Kwetsbaarheid verholpen in Google Chrome 2024-05-27T07:10:26.268379Z 2024-05-27T07:50:35.517237Z
ncsc-2024-0234 Kwetsbaarheid verholpen in Github Enterprise Server 2024-05-23T10:57:36.609416Z 2024-05-23T10:57:36.609416Z
ncsc-2024-0233 Kwetsbaarheden verholpen in Cisco producten 2024-05-23T10:56:24.310012Z 2024-05-23T10:56:24.310012Z
ncsc-2024-0232 Kwetsbaarheden verholpen in Veeam Backup Enterprise Manager 2024-05-22T11:42:48.155465Z 2024-06-11T11:33:12.845658Z
ncsc-2024-0231 Kwetsbaarheden verholpen in Atlassian producten 2024-05-22T11:13:07.693855Z 2024-05-22T11:13:07.693855Z
ncsc-2024-0230 Kwetsbaarheden verholpen in QNAP QTS en QTS Hero 2024-05-22T08:02:19.922765Z 2024-05-22T08:02:19.922765Z
ncsc-2024-0229 Kwetsbaarheid verholpen in QlikSense Enterprise 2024-05-22T05:33:44.910098Z 2024-05-22T05:33:44.910098Z
ncsc-2024-0228 Kwetsbaarheden verholpen in SAP producten 2024-05-17T11:28:01.264255Z 2024-05-17T11:28:01.264255Z
ncsc-2024-0227 Kwetsbaarheden verholpen in Adobe Illustrator 2024-05-16T12:59:04.595951Z 2024-05-16T12:59:04.595951Z
ncsc-2024-0226 Kwetsbaarheden verholpen in Adobe Animate 2024-05-16T12:55:49.361352Z 2024-05-16T12:55:49.361352Z
ncsc-2024-0225 Kwetsbaarheden verholpen in Adobe FrameMaker 2024-05-16T12:54:55.359838Z 2024-05-16T12:54:55.359838Z
ncsc-2024-0224 Kwetsbaarheid verholpen in Adobe Dreamweaver 2024-05-16T12:45:03.866353Z 2024-05-16T12:45:03.866353Z
ID Description Published Updated
ID Description Published Updated
opensuse-su-2025:15804-1 nvidia-open-driver-G07-signed-check-590.44.01-1.1 on GA media 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
opensuse-su-2025:15803-1 krb5-1.22.1-1.1 on GA media 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
opensuse-su-2025:15802-1 corepack24-24.11.1-2.1 on GA media 2025-12-08T00:00:00Z 2025-12-08T00:00:00Z
opensuse-su-2025:15801-1 libpng16-16-1.6.52-1.1 on GA media 2025-12-08T00:00:00Z 2025-12-08T00:00:00Z
opensuse-su-2025:15800-1 kdeconnect-kde-25.11.90-1.1 on GA media 2025-12-08T00:00:00Z 2025-12-08T00:00:00Z
opensuse-su-2025:15799-1 libwireshark19-4.6.2-1.1 on GA media 2025-12-05T00:00:00Z 2025-12-05T00:00:00Z
opensuse-su-2025:15798-1 rhino-1.7.15.1-1.1 on GA media 2025-12-05T00:00:00Z 2025-12-05T00:00:00Z
opensuse-su-2025:20143-1 Security update for git-bug 2025-12-04T13:08:26Z 2025-12-04T13:08:26Z
opensuse-su-2025:20138-1 Security update for act 2025-12-04T12:02:10Z 2025-12-04T12:02:10Z
opensuse-su-2025:15797-1 libpng12-0-1.2.59-4.1 on GA media 2025-12-04T00:00:00Z 2025-12-04T00:00:00Z
opensuse-su-2025:15796-1 go1.24-1.24.11-1.1 on GA media 2025-12-04T00:00:00Z 2025-12-04T00:00:00Z
opensuse-su-2025:20135-1 Security update for mozjs128 2025-12-03T20:41:04Z 2025-12-03T20:41:04Z
opensuse-su-2025:15795-1 go1.25-1.25.5-1.1 on GA media 2025-12-03T00:00:00Z 2025-12-03T00:00:00Z
opensuse-su-2025:15794-1 chromedriver-143.0.7499.40-2.1 on GA media 2025-12-03T00:00:00Z 2025-12-03T00:00:00Z
opensuse-su-2025:20133-1 Security update for python-cbor2 2025-12-02T13:51:41Z 2025-12-02T13:51:41Z
opensuse-su-2025:20132-1 Security update for strongswan 2025-12-02T13:11:59Z 2025-12-02T13:11:59Z
opensuse-su-2025:15793-1 gegl-0.4.64-3.1 on GA media 2025-12-02T00:00:00Z 2025-12-02T00:00:00Z
opensuse-su-2025:15792-1 python39-3.9.24-2.1 on GA media 2025-12-01T00:00:00Z 2025-12-01T00:00:00Z
opensuse-su-2025:15791-1 python315-3.15.0~a1-2.1 on GA media 2025-12-01T00:00:00Z 2025-12-01T00:00:00Z
opensuse-su-2025:15790-1 python-mistralclient-doc-6.1.0-1.1 on GA media 2025-12-01T00:00:00Z 2025-12-01T00:00:00Z
opensuse-su-2025:15789-1 libecpg6-18.1-1.1 on GA media 2025-12-01T00:00:00Z 2025-12-01T00:00:00Z
opensuse-su-2025:15788-1 lightdm-kde-greeter-6.0.5-1.1 on GA media 2025-12-01T00:00:00Z 2025-12-01T00:00:00Z
opensuse-su-2025:20125-1 Security update for java-17-openjdk 2025-11-28T10:27:02Z 2025-11-28T10:27:02Z
opensuse-su-2025:20123-1 Security update for java-21-openjdk 2025-11-28T09:35:08Z 2025-11-28T09:35:08Z
opensuse-su-2025:20122-1 Security update for openssh 2025-11-28T07:46:24Z 2025-11-28T07:46:24Z
opensuse-su-2025:15787-1 python311-salt-3006.0-52.1 on GA media 2025-11-28T00:00:00Z 2025-11-28T00:00:00Z
opensuse-su-2025:15786-1 postgresql17-17.7-1.1 on GA media 2025-11-28T00:00:00Z 2025-11-28T00:00:00Z
opensuse-su-2025:15785-1 postgresql16-16.11-1.1 on GA media 2025-11-28T00:00:00Z 2025-11-28T00:00:00Z
opensuse-su-2025:15784-1 postgresql15-15.15-1.1 on GA media 2025-11-28T00:00:00Z 2025-11-28T00:00:00Z
opensuse-su-2025:15783-1 postgresql14-14.20-1.1 on GA media 2025-11-28T00:00:00Z 2025-11-28T00:00:00Z
ID Description Published Updated
ID Description Published Updated
rhsa-2026:3360 Red Hat Security Advisory: kernel security update 2026-02-25T15:20:23+00:00 2026-04-01T19:46:48+00:00
rhsa-2026:2975 Red Hat Security Advisory: OpenShift Container Platform 4.18.34 packages and security update 2026-02-25T14:43:11+00:00 2026-04-14T02:03:47+00:00
rhsa-2026:3359 Red Hat Security Advisory: python-pyasn1 security update 2026-02-25T14:42:21+00:00 2026-03-24T10:03:13+00:00
rhsa-2026:2976 Red Hat Security Advisory: OpenShift Container Platform 4.18.34 bug fix and security update 2026-02-25T14:33:46+00:00 2026-04-13T19:35:43+00:00
rhsa-2026:3358 Red Hat Security Advisory: kernel-rt security update 2026-02-25T14:18:41+00:00 2026-04-12T16:51:48+00:00
rhsa-2026:2977 Red Hat Security Advisory: OpenShift Container Platform 4.18.34 bug fix and security update 2026-02-25T14:09:54+00:00 2026-04-10T21:19:31+00:00
rhsa-2026:3354 Red Hat Security Advisory: python-pyasn1 security update 2026-02-25T13:16:46+00:00 2026-03-24T10:03:12+00:00
rhsa-2026:2978 Red Hat Security Advisory: OpenShift Container Platform 4.18.34 security and extras update 2026-02-25T13:07:00+00:00 2026-04-10T21:19:32+00:00
rhsa-2026:3340 Red Hat Security Advisory: skopeo security update 2026-02-25T12:16:20+00:00 2026-04-14T09:46:26+00:00
rhsa-2026:3341 Red Hat Security Advisory: containernetworking-plugins security update 2026-02-25T12:14:45+00:00 2026-04-14T09:46:26+00:00
rhsa-2026:3343 Red Hat Security Advisory: skopeo security update 2026-02-25T11:50:40+00:00 2026-04-14T09:46:26+00:00
rhsa-2026:3339 Red Hat Security Advisory: firefox security update 2026-02-25T11:48:30+00:00 2026-03-23T13:02:39+00:00
rhsa-2026:3337 Red Hat Security Advisory: podman security update 2026-02-25T11:48:26+00:00 2026-04-14T09:46:25+00:00
rhsa-2026:3338 Red Hat Security Advisory: firefox security update 2026-02-25T11:38:15+00:00 2026-03-23T13:02:30+00:00
rhsa-2026:3336 Red Hat Security Advisory: podman security update 2026-02-25T11:30:01+00:00 2026-04-14T09:46:25+00:00
rhsa-2026:3334 Red Hat Security Advisory: freerdp security update 2026-02-25T11:24:50+00:00 2026-03-18T03:18:51+00:00
rhsa-2026:3298 Red Hat Security Advisory: buildah security update 2026-02-25T09:32:15+00:00 2026-04-14T09:46:25+00:00
rhsa-2026:3297 Red Hat Security Advisory: buildah security update 2026-02-25T09:09:30+00:00 2026-04-14T09:46:25+00:00
rhsa-2026:3296 Red Hat Security Advisory: RHTAS - Tech Preview Release Of the Policy Controller Operator 2026-02-25T08:49:49+00:00 2026-04-14T09:46:25+00:00
rhsa-2026:3293 Red Hat Security Advisory: kernel security update 2026-02-25T08:08:24+00:00 2026-04-01T19:46:48+00:00
rhsa-2026:3291 Red Hat Security Advisory: runc security update 2026-02-25T07:41:04+00:00 2026-04-14T09:46:24+00:00
rhsa-2026:3289 Red Hat Security Advisory: opentelemetry-collector security update 2026-02-25T07:10:59+00:00 2026-04-14T09:46:24+00:00
rhsa-2026:3287 Red Hat Security Advisory: opentelemetry-collector security update 2026-02-25T07:05:39+00:00 2026-04-14T09:46:24+00:00
rhsa-2026:3288 Red Hat Security Advisory: opentelemetry-collector security update 2026-02-25T06:54:49+00:00 2026-04-14T09:46:24+00:00
rhsa-2026:3277 Red Hat Security Advisory: kernel security update 2026-02-25T04:10:15+00:00 2026-04-01T19:24:09+00:00
rhsa-2026:3275 Red Hat Security Advisory: kernel security update 2026-02-25T02:10:39+00:00 2026-04-13T05:43:40+00:00
rhsa-2026:3267 Red Hat Security Advisory: kernel security update 2026-02-25T00:28:18+00:00 2026-04-12T16:51:46+00:00
rhsa-2026:3268 Red Hat Security Advisory: kernel security update 2026-02-25T00:27:43+00:00 2026-04-01T19:46:46+00:00
rhsa-2026:3228 Red Hat Security Advisory: Cost Management Metrics Operator Update 2026-02-24T17:03:15+00:00 2026-04-13T16:00:21+00:00
rhsa-2026:3219 Red Hat Security Advisory: protobuf security update 2026-02-24T16:27:37+00:00 2026-04-13T19:35:40+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
suse-su-2026:0857-1 Security update for util-linux 2026-03-10T11:01:32Z 2026-03-10T11:01:32Z
suse-su-2026:20714-1 Security update for util-linux 2026-03-10T08:40:03Z 2026-03-10T08:40:03Z
suse-su-2026:0856-1 Security update for util-linux 2026-03-10T08:35:29Z 2026-03-10T08:35:29Z
suse-su-2026:0855-1 Security update for c3p0 and mchange-commons 2026-03-10T05:06:36Z 2026-03-10T05:06:36Z
suse-su-2026:0854-1 Security update for ImageMagick 2026-03-09T15:34:51Z 2026-03-09T15:34:51Z
suse-su-2026:0853-1 Security update for ImageMagick 2026-03-09T15:34:27Z 2026-03-09T15:34:27Z
suse-su-2026:0852-1 Security update for ImageMagick 2026-03-09T15:32:56Z 2026-03-09T15:32:56Z
suse-su-2026:0851-1 Security update for ImageMagick 2026-03-09T15:32:14Z 2026-03-09T15:32:14Z
suse-su-2026:20710-1 Security update for python311 2026-03-09T10:51:06Z 2026-03-09T10:51:06Z
suse-su-2026:20688-1 Security update for cockpit-podman 2026-03-09T10:46:42Z 2026-03-09T10:46:42Z
suse-su-2026:20659-1 Security update for zlib 2026-03-09T10:23:42Z 2026-03-09T10:23:42Z
suse-su-2026:0849-1 Security update for python-Flask 2026-03-09T10:13:40Z 2026-03-09T10:13:40Z
suse-su-2026:20709-1 Security update for zlib 2026-03-09T09:54:57Z 2026-03-09T09:54:57Z
suse-su-2026:0848-1 Security update for valkey 2026-03-07T18:18:45Z 2026-03-07T18:18:45Z
suse-su-2026:0847-1 Security update for libsoup 2026-03-07T01:34:36Z 2026-03-07T01:34:36Z
suse-su-2026:0846-1 Security update for python-Markdown 2026-03-06T17:04:39Z 2026-03-06T17:04:39Z
suse-su-2026:20682-1 Security update for ucode-intel 2026-03-06T13:29:07Z 2026-03-06T13:29:07Z
suse-su-2026:20708-1 Security update for gnutls 2026-03-06T12:11:09Z 2026-03-06T12:11:09Z
suse-su-2026:20707-1 Security update for libxslt, libxml2 2026-03-06T11:53:41Z 2026-03-06T11:53:41Z
suse-su-2026:20657-1 Security update for libxslt, libxml2 2026-03-06T11:37:27Z 2026-03-06T11:37:27Z
suse-su-2026:0840-1 Security update for grpc 2026-03-06T11:36:18Z 2026-03-06T11:36:18Z
suse-su-2026:20656-1 Security update for docker-compose 2026-03-06T11:34:20Z 2026-03-06T11:34:20Z
suse-su-2026:0838-1 Security update for python-tornado 2026-03-06T08:15:16Z 2026-03-06T08:15:16Z
suse-su-2026:0834-1 Security update for libsoup2 2026-03-05T20:00:24Z 2026-03-05T20:00:24Z
suse-su-2026:0833-1 Security update for libsoup 2026-03-05T19:55:51Z 2026-03-05T19:55:51Z
suse-su-2026:0832-1 Security update for qemu 2026-03-05T16:38:47Z 2026-03-05T16:38:47Z
suse-su-2026:20686-1 Security update for gstreamer-rtsp-server, gstreamer-plugins-ugly, gstreamer-plugins-rs, gstreamer-plugins-libav, gstreamer-plugins-good, gstreamer-plugins-base, gstreamer-plugins-bad, gstreamer-docs, gstreamer-devtools, gstreamer 2026-03-05T15:55:51Z 2026-03-05T15:55:51Z
suse-su-2026:0831-1 Security update for openvpn 2026-03-05T15:18:06Z 2026-03-05T15:18:06Z
suse-su-2026:0830-1 Security update for ocaml 2026-03-05T15:17:30Z 2026-03-05T15:17:30Z
suse-su-2026:0829-1 Security update for gnutls 2026-03-05T15:17:09Z 2026-03-05T15:17:09Z
ID Description Published Updated
alsa-2025:14009 Important: kernel security update 2025-08-18T00:00:00Z 2025-09-04T09:42:53Z
alsa-2025:13962 Important: kernel security update 2025-08-18T00:00:00Z 2025-08-22T07:58:21Z
alsa-2025:13961 Moderate: kernel-rt security update 2025-08-18T00:00:00Z 2025-08-18T11:25:42Z
alsa-2025:13960 Important: kernel security update 2025-08-18T00:00:00Z 2025-08-18T11:23:07Z
alsa-2025:13944 Important: openjpeg2 security update 2025-08-18T00:00:00Z 2025-08-18T11:07:28Z
alsa-2025:13941 Important: golang security update 2025-08-18T00:00:00Z 2025-09-29T09:40:10Z
alsa-2025:13940 Important: go-toolset:rhel8 security update 2025-08-18T00:00:00Z 2025-08-18T11:27:15Z
alsa-2025:13935 Important: golang security update 2025-08-18T00:00:00Z 2025-08-18T11:04:57Z
alsa-2025:13782 Important: webkit2gtk3 security update 2025-08-13T00:00:00Z 2025-08-14T13:28:02Z
alsa-2025:13780 Important: webkit2gtk3 security update 2025-08-13T00:00:00Z 2025-08-14T14:33:57Z
alsa-2025:13676 Important: thunderbird security update 2025-08-12T00:00:00Z 2025-08-13T12:22:12Z
alsa-2025:13674 Important: toolbox security update 2025-08-12T00:00:00Z 2025-08-14T14:36:21Z
alsa-2025:13673 Important: toolbox security update 2025-08-12T00:00:00Z 2025-08-12T14:16:36Z
alsa-2025:13604 Moderate: python-requests security update 2025-08-11T00:00:00Z 2025-08-11T19:21:12Z
alsa-2025:13602 Moderate: kernel security update 2025-08-11T00:00:00Z 2025-08-15T10:34:10Z
alsa-2025:13590 Moderate: kernel-rt security update 2025-08-11T00:00:00Z 2025-08-11T15:42:47Z
alsa-2025:13589 Moderate: kernel security update 2025-08-11T00:00:00Z 2025-08-11T15:39:13Z
alsa-2025:13578 Moderate: python3.11-setuptools security update 2025-08-11T00:00:00Z 2025-08-12T14:18:32Z
alsa-2025:13429 Moderate: libxml2 security update 2025-08-07T00:00:00Z 2025-08-07T22:17:37Z
alsa-2025:13428 Moderate: libxml2 security update 2025-08-07T00:00:00Z 2025-08-07T21:44:30Z
alsa-2025:13315 Moderate: gdk-pixbuf2 security update 2025-08-07T00:00:00Z 2025-08-07T09:27:11Z
alsa-2025:13240 Moderate: glibc security update 2025-08-06T00:00:00Z 2025-08-07T10:23:27Z
alsa-2025:13234 Moderate: python-requests security update 2025-08-06T00:00:00Z 2025-08-06T15:03:44Z
alsa-2025:13203 Moderate: libxml2 security update 2025-08-06T00:00:00Z 2025-08-06T15:05:54Z
alsa-2025:12980 Moderate: glibc security update 2025-08-05T00:00:00Z 2025-08-06T14:24:57Z
alsa-2025:12850 Moderate: opentelemetry-collector security update 2025-08-05T00:00:00Z 2025-08-07T10:25:17Z
alsa-2025:12834 Moderate: python3.12-setuptools security update 2025-08-05T00:00:00Z 2025-08-06T05:36:51Z
alsa-2025:12831 Moderate: opentelemetry-collector security update 2025-08-05T00:00:00Z 2025-08-07T10:26:12Z
alsa-2025:12753 Important: kernel-rt security update 2025-08-04T00:00:00Z 2025-08-07T10:27:31Z
alsa-2025:12752 Important: kernel security update 2025-08-04T00:00:00Z 2025-08-07T10:29:22Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
osv-2023-1097 Security exception in com.puppycrawl.tools.checkstyle.JavaAstVisitor.getInnerBopAst 2023-11-01T13:00:52.071904Z 2023-11-01T13:00:52.072463Z
osv-2023-1095 Heap-use-after-free in zend_jit_trace_execute 2023-10-31T13:03:18.357724Z 2023-11-01T17:42:22.538231Z
osv-2023-1093 Stack-buffer-overflow in ndpi_handle_rule 2023-10-31T13:02:51.707592Z 2023-10-31T13:02:51.707857Z
osv-2023-1091 Heap-buffer-overflow in H5F_addr_decode 2023-10-31T13:01:22.289748Z 2025-03-18T00:45:36.194874Z
osv-2023-1088 Heap-buffer-overflow in arrow::Status arrow::Result<std::__1::unique_ptr<arrow::Buffer, std::__1::defaul 2023-10-30T13:03:09.754708Z 2023-11-29T14:16:28.700148Z
osv-2023-1079 Heap-buffer-overflow in Calc_Length 2023-10-28T13:02:49.535222Z 2023-11-02T14:24:53.849577Z
osv-2023-1075 Segv on unknown address in cleanup_live_vars 2023-10-27T13:01:43.631205Z 2023-11-04T18:09:50.793423Z
osv-2023-1073 Heap-buffer-overflow in H5D__scatter_mem 2023-10-27T13:00:49.296462Z 2026-01-13T04:40:23.305571Z
osv-2023-1072 UNKNOWN READ in igraph_strvector_set_len 2023-10-27T13:00:37.573999Z 2023-10-27T13:00:37.574322Z
osv-2023-1071 Heap-use-after-free in igraph_pajek_yyparse 2023-10-27T13:00:18.491498Z 2023-10-27T13:00:18.492768Z
osv-2023-1070 Segv on unknown address in igraph_strvector_set_len 2023-10-26T13:02:51.638597Z 2023-10-26T13:02:51.638896Z
osv-2023-1069 Heap-use-after-free in igraph_pajek_yyparse 2023-10-26T13:02:48.628038Z 2023-10-26T13:02:48.628308Z
osv-2023-1068 Heap-buffer-overflow in iasecc_parse_size 2023-10-26T13:02:23.112449Z 2023-10-26T13:02:23.112686Z
osv-2023-1063 Heap-double-free in dwg_free_object 2023-10-25T13:02:24.836979Z 2023-10-25T13:02:24.837236Z
osv-2023-1062 Heap-buffer-overflow in H5MM_xstrdup 2023-10-25T13:01:17.608747Z 2024-04-29T11:24:44.447081Z
osv-2023-1051 Heap-buffer-overflow in dwg_json_VPORT_private 2023-10-23T13:00:32.282560Z 2023-10-23T13:00:32.282807Z
osv-2023-1050 Heap-buffer-overflow in H5D__scatter_mem 2023-10-23T13:00:17.701572Z 2023-10-23T13:00:17.701814Z
osv-2023-1048 Heap-buffer-overflow in decode_preR13_entities 2023-10-22T13:01:31.381359Z 2023-10-22T13:01:31.381601Z
osv-2023-1033 Heap-buffer-overflow in Gfx::InputStreamer::read_u32 2023-10-20T13:00:25.024359Z 2023-10-20T13:00:25.024683Z
osv-2023-1024 Security exception in org.apache.poi.util.IOUtils.safelyAllocate 2023-10-17T13:03:34.273057Z 2023-10-17T13:03:34.273365Z
osv-2023-1016 Use-of-uninitialized-value in Render_Single_Pass 2023-10-14T13:02:55.073559Z 2023-10-14T13:02:55.074040Z
osv-2023-1014 Security exception in org.jsoup.parser.HtmlTreeBuilder.process 2023-10-14T13:02:26.762298Z 2023-10-14T13:02:26.762736Z
osv-2023-1012 Global-buffer-overflow in iusace_quantize_lines 2023-10-14T13:01:02.229783Z 2023-10-14T13:01:02.230173Z
osv-2023-1009 Security exception in net.jsign.bouncycastle.asn1.ASN1StreamParser.readVector 2023-10-13T13:00:25.417249Z 2023-10-13T13:00:25.417557Z
osv-2023-1008 Heap-use-after-free in gx_image_enum_begin 2023-10-12T13:03:53.274905Z 2023-10-12T13:03:53.275223Z
osv-2023-1004 Heap-buffer-overflow in ndpi_snprintf 2023-10-12T13:00:14.575456Z 2023-10-12T13:00:14.575776Z
osv-2023-1002 Heap-buffer-overflow in iasecc_parse_get_tlv 2023-10-11T13:02:47.831617Z 2023-10-11T13:02:47.831905Z
osv-2023-1001 Security exception in java.base/java.lang.String.repeat 2023-10-11T13:02:38.205441Z 2023-10-14T14:20:59.452689Z
osv-2023-1000 Heap-use-after-free in xmlParserPrintFileContextInternal 2023-10-11T13:01:01.023722Z 2023-10-11T13:01:01.024042Z
osv-2023-999 Heap-buffer-overflow in xmlParseCommentComplex 2023-10-10T13:03:42.825694Z 2023-10-10T13:03:42.827194Z
ID Description Published Updated
rustsec-2021-0143 kamadak-exif DoS with untrusted PNG data 2021-01-04T12:00:00Z 2022-09-08T10:52:02Z
rustsec-2021-0039 panic in user-provided `Endian` impl triggers double drop of T 2021-01-04T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2021-0011 EventList's From<EventList> conversions can double drop on panic. 2021-01-04T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2021-0002 interfaces2 is unmaintained, use interfaces instead 2021-01-04T12:00:00Z 2021-01-06T16:07:19Z
rustsec-2021-0001 XSS in mdBook's search page 2021-01-04T12:00:00Z 2021-10-19T22:14:35Z
rustsec-2021-0085 'Read' on uninitialized memory may cause UB 2021-01-03T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2021-0084 `Read` on uninitialized buffer can cause UB (impl of `ReadKVExt`) 2021-01-03T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2021-0012 Reading uninitialized memory can cause UB (`Deserializer::read_vec`) 2021-01-02T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2021-0008 reading on uninitialized buffer can cause UB (`impl<R> BufRead for GreedyAccessReader<R>`) 2021-01-02T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2021-0006 Exposes internally used raw pointer 2021-01-01T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2020-0154 InputStream::read_exact : `Read` on uninitialized buffer causes UB 2020-12-31T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2020-0153 `read` on uninitialized buffer may cause UB (bite::read::BiteReadExpandedExt::read_framed_max) 2020-12-31T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2020-0132 `FixedCapacityDequeLike::clone()` can cause dropping uninitialized memory 2020-12-31T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2020-0103 `impl Random` on arrays can lead to dropping uninitialized memory 2020-12-31T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2020-0155 `Read` on uninitialized buffer in `fill_buf()` and `read_up_to()` 2020-12-27T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2020-0143 Queues allow non-Send types to be sent to other threads, allowing data races 2020-12-25T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2020-0114 `Demuxer` can carry non-Send types across thread boundaries 2020-12-22T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2020-0109 stderr is unmaintained; use eprintln instead 2020-12-22T12:00:00Z 2021-01-20T19:29:04Z
rustsec-2020-0101 conquer-once's OnceCell lacks Send bound for its Sync trait. 2020-12-22T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2020-0105 Update unsound DrainFilter and RString::retain 2020-12-21T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2020-0108 Soundness issue: Input<R> can be misused to create data race to an object 2020-12-20T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2020-0095 difference is unmaintained 2020-12-20T12:00:00Z 2025-08-30T06:09:56Z
rustsec-2020-0106 Queues allow non-Send types to be sent to other threads, allowing data races 2020-12-19T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2020-0152 ImmediateIO and TransactionalIO can cause data races 2020-12-18T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2020-0129 ShmWriter allows sending non-Send type across threads 2020-12-18T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2020-0127 SyncRef's clone() and debug() allow data races 2020-12-18T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2020-0112 ButtplugFutureStateShared allows data race to (!Send|!Sync) objects 2020-12-18T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2020-0098 UsbContext trait did not require implementers to be Send and Sync. 2020-12-18T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2020-0150 RingBuffer can create multiple mutable references and cause data races 2020-12-17T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2020-0093 Async-h1 request smuggling possible with long unread bodies 2020-12-17T12:00:00Z 2023-06-13T13:10:24Z
ID Description Published Updated
bit-gitlab-2025-11990 Improper Handling of URL Encoding (Hex Encoding) in GitLab 2025-11-20T09:03:19.328Z 2025-11-20T09:06:46.640Z
bit-gitlab-2025-11865 Incorrect Authorization in GitLab 2025-11-20T09:03:10.744Z 2025-11-20T09:06:46.640Z
bit-moodle-2025-62401 Moodle: possible to bypass timer in timed assignments 2025-11-17T23:47:50.898Z 2025-11-18T00:06:24.423Z
bit-moodle-2025-62400 Moodle: hidden group names visible to event creators 2025-11-17T23:47:49.403Z 2025-11-18T00:06:24.423Z
bit-moodle-2025-62399 Moodle: password brute force risk when mobile/web services enabled 2025-11-17T23:47:47.926Z 2025-11-18T00:06:24.423Z
bit-moodle-2025-62398 Moodle: possible to bypass mfa 2025-11-17T23:47:46.528Z 2025-11-18T00:06:24.423Z
bit-moodle-2025-62397 Moodle: router produces json instead of 404 error for invalid course id 2025-11-17T23:47:45.012Z 2025-11-18T00:06:24.423Z
bit-moodle-2025-62396 Moodle: router (r.php) could expose application directories 2025-11-17T23:47:43.645Z 2025-11-18T00:06:24.423Z
bit-moodle-2025-62395 Moodle: external cohort search service leaks system cohort data 2025-11-17T23:47:42.131Z 2025-11-18T00:06:24.423Z
bit-moodle-2025-62394 Moodle: quiz notifications sent to suspended participants 2025-11-17T23:47:40.687Z 2025-11-18T00:06:24.423Z
bit-moodle-2025-62393 Moodle: course access permissions not properly checked in course_output_fragment_course_overview 2025-11-17T23:47:39.287Z 2025-11-18T00:06:24.423Z
bit-kibana-2025-37734 Kibana Origin Validation Error 2025-11-14T14:40:47.948Z 2025-11-14T15:09:14.122Z
bit-elk-2025-37734 Kibana Origin Validation Error 2025-11-14T14:38:05.480Z 2025-11-14T15:09:14.122Z
bit-parse-2025-64502 Parse Server allows public `explain` queries which may expose sensitive database performance information and schema details 2025-11-12T11:45:03.650Z 2026-01-08T18:07:34.629Z
bit-parse-2025-64430 Parse Server Vulnerable to Server-Side Request Forgery (SSRF) in File Upload via URI Format 2025-11-12T11:45:02.117Z 2026-03-13T12:55:29.610Z
bit-django-2025-64459 Potential SQL injection via _connector keyword argument in QuerySet and Q objects 2025-11-11T11:36:39.904Z 2025-11-11T12:05:08.739Z
bit-django-2025-64458 Potential denial-of-service vulnerability in HttpResponseRedirect and HttpResponsePermanentRedirect on Windows 2025-11-11T11:36:38.456Z 2025-11-11T12:05:08.739Z
bit-wildfly-2022-0866 2025-11-07T11:01:40.946Z 2025-11-07T11:28:28.483Z
bit-mlflow-2025-11201 MLflow Tracking Server Model Creation Directory Traversal Remote Code Execution Vulnerability 2025-11-07T10:57:31.684Z 2025-11-07T11:28:28.483Z
bit-redis-2025-62507 Redis: Bug in XACKDEL may lead to stack overflow and potential RCE 2025-11-07T08:49:33.083Z 2025-11-07T09:06:54.375Z
bit-keydb-2025-62507 Redis: Bug in XACKDEL may lead to stack overflow and potential RCE 2025-11-07T08:40:53.783Z 2025-11-07T09:06:54.375Z
bit-mastodon-2022-2166 Improper Restriction of Excessive Authentication Attempts in mastodon/mastodon 2025-11-06T15:08:22.357Z 2025-11-06T15:44:17.098Z
bit-gitlab-2025-11702 Missing Authorization in GitLab 2025-11-06T13:22:05.051Z 2025-11-06T13:25:46.476Z
bit-tomcat-2025-61795 Apache Tomcat: Delayed cleaning of multi-part upload temporary files may lead to DoS 2025-11-06T13:00:35.478Z 2026-03-20T09:47:33.381Z
bit-tomcat-2025-55754 Apache Tomcat: console manipulation via escape sequences in log messages 2025-11-06T13:00:33.572Z 2026-03-20T09:47:33.381Z
bit-tomcat-2025-55752 Apache Tomcat: Directory traversal via rewrite with possible RCE if PUT is enabled 2025-11-06T13:00:31.694Z 2026-03-20T13:43:29.174Z
bit-discourse-2025-61598 Discourse is missing Cache-Control response header on error responses 2025-11-06T12:59:31.285Z 2025-11-06T13:25:46.476Z
bit-golang-2025-61725 Excessive CPU consumption in ParseAddress in net/mail 2025-11-06T12:58:41.872Z 2025-12-10T12:06:24.101Z
bit-golang-2025-61724 Excessive CPU consumption in Reader.ReadResponse in net/textproto 2025-11-06T12:58:38.217Z 2025-11-06T13:25:46.476Z
bit-golang-2025-61723 Quadratic complexity when parsing some invalid inputs in encoding/pem 2025-11-06T12:58:34.335Z 2025-11-06T13:25:46.476Z
ID Description Published Updated
cleanstart-2026-sg80587 It was found that the cookie used for CSRF prevention in Keycloak was not unique to each session 2026-01-30T14:00:21.027172Z 2026-01-29T18:58:54Z
cleanstart-2026-bk59402 Moby is an open-source project created by Docker for software containerization 2026-01-30T14:00:20.262469Z 2026-01-29T18:58:54Z
cleanstart-2026-gy69323 Moby is an open-source project created by Docker for software containerization 2026-01-30T14:00:20.037168Z 2026-01-29T18:58:54Z
cleanstart-2026-mj64494 Redis is an open source, in-memory database that persists on disk 2026-01-30T13:59:20.370058Z 2026-01-29T18:58:54Z
cleanstart-2025-yj25356 Security fixes for CVE-2025-61729 applied in versions: 1.40.2-r0 2026-01-16T12:00:45.358320Z 2025-12-06T13:34:11Z
cleanstart-2025-jl63399 Security fixes for CVE-2025-61729 applied in versions: 0.20.2-r1 2026-01-16T12:00:43.312220Z 2025-12-06T13:34:11Z
cleanstart-2025-cn65903 Security fixes for GHSA-6v2p-p543-phr9, GHSA-qxp5-gwg8-xv66, GHSA-vvgc-356p-c3xw applied in versions: 1.5.0-r0, 1.7.0-r0 2026-01-16T12:00:42.667592Z 2025-09-29T13:20:40Z
cleanstart-2025-az51267 Security fixes for GHSA-qxp5-gwg8-xv66, GHSA-vvgc-356p-c3xw applied in versions: 1.7.0-r0 2026-01-16T12:00:40.997706Z 2025-09-29T13:20:59Z
cleanstart-2025-eu07511 Security fixes for CVE-2025-47912, CVE-2025-58183, CVE-2025-58185, CVE-2025-58186, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61729 applied in versions: 1.7.0-r0, 1.7.1-r0 2026-01-16T11:58:32.440192Z 2025-12-06T13:34:11Z
cleanstart-2025-us16386 Security fixes for GHSA-qxp5-gwg8-xv66, GHSA-vvgc-356p-c3xw applied in versions: 1.7.2-r0 2026-01-16T11:58:18.007779Z 2025-12-23T06:02:25Z
cleanstart-2025-ob44035 Security fixes for CVE-2025-61729, GHSA-f6x5-jh6r-wrfv, GHSA-j5w8-q4qc-rx2x applied in versions: 1.16.2-r2 2026-01-16T11:28:43.176297Z 2025-12-13T08:34:16Z
ID Description Published Updated
ID Description Updated
ID Description Published Updated
ID Description Published Updated
certfr-2025-avi-0842 Multiples vulnérabilités dans le noyau Linux de Red Hat 2025-10-03T00:00:00.000000 2025-10-03T00:00:00.000000
certfr-2025-avi-0841 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-10-03T00:00:00.000000 2025-10-03T00:00:00.000000
certfr-2025-avi-0840 Multiples vulnérabilités dans Zabbix 2025-10-03T00:00:00.000000 2025-10-03T00:00:00.000000
certfr-2025-avi-0839 Multiples vulnérabilités dans Microsoft Edge 2025-10-03T00:00:00.000000 2025-10-03T00:00:00.000000
certfr-2025-avi-0838 Multiples vulnérabilités dans les produits Splunk 2025-10-02T00:00:00.000000 2025-10-02T00:00:00.000000
certfr-2025-avi-0837 Multiples vulnérabilités dans Google Chrome 2025-10-02T00:00:00.000000 2025-10-02T00:00:00.000000
certfr-2025-avi-0836 Multiples vulnérabilités dans les produits Tenable 2025-10-01T00:00:00.000000 2025-10-01T00:00:00.000000
certfr-2025-avi-0835 Multiples vulnérabilités dans OpenSSL 2025-10-01T00:00:00.000000 2025-10-01T00:00:00.000000
certfr-2025-avi-0834 Multiples vulnérabilités dans Mozilla Firefox 2025-10-01T00:00:00.000000 2025-10-01T00:00:00.000000
certfr-2025-avi-0833 Multiples vulnérabilités dans Joomla! 2025-10-01T00:00:00.000000 2025-10-01T00:00:00.000000
certfr-2025-avi-0832 Multiples vulnérabilités dans les produits VMware 2025-09-30T00:00:00.000000 2025-09-30T00:00:00.000000
certfr-2025-avi-0831 Vulnérabilité dans les produits Apple 2025-09-30T00:00:00.000000 2025-09-30T00:00:00.000000
certfr-2025-avi-0830 Vulnérabilité dans Tenable Patch Management 2025-09-29T00:00:00.000000 2025-09-29T00:00:00.000000
certfr-2025-avi-0829 Vulnérabilité dans Apereo CAS 2025-09-29T00:00:00.000000 2025-09-29T00:00:00.000000
certfr-2025-avi-0828 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2025-09-26T00:00:00.000000 2025-09-26T00:00:00.000000
certfr-2025-avi-0827 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-09-26T00:00:00.000000 2025-09-26T00:00:00.000000
certfr-2025-avi-0826 Multiples vulnérabilités dans le noyau Linux de Red Hat 2025-09-26T00:00:00.000000 2025-09-26T00:00:00.000000
certfr-2025-avi-0825 Multiples vulnérabilités dans le noyau Linux de Debian 2025-09-26T00:00:00.000000 2025-09-26T00:00:00.000000
certfr-2025-avi-0824 Multiples vulnérabilités dans les produits FoxIT 2025-09-26T00:00:00.000000 2025-09-26T00:00:00.000000
certfr-2025-avi-0823 Vulnérabilité dans Liferay 2025-09-26T00:00:00.000000 2025-09-26T00:00:00.000000
certfr-2025-avi-0822 Multiples vulnérabilités dans Tenable Security Center 2025-09-26T00:00:00.000000 2025-09-26T00:00:00.000000
certfr-2025-avi-0821 Multiples vulnérabilités dans Microsoft Edge 2025-09-26T00:00:00.000000 2025-09-26T00:00:00.000000
certfr-2025-avi-0820 Multiples vulnérabilités dans GitLab 2025-09-26T00:00:00.000000 2025-09-26T00:00:00.000000
certfr-2025-avi-0819 Multiples vulnérabilités dans les produits Cisco 2025-09-25T00:00:00.000000 2025-09-25T00:00:00.000000
certfr-2025-avi-0818 Multiples vulnérabilités dans Cisco IOS et IOS XE 2025-09-25T00:00:00.000000 2025-09-25T00:00:00.000000
certfr-2025-avi-0817 Vulnérabilité dans Microsoft OmniParser 2025-09-25T00:00:00.000000 2025-09-25T00:00:00.000000
certfr-2025-avi-0816 Vulnérabilité dans StormShield Network Security 2025-09-25T00:00:00.000000 2025-09-25T00:00:00.000000
certfr-2025-avi-0815 Vulnérabilité dans Liferay 2025-09-24T00:00:00.000000 2025-09-24T00:00:00.000000
certfr-2025-avi-0814 Multiples vulnérabilités dans Google Chrome 2025-09-24T00:00:00.000000 2025-09-24T00:00:00.000000
certfr-2025-avi-0813 Vulnérabilité dans SolarWinds Web Help Desk 2025-09-23T00:00:00.000000 2025-09-23T00:00:00.000000
ID Description Published Updated
jvndb-2022-000048 L2Blocker Sensor setup screen vulnerable to authentication bypass 2022-06-24T14:21+09:00 2024-06-18T10:45+09:00
jvndb-2022-000047 web2py vulnerable to open redirect 2022-06-23T14:21+09:00 2024-06-18T10:48+09:00
jvndb-2022-000046 Gitlab vulnerable to server-side request forgery 2022-06-17T12:26+09:00 2024-06-20T15:39+09:00
jvndb-2022-001953 Growi vulnerable to weak password requirements 2022-06-15T17:47+09:00 2022-06-15T17:47+09:00
jvndb-2022-000045 FreeBSD vulnerable to denial-of-service (DoS) 2022-06-15T12:28+09:00 2024-06-13T16:31+09:00
jvndb-2022-000044 Cisco Catalyst 2940 Series Switches vulnerable to cross-site scripting 2022-06-14T13:46+09:00 2024-06-18T10:51+09:00
jvndb-2022-000043 SHIRASAGI vulnerable to cross-site scripting 2022-06-09T13:31+09:00 2024-06-18T11:13+09:00
jvndb-2022-001948 Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service 2022-06-03T12:17+09:00 2024-06-18T16:30+09:00
jvndb-2022-000042 T&D Data Server and THERMO RECORDER DATA SERVER contain a directory traversal vulnerability. 2022-06-01T16:12+09:00 2024-06-18T10:34+09:00
jvndb-2022-000041 WordPress Plugin "Modern Events Calendar Lite" vulnerable to cross-site scripting 2022-06-01T13:39+09:00 2024-06-18T10:42+09:00
jvndb-2022-000039 RevoWorks incomplete filtering of MS Office v4 macros 2022-05-27T16:09+09:00 2024-06-18T16:31+09:00
jvndb-2022-000040 Mobaoku-Auction & Flea Market App for iOS vulnerable to improper server certificate verification 2022-05-27T15:48+09:00 2024-06-18T11:06+09:00
jvndb-2022-001929 Multiple vulnerabilities in Fuji Electric V-SFT 2022-05-27T15:39+09:00 2024-06-18T13:44+09:00
jvndb-2022-001931 Multiple vulnerabilities in Fuji Electric V-SFT, V-Server and V-Server Lite 2022-05-27T15:37+09:00 2024-06-18T16:28+09:00
jvndb-2022-001923 Multiple vulnerabilities in CONTEC SolarView Compact 2022-05-27T15:28+09:00 2024-06-20T11:34+09:00
jvndb-2022-001809 Trend Micro Password Manager vulnerable to privilege escalation 2022-05-24T15:27+09:00 2024-06-18T17:52+09:00
jvndb-2022-000038 WordPress plugin "WP Statistics" vulnerable to cross-site scripting 2022-05-24T15:00+09:00 2024-06-18T15:41+09:00
jvndb-2022-000037 Spring Security OAuth (spring-security-oauth2) vulnerable to denial-of-service (DoS) 2022-05-20T17:04+09:00 2024-06-20T12:09+09:00
jvndb-2022-000036 Multiple vulnerabilities in Rakuten Casa 2022-05-19T15:13+09:00 2024-06-18T12:09+09:00
jvndb-2022-000035 Multiple vulnerabilities in Cybozu Garoon 2022-05-16T14:25+09:00 2024-06-17T16:34+09:00
jvndb-2022-000033 Strapi vulnerable to cross-site scripting 2022-05-13T16:45+09:00 2024-06-18T11:17+09:00
jvndb-2022-000034 EC-CUBE plugin "Easy Blog for EC-CUBE4" vulnerable to cross-site request forgery 2022-05-13T16:31+09:00 2024-06-18T12:13+09:00
jvndb-2022-001800 Installer of Trend Micro HouseCall for Home Networks may insecurely load Dynamic Link Libraries 2022-05-13T16:24+09:00 2022-05-13T16:24+09:00
jvndb-2022-001795 Command injection vulnerability in QNAP VioStar series NVR 2022-05-12T18:07+09:00 2024-06-20T11:31+09:00
jvndb-2022-000032 Installer of Trend Micro Password Manager may insecurely load Dynamic Link Libraries 2022-05-11T15:21+09:00 2024-06-18T17:46+09:00
jvndb-2022-000031 GENEREX RCCMD vulnerable to directory traversal 2022-05-10T15:47+09:00 2024-06-18T15:35+09:00
jvndb-2022-000030 Multiple vulnerabilities in Operation management interface of FUJITSU Network IPCOM 2022-05-09T15:02+09:00 2024-07-18T16:30+09:00
jvndb-2022-000029 KOYO Electronics Screen Creator Advance2 vulnerable to authentication bypass 2022-05-09T14:43+09:00 2024-06-19T16:03+09:00
jvndb-2022-000028 Multiple vulnerabilities in multiple MEIKYO ELECTRIC products 2022-05-09T14:31+09:00 2024-06-19T15:55+09:00
jvndb-2022-000027 Hammock AssetView missing authentication for critical functions 2022-04-22T13:53+09:00 2024-06-20T12:15+09:00
ID Description Published Updated
cnvd-2026-12562 D-Link DIR-600命令注入漏洞 2026-02-11 2026-03-04
cnvd-2026-11780 Huawei EMUI和Huawei HarmonyOS DFX模块越界写入漏洞 2026-02-11 2026-02-27
cnvd-2026-11779 Huawei EMUI和Huawei HarmonyOS文件系统模块越界写入漏洞 2026-02-11 2026-02-27
cnvd-2026-11765 Huawei HarmonyOS相机模块越界写入漏洞 2026-02-11 2026-02-26
cnvd-2026-11764 Huawei HarmonyOS图像模块缓冲区溢出漏洞 2026-02-11 2026-02-26
cnvd-2026-11763 Huawei HarmonyOS媒体子系统越界读取漏洞 2026-02-11 2026-02-26
cnvd-2026-11762 Huawei HarmonyOS相机模块类型混淆漏洞 2026-02-11 2026-02-26
cnvd-2026-11761 Huawei HarmonyOS HDC模块权限控制漏洞 2026-02-11 2026-02-26
cnvd-2026-11760 Huawei HarmonyOS窗口模块身份认证绕过漏洞 2026-02-11 2026-02-26
cnvd-2026-11749 Tenda TX9 goform/SetStaticRouteCfg文件缓冲区溢出漏洞 2026-02-11 2026-02-25
cnvd-2026-11748 WeKan存在未明漏洞(CNVD-2026-11748) 2026-02-11 2026-02-25
cnvd-2026-11747 WeKan存在未明漏洞 2026-02-11 2026-02-25
cnvd-2026-13293 OpenClaw信息泄露漏洞 2026-02-10 2026-03-11
cnvd-2026-13291 OpenClaw操作系统命令注入漏洞(CNVD-2026-13291) 2026-02-10 2026-03-11
cnvd-2026-12896 Apache Syncope代码问题漏洞 2026-02-10 2026-03-04
cnvd-2026-12895 Apache Syncope跨站脚本漏洞 2026-02-10 2026-03-04
cnvd-2026-12673 Cisco Meeting Management(CMM)代码问题漏洞 2026-02-06 2026-03-05
cnvd-2026-16669 TeamViewer DEX Client信息泄露漏洞(CNVD-2026-16669) 2026-02-05 2026-04-10
cnvd-2026-16664 TeamViewer DEX Client拒绝服务漏洞(CNVD-2026-16664) 2026-02-05 2026-04-10
cnvd-2026-16663 TeamViewer DEX Client信息泄露漏洞 2026-02-05 2026-04-10
cnvd-2026-16662 TeamViewer DEX Client存在未明漏洞(CNVD-2026-16662) 2026-02-05 2026-04-10
cnvd-2026-16661 TeamViewer DEX Client存在未明漏洞(CNVD-2026-16661) 2026-02-05 2026-04-10
cnvd-2026-16660 TeamViewer DEX Client拒绝服务漏洞 2026-02-05 2026-04-10
cnvd-2026-16659 TeamViewer DEX Client命令注入漏洞 2026-02-05 2026-04-10
cnvd-2026-16141 Delta Electronics DIAView存在未明漏洞 2026-02-05 2026-04-07
cnvd-2026-16140 Delta Electronics DIAView身份验证绕过漏洞 2026-02-05 2026-04-07
cnvd-2026-16139 Delta Electronics ASDA-Soft堆栈缓冲区溢出漏洞 2026-02-05 2026-04-07
cnvd-2026-14500 多款Apple产品信息泄露漏洞(CNVD-2026-14500) 2026-02-05 2026-03-23
cnvd-2026-14499 多款Apple产品越界读取漏洞(CNVD-2026-14499) 2026-02-05 2026-03-23
cnvd-2026-13289 OpenClaw存在未明漏洞 2026-02-05 2026-03-11
ID Description Published Updated
bdu:2026-00886 Уязвимость компонента fuse ядра операционной системы Linux, позволяющая нарушителю вызват… 28.01.2026 28.01.2026
bdu:2026-00885 Уязвимость микропрограммного обеспечения распределённых контроллеров Rockwell Automation … 28.01.2026 28.01.2026
bdu:2026-00884 Уязвимость сценария lib/NSSDropoff.php веб-приложения для передачи файлов ZendTo, позволя… 28.01.2026 28.01.2026
bdu:2026-00883 Уязвимость механизма настройки конфигурации фильтра MAC-адресов веб-интерфейса управления… 28.01.2026 28.01.2026
bdu:2026-00882 Уязвимость механизма аутентификации FortiCloud SSO операционных систем FortiOS, программн… 28.01.2026 28.01.2026
bdu:2026-00881 Уязвимость веб-интерфейса управления микропрограммного обеспечения беспроводных маршрутиз… 28.01.2026 28.01.2026
bdu:2026-00880 Уязвимость микропрограммного обеспечения распределённых контроллеров Rockwell Automation … 28.01.2026 28.01.2026
bdu:2026-00879 Уязвимость микропрограммного обеспечения распределённых контроллеров Rockwell Automation … 28.01.2026 28.01.2026
bdu:2026-00878 Уязвимость микропрограммного обеспечения распределённых контроллеров Rockwell Automation … 28.01.2026 28.01.2026
bdu:2026-00877 Уязвимость микропрограммного обеспечения распределённых контроллеров Rockwell Automation … 28.01.2026 28.01.2026
bdu:2026-00876 Уязвимость микропрограммного обеспечения распределённых контроллеров Rockwell Automation … 28.01.2026 28.01.2026
bdu:2026-00875 Уязвимость микропрограммного обеспечения распределённых контроллеров Rockwell Automation … 28.01.2026 28.01.2026
bdu:2026-00874 Уязвимость микропрограммного обеспечения распределённых контроллеров Rockwell Automation … 28.01.2026 28.01.2026
bdu:2026-00873 Уязвимость микропрограммного обеспечения распределённых контроллеров Rockwell Automation … 28.01.2026 28.01.2026
bdu:2026-00872 Уязвимость системы управления контейнерами и менеджера виртуальных машин Incus, связанная… 28.01.2026 28.01.2026
bdu:2026-00871 Уязвимость системы управления контейнерами и менеджера виртуальных машин Incus, связанная… 28.01.2026 28.01.2026
bdu:2026-00870 Уязвимость реализации протокола Real-Time Streaming Protocol (RTSP) микропрограммного обе… 28.01.2026 28.01.2026
bdu:2026-00869 Уязвимость микропрограммного обеспечения IP-камер Vivotek IP7137, связанная с использован… 28.01.2026 28.01.2026
bdu:2026-00868 Уязвимость микропрограммного обеспечения IP-камер Vivotek IP7137, связанная с неверным ог… 28.01.2026 28.01.2026
bdu:2026-00867 Уязвимость сценария /cgi-bin/admin/setparam.cgi микропрограммного обеспечения IP-камер Vi… 28.01.2026 28.01.2026
bdu:2026-00854 Уязвимость микропрограммного обеспечения сетевых шлюзов TP-Link Omada, связанная с исполь… 27.01.2026 27.01.2026
bdu:2026-00853 Уязвимость функции setWizardCfg() компонента POST Request Handler микропрограммного обесп… 27.01.2026 27.01.2026
bdu:2026-00852 Уязвимость функции setWanCfg() компонента POST Request Handler микропрограммного обеспече… 27.01.2026 27.01.2026
bdu:2026-00851 Уязвимость функции fromGetWifiGuestBasic() микропрограммного обеспечения маршрутизаторов … 27.01.2026 27.01.2026
bdu:2026-00850 Уязвимость компонента Camera микропрограммного обеспечения процессоров Samsung Exynos 133… 27.01.2026 27.01.2026
bdu:2026-00849 Уязвимость программного обеспечения обнаружения и реагирования на угрозы Sangfor Endpoint… 27.01.2026 27.01.2026
bdu:2026-00848 Уязвимость службы развертывания и управления Azure Resource Manager программной платформы… 27.01.2026 27.01.2026
bdu:2026-00847 Уязвимость облачной службы Azure Front Door программной платформы Microsoft Azure, позвол… 27.01.2026 27.01.2026
bdu:2026-00846 Уязвимость учетной записи Microsoft, связанная с непринятием мер по защите структуры веб-… 27.01.2026 27.01.2026
bdu:2026-00845 Уязвимость компонента Core виртуальной машины Oracle VM VirtualBox, позволяющая нарушител… 27.01.2026 27.01.2026
ID Description Updated
var-201408-0082 Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP implementation in OpenSSL 1.… 2026-03-09T23:00:25.581000Z
var-200505-0310 The x-man-page: URI handler for Apple Terminal 1.4.4 in Mac OS X 10.3.9 does not cleanse … 2026-03-09T23:00:24.818000Z
var-200912-0743 Integer overflow in the U3D implementation in Adobe Reader and Acrobat 9.x before 9.3, an… 2026-03-09T22:59:52.713000Z
var-200505-1240 The rsvp_print function in tcpdump 3.9.1 and earlier allows remote attackers to cause a d… 2026-03-09T22:59:39.639000Z
var-202202-0114 xmlparse.c in Expat (aka libexpat) before 2.4.5 allows attackers to insert namespace-sepa… 2026-03-09T22:58:30.216000Z
var-200809-0194 VideoConference in Apple Mac OS X 10.4.11 and 10.5 through 10.5.4 allows remote attackers… 2026-03-09T22:57:24.484000Z
var-202002-0332 In Zsh before 5.8, attackers able to execute commands can regain privileges dropped by th… 2026-03-09T22:57:17.708000Z
var-201605-0494 Use-after-free vulnerability in the xmlDictComputeFastKey function in libxml2 before 2.9.… 2026-03-09T22:57:17.631000Z
var-201011-0042 Integer overflow in the Text::wholeText method in dom/Text.cpp in WebKit, as used in Appl… 2026-03-09T22:57:13.156000Z
var-200707-0577 Integer overflow in the StreamPredictor::StreamPredictor function in xpdf 3.02, as used i… 2026-03-09T22:56:38.842000Z
var-201310-0596 Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, a… 2026-03-09T22:56:37.300000Z
var-201912-1850 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2026-03-09T22:56:36.162000Z
var-202201-0369 Heap-based Buffer Overflow in GitHub repository vim prior to 8.2. Vim is an editor based … 2026-03-09T22:56:35.752000Z
var-201912-0643 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2026-03-09T22:56:09.489000Z
var-201912-0123 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2026-03-09T22:56:00.913000Z
var-200505-1436 zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users… 2026-03-09T22:55:24.089000Z
var-201512-0485 ssl/s3_clnt.c in OpenSSL 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1p, and 1.0.2 before 1.0.2… 2026-03-09T22:55:03.211000Z
var-201405-0244 The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x through 1.0.1g, when SSL_MODE_RELEA… 2026-03-09T22:54:06.283000Z
var-202006-0241 Incomplete cleanup from specific special register read operations in some Intel(R) Proces… 2026-03-09T22:54:04.744000Z
var-201203-0188 Use-after-free vulnerability in Google Chrome before 17.0.963.65 allows remote attackers … 2026-03-09T22:54:02.967000Z
var-202210-0043 The llhttp parser in the http module in Node v18.7.0 does not correctly handle header fie… 2026-03-09T22:54:01.908000Z
var-201310-0356 Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, J… 2026-03-09T22:54:00.924000Z
var-201912-0635 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2026-03-09T22:53:59.542000Z
var-201707-1192 An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari … 2026-03-09T22:53:58.691000Z
var-200106-0149 Buffer overflow in IPSwitch IMail SMTP server 6.06 and possibly prior versions allows rem… 2026-03-09T22:53:45.338000Z
var-201708-1547 The ntpd client in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers… 2026-03-09T22:53:37.691000Z
var-200901-0714 OpenSSL 0.9.8i and earlier does not properly check the return value from the EVP_VerifyFi… 2026-03-09T22:53:35.635000Z
var-201107-0156 Unspecified vulnerability in Oracle SPARC Enterprise M3000, M4000, M5000, M8000, and M900… 2026-03-09T22:53:30.978000Z
var-201804-1186 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari be… 2026-03-09T22:51:00.880000Z
var-200703-0011 Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows remote user-assisted at… 2026-03-09T22:51:00.025000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated