Recent vulnerabilities

Recent vulnerabilities from
Select from 69 available sources using the dropdown above.
ID CVSS Description Vendor Product Published Updated
CVE-1999-0855
N/A
Buffer overflow in FreeBSD gdc program. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:27.880Z
CVE-1999-0857
N/A
FreeBSD gdc program allows local users to modify … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.013Z
CVE-1999-0860
N/A
Solaris chkperm allows local users to read files … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.081Z
CVE-1999-0862
N/A
Insecure directory permissions in RPM distributio… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:28.690Z
CVE-1999-0863
N/A
Buffer overflow in FreeBSD seyon via HOME environ… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:27.903Z
CVE-1999-0872
N/A
Buffer overflow in Vixie cron allows local users … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.003Z
CVE-1999-0882
N/A
Falcon web server allows remote attackers to dete… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:28.974Z
CVE-1999-0885
N/A
Alibaba web server allows remote attackers to exe… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.319Z
CVE-1999-0910
N/A
Microsoft Site Server and Commercial Internet Sys… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.077Z
CVE-1999-0911
N/A
Buffer overflow in ProFTPD, wu-ftpd, and beroftpd… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:28.981Z
CVE-1999-0913
N/A
dfire.cgi script in Dragon-Fire IDS allows remote… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.074Z
CVE-1999-0919
N/A
A memory leak in a Motorola CableRouter allows re… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.037Z
CVE-1999-0925
N/A
UnityMail allows remote attackers to conduct a de… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:28.989Z
CVE-1999-0929
N/A
Novell NetWare with Novell-HTTP-Server or YAWN we… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.376Z
CVE-1999-0941
N/A
Mutt mail client allows a remote attacker to exec… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.349Z
CVE-1999-0944
N/A
IBM WebSphere ikeyman tool uses weak encryption t… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.355Z
CVE-1999-0948
N/A
Buffer overflow in uum program for Canna input sy… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.318Z
CVE-1999-0949
N/A
Buffer overflow in canuum program for Canna input… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.343Z
CVE-1999-0952
N/A
Buffer overflow in Solaris lpstat via class argum… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.195Z
CVE-1999-0970
N/A
The OmniHTTPD visadmin.exe program allows a remot… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.279Z
CVE-1999-0983
N/A
Whois Internic Lookup program whois.cgi allows re… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.387Z
CVE-1999-0984
N/A
Matt's Whois program whois.cgi allows remote atta… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.373Z
CVE-1999-0985
N/A
CC Whois program whois.cgi allows remote attacker… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.334Z
CVE-1999-0988
N/A
UnixWare pkgtrans allows local users to read arbi… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.416Z
CVE-1999-0990
N/A
Error messages generated by gdm with the VerboseA… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.404Z
CVE-1999-0993
N/A
Modifications to ACLs (Access Control Lists) in M… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.357Z
CVE-1999-1002
N/A
Netscape Navigator uses weak encryption for stori… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.351Z
CVE-1999-1003
N/A
War FTP Daemon 1.70 allows remote attackers to ca… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.348Z
CVE-1999-1006
N/A
Groupwise web server GWWEB.EXE allows remote atta… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.477Z
CVE-1999-1009
N/A
The Disney Go Express Search allows remote attack… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.504Z
ID CVSS Description Vendor Product Published Updated
CVE-1999-0655
N/A
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is not about any specific product, protocol, or design, so it is out of scope of CVE. Notes: the former description is: "A service may include useful information in its banner or help function (such as the name and version), making it useful for information gathering activities. N/A N/A 2000-02-04T05:00:00.000Z 2001-12-09T10:00:00.000Z
CVE-1999-0656
N/A
The ugidd RPC interface, by design, allows remote… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.159Z
CVE-1999-0657
N/A
WinGate is being used. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:36.982Z
CVE-1999-0658
N/A
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "DCOM is running. N/A N/A 2000-02-04T05:00:00.000Z 2003-03-21T10:00:00.000Z
CVE-1999-0659
N/A
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "A Windows NT Primary Domain Controller (PDC) or Backup Domain Controller (BDC) is present. N/A N/A 2000-02-04T05:00:00.000Z 2003-03-21T10:00:00.000Z
CVE-1999-0660
N/A
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is not about any specific product, protocol, or design, so it is out of scope of CVE. It might be more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "A hacker utility, back door, or Trojan Horse is installed on a system, e.g. NetBus, Back Orifice, Rootkit, etc. N/A N/A 2000-02-04T05:00:00.000Z 2003-03-21T10:00:00.000Z
CVE-1999-0661
N/A
A system is running a version of software that wa… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.297Z
CVE-1999-0662
N/A
A system-critical program or library does not hav… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.804Z
CVE-1999-0663
N/A
A system-critical program, library, or file has a… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.505Z
CVE-1999-0664
N/A
An application-critical Windows NT registry key h… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.583Z
CVE-1999-0665
N/A
An application-critical Windows NT registry key h… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.576Z
CVE-1999-0698
N/A
Denial of service in IP protocol logger (ippl) on… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:48:37.337Z
CVE-1999-1430
N/A
PIM software for Royal daVinci does not properly … n/a
 n/a
 2001-09-12T04:00:00.000Z 2024-08-01T17:11:03.233Z
CVE-1999-1440
N/A
Win32 ICQ 98a 1.30, and possibly other versions, … n/a
 n/a
 2001-09-12T04:00:00.000Z 2024-08-01T17:11:03.241Z
CVE-1999-1568
7.5 (3.1)
Off-by-one error in NcFTPd FTP server before 2.4.… n/a
 n/a
 2004-09-01T04:00:00.000Z 2025-01-16T17:40:42.694Z
CVE-1999-0402
N/A
wget 1.5.3 follows symlinks to change permissions… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:34:52.088Z
CVE-1999-1170
N/A
IPswitch IMail allows local users to gain additio… n/a
 n/a
 2001-09-12T04:00:00.000Z 2024-08-01T17:02:53.755Z
CVE-1999-1422
N/A
The default configuration of Slackware 3.4, and p… n/a
 n/a
 2001-09-12T04:00:00.000Z 2024-08-01T17:11:03.263Z
CVE-2000-0005
N/A
HP-UX aserver program allows local users to gain … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T04:58:11.797Z
CVE-1999-0389
N/A
Buffer overflow in the bootp server in the Debian… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:51.901Z
CVE-1999-0914
N/A
Buffer overflow in the FTP client in the Debian G… n/a
 n/a
 2000-01-04T05:00:00.000Z 2024-08-01T16:55:28.965Z
CVE-2000-0054
N/A
search.cgi in the SolutionScripts Home Free packa… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:53.914Z
CVE-1999-0390
N/A
Buffer overflow in Dosemu Slang library in Linux. n/a
 n/a
 2000-03-22T05:00:00.000Z 2024-08-01T16:34:51.941Z
CVE-1999-0464
N/A
Local users can perform a denial of service in Tr… n/a
 n/a
 2000-06-02T04:00:00.000Z 2024-08-01T16:41:44.918Z
CVE-1999-0391
N/A
The cryptographic challenge of SMB authentication… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:34:51.955Z
CVE-1999-0458
N/A
L0phtcrack 2.5 used temporary files in the system… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:41:44.986Z
CVE-1999-1268
N/A
Vulnerability in KDE konsole allows local users t… n/a
 n/a
 2001-09-12T04:00:00.000Z 2024-08-01T17:11:01.695Z
CVE-1999-0442
N/A
Solaris ff.core allows local users to modify files. n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:41:44.889Z
CVE-1999-0392
N/A
Buffer overflow in Thomas Boutell's cgic library … n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:34:52.030Z
CVE-1999-0063
N/A
Cisco IOS 12.0 and other versions can be crashed … n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.325Z
ID Description Published Updated
ID Severity Description Published Updated
ghsa-whw7-h25v-9qvx
Moderate severity vulnerability that affects org.apache.cxf.fediz:fediz-jetty8, org.apache.cxf.fedi… 2018-10-18T16:56:38Z 2020-06-16T22:00:38Z
ghsa-w3gh-g32m-cvhr
High severity vulnerability that affects org.apache.cxf.fediz:fediz-jetty8, org.apache.cxf.fediz:fe… 2018-10-18T16:56:47Z 2020-06-16T21:59:21Z
ghsa-3357-829x-m9pr
7.5 (3.1)
Apache CXF Fediz application plugins are vulnerable to Denial of Service (DoS) attacks 2018-10-18T16:57:00Z 2022-09-13T23:37:01Z
ghsa-qpwj-mvv7-v3m9
High severity vulnerability that affects org.apache.cxf.fediz:fediz-spring and org.apache.cxf.fediz… 2018-10-18T16:57:10Z 2020-06-16T21:52:31Z
ghsa-fv7x-4hpc-hf9f
Moderate severity vulnerability that affects org.apache.cxf.fediz:fediz-spring, org.apache.cxf.fedi… 2018-10-18T16:57:21Z 2024-04-12T21:04:11Z
ghsa-683w-6h9j-57wq
6.1 (3.1)
OWASP AntiSamy vulnerable to Cross-site Scripting 2018-10-18T17:21:47Z 2025-04-14T22:05:04Z
ghsa-q44v-xc3g-v7jq
6.1 (3.1)
OWASP AntiSamy Cross-site Scripting vulnerability 2018-10-18T17:22:11Z 2022-11-17T19:41:38Z
ghsa-xv6v-72hh-g6g2
Moderate severity vulnerability that affects org.owasp.antisamy:antisamy 2018-10-18T17:22:26Z 2020-06-16T22:04:31Z
ghsa-xm6r-4466-mr74
9.8 (3.1)
OrientDB vulnerable to Improper Privilage Management leading to arbitrary command injection 2018-10-18T17:40:56Z 2024-02-20T16:27:15Z
ghsa-p8ww-vv84-c2rm
8.8 (3.1)
OrientDB-Server vulnerable to Cross-Site Request Forgery 2018-10-18T17:41:13Z 2022-09-13T23:50:45Z
ghsa-v6wr-fch2-vm5w
5.9 (3.1)
OrientDB Server Community Edition uses insufficiently random values to generate session IDs 2018-10-18T17:41:27Z 2023-09-12T14:43:49Z
ghsa-g4gg-9f62-jfph
6.1 (3.1)
OrientDB Studio web management interface is vulnerable to clickjacking attacks 2018-10-18T17:41:40Z 2023-09-29T11:39:57Z
ghsa-h592-38cm-4ggp
9.8 (3.1)
jackson-databind vulnerable to deserialization flaw leading to unauthenticated remote code execution 2018-10-18T17:42:34Z 2024-03-15T01:13:58Z
ghsa-rfx6-vp9g-rh7v
9.8 (3.1)
jackson-databind vulnerable to remote code execution due to incorrect deserialization and blocklist… 2018-10-18T17:42:48Z 2024-03-01T21:35:57Z
ghsa-hmq6-frv3-4727
9.8 (3.1)
jackson-dataformat-xml vulnerable to XML external entity (XXE) 2018-10-18T17:43:16Z 2022-09-14T00:10:34Z
ghsa-7c2r-3jqf-c9rw
8.6 (3.1)
jackson-dataformat-xml vulnerable to server side request forgery (SSRF) 2018-10-18T17:43:28Z 2022-09-14T00:19:56Z
ghsa-2j2x-hx4g-2gf4
7.4 (3.1)
In Bouncy Castle JCE Provider the DHIES implementation allowed the use of ECB mode 2018-10-18T17:43:55Z 2025-09-12T19:15:17Z
ghsa-9gp4-qrff-c648
5.9 (3.1)
Moderate severity vulnerability that affects org.bouncycastle:bcprov-jdk14 and org.bouncycastle:bcp… 2018-10-18T18:04:13Z 2025-09-12T19:16:12Z
ghsa-p8xr-4v2c-rvgp
7.3 (3.1)
High severity vulnerability that affects org.apache.hbase:hbase 2018-10-18T18:04:50Z 2021-06-10T22:05:21Z
ghsa-r86j-2gc6-2cq9
8.1 (3.1)
Race condition in org.apache.hbase:hbase-thrift 2018-10-18T18:05:02Z 2024-03-04T23:31:45Z
ghsa-rrpm-pj7p-7j9q
9.8 (3.1)
Spring Security OAuth vulnerable to remote code execution (RCE) 2018-10-18T18:05:34Z 2024-05-14T17:55:41Z
ghsa-m9jm-rhrm-gcxj
4.7 (3.1)
Path traversal in org.springframework.integration:spring-integration-zip 2018-10-18T18:05:46Z 2024-04-12T21:30:34Z
ghsa-xx65-cc7g-9pfp
5.9 (3.1)
Moderate severity vulnerability that affects org.springframework.boot:spring-boot 2018-10-18T18:05:57Z 2021-09-22T18:26:44Z
ghsa-w4g2-9hj6-5472
5.9 (3.1)
Moderate severity vulnerability that affects com.rabbitmq:amqp-client and org.springframework.amqp:… 2018-10-18T18:06:08Z 2021-09-20T22:35:57Z
ghsa-7q9c-h23x-65fq
8.8 (3.1)
Spring Security OAuth vulnerable to remote code execution (RCE) via specially crafted request using… 2018-10-18T18:06:22Z 2024-05-14T17:39:04Z
ghsa-j77q-2qqg-6989
10.0 (3.1)
Apache Struts vulnerable to remote arbitrary command execution due to improper input validation 2018-10-18T19:24:26Z 2025-10-22T17:33:25Z
ghsa-cr6j-3jp9-rw65
8.1 (3.1)
Apache Struts vulnerable to remote command execution (RCE) due to improper input validation 2018-10-18T19:24:38Z 2025-10-22T17:29:40Z
ghsa-vgg8-72f2-qm23
9.8 (3.1)
Critical severity vulnerability that affects org.eclipse.jetty:jetty-server 2018-10-19T16:15:34Z 2021-06-10T20:19:49Z
ghsa-wfcc-pff6-rgc5
7.5 (3.1)
Jetty vulnerable to exposure of sensitive information due to observable discrepancy 2018-10-19T16:15:46Z 2023-08-15T20:33:37Z
ghsa-9rgv-h7x4-qw8g
5.3 (3.1)
Eclipse Jetty Server generates error message containing sensitive information 2018-10-19T16:15:56Z 2023-08-18T16:47:12Z
ID Severity Description Package Published Updated
pysec-2019-118
In RPyC 4.1.x through 4.1.1, a remote attacker can dynamically modify object attributes t… rpyc 2019-10-03T20:15:00Z 2020-08-24T17:37:00Z
pysec-2019-125
Valve Steam Client before 2019-09-12 allows placing or appending partially controlled fil… steam 2019-10-04T20:15:00Z 2020-01-16T13:15:00Z
pysec-2019-110
An issue was discovered in Pillow before 6.2.0. When reading specially crafted invalid im… pillow 2019-10-04T22:15:00Z 2020-02-18T16:15:00Z
pysec-2019-116
Uncontrolled deserialization of a pickled object in models.py in Frost Ming rediswrapper … rediswrapper 2019-10-05T23:15:00Z 2019-12-09T19:06:00Z
pysec-2019-4
In Ansible, all Ansible Engine versions up to ansible-engine 2.8.5, ansible-engine 2.7.13… ansible 2019-10-08T19:15:00Z 2021-03-26T22:15:00Z
pysec-2019-247
6.5 (3.1)
Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when cal… exiv2 2019-10-09T19:15:00Z 2024-11-21T14:22:49.656989Z
pysec-2019-183
Koji through 1.18.0 allows remote Directory Traversal, with resultant Privilege Escalation. koji 2019-10-09T22:15:00Z 2021-08-27T03:22:05.900614Z
pysec-2019-151
send_email in graphite-web/webapp/graphite/composer/views.py in Graphite through 1.1.5 is… graphite-web 2019-10-11T23:15:00Z 2021-07-05T00:01:21.806042Z
pysec-2019-241
9.8 (3.1)
GDAL through 3.0.1 has a poolDestroy double free in OGRExpatRealloc in ogr/ogr_expat.cpp … gdal 2019-10-14T02:15:00+00:00 2023-11-13T19:19:43.892449+00:00
pysec-2019-171
A vulnerability was found in Ansible engine 2.x up to 2.8 and Ansible tower 3.x up to 3.5… ansible 2019-10-14T15:15:00Z 2021-08-27T03:21:53.021460Z
pysec-2019-117
ReportLab through 3.5.26 allows remote code execution because of toColor(eval(arg)) in co… reportlab 2019-10-16T12:15:00Z 2020-07-27T03:15:00Z
pysec-2019-213
The unoconv package before 0.9 mishandles untrusted pathnames, leading to SSRF and local … unoconv 2019-10-21T23:15:00Z 2021-08-27T03:22:49.773623Z
pysec-2019-181
Python keyring lib before 0.10 created keyring files with world-readable permissions. keyring 2019-10-28T17:15:00Z 2021-08-27T03:22:05.629168Z
pysec-2019-216
A malicious admin user could edit the state of objects in the Airflow metadata database t… apache-airflow 2019-10-30T22:15:00Z 2021-11-16T03:58:43.222984Z
pysec-2019-157
Jupyter Notebook before 5.5.0 does not use a CSP header to treat served files as belongin… notebook 2019-10-31T15:15:00Z 2021-07-15T02:22:16.244467Z
pysec-2019-176
python-docutils allows insecure usage of temporary files docutils 2019-10-31T16:15:00Z 2021-08-27T03:42:08.729631Z
pysec-2019-156
The scipy.weave component in SciPy before 0.12.1 creates insecure temporary directories. scipy 2019-11-04T20:15:00Z 2021-07-05T00:01:27.093286Z
pysec-2019-175
An eval() vulnerability exists in Python Software Foundation Djblets 0.7.21 and Beanbag R… djblets 2019-11-04T21:15:00Z 2021-08-27T03:22:03.149747Z
pysec-2019-160
The mirroring support (-M, --use-mirrors) in Python Pip before 1.5 uses insecure DNS quer… pip 2019-11-05T22:15:00Z 2021-07-15T02:22:17.687153Z
pysec-2019-253
7.4 (3.1)
Tahoe-LAFS 1.9.0 fails to ensure integrity which allows remote attackers to corrupt mutab… tahoe-lafs 2019-11-07T18:15:00Z 2024-12-19T05:47:49.035329Z
pysec-2019-186
Matrix Synapse before 1.5.0 mishandles signature checking on some federation APIs. Events… matrix-synapse 2019-11-08T00:15:00Z 2021-08-27T03:22:06.354909Z
pysec-2019-195
It was discovered that the C++ implementation (which underlies the R, Python and Ruby imp… pyarrow 2019-11-08T19:15:00Z 2021-08-27T03:22:16.533972Z
pysec-2019-196
While investigating UBSAN errors in https://github.com/apache/arrow/pull/5365 it was disc… pyarrow 2019-11-08T19:15:00Z 2021-08-27T03:22:16.568373Z
pysec-2019-41
psutil (aka python-psutil) through 5.6.5 can have a double free. This occurs because of r… psutil 2019-11-12T02:15:00Z 2019-11-18T21:15:00Z
pysec-2019-212
Python Twisted 14.0 trustRoot is not respected in HTTP client twisted 2019-11-12T14:15:00Z 2021-08-27T03:22:49.575116Z
pysec-2019-102
Eval injection in the Math plugin of Limnoria (before 2019.11.09) and Supybot (through 20… limnoria 2019-11-16T01:15:00Z 2020-08-24T17:37:00Z
pysec-2019-211
trytond 2.4: ModelView.button fails to validate authorization trytond 2019-11-21T14:15:00Z 2021-08-27T03:22:48.643Z
pysec-2019-202
python-rply before 0.7.4 insecurely creates temporary files. rply 2019-11-21T15:15:00Z 2021-08-27T03:22:19.853413Z
pysec-2019-145
ansible-playbook -k and ansible cli tools, all versions 2.8.x before 2.8.4, all 2.7.x bef… ansible 2019-11-22T13:15:00Z 2021-07-02T02:41:34.397311Z
pysec-2019-243
6.5 (3.1)
Designate does not enforce the DNS protocol limit concerning record set sizes designate 2019-11-22T15:15:00Z 2024-11-25T22:09:33.909779Z
ID Description Updated
ID Description Published Updated
mal-2022-6455 Malicious code in tempus-core-services (npm) 2022-06-20T20:08:34Z 2022-06-20T20:08:34Z
mal-2022-1999 Malicious code in color2.0 (npm) 2022-06-20T20:08:35Z 2022-06-20T20:08:36Z
mal-2022-5305 Malicious code in personn-colors (npm) 2022-06-20T20:08:35Z 2022-06-20T20:08:36Z
mal-2022-5444 Malicious code in predictions (npm) 2022-06-20T20:08:35Z 2022-06-20T20:08:35Z
mal-2022-6445 Malicious code in techdocs-cli-embedded-app (npm) 2022-06-20T20:08:35Z 2022-06-20T20:08:36Z
mal-2022-1009 Malicious code in angular-rs-loading (npm) 2022-06-20T20:08:36Z 2022-06-20T20:08:38Z
mal-2022-2167 Malicious code in construct-burst (npm) 2022-06-20T20:08:36Z 2022-06-20T20:08:37Z
mal-2022-5262 Malicious code in pdfgrabber (npm) 2022-06-20T20:08:36Z 2022-06-20T20:08:37Z
mal-2022-6442 Malicious code in teams-data (npm) 2022-06-20T20:08:36Z 2022-06-20T20:08:36Z
mal-2022-1083 Malicious code in ardoq-sheet-load (npm) 2022-06-20T20:08:37Z 2022-06-20T20:08:38Z
mal-2022-2812 Malicious code in eslint-plugin-coinbase (npm) 2022-06-20T20:08:37Z 2022-06-20T20:08:38Z
mal-2022-3599 Malicious code in helloboy634 (npm) 2022-06-20T20:08:37Z 2022-06-20T20:08:39Z
mal-2022-4925 Malicious code in nosoawesome232 (npm) 2022-06-20T20:08:37Z 2022-06-20T20:08:37Z
mal-2022-2431 Malicious code in dependency-confusion-art-test (npm) 2022-06-20T20:08:38Z 2022-06-20T20:08:38Z
mal-2022-2432 Malicious code in dependency-confusion-art-test2 (npm) 2022-06-20T20:08:38Z 2022-06-20T20:08:38Z
mal-2022-2564 Malicious code in dontbelikethat (npm) 2022-06-20T20:08:38Z 2022-06-20T20:08:39Z
mal-2022-4441 Malicious code in lznfjbhurpjsqmr (npm) 2022-06-20T20:08:38Z 2022-06-20T20:08:39Z
mal-2022-1845 Malicious code in caurl (npm) 2022-06-20T20:08:39Z 2022-06-20T20:08:40Z
mal-2022-3098 Malicious code in font-request (npm) 2022-06-20T20:08:39Z 2022-06-20T20:08:40Z
mal-2022-3349 Malicious code in get-checksum (npm) 2022-06-20T20:08:39Z 2022-06-20T20:08:40Z
mal-2022-3538 Malicious code in gxm-reference-web-auth-server (npm) 2022-06-20T20:08:39Z 2022-06-20T20:08:42Z
mal-2022-4269 Malicious code in ldtzstxwzpntxqn (npm) 2022-06-20T20:08:39Z 2022-06-20T20:08:39Z
mal-2022-1055 Malicious code in apm-synthtrace (npm) 2022-06-20T20:08:40Z 2022-06-20T20:08:41Z
mal-2022-5403 Malicious code in polaris-shopify-com (npm) 2022-06-20T20:08:40Z 2022-06-20T20:08:40Z
mal-2022-6040 Malicious code in setup-ruby (npm) 2022-06-20T20:08:40Z 2022-06-20T20:08:41Z
mal-2022-443 Malicious code in @munters/calculations (npm) 2022-06-20T20:08:41Z 2022-06-20T20:08:42Z
mal-2022-4764 Malicious code in myhood (npm) 2022-06-20T20:08:41Z 2022-06-20T20:08:41Z
mal-2022-5992 Malicious code in seco-leveldown (npm) 2022-06-20T20:08:41Z 2022-06-20T20:08:41Z
mal-2022-6159 Malicious code in slack-notifier-action (npm) 2022-06-20T20:08:41Z 2022-06-20T20:08:42Z
mal-2022-2014 Malicious code in colors-dev (npm) 2022-06-20T20:08:42Z 2022-06-20T20:08:43Z
ID Description Published Updated
ID Description Published Updated
wid-sec-w-2024-0479 Intel Ethernet Controller: Mehrere Schwachstellen 2020-11-10T23:00:00.000+00:00 2024-02-26T23:00:00.000+00:00
wid-sec-w-2022-1383 PostgreSQL: Mehrere Schwachstellen 2020-11-12T23:00:00.000+00:00 2025-09-28T22:00:00.000+00:00
wid-sec-w-2022-2392 Linux Kernel: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2020-11-16T23:00:00.000+00:00 2022-12-22T23:00:00.000+00:00
wid-sec-w-2022-0493 Linux Kernel: Schwachstelle ermöglicht Offenlegung von Informationen 2020-11-17T23:00:00.000+00:00 2022-12-20T23:00:00.000+00:00
wid-sec-w-2024-1938 Drupal: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes 2020-11-18T23:00:00.000+00:00 2024-09-03T22:00:00.000+00:00
wid-sec-w-2024-2037 Perl: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen 2020-11-19T23:00:00.000+00:00 2025-01-28T23:00:00.000+00:00
wid-sec-w-2024-1036 xpdf: Schwachstelle ermöglicht Denial of Service 2020-11-22T23:00:00.000+00:00 2024-05-06T22:00:00.000+00:00
wid-sec-w-2022-1911 Red Hat JBoss Enterprise Application Platform: Schwachstelle ermöglicht SQL-Injection 2020-11-23T23:00:00.000+00:00 2025-06-24T22:00:00.000+00:00
wid-sec-w-2022-2241 mutt: Schwachstelle ermöglicht Offenlegung von Informationen 2020-11-23T23:00:00.000+00:00 2025-01-15T23:00:00.000+00:00
wid-sec-w-2023-0005 Cacti RRDtool: Schwachstelle ermöglicht Cross-Site Scripting 2020-11-23T23:00:00.000+00:00 2023-01-01T23:00:00.000+00:00
wid-sec-w-2022-1443 Drupal: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes 2020-11-25T23:00:00.000+00:00 2024-09-03T22:00:00.000+00:00
wid-sec-w-2022-1271 QEMU: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen 2020-11-29T23:00:00.000+00:00 2024-09-02T22:00:00.000+00:00
wid-sec-w-2023-2783 Eclipse Jetty: Schwachstelle ermöglicht Manipulation 2020-11-29T23:00:00.000+00:00 2024-05-16T22:00:00.000+00:00
wid-sec-w-2022-1272 QEMU: Schwachstelle ermöglicht Denial of Service 2020-11-30T23:00:00.000+00:00 2024-09-02T22:00:00.000+00:00
wid-sec-w-2022-1273 QEMU: Schwachstelle ermöglicht Denial of Service 2020-12-01T23:00:00.000+00:00 2024-09-02T22:00:00.000+00:00
wid-sec-w-2023-0623 ImageMagick: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes 2020-12-02T23:00:00.000+00:00 2023-03-12T23:00:00.000+00:00
wid-sec-w-2023-2466 Apache Tomcat: Schwachstelle ermöglicht Offenlegung von Informationen 2020-12-03T23:00:00.000+00:00 2026-03-26T23:00:00.000+00:00
wid-sec-w-2023-2947 Docker und Kubernetes: Schwachstelle ermöglicht Privilegieneskalation 2020-12-03T23:00:00.000+00:00 2025-10-12T22:00:00.000+00:00
wid-sec-w-2022-1169 GNU libc: Mehrere Schwachstellen 2020-12-06T23:00:00.000+00:00 2024-03-05T23:00:00.000+00:00
wid-sec-w-2023-0622 ImageMagick: Mehrere Schwachstellen ermöglichen Denial of Service 2020-12-06T23:00:00.000+00:00 2024-10-14T22:00:00.000+00:00
wid-sec-w-2023-0621 ImageMagick: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Benutzerrechten 2020-12-07T23:00:00.000+00:00 2024-08-05T22:00:00.000+00:00
wid-sec-w-2022-0585 OpenSSL: Schwachstelle ermöglicht Denial of Service 2020-12-08T23:00:00.000+00:00 2025-10-20T22:00:00.000+00:00
wid-sec-w-2022-1044 TCP/IP Stack: Mehrere Schwachstellen 2020-12-08T23:00:00.000+00:00 2023-07-27T22:00:00.000+00:00
wid-sec-w-2023-2098 cURL: Mehrere Schwachstellen 2020-12-08T23:00:00.000+00:00 2024-04-10T22:00:00.000+00:00
wid-sec-w-2024-2184 Wireshark: Mehrere Schwachstellen 2020-12-09T23:00:00.000+00:00 2024-09-18T22:00:00.000+00:00
wid-sec-w-2022-1274 QEMU: Schwachstelle ermöglicht Denial of Service 2020-12-10T23:00:00.000+00:00 2024-09-02T22:00:00.000+00:00
wid-sec-w-2024-1420 binutils: Mehrere Schwachstellen ermöglichen Denial of Service 2020-12-10T23:00:00.000+00:00 2024-06-19T22:00:00.000+00:00
wid-sec-w-2022-2387 Google Android Patchday Dezember 2020 2020-12-15T23:00:00.000+00:00 2023-05-30T22:00:00.000+00:00
wid-sec-w-2022-1853 Icinga: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2020-12-17T23:00:00.000+00:00 2024-12-08T23:00:00.000+00:00
wid-sec-w-2023-1546 Roundcube: Schwachstelle ermöglicht Cross-Site Scripting 2020-12-27T23:00:00.000+00:00 2023-06-22T22:00:00.000+00:00
ID Description Published Updated
icsa-18-093-01 ICSA-18-093-01 Siemens Building Technologies Products (Update A) 2018-03-28T00:00:00.000000Z 2018-04-03T00:00:00.000000Z
icsa-18-088-01 WAGO 750 Series 2018-03-29T00:00:00.000000Z 2018-03-29T00:00:00.000000Z
icsa-18-095-02 Moxa MXview 2018-04-05T00:00:00.000000Z 2018-04-05T00:00:00.000000Z
icsa-18-095-03 LCDS - Leão Consultoria e Desenvolvimento de Sistemas Ltda ME LAquis SCADA 2018-04-05T00:00:00.000000Z 2018-04-05T00:00:00.000000Z
icsa-18-100-01 ATI Systems Emergency Mass Notification Systems 2018-04-10T00:00:00.000000Z 2018-04-10T00:00:00.000000Z
icsa-18-100-02 Omron CX-One 2018-04-10T00:00:00.000000Z 2018-04-10T00:00:00.000000Z
icsa-18-102-01 Yokogawa CENTUM and Exaopc 2018-04-12T00:00:00.000000Z 2018-04-12T00:00:00.000000Z
icsa-18-102-02 Rockwell Automation FactoryTalk Activation Manager (Update B) 2018-04-12T00:00:00.000000Z 2018-05-31T00:00:00.000000Z
icsa-18-107-01 Schneider Electric InduSoft Web Studio and InTouch Machine Edition 2018-04-17T00:00:00.000000Z 2018-04-17T00:00:00.000000Z
icsa-18-107-03 ICSA-18-107-03_Rockwell Automation Stratix Services Router 2018-04-17T00:00:00.000000Z 2018-04-17T00:00:00.000000Z
icsa-18-107-04 Rockwell Automation Stratix and ArmorStratix Switches 2018-04-17T00:00:00.000000Z 2018-04-17T00:00:00.000000Z
icsa-18-107-05 ICSA-18-107-05_Rockwell Automation Stratix Industrial Managed Ethernet Switch 2018-04-17T00:00:00.000000Z 2018-04-17T00:00:00.000000Z
icsma-18-107-01 Abbott Laboratories Defibrillator 2018-04-17T00:00:00.000000Z 2018-04-17T00:00:00.000000Z
icsa-18-107-02 Schneider Electric Triconex Tricon 2018-04-17T06:00:00.000000Z 2018-12-18T07:00:00.000000Z
icsa-18-109-01 Siemens SIMATIC WinCC OA Operator IOS App (Update A) 2018-04-19T00:00:00.000000Z 2018-10-09T00:00:00.000000Z
icsa-18-114-01 Vecna VGo Robot (Update A) 2018-04-24T00:00:00.000000Z 2018-10-30T00:00:00.000000Z
icsa-18-114-02 Intel 2G Modem 2018-04-24T00:00:00.000000Z 2018-04-24T00:00:00.000000Z
icsa-18-114-03 Advantech WebAccess HMI Designer 2018-04-24T00:00:00.000000Z 2018-04-24T00:00:00.000000Z
icsma-18-114-01 BD Pyxis 2018-04-24T00:00:00.000000Z 2018-04-24T00:00:00.000000Z
icsa-18-116-01 Delta Electronics PMSoft 2018-04-26T00:00:00.000000Z 2018-04-26T00:00:00.000000Z
icsa-18-116-02 WECON Technology Co., Ltd. LeviStudio HMI Editor and PI Studio HMI Project Programmer 2018-04-26T00:00:00.000000Z 2018-04-26T00:00:00.000000Z
icsa-18-123-01 Lantech IDS 2102 2018-05-03T00:00:00.000000Z 2018-05-03T00:00:00.000000Z
icsa-18-128-01 Siemens Medium Voltage SINAMICS Products (Update A) 2018-05-03T00:00:00.000000Z 2020-02-10T00:00:00.000000Z
icsa-18-128-02 ICSA-18-128-02 Siemens Siveillance VMS (Update A) 2018-05-03T00:00:00.000000Z 2018-05-23T00:00:00.000000Z
icsa-18-128-03 ICSA-18-128-03 Siemens Siveillance VMS Video Mobile App 2018-05-03T00:00:00.000000Z 2018-05-03T00:00:00.000000Z
icsma-18-123-01 Philips Brilliance Computed Tomography (CT) System (Update A) 2018-05-03T00:00:00.000000Z 2019-10-10T00:00:00.000000Z
icsma-18-128-01 Silex Technology SX-500/SD-320AN or GE Healthcare MobileLink (Update B) 2018-05-08T00:00:00.000000Z 2018-06-05T00:00:00.000000Z
icsa-18-130-01 MatrikonOPC Explorer 2018-05-10T00:00:00.000000Z 2018-05-10T00:00:00.000000Z
icsa-18-130-02 Rockwell Automation Arena 2018-05-10T00:00:00.000000Z 2018-05-10T00:00:00.000000Z
icsa-18-135-01 Advantech WebAccess 2018-05-15T00:00:00.000000Z 2018-05-15T00:00:00.000000Z
ID Description Published Updated
cisco-sa-20190807-spa112-xss Cisco SPA112 2-Port Phone Adapter Stored Cross-Site Scripting Vulnerability 2019-08-07T16:00:00+00:00 2019-08-07T16:00:00+00:00
cisco-sa-20190807-webex-player Cisco Webex Network Recording Player and Cisco Webex Player Arbitrary Code Execution Vulnerabilities 2019-08-07T16:00:00+00:00 2019-08-07T16:00:00+00:00
cisco-sa-20190807-wms-oredirect Cisco Webex Meetings Server Open Redirection Vulnerability 2019-08-07T16:00:00+00:00 2019-08-07T16:00:00+00:00
cisco-sa-20190813-bluetooth Key Negotiation of Bluetooth Vulnerability 2019-08-13T17:00:00+00:00 2019-08-21T14:14:09+00:00
cisco-sa-20190816-ftd-http Cisco Firepower Threat Defense Software HTTP Filtering Bypass Vulnerability 2019-08-16T16:00:00+00:00 2019-08-16T16:00:00+00:00
cisco-sa-20190816-ftd-nspd Cisco Firepower Threat Defense Software Nonstandard Protocol Detection Bypass Vulnerability 2019-08-16T16:00:00+00:00 2019-08-16T16:00:00+00:00
cisco-sa-20190816-ftd-null Cisco Firepower Threat Defense Software NULL Character Obfuscation Detection Bypass Vulnerability 2019-08-16T16:00:00+00:00 2019-08-16T16:00:00+00:00
cisco-sa-20190816-ftd-srb Cisco Firepower Threat Defense Software Stream Reassembly Bypass Vulnerability 2019-08-16T16:00:00+00:00 2019-08-16T16:00:00+00:00
cisco-sa-20190821-ccx-xss Cisco Unified Contact Center Express Stored Cross-Site Scripting Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
cisco-sa-20190821-cimc-cli-inject Cisco Integrated Management Controller CLI Command Injection Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
cisco-sa-20190821-frpwr-td-info Cisco Firepower Threat Defense Software Information Disclosure Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
cisco-sa-20190821-hyperflex-sslkey Cisco HyperFlex Static SSL Key Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
cisco-sa-20190821-imc-bo Cisco Integrated Management Controller Buffer Overflow Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
cisco-sa-20190821-imc-cmdinj-1850 Cisco Integrated Management Controller Command Injection Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
cisco-sa-20190821-imc-cmdinj-1864 Cisco Integrated Management Controller Command Injection Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
cisco-sa-20190821-imc-cmdinj-1865 Cisco Integrated Management Controller Command Injection Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
cisco-sa-20190821-imc-cmdinject-1634 Cisco Integrated Management Controller Command Injection Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
cisco-sa-20190821-imc-cmdinject-1896 Cisco Integrated Management Controller CSR Generation Command Injection Vulnerability 2019-08-21T16:00:00+00:00 2020-08-26T14:48:23+00:00
cisco-sa-20190821-imc-dos Cisco Integrated Management Controller Unauthenticated Denial of Service Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
cisco-sa-20190821-imc-infodisc Cisco Integrated Management Controller Information Disclosure Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
cisco-sa-20190821-imc-privescal Cisco Integrated Management Controller Substring Comparison Privilege Escalation Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
cisco-sa-20190821-imc-privilege Cisco Integrated Management Controller Privilege Escalation Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
cisco-sa-20190821-imcs-ucs-authby Cisco Integrated Management Controller Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data Authentication Bypass Vulnerability 2019-08-21T16:00:00+00:00 2019-08-30T12:30:29+00:00
cisco-sa-20190821-imcs-ucs-authbypass Cisco IMC Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data Authentication Bypass Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
cisco-sa-20190821-imcs-ucs-cmdinj Cisco Integrated Management Controller Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data Command Injection Vulnerability 2019-08-21T16:00:00+00:00 2019-08-30T12:33:48+00:00
cisco-sa-20190821-imcs-usercred Cisco Integrated Management Controller Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data SCP User Default Credentials Vulnerability 2019-08-21T16:00:00+00:00 2019-08-30T12:38:58+00:00
cisco-sa-20190821-iosxe-ngwc-csrf Cisco IOS XE NGWC Legacy Wireless Device Manager GUI Cross-Site Request Forgery Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
cisco-sa-20190821-nfv-enumeration Cisco Enterprise Network Functions Virtualization Infrastructure Software File Enumeration Vulnerability 2019-08-21T16:00:00+00:00 2019-09-11T19:15:20+00:00
cisco-sa-20190821-nfv-filewrite Cisco Enterprise Network Functions Virtualization Infrastructure Software Arbitrary File Write Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
cisco-sa-20190821-roomos-privesc Cisco RoomOS Software Privilege Escalation Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
ID Description Published Updated
msrc_cve-2020-29368 An issue was discovered in __split_huge_pmd in mm/huge_memory.c in the Linux kernel before 5.7.5. The copy-on-write implementation can grant unintended write access because of a race condition in a THP mapcount check aka CID-c444eb564fb1. 2020-11-02T00:00:00.000Z 2020-12-03T00:00:00.000Z
msrc_cve-2020-29369 An issue was discovered in mm/mmap.c in the Linux kernel before 5.7.11. There is a race condition between certain expand functions (expand_downwards and expand_upwards) and page-table free operations from an munmap call aka CID-246c320a8cfe. 2020-11-02T00:00:00.000Z 2020-12-03T00:00:00.000Z
msrc_cve-2020-29370 An issue was discovered in kmem_cache_alloc_bulk in mm/slub.c in the Linux kernel before 5.5.11. The slowpath lacks the required TID increment aka CID-fd4d9c7d0c71. 2020-11-02T00:00:00.000Z 2020-12-03T00:00:00.000Z
msrc_cve-2020-29371 An issue was discovered in romfs_dev_read in fs/romfs/storage.c in the Linux kernel before 5.8.4. Uninitialized memory leaks to userspace aka CID-bcf85fcedfdd. 2020-11-02T00:00:00.000Z 2020-12-03T00:00:00.000Z
msrc_cve-2020-29372 An issue was discovered in do_madvise in mm/madvise.c in the Linux kernel before 5.6.8. There is a race condition between coredump operations and the IORING_OP_MADVISE implementation aka CID-bc0c4d1e176e. 2020-11-02T00:00:00.000Z 2020-12-03T00:00:00.000Z
msrc_cve-2020-29373 An issue was discovered in fs/io_uring.c in the Linux kernel before 5.6. It unsafely handles the root directory during path lookups and thus a process inside a mount namespace can escape to unintended filesystem locations aka CID-ff002b30181d. 2020-11-02T00:00:00.000Z 2020-12-03T00:00:00.000Z
msrc_cve-2020-29374 An issue was discovered in the Linux kernel before 5.7.3 related to mm/gup.c and mm/huge_memory.c. The get_user_pages (aka gup) implementation when used for a copy-on-write page does not properly consider the semantics of read operations and therefore can grant unintended write access aka CID-17839856fd58. 2020-11-02T00:00:00.000Z 2020-12-03T00:00:00.000Z
msrc_cve-2020-8037 ppp decapsulator can be convinced to allocate a large amount of memory 2020-11-02T00:00:00.000Z 2021-12-16T00:00:00.000Z
msrc_cve-2020-8277 A Node.js application that allows an attacker to trigger a DNS request for a host of their choice could trigger a Denial of Service in versions < 15.2.1 < 14.15.1 and < 12.19.1 by getting the application to resolve a DNS record with a larger number of responses. This is fixed in 15.2.1 14.15.1 and 12.19.1. 2020-11-02T00:00:00.000Z 2021-03-09T00:00:00.000Z
msrc_cve-2020-14318 A flaw was found in the way samba handled file and directory permissions. An authenticated user could use this flaw to gain access to certain file and directory information which otherwise would be unavailable to the attacker. 2020-12-02T00:00:00.000Z 2024-10-15T00:00:00.000Z
msrc_cve-2020-14351 A flaw was found in the Linux kernel. A use-after-free memory flaw was found in the perf subsystem allowing a local attacker with permission to monitor perf events to corrupt memory and possibly escalate privileges. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. 2020-12-02T00:00:00.000Z 2020-12-09T00:00:00.000Z
msrc_cve-2020-14381 A flaw was found in the Linux kernel’s futex implementation. This flaw allows a local attacker to corrupt system memory or escalate their privileges when creating a futex on a filesystem that is about to be unmounted. The highest threat from this vulnerability is to confidentiality integrity as well as system availability. 2020-12-02T00:00:00.000Z 2020-12-09T00:00:00.000Z
msrc_cve-2020-14383 A flaw was found in samba's DNS server. An authenticated user could use this flaw to the RPC server to crash. This RPC server which also serves protocols other than dnsserver will be restarted after a short delay but it is easy for an authenticated non administrative attacker to crash it again as soon as it returns. The Samba DNS server itself will continue to operate but many RPC services will not. 2020-12-02T00:00:00.000Z 2024-10-15T00:00:00.000Z
msrc_cve-2020-17527 Apache Tomcat: Request header mix-up between HTTP/2 streams 2020-12-02T00:00:00.000Z 2025-10-01T23:11:04.000Z
msrc_cve-2020-25656 A flaw was found in the Linux kernel. A use-after-free was found in the way the console subsystem was using ioctls KDGKBSENT and KDSKBSENT. A local user could use this flaw to get read memory access out of bounds. The highest threat from this vulnerability is to data confidentiality. 2020-12-02T00:00:00.000Z 2020-12-05T00:00:00.000Z
msrc_cve-2020-25692 A NULL pointer dereference was found in OpenLDAP server and was fixed in openldap 2.4.55 during a request for renaming RDNs. An unauthenticated attacker could remotely crash the slapd process by sending a specially crafted request causing a Denial of Service. 2020-12-02T00:00:00.000Z 2020-12-09T00:00:00.000Z
msrc_cve-2020-25704 A flaw memory leak in the Linux kernel performance monitoring subsystem was found in the way if using PERF_EVENT_IOC_SET_FILTER. A local user could use this flaw to starve the resources causing denial of service. 2020-12-02T00:00:00.000Z 2020-12-08T00:00:00.000Z
msrc_cve-2020-25723 A reachable assertion issue was found in the USB EHCI emulation code of QEMU. It could occur while processing USB requests due to missing handling of DMA memory map failure. A malicious privileged user within the guest may abuse this flaw to send bogus USB requests and crash the QEMU process on the host resulting in a denial of service. 2020-12-02T00:00:00.000Z 2020-12-08T00:00:00.000Z
msrc_cve-2020-27534 util/binfmt_misc/check.go in Builder in Docker Engine before 19.03.9 calls os.OpenFile with a potentially unsafe qemu-check temporary pathname constructed with an empty first argument in an ioutil.TempDir call. 2020-12-02T00:00:00.000Z 2021-07-16T00:00:00.000Z
msrc_cve-2020-27777 A flaw was found in the way RTAS handled memory accesses in userspace to kernel communication. On a locked down (usually due to Secure Boot) guest system running on top of PowerVM or KVM hypervisors (pseries platform) a root like local user could use this flaw to further increase their privileges to that of a running kernel. 2020-12-02T00:00:00.000Z 2020-12-23T00:00:00.000Z
msrc_cve-2020-27780 A flaw was found in Linux-Pam in versions prior to 1.5.1 in the way it handle empty passwords for non-existing users. When the user doesn't exist PAM try to authenticate with root and in the case of an empty password it successfully authenticate. 2020-12-02T00:00:00.000Z 2020-12-23T00:00:00.000Z
msrc_cve-2020-27783 A XSS vulnerability was discovered in python-lxml's clean module. The module's parser didn't properly imitate browsers which caused different behaviors between the sanitizer and the user's page. A remote attacker could exploit this flaw to run arbitrary HTML/JS code. 2020-12-02T00:00:00.000Z 2021-12-16T00:00:00.000Z
msrc_cve-2020-27821 A flaw was found in the memory management API of QEMU during the initialization of a memory region cache. This issue could lead to an out-of-bounds write access to the MSI-X table while performing MMIO operations. A guest user may abuse this flaw to crash the QEMU process on the host resulting in a denial of service. This flaw affects QEMU versions prior to 5.2.0. 2020-12-02T00:00:00.000Z 2020-12-11T00:00:00.000Z
msrc_cve-2020-28458 All versions of package datatables.net are vulnerable to Prototype Pollution 2020-12-02T00:00:00.000Z 2026-02-18T14:30:59.000Z
msrc_cve-2020-28925 Bolt before 3.7.2 does not restrict filter options in a Request in the Twig context, and is therefore inconsistent with the "How to Harden Your PHP for Better Security" guidance. 2020-12-02T00:00:00.000Z 2025-10-01T23:11:05.000Z
msrc_cve-2020-28935 Local symlink attack in Unbound and NSD 2020-12-02T00:00:00.000Z 2021-12-16T00:00:00.000Z
msrc_cve-2020-29361 An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocations in the p11-kit library and the p11-kit list command where overflow checks are missing before calling realloc or calloc. 2020-12-02T00:00:00.000Z 2020-12-19T00:00:00.000Z
msrc_cve-2020-29362 An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit server/remote commands and the client library. When the remote entity supplies a byte array through a serialized PKCS#11 function call the receiving entity may allow the reading of up to 4 bytes of memory past the heap allocation. 2020-12-02T00:00:00.000Z 2020-12-24T00:00:00.000Z
msrc_cve-2020-29363 An issue was discovered in p11-kit 0.23.6 through 0.23.21. A heap-based buffer overflow has been discovered in the RPC protocol used by p11-kit server/remote commands and the client library. When the remote entity supplies a serialized byte array in a CK_ATTRIBUTE the receiving entity may not allocate sufficient length for the buffer to store the deserialized value. 2020-12-02T00:00:00.000Z 2020-12-24T00:00:00.000Z
msrc_cve-2020-29396 A sandboxing issue in Odoo Community 11.0 through 13.0 and Odoo Enterprise 11.0 through 13.0 when running with Python 3.6 or later allows remote authenticated users to execute arbitrary code leading to privilege escalation. 2020-12-02T00:00:00.000Z 2020-12-24T00:00:00.000Z
ID Description Published Updated
ncsc-2026-0122 Kwetsbaarheid verholpen in Cisco Webex Services 2026-04-17T08:37:31.398143Z 2026-04-17T08:37:31.398143Z
ncsc-2026-0123 Kwetsbaarheid verholpen in ASP.NET Core van Microsoft 2026-04-22T09:40:27.334869Z 2026-04-22T09:40:27.334869Z
ncsc-2026-0124 Kwetsbaarheden verholpen in Oracle Identity Manager Connector 2026-04-22T11:33:45.816246Z 2026-04-22T11:33:45.816246Z
ncsc-2026-0125 Kwetsbaarheden verholpen in Oracle Enterprise Manager 2026-04-22T12:46:17.624971Z 2026-04-22T12:46:17.624971Z
ncsc-2026-0126 Kwetsbaarheden verholpen in Oracle E-Business Suite 2026-04-22T12:56:26.266249Z 2026-04-22T12:56:26.266249Z
ncsc-2026-0127 Kwetsbaarheden verholpen in Oracle PeopleSoft 2026-04-22T14:10:36.199130Z 2026-04-22T14:10:36.199130Z
ncsc-2026-0128 Kwetsbaarheden verholpen in GitLab EE en CE 2026-04-23T11:21:11.080481Z 2026-04-23T11:21:11.080481Z
ID Description Published Updated
ID Description Published Updated
opensuse-su-2019:2418-1 Security update for docker-runc 2019-10-31T09:26:56Z 2019-10-31T09:26:56Z
opensuse-su-2019:2420-1 Security update for chromium, re2 2019-11-01T20:24:26Z 2019-11-01T20:24:26Z
opensuse-su-2019:2421-1 Security update for chromium 2019-11-02T18:28:59Z 2019-11-02T18:28:59Z
opensuse-su-2019:2424-1 Security update for chromium, re2 2019-11-02T20:24:39Z 2019-11-02T20:24:39Z
opensuse-su-2019:2425-1 Security update for chromium, re2 2019-11-03T08:56:17Z 2019-11-03T08:56:17Z
opensuse-su-2019:2426-1 Security update for chromium 2019-11-03T19:37:47Z 2019-11-03T19:37:47Z
opensuse-su-2019:2427-1 Security update for chromium 2019-11-04T10:19:37Z 2019-11-04T10:19:37Z
opensuse-su-2019:2432-1 Security update for binutils 2019-11-05T15:30:18Z 2019-11-05T15:30:18Z
opensuse-su-2019:2434-1 Security update for docker-runc 2019-11-05T15:30:38Z 2019-11-05T15:30:38Z
opensuse-su-2019:2435-1 Security update for nfs-utils 2019-11-05T15:30:45Z 2019-11-05T15:30:45Z
opensuse-su-2019:2438-1 Security update for python3 2019-11-05T15:31:23Z 2019-11-05T15:31:23Z
opensuse-su-2019:2441-1 Security update for php7 2019-11-05T15:32:04Z 2019-11-05T15:32:04Z
opensuse-su-2019:2442-1 Security update for samba 2019-11-05T15:32:14Z 2019-11-05T15:32:14Z
opensuse-su-2019:2444-1 Security update for the Linux Kernel 2019-11-05T17:28:40Z 2019-11-05T17:28:40Z
opensuse-su-2019:2447-1 Security update for chromium 2019-11-06T17:25:26Z 2019-11-06T17:25:26Z
opensuse-su-2019:2451-1 Security update for MozillaFirefox, MozillaFirefox-branding-SLE 2019-11-09T11:20:57Z 2019-11-09T11:20:57Z
opensuse-su-2019:2452-1 Recommended update for MozillaThunderbird 2019-11-09T11:21:24Z 2019-11-09T11:21:24Z
opensuse-su-2019:2453-1 Security update for python3 2019-11-09T12:45:53Z 2019-11-09T12:45:53Z
opensuse-su-2019:2454-1 Security update for libtomcrypt 2019-11-09T12:46:03Z 2019-11-09T12:46:03Z
opensuse-su-2019:2457-1 Security update for php7 2019-11-09T12:46:39Z 2019-11-09T12:46:39Z
opensuse-su-2019:2458-1 Security update for samba 2019-11-09T12:46:49Z 2019-11-09T12:46:49Z
opensuse-su-2019:2459-1 Security update for MozillaFirefox, MozillaFirefox-branding-SLE 2019-11-09T12:47:13Z 2019-11-09T12:47:13Z
opensuse-su-2019:2464-1 Recommended update for MozillaThunderbird 2019-11-09T12:48:20Z 2019-11-09T12:48:20Z
opensuse-su-2019:2466-1 Security update for gdal 2019-11-09T15:49:48Z 2019-11-09T15:49:48Z
opensuse-su-2019:2472-1 Security update for python-ecdsa 2019-11-09T23:20:27Z 2019-11-09T23:20:27Z
opensuse-su-2019:2474-1 Security update for python-ecdsa 2019-11-09T23:20:49Z 2019-11-09T23:20:49Z
opensuse-su-2019:2477-1 Recommended update for bcm20702a1-firmware 2019-11-10T05:19:56Z 2019-11-10T05:19:56Z
opensuse-su-2019:2483-1 Security update for libssh2_org 2019-11-11T13:22:11Z 2019-11-11T13:22:11Z
opensuse-su-2019:2493-1 Security update for gdb 2019-11-12T19:12:57Z 2019-11-12T19:12:57Z
opensuse-su-2019:2494-1 Security update for gdb 2019-11-12T19:13:11Z 2019-11-12T19:13:11Z
ID Description Published Updated
ID Description Published Updated
rhsa-2006:0191 Red Hat Security Advisory: kernel security update 2006-02-01T17:57:00+00:00 2025-11-21T17:30:00+00:00
rhsa-2006:0194 Red Hat Security Advisory: gd security update 2006-02-01T18:05:00+00:00 2025-11-21T17:30:00+00:00
rhsa-2006:0200 Red Hat Security Advisory: firefox security update 2006-02-02T15:50:00+00:00 2026-02-17T02:19:47+00:00
rhsa-2006:0207 Red Hat Security Advisory: gnutls security update 2006-02-10T21:43:00+00:00 2025-11-21T17:30:03+00:00
rhsa-2006:0201 Red Hat Security Advisory: xpdf security update 2006-02-13T15:27:00+00:00 2025-11-21T17:30:01+00:00
rhsa-2006:0206 Red Hat Security Advisory: kdegraphics security update 2006-02-13T15:31:00+00:00 2025-11-21T17:30:02+00:00
rhsa-2006:0205 Red Hat Security Advisory: libpng security update 2006-02-13T15:35:00+00:00 2025-11-21T17:30:02+00:00
rhsa-2006:0178 Red Hat Security Advisory: ImageMagick security update 2006-02-14T16:12:00+00:00 2025-11-21T17:29:58+00:00
rhsa-2006:0195 Red Hat Security Advisory: tar security update 2006-02-21T14:35:00+00:00 2026-01-13T22:07:45+00:00
rhsa-2006:0217 Red Hat Security Advisory: metamail security update 2006-02-21T14:38:00+00:00 2025-11-21T17:30:03+00:00
rhsa-2006:0232 Red Hat Security Advisory: tar security update 2006-03-01T15:03:00+00:00 2025-11-21T17:30:04+00:00
rhsa-2006:0129 Red Hat Security Advisory: spamassassin security update 2006-03-07T15:14:00+00:00 2025-11-21T17:29:52+00:00
rhsa-2006:0044 Red Hat Security Advisory: openssh security update 2006-03-07T15:15:00+00:00 2025-11-21T17:29:55+00:00
rhsa-2006:0016 Red Hat Security Advisory: initscripts security update 2006-03-07T15:16:00+00:00 2025-11-21T17:29:50+00:00
rhsa-2006:0052 Red Hat Security Advisory: squid security update 2006-03-07T15:17:00+00:00 2025-11-21T17:29:51+00:00
rhsa-2006:0132 Red Hat Security Advisory: Updated kernel packages available for Red Hat Enterprise Linux 4 Update 3 2006-03-07T15:29:00+00:00 2025-11-21T17:29:53+00:00
rhsa-2006:0161 Red Hat Security Advisory: RHAPS security and enhancement update 2006-03-07T20:30:00+00:00 2025-11-21T17:29:56+00:00
rhsa-2006:0204 Red Hat Security Advisory: mailman security update 2006-03-07T20:44:00+00:00 2025-11-21T17:30:01+00:00
rhsa-2006:0197 Red Hat Security Advisory: python security update 2006-03-09T20:45:00+00:00 2025-11-21T17:30:04+00:00
rhsa-2006:0262 Red Hat Security Advisory: kdegraphics security update 2006-03-09T20:53:00+00:00 2025-11-21T17:30:04+00:00
rhsa-2006:0144 Red Hat Security Advisory: Updated kernel packages available for Red Hat Enterprise Linux 3 Update 7 2006-03-15T14:05:00+00:00 2025-11-21T17:29:54+00:00
rhsa-2006:0117 Red Hat Security Advisory: vixie-cron security update 2006-03-15T14:06:00+00:00 2026-01-13T22:39:51+00:00
rhsa-2006:0015 Red Hat Security Advisory: initscripts security update 2006-03-15T14:13:00+00:00 2025-11-21T17:29:53+00:00
rhsa-2006:0045 Red Hat Security Advisory: squid security update 2006-03-15T14:14:00+00:00 2025-11-21T17:29:51+00:00
rhsa-2006:0266 Red Hat Security Advisory: gnupg security update 2006-03-15T16:36:00+00:00 2025-11-21T17:30:06+00:00
rhsa-2006:0268 Red Hat Security Advisory: flash-plugin security update 2006-03-15T22:43:00+00:00 2025-11-21T17:30:06+00:00
rhsa-2006:0265 Red Hat Security Advisory: sendmail security update 2006-03-22T16:07:00+00:00 2025-11-21T17:30:06+00:00
rhsa-2006:0264 Red Hat Security Advisory: sendmail security update 2006-03-22T16:14:00+00:00 2025-11-21T17:30:05+00:00
rhsa-2006:0257 Red Hat Security Advisory: RealPlayer security update 2006-03-22T20:29:00+00:00 2025-11-21T17:30:04+00:00
rhsa-2006:0271 Red Hat Security Advisory: freeradius security update 2006-04-04T08:51:00+00:00 2026-01-13T22:13:38+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
suse-su-2016:1149-1 Security update for freetype2 2016-04-25T15:38:39Z 2016-04-25T15:38:39Z
suse-su-2016:1154-1 Security update for xen 2016-04-26T10:49:46Z 2016-04-26T10:49:46Z
suse-su-2016:1159-1 Security update for docker 2016-04-26T12:32:54Z 2016-04-26T12:32:54Z
suse-su-2016:1166-1 Security update for php5 2016-04-27T14:46:35Z 2016-04-27T14:46:35Z
suse-su-2016:1177-1 Security update for ntp 2016-04-28T13:45:26Z 2016-04-28T13:45:26Z
suse-su-2016:1175-1 Security update for ntp 2016-04-28T13:46:02Z 2016-04-28T13:46:02Z
suse-su-2016:1195-1 Security update for python-tornado 2016-05-02T13:01:41Z 2016-05-02T13:01:41Z
suse-su-2016:1203-1 Security update for the Linux Kernel 2016-05-03T13:29:41Z 2016-05-03T13:29:41Z
suse-su-2016:1204-1 Security update for libxml2 2016-05-03T14:20:10Z 2016-05-03T14:20:10Z
suse-su-2016:1205-1 Security update for libxml2 2016-05-03T14:22:21Z 2016-05-03T14:22:21Z
suse-su-2016:1206-1 Security update for openssl1 2016-05-03T16:38:12Z 2016-05-03T16:38:12Z
suse-su-2016:1228-1 Security update for openssl 2016-05-04T11:13:58Z 2016-05-04T11:13:58Z
suse-su-2016:1232-1 Security update for nginx-1.0 2016-05-04T12:28:17Z 2016-05-04T12:28:17Z
suse-su-2016:1233-1 Security update for openssl 2016-05-04T12:34:59Z 2016-05-04T12:34:59Z
suse-su-2016:1231-1 Security update for compat-openssl097g 2016-05-04T12:35:53Z 2016-05-04T12:35:53Z
suse-su-2016:1248-1 Security update for java-1_8_0-openjdk 2016-05-06T07:49:19Z 2016-05-06T07:49:19Z
suse-su-2016:1250-1 Security update for java-1_7_0-openjdk 2016-05-06T07:49:45Z 2016-05-06T07:49:45Z
suse-su-2016:1249-1 Security update for subversion 2016-05-06T07:50:15Z 2016-05-06T07:50:15Z
suse-su-2016:1247-1 Security update for ntp 2016-05-06T07:50:51Z 2016-05-06T07:50:51Z
suse-su-2016:1258-1 Security update for MozillaFirefox 2016-05-06T14:49:27Z 2016-05-06T14:49:27Z
suse-su-2016:1260-1 Security update for ImageMagick 2016-05-07T07:45:12Z 2016-05-07T07:45:12Z
suse-su-2016:1259-1 Security update for spice 2016-05-07T07:47:04Z 2016-05-07T07:47:04Z
suse-su-2016:1267-1 Security update for compat-openssl098 2016-05-09T06:50:20Z 2016-05-09T06:50:20Z
suse-su-2016:1276-1 Security update for GraphicsMagick 2016-05-11T11:49:10Z 2016-05-11T11:49:10Z
suse-su-2016:1275-1 Security update for ImageMagick 2016-05-11T11:51:45Z 2016-05-11T11:51:45Z
suse-su-2016:1278-1 Security update for ntp 2016-05-11T12:37:44Z 2016-05-11T12:37:44Z
suse-su-2016:1277-1 Security update for php5 2016-05-11T12:38:12Z 2016-05-11T12:38:12Z
suse-su-2016:1279-1 Security update for mysql 2016-05-11T12:39:19Z 2016-05-11T12:39:19Z
suse-su-2016:1290-1 Security update for openssl 2016-05-12T14:57:49Z 2016-05-12T14:57:49Z
suse-su-2016:1291-1 Security update for ntp 2016-05-12T14:58:24Z 2016-05-12T14:58:24Z
ID Description Published Updated
alsa-2023:1140 Moderate: curl security update 2023-03-07T00:00:00Z 2023-03-13T10:55:57Z
alsa-2023:1141 Moderate: gnutls security and bug fix update 2023-03-07T00:00:00Z 2023-03-13T11:03:45Z
alsa-2023:1252 Important: nss security update 2023-03-15T00:00:00Z 2023-03-16T07:22:58Z
alsa-2023:1336 Important: firefox security update 2023-03-20T00:00:00Z 2023-03-20T21:01:33Z
alsa-2023:1337 Important: firefox security update 2023-03-20T00:00:00Z 2023-03-20T21:08:23Z
alsa-2023:1368 Important: nss security and bug fix update 2023-03-21T00:00:00Z 2023-03-23T17:15:54Z
alsa-2023:1403 Important: thunderbird security update 2023-03-22T00:00:00Z 2023-03-23T17:21:47Z
alsa-2023:1405 Important: openssl security update 2023-03-22T00:00:00Z 2023-03-23T17:30:20Z
alsa-2023:1407 Important: thunderbird security update 2023-03-22T00:00:00Z 2023-03-23T17:40:24Z
alsa-2023:1469 Important: kernel-rt security and bug fix update 2023-03-27T00:00:00Z 2023-03-27T22:27:39Z
alsa-2023:1470 Important: kernel security, bug fix, and enhancement update 2023-03-27T00:00:00Z 2023-03-27T21:59:31Z
alsa-2023:1551 Important: tigervnc security update 2023-04-04T00:00:00Z 2023-04-20T11:47:05Z
alsa-2023:1566 Important: kernel security, bug fix, and enhancement update 2023-04-04T00:00:00Z 2023-09-15T13:41:48Z
alsa-2023:1569 Moderate: gnutls security and bug fix update 2023-04-04T00:00:00Z 2023-04-05T12:14:32Z
alsa-2023:1572 Important: pesign security update 2023-04-04T00:00:00Z 2023-04-05T12:05:37Z
alsa-2023:1576 Moderate: postgresql:13 security update 2023-04-04T00:00:00Z 2023-04-05T11:54:18Z
alsa-2023:1582 Moderate: nodejs:16 security, bug fix, and enhancement update 2023-04-04T00:00:00Z 2023-04-20T12:04:52Z
alsa-2023:1583 Moderate: nodejs:18 security, bug fix, and enhancement update 2023-04-04T00:00:00Z 2023-04-20T12:25:58Z
alsa-2023:1584 Important: kernel-rt security and bug fix update 2023-04-04T00:00:00Z 2023-09-15T13:41:48Z
alsa-2023:1591 Important: pcs security update 2023-04-04T00:00:00Z 2023-04-05T11:46:21Z
alsa-2023:1592 Important: tigervnc security update 2023-04-04T00:00:00Z 2023-04-05T11:38:22Z
alsa-2023:1670 Important: httpd and mod_http2 security update 2023-04-06T00:00:00Z 2023-04-20T13:39:37Z
alsa-2023:1673 Important: httpd:2.4 security update 2023-04-06T00:00:00Z 2023-04-20T12:45:45Z
alsa-2023:1691 Important: kernel-rt security and bug fix update 2023-04-11T00:00:00Z 2023-04-20T13:48:52Z
alsa-2023:1693 Moderate: postgresql security update 2023-04-11T00:00:00Z 2023-04-20T13:52:25Z
alsa-2023:1696 Moderate: haproxy security update 2023-04-11T00:00:00Z 2023-04-20T14:00:39Z
alsa-2023:1701 Moderate: curl security update 2023-04-11T00:00:00Z 2023-04-20T14:09:15Z
alsa-2023:1703 Important: kernel security and bug fix update 2023-04-11T00:00:00Z 2023-04-20T14:34:53Z
alsa-2023:1743 Important: nodejs:14 security, bug fix, and enhancement update 2023-04-12T00:00:00Z 2023-04-20T13:00:15Z
alsa-2023:1786 Important: firefox security update 2023-04-14T00:00:00Z 2023-04-20T15:16:30Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
osv-2020-1667 Heap-use-after-free in xmlTextReaderRead 2020-08-27T00:00:24.605339Z 2022-04-13T03:04:39.916971Z
osv-2020-1668 Memcpy-param-overlap in ot::Message::Write 2020-08-27T00:00:35.795876Z 2022-04-13T03:04:38.904167Z
osv-2020-1671 Heap-buffer-overflow in Dasher::Dasher 2020-08-29T00:00:13.673013Z 2023-02-24T02:01:45.842239Z
osv-2020-1676 Heap-buffer-overflow in Op_YCbCr_to_RGB<unsigned char>::convert_colorspace 2020-08-30T00:00:07.006768Z 2022-04-13T03:30:49.549940Z
osv-2020-1677 Heap-use-after-free in UA_NodeMap_delete 2020-08-30T00:00:18.780626Z 2022-04-13T03:04:41.410030Z
osv-2020-1682 Heap-buffer-overflow in void arrow::internal::TransferBitmap< 2020-09-01T00:00:34.917477Z 2022-04-13T03:04:31.861612Z
osv-2020-1683 UNKNOWN READ in zend_gc_delref 2020-09-01T00:00:58.177927Z 2022-04-13T03:04:33.355942Z
osv-2020-1687 Bad-cast to pcpp::Layer from invalid vptr 2020-09-02T00:00:36.557488Z 2022-04-13T03:04:38.674561Z
osv-2020-1694 Segv on unknown address in std::__1::__tree<std::__1::__value_type<unsigned int, std::__1::pair<std::__1::b 2020-09-04T00:00:07.333173Z 2022-04-13T03:04:41.030382Z
osv-2020-1695 Stack-buffer-overflow in uWS::TopicTree::trimTree 2020-09-04T00:00:08.299412Z 2022-04-13T03:04:40.998047Z
osv-2020-1698 Heap-buffer-overflow in macho_handle_segment 2020-09-04T00:00:09.191362Z 2022-04-13T03:04:42.177437Z
osv-2020-1699 Heap-buffer-overflow in rnp_key_store_kbx_from_src 2020-09-04T00:00:16.840683Z 2022-04-13T03:33:34.317362Z
osv-2020-1700 UNKNOWN READ in zend_gc_delref 2020-09-04T00:00:30.328352Z 2022-04-13T03:04:33.617126Z
osv-2020-1702 Heap-buffer-overflow in mem_src_read 2020-09-04T00:00:43.281890Z 2022-04-13T03:32:28.309787Z
osv-2020-1712 Use-of-uninitialized-value in gx_color_frac_map 2020-09-07T00:00:05.414284Z 2022-04-13T03:04:34.282683Z
osv-2020-1715 Stack-buffer-overflow in ndpi_search_kerberos 2020-09-07T00:00:49.972310Z 2022-04-13T03:04:36.320061Z
osv-2020-1717 Segv on unknown address in ndpi_free 2020-09-08T00:01:04.525214Z 2022-04-13T03:04:35.983028Z
osv-2020-1720 Heap-buffer-overflow in hextoint 2020-09-08T00:01:07.773084Z 2022-04-13T03:04:41.624306Z
osv-2020-1726 Heap-use-after-free in xmlXPathNodeSetAdd 2020-09-11T00:00:07.083398Z 2022-04-13T03:04:39.942783Z
osv-2020-1727 Heap-buffer-overflow in mbedtls_nist_kw_wrap 2020-09-11T00:00:13.212710Z 2022-04-13T03:04:35.038631Z
osv-2020-1729 Use-of-uninitialized-value in ndpi_check_dga_name 2020-09-11T00:00:28.205135Z 2022-04-13T03:04:36.336114Z
osv-2020-1730 Bad-cast to RDKit::Atom 2020-09-11T00:00:51.334144Z 2022-04-13T03:04:41.515246Z
osv-2020-1733 Heap-buffer-overflow in le_to_u32 2020-09-11T00:01:15.355070Z 2022-04-13T03:04:32.360821Z
osv-2020-1735 Heap-use-after-free in zend_gc_delref 2020-09-12T00:01:46.026747Z 2022-04-13T03:04:33.606598Z
osv-2020-1741 Heap-use-after-free in zend_assign_to_variable 2020-09-13T00:00:46.091782Z 2022-04-13T03:04:33.349367Z
osv-2020-1762 Heap-use-after-free in gc_mark_grey 2020-09-16T00:00:06.911473Z 2022-04-13T03:04:33.611778Z
osv-2020-1768 Memcpy-param-overlap in zend_lex_tstring 2020-09-16T00:00:23.588932Z 2022-04-13T03:04:33.439261Z
osv-2020-1777 Heap-buffer-overflow in exif_process_IFD_in_MAKERNOTE 2020-09-16T00:00:31.920721Z 2022-04-13T03:04:33.411895Z
osv-2020-1779 Heap-use-after-free in zend_gc_addref 2020-09-17T00:00:13.246764Z 2022-04-13T07:12:28.838544Z
osv-2020-1782 Heap-buffer-overflow in cli_codepage_to_utf8 2020-09-18T00:00:05.693053Z 2022-04-13T03:04:39.397025Z
ID Description Published Updated
rustsec-2025-0034 soundness issue and unmaintained 2025-05-06T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0039 Lack of sufficient checks in public API 2025-05-06T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0064 soundness issue and unmaintained 2025-05-06T12:00:00Z 2025-09-11T07:03:09Z
rustsec-2025-0113 soundness issue and unmaintained 2025-05-06T12:00:00Z 2025-11-04T06:10:22Z
rustsec-2025-0036 surf is unmaintained 2025-05-17T12:00:00Z 2025-05-17T13:43:35Z
rustsec-2025-0037 Pingora Request Smuggling and Cache Poisoning 2025-05-22T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0062 Heap Buffer Overflow in the DrainCol Destructor 2025-05-22T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0138 --allow-read / --allow-write permission bypass in `node:sqlite` 2025-06-03T12:00:00Z 2025-12-29T10:04:21Z
rustsec-2025-0041 matrix-sdk-crypto vulnerable to encrypted event sender spoofing by homeserver administrator 2025-06-11T12:00:00Z 2025-06-12T09:17:43Z
rustsec-2025-0044 Four unique double-free vulnerabilities triggered via safe APIs 2025-06-16T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0042 Uninitialized read after allocating MemBump 2025-07-11T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0043 matrix-sdk-sqlite: SQL injection vulnerability in `SqliteEventCacheStore::find_event_with_relations` 2025-07-11T12:00:00Z 2025-07-11T15:30:12Z
rustsec-2025-0045 ConstStaticCell could have been used to pass non-Send values to another thread 2025-07-17T12:00:00Z 2025-07-17T14:38:11Z
rustsec-2025-0046 Host panic with `fd_renumber` WASIp1 function 2025-07-18T12:00:00Z 2025-07-18T19:48:13Z
rustsec-2025-0112 Possible host crash with host-to-wasm component intrinsics 2025-07-18T12:00:00Z 2025-10-25T11:20:30Z
rustsec-2025-0048 tsify-next is unmaintained, use tsify instead 2025-07-29T12:00:00Z 2025-08-13T14:05:32Z
rustsec-2025-0051 `xcb::Connection::connect_to_fd*` functions violate I/O safety 2025-08-05T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0047 Out-of-bounds access in `get_disjoint_mut` due to incorrect bounds check 2025-08-12T12:00:00Z 2025-08-12T09:41:13Z
rustsec-2025-0049 User-defined implementations of the safe trait scratchpad::Tracking can cause heap buffer overflows 2025-08-14T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0050 IdMap::from_iter may lead to uninitialized memory being freed on drop 2025-08-14T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0053 Multiple memory corruption vulnerabilities in safe APIs 2025-08-14T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0054 ArrayQueue::push_front is not panic-safe 2025-08-14T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0052 async-std has been discontinued 2025-08-24T12:00:00Z 2025-08-27T11:36:30Z
rustsec-2025-0157 `statsrelay-protobuf` was removed from crates.io for malicious code 2025-08-26T12:00:00Z 2026-03-30T21:40:18Z
rustsec-2025-0055 Logging user input may result in poisoning logs with ANSI escape sequences 2025-08-29T12:00:00Z 2025-09-02T11:05:02Z
rustsec-2025-0056 adler crate is unmaintained, use adler2 instead 2025-09-05T12:00:00Z 2025-09-05T09:05:48Z
rustsec-2025-0057 fxhash - no longer maintained 2025-09-05T12:00:00Z 2025-09-05T19:09:01Z
rustsec-2025-0058 custom_derive crate is unmaintained 2025-09-07T12:00:00Z 2025-09-07T08:38:20Z
rustsec-2025-0059 servo-fontconfig crate is unmaintained 2025-09-08T12:00:00Z 2025-09-08T09:09:54Z
rustsec-2025-0060 crypto-hash crate is unmaintained 2025-09-08T12:00:00Z 2025-09-08T09:09:54Z
ID Description Published Updated
bit-discourse-2023-25172 Discourse vulnerable to Cross-site Scripting - user name displayed on post 2024-03-06T10:59:15.105Z 2025-05-20T10:02:07.006Z
bit-grafana-2021-41244 Cross organization admin control in Grafana 2024-03-06T10:59:15.365Z 2025-05-20T10:02:07.006Z
bit-mlflow-2023-1177 Path Traversal: '\..\filename' in mlflow/mlflow 2024-03-06T10:59:15.795Z 2025-05-20T10:02:07.006Z
bit-drupal-2020-11022 jQuery has a potential XSS vulnerability 2024-03-06T10:59:15.938Z 2026-04-17T00:10:47.507Z
bit-airflow-2021-29621 Observable Response Discrepancy in Flask-AppBuilder 2024-03-06T10:59:16.077Z 2025-05-20T10:02:07.006Z
bit-node-2023-39331 2024-03-06T10:59:16.754Z 2025-11-06T13:25:46.476Z
bit-magento-2021-21032 Magento Commerce Failure To Invalidate User Session Could Lead To Unauthorized Access 2024-03-06T10:59:18.181Z 2026-03-20T09:47:33.381Z
bit-dotnet-2021-34485 .NET Core and Visual Studio Information Disclosure Vulnerability 2024-03-06T10:59:18.390Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-35131 Moodle: xss risk on groups page 2024-03-06T10:59:19.194Z 2025-05-20T10:02:07.006Z
bit-nginx-2021-3618 2024-03-06T10:59:22.065Z 2025-04-03T14:40:37.652Z
bit-gitlab-2023-4532 Incorrect Authorization in GitLab 2024-03-06T10:59:22.331Z 2025-05-20T10:02:07.006Z
bit-golang-2022-30635 Stack exhaustion when decoding certain messages in encoding/gob 2024-03-06T10:59:22.735Z 2025-05-20T10:02:07.006Z
bit-odoo-2021-45071 2024-03-06T10:59:23.362Z 2025-04-03T14:40:37.652Z
bit-mariadb-2022-27448 2024-03-06T10:59:24.078Z 2025-04-03T14:40:37.652Z
bit-grafana-2021-41174 XSS vulnerability allowing arbitrary JavaScript execution 2024-03-06T10:59:24.698Z 2025-05-20T10:02:07.006Z
bit-jenkins-2021-21695 2024-03-06T10:59:24.817Z 2025-04-03T14:40:37.652Z
bit-node-2023-38552 2024-03-06T10:59:25.318Z 2025-11-06T13:25:46.476Z
bit-discourse-2023-25167 Regular expression denial of service via installing themes via git in discourse 2024-03-06T10:59:25.808Z 2025-05-20T10:02:07.006Z
bit-envoy-2021-21378 JWT authentication bypass with unknown issuer token 2024-03-06T10:59:25.814Z 2025-05-20T10:02:07.006Z
bit-airflow-2021-28359 Apache Airflow Reflected XSS via Origin Query Argument in URL 2024-03-06T10:59:26.792Z 2025-05-20T10:02:07.006Z
bit-mlflow-2023-1176 Absolute Path Traversal in mlflow/mlflow 2024-03-06T10:59:27.081Z 2025-05-20T10:02:07.006Z
bit-magento-2021-21031 Magento Commerce Failure To Invalidate User Session Could Lead To Unauthorized Access 2024-03-06T10:59:28.314Z 2026-03-20T09:47:33.381Z
bit-moodle-2023-30944 Moodle: minor sql injection risk in external wiki method for listing pages 2024-03-06T10:59:29.074Z 2025-05-20T10:02:07.006Z
bit-dotnet-2021-31957 ASP.NET Core Denial of Service Vulnerability 2024-03-06T10:59:29.617Z 2025-05-20T10:02:07.006Z
bit-gitlab-2023-4522 Improper Validation of Specified Type of Input in GitLab 2024-03-06T10:59:30.475Z 2025-05-20T10:02:07.006Z
bit-nginx-2021-23017 2024-03-06T10:59:30.599Z 2025-04-03T14:40:37.652Z
bit-golang-2022-30634 Indefinite hang with large buffers on Windows in crypto/rand 2024-03-06T10:59:32.189Z 2025-05-20T10:02:07.006Z
bit-mariadb-2022-27447 2024-03-06T10:59:33.206Z 2025-04-03T14:40:37.652Z
bit-odoo-2021-44775 2024-03-06T10:59:33.873Z 2025-04-03T14:40:37.652Z
bit-jenkins-2021-21694 2024-03-06T10:59:35.987Z 2025-04-03T14:40:37.652Z
ID Description Published Updated
ID Description Published Updated
ID Description Updated
ID Description Published Updated
ID Description Published Updated
certa-2004-avi-048 Vulnérabilités sur Trillian 2004-02-26T00:00:00.000000 2004-02-26T00:00:00.000000
certa-2004-avi-049 Vulnérabilité dans nCipher 2004-02-26T00:00:00.000000 2004-02-26T00:00:00.000000
certa-2004-avi-050 Vulnérabilité sur le module mod_python du serveur HTTP Apache 2004-02-27T00:00:00.000000 2004-05-13T00:00:00.000000
certa-2004-avi-051 Vulnérabilité de la bibliothèque libxml2 2004-02-27T00:00:00.000000 2004-05-12T00:00:00.000000
certa-2004-avi-052 Vulnérabilité dans le navigateur Mozilla 2004-02-27T00:00:00.000000 2004-03-01T00:00:00.000000
certa-2004-avi-053 Vulnérabilité des produits Proventia, BlackICE et RealSecure d'ISS 2004-02-27T00:00:00.000000 2004-02-27T00:00:00.000000
certa-2004-avi-054 Vulnérabilité de la commande passwd sous Solaris 2004-03-01T00:00:00.000000 2004-03-01T00:00:00.000000
certa-2004-avi-055 Vulnérabilité de la commande conv_fix de Solaris 2004-03-01T00:00:00.000000 2004-03-01T00:00:00.000000
certa-2004-avi-056 Vulnérabilité de WinZip 2004-03-01T00:00:00.000000 2004-03-16T00:00:00.000000
certa-2004-avi-057 Vulnérabilité sur jail_attach sous FreeBSD 2004-03-01T00:00:00.000000 2004-03-01T00:00:00.000000
certa-2004-avi-058 Vulnérabilité des mtools sous Unix 2004-03-01T00:00:00.000000 2004-03-01T00:00:00.000000
certa-2004-avi-059 Déni de service sous FreeBSD 2004-03-03T00:00:00.000000 2004-03-03T00:00:00.000000
certa-2004-avi-060 Vulnérabilité sur Novell Client Firewall 2.x 2004-03-03T00:00:00.000000 2004-03-03T00:00:00.000000
certa-2004-avi-061 Vulnérabilité de UUDeview 2004-03-03T00:00:00.000000 2004-05-12T00:00:00.000000
certa-2004-avi-062 Vulnérabilité de Squid 2004-03-03T00:00:00.000000 2004-05-12T00:00:00.000000
certa-2004-avi-063 Vulnérabilité dans Symantec Gateway Security 2004-03-03T00:00:00.000000 2004-03-03T00:00:00.000000
certa-2004-avi-064 Vulnérabilité sur Proftpd 2004-03-04T00:00:00.000000 2004-03-04T00:00:00.000000
certa-2004-avi-065 Vulnérabilité d'Adobe Acrobat Reader 2004-03-04T00:00:00.000000 2004-03-11T00:00:00.000000
certa-2004-avi-066 Vulnérabilité dans le serveur WFTPD pour Windows 2004-03-04T00:00:00.000000 2004-03-04T00:00:00.000000
certa-2004-avi-067 Déni de service des commutateurs Cisco CSS 11000 2004-03-05T00:00:00.000000 2004-03-05T00:00:00.000000
certa-2004-avi-068 Vulnérabilité sur les produits VPN NetScreen 5000 2004-03-05T00:00:00.000000 2004-03-05T00:00:00.000000
certa-2004-avi-069 Vulnérabilité de la commande passwd sur Sun 2004-03-08T00:00:00.000000 2004-03-08T00:00:00.000000
certa-2004-avi-070 Vulnérabilité dans le gestionnaire de base de données IBM DB2 2004-03-10T00:00:00.000000 2004-03-10T00:00:00.000000
certa-2004-avi-071 Vulnérabilité dans Windows Media Services 2004-03-10T00:00:00.000000 2004-03-10T00:00:00.000000
certa-2004-avi-072 Vulnérabilité dans Microsoft Outlook 2004-03-10T00:00:00.000000 2004-03-10T00:00:00.000000
certa-2004-avi-073 Vulnérabilité dans Microsoft MSN Messenger 2004-03-10T00:00:00.000000 2004-03-10T00:00:00.000000
certa-2004-avi-074 Vulnérabilités du serveur wu-ftpd 2004-03-10T00:00:00.000000 2004-07-17T00:00:00.000000
certa-2004-avi-075 Vulnérabilité dans la pile TCP/IP de OpenBSD 2004-03-10T00:00:00.000000 2004-03-10T00:00:00.000000
certa-2004-avi-076 Python 2.2 : Débordement de variable dans la gestion des réponses du DNS 2004-03-10T00:00:00.000000 2004-09-03T00:00:00.000000
certa-2004-avi-077 Vulnérabilités de uucp sous Sun Solaris 2004-03-11T00:00:00.000000 2004-03-11T00:00:00.000000
ID Description Published Updated
jvndb-2012-000084 Cybozu KUNAI for Android vulnerable in the WebView class 2012-09-07T16:40+09:00 2012-09-07T16:40+09:00
jvndb-2012-000085 KUNAI Browser for Remote Service beta vulnerable in the WebView class 2012-09-13T13:51+09:00 2012-09-13T13:51+09:00
jvndb-2012-000086 Email Anti-virus (formerly WebShield SMTP) vulnerable to denial-of-service 2012-09-20T12:31+09:00 2012-09-20T12:31+09:00
jvndb-2012-000087 myLittleAdmin for SQL Server 2000 vulnerable to arbitrary script execution 2012-09-20T12:33+09:00 2012-09-20T12:33+09:00
jvndb-2012-000089 ATOK for Android issue in the access permissions for the learning information file 2012-09-25T13:40+09:00 2012-09-25T13:40+09:00
jvndb-2012-000090 Trend Micro Control Manager vulnerable to SQL injection 2012-09-27T12:43+09:00 2012-09-27T12:43+09:00
jvndb-2012-000091 jigbrowser+ for Android vulnerable in the WebView class 2012-09-28T12:20+09:00 2012-09-28T12:20+09:00
jvndb-2012-000092 MyWebSearch vulnerable to cross-site scripting 2012-10-05T16:49+09:00 2012-10-05T16:49+09:00
jvndb-2012-000094 Smarty vulnerable to cross-site scripting 2012-10-10T14:45+09:00 2012-10-10T14:45+09:00
jvndb-2012-000088 Safari vulnerable to local file content disclosure 2012-10-23T14:57+09:00 2012-10-23T14:57+09:00
jvndb-2012-000093 Tokyo BBS vulnerable to cross-site scripting 2012-10-26T14:00+09:00 2012-10-26T14:00+09:00
jvndb-2012-000095 Mac OS X OpenSSH vulnerable to denial-of-service (DoS) 2012-10-31T15:01+09:00 2012-10-31T15:01+09:00
jvndb-2012-000096 MosP kintai kanri fails to restrict access permissions 2012-11-02T14:16+09:00 2012-11-02T14:16+09:00
jvndb-2012-000097 MosP kintai kanri vulnerable to authentication bypass 2012-11-02T14:18+09:00 2012-11-02T14:18+09:00
jvndb-2012-000098 Pebble vulnerability where entries may become unviewable 2012-11-02T14:20+09:00 2012-11-02T14:20+09:00
jvndb-2012-000099 Pebble vulnerable to HTTP header injection 2012-11-02T14:21+09:00 2012-11-02T14:21+09:00
jvndb-2012-000100 Pebble vulnerable to open redirect 2012-11-02T14:23+09:00 2012-11-02T14:23+09:00
jvndb-2012-005201 Multiple Vulnerabilities in Hitachi JP1/File Transmission Server/FTP 2012-11-05T17:58+09:00 2012-11-26T18:01+09:00
jvndb-2012-000101 BeZIP vulnerable to directory traversal 2012-11-07T16:01+09:00 2012-11-07T16:01+09:00
jvndb-2012-000102 Multiple Android devices vulnerable to denial-of-service (DoS) 2012-11-14T15:07+09:00 2012-11-30T18:01+09:00
jvndb-2012-000103 Monaca Debugger for Android information management vulnerability 2012-11-16T14:10+09:00 2012-11-16T14:10+09:00
jvndb-2012-000104 BIGACE vulnerable to session fixation 2012-11-21T14:34+09:00 2012-11-21T14:34+09:00
jvndb-2012-005485 Hitachi Device Manager Software Denial of Service (DoS) Vulnerability 2012-11-29T14:48+09:00 2012-11-29T14:48+09:00
jvndb-2012-005486 Denial of Service (DoS) Vulnerability in JP1/Automatic Job Management System 3 and JP1/Automatic Job Management System 2 2012-11-29T15:23+09:00 2012-11-29T15:23+09:00
jvndb-2012-000105 Multiple KYOCERA mobile devices may reboot during email reception 2012-11-30T13:58+09:00 2012-11-30T13:58+09:00
jvndb-2012-000106 KENT-WEB ACCESS REPORT vulnerable to cross-site scripting 2012-12-06T12:40+09:00 2012-12-06T12:40+09:00
jvndb-2012-000107 KENT-WEB ACCESS REPORT vulnerable to cross-site scripting 2012-12-06T12:41+09:00 2012-12-06T12:41+09:00
jvndb-2012-000108 Welcart vulnerable to cross-site scripting 2012-12-14T12:50+09:00 2012-12-14T12:50+09:00
jvndb-2012-000109 Welcart vulnerable to cross-site request forgery 2012-12-14T12:52+09:00 2012-12-14T12:52+09:00
jvndb-2012-000110 WikkaWiki vulnerable to cross-site scripting 2012-12-17T12:23+09:00 2012-12-17T12:23+09:00
ID Description Published Updated
cnvd-2015-00814 多个VMware产品存在远程权限提升漏洞 2015-01-29 2015-01-30
cnvd-2015-00815 WordPress插件Pixabay Images任意文件写入漏洞(CNVD-2015-00815) 2015-01-29 2015-01-30
cnvd-2015-00816 osTicket跨站脚本漏洞 2015-01-29 2015-01-30
cnvd-2015-00817 WordPress插件Pixabay Images任意文件写入漏洞(CNVD-2015-00817) 2015-01-29 2015-01-30
cnvd-2015-00818 vsftp存在未明漏洞 2015-01-29 2015-01-30
cnvd-2015-00819 Google Chrome拒绝服务漏洞(CNVD-2015-00819) 2015-01-29 2015-01-30
cnvd-2015-00820 Google Chrome PDFium内存错误引用漏洞 2015-01-29 2015-01-30
cnvd-2015-00821 Google Chrome uninstall-survey函数未授权访问漏洞 2015-01-29 2015-01-30
cnvd-2015-00822 FreeBSD远程拒绝服务漏洞(CNVD-2015-00822) 2015-01-29 2015-01-30
cnvd-2015-00823 PHP 'process_nested_data'函数内存错误引用漏洞 2015-01-29 2015-01-30
cnvd-2015-00824 IBM Dojo Toolkit存在多个跨站脚本漏洞 2015-01-29 2015-01-30
cnvd-2015-00825 Cisco Prime Service Catalog拒绝服务漏洞 2015-01-29 2015-01-30
cnvd-2015-00826 Pivotal Software management插件CRLF注入漏洞 2015-01-29 2015-01-30
cnvd-2015-00827 多个VMware产品存在拒绝服务漏洞 2015-01-29 2015-01-30
cnvd-2015-00828 多个VMware产品存在拒绝服务漏洞(CNVD-2015-00828) 2015-01-29 2015-01-30
cnvd-2015-00829 FreeBSD 'sys/dev/vt/vt_core.c'本地安全绕过漏洞 2015-01-29 2015-01-30
cnvd-2015-00830 FreeBSD本地权限提升漏洞(CNVD-2015-00830) 2015-01-29 2015-01-30
cnvd-2015-00831 IBM TRIRIGA Application Platform安全绕过漏洞 2015-01-29 2015-01-30
cnvd-2015-00832 IBM TRIRIGA Application Platform开放重定向漏洞 2015-01-29 2015-01-30
cnvd-2015-00833 IBM TRIRIGA Application Platform存在多个跨站脚本漏洞 2015-01-29 2015-01-30
cnvd-2015-00834 Adobe Flash Player双重释放远程代码执行漏洞 2015-01-29 2015-01-30
cnvd-2015-00835 D-Link DSL-2740R Web界面身份验证绕过漏洞 2015-01-29 2015-01-30
cnvd-2015-00836 Apple Mac OS X Gatekeeper Protection安全绕过漏洞 2015-01-29 2015-01-30
cnvd-2015-00837 Apple TV样式表跨域加载漏洞 2015-01-29 2015-01-30
cnvd-2015-00848 Apple TV和iOS企业签名应用安全绕过漏洞 2015-01-29 2015-02-04
cnvd-2015-00849 Apple iOS滚动栏边界处理UI伪造漏洞 2015-01-29 2015-02-04
cnvd-2015-00861 Apple TV和iOS应用程序安装处理安全绕过漏洞 2015-01-29 2015-02-04
cnvd-2015-00869 Apple TV和iOS mach_port_kobject内核接口信息泄露漏洞 2015-01-29 2015-02-04
cnvd-2015-00870 Apple iOS恶意站点Safari沙盒限制绕过漏洞 2015-01-29 2015-02-04
cnvd-2015-00871 Apple TV和iOS AFC符号链接漏洞 2015-01-29 2015-02-04
ID Description Published Updated
bdu:2015-03201 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03202 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03203 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03204 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03205 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03206 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03207 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03208 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03209 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03210 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03211 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03212 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03213 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03214 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03215 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03216 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03217 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03218 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03219 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03220 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03221 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03222 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03223 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03224 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03225 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03226 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03227 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03228 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03229 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03230 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
ID Description Updated
var-202003-1817 Tenda AC6 is a 1200M 11ac dual-band wireless router specifically designed for home users … 2022-05-04T09:15:59.440000Z
var-202001-1980 H3C S5120V2-SI switch is a Layer 2 Gigabit Ethernet switch product independently develope… 2022-05-04T09:16:06.894000Z
var-202001-1959 ZXR10 1800-2S is a router product of ZTE Corporation of China. ZTE ZXR10 1800-2S has fil… 2022-05-04T09:16:06.909000Z
var-201912-2001 Hangzhou Huasan Communication Technology Co., Ltd. (referred to as Huasan Communication),… 2022-05-04T09:16:09.309000Z
var-201910-1857 Hunan Santang Information Technology Co., Ltd. takes the IT operation and maintenance int… 2022-05-04T09:16:12.651000Z
var-201908-2201 Shenzhen Lucky Tenda Technology Co., Ltd. is one of the first pioneers in China's wireles… 2022-05-04T09:16:18.817000Z
var-201907-1715 Tenda D301 is a wireless router from China Tenda. There is a cross-site scripting vul… 2022-05-04T09:16:23.773000Z
var-201905-1427 Aviosoft DVD X Player Standard is a DVD player from Aviosoft, USA. Aviosoft DVD X Player… 2022-05-04T09:16:27.676000Z
var-201903-1640 ZTE Video Conference Terminal Weak Password Allows Initial Password Login 2022-05-04T09:16:33.708000Z
var-201901-1702 ShopsN single merchant b2c mall system is an open source online shop system developed usi… 2022-05-04T09:16:36.215000Z
var-201811-1128 The XM-JPE13-2R 960P is a high-definition night vision wireless intelligent surveillance … 2022-05-04T09:16:41.438000Z
var-201811-0561 A Insufficient Verification of Data Authenticity (CWE-345) vulnerability exists in the Mo… 2022-05-04T09:16:42.065000Z
var-201810-1622 Pelco Sarix Pro is a video surveillance device from Schneider Electric. Schneider Pelco … 2022-05-04T09:16:42.709000Z
var-201810-1601 LG Network Storage N1A1DD1 is a network storage product (NAS). A remote command executio… 2022-05-04T09:16:42.721000Z
var-201809-1334 The Fixon K2 (PSG1218) router is a new-generation wireless router necessary for entry-lev… 2022-05-04T09:16:47.372000Z
var-201807-2273 The D-LinkDIR-300 is a wireless router device. D-LinkDIR-300 has a cross-site request for… 2022-05-04T09:16:49.850000Z
var-201806-1889 Nagios is an open source free network monitoring tool that can effectively monitor the st… 2022-05-04T09:16:59.347000Z
var-201804-1731 Simo Smart DNS is a smart DNS device of Shanghai Simo Communication Technology Co., Ltd. … 2022-05-04T09:17:02.164000Z
var-201803-2357 The Play Library SDK is developed based on Dahua's proprietary stream encapsulation proto… 2022-05-04T09:17:06.026000Z
var-201802-1414 LFW800E is a gigabit intelligent firewall developed by Lenovo Tiangong Networks for netwo… 2022-05-04T09:17:08.567000Z
var-201801-1852 A cross-suite scripting vulnerability has been found in web functionality of Fujitsu Inte… 2022-05-04T09:17:10.276000Z
var-201801-1831 Intel AMT, the full name of INTEL Active Management Technology (Intel Active Management T… 2022-05-04T09:17:10.289000Z
var-201709-1252 Histream network cameras provide customers with complete network video surveillance produ… 2022-05-04T09:17:19.112000Z
var-201708-1644 The HG-100R is a router. There is a DNS hijacking vulnerability in the HUMAXWiFi router H… 2022-05-04T09:17:23.626000Z
var-201706-1152 A cross-site scripting vulnerability was found in uCosminexus Portal Framework, Groupmax … 2022-05-04T09:17:30.548000Z
var-201706-1131 Foscamcamera is a webcam that can push messages to mobile phones and directly implement v… 2022-05-04T09:17:30.559000Z
var-201706-1110 EnGenius is a Taiwanese wireless manufacturer brand. There is a remote command execution… 2022-05-04T09:17:30.571000Z
var-201705-4200 Buffalo is a router made by an American company. The Buffalo routing product has a gener… 2022-05-04T09:17:31.900000Z
var-201703-1384 Wireless IP Camera (P2P) WIFICAM is a wireless IP camera. Wireless IP Camera (P2P) W… 2022-05-04T09:17:40.172000Z
var-201702-1105 TP-Link is a Chinese network equipment manufacturer such as routers and IOT equipment. Th… 2022-05-04T09:17:41.460000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated