Recent vulnerabilities

Recent vulnerabilities from
Select from 69 available sources using the dropdown above.
ID CVSS Description Vendor Product Published Updated
CVE-2000-0005
N/A
HP-UX aserver program allows local users to gain … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T04:58:11.797Z
CVE-2000-0008
N/A
FTPPro allows local users to read sensitive infor… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T04:58:11.458Z
CVE-2000-0016
N/A
Buffer overflow in Internet Anywhere POP3 Mail Se… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T04:58:11.416Z
CVE-2000-0017
N/A
Buffer overflow in Linux linuxconf package allows… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T04:58:11.855Z
CVE-2000-0019
N/A
IMail POP3 daemon uses weak encryption, which all… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T04:58:11.412Z
CVE-2000-0021
N/A
Lotus Domino HTTP server allows remote attackers … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T04:58:11.587Z
CVE-2000-0028
N/A
Internet Explorer 5.0 and 5.01 allows remote atta… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T04:58:11.688Z
CVE-2000-0035
N/A
resend command in Majordomo allows local users to… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:53.647Z
CVE-2000-0038
N/A
glFtpD includes a default glftpd user account wit… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:53.654Z
CVE-2000-0046
N/A
Buffer overflow in ICQ 99b 1.1.1.1 client allows … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:53.942Z
CVE-2000-0047
N/A
Buffer overflow in Yahoo Pager/Messenger client a… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:53.904Z
CVE-2000-0049
N/A
Buffer overflow in Winamp client allows remote at… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:53.791Z
CVE-2000-0054
N/A
search.cgi in the SolutionScripts Home Free packa… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:53.914Z
CVE-2000-0055
N/A
Buffer overflow in Solaris chkperm command allows… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:53.949Z
CVE-2000-0058
N/A
Network HotSync program in Handspring Visor does … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:53.678Z
CVE-2000-0059
N/A
PHP3 with safe_mode enabled does not properly fil… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:54.163Z
CVE-2000-0061
N/A
Internet Explorer 5 does not modify the security … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:52.954Z
CVE-2000-0066
N/A
WebSite Pro allows remote attackers to determine … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:53.937Z
CVE-2000-0067
N/A
CyberCash Merchant Connection Kit (MCK) allows lo… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:53.972Z
CVE-2000-0068
N/A
daynad program in Intel InBusiness E-mail Station… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:52.987Z
CVE-2000-0069
N/A
The recover program in Solstice Backup allows loc… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:53.898Z
CVE-2000-0071
N/A
IIS 4.0 allows a remote attacker to obtain the re… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:54.101Z
CVE-2000-0074
N/A
PowerScripts PlusMail CGI program allows remote a… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:53.862Z
CVE-2000-0077
N/A
The October 1998 version of the HP-UX aserver pro… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:53.892Z
CVE-2000-0078
N/A
The June 1999 version of the HP-UX aserver progra… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:53.908Z
CVE-2000-0079
N/A
The W3C CERN httpd HTTP server allows remote atta… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:53.929Z
CVE-2000-0081
N/A
Hotmail does not properly filter JavaScript code … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:53.974Z
CVE-2000-0082
N/A
WebTV email client allows remote attackers to for… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:52.722Z
CVE-2000-0084
N/A
CuteFTP uses weak encryption to store password in… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:53.915Z
CVE-2000-0085
N/A
Hotmail does not properly filter JavaScript code … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-08T05:05:53.831Z
ID CVSS Description Vendor Product Published Updated
CVE-1999-1172
N/A
By design, Maximizer Enterprise 4 calendar and ad… n/a
 n/a
 2001-09-12T04:00:00.000Z 2024-08-01T17:02:53.799Z
CVE-1999-1376
N/A
Buffer overflow in fpcount.exe in IIS 4.0 with Fr… n/a
 n/a
 2001-09-12T04:00:00.000Z 2024-08-01T17:11:02.907Z
CVE-1999-1538
N/A
When IIS 2 or 3 is upgraded to IIS 4, ism.dll is … n/a
 n/a
 2001-09-12T04:00:00.000Z 2024-08-01T17:18:07.511Z
CVE-1999-0457
N/A
Linux ftpwatch program allows local users to gain… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:41:44.847Z
CVE-1999-0678
N/A
A default configuration of Apache on Debian GNU/L… n/a
 n/a
 2000-03-22T05:00:00.000Z 2024-08-01T16:48:37.025Z
CVE-1999-0119
N/A
Windows NT 4.0 beta allows users to read and dele… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:27:57.638Z
CVE-1999-0451
N/A
Denial of service in Linux 2.0.36 allows local us… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:44.864Z
CVE-1999-0121
N/A
Buffer overflow in dtaction command gives root access. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:27:57.694Z
CVE-1999-1264
N/A
WebRamp M3 router does not disable remote telnet … n/a
 n/a
 2001-09-12T04:00:00.000Z 2024-08-01T17:11:01.680Z
CVE-1999-1544
N/A
Buffer overflow in FTP server in Microsoft IIS 3.… n/a
 n/a
 2001-09-12T04:00:00.000Z 2024-08-01T17:18:07.504Z
CVE-1999-0352
N/A
ControlIT 4.5 and earlier (aka Remotely Possible)… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:52.026Z
CVE-1999-0356
N/A
ControlIT v4.5 and earlier uses weak encryption t… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:52.131Z
CVE-1999-0357
N/A
Windows 98 and other operating systems allows rem… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:34:51.899Z
CVE-1999-1458
N/A
Buffer overflow in at program in Digital UNIX 4.0… n/a
 n/a
 2001-09-12T04:00:00.000Z 2024-08-01T17:18:07.124Z
CVE-1999-0347
N/A
Internet Explorer 4.01 allows remote attackers to… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:51.901Z
CVE-1999-0400
N/A
Denial of service in Linux 2.2.0 running the ldd … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:52.037Z
CVE-1999-0449
N/A
The ExAir sample site in IIS 4 allows remote atta… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:41:44.902Z
CVE-1999-0450
N/A
In IIS, an attacker could determine a real path u… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:44.860Z
CVE-1999-0348
N/A
IIS ASP caching problem releases sensitive inform… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:34:51.967Z
CVE-1999-0349
N/A
A buffer overflow in the FTP list (ls) command in… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:34:52.021Z
CVE-1999-1450
N/A
Vulnerability in (1) rlogin daemon rshd and (2) s… n/a
 n/a
 2001-09-12T04:00:00.000Z 2024-08-01T17:11:03.392Z
CVE-1999-0461
N/A
Versions of rpcbind including Linux, IRIX, and Wi… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:44.794Z
CVE-1999-0952
N/A
Buffer overflow in Solaris lpstat via class argum… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:55:29.195Z
CVE-1999-1546
N/A
netstation.navio-com.rte 1.1.0.1 configuration sc… n/a
 n/a
 2001-09-12T04:00:00.000Z 2024-08-01T17:18:07.650Z
CVE-2000-0370
N/A
The debug option in Caldera Linux smail allows re… n/a
 n/a
 2000-07-12T04:00:00.000Z 2024-08-08T05:14:21.488Z
CVE-1999-0360
N/A
MS Site Server 2.0 with IIS 4 can allow users to … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:51.888Z
CVE-1999-0291
N/A
The WinGate proxy is installed without a password… n/a
 n/a
 2000-01-04T05:00:00.000Z 2024-08-01T16:34:51.855Z
CVE-1999-0351
N/A
FTP PASV "Pizza Thief" denial of service and unau… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:34:51.976Z
CVE-1999-0358
N/A
Digital Unix 4.0 has a buffer overflow in the inc… n/a
 n/a
 2000-10-13T04:00:00.000Z 2024-08-01T16:34:52.011Z
CVE-1999-0373
N/A
Buffer overflow in the "Super" utility in Debian … n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:34:52.034Z
ID Description Published Updated
ID Severity Description Published Updated
ghsa-872g-2h8h-362q
9.8 (3.1)
Jetty contains an alias issue that could allow unauthenticated remote code execution due to special… 2018-10-19T16:16:16Z 2022-09-14T01:07:09Z
ghsa-84q7-p226-4x5w
7.5 (3.1)
Jetty vulnerable to cache poisoning due to inconsistent HTTP request handling (HTTP Request Smuggling) 2018-10-19T16:16:27Z 2022-09-14T01:08:10Z
ghsa-6x9x-8qw9-9pp6
9.8 (3.1)
Jetty vulnerable to authorization bypass due to inconsistent HTTP request handling (HTTP Request Sm… 2018-10-19T16:16:38Z 2022-09-14T01:09:24Z
ghsa-qv32-7r6p-xhhh
7.5 (3.1)
Moderate severity vulnerability that affects com.adobe.xmp:xmpcore 2018-10-19T16:39:29Z 2021-09-16T21:06:35Z
ghsa-jc7r-v6fg-2gpf
8.1 (3.1)
Apache CXF TLS hostname verification does not work correctly with com.sun.net.ssl.* 2018-10-19T16:40:01Z 2025-05-29T17:42:39Z
ghsa-269m-695x-j34p
9.8 (3.1)
Apache Qpid Broker vulnerable to authentication port spoofing 2018-10-19T16:41:04Z 2023-08-28T10:49:23Z
ghsa-4r7g-7cpj-5jr7
7.5 (3.1)
Apache Qpid Broker-J vulnerable to Denial of Service (DoS) via uncontrolled resource consumption 2018-10-19T16:41:15Z 2023-08-28T10:50:19Z
ghsa-hrmr-f5m6-m9pq
5.5 (3.1)
Moderate severity vulnerability that affects org.apache.commons:commons-compress 2018-10-19T16:41:27Z 2024-06-05T17:11:42Z
ghsa-6w3v-66mj-2qm6
5.9 (3.1)
Moderate severity vulnerability that affects org.apache.qpid:apache-qpid-broker-j 2018-10-19T16:41:46Z 2021-09-02T18:30:03Z
ghsa-p99p-726h-c8v5
8.1 (3.1)
Apache juddi-client vulnerable to XML External Entity (XXE) 2018-10-19T16:42:15Z 2022-09-14T19:12:48Z
ghsa-m9w8-v359-9ffr
7.4 (3.1)
Improper Certificate Validation in Apache activemq-client 2018-10-19T16:42:27Z 2022-11-17T19:38:02Z
ghsa-q25j-gcmv-5qpp
6.1 (3.1)
Stored Cross Site Scripting in Grails Fields Plugin 2018-10-19T16:46:01Z 2024-11-18T18:21:20Z
ghsa-vgvf-9jh3-fg75
8.8 (3.1)
Deserialization of Untrusted Data in swagger-codegen 2018-10-19T16:46:30Z 2022-09-14T19:14:19Z
ghsa-q7pf-qr96-2vq5
8.8 (3.1)
Deserialization of Untrusted Data in swagger-parser 2018-10-19T16:46:41Z 2022-09-14T19:14:55Z
ghsa-g556-x5vx-qh59
7.8 (3.1)
Android SVG vulnerable to XML External Entity (XXE) 2018-10-19T16:50:33Z 2022-09-14T19:15:38Z
ghsa-93jq-624g-4p9p
7.5 (3.1)
Improper Input Validation in async-http-client 2018-10-19T16:50:50Z 2022-09-14T19:16:10Z
ghsa-qvxv-pmq9-4q7g
7.8 (3.1)
High severity vulnerability that affects org.scala-lang:scala-compiler 2018-10-19T16:51:11Z 2021-09-16T21:08:26Z
ghsa-h3wv-47xm-4mg6
7.4 (3.1)
Server Side Request Forgery in svgSalamander 2018-10-19T16:51:25Z 2022-09-14T19:16:41Z
ghsa-4m9r-5gqp-7j82
7.5 (3.1)
High severity vulnerability that affects org.dspace:dspace-xmlui 2018-10-19T16:52:06Z 2021-06-11T14:37:55Z
ghsa-568q-9fw5-28wf
Moderate severity vulnerability that affects org.postgresql:pgjdbc-aggregate 2018-10-19T16:53:33Z 2020-06-16T21:00:08Z
ghsa-6xq8-pvg4-3mf3
10.0 (3.1)
Eclipse RDF4j vulnerable to XML External Entity 2018-10-19T16:54:11Z 2025-10-15T16:43:16Z
ghsa-3x7h-5hfr-hvjm
7.5 (3.1)
Moderate severity vulnerability that affects io.undertow:undertow-core 2018-10-19T16:54:56Z 2021-08-31T21:36:39Z
ghsa-mcfm-h73v-635m
6.5 (3.1)
Undertow-core vulnerable to HTTP Request Smuggling 2018-10-19T16:55:14Z 2022-09-14T19:18:03Z
ghsa-fmr4-w67p-vh8x
5.5 (3.1)
Improper Input Validation in org.wildfly:wildfly-undertow 2018-10-19T16:55:35Z 2023-02-13T20:36:36Z
ghsa-76qr-mmh8-cp8f
5.3 (3.1)
Moderate severity vulnerability that affects com.sparkjava:spark-core 2018-10-19T16:56:00Z 2021-09-02T19:24:32Z
ghsa-6cw8-7j6c-hccp
Moderate severity vulnerability that affects io.vertx:vertx-core 2018-10-19T17:43:36Z 2020-06-16T21:18:56Z
ghsa-h8w4-qv99-f7vj
8.1 (3.1)
Authorization bypass in org.springframework.security.oauth:spring-security-oauth2 2018-10-19T22:00:28Z 2024-03-04T21:20:57Z
ghsa-4cj8-g9cp-v5wr
9.8 (3.1)
Unrestricted Upload of File with Dangerous Type in blueimp-file-upload 2018-10-22T18:53:56Z 2022-09-14T19:19:04Z
ghsa-9qgc-p27w-3hjg
7.5 (3.1)
High severity vulnerability that affects com.typesafe.akka:akka-http-core_2.11 and com.typesafe.akk… 2018-10-22T20:37:07Z 2021-09-08T20:46:55Z
ghsa-mr95-9rr4-668f
9.1 (3.1)
Cryptographically Weak Pseudo-Random Number Generator (PRNG) in akka-actor 2018-10-22T20:44:26Z 2022-09-14T19:20:04Z
ID Severity Description Package Published Updated
pysec-2019-182
Python keyring has insecure permissions on new databases allowing world-readable files to… keyring 2019-11-25T13:15:00Z 2021-08-27T03:22:05.663844Z
pysec-2019-3
A flaw was found in ansible 2.8.0 before 2.8.4. Fields managing sensitive data should be … ansible 2019-11-25T16:15:00Z 2020-04-13T00:15:00Z
pysec-2019-177
An error-handling flaw was found in python-ecdsa before version 0.13.3. During signature … ecdsa 2019-11-26T13:15:00Z 2021-08-27T03:22:03.507805Z
pysec-2019-146
ansible before versions 2.8.6, 2.7.14, 2.6.20 is vulnerable to a None ansible 2019-11-26T14:15:00Z 2021-07-02T02:41:34.512855Z
pysec-2019-130
typed_ast 1.3.0 and 1.3.1 has a handle_keywordonly_args out-of-bounds read. An attacker w… typed-ast 2019-11-26T15:15:00Z 2020-03-14T02:15:00Z
pysec-2019-131
typed_ast 1.3.0 and 1.3.1 has an ast_for_arguments out-of-bounds read. An attacker with t… typed-ast 2019-11-26T15:15:00Z 2020-03-14T02:15:00Z
pysec-2019-168
A flaw was found in IPA, all 4.6.x versions before 4.6.7, all 4.7.x versions before 4.7.4… ipa 2019-11-27T08:15:00Z 2021-08-25T04:30:10.435825Z
pysec-2019-22
A flaw was found in IPA, all 4.6.x versions before 4.6.7, all 4.7.x versions before 4.7.4… freeipa 2019-11-27T08:15:00Z 2020-02-05T00:15:00Z
pysec-2019-28
A flaw was found in IPA, all 4.6.x versions before 4.6.7, all 4.7.x versions before 4.7.4… ipa 2019-11-27T09:15:00Z 2020-02-05T00:15:00Z
pysec-2019-135
When using wagtail-2fa before 1.3.0, if someone gains access to someone's Wagtail login c… wagtail-2fa 2019-11-29T17:15:00Z 2020-10-09T13:27:00Z
pysec-2019-15
Django 2.1 before 2.1.15 and 2.2 before 2.2.8 allows unintended model editing. A Django m… django 2019-12-02T14:15:00Z 2020-05-01T02:15:00Z
pysec-2019-134
The validators package 0.12.2 through 0.12.5 for Python enters an infinite loop when vali… validators 2019-12-05T01:15:00Z 2020-08-24T17:37:00Z
pysec-2019-29
OpenStack Keystone 15.0.0 and 16.0.0 is affected by Data Leakage in the list credentials … keystone 2019-12-09T18:15:00Z 2019-12-20T00:15:00Z
pysec-2019-154
The CreateID function in packet.py in pyrad before 2.1 uses sequential packet IDs, which … pyrad 2019-12-09T21:15:00Z 2021-07-05T00:01:25.106986Z
pysec-2019-161
python-keystoneclient version 0.2.3 to 0.2.5 has middleware memcache signing bypass python-keystoneclient 2019-12-10T15:15:00Z 2021-07-25T23:34:52.007420Z
pysec-2019-197
python-keystoneclient version 0.2.3 to 0.2.5 has middleware memcache encryption bypass python-keystoneclient 2019-12-10T15:15:00Z 2021-08-27T03:22:18.277308Z
pysec-2019-105
The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Inject… modoboa-dmarc 2019-12-10T20:15:00Z 2019-12-19T15:11:00Z
pysec-2019-251
7.5 (3.1)
The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Inject… modoboa 2019-12-10T20:15:00Z 2024-12-02T10:49:36.349040Z
pysec-2019-200
python-requests-Kerberos through 0.5 does not handle mutual authentication requests-kerberos 2019-12-15T22:15:00Z 2021-08-27T03:22:19.338890Z
pysec-2019-209
In TensorFlow before 1.15, a heap buffer overflow in UnsortedSegmentSum can be produced w… tensorflow 2019-12-16T21:15:00Z 2021-08-27T03:22:22.453759Z
pysec-2019-227
In TensorFlow before 1.15, a heap buffer overflow in UnsortedSegmentSum can be produced w… tensorflow-cpu 2019-12-16T21:15:00Z 2021-08-27T03:22:22.453759Z
pysec-2019-234
In TensorFlow before 1.15, a heap buffer overflow in UnsortedSegmentSum can be produced w… tensorflow-gpu 2019-12-16T21:15:00Z 2021-12-09T06:35:11.891064Z
pysec-2019-172
In Apache Incubator Superset before 0.31 user could query database metadata information f… apache-superset 2019-12-16T22:15:00Z 2020-08-24T17:37:00Z
pysec-2019-173
In Apache Incubator Superset before 0.32, a user can view database names that he has no a… apache-superset 2019-12-16T22:15:00Z 2019-12-19T18:24:00Z
pysec-2019-254
6.5 (3.1)
In Tautulli 2.1.9, CSRF in the /shutdown URI allows an attacker to shut down the remote m… tautulli 2019-12-18T18:15:00Z 2025-01-12T05:34:20.505254Z
pysec-2019-16
Django before 1.11.27, 2.x before 2.2.9, and 3.x before 3.0.1 allows account takeover. A … django 2019-12-18T19:15:00Z 2020-01-08T04:15:00Z
pysec-2019-136
Waitress through version 1.3.1 implemented a "MAY" part of the RFC7230 which states: "Alt… waitress 2019-12-20T23:15:00Z 2020-02-25T17:15:00Z
pysec-2019-137
Waitress through version 1.3.1 would parse the Transfer-Encoding header and only look for… waitress 2019-12-20T23:15:00Z 2020-02-25T17:15:00Z
pysec-2019-138
In Waitress through version 1.4.0, if a proxy server is used in front of waitress, an inv… waitress 2019-12-26T17:15:00Z 2020-02-25T17:15:00Z
pysec-2019-112
In Archery before 1.3, inserting an XSS payload into a project name (either by creating a… pyarchery 2019-12-26T23:15:00Z 2020-01-02T14:27:00Z
ID Description Updated
ID Description Published Updated
mal-2022-2019 Malicious code in colors-sync (npm) 2022-06-20T20:08:42Z 2022-06-20T20:08:42Z
mal-2022-2516 Malicious code in discord.js-selfv14 (npm) 2022-06-20T20:08:42Z 2022-06-20T20:08:43Z
mal-2022-6271 Malicious code in sq-jsith-test-npm-project (npm) 2022-06-20T20:08:42Z 2022-06-20T20:08:43Z
mal-2022-3299 Malicious code in gcs-malware-scanner (npm) 2022-06-20T20:08:43Z 2022-06-20T20:08:44Z
mal-2022-3357 Malicious code in getting-started-rpi (npm) 2022-06-20T20:08:43Z 2022-06-20T20:08:44Z
mal-2022-342 Malicious code in @ibm-pipeline/logging (npm) 2022-06-20T20:08:43Z 2022-06-20T20:08:43Z
mal-2022-712 Malicious code in @w3-commons/js-build-resources (npm) 2022-06-20T20:08:43Z 2022-06-20T20:08:43Z
mal-2022-2596 Malicious code in drwffjbwkwxsvyo (npm) 2022-06-20T20:08:44Z 2022-06-20T20:08:45Z
mal-2022-3860 Malicious code in intentionally-malicious (npm) 2022-06-20T20:08:44Z 2022-06-20T20:08:45Z
mal-2022-3861 Malicious code in intentionally-malicious1 (npm) 2022-06-20T20:08:44Z 2022-06-20T20:08:45Z
mal-2022-6617 Malicious code in touchright (npm) 2022-06-20T20:08:44Z 2022-06-20T20:08:45Z
mal-2022-1032 Malicious code in aoxqgmortgkgldq (npm) 2022-06-20T20:08:45Z 2022-06-20T20:08:53Z
mal-2022-3021 Malicious code in ffwebsite (npm) 2022-06-20T20:08:45Z 2022-06-20T20:08:45Z
mal-2022-6194 Malicious code in snyk-azure-pipelines-task (npm) 2022-06-20T20:08:45Z 2022-06-20T20:08:45Z
mal-2022-6195 Malicious code in snyk-resolve-dep (npm) 2022-06-20T20:08:45Z 2022-06-20T20:08:46Z
mal-2022-2005 Malicious code in colors-1.0 (npm) 2022-06-20T20:08:46Z 2022-06-20T20:08:47Z
mal-2022-2337 Malicious code in data-api.js-core (npm) 2022-06-20T20:08:46Z 2022-06-20T20:08:47Z
mal-2022-5346 Malicious code in piwik-pro-angular-tracking (npm) 2022-06-20T20:08:46Z 2022-06-20T20:08:46Z
mal-2022-6358 Malicious code in supplysec-alert (npm) 2022-06-20T20:08:46Z 2022-06-20T20:08:47Z
mal-2022-1058 Malicious code in apollo-workarounds (npm) 2022-06-20T20:08:47Z 2022-06-20T20:08:48Z
mal-2022-5401 Malicious code in polaris-next (npm) 2022-06-20T20:08:47Z 2022-06-20T20:08:47Z
mal-2022-5708 Malicious code in realtime-react-ui (npm) 2022-06-20T20:08:47Z 2022-06-20T20:08:48Z
mal-2022-6235 Malicious code in spiferack (npm) 2022-06-20T20:08:47Z 2022-06-20T20:08:47Z
mal-2022-5073 Malicious code in onboarding-setup-guide (npm) 2022-06-20T20:08:48Z 2022-06-20T20:08:49Z
mal-2022-5654 Malicious code in react-monorail-next (npm) 2022-06-20T20:08:48Z 2022-06-20T20:08:49Z
mal-2022-5707 Malicious code in realtime-react (npm) 2022-06-20T20:08:48Z 2022-06-20T20:08:49Z
mal-2022-6754 Malicious code in ui-extensions-server-kit (npm) 2022-06-20T20:08:48Z 2022-06-20T20:08:49Z
mal-2022-1928 Malicious code in clientlib-manifests (npm) 2022-06-20T20:08:49Z 2022-06-20T20:08:49Z
mal-2022-881 Malicious code in af-mason (npm) 2022-06-20T20:08:49Z 2022-06-20T20:08:50Z
mal-2022-882 Malicious code in af-test (npm) 2022-06-20T20:08:49Z 2022-06-20T20:08:50Z
ID Description Published Updated
ID Description Published Updated
wid-sec-w-2024-1035 xpdf: Schwachstelle ermöglicht Denial of Service 2020-12-27T23:00:00.000+00:00 2024-05-06T22:00:00.000+00:00
wid-sec-w-2022-1880 OpenJPEG: Mehrere Schwachstellen ermöglichen Ausführen von beliebigem Programmcode mit Benutzerrechten 2020-12-29T23:00:00.000+00:00 2023-03-15T23:00:00.000+00:00
wid-sec-w-2024-1972 QEMU: Schwachstelle ermöglicht Denial of Service 2020-12-30T23:00:00.000+00:00 2024-09-02T22:00:00.000+00:00
wid-sec-w-2022-0206 ffmpeg: Schwachstellen ermöglichen Codeausführung 2021-01-03T23:00:00.000+00:00 2023-01-02T23:00:00.000+00:00
wid-sec-w-2022-1000 Node.js: Mehrere Schwachstellen 2021-01-04T23:00:00.000+00:00 2025-06-19T22:00:00.000+00:00
wid-sec-w-2022-1994 Google Android Patchday Januar 2021-01-04T23:00:00.000+00:00 2024-05-30T22:00:00.000+00:00
wid-sec-w-2025-0234 Dovecot: Mehrere Schwachstellen 2021-01-04T23:00:00.000+00:00 2025-02-02T23:00:00.000+00:00
wid-sec-w-2022-2114 PHP: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2021-01-06T23:00:00.000+00:00 2024-10-14T22:00:00.000+00:00
wid-sec-w-2023-2534 Nvidia Treiber: Mehrere Schwachstellen 2021-01-07T23:00:00.000+00:00 2023-10-03T22:00:00.000+00:00
wid-sec-w-2024-1809 GitLab: Mehrere Schwachstellen 2021-01-07T23:00:00.000+00:00 2024-08-11T22:00:00.000+00:00
wid-sec-w-2022-1349 Ansible: Schwachstelle ermöglicht Offenlegung von Informationen 2021-01-11T23:00:00.000+00:00 2025-11-23T23:00:00.000+00:00
wid-sec-w-2022-2259 QEMU: Mehrere Schwachstellen ermöglichen Denial of Service 2021-01-11T23:00:00.000+00:00 2024-08-08T22:00:00.000+00:00
wid-sec-w-2023-2730 Red Hat Ceph Storage: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen 2021-01-12T23:00:00.000+00:00 2023-10-23T22:00:00.000+00:00
wid-sec-w-2023-0339 Snort: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen 2021-01-13T23:00:00.000+00:00 2023-02-19T23:00:00.000+00:00
wid-sec-w-2023-1599 IBM Security Guardium: Mehrere Schwachstellen 2021-01-13T23:00:00.000+00:00 2023-06-29T22:00:00.000+00:00
wid-sec-w-2024-1971 QEMU: Schwachstelle ermöglicht Offenlegung von Informationen 2021-01-13T23:00:00.000+00:00 2024-09-02T22:00:00.000+00:00
wid-sec-w-2023-2465 Apache Tomcat: Schwachstelle ermöglicht Offenlegung von Informationen 2021-01-14T23:00:00.000+00:00 2026-03-26T23:00:00.000+00:00
wid-sec-w-2022-1350 Ansible: Schwachstelle ermöglicht Offenlegung von Informationen 2021-01-17T23:00:00.000+00:00 2025-11-23T23:00:00.000+00:00
wid-sec-w-2022-0495 Python: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Benutzerrechten 2021-01-18T23:00:00.000+00:00 2025-11-09T23:00:00.000+00:00
wid-sec-w-2022-1275 QEMU: Schwachstelle ermöglicht Denial of Service 2021-01-18T23:00:00.000+00:00 2024-09-02T22:00:00.000+00:00
wid-sec-w-2023-0630 GNU tar: Schwachstelle ermöglicht Offenlegung von Informationen 2021-01-18T23:00:00.000+00:00 2023-08-13T22:00:00.000+00:00
wid-sec-w-2023-2836 dnsmasq: Mehrere Schwachstellen 2021-01-18T23:00:00.000+00:00 2023-11-06T23:00:00.000+00:00
wid-sec-w-2022-2240 mutt: Schwachstelle ermöglicht Denial of Service 2021-01-19T23:00:00.000+00:00 2022-12-06T23:00:00.000+00:00
wid-sec-w-2023-0067 Oracle MySQL: Mehrere Schwachstellen 2021-01-19T23:00:00.000+00:00 2023-01-11T23:00:00.000+00:00
wid-sec-w-2022-0496 Red Hat OpenShift: Mehrere Schwachstellen 2021-01-20T23:00:00.000+00:00 2023-05-30T22:00:00.000+00:00
wid-sec-w-2023-1273 Red Hat JBoss Enterprise Application Platform: Mehrere Schwachstellen 2021-01-25T23:00:00.000+00:00 2025-07-10T22:00:00.000+00:00
wid-sec-w-2023-0066 sudo: Schwachstelle ermöglicht Privilegieneskalation 2021-01-26T23:00:00.000+00:00 2025-10-01T22:00:00.000+00:00
wid-sec-w-2023-1127 OpenLDAP: Mehrere Schwachstellen ermöglichen Denial of Service 2021-01-26T23:00:00.000+00:00 2025-08-24T22:00:00.000+00:00
wid-sec-w-2022-1170 GNU libc: Schwachstelle ermöglicht Denial of Service 2021-01-27T23:00:00.000+00:00 2024-12-11T23:00:00.000+00:00
wid-sec-w-2022-1276 QEMU: Schwachstelle ermöglicht Denial of Service 2021-01-27T23:00:00.000+00:00 2024-09-02T22:00:00.000+00:00
ID Description Published Updated
icsa-18-137-03 Siemens SIMATIC S7-400 CPU (Update A) 2018-05-15T00:00:00.000000Z 2020-02-10T00:00:00.000000Z
icsa-18-137-01 GE PACSystems CPE305/310, CPE330, CPE400, RSTi-EP CPE 100, CPU320/CRU320, RXi 2018-05-17T00:00:00.000000Z 2018-05-17T00:00:00.000000Z
icsa-18-137-02 PHOENIX CONTACT FL SWITCH 3xxx/4xxx/48xx Series 2018-05-17T00:00:00.000000Z 2018-05-17T00:00:00.000000Z
icsa-18-137-04 Delta Electronics Delta Industrial Automation TPEditor (Update A) 2018-05-17T00:00:00.000000Z 2018-06-07T00:00:00.000000Z
icsma-18-137-01 Medtronic N'Vision Clinician Programmer (Update A) 2018-05-17T00:00:00.000000Z 2018-07-12T00:00:00.000000Z
icsma-18-137-02 Philips EncoreAnywhere 2018-05-17T06:00:00.000000Z 2018-05-17T06:00:00.000000Z
icsa-18-142-01 Martem TELEM-GW6/GWM (Update B) 2018-05-22T00:00:00.000000Z 2018-08-30T00:00:00.000000Z
icsma-18-142-01 BD Kiestra and InoquIA Systems (Update A) 2018-05-22T00:00:00.000000Z 2018-10-11T00:00:00.000000Z
icsa-18-144-01 Schneider Electric Floating License Manager 2018-05-24T00:00:00.000000Z 2018-05-24T00:00:00.000000Z
icsma-18-144-01 BeaconMedaes TotalAlert Scroll Medical Air Systems 2018-05-24T00:00:00.000000Z 2018-05-24T00:00:00.000000Z
icsa-18-151-01 ICSA-18-151-01_Delta Industrial Automation DOPSoft 2018-05-31T00:00:00.000000Z 2018-05-31T00:00:00.000000Z
icsa-18-151-02 GE MDS PulseNET and MDS PulseNET Enterprise 2018-05-31T00:00:00.000000Z 2018-05-31T00:00:00.000000Z
icsa-18-151-03 Yokogawa STARDOM Controllers (Update A) 2018-05-31T00:00:00.000000Z 2018-10-11T00:00:00.000000Z
icsa-18-156-01 ABB IP Gateway 2018-06-05T00:00:00.000000Z 2018-06-05T00:00:00.000000Z
icsma-18-156-01 Philips' IntelliVue Patient and Avalon Fetal Monitors 2018-06-05T00:00:00.000000Z 2018-06-05T00:00:00.000000Z
icsa-18-158-01 Rockwell Automation RSLinx Classic and FactoryTalk Linx Gateway 2018-06-07T00:00:00.000000Z 2018-06-07T00:00:00.000000Z
icsa-18-163-01 Schneider Electric U.motion Builder 2018-06-12T00:00:00.000000Z 2018-06-12T00:00:00.000000Z
icsa-18-163-02 Siemens SCALANCE X Switches (Update A) 2018-06-12T00:00:00.000000Z 2022-12-13T00:00:00.000000Z
icsa-18-165-01 Siemens SCALANCE X Switches, RUGGEDCOM WiMAX, RFID 181-EIP, and SIMATIC RF182C (Update D) 2018-06-12T00:00:00.000000Z 2020-12-08T00:00:00.000000Z
icsma-18-165-01 Natus Xltek NeuroWorks 2018-06-14T00:00:00.000000Z 2018-06-14T00:00:00.000000Z
icsa-18-172-01 Delta Electronics Delta Industrial Automation COMMGR 2018-06-21T00:00:00.000000Z 2018-06-21T00:00:00.000000Z
icsa-18-172-02 Rockwell Automation Allen-Bradley CompactLogix and Compact GuardLogix (Update A) 2018-06-21T00:00:00.000000Z 2018-07-17T00:00:00.000000Z
icsa-18-317-01 ICSA-18-317-01 Siemens IEC 61850 System Configurator, DIGSI 5, DIGSI 4, SICAM PAS/PQS, SICAM PQ Analyzer, and SICAM SCC 2018-06-26T00:00:00.000000Z 2018-11-13T00:00:00.000000Z
icsma-18-179-01 Medtronic MyCareLink Patient Monitor 2018-06-28T00:00:00.000000Z 2018-06-28T00:00:00.000000Z
icsa-18-184-01 Rockwell Automation Allen-Bradley Stratix 5950 2018-07-03T00:00:00.000000Z 2018-07-03T00:00:00.000000Z
icsa-18-191-01 Universal Robots Robot Controllers 2018-07-10T00:00:00.000000Z 2018-07-10T00:00:00.000000Z
icsa-18-191-02 Schweitzer Engineering Laboratories, Inc. Compass and AcSELerator Architect 2018-07-10T00:00:00.000000Z 2018-07-10T00:00:00.000000Z
icsa-18-191-03 Tridium Niagara 2018-07-10T00:00:00.000000Z 2018-08-16T00:00:00.000000Z
icsa-18-347-02 ICSA-18-347-02 Siemens EN100 Ethernet Communication Module and SIPROTEC 5 Relays (Update A) 2018-07-11T00:00:00.000000Z 2019-02-12T00:00:00.000000Z
icsa-18-193-01 Eaton 9000X Drive 2018-07-12T00:00:00.000000Z 2018-07-12T00:00:00.000000Z
ID Description Published Updated
cisco-sa-20190821-rphy Cisco Remote PHY Device Software Command Injection Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
cisco-sa-20190821-ucs-cimc Cisco Integrated Management Controller Command Injection Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
cisco-sa-20190821-ucs-imc-dos Cisco Integrated Management Controller Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data Denial of Service Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
cisco-sa-20190821-ucsd-authbypass Cisco UCS Director and Cisco UCS Director Express for Big Data API Authentication Bypass Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
cisco-sa-20190821-webex-ssl-cert Cisco Webex Meetings Mobile (iOS) SSL Certificate Validation Vulnerability 2019-08-21T16:00:00+00:00 2019-08-21T16:00:00+00:00
cisco-sa-20190828-fxnxos-snmp-dos Cisco FXOS and NX-OS Software Authenticated Simple Network Management Protocol Denial of Service Vulnerability 2019-08-28T16:00:00+00:00 2019-10-08T14:45:55+00:00
cisco-sa-20190828-iosxe-rest-auth-bypass Cisco REST API Container for IOS XE Software Authentication Bypass Vulnerability 2019-08-28T16:00:00+00:00 2019-10-18T16:08:02+00:00
cisco-sa-20190828-nexus-aci-dos Cisco Nexus 9000 Series Fabric Switches ACI Mode Border Leaf Endpoint Learning Vulnerability 2019-08-28T16:00:00+00:00 2019-08-28T16:00:00+00:00
cisco-sa-20190828-nxos-api-dos Cisco NX-OS Software NX-API Denial of Service Vulnerability 2019-08-28T16:00:00+00:00 2019-08-28T16:00:00+00:00
cisco-sa-20190828-nxos-fsip-dos Cisco NX-OS Software Cisco Fabric Services over IP Denial of Service Vulnerability 2019-08-28T16:00:00+00:00 2019-10-08T14:45:56+00:00
cisco-sa-20190828-nxos-ipv6-dos Cisco NX-OS Software IPv6 Denial of Service Vulnerability 2019-08-28T16:00:00+00:00 2019-08-28T16:00:00+00:00
cisco-sa-20190828-nxos-memleak-dos Cisco NX-OS Software Remote Management Memory Leak Denial of Service Vulnerability 2019-08-28T16:00:00+00:00 2019-10-08T14:45:53+00:00
cisco-sa-20190828-nxos-ntp-dos Cisco NX-OS Software Network Time Protocol Denial of Service Vulnerability 2019-08-28T16:00:00+00:00 2019-10-08T14:45:52+00:00
cisco-sa-20190828-nxos-snmp-bypass Cisco NX-OS Software SNMP Access Control List Configuration Name Bypass Vulnerability 2019-08-28T16:00:00+00:00 2019-08-28T16:00:00+00:00
cisco-sa-20190828-ucs-privescalation Cisco Unified Computing System Fabric Interconnect root Privilege Escalation Vulnerability 2019-08-28T16:00:00+00:00 2019-10-08T14:45:54+00:00
cisco-sa-20190904-finesse-ssrf Cisco Finesse Request Processing Server-Side Request Forgery Vulnerability 2019-09-04T16:00:00+00:00 2019-09-04T16:00:00+00:00
cisco-sa-20190904-ind Cisco Industrial Network Director Configuration Data Information Disclosure Vulnerability 2019-09-04T16:00:00+00:00 2019-09-04T16:00:00+00:00
cisco-sa-20190904-ise-xss Cisco Identity Services Engine Cross-Site Scripting Vulnerability 2019-09-04T16:00:00+00:00 2020-07-16T17:26:05+00:00
cisco-sa-20190904-jcf-codex Cisco Jabber Client Framework for Mac Code Execution Vulnerability 2019-09-04T16:00:00+00:00 2019-09-04T16:00:00+00:00
cisco-sa-20190904-sma-info-dis Cisco Content Security Management Appliance and Cisco Email Security Appliance Information Disclosure Vulnerability 2019-09-04T16:00:00+00:00 2020-09-21T18:29:00+00:00
cisco-sa-20190904-unified-ccx-ssrf Cisco Unified Contact Center Express Request Processing Server-Side Request Forgery Vulnerability 2019-09-04T16:00:00+00:00 2019-09-04T16:00:00+00:00
cisco-sa-20190904-webex-teams Cisco Webex Teams Logging Feature Command Execution Vulnerability 2019-09-04T16:00:00+00:00 2019-09-04T16:00:00+00:00
cisco-sa-20190918-hyperflex-valinj Cisco HyperFlex Software Counter Value Injection Vulnerability 2019-09-18T16:00:00+00:00 2019-09-18T16:00:00+00:00
cisco-sa-20190918-hyperflex-xfs Cisco HyperFlex Software Cross-Frame Scripting Vulnerability 2019-09-18T16:00:00+00:00 2019-09-18T16:00:00+00:00
cisco-sa-20190925-awr Cisco IOS XE Software ASIC Register Write Vulnerability 2019-09-25T16:00:00+00:00 2019-09-25T16:00:00+00:00
cisco-sa-20190925-cat4000-tcp-dos Cisco Catalyst 4000 Series Switches TCP Denial of Service Vulnerability 2019-09-25T16:00:00+00:00 2019-09-25T16:00:00+00:00
cisco-sa-20190925-ctspac-dos Cisco IOS XE Software TrustSec Protected Access Credential Provisioning Denial of Service Vulnerability 2019-09-25T16:00:00+00:00 2019-09-25T16:00:00+00:00
cisco-sa-20190925-dt Cisco IOS XE Software Path Traversal Vulnerability 2019-09-25T16:00:00+00:00 2019-09-25T16:00:00+00:00
cisco-sa-20190925-ftp Cisco IOS XE Software FTP Application Layer Gateway for NAT, NAT64, and ZBFW Denial of Service Vulnerability 2019-09-25T16:00:00+00:00 2019-11-20T15:15:59+00:00
cisco-sa-20190925-http-client Cisco IOS and IOS XE Software HTTP Client Information Disclosure Vulnerability 2019-09-25T16:00:00+00:00 2019-09-25T16:00:00+00:00
ID Description Published Updated
msrc_cve-2020-29509 The encoding/xml package in Go (all versions) does not correctly preserve the semantics of attribute namespace prefixes during tokenization round-trips which allows an attacker to craft inputs that behave in conflicting ways during different stages of processing in affected downstream applications. 2020-12-02T00:00:00.000Z 2021-12-16T00:00:00.000Z
msrc_cve-2020-29511 The encoding/xml package in Go (all versions) does not correctly preserve the semantics of element namespace prefixes during tokenization round-trips which allows an attacker to craft inputs that behave in conflicting ways during different stages of processing in affected downstream applications. 2020-12-02T00:00:00.000Z 2021-12-16T00:00:00.000Z
msrc_cve-2020-29534 An issue was discovered in the Linux kernel before 5.9.3. io_uring takes a non-refcounted reference to the files_struct of the process that submitted a request causing execve() to incorrectly optimize unshare_fd() aka CID-0f2122045b94. 2020-12-02T00:00:00.000Z 2020-12-08T00:00:00.000Z
msrc_cve-2020-29569 An issue was discovered in the Linux kernel through 5.10.1 as used with Xen through 4.14.x. The Linux kernel PV block backend expects the kernel thread handler to reset ring->xenblkd to NULL when stopped. However the handler may not have time to run if the frontend quickly toggles between the states connect and disconnect. As a consequence the block backend may re-use a pointer after it was freed. A misbehaving guest can trigger a dom0 crash by continuously connecting / disconnecting a block frontend. Privilege escalation and information leaks cannot be ruled out. This only affects systems with a Linux blkback. 2020-12-02T00:00:00.000Z 2020-12-19T00:00:00.000Z
msrc_cve-2020-29651 A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality. 2020-12-02T00:00:00.000Z 2020-12-21T00:00:00.000Z
msrc_cve-2020-29660 A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_io.c and drivers/tty/tty_jobctrl.c may allow a read-after-free attack against TIOCGSID aka CID-c8bcd9c5be24. 2020-12-02T00:00:00.000Z 2020-12-11T00:00:00.000Z
msrc_cve-2020-29661 A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_jobctrl.c allows a use-after-free attack against TIOCSPGRP aka CID-54ffccbf053b. 2020-12-02T00:00:00.000Z 2020-12-11T00:00:00.000Z
msrc_cve-2020-35457 GNOME GLib before 2.65.3 has an integer overflow that might lead to an out-of-bounds write in g_option_group_add_entries. NOTE: the vendor's position is "Realistically this is not a security issue. The standard pattern is for callers to provide a static list of option entries in a fixed number of calls to g_option_group_add_entries()." The researcher states that this pattern is undocumented 2020-12-02T00:00:00.000Z 2021-12-16T00:00:00.000Z
msrc_cve-2020-8169 curl 7.62.0 through 7.70.0 is vulnerable to an information disclosure vulnerability that can lead to a partial password being leaked over the network and to the DNS server(s). 2020-12-02T00:00:00.000Z 2020-12-15T00:00:00.000Z
msrc_cve-2020-8177 curl 7.20.0 through 7.70.0 is vulnerable to improper restriction of names for files and other resources that can lead too overwriting a local file when the -J flag is used. 2020-12-02T00:00:00.000Z 2020-12-15T00:00:00.000Z
msrc_cve-2020-8231 Due to use of a dangling pointer libcurl 7.29.0 through 7.71.1 can use the wrong connection when sending data. 2020-12-02T00:00:00.000Z 2020-12-17T00:00:00.000Z
msrc_cve-2020-8284 A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port and this way potentially make curl extract information about services that are otherwise private and not disclosed for example doing port scanning and service banner extractions. 2020-12-02T00:00:00.000Z 2020-12-16T00:00:00.000Z
msrc_cve-2020-8285 curl 7.21.0 to and including 7.73.0 is vulnerable to uncontrolled recursion due to a stack overflow issue in FTP wildcard match parsing. 2020-12-02T00:00:00.000Z 2020-12-15T00:00:00.000Z
msrc_cve-2020-8286 curl 7.41.0 through 7.73.0 is vulnerable to an improper check for certificate revocation due to insufficient verification of the OCSP response. 2020-12-02T00:00:00.000Z 2020-12-15T00:00:00.000Z
msrc_cve-2020-8563 Secret leaks in logs for vSphere Provider kube-controller-manager 2020-12-02T00:00:00.000Z 2020-12-09T00:00:00.000Z
msrc_cve-2020-8565 Incomplete fix for CVE-2019-11250 allows for token leak in logs when logLevel >= 9 2020-12-02T00:00:00.000Z 2025-03-27T00:00:00.000Z
msrc_cve-2020-8908 Temp directory permission issue in Guava 2020-12-02T00:00:00.000Z 2023-04-07T00:00:00.000Z
msrc_cve-2020-17153 Microsoft Edge for Android Spoofing Vulnerability 2020-12-08T08:00:00.000Z 2020-12-08T08:00:00.000Z
msrc_cve-2019-25013 The iconv feature in the GNU C Library (aka glibc or libc6) through 2.32 when processing invalid multi-byte input sequences in the EUC-KR encoding may have a buffer over-read. 2021-01-02T00:00:00.000Z 2021-01-07T00:00:00.000Z
msrc_cve-2020-17380 A heap-based buffer overflow was found in QEMU through 5.0.0 in the SDHCI device emulation support. It could occur while doing a multi block SDMA transfer via the sdhci_sdma_transfer_multi_blocks() routine in hw/sd/sdhci.c. A guest user or process could use this flaw to crash the QEMU process on the host resulting in a denial of service condition or potentially execute arbitrary code with privileges of the QEMU process on the host. 2021-01-02T00:00:00.000Z 2021-02-06T00:00:00.000Z
msrc_cve-2020-24025 Certificate validation in node-sass 2.0.0 to 4.14.1 is disabled when requesting binaries even if the user is not specifying an alternative download path. 2021-01-02T00:00:00.000Z 2023-07-31T00:00:00.000Z
msrc_cve-2020-25657 A flaw was found in all released versions of m2crypto where they are vulnerable to Bleichenbacher timing attacks in the RSA decryption API via the timed processing of valid PKCS#1 v1.5 Ciphertext. The highest threat from this vulnerability is to confidentiality. 2021-01-02T00:00:00.000Z 2026-02-18T01:05:28.000Z
msrc_cve-2020-25659 python-cryptography 3.2 is vulnerable to Bleichenbacher timing attacks in the RSA decryption API via timed processing of valid PKCS#1 v1.5 ciphertext. 2021-01-02T00:00:00.000Z 2021-01-20T00:00:00.000Z
msrc_cve-2020-25681 A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in the way RRSets are sorted before validating with DNSSEC data. An attacker on the network who can forge DNS replies such as that they are accepted as valid could use this flaw to cause a buffer overflow with arbitrary data in a heap memory segment possibly executing code on the machine. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. 2021-01-02T00:00:00.000Z 2021-01-29T00:00:00.000Z
msrc_cve-2020-25682 A flaw was found in dnsmasq before 2.83. A buffer overflow vulnerability was discovered in the way dnsmasq extract names from DNS packets before validating them with DNSSEC data. An attacker on the network who can create valid DNS replies could use this flaw to cause an overflow with arbitrary data in a heap-allocated memory possibly executing code on the machine. The flaw is in the rfc1035.c:extract_name() function which writes data to the memory pointed by name assuming MAXDNAME*2 bytes are available in the buffer. However in some code execution paths it is possible extract_name() gets passed an offset from the base buffer thus reducing in practice the number of available bytes that can be written in the buffer. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. 2021-01-02T00:00:00.000Z 2021-01-29T00:00:00.000Z
msrc_cve-2020-25683 A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in dnsmasq when DNSSEC is enabled and before it validates the received DNS entries. A remote attacker who can create valid DNS replies could use this flaw to cause an overflow in a heap-allocated memory. This flaw is caused by the lack of length checks in rfc1035.c:extract_name() which could be abused to make the code execute memcpy() with a negative size in get_rdata() and cause a crash in dnsmasq resulting in a denial of service. The highest threat from this vulnerability is to system availability. 2021-01-02T00:00:00.000Z 2021-01-27T00:00:00.000Z
msrc_cve-2020-25684 A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query dnsmasq checks in the forward.c:reply_query() if the reply destination address/port is used by the pending forwarded queries. However it does not use the address/port to retrieve the exact forwarded query substantially reducing the number of attempts an attacker on the network would have to perform to forge a reply and get it accepted by dnsmasq. This issue contrasts with RFC5452 which specifies a query's attributes that all must be used to match a reply. This flaw allows an attacker to perform a DNS Cache Poisoning attack. If chained with CVE-2020-25685 or CVE-2020-25686 the attack complexity of a successful attack is reduced. The highest threat from this vulnerability is to data integrity. 2021-01-02T00:00:00.000Z 2021-01-29T00:00:00.000Z
msrc_cve-2020-25685 A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query dnsmasq checks in forward.c:reply_query() which is the forwarded query that matches the reply by only using a weak hash of the query name. Due to the weak hash (CRC32 when dnsmasq is compiled without DNSSEC SHA-1 when it is) this flaw allows an off-path attacker to find several different domains all having the same hash substantially reducing the number of attempts they would have to perform to forge a reply and get it accepted by dnsmasq. This is in contrast with RFC5452 which specifies that the query name is one of the attributes of a query that must be used to match a reply. This flaw could be abused to perform a DNS Cache Poisoning attack. If chained with CVE-2020-25684 the attack complexity of a successful attack is reduced. The highest threat from this vulnerability is to data integrity. 2021-01-02T00:00:00.000Z 2021-01-29T00:00:00.000Z
msrc_cve-2020-25686 A flaw was found in dnsmasq before version 2.83. When receiving a query dnsmasq does not check for an existing pending request for the same name and forwards a new request. By default a maximum of 150 pending queries can be sent to upstream servers so there can be at most 150 queries for the same name. This flaw allows an off-path attacker on the network to substantially reduce the number of attempts that it would have to perform to forge a reply and have it accepted by dnsmasq. This issue is mentioned in the "Birthday Attacks" section of RFC5452. If chained with CVE-2020-25684 the attack complexity of a successful attack is reduced. The highest threat from this vulnerability is to data integrity. 2021-01-02T00:00:00.000Z 2021-01-27T00:00:00.000Z
msrc_cve-2020-25687 A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in dnsmasq when DNSSEC is enabled and before it validates the received DNS entries. This flaw allows a remote attacker who can create valid DNS replies to cause an overflow in a heap-allocated memory. This flaw is caused by the lack of length checks in rfc1035.c:extract_name() which could be abused to make the code execute memcpy() with a negative size in sort_rrset() and cause a crash in dnsmasq resulting in a denial of service. The highest threat from this vulnerability is to system availability. 2021-01-02T00:00:00.000Z 2021-01-27T00:00:00.000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
opensuse-su-2019:2499-1 Security update for apache2-mod_auth_openidc 2019-11-13T15:20:41Z 2019-11-13T15:20:41Z
opensuse-su-2019:2500-1 Security update for rsyslog 2019-11-13T19:20:38Z 2019-11-13T19:20:38Z
opensuse-su-2019:2501-1 Security update for rsyslog 2019-11-13T23:20:20Z 2019-11-13T23:20:20Z
opensuse-su-2019:2503-1 Security update for the Linux Kernel 2019-11-14T05:53:54Z 2019-11-14T05:53:54Z
opensuse-su-2019:2504-1 Security update for ucode-intel 2019-11-14T05:54:05Z 2019-11-14T05:54:05Z
opensuse-su-2019:2505-1 Security update for qemu 2019-11-14T05:54:23Z 2019-11-14T05:54:23Z
opensuse-su-2019:2506-1 Security update for xen 2019-11-14T05:54:33Z 2019-11-14T05:54:33Z
opensuse-su-2019:2507-1 Security update for the Linux Kernel 2019-11-14T05:59:09Z 2019-11-14T05:59:09Z
opensuse-su-2019:2509-1 Security update for ucode-intel 2019-11-14T06:30:51Z 2019-11-14T06:30:51Z
opensuse-su-2019:2510-1 Security update for qemu 2019-11-14T06:31:05Z 2019-11-14T06:31:05Z
opensuse-su-2019:2514-1 Security update for libtomcrypt 2019-11-15T05:20:55Z 2019-11-15T05:20:55Z
opensuse-su-2019:2515-1 Security update for ImageMagick 2019-11-15T05:21:07Z 2019-11-15T05:21:07Z
opensuse-su-2019:2519-1 Security update for ImageMagick 2019-11-16T09:23:00Z 2019-11-16T09:23:00Z
opensuse-su-2019:2521-1 Security update for go1.12 2019-11-17T19:22:02Z 2019-11-17T19:22:02Z
opensuse-su-2019:2522-1 Security update for go1.12 2019-11-17T19:22:11Z 2019-11-17T19:22:11Z
opensuse-su-2019:2527-1 Security update for ucode-intel 2019-11-18T09:56:28Z 2019-11-18T09:56:28Z
opensuse-su-2019:2528-1 Security update for ucode-intel 2019-11-18T09:56:36Z 2019-11-18T09:56:36Z
opensuse-su-2019:2529-1 Security update for libjpeg-turbo 2019-11-19T13:22:26Z 2019-11-19T13:22:26Z
opensuse-su-2019:2530-1 Security update for libjpeg-turbo 2019-11-19T15:27:27Z 2019-11-19T15:27:27Z
opensuse-su-2019:2534-1 Security update for ghostscript 2019-11-20T13:27:48Z 2019-11-20T13:27:48Z
opensuse-su-2019:2535-1 Security update for ghostscript 2019-11-20T13:27:59Z 2019-11-20T13:27:59Z
opensuse-su-2019:2536-1 Security update for slurm 2019-11-20T19:24:15Z 2019-11-20T19:24:15Z
opensuse-su-2019:2537-1 Security update for chromium 2019-11-21T11:03:02Z 2019-11-21T11:03:02Z
opensuse-su-2019:2538-1 Security update for chromium 2019-11-21T12:14:15Z 2019-11-21T12:14:15Z
opensuse-su-2019:2539-1 Security update for chromium 2019-11-21T12:15:15Z 2019-11-21T12:15:15Z
opensuse-su-2019:2540-1 Security update for squid 2019-11-21T13:25:53Z 2019-11-21T13:25:53Z
opensuse-su-2019:2541-1 Security update for squid 2019-11-21T13:26:12Z 2019-11-21T13:26:12Z
opensuse-su-2019:2544-1 Security update for chromium 2019-11-22T05:20:59Z 2019-11-22T05:20:59Z
opensuse-su-2019:2545-1 Security update for chromium 2019-11-22T05:21:22Z 2019-11-22T05:21:22Z
opensuse-su-2019:2549-1 Security update for apache2-mod_perl 2019-11-23T17:20:34Z 2019-11-23T17:20:34Z
ID Description Published Updated
ID Description Published Updated
rhsa-2006:0272 Red Hat Security Advisory: openmotif security update 2006-04-04T09:04:00+00:00 2025-11-21T17:30:07+00:00
rhsa-2006:0328 Red Hat Security Advisory: firefox security update 2006-04-14T15:54:00+00:00 2026-01-13T22:28:48+00:00
rhsa-2006:0329 Red Hat Security Advisory: mozilla security update 2006-04-18T11:12:00+00:00 2026-01-13T20:57:49+00:00
rhsa-2006:0330 Red Hat Security Advisory: thunderbird security update 2006-04-21T15:41:00+00:00 2026-01-13T22:39:58+00:00
rhsa-2006:0276 Red Hat Security Advisory: php security update 2006-04-25T14:33:00+00:00 2026-01-13T22:38:22+00:00
rhsa-2006:0267 Red Hat Security Advisory: ipsec-tools security update 2006-04-25T14:45:00+00:00 2025-11-21T17:30:06+00:00
rhsa-2006:0281 Red Hat Security Advisory: struts security update for Red Hat Application Server 2006-05-03T15:48:00+00:00 2026-01-13T22:20:51+00:00
rhsa-2006:0280 Red Hat Security Advisory: dia security update 2006-05-03T16:01:00+00:00 2026-01-13T22:35:15+00:00
rhsa-2006:0283 Red Hat Security Advisory: squirrelmail security update 2006-05-03T16:09:00+00:00 2025-11-21T17:30:09+00:00
rhsa-2006:0420 Red Hat Security Advisory: ethereal security update 2006-05-03T16:19:00+00:00 2026-01-13T20:57:52+00:00
rhsa-2006:0451 Red Hat Security Advisory: xorg-x11 security update 2006-05-04T11:49:00+00:00 2026-01-13T22:10:06+00:00
rhsa-2006:0427 Red Hat Security Advisory: ruby security update 2006-05-09T11:32:00+00:00 2026-01-13T20:57:53+00:00
rhsa-2006:0425 Red Hat Security Advisory: libtiff security update 2006-05-09T11:39:00+00:00 2025-11-21T17:30:12+00:00
rhsa-2006:0270 Red Hat Security Advisory: Red Hat Directory Server 7.1 security update 2006-05-17T17:05:00+00:00 2025-11-21T17:30:06+00:00
rhsa-2006:0526 Red Hat Security Advisory: postgresql security update 2006-05-23T19:31:00+00:00 2025-11-21T17:30:17+00:00
rhsa-2006:0501 Red Hat Security Advisory: php security update 2006-05-23T20:09:00+00:00 2026-01-13T22:17:24+00:00
rhsa-2006:0498 Red Hat Security Advisory: xscreensaver security update 2006-05-23T20:38:00+00:00 2026-01-13T22:16:31+00:00
rhsa-2006:0493 Red Hat Security Advisory: kernel security update 2006-05-24T09:31:00+00:00 2026-01-13T22:40:20+00:00
rhsa-2006:0541 Red Hat Security Advisory: dia security update 2006-06-01T17:19:00+00:00 2025-11-21T17:30:18+00:00
rhsa-2006:0533 Red Hat Security Advisory: zebra security update 2006-06-01T17:39:00+00:00 2025-11-21T17:30:17+00:00
rhsa-2006:0525 Red Hat Security Advisory: quagga security update 2006-06-01T17:46:00+00:00 2025-11-21T17:30:17+00:00
rhsa-2006:0543 Red Hat Security Advisory: spamassassin security update 2006-06-06T17:08:00+00:00 2025-11-21T17:30:18+00:00
rhsa-2006:0486 Red Hat Security Advisory: mailman security update 2006-06-09T14:27:00+00:00 2025-11-21T17:30:14+00:00
rhsa-2006:0544 Red Hat Security Advisory: mysql security update 2006-06-09T15:00:00+00:00 2026-01-13T20:57:55+00:00
rhsa-2006:0515 Red Hat Security Advisory: sendmail security update 2006-06-14T18:21:00+00:00 2026-01-13T22:06:12+00:00
rhsa-2006:0548 Red Hat Security Advisory: kdebase security update 2006-06-14T19:04:00+00:00 2025-11-21T17:30:20+00:00
rhsa-2006:0573 Red Hat Security Advisory: openoffice.org security update 2006-07-03T16:10:00+00:00 2026-01-08T02:51:30+00:00
rhsa-2006:0547 Red Hat Security Advisory: squirrelmail security update 2006-07-03T16:15:00+00:00 2025-11-21T17:30:21+00:00
rhsa-2006:0574 Red Hat Security Advisory: kernel security update 2006-07-07T13:47:00+00:00 2025-11-21T17:30:23+00:00
rhsa-2006:0568 Red Hat Security Advisory: php security update 2006-07-12T18:06:00+00:00 2026-01-13T22:39:26+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
suse-su-2016:1299-1 Security update for java-1_7_1-ibm 2016-05-13T10:21:44Z 2016-05-13T10:21:44Z
suse-su-2016:1300-1 Security update for java-1_7_1-ibm 2016-05-13T10:22:20Z 2016-05-13T10:22:20Z
suse-su-2016:1301-1 Security update for ImageMagick 2016-05-13T14:27:21Z 2016-05-13T14:27:21Z
suse-su-2016:1303-1 Security update for java-1_6_0-ibm 2016-05-13T15:09:19Z 2016-05-13T15:09:19Z
suse-su-2016:1305-1 Security update for flash-player 2016-05-16T12:14:28Z 2016-05-16T12:14:28Z
suse-su-2016:1311-1 Security update for ntp 2016-05-17T09:29:35Z 2016-05-17T09:29:35Z
suse-su-2016:1310-1 Security update for php53 2016-05-17T10:01:04Z 2016-05-17T10:01:04Z
suse-su-2016:1318-1 Security update for xen 2016-05-17T12:09:35Z 2016-05-17T12:09:35Z
suse-su-2016:1342-1 Security update for MozillaFirefox 2016-05-18T12:34:08Z 2016-05-18T12:34:08Z
suse-su-2016:1345-1 Security update for wireshark 2016-05-18T12:35:30Z 2016-05-18T12:35:30Z
suse-su-2016:1344-1 Security update for wireshark 2016-05-18T12:36:20Z 2016-05-18T12:36:20Z
suse-su-2016:1343-1 Security update for salt 2016-05-18T12:36:47Z 2016-05-18T12:36:47Z
suse-su-2016:1346-1 Security update for systemd 2016-05-18T13:20:10Z 2016-05-18T13:20:10Z
suse-su-2016:1351-1 Security update for systemd 2016-05-18T13:21:09Z 2016-05-18T13:21:09Z
suse-su-2016:1355-1 Security update for python-Pillow 2016-05-19T08:04:33Z 2016-05-19T08:04:33Z
suse-su-2016:1367-1 Security update for SUSE Manager Server 2.1 2016-05-19T20:37:06Z 2016-05-19T20:37:06Z
suse-su-2016:1366-1 Recommended udpate for SUSE Manager Client Tools 2016-05-19T20:37:14Z 2016-05-19T20:37:14Z
suse-su-2016:1374-1 Security update for MozillaFirefox 2016-05-20T13:33:44Z 2016-05-20T13:33:44Z
suse-su-2016:1378-1 Security update for java-1_7_0-ibm 2016-05-20T21:06:13Z 2016-05-20T21:06:13Z
suse-su-2016:1379-1 Security update for java-1_6_0-ibm 2016-05-20T21:06:58Z 2016-05-20T21:06:58Z
suse-su-2016:1386-1 Security update for openssh 2016-05-23T15:04:45Z 2016-05-23T15:04:45Z
suse-su-2016:1443-1 Security update for mercurial 2016-05-30T13:31:17Z 2016-05-30T13:31:17Z
suse-su-2016:1442-1 Security update for mercurial 2016-05-30T13:31:38Z 2016-05-30T13:31:38Z
suse-su-2016:1457-1 Security update for cyrus-imapd 2016-05-31T16:39:22Z 2016-05-31T16:39:22Z
suse-su-2016:1458-1 Security update for java-1_6_0-ibm 2016-05-31T16:39:38Z 2016-05-31T16:39:38Z
suse-su-2016:1459-1 Security update for cyrus-imapd 2016-06-01T07:00:34Z 2016-06-01T07:00:34Z
suse-su-2016:1465-1 Recommended update for NetworkManager-kde4 2016-06-01T09:43:57Z 2016-06-01T09:43:57Z
suse-su-2016:1471-1 Security update for ntp 2016-06-01T12:36:52Z 2016-06-01T12:36:52Z
suse-su-2016:1475-1 Security update for java-1_8_0-ibm 2016-06-02T06:01:53Z 2016-06-02T06:01:53Z
suse-ru-2016:1478-1 Recommended update for samba 2016-06-02T12:55:28Z 2016-06-02T12:55:28Z
ID Description Published Updated
alsa-2023:1787 Important: firefox security update 2023-04-14T00:00:00Z 2023-04-20T13:11:54Z
alsa-2023:1802 Important: thunderbird security update 2023-04-17T00:00:00Z 2023-04-20T13:27:45Z
alsa-2023:1809 Important: thunderbird security update 2023-04-17T00:00:00Z 2023-04-20T15:37:01Z
alsa-2023:1879 Important: java-17-openjdk security and bug fix update 2023-04-19T00:00:00Z 2023-04-20T15:45:10Z
alsa-2023:1880 Important: java-11-openjdk security update 2023-04-19T00:00:00Z 2023-04-20T15:55:35Z
alsa-2023:1895 Important: java-11-openjdk security update 2023-04-20T00:00:00Z 2023-04-23T06:33:58Z
alsa-2023:1898 Important: java-17-openjdk security and bug fix update 2023-04-20T00:00:00Z 2023-04-23T06:46:57Z
alsa-2023:1918 Important: webkit2gtk3 security update 2023-04-20T00:00:00Z 2023-04-21T08:29:40Z
alsa-2023:1919 Important: webkit2gtk3 security update 2023-04-20T00:00:00Z 2023-04-21T08:37:19Z
alsa-2023:1930 Important: emacs security update 2023-04-24T00:00:00Z 2023-04-24T16:08:28Z
alsa-2023:1908 Important: java-1.8.0-openjdk security update 2023-04-25T00:00:00Z 2023-05-02T23:08:19Z
alsa-2023:1909 Important: java-1.8.0-openjdk security and bug fix update 2023-04-25T00:00:00Z 2023-05-02T23:24:58Z
alsa-2023:2074 Important: emacs security update 2023-05-02T00:00:00Z 2023-05-03T08:08:59Z
alsa-2023:2076 Important: libwebp security update 2023-05-02T00:00:00Z 2023-05-03T06:21:44Z
alsa-2023:2078 Important: libwebp security update 2023-05-02T00:00:00Z 2023-05-03T08:01:26Z
alsa-2023:2122 Important: libreswan security update 2023-05-04T00:00:00Z 2023-05-05T10:41:09Z
alsa-2023:2127 Important: samba security update 2023-05-04T00:00:00Z 2023-05-05T10:51:27Z
alsa-2023:2148 Important: kernel-rt security and bug fix update 2023-05-09T00:00:00Z 2023-05-11T14:31:35Z
alsa-2023:2161 Moderate: fence-agents security and bug fix update 2023-05-09T00:00:00Z 2023-05-11T15:42:49Z
alsa-2023:2162 Moderate: qemu-kvm security, bug fix, and enhancement update 2023-05-09T00:00:00Z 2023-05-11T16:34:36Z
alsa-2023:2165 Important: edk2 security, bug fix, and enhancement update 2023-05-09T00:00:00Z 2023-05-11T17:08:19Z
alsa-2023:2166 Moderate: freeradius security and bug fix update 2023-05-09T00:00:00Z 2023-05-11T17:13:30Z
alsa-2023:2167 Moderate: grafana security and enhancement update 2023-05-09T00:00:00Z 2023-05-11T17:41:17Z
alsa-2023:2177 Moderate: grafana-pcp security and enhancement update 2023-05-09T00:00:00Z 2023-05-12T12:18:28Z
alsa-2023:2179 Moderate: libguestfs-winsupport security update 2023-05-09T00:00:00Z 2023-05-12T12:18:28Z
alsa-2023:2193 Moderate: butane security, bug fix, and enhancement update 2023-05-09T00:00:00Z 2023-05-12T12:18:29Z
alsa-2023:2202 Moderate: frr security, bug fix, and enhancement update 2023-05-09T00:00:00Z 2023-05-12T12:19:05Z
alsa-2023:2204 Moderate: Image Builder security, bug fix, and enhancement update 2023-05-09T00:00:00Z 2023-05-12T13:23:32Z
alsa-2023:2216 Moderate: gdk-pixbuf2 security update 2023-05-09T00:00:00Z 2023-05-12T12:18:43Z
alsa-2023:2222 Moderate: conmon security and bug fix update 2023-05-09T00:00:00Z 2023-05-12T12:18:29Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
osv-2020-1787 Use-of-uninitialized-value in zend_generator_search_multi_children_node 2020-09-18T00:00:10.979894Z 2022-04-13T03:04:33.640451Z
osv-2020-1792 Heap-buffer-overflow in text_normalize_buffer 2020-09-18T00:00:21.241767Z 2022-04-13T03:04:39.379926Z
osv-2020-1802 Heap-buffer-overflow in cli_codepage_to_utf8 2020-09-18T00:00:31.737564Z 2022-04-13T03:04:39.369080Z
osv-2020-1804 Heap-buffer-overflow in text_normalize_buffer 2020-09-18T00:00:32.617703Z 2022-04-13T03:04:39.402517Z
osv-2020-1805 Stack-buffer-overflow in rijndaelSetupEncrypt 2020-09-18T00:00:33.966162Z 2022-04-13T03:04:39.441974Z
osv-2020-1807 UNKNOWN READ in __libcpp_memchr 2020-09-18T00:00:38.027965Z 2025-05-15T14:34:05.077689Z
osv-2020-1809 UNKNOWN WRITE in Imf_2_5::copyIntoFrameBuffer 2020-09-19T00:00:09.405373Z 2022-04-13T03:04:37.067494Z
osv-2020-1813 Heap-buffer-overflow in flb_msgpack_to_gelf 2020-09-20T00:00:05.229654Z 2022-04-13T03:04:38.189395Z
osv-2020-1816 Heap-buffer-overflow in encoded_to_buf 2020-09-20T00:00:19.063209Z 2022-04-13T03:04:38.437196Z
osv-2020-1819 Heap-buffer-overflow in void cv::copyToMat<int> 2020-09-21T00:00:12.969129Z 2022-04-13T03:04:31.501046Z
osv-2020-1820 Stack-buffer-overflow in hermes::regex::Parser<hermes::regex::Regex<hermes::regex::UTF16RegexTraits>, cha 2020-09-21T00:00:18.040780Z 2022-04-13T03:04:31.093016Z
osv-2020-1827 Heap-buffer-overflow in http_process_user_agent 2020-09-23T00:00:09.799504Z 2022-04-13T03:04:36.347229Z
osv-2020-1833 Heap-buffer-overflow in avifROStreamRead 2020-09-25T00:00:04.438974Z 2022-04-13T03:04:41.876574Z
osv-2020-1834 Stack-buffer-overflow in onigenc_unicode_get_case_fold_codes_by_str 2020-09-25T00:00:07.959427Z 2022-04-13T03:04:40.937721Z
osv-2020-1835 Stack-buffer-overflow in fmt::v7::detail::buffer<char>::push_back 2020-09-25T00:00:10.846065Z 2022-04-13T03:04:41.466004Z
osv-2020-1836 Heap-buffer-overflow in hextoint 2020-09-25T00:00:11.266571Z 2022-04-13T03:04:41.655154Z
osv-2020-1839 UNKNOWN READ in flb_sds_cat 2020-09-25T00:00:21.320950Z 2022-04-13T03:04:38.309534Z
osv-2020-1840 Heap-use-after-free in avifFileTypeIsCompatible 2020-09-25T00:00:39.613381Z 2022-04-13T03:04:41.892196Z
osv-2020-1841 UNKNOWN READ in avifRWDataSet 2020-09-25T00:00:39.705135Z 2022-04-13T03:04:41.887078Z
osv-2020-1842 Heap-buffer-overflow in parquet::arrow::SchemaManifest::Make 2020-09-26T00:00:04.850649Z 2022-04-13T03:04:32.002917Z
osv-2020-1843 Heap-buffer-overflow in SendUserAuthPkOk 2020-09-26T00:00:06.428089Z 2022-04-13T03:04:35.717971Z
osv-2020-1844 Heap-buffer-overflow in hextoint 2020-09-26T00:00:09.496267Z 2022-04-13T03:04:41.532322Z
osv-2020-1847 Heap-buffer-overflow in WelsDec::NeedErrorCon 2020-09-26T00:00:10.167059Z 2022-04-13T03:04:37.657743Z
osv-2020-1848 Heap-buffer-overflow in sc_oberthur_parse_publicinfo 2020-09-26T00:00:10.945991Z 2022-04-13T03:04:41.696843Z
osv-2020-1849 Use-of-uninitialized-value in RDKit::SubstanceGroup::getBondType 2020-09-26T00:00:14.118761Z 2022-04-13T03:37:09.700307Z
osv-2020-1850 Heap-buffer-overflow in fmt::v6::basic_string_view<char>::basic_string_view 2020-09-26T00:00:33.702898Z 2022-04-13T03:04:41.471399Z
osv-2020-1851 Stack-buffer-underflow in fmt::v6::basic_format_args<fmt::v6::basic_format_context<std::__1::back_insert_i 2020-09-26T00:00:34.368870Z 2022-04-13T03:04:41.476667Z
osv-2020-1852 UNKNOWN READ in WelsCommon::WelsFree 2020-09-26T00:00:38.959174Z 2022-04-13T03:04:37.600365Z
osv-2020-1853 Heap-buffer-overflow in WelsDec::DoErrorConSliceCopy 2020-09-26T00:00:40.938708Z 2022-04-13T03:04:37.516032Z
osv-2020-1854 Use-of-uninitialized-value in UpdateDecStatNoFreezingInfo 2020-09-27T00:00:12.495058Z 2022-04-13T03:04:37.382630Z
ID Description Published Updated
rustsec-2025-0061 iron crate is unmaintained 2025-09-08T12:00:00Z 2025-09-08T09:09:54Z
rustsec-2025-0066 The `google-apis-rs` project is now unmaintained 2025-09-09T12:00:00Z 2025-09-11T16:34:38Z
rustsec-2025-0000 matrix-sdk-base: Panic in the `RoomMember::normalized_power_level()` method 2025-09-11T12:00:00Z 2025-09-11T12:10:54Z
rustsec-2025-0065 matrix-sdk-base: Panic in the `RoomMember::normalized_power_level()` method 2025-09-11T12:00:00Z 2025-09-11T12:21:52Z
rustsec-2025-0067 `libyml::string::yaml_string_extend` is unsound and unmaintained 2025-09-11T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0068 serde_yml crate is unsound and unmaintained 2025-09-11T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0069 `daemonize` is Unmaintained 2025-09-14T12:00:00Z 2025-09-15T14:42:32Z
rustsec-2025-0070 Pingora MadeYouReset HTTP/2 vulnerability 2025-09-17T12:00:00Z 2025-09-18T07:10:31Z
rustsec-2025-0071 Incorrect handling of embedded SVG and MathML leads to mutation XSS after removal 2025-09-21T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0072 soundness issue and unmaintained 2025-10-02T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2025-0073 DoS vulnerability on `alloy_dyn_abi::TypedData` hashing 2025-10-15T12:00:00Z 2025-10-15T13:11:39Z
rustsec-2025-0074 `unic-segment` is unmaintained 2025-10-18T12:00:00Z 2025-10-21T11:12:59Z
rustsec-2025-0075 `unic-char-range` is unmaintained 2025-10-18T12:00:00Z 2025-10-22T14:41:04Z
rustsec-2025-0076 `unic-ucd-name` is unmaintained 2025-10-18T12:00:00Z 2025-10-21T11:12:59Z
rustsec-2025-0077 `unic-ucd` is unmaintained 2025-10-18T12:00:00Z 2025-10-21T11:12:59Z
rustsec-2025-0078 `unic-ucd-normal` is unmaintained 2025-10-18T12:00:00Z 2025-10-21T11:12:59Z
rustsec-2025-0079 `unic-ucd-hangul` is unmaintained 2025-10-18T12:00:00Z 2025-10-21T11:12:59Z
rustsec-2025-0080 `unic-common` is unmaintained 2025-10-18T12:00:00Z 2025-10-21T11:12:59Z
rustsec-2025-0081 `unic-char-property` is unmaintained 2025-10-18T12:00:00Z 2025-10-21T11:12:59Z
rustsec-2025-0082 `unic-normal` is unmaintained 2025-10-18T12:00:00Z 2025-10-21T11:12:59Z
rustsec-2025-0083 `unic-ucd-bidi` is unmaintained 2025-10-18T12:00:00Z 2025-10-21T11:12:59Z
rustsec-2025-0084 `unic-emoji` is unmaintained 2025-10-18T12:00:00Z 2025-10-21T11:12:59Z
rustsec-2025-0085 `unic-idna` is unmaintained 2025-10-18T12:00:00Z 2025-10-21T11:12:59Z
rustsec-2025-0086 `unic-char` is unmaintained 2025-10-18T12:00:00Z 2025-10-21T11:12:59Z
rustsec-2025-0087 `unic-cli` is unmaintained 2025-10-18T12:00:00Z 2025-10-21T11:12:59Z
rustsec-2025-0088 `unic-idna-punycode` is unmaintained 2025-10-18T12:00:00Z 2025-10-21T11:12:59Z
rustsec-2025-0089 `unic-ucd-name_aliases` is unmaintained 2025-10-18T12:00:00Z 2025-10-21T11:12:59Z
rustsec-2025-0090 `unic-emoji-char` is unmaintained 2025-10-18T12:00:00Z 2025-10-21T11:12:59Z
rustsec-2025-0091 `unic-utils` is unmaintained 2025-10-18T12:00:00Z 2025-10-21T11:12:59Z
rustsec-2025-0092 `unic-ucd-case` is unmaintained 2025-10-18T12:00:00Z 2025-10-21T11:12:59Z
ID Description Published Updated
bit-airflow-2021-26697 Apache Airflow: Lineage API endpoint for Experimental API missed authentication check 2024-03-06T10:59:36.299Z 2025-05-20T10:02:07.006Z
bit-node-2023-32559 2024-03-06T10:59:36.367Z 2025-11-06T13:25:46.476Z
bit-grafana-2021-39226 Snapshot authentication bypass in grafana 2024-03-06T10:59:36.715Z 2026-02-24T21:09:55.900Z
bit-discourse-2023-23935 Presence of restricted personal Discourse messages may be leaked if tagged with a tag 2024-03-06T10:59:37.214Z 2025-05-20T10:02:07.006Z
bit-envoy-2020-8663 2024-03-06T10:59:37.479Z 2025-04-03T14:40:37.652Z
bit-mlflow-2022-0736 Insecure Temporary File in mlflow/mlflow 2024-03-06T10:59:37.587Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-30943 Moodle: tinymce loaders susceptible to arbitrary folder creation 2024-03-06T10:59:39.012Z 2025-05-20T10:02:07.006Z
bit-dotnet-2021-31204 .NET and Visual Studio Elevation of Privilege Vulnerability 2024-03-06T10:59:39.307Z 2025-05-20T10:02:07.006Z
bit-magento-2021-21030 Magento Commerce Stored Cross-site Scripting Could Lead To Arbitrary Javascript Execution 2024-03-06T10:59:40.719Z 2026-03-20T09:47:33.381Z
bit-mariadb-2022-27446 2024-03-06T10:59:40.959Z 2025-04-03T14:40:37.652Z
bit-golang-2022-30633 Stack exhaustion when unmarshaling certain documents in encoding/xml 2024-03-06T10:59:42.110Z 2025-05-20T10:02:07.006Z
bit-gitlab-2023-4379 Incorrect Authorization in GitLab 2024-03-06T10:59:42.189Z 2025-05-20T10:02:07.006Z
bit-odoo-2021-44547 2024-03-06T10:59:43.391Z 2025-04-03T14:40:37.652Z
bit-jenkins-2021-21693 2024-03-06T10:59:45.309Z 2025-04-03T14:40:37.652Z
bit-node-2023-32558 2024-03-06T10:59:45.565Z 2025-04-03T14:40:37.652Z
bit-airflow-2021-26559 CWE-284 Improper Access Control on Configurations Endpoint for the Stable API 2024-03-06T10:59:45.964Z 2025-05-20T10:02:07.006Z
bit-envoy-2020-8660 2024-03-06T10:59:45.972Z 2025-04-03T14:40:37.652Z
bit-grafana-2021-28148 2024-03-06T10:59:46.478Z 2025-04-03T14:40:37.652Z
bit-moodle-2023-28336 Moodle: teacher can access names of users they do not have permission to access 2024-03-06T10:59:47.976Z 2025-05-20T10:02:07.006Z
bit-openldap-2023-2953 2024-03-06T10:59:48.191Z 2025-04-03T14:40:37.652Z
bit-mariadb-2022-27445 2024-03-06T10:59:48.273Z 2025-04-03T14:40:37.652Z
bit-discourse-2023-23624 Discourse's exclude_tags param could leak which topics had a specific hidden tag 2024-03-06T10:59:49.507Z 2025-05-20T10:02:07.006Z
bit-magento-2021-21029 Magento Commerce Reflected Cross-site Scripting Vulnerability Could Lead To Arbitrary JavaScript Execution 2024-03-06T10:59:50.197Z 2026-03-20T09:47:33.381Z
bit-dotnet-2021-26701 .NET Core Remote Code Execution Vulnerability 2024-03-06T10:59:50.664Z 2025-05-20T10:02:07.006Z
bit-gitlab-2023-4378 Insertion of Sensitive Information Into Sent Data in GitLab 2024-03-06T10:59:51.700Z 2025-05-20T10:02:07.006Z
bit-golang-2022-30632 Stack exhaustion on crafted paths in path/filepath 2024-03-06T10:59:52.395Z 2025-05-20T10:02:07.006Z
bit-jenkins-2021-21692 2024-03-06T10:59:52.700Z 2025-04-03T14:40:37.652Z
bit-airflow-2020-9485 2024-03-06T10:59:54.373Z 2025-04-03T14:40:37.652Z
bit-grafana-2021-28147 2024-03-06T10:59:54.599Z 2025-04-03T14:40:37.652Z
bit-odoo-2021-44476 2024-03-06T10:59:54.903Z 2025-04-03T14:40:37.652Z
ID Description Published Updated
ID Description Published Updated
ID Description Updated
ID Description Published Updated
ID Description Published Updated
certa-2004-avi-078 Vulnérabilité sur gdk-pixbuf sous Linux 2004-03-11T00:00:00.000000 2004-03-16T00:00:00.000000
certa-2004-avi-079 Vulnérabilité du serveur HTTP Apache 2004-03-11T00:00:00.000000 2004-05-12T00:00:00.000000
certa-2004-avi-080 Multiples vulnérabilités dans Mozilla 2004-03-11T00:00:00.000000 2004-05-14T00:00:00.000000
certa-2004-avi-081 Vulnérabilité du navigateur Konqueror 2004-03-11T00:00:00.000000 2004-03-11T00:00:00.000000
certa-2004-avi-082 Vulnérabilité de F-Secure pour Linux 2004-03-11T00:00:00.000000 2004-03-11T00:00:00.000000
certa-2004-avi-083 Vulnérabilité de rexecd sous AIX 2004-03-12T00:00:00.000000 2004-03-12T00:00:00.000000
certa-2004-avi-084 Vulnérabilité de Calife 2004-03-12T00:00:00.000000 2004-03-12T00:00:00.000000
certa-2004-avi-085 Vulnérabilité de sysstat 2004-03-15T00:00:00.000000 2004-04-07T00:00:00.000000
certa-2004-avi-086 Vulnérabilité du serveur HTTP Apache 2004-03-15T00:00:00.000000 2004-05-18T00:00:00.000000
certa-2004-avi-087 Vulnérabilité de Antigen pour Lotus Domino 2004-03-15T00:00:00.000000 2004-03-15T00:00:00.000000
certa-2004-avi-088 Vulnérabilité du serveur SAMBA 2004-03-15T00:00:00.000000 2004-04-30T00:00:00.000000
certa-2004-avi-089 Vulnérabilité sur Novell GroupWise WebAccess 2004-03-15T00:00:00.000000 2004-03-15T00:00:00.000000
certa-2004-avi-090 Vulnérabilité dans Oracle Application Server Web Cache 2004-03-15T00:00:00.000000 2004-03-15T00:00:00.000000
certa-2004-avi-091 Compromission possible de certificats sur <SPAN class="textit">HP HTTP Server</SPAN> 2004-03-15T00:00:00.000000 2004-03-15T00:00:00.000000
certa-2004-avi-092 Vulnérabilité de IPsec/IKE sous Tru64 UNIX 2004-03-15T00:00:00.000000 2004-03-15T00:00:00.000000
certa-2004-avi-093 Vulnérabilité de Solaris 2004-03-15T00:00:00.000000 2004-03-15T00:00:00.000000
certa-2004-avi-094 Vulnérabilité sur plusieurs serveurs SOAP 2004-03-18T00:00:00.000000 2004-03-18T00:00:00.000000
certa-2004-avi-095 Multiples vulnérabilités d'OpenSSL 2004-03-18T00:00:00.000000 2004-05-07T00:00:00.000000
certa-2004-avi-096 Vulnérabilité des produits Proventia, BlackICE et RealSecure d'ISS 2004-03-19T00:00:00.000000 2004-03-22T00:00:00.000000
certa-2004-avi-097 Vulnérabilités dans Norton Internet Security et Norton AntiSpam 2004-03-22T00:00:00.000000 2004-03-22T00:00:00.000000
certa-2004-avi-098 Vulnérabilité de Clamav 2004-03-23T00:00:00.000000 2004-04-08T00:00:00.000000
certa-2004-avi-099 Vulnérabilités dans Ethereal 2004-03-24T00:00:00.000000 2004-06-01T00:00:00.000000
certa-2004-avi-100 Multiples vulnérabilités de isakmpd sous OpenBSD 2004-03-24T00:00:00.000000 2004-05-12T00:00:00.000000
certa-2004-avi-101 Vulnérabilité du module mod_survey 2004-03-25T00:00:00.000000 2004-03-25T00:00:00.000000
certa-2004-avi-102 Vulnérabilité sur Novell Netware 6.5 2004-03-26T00:00:00.000000 2004-03-26T00:00:00.000000
certa-2004-avi-103 Vulnérabilité dans l'utilitaire nslookup de IBM AIX 2004-03-26T00:00:00.000000 2004-03-26T00:00:00.000000
certa-2004-avi-104 Multiples vulnérabilités dans SD-UX de HP-UX 2004-03-26T00:00:00.000000 2004-03-26T00:00:00.000000
certa-2004-avi-105 Vulnérabilité de la fonction setsockopt() sous FreeBSD 2004-03-30T00:00:00.000000 2004-03-30T00:00:00.000000
certa-2004-avi-106 Vulnérabilités de tcpdump 2004-03-31T00:00:00.000000 2004-09-08T00:00:00.000000
certa-2004-avi-107 Vulnérabilité dans MPlayer 2004-04-02T00:00:00.000000 2004-05-12T00:00:00.000000
ID Description Published Updated
jvndb-2012-000111 Boat Browser / Boat Browser Mini vulnerable in the WebView class 2012-12-20T15:00+09:00 2012-12-20T15:00+09:00
jvndb-2012-000112 Opera Mini / Opera Mobile for Android vulnerable in the WebView class 2012-12-20T15:04+09:00 2012-12-28T16:13+09:00
jvndb-2012-000114 Loctouch for Android vulnerable in handling of implicit intents 2012-12-21T12:29+09:00 2012-12-21T12:29+09:00
jvndb-2012-000115 Loctouch for Android information management vulnerability 2012-12-21T12:37+09:00 2012-12-21T12:37+09:00
jvndb-2012-000113 concrete5 vulnerable to cross-site scripting 2012-12-21T12:41+09:00 2013-02-20T16:10+09:00
jvndb-2012-005827 Cross-site Scripting Vulnerability in Collaboration - Bulletin board in Multiple Hitachi Products 2012-12-28T16:43+09:00 2012-12-28T16:43+09:00
jvndb-2013-000001 Documents Pro (formerly Files HD) vulnerable to cross-site scripting 2013-01-18T13:36+09:00 2013-01-18T13:36+09:00
jvndb-2013-000002 Documents Pro (formerly Files HD) vulnerable to directory traversal 2013-01-18T13:39+09:00 2013-01-18T13:39+09:00
jvndb-2013-000003 myu-s / PHP WeblogSystem by netmania vulnerable to cross-site scripting 2013-01-22T15:22+09:00 2013-01-22T15:22+09:00
jvndb-2013-000004 WebSphere Application Server (WAS) vulnerable to cross-site scripting 2013-01-25T12:32+09:00 2013-01-25T12:32+09:00
jvndb-2013-000005 Weathernews Touch for Android stores location information in the system log file 2013-01-31T13:38+09:00 2013-01-31T13:38+09:00
jvndb-2013-000006 mora Downloader may insecurely load executable files 2013-02-07T14:00+09:00 2013-02-07T14:00+09:00
jvndb-2013-000008 Cybozu Garoon vulnerable to cross-site scripting 2013-02-08T13:53+09:00 2013-02-08T13:53+09:00
jvndb-2013-000007 Cybozu Garoon vulnerable to SQL injection 2013-02-08T13:58+09:00 2013-02-08T13:58+09:00
jvndb-2013-001321 User Authentication Vulnerability in Operational Management Function of Cosminexus 2013-02-12T14:24+09:00 2013-02-12T14:24+09:00
jvndb-2013-001470 Accela BizSearch Gateway Option for TeamWARE Spoofing Vulnerability 2013-02-13T16:47+09:00 2013-02-13T16:47+09:00
jvndb-2013-000009 imgboard vulnerable to cross-site scripting 2013-02-14T14:10+09:00 2013-02-14T14:10+09:00
jvndb-2013-000010 GREE for Android vulnerable to directory traversal 2013-02-14T14:15+09:00 2013-02-14T14:15+09:00
jvndb-2013-000011 3DM (3ware Disk Manager) vulnerable to directory traversal 2013-02-15T14:29+09:00 2013-02-15T14:29+09:00
jvndb-2013-000012 NEC Universal RAID Utility fails to restrict access permissions 2013-02-21T13:54+09:00 2013-03-01T11:34+09:00
jvndb-2013-001605 Multiple vulnerabilities in Hitachi Tuning Manager and JP1/Performance Management 2013-02-22T20:09+09:00 2013-02-22T20:09+09:00
jvndb-2013-000015 Multiple JustSystems products vulnerable to arbitrary code execution 2013-02-26T14:45+09:00 2013-02-26T14:45+09:00
jvndb-2013-000013 dopvCOMET* vulnerable to cross-site scripting 2013-02-28T13:37+09:00 2013-02-28T13:37+09:00
jvndb-2013-000014 dopvSTAR* vulnerable to cross-site scripting 2013-02-28T13:46+09:00 2013-02-28T13:46+09:00
jvndb-2013-000016 Kingsoft Writer vulnerable to buffer overflow 2013-03-01T14:47+09:00 2013-03-01T14:47+09:00
jvndb-2013-000017 Multiple Cisco products vulnerable to denial-of-service (DoS) 2013-03-07T14:13+09:00 2013-03-11T16:22+09:00
jvndb-2013-000020 VxWorks SSH server (IPSSH) denial-of-service (DoS) vulnerability 2013-03-18T14:30+09:00 2013-06-25T18:01+09:00
jvndb-2013-000019 VxWorks SSH server (IPSSH) denial-of-service (DoS) vulnerability 2013-03-18T14:32+09:00 2013-06-25T17:57+09:00
jvndb-2013-000018 VxWorks SSH server (IPSSH) denial-of-service (DoS) vulnerability 2013-03-18T14:33+09:00 2013-06-25T17:54+09:00
jvndb-2013-000021 VxWorks SSH server (IPSSH) denial-of-service (DoS) vulnerability 2013-03-18T14:38+09:00 2013-06-25T18:06+09:00
ID Description Published Updated
cnvd-2015-00773 Apple MAC OS X Yosemite Thunderbolt设备固件修改漏洞 2015-01-30 2015-02-02
cnvd-2015-00774 Apple MAC OS X Yosemite SceneKit越界漏洞 2015-01-30 2015-02-02
cnvd-2015-00776 Apple MAC OS X Yosemite文件处理堆缓冲区溢出漏洞 2015-01-30 2015-02-02
cnvd-2015-00777 Apple MAC OS X Yosemite App Store日志信息泄露漏洞 2015-01-30 2015-02-02
cnvd-2015-00778 Apple MAC OS X Yosemite访问控制漏洞 2015-01-30 2015-01-31
cnvd-2015-00779 Apple MAC OS X Yosemite蓝牙驱动任意代码执行漏洞 2015-01-30 2015-01-31
cnvd-2015-00780 Apple MAC OS X Yosemite PDF文件信息泄露漏洞 2015-01-30 2015-02-02
cnvd-2015-00781 Apple MAC OS X Yosemite sysmond类型混淆漏洞 2015-01-30 2015-02-02
cnvd-2015-00782 Apple MAC OS X Yosemite沙盒绕过漏洞 2015-01-30 2015-01-31
cnvd-2015-00783 Apple MAC OS X Yosemite DF文件内存破坏漏洞 2015-01-30 2015-02-02
cnvd-2015-00784 Apple MAC OS X Yosemite IOBluetoothFamily整数溢出漏洞 2015-01-30 2015-02-02
cnvd-2015-00785 Apple MAC OS X Yosemite XPC消息处理类型混淆漏洞 2015-01-30 2015-02-02
cnvd-2015-00786 Apple MAC OS X Yosemite锁屏绕过漏洞 2015-01-30 2015-01-31
cnvd-2015-00787 Apple MAC OS X Yosemite IOHIDFamily驱动边界检查代码执行漏洞 2015-01-30 2015-02-02
cnvd-2015-00788 Apple MAC OS X Yosemite目录服务解析处理校验漏洞 2015-01-30 2015-02-02
cnvd-2015-00789 Apple MAC OS X Yosemite IODataQueue对象处理校验漏洞 2015-01-30 2015-02-02
cnvd-2015-00790 Apple MAC OS X Yosemite IOUSB控制器用户客户端函数内存访问漏洞 2015-01-30 2015-02-02
cnvd-2015-00791 Apple MAC OS X Yosemite Intel图像驱动代码执行漏洞(CNVD-2015-00791) 2015-01-30 2015-02-02
cnvd-2015-00792 Apple MAC OS X Yosemite Intel图像驱动代码执行漏洞(CNVD-2015-00792) 2015-01-30 2015-02-02
cnvd-2015-00793 Apple MAC OS X Yosemite Intel图像驱动代码执行漏洞(CNVD-2015-00793) 2015-01-30 2015-02-02
cnvd-2015-00794 WordPress插件Blubrry PowerPress Podcast 'admin.php'跨站脚本漏洞 2015-01-30 2015-02-02
cnvd-2015-00795 Privoxy存在多个内存破坏漏洞 2015-01-30 2015-02-02
cnvd-2015-00796 Privoxy远程拒绝服务漏洞(CNVD-2015-00796) 2015-01-30 2015-02-02
cnvd-2015-00797 Linux Kernel本地拒绝服务漏洞(CNVD-2015-00797) 2015-01-30 2015-02-02
cnvd-2015-00798 Linux Kernel 'fs/fhandle.c'本地竞争条件漏洞 2015-01-30 2015-02-02
cnvd-2015-00799 WordPress插件Geo Mashup跨站脚本漏洞 2015-01-30 2015-02-02
cnvd-2015-00800 Pexip Infinity中间人安全绕过漏洞 2015-01-30 2015-02-02
cnvd-2015-00801 Privoxy远程拒绝服务漏洞(CNVD-2015-00801) 2015-01-30 2015-02-02
cnvd-2015-00802 Libvirt信息泄露漏洞(CNVD-2015-00802) 2015-01-30 2015-02-02
cnvd-2015-00803 Xen拒绝服务漏洞(CNVD-2015-00803) 2015-01-30 2015-02-02
ID Description Published Updated
bdu:2015-03231 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03232 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03233 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03234 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03235 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03236 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03237 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03238 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03239 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03240 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03241 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03242 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03243 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03244 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03245 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03246 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03247 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03248 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03249 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03250 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03251 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03252 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03253 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03254 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03255 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03256 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03257 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03258 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03259 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03260 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
ID Description Updated
var-201612-0647 HollySys, founded in 1993, is a provider of automation and information technology solutio… 2022-05-04T09:17:46.515000Z
var-201609-0696 ASUSRT-N10EWirelessRouter is a wireless router device developed by ASUS. A cross-site scr… 2022-05-04T09:17:47.868000Z
var-201601-0675 The user's password is generated using a simpler algorithm , The attacker can obtain the … 2022-05-04T09:17:57.487000Z
var-201507-0712 Tableau Server is enterprise intelligence software that provides browser-based analysis t… 2022-05-04T09:18:03.671000Z
var-201408-0478 Hikvision video network monitoring system iVMS-8100 is a set of video network monitoring … 2022-05-04T09:18:13.880000Z
var-201406-0507 XML link function of Hitachi COBOL2002 contains vulnerabilities to conduct information le… 2022-05-04T09:18:15.251000Z
var-201401-0739 The Appotech AX211 / AX215 is a microcontroller device. The Appotech AX211 / AX215 8-bit … 2022-05-04T09:18:21.619000Z
var-201312-0603 Alvarion BreezeACCESS VL is a wireless bridge device that is a flexible, proven point-to-… 2022-05-04T09:18:22.392000Z
var-201310-0804 The Netgear WNDR3700 is a router device. The Netgear WNDR3700 Router sprintf() function h… 2022-05-04T09:18:26.601000Z
var-201211-0603 NETGEAR NTV300 (NeoTV) is a set-top box device. NETGEAR NTV300 (NeoTV) has defects. The s… 2022-05-04T09:19:01.223000Z
var-201009-0313 YOPS (Your Own Personal [WEB] Server) is a Linux platform HTTP server written in C. The h… 2022-05-04T09:19:21.549000Z
var-201003-0532 Computer systems running the JP1/Cm2/Network Node Manager (NNM) Remote Console for Window… 2022-05-04T09:19:25.598000Z
var-201001-0329 Apache HTTP Server is a popular web server. The Apache server's mod_proxy module has an i… 2022-05-04T09:19:26.600000Z
var-200909-0584 Hitachi JP1/File Transmission Server/FTP contains multiple vulnerabilities that could all… 2022-05-04T09:19:31.130000Z
var-200811-0453 SpeedStream 5200 is an ADSL router for SMEs.  The authentication process of the SpeedStr… 2022-05-04T09:19:42.213000Z
var-200712-0453 Provided by Hitachi JP1/Cm2/Network Node Manager (NNM) Contains a cross-site scripting vu… 2022-05-04T09:19:57.162000Z
var-202112-1088 TOTOLINK EX1200T is a wireless signal booster. TOTOLINK EX1200T has an information di… 2022-05-04T09:21:11.424000Z
var-202111-1526 IBM MQ Appliance 9.2 CD and 9.2 LTS could allow a local attacker to obtain sensitive info… 2022-05-04T09:21:12.415000Z
var-202110-1912 Huawei Technologies Co., Ltd. is the world's leading provider of information and communic… 2022-05-04T09:21:13.900000Z
var-202108-2579 NBR6210-E is an enterprise router launched by Ruijie Networks Co., Ltd. Beijing Xingw… 2022-05-04T09:21:16.341000Z
var-202108-2558 The business scope of Wuxi Chengan Information Technology Co., Ltd. includes: research an… 2022-05-04T09:21:16.355000Z
var-202108-2537 Ricoh (China) Investment Co., Ltd. provides office image processing equipment (such as MF… 2022-05-04T09:21:16.365000Z
var-202108-2516 Hangzhou Hikvision Digital Technology Co., Ltd. is a video-centric IoT solution provider,… 2022-05-04T09:21:16.376000Z
var-202108-2495 Axis is an IT company that specializes in providing network video solutions. AXIS Q61… 2022-05-04T09:21:16.387000Z
var-202108-2474 Toshiba (China) Co., Ltd. is a company mainly engaged in Toshiba's four major business ar… 2022-05-04T09:21:16.397000Z
var-202108-2453 SL-M4020ND is a laser printer of Samsung (China) Investment Co., Ltd. Samsung (China)… 2022-05-04T09:21:16.409000Z
var-202108-2432 Samsung (China) Investment Co., Ltd. is the headquarters of Samsung Group in China. As of… 2022-05-04T09:21:16.424000Z
var-202108-2411 HP Color LaserJet Pro M252n is a laser printer under Hewlett-Packard (HP). The HP Col… 2022-05-04T09:21:16.436000Z
var-202108-2390 Fuji Xerox (China) Co., Ltd. was established on January 3, 1995. It is a wholly-owned hol… 2022-05-04T09:21:16.447000Z
var-202108-2369 MX-2314N is a printer of Sharp Trading (China) Co., Ltd. Sharp Trading (China) Co., L… 2022-05-04T09:21:16.458000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated