Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-1999-0855 |
N/A
|
Buffer overflow in FreeBSD gdc program. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:27.880Z |
| CVE-1999-0857 |
N/A
|
FreeBSD gdc program allows local users to modify … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.013Z |
| CVE-1999-0860 |
N/A
|
Solaris chkperm allows local users to read files … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.081Z |
| CVE-1999-0862 |
N/A
|
Insecure directory permissions in RPM distributio… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:28.690Z |
| CVE-1999-0863 |
N/A
|
Buffer overflow in FreeBSD seyon via HOME environ… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:27.903Z |
| CVE-1999-0872 |
N/A
|
Buffer overflow in Vixie cron allows local users … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.003Z |
| CVE-1999-0882 |
N/A
|
Falcon web server allows remote attackers to dete… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:28.974Z |
| CVE-1999-0885 |
N/A
|
Alibaba web server allows remote attackers to exe… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.319Z |
| CVE-1999-0910 |
N/A
|
Microsoft Site Server and Commercial Internet Sys… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.077Z |
| CVE-1999-0911 |
N/A
|
Buffer overflow in ProFTPD, wu-ftpd, and beroftpd… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:28.981Z |
| CVE-1999-0913 |
N/A
|
dfire.cgi script in Dragon-Fire IDS allows remote… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.074Z |
| CVE-1999-0919 |
N/A
|
A memory leak in a Motorola CableRouter allows re… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.037Z |
| CVE-1999-0925 |
N/A
|
UnityMail allows remote attackers to conduct a de… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:28.989Z |
| CVE-1999-0929 |
N/A
|
Novell NetWare with Novell-HTTP-Server or YAWN we… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.376Z |
| CVE-1999-0941 |
N/A
|
Mutt mail client allows a remote attacker to exec… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.349Z |
| CVE-1999-0944 |
N/A
|
IBM WebSphere ikeyman tool uses weak encryption t… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.355Z |
| CVE-1999-0948 |
N/A
|
Buffer overflow in uum program for Canna input sy… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.318Z |
| CVE-1999-0949 |
N/A
|
Buffer overflow in canuum program for Canna input… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.343Z |
| CVE-1999-0952 |
N/A
|
Buffer overflow in Solaris lpstat via class argum… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.195Z |
| CVE-1999-0970 |
N/A
|
The OmniHTTPD visadmin.exe program allows a remot… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.279Z |
| CVE-1999-0983 |
N/A
|
Whois Internic Lookup program whois.cgi allows re… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.387Z |
| CVE-1999-0984 |
N/A
|
Matt's Whois program whois.cgi allows remote atta… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.373Z |
| CVE-1999-0985 |
N/A
|
CC Whois program whois.cgi allows remote attacker… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.334Z |
| CVE-1999-0988 |
N/A
|
UnixWare pkgtrans allows local users to read arbi… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.416Z |
| CVE-1999-0990 |
N/A
|
Error messages generated by gdm with the VerboseA… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.404Z |
| CVE-1999-0993 |
N/A
|
Modifications to ACLs (Access Control Lists) in M… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.357Z |
| CVE-1999-1002 |
N/A
|
Netscape Navigator uses weak encryption for stori… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.351Z |
| CVE-1999-1003 |
N/A
|
War FTP Daemon 1.70 allows remote attackers to ca… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.348Z |
| CVE-1999-1006 |
N/A
|
Groupwise web server GWWEB.EXE allows remote atta… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.477Z |
| CVE-1999-1009 |
N/A
|
The Disney Go Express Search allows remote attack… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.504Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-1999-0655 |
N/A
|
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is not about any specific product, protocol, or design, so it is out of scope of CVE. Notes: the former description is: "A service may include useful information in its banner or help function (such as the name and version), making it useful for information gathering activities. | N/A | N/A | 2000-02-04T05:00:00 | 2001-12-09T10:00:00 |
| CVE-1999-0656 |
N/A
|
The ugidd RPC interface, by design, allows remote… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.159Z |
| CVE-1999-0657 |
N/A
|
WinGate is being used. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:36.982Z |
| CVE-1999-0658 |
N/A
|
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "DCOM is running. | N/A | N/A | 2000-02-04T05:00:00 | 2003-03-21T10:00:00 |
| CVE-1999-0659 |
N/A
|
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "A Windows NT Primary Domain Controller (PDC) or Backup Domain Controller (BDC) is present. | N/A | N/A | 2000-02-04T05:00:00 | 2003-03-21T10:00:00 |
| CVE-1999-0660 |
N/A
|
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is not about any specific product, protocol, or design, so it is out of scope of CVE. It might be more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "A hacker utility, back door, or Trojan Horse is installed on a system, e.g. NetBus, Back Orifice, Rootkit, etc. | N/A | N/A | 2000-02-04T05:00:00 | 2003-03-21T10:00:00 |
| CVE-1999-0661 |
N/A
|
A system is running a version of software that wa… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.297Z |
| CVE-1999-0662 |
N/A
|
A system-critical program or library does not hav… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.804Z |
| CVE-1999-0663 |
N/A
|
A system-critical program, library, or file has a… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.505Z |
| CVE-1999-0664 |
N/A
|
An application-critical Windows NT registry key h… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.583Z |
| CVE-1999-0665 |
N/A
|
An application-critical Windows NT registry key h… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.576Z |
| CVE-1999-0698 |
N/A
|
Denial of service in IP protocol logger (ippl) on… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.337Z |
| CVE-1999-1430 |
N/A
|
PIM software for Royal daVinci does not properly … |
n/a |
n/a |
2001-09-12T04:00:00 | 2024-08-01T17:11:03.233Z |
| CVE-1999-1440 |
N/A
|
Win32 ICQ 98a 1.30, and possibly other versions, … |
n/a |
n/a |
2001-09-12T04:00:00 | 2024-08-01T17:11:03.241Z |
| CVE-1999-1568 |
7.5 (3.1)
|
Off-by-one error in NcFTPd FTP server before 2.4.… |
n/a |
n/a |
2004-09-01T04:00:00 | 2025-01-16T17:40:42.694Z |
| CVE-1999-0402 |
N/A
|
wget 1.5.3 follows symlinks to change permissions… |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:34:52.088Z |
| CVE-1999-1170 |
N/A
|
IPswitch IMail allows local users to gain additio… |
n/a |
n/a |
2001-09-12T04:00:00 | 2024-08-01T17:02:53.755Z |
| CVE-1999-1422 |
N/A
|
The default configuration of Slackware 3.4, and p… |
n/a |
n/a |
2001-09-12T04:00:00 | 2024-08-01T17:11:03.263Z |
| CVE-2000-0005 |
N/A
|
HP-UX aserver program allows local users to gain … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T04:58:11.797Z |
| CVE-1999-0389 |
N/A
|
Buffer overflow in the bootp server in the Debian… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.901Z |
| CVE-1999-0914 |
N/A
|
Buffer overflow in the FTP client in the Debian G… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:28.965Z |
| CVE-2000-0054 |
N/A
|
search.cgi in the SolutionScripts Home Free packa… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:53.914Z |
| CVE-1999-0390 |
N/A
|
Buffer overflow in Dosemu Slang library in Linux. |
n/a |
n/a |
2000-03-22T05:00:00 | 2024-08-01T16:34:51.941Z |
| CVE-1999-0464 |
N/A
|
Local users can perform a denial of service in Tr… |
n/a |
n/a |
2000-06-02T04:00:00 | 2024-08-01T16:41:44.918Z |
| CVE-1999-0391 |
N/A
|
The cryptographic challenge of SMB authentication… |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:34:51.955Z |
| CVE-1999-0458 |
N/A
|
L0phtcrack 2.5 used temporary files in the system… |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:41:44.986Z |
| CVE-1999-1268 |
N/A
|
Vulnerability in KDE konsole allows local users t… |
n/a |
n/a |
2001-09-12T04:00:00 | 2024-08-01T17:11:01.695Z |
| CVE-1999-0442 |
N/A
|
Solaris ff.core allows local users to modify files. |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:41:44.889Z |
| CVE-1999-0392 |
N/A
|
Buffer overflow in Thomas Boutell's cgic library … |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:34:52.030Z |
| CVE-1999-0063 |
N/A
|
Cisco IOS 12.0 and other versions can be crashed … |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:27:57.325Z |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-whw7-h25v-9qvx |
|
Moderate severity vulnerability that affects org.apache.cxf.fediz:fediz-jetty8, org.apache.cxf.fedi… | 2018-10-18T16:56:38Z | 2020-06-16T22:00:38Z |
| ghsa-w3gh-g32m-cvhr |
|
High severity vulnerability that affects org.apache.cxf.fediz:fediz-jetty8, org.apache.cxf.fediz:fe… | 2018-10-18T16:56:47Z | 2020-06-16T21:59:21Z |
| ghsa-3357-829x-m9pr |
7.5 (3.1)
|
Apache CXF Fediz application plugins are vulnerable to Denial of Service (DoS) attacks | 2018-10-18T16:57:00Z | 2022-09-13T23:37:01Z |
| ghsa-qpwj-mvv7-v3m9 |
|
High severity vulnerability that affects org.apache.cxf.fediz:fediz-spring and org.apache.cxf.fediz… | 2018-10-18T16:57:10Z | 2020-06-16T21:52:31Z |
| ghsa-fv7x-4hpc-hf9f |
|
Moderate severity vulnerability that affects org.apache.cxf.fediz:fediz-spring, org.apache.cxf.fedi… | 2018-10-18T16:57:21Z | 2024-04-12T21:04:11Z |
| ghsa-683w-6h9j-57wq |
6.1 (3.1)
|
OWASP AntiSamy vulnerable to Cross-site Scripting | 2018-10-18T17:21:47Z | 2025-04-14T22:05:04Z |
| ghsa-q44v-xc3g-v7jq |
6.1 (3.1)
|
OWASP AntiSamy Cross-site Scripting vulnerability | 2018-10-18T17:22:11Z | 2022-11-17T19:41:38Z |
| ghsa-xv6v-72hh-g6g2 |
|
Moderate severity vulnerability that affects org.owasp.antisamy:antisamy | 2018-10-18T17:22:26Z | 2020-06-16T22:04:31Z |
| ghsa-xm6r-4466-mr74 |
9.8 (3.1)
|
OrientDB vulnerable to Improper Privilage Management leading to arbitrary command injection | 2018-10-18T17:40:56Z | 2024-02-20T16:27:15Z |
| ghsa-p8ww-vv84-c2rm |
8.8 (3.1)
|
OrientDB-Server vulnerable to Cross-Site Request Forgery | 2018-10-18T17:41:13Z | 2022-09-13T23:50:45Z |
| ghsa-v6wr-fch2-vm5w |
5.9 (3.1)
|
OrientDB Server Community Edition uses insufficiently random values to generate session IDs | 2018-10-18T17:41:27Z | 2023-09-12T14:43:49Z |
| ghsa-g4gg-9f62-jfph |
6.1 (3.1)
|
OrientDB Studio web management interface is vulnerable to clickjacking attacks | 2018-10-18T17:41:40Z | 2023-09-29T11:39:57Z |
| ghsa-h592-38cm-4ggp |
9.8 (3.1)
|
jackson-databind vulnerable to deserialization flaw leading to unauthenticated remote code execution | 2018-10-18T17:42:34Z | 2024-03-15T01:13:58Z |
| ghsa-rfx6-vp9g-rh7v |
9.8 (3.1)
|
jackson-databind vulnerable to remote code execution due to incorrect deserialization and blocklist… | 2018-10-18T17:42:48Z | 2024-03-01T21:35:57Z |
| ghsa-hmq6-frv3-4727 |
9.8 (3.1)
|
jackson-dataformat-xml vulnerable to XML external entity (XXE) | 2018-10-18T17:43:16Z | 2022-09-14T00:10:34Z |
| ghsa-7c2r-3jqf-c9rw |
8.6 (3.1)
|
jackson-dataformat-xml vulnerable to server side request forgery (SSRF) | 2018-10-18T17:43:28Z | 2022-09-14T00:19:56Z |
| ghsa-2j2x-hx4g-2gf4 |
7.4 (3.1)
|
In Bouncy Castle JCE Provider the DHIES implementation allowed the use of ECB mode | 2018-10-18T17:43:55Z | 2025-09-12T19:15:17Z |
| ghsa-9gp4-qrff-c648 |
5.9 (3.1)
|
Moderate severity vulnerability that affects org.bouncycastle:bcprov-jdk14 and org.bouncycastle:bcp… | 2018-10-18T18:04:13Z | 2025-09-12T19:16:12Z |
| ghsa-p8xr-4v2c-rvgp |
7.3 (3.1)
|
High severity vulnerability that affects org.apache.hbase:hbase | 2018-10-18T18:04:50Z | 2021-06-10T22:05:21Z |
| ghsa-r86j-2gc6-2cq9 |
8.1 (3.1)
|
Race condition in org.apache.hbase:hbase-thrift | 2018-10-18T18:05:02Z | 2024-03-04T23:31:45Z |
| ghsa-rrpm-pj7p-7j9q |
9.8 (3.1)
|
Spring Security OAuth vulnerable to remote code execution (RCE) | 2018-10-18T18:05:34Z | 2024-05-14T17:55:41Z |
| ghsa-m9jm-rhrm-gcxj |
4.7 (3.1)
|
Path traversal in org.springframework.integration:spring-integration-zip | 2018-10-18T18:05:46Z | 2024-04-12T21:30:34Z |
| ghsa-xx65-cc7g-9pfp |
5.9 (3.1)
|
Moderate severity vulnerability that affects org.springframework.boot:spring-boot | 2018-10-18T18:05:57Z | 2021-09-22T18:26:44Z |
| ghsa-w4g2-9hj6-5472 |
5.9 (3.1)
|
Moderate severity vulnerability that affects com.rabbitmq:amqp-client and org.springframework.amqp:… | 2018-10-18T18:06:08Z | 2021-09-20T22:35:57Z |
| ghsa-7q9c-h23x-65fq |
8.8 (3.1)
|
Spring Security OAuth vulnerable to remote code execution (RCE) via specially crafted request using… | 2018-10-18T18:06:22Z | 2024-05-14T17:39:04Z |
| ghsa-j77q-2qqg-6989 |
10.0 (3.1)
|
Apache Struts vulnerable to remote arbitrary command execution due to improper input validation | 2018-10-18T19:24:26Z | 2025-10-22T17:33:25Z |
| ghsa-cr6j-3jp9-rw65 |
8.1 (3.1)
|
Apache Struts vulnerable to remote command execution (RCE) due to improper input validation | 2018-10-18T19:24:38Z | 2025-10-22T17:29:40Z |
| ghsa-vgg8-72f2-qm23 |
9.8 (3.1)
|
Critical severity vulnerability that affects org.eclipse.jetty:jetty-server | 2018-10-19T16:15:34Z | 2021-06-10T20:19:49Z |
| ghsa-wfcc-pff6-rgc5 |
7.5 (3.1)
|
Jetty vulnerable to exposure of sensitive information due to observable discrepancy | 2018-10-19T16:15:46Z | 2023-08-15T20:33:37Z |
| ghsa-9rgv-h7x4-qw8g |
5.3 (3.1)
|
Eclipse Jetty Server generates error message containing sensitive information | 2018-10-19T16:15:56Z | 2023-08-18T16:47:12Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2019-118 |
|
In RPyC 4.1.x through 4.1.1, a remote attacker can dynamically modify object attributes t… | rpyc | 2019-10-03T20:15:00Z | 2020-08-24T17:37:00Z |
| pysec-2019-125 |
|
Valve Steam Client before 2019-09-12 allows placing or appending partially controlled fil… | steam | 2019-10-04T20:15:00Z | 2020-01-16T13:15:00Z |
| pysec-2019-110 |
|
An issue was discovered in Pillow before 6.2.0. When reading specially crafted invalid im… | pillow | 2019-10-04T22:15:00Z | 2020-02-18T16:15:00Z |
| pysec-2019-116 |
|
Uncontrolled deserialization of a pickled object in models.py in Frost Ming rediswrapper … | rediswrapper | 2019-10-05T23:15:00Z | 2019-12-09T19:06:00Z |
| pysec-2019-4 |
|
In Ansible, all Ansible Engine versions up to ansible-engine 2.8.5, ansible-engine 2.7.13… | ansible | 2019-10-08T19:15:00Z | 2021-03-26T22:15:00Z |
| pysec-2019-247 |
6.5 (3.1)
|
Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when cal… | exiv2 | 2019-10-09T19:15:00Z | 2024-11-21T14:22:49.656989Z |
| pysec-2019-183 |
|
Koji through 1.18.0 allows remote Directory Traversal, with resultant Privilege Escalation. | koji | 2019-10-09T22:15:00Z | 2021-08-27T03:22:05.900614Z |
| pysec-2019-151 |
|
send_email in graphite-web/webapp/graphite/composer/views.py in Graphite through 1.1.5 is… | graphite-web | 2019-10-11T23:15:00Z | 2021-07-05T00:01:21.806042Z |
| pysec-2019-241 |
9.8 (3.1)
|
GDAL through 3.0.1 has a poolDestroy double free in OGRExpatRealloc in ogr/ogr_expat.cpp … | gdal | 2019-10-14T02:15:00+00:00 | 2023-11-13T19:19:43.892449+00:00 |
| pysec-2019-171 |
|
A vulnerability was found in Ansible engine 2.x up to 2.8 and Ansible tower 3.x up to 3.5… | ansible | 2019-10-14T15:15:00Z | 2021-08-27T03:21:53.021460Z |
| pysec-2019-117 |
|
ReportLab through 3.5.26 allows remote code execution because of toColor(eval(arg)) in co… | reportlab | 2019-10-16T12:15:00Z | 2020-07-27T03:15:00Z |
| pysec-2019-213 |
|
The unoconv package before 0.9 mishandles untrusted pathnames, leading to SSRF and local … | unoconv | 2019-10-21T23:15:00Z | 2021-08-27T03:22:49.773623Z |
| pysec-2019-181 |
|
Python keyring lib before 0.10 created keyring files with world-readable permissions. | keyring | 2019-10-28T17:15:00Z | 2021-08-27T03:22:05.629168Z |
| pysec-2019-216 |
|
A malicious admin user could edit the state of objects in the Airflow metadata database t… | apache-airflow | 2019-10-30T22:15:00Z | 2021-11-16T03:58:43.222984Z |
| pysec-2019-157 |
|
Jupyter Notebook before 5.5.0 does not use a CSP header to treat served files as belongin… | notebook | 2019-10-31T15:15:00Z | 2021-07-15T02:22:16.244467Z |
| pysec-2019-176 |
|
python-docutils allows insecure usage of temporary files | docutils | 2019-10-31T16:15:00Z | 2021-08-27T03:42:08.729631Z |
| pysec-2019-156 |
|
The scipy.weave component in SciPy before 0.12.1 creates insecure temporary directories. | scipy | 2019-11-04T20:15:00Z | 2021-07-05T00:01:27.093286Z |
| pysec-2019-175 |
|
An eval() vulnerability exists in Python Software Foundation Djblets 0.7.21 and Beanbag R… | djblets | 2019-11-04T21:15:00Z | 2021-08-27T03:22:03.149747Z |
| pysec-2019-160 |
|
The mirroring support (-M, --use-mirrors) in Python Pip before 1.5 uses insecure DNS quer… | pip | 2019-11-05T22:15:00Z | 2021-07-15T02:22:17.687153Z |
| pysec-2019-253 |
7.4 (3.1)
|
Tahoe-LAFS 1.9.0 fails to ensure integrity which allows remote attackers to corrupt mutab… | tahoe-lafs | 2019-11-07T18:15:00Z | 2024-12-19T05:47:49.035329Z |
| pysec-2019-186 |
|
Matrix Synapse before 1.5.0 mishandles signature checking on some federation APIs. Events… | matrix-synapse | 2019-11-08T00:15:00Z | 2021-08-27T03:22:06.354909Z |
| pysec-2019-195 |
|
It was discovered that the C++ implementation (which underlies the R, Python and Ruby imp… | pyarrow | 2019-11-08T19:15:00Z | 2021-08-27T03:22:16.533972Z |
| pysec-2019-196 |
|
While investigating UBSAN errors in https://github.com/apache/arrow/pull/5365 it was disc… | pyarrow | 2019-11-08T19:15:00Z | 2021-08-27T03:22:16.568373Z |
| pysec-2019-41 |
|
psutil (aka python-psutil) through 5.6.5 can have a double free. This occurs because of r… | psutil | 2019-11-12T02:15:00Z | 2019-11-18T21:15:00Z |
| pysec-2019-212 |
|
Python Twisted 14.0 trustRoot is not respected in HTTP client | twisted | 2019-11-12T14:15:00Z | 2021-08-27T03:22:49.575116Z |
| pysec-2019-102 |
|
Eval injection in the Math plugin of Limnoria (before 2019.11.09) and Supybot (through 20… | limnoria | 2019-11-16T01:15:00Z | 2020-08-24T17:37:00Z |
| pysec-2019-211 |
|
trytond 2.4: ModelView.button fails to validate authorization | trytond | 2019-11-21T14:15:00Z | 2021-08-27T03:22:48.643Z |
| pysec-2019-202 |
|
python-rply before 0.7.4 insecurely creates temporary files. | rply | 2019-11-21T15:15:00Z | 2021-08-27T03:22:19.853413Z |
| pysec-2019-145 |
|
ansible-playbook -k and ansible cli tools, all versions 2.8.x before 2.8.4, all 2.7.x bef… | ansible | 2019-11-22T13:15:00Z | 2021-07-02T02:41:34.397311Z |
| pysec-2019-243 |
6.5 (3.1)
|
Designate does not enforce the DNS protocol limit concerning record set sizes | designate | 2019-11-22T15:15:00Z | 2024-11-25T22:09:33.909779Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2022-6455 | Malicious code in tempus-core-services (npm) | 2022-06-20T20:08:34Z | 2022-06-20T20:08:34Z |
| mal-2022-1999 | Malicious code in color2.0 (npm) | 2022-06-20T20:08:35Z | 2022-06-20T20:08:36Z |
| mal-2022-5305 | Malicious code in personn-colors (npm) | 2022-06-20T20:08:35Z | 2022-06-20T20:08:36Z |
| mal-2022-5444 | Malicious code in predictions (npm) | 2022-06-20T20:08:35Z | 2022-06-20T20:08:35Z |
| mal-2022-6445 | Malicious code in techdocs-cli-embedded-app (npm) | 2022-06-20T20:08:35Z | 2022-06-20T20:08:36Z |
| mal-2022-1009 | Malicious code in angular-rs-loading (npm) | 2022-06-20T20:08:36Z | 2022-06-20T20:08:38Z |
| mal-2022-2167 | Malicious code in construct-burst (npm) | 2022-06-20T20:08:36Z | 2022-06-20T20:08:37Z |
| mal-2022-5262 | Malicious code in pdfgrabber (npm) | 2022-06-20T20:08:36Z | 2022-06-20T20:08:37Z |
| mal-2022-6442 | Malicious code in teams-data (npm) | 2022-06-20T20:08:36Z | 2022-06-20T20:08:36Z |
| mal-2022-1083 | Malicious code in ardoq-sheet-load (npm) | 2022-06-20T20:08:37Z | 2022-06-20T20:08:38Z |
| mal-2022-2812 | Malicious code in eslint-plugin-coinbase (npm) | 2022-06-20T20:08:37Z | 2022-06-20T20:08:38Z |
| mal-2022-3599 | Malicious code in helloboy634 (npm) | 2022-06-20T20:08:37Z | 2022-06-20T20:08:39Z |
| mal-2022-4925 | Malicious code in nosoawesome232 (npm) | 2022-06-20T20:08:37Z | 2022-06-20T20:08:37Z |
| mal-2022-2431 | Malicious code in dependency-confusion-art-test (npm) | 2022-06-20T20:08:38Z | 2022-06-20T20:08:38Z |
| mal-2022-2432 | Malicious code in dependency-confusion-art-test2 (npm) | 2022-06-20T20:08:38Z | 2022-06-20T20:08:38Z |
| mal-2022-2564 | Malicious code in dontbelikethat (npm) | 2022-06-20T20:08:38Z | 2022-06-20T20:08:39Z |
| mal-2022-4441 | Malicious code in lznfjbhurpjsqmr (npm) | 2022-06-20T20:08:38Z | 2022-06-20T20:08:39Z |
| mal-2022-1845 | Malicious code in caurl (npm) | 2022-06-20T20:08:39Z | 2022-06-20T20:08:40Z |
| mal-2022-3098 | Malicious code in font-request (npm) | 2022-06-20T20:08:39Z | 2022-06-20T20:08:40Z |
| mal-2022-3349 | Malicious code in get-checksum (npm) | 2022-06-20T20:08:39Z | 2022-06-20T20:08:40Z |
| mal-2022-3538 | Malicious code in gxm-reference-web-auth-server (npm) | 2022-06-20T20:08:39Z | 2022-06-20T20:08:42Z |
| mal-2022-4269 | Malicious code in ldtzstxwzpntxqn (npm) | 2022-06-20T20:08:39Z | 2022-06-20T20:08:39Z |
| mal-2022-1055 | Malicious code in apm-synthtrace (npm) | 2022-06-20T20:08:40Z | 2022-06-20T20:08:41Z |
| mal-2022-5403 | Malicious code in polaris-shopify-com (npm) | 2022-06-20T20:08:40Z | 2022-06-20T20:08:40Z |
| mal-2022-6040 | Malicious code in setup-ruby (npm) | 2022-06-20T20:08:40Z | 2022-06-20T20:08:41Z |
| mal-2022-443 | Malicious code in @munters/calculations (npm) | 2022-06-20T20:08:41Z | 2022-06-20T20:08:42Z |
| mal-2022-4764 | Malicious code in myhood (npm) | 2022-06-20T20:08:41Z | 2022-06-20T20:08:41Z |
| mal-2022-5992 | Malicious code in seco-leveldown (npm) | 2022-06-20T20:08:41Z | 2022-06-20T20:08:41Z |
| mal-2022-6159 | Malicious code in slack-notifier-action (npm) | 2022-06-20T20:08:41Z | 2022-06-20T20:08:42Z |
| mal-2022-2014 | Malicious code in colors-dev (npm) | 2022-06-20T20:08:42Z | 2022-06-20T20:08:43Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2024-2037 | Perl: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen | 2020-11-19T23:00:00.000+00:00 | 2025-01-28T23:00:00.000+00:00 |
| wid-sec-w-2024-1036 | xpdf: Schwachstelle ermöglicht Denial of Service | 2020-11-22T23:00:00.000+00:00 | 2024-05-06T22:00:00.000+00:00 |
| wid-sec-w-2022-1911 | Red Hat JBoss Enterprise Application Platform: Schwachstelle ermöglicht SQL-Injection | 2020-11-23T23:00:00.000+00:00 | 2025-06-24T22:00:00.000+00:00 |
| wid-sec-w-2022-2241 | mutt: Schwachstelle ermöglicht Offenlegung von Informationen | 2020-11-23T23:00:00.000+00:00 | 2025-01-15T23:00:00.000+00:00 |
| wid-sec-w-2023-0005 | Cacti RRDtool: Schwachstelle ermöglicht Cross-Site Scripting | 2020-11-23T23:00:00.000+00:00 | 2023-01-01T23:00:00.000+00:00 |
| wid-sec-w-2022-1443 | Drupal: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2020-11-25T23:00:00.000+00:00 | 2024-09-03T22:00:00.000+00:00 |
| wid-sec-w-2022-1271 | QEMU: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen | 2020-11-29T23:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2023-2783 | Eclipse Jetty: Schwachstelle ermöglicht Manipulation | 2020-11-29T23:00:00.000+00:00 | 2024-05-16T22:00:00.000+00:00 |
| wid-sec-w-2022-1272 | QEMU: Schwachstelle ermöglicht Denial of Service | 2020-11-30T23:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2022-1273 | QEMU: Schwachstelle ermöglicht Denial of Service | 2020-12-01T23:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2023-0623 | ImageMagick: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2020-12-02T23:00:00.000+00:00 | 2023-03-12T23:00:00.000+00:00 |
| wid-sec-w-2023-2466 | Apache Tomcat: Schwachstelle ermöglicht Offenlegung von Informationen | 2020-12-03T23:00:00.000+00:00 | 2023-09-27T22:00:00.000+00:00 |
| wid-sec-w-2023-2947 | Docker und Kubernetes: Schwachstelle ermöglicht Privilegieneskalation | 2020-12-03T23:00:00.000+00:00 | 2025-10-12T22:00:00.000+00:00 |
| wid-sec-w-2022-1169 | GNU libc: Mehrere Schwachstellen | 2020-12-06T23:00:00.000+00:00 | 2024-03-05T23:00:00.000+00:00 |
| wid-sec-w-2023-0622 | ImageMagick: Mehrere Schwachstellen ermöglichen Denial of Service | 2020-12-06T23:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2023-0621 | ImageMagick: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Benutzerrechten | 2020-12-07T23:00:00.000+00:00 | 2024-08-05T22:00:00.000+00:00 |
| wid-sec-w-2022-0585 | OpenSSL: Schwachstelle ermöglicht Denial of Service | 2020-12-08T23:00:00.000+00:00 | 2025-10-20T22:00:00.000+00:00 |
| wid-sec-w-2022-1044 | TCP/IP Stack: Mehrere Schwachstellen | 2020-12-08T23:00:00.000+00:00 | 2023-07-27T22:00:00.000+00:00 |
| wid-sec-w-2023-2098 | cURL: Mehrere Schwachstellen | 2020-12-08T23:00:00.000+00:00 | 2024-04-10T22:00:00.000+00:00 |
| wid-sec-w-2024-2184 | Wireshark: Mehrere Schwachstellen | 2020-12-09T23:00:00.000+00:00 | 2024-09-18T22:00:00.000+00:00 |
| wid-sec-w-2022-1274 | QEMU: Schwachstelle ermöglicht Denial of Service | 2020-12-10T23:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2024-1420 | binutils: Mehrere Schwachstellen ermöglichen Denial of Service | 2020-12-10T23:00:00.000+00:00 | 2024-06-19T22:00:00.000+00:00 |
| wid-sec-w-2022-2387 | Google Android Patchday Dezember 2020 | 2020-12-15T23:00:00.000+00:00 | 2023-05-30T22:00:00.000+00:00 |
| wid-sec-w-2022-1853 | Icinga: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2020-12-17T23:00:00.000+00:00 | 2024-12-08T23:00:00.000+00:00 |
| wid-sec-w-2023-1546 | Roundcube: Schwachstelle ermöglicht Cross-Site Scripting | 2020-12-27T23:00:00.000+00:00 | 2023-06-22T22:00:00.000+00:00 |
| wid-sec-w-2024-1035 | xpdf: Schwachstelle ermöglicht Denial of Service | 2020-12-27T23:00:00.000+00:00 | 2024-05-06T22:00:00.000+00:00 |
| wid-sec-w-2022-1880 | OpenJPEG: Mehrere Schwachstellen ermöglichen Ausführen von beliebigem Programmcode mit Benutzerrechten | 2020-12-29T23:00:00.000+00:00 | 2023-03-15T23:00:00.000+00:00 |
| wid-sec-w-2024-1972 | QEMU: Schwachstelle ermöglicht Denial of Service | 2020-12-30T23:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2022-0206 | ffmpeg: Schwachstellen ermöglichen Codeausführung | 2021-01-03T23:00:00.000+00:00 | 2023-01-02T23:00:00.000+00:00 |
| wid-sec-w-2022-1000 | Node.js: Mehrere Schwachstellen | 2021-01-04T23:00:00.000+00:00 | 2025-06-19T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2006:0191 | Red Hat Security Advisory: kernel security update | 2006-02-01T17:57:00+00:00 | 2025-11-21T17:30:00+00:00 |
| rhsa-2006:0194 | Red Hat Security Advisory: gd security update | 2006-02-01T18:05:00+00:00 | 2025-11-21T17:30:00+00:00 |
| rhsa-2006:0200 | Red Hat Security Advisory: firefox security update | 2006-02-02T15:50:00+00:00 | 2025-11-21T17:30:01+00:00 |
| rhsa-2006:0207 | Red Hat Security Advisory: gnutls security update | 2006-02-10T21:43:00+00:00 | 2025-11-21T17:30:03+00:00 |
| rhsa-2006:0201 | Red Hat Security Advisory: xpdf security update | 2006-02-13T15:27:00+00:00 | 2025-11-21T17:30:01+00:00 |
| rhsa-2006:0206 | Red Hat Security Advisory: kdegraphics security update | 2006-02-13T15:31:00+00:00 | 2025-11-21T17:30:02+00:00 |
| rhsa-2006:0205 | Red Hat Security Advisory: libpng security update | 2006-02-13T15:35:00+00:00 | 2025-11-21T17:30:02+00:00 |
| rhsa-2006:0178 | Red Hat Security Advisory: ImageMagick security update | 2006-02-14T16:12:00+00:00 | 2025-11-21T17:29:58+00:00 |
| rhsa-2006:0195 | Red Hat Security Advisory: tar security update | 2006-02-21T14:35:00+00:00 | 2026-01-08T09:19:18+00:00 |
| rhsa-2006:0217 | Red Hat Security Advisory: metamail security update | 2006-02-21T14:38:00+00:00 | 2025-11-21T17:30:03+00:00 |
| rhsa-2006:0232 | Red Hat Security Advisory: tar security update | 2006-03-01T15:03:00+00:00 | 2025-11-21T17:30:04+00:00 |
| rhsa-2006:0129 | Red Hat Security Advisory: spamassassin security update | 2006-03-07T15:14:00+00:00 | 2025-11-21T17:29:52+00:00 |
| rhsa-2006:0044 | Red Hat Security Advisory: openssh security update | 2006-03-07T15:15:00+00:00 | 2025-11-21T17:29:55+00:00 |
| rhsa-2006:0016 | Red Hat Security Advisory: initscripts security update | 2006-03-07T15:16:00+00:00 | 2025-11-21T17:29:50+00:00 |
| rhsa-2006:0052 | Red Hat Security Advisory: squid security update | 2006-03-07T15:17:00+00:00 | 2025-11-21T17:29:51+00:00 |
| rhsa-2006:0132 | Red Hat Security Advisory: Updated kernel packages available for Red Hat Enterprise Linux 4 Update 3 | 2006-03-07T15:29:00+00:00 | 2025-11-21T17:29:53+00:00 |
| rhsa-2006:0161 | Red Hat Security Advisory: RHAPS security and enhancement update | 2006-03-07T20:30:00+00:00 | 2025-11-21T17:29:56+00:00 |
| rhsa-2006:0204 | Red Hat Security Advisory: mailman security update | 2006-03-07T20:44:00+00:00 | 2025-11-21T17:30:01+00:00 |
| rhsa-2006:0197 | Red Hat Security Advisory: python security update | 2006-03-09T20:45:00+00:00 | 2025-11-21T17:30:04+00:00 |
| rhsa-2006:0262 | Red Hat Security Advisory: kdegraphics security update | 2006-03-09T20:53:00+00:00 | 2025-11-21T17:30:04+00:00 |
| rhsa-2006:0144 | Red Hat Security Advisory: Updated kernel packages available for Red Hat Enterprise Linux 3 Update 7 | 2006-03-15T14:05:00+00:00 | 2025-11-21T17:29:54+00:00 |
| rhsa-2006:0117 | Red Hat Security Advisory: vixie-cron security update | 2006-03-15T14:06:00+00:00 | 2026-01-08T09:19:16+00:00 |
| rhsa-2006:0015 | Red Hat Security Advisory: initscripts security update | 2006-03-15T14:13:00+00:00 | 2025-11-21T17:29:53+00:00 |
| rhsa-2006:0045 | Red Hat Security Advisory: squid security update | 2006-03-15T14:14:00+00:00 | 2025-11-21T17:29:51+00:00 |
| rhsa-2006:0266 | Red Hat Security Advisory: gnupg security update | 2006-03-15T16:36:00+00:00 | 2025-11-21T17:30:06+00:00 |
| rhsa-2006:0268 | Red Hat Security Advisory: flash-plugin security update | 2006-03-15T22:43:00+00:00 | 2025-11-21T17:30:06+00:00 |
| rhsa-2006:0265 | Red Hat Security Advisory: sendmail security update | 2006-03-22T16:07:00+00:00 | 2025-11-21T17:30:06+00:00 |
| rhsa-2006:0264 | Red Hat Security Advisory: sendmail security update | 2006-03-22T16:14:00+00:00 | 2025-11-21T17:30:05+00:00 |
| rhsa-2006:0257 | Red Hat Security Advisory: RealPlayer security update | 2006-03-22T20:29:00+00:00 | 2025-11-21T17:30:04+00:00 |
| rhsa-2006:0271 | Red Hat Security Advisory: freeradius security update | 2006-04-04T08:51:00+00:00 | 2026-01-08T09:19:18+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-18-093-01 | ICSA-18-093-01 Siemens Building Technologies Products (Update A) | 2018-03-28T00:00:00.000000Z | 2018-04-03T00:00:00.000000Z |
| icsa-18-088-01 | WAGO 750 Series | 2018-03-29T00:00:00.000000Z | 2018-03-29T00:00:00.000000Z |
| icsa-18-095-02 | Moxa MXview | 2018-04-05T00:00:00.000000Z | 2018-04-05T00:00:00.000000Z |
| icsa-18-095-03 | LCDS - Leão Consultoria e Desenvolvimento de Sistemas Ltda ME LAquis SCADA | 2018-04-05T00:00:00.000000Z | 2018-04-05T00:00:00.000000Z |
| icsa-18-100-01 | ATI Systems Emergency Mass Notification Systems | 2018-04-10T00:00:00.000000Z | 2018-04-10T00:00:00.000000Z |
| icsa-18-100-02 | Omron CX-One | 2018-04-10T00:00:00.000000Z | 2018-04-10T00:00:00.000000Z |
| icsa-18-102-01 | Yokogawa CENTUM and Exaopc | 2018-04-12T00:00:00.000000Z | 2018-04-12T00:00:00.000000Z |
| icsa-18-102-02 | Rockwell Automation FactoryTalk Activation Manager (Update B) | 2018-04-12T00:00:00.000000Z | 2018-05-31T00:00:00.000000Z |
| icsa-18-107-01 | Schneider Electric InduSoft Web Studio and InTouch Machine Edition | 2018-04-17T00:00:00.000000Z | 2018-04-17T00:00:00.000000Z |
| icsa-18-107-03 | ICSA-18-107-03_Rockwell Automation Stratix Services Router | 2018-04-17T00:00:00.000000Z | 2018-04-17T00:00:00.000000Z |
| icsa-18-107-04 | Rockwell Automation Stratix and ArmorStratix Switches | 2018-04-17T00:00:00.000000Z | 2018-04-17T00:00:00.000000Z |
| icsa-18-107-05 | ICSA-18-107-05_Rockwell Automation Stratix Industrial Managed Ethernet Switch | 2018-04-17T00:00:00.000000Z | 2018-04-17T00:00:00.000000Z |
| icsma-18-107-01 | Abbott Laboratories Defibrillator | 2018-04-17T00:00:00.000000Z | 2018-04-17T00:00:00.000000Z |
| icsa-18-107-02 | Schneider Electric Triconex Tricon | 2018-04-17T06:00:00.000000Z | 2018-12-18T07:00:00.000000Z |
| icsa-18-109-01 | Siemens SIMATIC WinCC OA Operator IOS App (Update A) | 2018-04-19T00:00:00.000000Z | 2018-10-09T00:00:00.000000Z |
| icsa-18-114-01 | Vecna VGo Robot (Update A) | 2018-04-24T00:00:00.000000Z | 2018-10-30T00:00:00.000000Z |
| icsa-18-114-02 | Intel 2G Modem | 2018-04-24T00:00:00.000000Z | 2018-04-24T00:00:00.000000Z |
| icsa-18-114-03 | Advantech WebAccess HMI Designer | 2018-04-24T00:00:00.000000Z | 2018-04-24T00:00:00.000000Z |
| icsma-18-114-01 | BD Pyxis | 2018-04-24T00:00:00.000000Z | 2018-04-24T00:00:00.000000Z |
| icsa-18-116-01 | Delta Electronics PMSoft | 2018-04-26T00:00:00.000000Z | 2018-04-26T00:00:00.000000Z |
| icsa-18-116-02 | WECON Technology Co., Ltd. LeviStudio HMI Editor and PI Studio HMI Project Programmer | 2018-04-26T00:00:00.000000Z | 2018-04-26T00:00:00.000000Z |
| icsa-18-123-01 | Lantech IDS 2102 | 2018-05-03T00:00:00.000000Z | 2018-05-03T00:00:00.000000Z |
| icsa-18-128-01 | Siemens Medium Voltage SINAMICS Products (Update A) | 2018-05-03T00:00:00.000000Z | 2020-02-10T00:00:00.000000Z |
| icsa-18-128-02 | ICSA-18-128-02 Siemens Siveillance VMS (Update A) | 2018-05-03T00:00:00.000000Z | 2018-05-23T00:00:00.000000Z |
| icsa-18-128-03 | ICSA-18-128-03 Siemens Siveillance VMS Video Mobile App | 2018-05-03T00:00:00.000000Z | 2018-05-03T00:00:00.000000Z |
| icsma-18-123-01 | Philips Brilliance Computed Tomography (CT) System (Update A) | 2018-05-03T00:00:00.000000Z | 2019-10-10T00:00:00.000000Z |
| icsma-18-128-01 | Silex Technology SX-500/SD-320AN or GE Healthcare MobileLink (Update B) | 2018-05-08T00:00:00.000000Z | 2018-06-05T00:00:00.000000Z |
| icsa-18-130-01 | MatrikonOPC Explorer | 2018-05-10T00:00:00.000000Z | 2018-05-10T00:00:00.000000Z |
| icsa-18-130-02 | Rockwell Automation Arena | 2018-05-10T00:00:00.000000Z | 2018-05-10T00:00:00.000000Z |
| icsa-18-135-01 | Advantech WebAccess | 2018-05-15T00:00:00.000000Z | 2018-05-15T00:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-20190807-spa112-xss | Cisco SPA112 2-Port Phone Adapter Stored Cross-Site Scripting Vulnerability | 2019-08-07T16:00:00+00:00 | 2019-08-07T16:00:00+00:00 |
| cisco-sa-20190807-webex-player | Cisco Webex Network Recording Player and Cisco Webex Player Arbitrary Code Execution Vulnerabilities | 2019-08-07T16:00:00+00:00 | 2019-08-07T16:00:00+00:00 |
| cisco-sa-20190807-wms-oredirect | Cisco Webex Meetings Server Open Redirection Vulnerability | 2019-08-07T16:00:00+00:00 | 2019-08-07T16:00:00+00:00 |
| cisco-sa-20190813-bluetooth | Key Negotiation of Bluetooth Vulnerability | 2019-08-13T17:00:00+00:00 | 2019-08-21T14:14:09+00:00 |
| cisco-sa-20190816-ftd-http | Cisco Firepower Threat Defense Software HTTP Filtering Bypass Vulnerability | 2019-08-16T16:00:00+00:00 | 2019-08-16T16:00:00+00:00 |
| cisco-sa-20190816-ftd-nspd | Cisco Firepower Threat Defense Software Nonstandard Protocol Detection Bypass Vulnerability | 2019-08-16T16:00:00+00:00 | 2019-08-16T16:00:00+00:00 |
| cisco-sa-20190816-ftd-null | Cisco Firepower Threat Defense Software NULL Character Obfuscation Detection Bypass Vulnerability | 2019-08-16T16:00:00+00:00 | 2019-08-16T16:00:00+00:00 |
| cisco-sa-20190816-ftd-srb | Cisco Firepower Threat Defense Software Stream Reassembly Bypass Vulnerability | 2019-08-16T16:00:00+00:00 | 2019-08-16T16:00:00+00:00 |
| cisco-sa-20190821-ccx-xss | Cisco Unified Contact Center Express Stored Cross-Site Scripting Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| cisco-sa-20190821-cimc-cli-inject | Cisco Integrated Management Controller CLI Command Injection Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| cisco-sa-20190821-frpwr-td-info | Cisco Firepower Threat Defense Software Information Disclosure Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| cisco-sa-20190821-hyperflex-sslkey | Cisco HyperFlex Static SSL Key Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| cisco-sa-20190821-imc-bo | Cisco Integrated Management Controller Buffer Overflow Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| cisco-sa-20190821-imc-cmdinj-1850 | Cisco Integrated Management Controller Command Injection Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| cisco-sa-20190821-imc-cmdinj-1864 | Cisco Integrated Management Controller Command Injection Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| cisco-sa-20190821-imc-cmdinj-1865 | Cisco Integrated Management Controller Command Injection Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| cisco-sa-20190821-imc-cmdinject-1634 | Cisco Integrated Management Controller Command Injection Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| cisco-sa-20190821-imc-cmdinject-1896 | Cisco Integrated Management Controller CSR Generation Command Injection Vulnerability | 2019-08-21T16:00:00+00:00 | 2020-08-26T14:48:23+00:00 |
| cisco-sa-20190821-imc-dos | Cisco Integrated Management Controller Unauthenticated Denial of Service Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| cisco-sa-20190821-imc-infodisc | Cisco Integrated Management Controller Information Disclosure Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| cisco-sa-20190821-imc-privescal | Cisco Integrated Management Controller Substring Comparison Privilege Escalation Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| cisco-sa-20190821-imc-privilege | Cisco Integrated Management Controller Privilege Escalation Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| cisco-sa-20190821-imcs-ucs-authby | Cisco Integrated Management Controller Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data Authentication Bypass Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-30T12:30:29+00:00 |
| cisco-sa-20190821-imcs-ucs-authbypass | Cisco IMC Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data Authentication Bypass Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| cisco-sa-20190821-imcs-ucs-cmdinj | Cisco Integrated Management Controller Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data Command Injection Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-30T12:33:48+00:00 |
| cisco-sa-20190821-imcs-usercred | Cisco Integrated Management Controller Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data SCP User Default Credentials Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-30T12:38:58+00:00 |
| cisco-sa-20190821-iosxe-ngwc-csrf | Cisco IOS XE NGWC Legacy Wireless Device Manager GUI Cross-Site Request Forgery Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| cisco-sa-20190821-nfv-enumeration | Cisco Enterprise Network Functions Virtualization Infrastructure Software File Enumeration Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-09-11T19:15:20+00:00 |
| cisco-sa-20190821-nfv-filewrite | Cisco Enterprise Network Functions Virtualization Infrastructure Software Arbitrary File Write Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| cisco-sa-20190821-roomos-privesc | Cisco RoomOS Software Privilege Escalation Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2020-29369 | An issue was discovered in mm/mmap.c in the Linux kernel before 5.7.11. There is a race condition between certain expand functions (expand_downwards and expand_upwards) and page-table free operations from an munmap call aka CID-246c320a8cfe. | 2020-11-02T00:00:00.000Z | 2020-12-03T00:00:00.000Z |
| msrc_cve-2020-29370 | An issue was discovered in kmem_cache_alloc_bulk in mm/slub.c in the Linux kernel before 5.5.11. The slowpath lacks the required TID increment aka CID-fd4d9c7d0c71. | 2020-11-02T00:00:00.000Z | 2020-12-03T00:00:00.000Z |
| msrc_cve-2020-29371 | An issue was discovered in romfs_dev_read in fs/romfs/storage.c in the Linux kernel before 5.8.4. Uninitialized memory leaks to userspace aka CID-bcf85fcedfdd. | 2020-11-02T00:00:00.000Z | 2020-12-03T00:00:00.000Z |
| msrc_cve-2020-29372 | An issue was discovered in do_madvise in mm/madvise.c in the Linux kernel before 5.6.8. There is a race condition between coredump operations and the IORING_OP_MADVISE implementation aka CID-bc0c4d1e176e. | 2020-11-02T00:00:00.000Z | 2020-12-03T00:00:00.000Z |
| msrc_cve-2020-29373 | An issue was discovered in fs/io_uring.c in the Linux kernel before 5.6. It unsafely handles the root directory during path lookups and thus a process inside a mount namespace can escape to unintended filesystem locations aka CID-ff002b30181d. | 2020-11-02T00:00:00.000Z | 2020-12-03T00:00:00.000Z |
| msrc_cve-2020-29374 | An issue was discovered in the Linux kernel before 5.7.3 related to mm/gup.c and mm/huge_memory.c. The get_user_pages (aka gup) implementation when used for a copy-on-write page does not properly consider the semantics of read operations and therefore can grant unintended write access aka CID-17839856fd58. | 2020-11-02T00:00:00.000Z | 2020-12-03T00:00:00.000Z |
| msrc_cve-2020-8037 | ppp decapsulator can be convinced to allocate a large amount of memory | 2020-11-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-8277 | A Node.js application that allows an attacker to trigger a DNS request for a host of their choice could trigger a Denial of Service in versions < 15.2.1 < 14.15.1 and < 12.19.1 by getting the application to resolve a DNS record with a larger number of responses. This is fixed in 15.2.1 14.15.1 and 12.19.1. | 2020-11-02T00:00:00.000Z | 2021-03-09T00:00:00.000Z |
| msrc_cve-2020-14318 | A flaw was found in the way samba handled file and directory permissions. An authenticated user could use this flaw to gain access to certain file and directory information which otherwise would be unavailable to the attacker. | 2020-12-02T00:00:00.000Z | 2024-10-15T00:00:00.000Z |
| msrc_cve-2020-14351 | A flaw was found in the Linux kernel. A use-after-free memory flaw was found in the perf subsystem allowing a local attacker with permission to monitor perf events to corrupt memory and possibly escalate privileges. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | 2020-12-02T00:00:00.000Z | 2020-12-09T00:00:00.000Z |
| msrc_cve-2020-14381 | A flaw was found in the Linux kernel’s futex implementation. This flaw allows a local attacker to corrupt system memory or escalate their privileges when creating a futex on a filesystem that is about to be unmounted. The highest threat from this vulnerability is to confidentiality integrity as well as system availability. | 2020-12-02T00:00:00.000Z | 2020-12-09T00:00:00.000Z |
| msrc_cve-2020-14383 | A flaw was found in samba's DNS server. An authenticated user could use this flaw to the RPC server to crash. This RPC server which also serves protocols other than dnsserver will be restarted after a short delay but it is easy for an authenticated non administrative attacker to crash it again as soon as it returns. The Samba DNS server itself will continue to operate but many RPC services will not. | 2020-12-02T00:00:00.000Z | 2024-10-15T00:00:00.000Z |
| msrc_cve-2020-17527 | Apache Tomcat: Request header mix-up between HTTP/2 streams | 2020-12-02T00:00:00.000Z | 2025-10-01T23:11:04.000Z |
| msrc_cve-2020-25656 | A flaw was found in the Linux kernel. A use-after-free was found in the way the console subsystem was using ioctls KDGKBSENT and KDSKBSENT. A local user could use this flaw to get read memory access out of bounds. The highest threat from this vulnerability is to data confidentiality. | 2020-12-02T00:00:00.000Z | 2020-12-05T00:00:00.000Z |
| msrc_cve-2020-25692 | A NULL pointer dereference was found in OpenLDAP server and was fixed in openldap 2.4.55 during a request for renaming RDNs. An unauthenticated attacker could remotely crash the slapd process by sending a specially crafted request causing a Denial of Service. | 2020-12-02T00:00:00.000Z | 2020-12-09T00:00:00.000Z |
| msrc_cve-2020-25704 | A flaw memory leak in the Linux kernel performance monitoring subsystem was found in the way if using PERF_EVENT_IOC_SET_FILTER. A local user could use this flaw to starve the resources causing denial of service. | 2020-12-02T00:00:00.000Z | 2020-12-08T00:00:00.000Z |
| msrc_cve-2020-25723 | A reachable assertion issue was found in the USB EHCI emulation code of QEMU. It could occur while processing USB requests due to missing handling of DMA memory map failure. A malicious privileged user within the guest may abuse this flaw to send bogus USB requests and crash the QEMU process on the host resulting in a denial of service. | 2020-12-02T00:00:00.000Z | 2020-12-08T00:00:00.000Z |
| msrc_cve-2020-27534 | util/binfmt_misc/check.go in Builder in Docker Engine before 19.03.9 calls os.OpenFile with a potentially unsafe qemu-check temporary pathname constructed with an empty first argument in an ioutil.TempDir call. | 2020-12-02T00:00:00.000Z | 2021-07-16T00:00:00.000Z |
| msrc_cve-2020-27777 | A flaw was found in the way RTAS handled memory accesses in userspace to kernel communication. On a locked down (usually due to Secure Boot) guest system running on top of PowerVM or KVM hypervisors (pseries platform) a root like local user could use this flaw to further increase their privileges to that of a running kernel. | 2020-12-02T00:00:00.000Z | 2020-12-23T00:00:00.000Z |
| msrc_cve-2020-27780 | A flaw was found in Linux-Pam in versions prior to 1.5.1 in the way it handle empty passwords for non-existing users. When the user doesn't exist PAM try to authenticate with root and in the case of an empty password it successfully authenticate. | 2020-12-02T00:00:00.000Z | 2020-12-23T00:00:00.000Z |
| msrc_cve-2020-27783 | A XSS vulnerability was discovered in python-lxml's clean module. The module's parser didn't properly imitate browsers which caused different behaviors between the sanitizer and the user's page. A remote attacker could exploit this flaw to run arbitrary HTML/JS code. | 2020-12-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-27821 | A flaw was found in the memory management API of QEMU during the initialization of a memory region cache. This issue could lead to an out-of-bounds write access to the MSI-X table while performing MMIO operations. A guest user may abuse this flaw to crash the QEMU process on the host resulting in a denial of service. This flaw affects QEMU versions prior to 5.2.0. | 2020-12-02T00:00:00.000Z | 2020-12-11T00:00:00.000Z |
| msrc_cve-2020-28458 | All versions of package datatables.net are vulnerable to Prototype Pollution | 2020-12-02T00:00:00.000Z | 2024-11-23T00:00:00.000Z |
| msrc_cve-2020-28925 | Bolt before 3.7.2 does not restrict filter options in a Request in the Twig context, and is therefore inconsistent with the "How to Harden Your PHP for Better Security" guidance. | 2020-12-02T00:00:00.000Z | 2025-10-01T23:11:05.000Z |
| msrc_cve-2020-28935 | Local symlink attack in Unbound and NSD | 2020-12-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-29361 | An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocations in the p11-kit library and the p11-kit list command where overflow checks are missing before calling realloc or calloc. | 2020-12-02T00:00:00.000Z | 2020-12-19T00:00:00.000Z |
| msrc_cve-2020-29362 | An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit server/remote commands and the client library. When the remote entity supplies a byte array through a serialized PKCS#11 function call the receiving entity may allow the reading of up to 4 bytes of memory past the heap allocation. | 2020-12-02T00:00:00.000Z | 2020-12-24T00:00:00.000Z |
| msrc_cve-2020-29363 | An issue was discovered in p11-kit 0.23.6 through 0.23.21. A heap-based buffer overflow has been discovered in the RPC protocol used by p11-kit server/remote commands and the client library. When the remote entity supplies a serialized byte array in a CK_ATTRIBUTE the receiving entity may not allocate sufficient length for the buffer to store the deserialized value. | 2020-12-02T00:00:00.000Z | 2020-12-24T00:00:00.000Z |
| msrc_cve-2020-29396 | A sandboxing issue in Odoo Community 11.0 through 13.0 and Odoo Enterprise 11.0 through 13.0 when running with Python 3.6 or later allows remote authenticated users to execute arbitrary code leading to privilege escalation. | 2020-12-02T00:00:00.000Z | 2020-12-24T00:00:00.000Z |
| msrc_cve-2020-29509 | The encoding/xml package in Go (all versions) does not correctly preserve the semantics of attribute namespace prefixes during tokenization round-trips which allows an attacker to craft inputs that behave in conflicting ways during different stages of processing in affected downstream applications. | 2020-12-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202003-1817 | Tenda AC6 is a 1200M 11ac dual-band wireless router specifically designed for home users … | 2022-05-04T09:15:59.440000Z |
| var-202001-1980 | H3C S5120V2-SI switch is a Layer 2 Gigabit Ethernet switch product independently develope… | 2022-05-04T09:16:06.894000Z |
| var-202001-1959 | ZXR10 1800-2S is a router product of ZTE Corporation of China. ZTE ZXR10 1800-2S has fil… | 2022-05-04T09:16:06.909000Z |
| var-201912-2001 | Hangzhou Huasan Communication Technology Co., Ltd. (referred to as Huasan Communication),… | 2022-05-04T09:16:09.309000Z |
| var-201910-1857 | Hunan Santang Information Technology Co., Ltd. takes the IT operation and maintenance int… | 2022-05-04T09:16:12.651000Z |
| var-201908-2201 | Shenzhen Lucky Tenda Technology Co., Ltd. is one of the first pioneers in China's wireles… | 2022-05-04T09:16:18.817000Z |
| var-201907-1715 | Tenda D301 is a wireless router from China Tenda. There is a cross-site scripting vul… | 2022-05-04T09:16:23.773000Z |
| var-201905-1427 | Aviosoft DVD X Player Standard is a DVD player from Aviosoft, USA. Aviosoft DVD X Player… | 2022-05-04T09:16:27.676000Z |
| var-201903-1640 | ZTE Video Conference Terminal Weak Password Allows Initial Password Login | 2022-05-04T09:16:33.708000Z |
| var-201901-1702 | ShopsN single merchant b2c mall system is an open source online shop system developed usi… | 2022-05-04T09:16:36.215000Z |
| var-201811-1128 | The XM-JPE13-2R 960P is a high-definition night vision wireless intelligent surveillance … | 2022-05-04T09:16:41.438000Z |
| var-201811-0561 | A Insufficient Verification of Data Authenticity (CWE-345) vulnerability exists in the Mo… | 2022-05-04T09:16:42.065000Z |
| var-201810-1622 | Pelco Sarix Pro is a video surveillance device from Schneider Electric. Schneider Pelco … | 2022-05-04T09:16:42.709000Z |
| var-201810-1601 | LG Network Storage N1A1DD1 is a network storage product (NAS). A remote command executio… | 2022-05-04T09:16:42.721000Z |
| var-201809-1334 | The Fixon K2 (PSG1218) router is a new-generation wireless router necessary for entry-lev… | 2022-05-04T09:16:47.372000Z |
| var-201807-2273 | The D-LinkDIR-300 is a wireless router device. D-LinkDIR-300 has a cross-site request for… | 2022-05-04T09:16:49.850000Z |
| var-201806-1889 | Nagios is an open source free network monitoring tool that can effectively monitor the st… | 2022-05-04T09:16:59.347000Z |
| var-201804-1731 | Simo Smart DNS is a smart DNS device of Shanghai Simo Communication Technology Co., Ltd. … | 2022-05-04T09:17:02.164000Z |
| var-201803-2357 | The Play Library SDK is developed based on Dahua's proprietary stream encapsulation proto… | 2022-05-04T09:17:06.026000Z |
| var-201802-1414 | LFW800E is a gigabit intelligent firewall developed by Lenovo Tiangong Networks for netwo… | 2022-05-04T09:17:08.567000Z |
| var-201801-1852 | A cross-suite scripting vulnerability has been found in web functionality of Fujitsu Inte… | 2022-05-04T09:17:10.276000Z |
| var-201801-1831 | Intel AMT, the full name of INTEL Active Management Technology (Intel Active Management T… | 2022-05-04T09:17:10.289000Z |
| var-201709-1252 | Histream network cameras provide customers with complete network video surveillance produ… | 2022-05-04T09:17:19.112000Z |
| var-201708-1644 | The HG-100R is a router. There is a DNS hijacking vulnerability in the HUMAXWiFi router H… | 2022-05-04T09:17:23.626000Z |
| var-201706-1152 | A cross-site scripting vulnerability was found in uCosminexus Portal Framework, Groupmax … | 2022-05-04T09:17:30.548000Z |
| var-201706-1131 | Foscamcamera is a webcam that can push messages to mobile phones and directly implement v… | 2022-05-04T09:17:30.559000Z |
| var-201706-1110 | EnGenius is a Taiwanese wireless manufacturer brand. There is a remote command execution… | 2022-05-04T09:17:30.571000Z |
| var-201705-4200 | Buffalo is a router made by an American company. The Buffalo routing product has a gener… | 2022-05-04T09:17:31.900000Z |
| var-201703-1384 | Wireless IP Camera (P2P) WIFICAM is a wireless IP camera. Wireless IP Camera (P2P) W… | 2022-05-04T09:17:40.172000Z |
| var-201702-1105 | TP-Link is a Chinese network equipment manufacturer such as routers and IOT equipment. Th… | 2022-05-04T09:17:41.460000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2012-000084 | Cybozu KUNAI for Android vulnerable in the WebView class | 2012-09-07T16:40+09:00 | 2012-09-07T16:40+09:00 |
| jvndb-2012-000085 | KUNAI Browser for Remote Service beta vulnerable in the WebView class | 2012-09-13T13:51+09:00 | 2012-09-13T13:51+09:00 |
| jvndb-2012-000086 | Email Anti-virus (formerly WebShield SMTP) vulnerable to denial-of-service | 2012-09-20T12:31+09:00 | 2012-09-20T12:31+09:00 |
| jvndb-2012-000087 | myLittleAdmin for SQL Server 2000 vulnerable to arbitrary script execution | 2012-09-20T12:33+09:00 | 2012-09-20T12:33+09:00 |
| jvndb-2012-000089 | ATOK for Android issue in the access permissions for the learning information file | 2012-09-25T13:40+09:00 | 2012-09-25T13:40+09:00 |
| jvndb-2012-000090 | Trend Micro Control Manager vulnerable to SQL injection | 2012-09-27T12:43+09:00 | 2012-09-27T12:43+09:00 |
| jvndb-2012-000091 | jigbrowser+ for Android vulnerable in the WebView class | 2012-09-28T12:20+09:00 | 2012-09-28T12:20+09:00 |
| jvndb-2012-000092 | MyWebSearch vulnerable to cross-site scripting | 2012-10-05T16:49+09:00 | 2012-10-05T16:49+09:00 |
| jvndb-2012-000094 | Smarty vulnerable to cross-site scripting | 2012-10-10T14:45+09:00 | 2012-10-10T14:45+09:00 |
| jvndb-2012-000088 | Safari vulnerable to local file content disclosure | 2012-10-23T14:57+09:00 | 2012-10-23T14:57+09:00 |
| jvndb-2012-000093 | Tokyo BBS vulnerable to cross-site scripting | 2012-10-26T14:00+09:00 | 2012-10-26T14:00+09:00 |
| jvndb-2012-000095 | Mac OS X OpenSSH vulnerable to denial-of-service (DoS) | 2012-10-31T15:01+09:00 | 2012-10-31T15:01+09:00 |
| jvndb-2012-000096 | MosP kintai kanri fails to restrict access permissions | 2012-11-02T14:16+09:00 | 2012-11-02T14:16+09:00 |
| jvndb-2012-000097 | MosP kintai kanri vulnerable to authentication bypass | 2012-11-02T14:18+09:00 | 2012-11-02T14:18+09:00 |
| jvndb-2012-000098 | Pebble vulnerability where entries may become unviewable | 2012-11-02T14:20+09:00 | 2012-11-02T14:20+09:00 |
| jvndb-2012-000099 | Pebble vulnerable to HTTP header injection | 2012-11-02T14:21+09:00 | 2012-11-02T14:21+09:00 |
| jvndb-2012-000100 | Pebble vulnerable to open redirect | 2012-11-02T14:23+09:00 | 2012-11-02T14:23+09:00 |
| jvndb-2012-005201 | Multiple Vulnerabilities in Hitachi JP1/File Transmission Server/FTP | 2012-11-05T17:58+09:00 | 2012-11-26T18:01+09:00 |
| jvndb-2012-000101 | BeZIP vulnerable to directory traversal | 2012-11-07T16:01+09:00 | 2012-11-07T16:01+09:00 |
| jvndb-2012-000102 | Multiple Android devices vulnerable to denial-of-service (DoS) | 2012-11-14T15:07+09:00 | 2012-11-30T18:01+09:00 |
| jvndb-2012-000103 | Monaca Debugger for Android information management vulnerability | 2012-11-16T14:10+09:00 | 2012-11-16T14:10+09:00 |
| jvndb-2012-000104 | BIGACE vulnerable to session fixation | 2012-11-21T14:34+09:00 | 2012-11-21T14:34+09:00 |
| jvndb-2012-005485 | Hitachi Device Manager Software Denial of Service (DoS) Vulnerability | 2012-11-29T14:48+09:00 | 2012-11-29T14:48+09:00 |
| jvndb-2012-005486 | Denial of Service (DoS) Vulnerability in JP1/Automatic Job Management System 3 and JP1/Automatic Job Management System 2 | 2012-11-29T15:23+09:00 | 2012-11-29T15:23+09:00 |
| jvndb-2012-000105 | Multiple KYOCERA mobile devices may reboot during email reception | 2012-11-30T13:58+09:00 | 2012-11-30T13:58+09:00 |
| jvndb-2012-000106 | KENT-WEB ACCESS REPORT vulnerable to cross-site scripting | 2012-12-06T12:40+09:00 | 2012-12-06T12:40+09:00 |
| jvndb-2012-000107 | KENT-WEB ACCESS REPORT vulnerable to cross-site scripting | 2012-12-06T12:41+09:00 | 2012-12-06T12:41+09:00 |
| jvndb-2012-000108 | Welcart vulnerable to cross-site scripting | 2012-12-14T12:50+09:00 | 2012-12-14T12:50+09:00 |
| jvndb-2012-000109 | Welcart vulnerable to cross-site request forgery | 2012-12-14T12:52+09:00 | 2012-12-14T12:52+09:00 |
| jvndb-2012-000110 | WikkaWiki vulnerable to cross-site scripting | 2012-12-17T12:23+09:00 | 2012-12-17T12:23+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2016:1149-1 | Security update for freetype2 | 2016-04-25T15:38:39Z | 2016-04-25T15:38:39Z |
| suse-su-2016:1154-1 | Security update for xen | 2016-04-26T10:49:46Z | 2016-04-26T10:49:46Z |
| suse-su-2016:1159-1 | Security update for docker | 2016-04-26T12:32:54Z | 2016-04-26T12:32:54Z |
| suse-su-2016:1166-1 | Security update for php5 | 2016-04-27T14:46:35Z | 2016-04-27T14:46:35Z |
| suse-su-2016:1177-1 | Security update for ntp | 2016-04-28T13:45:26Z | 2016-04-28T13:45:26Z |
| suse-su-2016:1175-1 | Security update for ntp | 2016-04-28T13:46:02Z | 2016-04-28T13:46:02Z |
| suse-su-2016:1195-1 | Security update for python-tornado | 2016-05-02T13:01:41Z | 2016-05-02T13:01:41Z |
| suse-su-2016:1203-1 | Security update for the Linux Kernel | 2016-05-03T13:29:41Z | 2016-05-03T13:29:41Z |
| suse-su-2016:1204-1 | Security update for libxml2 | 2016-05-03T14:20:10Z | 2016-05-03T14:20:10Z |
| suse-su-2016:1205-1 | Security update for libxml2 | 2016-05-03T14:22:21Z | 2016-05-03T14:22:21Z |
| suse-su-2016:1206-1 | Security update for openssl1 | 2016-05-03T16:38:12Z | 2016-05-03T16:38:12Z |
| suse-su-2016:1228-1 | Security update for openssl | 2016-05-04T11:13:58Z | 2016-05-04T11:13:58Z |
| suse-su-2016:1232-1 | Security update for nginx-1.0 | 2016-05-04T12:28:17Z | 2016-05-04T12:28:17Z |
| suse-su-2016:1233-1 | Security update for openssl | 2016-05-04T12:34:59Z | 2016-05-04T12:34:59Z |
| suse-su-2016:1231-1 | Security update for compat-openssl097g | 2016-05-04T12:35:53Z | 2016-05-04T12:35:53Z |
| suse-su-2016:1248-1 | Security update for java-1_8_0-openjdk | 2016-05-06T07:49:19Z | 2016-05-06T07:49:19Z |
| suse-su-2016:1250-1 | Security update for java-1_7_0-openjdk | 2016-05-06T07:49:45Z | 2016-05-06T07:49:45Z |
| suse-su-2016:1249-1 | Security update for subversion | 2016-05-06T07:50:15Z | 2016-05-06T07:50:15Z |
| suse-su-2016:1247-1 | Security update for ntp | 2016-05-06T07:50:51Z | 2016-05-06T07:50:51Z |
| suse-su-2016:1258-1 | Security update for MozillaFirefox | 2016-05-06T14:49:27Z | 2016-05-06T14:49:27Z |
| suse-su-2016:1260-1 | Security update for ImageMagick | 2016-05-07T07:45:12Z | 2016-05-07T07:45:12Z |
| suse-su-2016:1259-1 | Security update for spice | 2016-05-07T07:47:04Z | 2016-05-07T07:47:04Z |
| suse-su-2016:1267-1 | Security update for compat-openssl098 | 2016-05-09T06:50:20Z | 2016-05-09T06:50:20Z |
| suse-su-2016:1276-1 | Security update for GraphicsMagick | 2016-05-11T11:49:10Z | 2016-05-11T11:49:10Z |
| suse-su-2016:1275-1 | Security update for ImageMagick | 2016-05-11T11:51:45Z | 2016-05-11T11:51:45Z |
| suse-su-2016:1278-1 | Security update for ntp | 2016-05-11T12:37:44Z | 2016-05-11T12:37:44Z |
| suse-su-2016:1277-1 | Security update for php5 | 2016-05-11T12:38:12Z | 2016-05-11T12:38:12Z |
| suse-su-2016:1279-1 | Security update for mysql | 2016-05-11T12:39:19Z | 2016-05-11T12:39:19Z |
| suse-su-2016:1290-1 | Security update for openssl | 2016-05-12T14:57:49Z | 2016-05-12T14:57:49Z |
| suse-su-2016:1291-1 | Security update for ntp | 2016-05-12T14:58:24Z | 2016-05-12T14:58:24Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2019:2418-1 | Security update for docker-runc | 2019-10-31T09:26:56Z | 2019-10-31T09:26:56Z |
| opensuse-su-2019:2420-1 | Security update for chromium, re2 | 2019-11-01T20:24:26Z | 2019-11-01T20:24:26Z |
| opensuse-su-2019:2421-1 | Security update for chromium | 2019-11-02T18:28:59Z | 2019-11-02T18:28:59Z |
| opensuse-su-2019:2424-1 | Security update for chromium, re2 | 2019-11-02T20:24:39Z | 2019-11-02T20:24:39Z |
| opensuse-su-2019:2425-1 | Security update for chromium, re2 | 2019-11-03T08:56:17Z | 2019-11-03T08:56:17Z |
| opensuse-su-2019:2426-1 | Security update for chromium | 2019-11-03T19:37:47Z | 2019-11-03T19:37:47Z |
| opensuse-su-2019:2427-1 | Security update for chromium | 2019-11-04T10:19:37Z | 2019-11-04T10:19:37Z |
| opensuse-su-2019:2432-1 | Security update for binutils | 2019-11-05T15:30:18Z | 2019-11-05T15:30:18Z |
| opensuse-su-2019:2434-1 | Security update for docker-runc | 2019-11-05T15:30:38Z | 2019-11-05T15:30:38Z |
| opensuse-su-2019:2435-1 | Security update for nfs-utils | 2019-11-05T15:30:45Z | 2019-11-05T15:30:45Z |
| opensuse-su-2019:2438-1 | Security update for python3 | 2019-11-05T15:31:23Z | 2019-11-05T15:31:23Z |
| opensuse-su-2019:2441-1 | Security update for php7 | 2019-11-05T15:32:04Z | 2019-11-05T15:32:04Z |
| opensuse-su-2019:2442-1 | Security update for samba | 2019-11-05T15:32:14Z | 2019-11-05T15:32:14Z |
| opensuse-su-2019:2444-1 | Security update for the Linux Kernel | 2019-11-05T17:28:40Z | 2019-11-05T17:28:40Z |
| opensuse-su-2019:2447-1 | Security update for chromium | 2019-11-06T17:25:26Z | 2019-11-06T17:25:26Z |
| opensuse-su-2019:2451-1 | Security update for MozillaFirefox, MozillaFirefox-branding-SLE | 2019-11-09T11:20:57Z | 2019-11-09T11:20:57Z |
| opensuse-su-2019:2452-1 | Recommended update for MozillaThunderbird | 2019-11-09T11:21:24Z | 2019-11-09T11:21:24Z |
| opensuse-su-2019:2453-1 | Security update for python3 | 2019-11-09T12:45:53Z | 2019-11-09T12:45:53Z |
| opensuse-su-2019:2454-1 | Security update for libtomcrypt | 2019-11-09T12:46:03Z | 2019-11-09T12:46:03Z |
| opensuse-su-2019:2457-1 | Security update for php7 | 2019-11-09T12:46:39Z | 2019-11-09T12:46:39Z |
| opensuse-su-2019:2458-1 | Security update for samba | 2019-11-09T12:46:49Z | 2019-11-09T12:46:49Z |
| opensuse-su-2019:2459-1 | Security update for MozillaFirefox, MozillaFirefox-branding-SLE | 2019-11-09T12:47:13Z | 2019-11-09T12:47:13Z |
| opensuse-su-2019:2464-1 | Recommended update for MozillaThunderbird | 2019-11-09T12:48:20Z | 2019-11-09T12:48:20Z |
| opensuse-su-2019:2466-1 | Security update for gdal | 2019-11-09T15:49:48Z | 2019-11-09T15:49:48Z |
| opensuse-su-2019:2472-1 | Security update for python-ecdsa | 2019-11-09T23:20:27Z | 2019-11-09T23:20:27Z |
| opensuse-su-2019:2474-1 | Security update for python-ecdsa | 2019-11-09T23:20:49Z | 2019-11-09T23:20:49Z |
| opensuse-su-2019:2477-1 | Recommended update for bcm20702a1-firmware | 2019-11-10T05:19:56Z | 2019-11-10T05:19:56Z |
| opensuse-su-2019:2483-1 | Security update for libssh2_org | 2019-11-11T13:22:11Z | 2019-11-11T13:22:11Z |
| opensuse-su-2019:2493-1 | Security update for gdb | 2019-11-12T19:12:57Z | 2019-11-12T19:12:57Z |
| opensuse-su-2019:2494-1 | Security update for gdb | 2019-11-12T19:13:11Z | 2019-11-12T19:13:11Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2015-00814 | 多个VMware产品存在远程权限提升漏洞 | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00815 | WordPress插件Pixabay Images任意文件写入漏洞(CNVD-2015-00815) | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00816 | osTicket跨站脚本漏洞 | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00817 | WordPress插件Pixabay Images任意文件写入漏洞(CNVD-2015-00817) | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00818 | vsftp存在未明漏洞 | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00819 | Google Chrome拒绝服务漏洞(CNVD-2015-00819) | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00820 | Google Chrome PDFium内存错误引用漏洞 | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00821 | Google Chrome uninstall-survey函数未授权访问漏洞 | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00822 | FreeBSD远程拒绝服务漏洞(CNVD-2015-00822) | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00823 | PHP 'process_nested_data'函数内存错误引用漏洞 | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00824 | IBM Dojo Toolkit存在多个跨站脚本漏洞 | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00825 | Cisco Prime Service Catalog拒绝服务漏洞 | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00826 | Pivotal Software management插件CRLF注入漏洞 | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00827 | 多个VMware产品存在拒绝服务漏洞 | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00828 | 多个VMware产品存在拒绝服务漏洞(CNVD-2015-00828) | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00829 | FreeBSD 'sys/dev/vt/vt_core.c'本地安全绕过漏洞 | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00830 | FreeBSD本地权限提升漏洞(CNVD-2015-00830) | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00831 | IBM TRIRIGA Application Platform安全绕过漏洞 | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00832 | IBM TRIRIGA Application Platform开放重定向漏洞 | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00833 | IBM TRIRIGA Application Platform存在多个跨站脚本漏洞 | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00834 | Adobe Flash Player双重释放远程代码执行漏洞 | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00835 | D-Link DSL-2740R Web界面身份验证绕过漏洞 | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00836 | Apple Mac OS X Gatekeeper Protection安全绕过漏洞 | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00837 | Apple TV样式表跨域加载漏洞 | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00848 | Apple TV和iOS企业签名应用安全绕过漏洞 | 2015-01-29 | 2015-02-04 |
| cnvd-2015-00849 | Apple iOS滚动栏边界处理UI伪造漏洞 | 2015-01-29 | 2015-02-04 |
| cnvd-2015-00861 | Apple TV和iOS应用程序安装处理安全绕过漏洞 | 2015-01-29 | 2015-02-04 |
| cnvd-2015-00869 | Apple TV和iOS mach_port_kobject内核接口信息泄露漏洞 | 2015-01-29 | 2015-02-04 |
| cnvd-2015-00870 | Apple iOS恶意站点Safari沙盒限制绕过漏洞 | 2015-01-29 | 2015-02-04 |
| cnvd-2015-00871 | Apple TV和iOS AFC符号链接漏洞 | 2015-01-29 | 2015-02-04 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2004-avi-048 | Vulnérabilités sur Trillian | 2004-02-26T00:00:00.000000 | 2004-02-26T00:00:00.000000 |
| certa-2004-avi-049 | Vulnérabilité dans nCipher | 2004-02-26T00:00:00.000000 | 2004-02-26T00:00:00.000000 |
| certa-2004-avi-050 | Vulnérabilité sur le module mod_python du serveur HTTP Apache | 2004-02-27T00:00:00.000000 | 2004-05-13T00:00:00.000000 |
| certa-2004-avi-051 | Vulnérabilité de la bibliothèque libxml2 | 2004-02-27T00:00:00.000000 | 2004-05-12T00:00:00.000000 |
| certa-2004-avi-052 | Vulnérabilité dans le navigateur Mozilla | 2004-02-27T00:00:00.000000 | 2004-03-01T00:00:00.000000 |
| certa-2004-avi-053 | Vulnérabilité des produits Proventia, BlackICE et RealSecure d'ISS | 2004-02-27T00:00:00.000000 | 2004-02-27T00:00:00.000000 |
| certa-2004-avi-054 | Vulnérabilité de la commande passwd sous Solaris | 2004-03-01T00:00:00.000000 | 2004-03-01T00:00:00.000000 |
| certa-2004-avi-055 | Vulnérabilité de la commande conv_fix de Solaris | 2004-03-01T00:00:00.000000 | 2004-03-01T00:00:00.000000 |
| certa-2004-avi-056 | Vulnérabilité de WinZip | 2004-03-01T00:00:00.000000 | 2004-03-16T00:00:00.000000 |
| certa-2004-avi-057 | Vulnérabilité sur jail_attach sous FreeBSD | 2004-03-01T00:00:00.000000 | 2004-03-01T00:00:00.000000 |
| certa-2004-avi-058 | Vulnérabilité des mtools sous Unix | 2004-03-01T00:00:00.000000 | 2004-03-01T00:00:00.000000 |
| certa-2004-avi-059 | Déni de service sous FreeBSD | 2004-03-03T00:00:00.000000 | 2004-03-03T00:00:00.000000 |
| certa-2004-avi-060 | Vulnérabilité sur Novell Client Firewall 2.x | 2004-03-03T00:00:00.000000 | 2004-03-03T00:00:00.000000 |
| certa-2004-avi-061 | Vulnérabilité de UUDeview | 2004-03-03T00:00:00.000000 | 2004-05-12T00:00:00.000000 |
| certa-2004-avi-062 | Vulnérabilité de Squid | 2004-03-03T00:00:00.000000 | 2004-05-12T00:00:00.000000 |
| certa-2004-avi-063 | Vulnérabilité dans Symantec Gateway Security | 2004-03-03T00:00:00.000000 | 2004-03-03T00:00:00.000000 |
| certa-2004-avi-064 | Vulnérabilité sur Proftpd | 2004-03-04T00:00:00.000000 | 2004-03-04T00:00:00.000000 |
| certa-2004-avi-065 | Vulnérabilité d'Adobe Acrobat Reader | 2004-03-04T00:00:00.000000 | 2004-03-11T00:00:00.000000 |
| certa-2004-avi-066 | Vulnérabilité dans le serveur WFTPD pour Windows | 2004-03-04T00:00:00.000000 | 2004-03-04T00:00:00.000000 |
| certa-2004-avi-067 | Déni de service des commutateurs Cisco CSS 11000 | 2004-03-05T00:00:00.000000 | 2004-03-05T00:00:00.000000 |
| certa-2004-avi-068 | Vulnérabilité sur les produits VPN NetScreen 5000 | 2004-03-05T00:00:00.000000 | 2004-03-05T00:00:00.000000 |
| certa-2004-avi-069 | Vulnérabilité de la commande passwd sur Sun | 2004-03-08T00:00:00.000000 | 2004-03-08T00:00:00.000000 |
| certa-2004-avi-070 | Vulnérabilité dans le gestionnaire de base de données IBM DB2 | 2004-03-10T00:00:00.000000 | 2004-03-10T00:00:00.000000 |
| certa-2004-avi-071 | Vulnérabilité dans Windows Media Services | 2004-03-10T00:00:00.000000 | 2004-03-10T00:00:00.000000 |
| certa-2004-avi-072 | Vulnérabilité dans Microsoft Outlook | 2004-03-10T00:00:00.000000 | 2004-03-10T00:00:00.000000 |
| certa-2004-avi-073 | Vulnérabilité dans Microsoft MSN Messenger | 2004-03-10T00:00:00.000000 | 2004-03-10T00:00:00.000000 |
| certa-2004-avi-074 | Vulnérabilités du serveur wu-ftpd | 2004-03-10T00:00:00.000000 | 2004-07-17T00:00:00.000000 |
| certa-2004-avi-075 | Vulnérabilité dans la pile TCP/IP de OpenBSD | 2004-03-10T00:00:00.000000 | 2004-03-10T00:00:00.000000 |
| certa-2004-avi-076 | Python 2.2 : Débordement de variable dans la gestion des réponses du DNS | 2004-03-10T00:00:00.000000 | 2004-09-03T00:00:00.000000 |
| certa-2004-avi-077 | Vulnérabilités de uucp sous Sun Solaris | 2004-03-11T00:00:00.000000 | 2004-03-11T00:00:00.000000 |