Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2000-0005 |
N/A
|
HP-UX aserver program allows local users to gain … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T04:58:11.797Z |
| CVE-2000-0008 |
N/A
|
FTPPro allows local users to read sensitive infor… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T04:58:11.458Z |
| CVE-2000-0016 |
N/A
|
Buffer overflow in Internet Anywhere POP3 Mail Se… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T04:58:11.416Z |
| CVE-2000-0017 |
N/A
|
Buffer overflow in Linux linuxconf package allows… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T04:58:11.855Z |
| CVE-2000-0019 |
N/A
|
IMail POP3 daemon uses weak encryption, which all… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T04:58:11.412Z |
| CVE-2000-0021 |
N/A
|
Lotus Domino HTTP server allows remote attackers … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T04:58:11.587Z |
| CVE-2000-0028 |
N/A
|
Internet Explorer 5.0 and 5.01 allows remote atta… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T04:58:11.688Z |
| CVE-2000-0035 |
N/A
|
resend command in Majordomo allows local users to… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:53.647Z |
| CVE-2000-0038 |
N/A
|
glFtpD includes a default glftpd user account wit… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:53.654Z |
| CVE-2000-0046 |
N/A
|
Buffer overflow in ICQ 99b 1.1.1.1 client allows … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:53.942Z |
| CVE-2000-0047 |
N/A
|
Buffer overflow in Yahoo Pager/Messenger client a… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:53.904Z |
| CVE-2000-0049 |
N/A
|
Buffer overflow in Winamp client allows remote at… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:53.791Z |
| CVE-2000-0054 |
N/A
|
search.cgi in the SolutionScripts Home Free packa… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:53.914Z |
| CVE-2000-0055 |
N/A
|
Buffer overflow in Solaris chkperm command allows… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:53.949Z |
| CVE-2000-0058 |
N/A
|
Network HotSync program in Handspring Visor does … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:53.678Z |
| CVE-2000-0059 |
N/A
|
PHP3 with safe_mode enabled does not properly fil… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:54.163Z |
| CVE-2000-0061 |
N/A
|
Internet Explorer 5 does not modify the security … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:52.954Z |
| CVE-2000-0066 |
N/A
|
WebSite Pro allows remote attackers to determine … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:53.937Z |
| CVE-2000-0067 |
N/A
|
CyberCash Merchant Connection Kit (MCK) allows lo… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:53.972Z |
| CVE-2000-0068 |
N/A
|
daynad program in Intel InBusiness E-mail Station… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:52.987Z |
| CVE-2000-0069 |
N/A
|
The recover program in Solstice Backup allows loc… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:53.898Z |
| CVE-2000-0071 |
N/A
|
IIS 4.0 allows a remote attacker to obtain the re… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:54.101Z |
| CVE-2000-0074 |
N/A
|
PowerScripts PlusMail CGI program allows remote a… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:53.862Z |
| CVE-2000-0077 |
N/A
|
The October 1998 version of the HP-UX aserver pro… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:53.892Z |
| CVE-2000-0078 |
N/A
|
The June 1999 version of the HP-UX aserver progra… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:53.908Z |
| CVE-2000-0079 |
N/A
|
The W3C CERN httpd HTTP server allows remote atta… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:53.929Z |
| CVE-2000-0081 |
N/A
|
Hotmail does not properly filter JavaScript code … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:53.974Z |
| CVE-2000-0082 |
N/A
|
WebTV email client allows remote attackers to for… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:52.722Z |
| CVE-2000-0084 |
N/A
|
CuteFTP uses weak encryption to store password in… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:53.915Z |
| CVE-2000-0085 |
N/A
|
Hotmail does not properly filter JavaScript code … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-08T05:05:53.831Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-1999-1172 |
N/A
|
By design, Maximizer Enterprise 4 calendar and ad… |
n/a |
n/a |
2001-09-12T04:00:00 | 2024-08-01T17:02:53.799Z |
| CVE-1999-1376 |
N/A
|
Buffer overflow in fpcount.exe in IIS 4.0 with Fr… |
n/a |
n/a |
2001-09-12T04:00:00 | 2024-08-01T17:11:02.907Z |
| CVE-1999-1538 |
N/A
|
When IIS 2 or 3 is upgraded to IIS 4, ism.dll is … |
n/a |
n/a |
2001-09-12T04:00:00 | 2024-08-01T17:18:07.511Z |
| CVE-1999-0457 |
N/A
|
Linux ftpwatch program allows local users to gain… |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:41:44.847Z |
| CVE-1999-0678 |
N/A
|
A default configuration of Apache on Debian GNU/L… |
n/a |
n/a |
2000-03-22T05:00:00 | 2024-08-01T16:48:37.025Z |
| CVE-1999-0119 |
N/A
|
Windows NT 4.0 beta allows users to read and dele… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:27:57.638Z |
| CVE-1999-0451 |
N/A
|
Denial of service in Linux 2.0.36 allows local us… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:44.864Z |
| CVE-1999-0121 |
N/A
|
Buffer overflow in dtaction command gives root access. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:27:57.694Z |
| CVE-1999-1264 |
N/A
|
WebRamp M3 router does not disable remote telnet … |
n/a |
n/a |
2001-09-12T04:00:00 | 2024-08-01T17:11:01.680Z |
| CVE-1999-1544 |
N/A
|
Buffer overflow in FTP server in Microsoft IIS 3.… |
n/a |
n/a |
2001-09-12T04:00:00 | 2024-08-01T17:18:07.504Z |
| CVE-1999-0352 |
N/A
|
ControlIT 4.5 and earlier (aka Remotely Possible)… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.026Z |
| CVE-1999-0356 |
N/A
|
ControlIT v4.5 and earlier uses weak encryption t… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.131Z |
| CVE-1999-0357 |
N/A
|
Windows 98 and other operating systems allows rem… |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:34:51.899Z |
| CVE-1999-1458 |
N/A
|
Buffer overflow in at program in Digital UNIX 4.0… |
n/a |
n/a |
2001-09-12T04:00:00 | 2024-08-01T17:18:07.124Z |
| CVE-1999-0347 |
N/A
|
Internet Explorer 4.01 allows remote attackers to… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.901Z |
| CVE-1999-0400 |
N/A
|
Denial of service in Linux 2.2.0 running the ldd … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.037Z |
| CVE-1999-0449 |
N/A
|
The ExAir sample site in IIS 4 allows remote atta… |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:41:44.902Z |
| CVE-1999-0450 |
N/A
|
In IIS, an attacker could determine a real path u… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:44.860Z |
| CVE-1999-0348 |
N/A
|
IIS ASP caching problem releases sensitive inform… |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:34:51.967Z |
| CVE-1999-0349 |
N/A
|
A buffer overflow in the FTP list (ls) command in… |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:34:52.021Z |
| CVE-1999-1450 |
N/A
|
Vulnerability in (1) rlogin daemon rshd and (2) s… |
n/a |
n/a |
2001-09-12T04:00:00 | 2024-08-01T17:11:03.392Z |
| CVE-1999-0461 |
N/A
|
Versions of rpcbind including Linux, IRIX, and Wi… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:44.794Z |
| CVE-1999-0952 |
N/A
|
Buffer overflow in Solaris lpstat via class argum… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:55:29.195Z |
| CVE-1999-1546 |
N/A
|
netstation.navio-com.rte 1.1.0.1 configuration sc… |
n/a |
n/a |
2001-09-12T04:00:00 | 2024-08-01T17:18:07.650Z |
| CVE-2000-0370 |
N/A
|
The debug option in Caldera Linux smail allows re… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.488Z |
| CVE-1999-0360 |
N/A
|
MS Site Server 2.0 with IIS 4 can allow users to … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.888Z |
| CVE-1999-0291 |
N/A
|
The WinGate proxy is installed without a password… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:34:51.855Z |
| CVE-1999-0351 |
N/A
|
FTP PASV "Pizza Thief" denial of service and unau… |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:34:51.976Z |
| CVE-1999-0358 |
N/A
|
Digital Unix 4.0 has a buffer overflow in the inc… |
n/a |
n/a |
2000-10-13T04:00:00 | 2024-08-01T16:34:52.011Z |
| CVE-1999-0373 |
N/A
|
Buffer overflow in the "Super" utility in Debian … |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:34:52.034Z |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-872g-2h8h-362q |
9.8 (3.1)
|
Jetty contains an alias issue that could allow unauthenticated remote code execution due to special… | 2018-10-19T16:16:16Z | 2022-09-14T01:07:09Z |
| ghsa-84q7-p226-4x5w |
7.5 (3.1)
|
Jetty vulnerable to cache poisoning due to inconsistent HTTP request handling (HTTP Request Smuggling) | 2018-10-19T16:16:27Z | 2022-09-14T01:08:10Z |
| ghsa-6x9x-8qw9-9pp6 |
9.8 (3.1)
|
Jetty vulnerable to authorization bypass due to inconsistent HTTP request handling (HTTP Request Sm… | 2018-10-19T16:16:38Z | 2022-09-14T01:09:24Z |
| ghsa-qv32-7r6p-xhhh |
7.5 (3.1)
|
Moderate severity vulnerability that affects com.adobe.xmp:xmpcore | 2018-10-19T16:39:29Z | 2021-09-16T21:06:35Z |
| ghsa-jc7r-v6fg-2gpf |
8.1 (3.1)
|
Apache CXF TLS hostname verification does not work correctly with com.sun.net.ssl.* | 2018-10-19T16:40:01Z | 2025-05-29T17:42:39Z |
| ghsa-269m-695x-j34p |
9.8 (3.1)
|
Apache Qpid Broker vulnerable to authentication port spoofing | 2018-10-19T16:41:04Z | 2023-08-28T10:49:23Z |
| ghsa-4r7g-7cpj-5jr7 |
7.5 (3.1)
|
Apache Qpid Broker-J vulnerable to Denial of Service (DoS) via uncontrolled resource consumption | 2018-10-19T16:41:15Z | 2023-08-28T10:50:19Z |
| ghsa-hrmr-f5m6-m9pq |
5.5 (3.1)
|
Moderate severity vulnerability that affects org.apache.commons:commons-compress | 2018-10-19T16:41:27Z | 2024-06-05T17:11:42Z |
| ghsa-6w3v-66mj-2qm6 |
5.9 (3.1)
|
Moderate severity vulnerability that affects org.apache.qpid:apache-qpid-broker-j | 2018-10-19T16:41:46Z | 2021-09-02T18:30:03Z |
| ghsa-p99p-726h-c8v5 |
8.1 (3.1)
|
Apache juddi-client vulnerable to XML External Entity (XXE) | 2018-10-19T16:42:15Z | 2022-09-14T19:12:48Z |
| ghsa-m9w8-v359-9ffr |
7.4 (3.1)
|
Improper Certificate Validation in Apache activemq-client | 2018-10-19T16:42:27Z | 2022-11-17T19:38:02Z |
| ghsa-q25j-gcmv-5qpp |
6.1 (3.1)
|
Stored Cross Site Scripting in Grails Fields Plugin | 2018-10-19T16:46:01Z | 2024-11-18T18:21:20Z |
| ghsa-vgvf-9jh3-fg75 |
8.8 (3.1)
|
Deserialization of Untrusted Data in swagger-codegen | 2018-10-19T16:46:30Z | 2022-09-14T19:14:19Z |
| ghsa-q7pf-qr96-2vq5 |
8.8 (3.1)
|
Deserialization of Untrusted Data in swagger-parser | 2018-10-19T16:46:41Z | 2022-09-14T19:14:55Z |
| ghsa-g556-x5vx-qh59 |
7.8 (3.1)
|
Android SVG vulnerable to XML External Entity (XXE) | 2018-10-19T16:50:33Z | 2022-09-14T19:15:38Z |
| ghsa-93jq-624g-4p9p |
7.5 (3.1)
|
Improper Input Validation in async-http-client | 2018-10-19T16:50:50Z | 2022-09-14T19:16:10Z |
| ghsa-qvxv-pmq9-4q7g |
7.8 (3.1)
|
High severity vulnerability that affects org.scala-lang:scala-compiler | 2018-10-19T16:51:11Z | 2021-09-16T21:08:26Z |
| ghsa-h3wv-47xm-4mg6 |
7.4 (3.1)
|
Server Side Request Forgery in svgSalamander | 2018-10-19T16:51:25Z | 2022-09-14T19:16:41Z |
| ghsa-4m9r-5gqp-7j82 |
7.5 (3.1)
|
High severity vulnerability that affects org.dspace:dspace-xmlui | 2018-10-19T16:52:06Z | 2021-06-11T14:37:55Z |
| ghsa-568q-9fw5-28wf |
|
Moderate severity vulnerability that affects org.postgresql:pgjdbc-aggregate | 2018-10-19T16:53:33Z | 2020-06-16T21:00:08Z |
| ghsa-6xq8-pvg4-3mf3 |
10.0 (3.1)
|
Eclipse RDF4j vulnerable to XML External Entity | 2018-10-19T16:54:11Z | 2025-10-15T16:43:16Z |
| ghsa-3x7h-5hfr-hvjm |
7.5 (3.1)
|
Moderate severity vulnerability that affects io.undertow:undertow-core | 2018-10-19T16:54:56Z | 2021-08-31T21:36:39Z |
| ghsa-mcfm-h73v-635m |
6.5 (3.1)
|
Undertow-core vulnerable to HTTP Request Smuggling | 2018-10-19T16:55:14Z | 2022-09-14T19:18:03Z |
| ghsa-fmr4-w67p-vh8x |
5.5 (3.1)
|
Improper Input Validation in org.wildfly:wildfly-undertow | 2018-10-19T16:55:35Z | 2023-02-13T20:36:36Z |
| ghsa-76qr-mmh8-cp8f |
5.3 (3.1)
|
Moderate severity vulnerability that affects com.sparkjava:spark-core | 2018-10-19T16:56:00Z | 2021-09-02T19:24:32Z |
| ghsa-6cw8-7j6c-hccp |
|
Moderate severity vulnerability that affects io.vertx:vertx-core | 2018-10-19T17:43:36Z | 2020-06-16T21:18:56Z |
| ghsa-h8w4-qv99-f7vj |
8.1 (3.1)
|
Authorization bypass in org.springframework.security.oauth:spring-security-oauth2 | 2018-10-19T22:00:28Z | 2024-03-04T21:20:57Z |
| ghsa-4cj8-g9cp-v5wr |
9.8 (3.1)
|
Unrestricted Upload of File with Dangerous Type in blueimp-file-upload | 2018-10-22T18:53:56Z | 2022-09-14T19:19:04Z |
| ghsa-9qgc-p27w-3hjg |
7.5 (3.1)
|
High severity vulnerability that affects com.typesafe.akka:akka-http-core_2.11 and com.typesafe.akk… | 2018-10-22T20:37:07Z | 2021-09-08T20:46:55Z |
| ghsa-mr95-9rr4-668f |
9.1 (3.1)
|
Cryptographically Weak Pseudo-Random Number Generator (PRNG) in akka-actor | 2018-10-22T20:44:26Z | 2022-09-14T19:20:04Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2019-182 |
|
Python keyring has insecure permissions on new databases allowing world-readable files to… | keyring | 2019-11-25T13:15:00Z | 2021-08-27T03:22:05.663844Z |
| pysec-2019-3 |
|
A flaw was found in ansible 2.8.0 before 2.8.4. Fields managing sensitive data should be … | ansible | 2019-11-25T16:15:00Z | 2020-04-13T00:15:00Z |
| pysec-2019-177 |
|
An error-handling flaw was found in python-ecdsa before version 0.13.3. During signature … | ecdsa | 2019-11-26T13:15:00Z | 2021-08-27T03:22:03.507805Z |
| pysec-2019-146 |
|
ansible before versions 2.8.6, 2.7.14, 2.6.20 is vulnerable to a None | ansible | 2019-11-26T14:15:00Z | 2021-07-02T02:41:34.512855Z |
| pysec-2019-130 |
|
typed_ast 1.3.0 and 1.3.1 has a handle_keywordonly_args out-of-bounds read. An attacker w… | typed-ast | 2019-11-26T15:15:00Z | 2020-03-14T02:15:00Z |
| pysec-2019-131 |
|
typed_ast 1.3.0 and 1.3.1 has an ast_for_arguments out-of-bounds read. An attacker with t… | typed-ast | 2019-11-26T15:15:00Z | 2020-03-14T02:15:00Z |
| pysec-2019-168 |
|
A flaw was found in IPA, all 4.6.x versions before 4.6.7, all 4.7.x versions before 4.7.4… | ipa | 2019-11-27T08:15:00Z | 2021-08-25T04:30:10.435825Z |
| pysec-2019-22 |
|
A flaw was found in IPA, all 4.6.x versions before 4.6.7, all 4.7.x versions before 4.7.4… | freeipa | 2019-11-27T08:15:00Z | 2020-02-05T00:15:00Z |
| pysec-2019-28 |
|
A flaw was found in IPA, all 4.6.x versions before 4.6.7, all 4.7.x versions before 4.7.4… | ipa | 2019-11-27T09:15:00Z | 2020-02-05T00:15:00Z |
| pysec-2019-135 |
|
When using wagtail-2fa before 1.3.0, if someone gains access to someone's Wagtail login c… | wagtail-2fa | 2019-11-29T17:15:00Z | 2020-10-09T13:27:00Z |
| pysec-2019-15 |
|
Django 2.1 before 2.1.15 and 2.2 before 2.2.8 allows unintended model editing. A Django m… | django | 2019-12-02T14:15:00Z | 2020-05-01T02:15:00Z |
| pysec-2019-134 |
|
The validators package 0.12.2 through 0.12.5 for Python enters an infinite loop when vali… | validators | 2019-12-05T01:15:00Z | 2020-08-24T17:37:00Z |
| pysec-2019-29 |
|
OpenStack Keystone 15.0.0 and 16.0.0 is affected by Data Leakage in the list credentials … | keystone | 2019-12-09T18:15:00Z | 2019-12-20T00:15:00Z |
| pysec-2019-154 |
|
The CreateID function in packet.py in pyrad before 2.1 uses sequential packet IDs, which … | pyrad | 2019-12-09T21:15:00Z | 2021-07-05T00:01:25.106986Z |
| pysec-2019-161 |
|
python-keystoneclient version 0.2.3 to 0.2.5 has middleware memcache signing bypass | python-keystoneclient | 2019-12-10T15:15:00Z | 2021-07-25T23:34:52.007420Z |
| pysec-2019-197 |
|
python-keystoneclient version 0.2.3 to 0.2.5 has middleware memcache encryption bypass | python-keystoneclient | 2019-12-10T15:15:00Z | 2021-08-27T03:22:18.277308Z |
| pysec-2019-105 |
|
The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Inject… | modoboa-dmarc | 2019-12-10T20:15:00Z | 2019-12-19T15:11:00Z |
| pysec-2019-251 |
7.5 (3.1)
|
The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Inject… | modoboa | 2019-12-10T20:15:00Z | 2024-12-02T10:49:36.349040Z |
| pysec-2019-200 |
|
python-requests-Kerberos through 0.5 does not handle mutual authentication | requests-kerberos | 2019-12-15T22:15:00Z | 2021-08-27T03:22:19.338890Z |
| pysec-2019-209 |
|
In TensorFlow before 1.15, a heap buffer overflow in UnsortedSegmentSum can be produced w… | tensorflow | 2019-12-16T21:15:00Z | 2021-08-27T03:22:22.453759Z |
| pysec-2019-227 |
|
In TensorFlow before 1.15, a heap buffer overflow in UnsortedSegmentSum can be produced w… | tensorflow-cpu | 2019-12-16T21:15:00Z | 2021-08-27T03:22:22.453759Z |
| pysec-2019-234 |
|
In TensorFlow before 1.15, a heap buffer overflow in UnsortedSegmentSum can be produced w… | tensorflow-gpu | 2019-12-16T21:15:00Z | 2021-12-09T06:35:11.891064Z |
| pysec-2019-172 |
|
In Apache Incubator Superset before 0.31 user could query database metadata information f… | apache-superset | 2019-12-16T22:15:00Z | 2020-08-24T17:37:00Z |
| pysec-2019-173 |
|
In Apache Incubator Superset before 0.32, a user can view database names that he has no a… | apache-superset | 2019-12-16T22:15:00Z | 2019-12-19T18:24:00Z |
| pysec-2019-254 |
6.5 (3.1)
|
In Tautulli 2.1.9, CSRF in the /shutdown URI allows an attacker to shut down the remote m… | tautulli | 2019-12-18T18:15:00Z | 2025-01-12T05:34:20.505254Z |
| pysec-2019-16 |
|
Django before 1.11.27, 2.x before 2.2.9, and 3.x before 3.0.1 allows account takeover. A … | django | 2019-12-18T19:15:00Z | 2020-01-08T04:15:00Z |
| pysec-2019-136 |
|
Waitress through version 1.3.1 implemented a "MAY" part of the RFC7230 which states: "Alt… | waitress | 2019-12-20T23:15:00Z | 2020-02-25T17:15:00Z |
| pysec-2019-137 |
|
Waitress through version 1.3.1 would parse the Transfer-Encoding header and only look for… | waitress | 2019-12-20T23:15:00Z | 2020-02-25T17:15:00Z |
| pysec-2019-138 |
|
In Waitress through version 1.4.0, if a proxy server is used in front of waitress, an inv… | waitress | 2019-12-26T17:15:00Z | 2020-02-25T17:15:00Z |
| pysec-2019-112 |
|
In Archery before 1.3, inserting an XSS payload into a project name (either by creating a… | pyarchery | 2019-12-26T23:15:00Z | 2020-01-02T14:27:00Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2022-2019 | Malicious code in colors-sync (npm) | 2022-06-20T20:08:42Z | 2022-06-20T20:08:42Z |
| mal-2022-2516 | Malicious code in discord.js-selfv14 (npm) | 2022-06-20T20:08:42Z | 2022-06-20T20:08:43Z |
| mal-2022-6271 | Malicious code in sq-jsith-test-npm-project (npm) | 2022-06-20T20:08:42Z | 2022-06-20T20:08:43Z |
| mal-2022-3299 | Malicious code in gcs-malware-scanner (npm) | 2022-06-20T20:08:43Z | 2022-06-20T20:08:44Z |
| mal-2022-3357 | Malicious code in getting-started-rpi (npm) | 2022-06-20T20:08:43Z | 2022-06-20T20:08:44Z |
| mal-2022-342 | Malicious code in @ibm-pipeline/logging (npm) | 2022-06-20T20:08:43Z | 2022-06-20T20:08:43Z |
| mal-2022-712 | Malicious code in @w3-commons/js-build-resources (npm) | 2022-06-20T20:08:43Z | 2022-06-20T20:08:43Z |
| mal-2022-2596 | Malicious code in drwffjbwkwxsvyo (npm) | 2022-06-20T20:08:44Z | 2022-06-20T20:08:45Z |
| mal-2022-3860 | Malicious code in intentionally-malicious (npm) | 2022-06-20T20:08:44Z | 2022-06-20T20:08:45Z |
| mal-2022-3861 | Malicious code in intentionally-malicious1 (npm) | 2022-06-20T20:08:44Z | 2022-06-20T20:08:45Z |
| mal-2022-6617 | Malicious code in touchright (npm) | 2022-06-20T20:08:44Z | 2022-06-20T20:08:45Z |
| mal-2022-1032 | Malicious code in aoxqgmortgkgldq (npm) | 2022-06-20T20:08:45Z | 2022-06-20T20:08:53Z |
| mal-2022-3021 | Malicious code in ffwebsite (npm) | 2022-06-20T20:08:45Z | 2022-06-20T20:08:45Z |
| mal-2022-6194 | Malicious code in snyk-azure-pipelines-task (npm) | 2022-06-20T20:08:45Z | 2022-06-20T20:08:45Z |
| mal-2022-6195 | Malicious code in snyk-resolve-dep (npm) | 2022-06-20T20:08:45Z | 2022-06-20T20:08:46Z |
| mal-2022-2005 | Malicious code in colors-1.0 (npm) | 2022-06-20T20:08:46Z | 2022-06-20T20:08:47Z |
| mal-2022-2337 | Malicious code in data-api.js-core (npm) | 2022-06-20T20:08:46Z | 2022-06-20T20:08:47Z |
| mal-2022-5346 | Malicious code in piwik-pro-angular-tracking (npm) | 2022-06-20T20:08:46Z | 2022-06-20T20:08:46Z |
| mal-2022-6358 | Malicious code in supplysec-alert (npm) | 2022-06-20T20:08:46Z | 2022-06-20T20:08:47Z |
| mal-2022-1058 | Malicious code in apollo-workarounds (npm) | 2022-06-20T20:08:47Z | 2022-06-20T20:08:48Z |
| mal-2022-5401 | Malicious code in polaris-next (npm) | 2022-06-20T20:08:47Z | 2022-06-20T20:08:47Z |
| mal-2022-5708 | Malicious code in realtime-react-ui (npm) | 2022-06-20T20:08:47Z | 2022-06-20T20:08:48Z |
| mal-2022-6235 | Malicious code in spiferack (npm) | 2022-06-20T20:08:47Z | 2022-06-20T20:08:47Z |
| mal-2022-5073 | Malicious code in onboarding-setup-guide (npm) | 2022-06-20T20:08:48Z | 2022-06-20T20:08:49Z |
| mal-2022-5654 | Malicious code in react-monorail-next (npm) | 2022-06-20T20:08:48Z | 2022-06-20T20:08:49Z |
| mal-2022-5707 | Malicious code in realtime-react (npm) | 2022-06-20T20:08:48Z | 2022-06-20T20:08:49Z |
| mal-2022-6754 | Malicious code in ui-extensions-server-kit (npm) | 2022-06-20T20:08:48Z | 2022-06-20T20:08:49Z |
| mal-2022-1928 | Malicious code in clientlib-manifests (npm) | 2022-06-20T20:08:49Z | 2022-06-20T20:08:49Z |
| mal-2022-881 | Malicious code in af-mason (npm) | 2022-06-20T20:08:49Z | 2022-06-20T20:08:50Z |
| mal-2022-882 | Malicious code in af-test (npm) | 2022-06-20T20:08:49Z | 2022-06-20T20:08:50Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2022-1994 | Google Android Patchday Januar | 2021-01-04T23:00:00.000+00:00 | 2024-05-30T22:00:00.000+00:00 |
| wid-sec-w-2025-0234 | Dovecot: Mehrere Schwachstellen | 2021-01-04T23:00:00.000+00:00 | 2025-02-02T23:00:00.000+00:00 |
| wid-sec-w-2022-2114 | PHP: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2021-01-06T23:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2023-2534 | Nvidia Treiber: Mehrere Schwachstellen | 2021-01-07T23:00:00.000+00:00 | 2023-10-03T22:00:00.000+00:00 |
| wid-sec-w-2024-1809 | GitLab: Mehrere Schwachstellen | 2021-01-07T23:00:00.000+00:00 | 2024-08-11T22:00:00.000+00:00 |
| wid-sec-w-2022-1349 | Ansible: Schwachstelle ermöglicht Offenlegung von Informationen | 2021-01-11T23:00:00.000+00:00 | 2025-11-23T23:00:00.000+00:00 |
| wid-sec-w-2022-2259 | QEMU: Mehrere Schwachstellen ermöglichen Denial of Service | 2021-01-11T23:00:00.000+00:00 | 2024-08-08T22:00:00.000+00:00 |
| wid-sec-w-2023-2730 | Red Hat Ceph Storage: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen | 2021-01-12T23:00:00.000+00:00 | 2023-10-23T22:00:00.000+00:00 |
| wid-sec-w-2023-0339 | Snort: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen | 2021-01-13T23:00:00.000+00:00 | 2023-02-19T23:00:00.000+00:00 |
| wid-sec-w-2023-1599 | IBM Security Guardium: Mehrere Schwachstellen | 2021-01-13T23:00:00.000+00:00 | 2023-06-29T22:00:00.000+00:00 |
| wid-sec-w-2024-1971 | QEMU: Schwachstelle ermöglicht Offenlegung von Informationen | 2021-01-13T23:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2023-2465 | Apache Tomcat: Schwachstelle ermöglicht Offenlegung von Informationen | 2021-01-14T23:00:00.000+00:00 | 2025-04-01T22:00:00.000+00:00 |
| wid-sec-w-2022-1350 | Ansible: Schwachstelle ermöglicht Offenlegung von Informationen | 2021-01-17T23:00:00.000+00:00 | 2025-11-23T23:00:00.000+00:00 |
| wid-sec-w-2022-0495 | Python: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Benutzerrechten | 2021-01-18T23:00:00.000+00:00 | 2025-11-09T23:00:00.000+00:00 |
| wid-sec-w-2022-1275 | QEMU: Schwachstelle ermöglicht Denial of Service | 2021-01-18T23:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2023-0630 | GNU tar: Schwachstelle ermöglicht Offenlegung von Informationen | 2021-01-18T23:00:00.000+00:00 | 2023-08-13T22:00:00.000+00:00 |
| wid-sec-w-2023-2836 | dnsmasq: Mehrere Schwachstellen | 2021-01-18T23:00:00.000+00:00 | 2023-11-06T23:00:00.000+00:00 |
| wid-sec-w-2022-2240 | mutt: Schwachstelle ermöglicht Denial of Service | 2021-01-19T23:00:00.000+00:00 | 2022-12-06T23:00:00.000+00:00 |
| wid-sec-w-2023-0067 | Oracle MySQL: Mehrere Schwachstellen | 2021-01-19T23:00:00.000+00:00 | 2023-01-11T23:00:00.000+00:00 |
| wid-sec-w-2022-0496 | Red Hat OpenShift: Mehrere Schwachstellen | 2021-01-20T23:00:00.000+00:00 | 2023-05-30T22:00:00.000+00:00 |
| wid-sec-w-2023-1273 | Red Hat JBoss Enterprise Application Platform: Mehrere Schwachstellen | 2021-01-25T23:00:00.000+00:00 | 2025-07-10T22:00:00.000+00:00 |
| wid-sec-w-2023-0066 | sudo: Schwachstelle ermöglicht Privilegieneskalation | 2021-01-26T23:00:00.000+00:00 | 2025-10-01T22:00:00.000+00:00 |
| wid-sec-w-2023-1127 | OpenLDAP: Mehrere Schwachstellen ermöglichen Denial of Service | 2021-01-26T23:00:00.000+00:00 | 2025-08-24T22:00:00.000+00:00 |
| wid-sec-w-2022-1170 | GNU libc: Schwachstelle ermöglicht Denial of Service | 2021-01-27T23:00:00.000+00:00 | 2024-12-11T23:00:00.000+00:00 |
| wid-sec-w-2022-1276 | QEMU: Schwachstelle ermöglicht Denial of Service | 2021-01-27T23:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2023-1047 | JasPer: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2021-01-27T23:00:00.000+00:00 | 2023-04-20T22:00:00.000+00:00 |
| wid-sec-w-2023-2969 | Apache ActiveMQ: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen | 2021-01-27T23:00:00.000+00:00 | 2024-07-23T22:00:00.000+00:00 |
| wid-sec-w-2023-1823 | IBM MQ: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2021-01-28T23:00:00.000+00:00 | 2023-07-19T22:00:00.000+00:00 |
| wid-sec-w-2022-1749 | QEMU: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2021-01-31T23:00:00.000+00:00 | 2023-03-16T23:00:00.000+00:00 |
| wid-sec-w-2023-0360 | Google Android: Mehrere Schwachstellen | 2021-02-01T23:00:00.000+00:00 | 2023-05-10T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2006:0272 | Red Hat Security Advisory: openmotif security update | 2006-04-04T09:04:00+00:00 | 2025-11-21T17:30:07+00:00 |
| rhsa-2006:0328 | Red Hat Security Advisory: firefox security update | 2006-04-14T15:54:00+00:00 | 2026-01-08T09:19:21+00:00 |
| rhsa-2006:0329 | Red Hat Security Advisory: mozilla security update | 2006-04-18T11:12:00+00:00 | 2026-01-08T09:19:21+00:00 |
| rhsa-2006:0330 | Red Hat Security Advisory: thunderbird security update | 2006-04-21T15:41:00+00:00 | 2026-01-08T09:19:21+00:00 |
| rhsa-2006:0276 | Red Hat Security Advisory: php security update | 2006-04-25T14:33:00+00:00 | 2026-01-08T09:19:18+00:00 |
| rhsa-2006:0267 | Red Hat Security Advisory: ipsec-tools security update | 2006-04-25T14:45:00+00:00 | 2025-11-21T17:30:06+00:00 |
| rhsa-2006:0281 | Red Hat Security Advisory: struts security update for Red Hat Application Server | 2006-05-03T15:48:00+00:00 | 2026-01-08T09:19:21+00:00 |
| rhsa-2006:0280 | Red Hat Security Advisory: dia security update | 2006-05-03T16:01:00+00:00 | 2026-01-08T09:19:19+00:00 |
| rhsa-2006:0283 | Red Hat Security Advisory: squirrelmail security update | 2006-05-03T16:09:00+00:00 | 2025-11-21T17:30:09+00:00 |
| rhsa-2006:0420 | Red Hat Security Advisory: ethereal security update | 2006-05-03T16:19:00+00:00 | 2026-01-08T09:19:24+00:00 |
| rhsa-2006:0451 | Red Hat Security Advisory: xorg-x11 security update | 2006-05-04T11:49:00+00:00 | 2026-01-08T09:19:25+00:00 |
| rhsa-2006:0427 | Red Hat Security Advisory: ruby security update | 2006-05-09T11:32:00+00:00 | 2026-01-08T09:19:24+00:00 |
| rhsa-2006:0425 | Red Hat Security Advisory: libtiff security update | 2006-05-09T11:39:00+00:00 | 2025-11-21T17:30:12+00:00 |
| rhsa-2006:0270 | Red Hat Security Advisory: Red Hat Directory Server 7.1 security update | 2006-05-17T17:05:00+00:00 | 2025-11-21T17:30:06+00:00 |
| rhsa-2006:0526 | Red Hat Security Advisory: postgresql security update | 2006-05-23T19:31:00+00:00 | 2025-11-21T17:30:17+00:00 |
| rhsa-2006:0501 | Red Hat Security Advisory: php security update | 2006-05-23T20:09:00+00:00 | 2026-01-08T09:19:27+00:00 |
| rhsa-2006:0498 | Red Hat Security Advisory: xscreensaver security update | 2006-05-23T20:38:00+00:00 | 2026-01-08T09:19:26+00:00 |
| rhsa-2006:0493 | Red Hat Security Advisory: kernel security update | 2006-05-24T09:31:00+00:00 | 2026-01-08T09:19:29+00:00 |
| rhsa-2006:0541 | Red Hat Security Advisory: dia security update | 2006-06-01T17:19:00+00:00 | 2025-11-21T17:30:18+00:00 |
| rhsa-2006:0533 | Red Hat Security Advisory: zebra security update | 2006-06-01T17:39:00+00:00 | 2025-11-21T17:30:17+00:00 |
| rhsa-2006:0525 | Red Hat Security Advisory: quagga security update | 2006-06-01T17:46:00+00:00 | 2025-11-21T17:30:17+00:00 |
| rhsa-2006:0543 | Red Hat Security Advisory: spamassassin security update | 2006-06-06T17:08:00+00:00 | 2025-11-21T17:30:18+00:00 |
| rhsa-2006:0486 | Red Hat Security Advisory: mailman security update | 2006-06-09T14:27:00+00:00 | 2025-11-21T17:30:14+00:00 |
| rhsa-2006:0544 | Red Hat Security Advisory: mysql security update | 2006-06-09T15:00:00+00:00 | 2026-01-08T09:19:29+00:00 |
| rhsa-2006:0515 | Red Hat Security Advisory: sendmail security update | 2006-06-14T18:21:00+00:00 | 2026-01-08T09:19:29+00:00 |
| rhsa-2006:0548 | Red Hat Security Advisory: kdebase security update | 2006-06-14T19:04:00+00:00 | 2025-11-21T17:30:20+00:00 |
| rhsa-2006:0573 | Red Hat Security Advisory: openoffice.org security update | 2006-07-03T16:10:00+00:00 | 2026-01-08T02:51:30+00:00 |
| rhsa-2006:0547 | Red Hat Security Advisory: squirrelmail security update | 2006-07-03T16:15:00+00:00 | 2025-11-21T17:30:21+00:00 |
| rhsa-2006:0574 | Red Hat Security Advisory: kernel security update | 2006-07-07T13:47:00+00:00 | 2025-11-21T17:30:23+00:00 |
| rhsa-2006:0568 | Red Hat Security Advisory: php security update | 2006-07-12T18:06:00+00:00 | 2026-01-08T09:19:30+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-18-137-03 | Siemens SIMATIC S7-400 CPU (Update A) | 2018-05-15T00:00:00.000000Z | 2020-02-10T00:00:00.000000Z |
| icsa-18-137-01 | GE PACSystems CPE305/310, CPE330, CPE400, RSTi-EP CPE 100, CPU320/CRU320, RXi | 2018-05-17T00:00:00.000000Z | 2018-05-17T00:00:00.000000Z |
| icsa-18-137-02 | PHOENIX CONTACT FL SWITCH 3xxx/4xxx/48xx Series | 2018-05-17T00:00:00.000000Z | 2018-05-17T00:00:00.000000Z |
| icsa-18-137-04 | Delta Electronics Delta Industrial Automation TPEditor (Update A) | 2018-05-17T00:00:00.000000Z | 2018-06-07T00:00:00.000000Z |
| icsma-18-137-01 | Medtronic N'Vision Clinician Programmer (Update A) | 2018-05-17T00:00:00.000000Z | 2018-07-12T00:00:00.000000Z |
| icsma-18-137-02 | Philips EncoreAnywhere | 2018-05-17T06:00:00.000000Z | 2018-05-17T06:00:00.000000Z |
| icsa-18-142-01 | Martem TELEM-GW6/GWM (Update B) | 2018-05-22T00:00:00.000000Z | 2018-08-30T00:00:00.000000Z |
| icsma-18-142-01 | BD Kiestra and InoquIA Systems (Update A) | 2018-05-22T00:00:00.000000Z | 2018-10-11T00:00:00.000000Z |
| icsa-18-144-01 | Schneider Electric Floating License Manager | 2018-05-24T00:00:00.000000Z | 2018-05-24T00:00:00.000000Z |
| icsma-18-144-01 | BeaconMedaes TotalAlert Scroll Medical Air Systems | 2018-05-24T00:00:00.000000Z | 2018-05-24T00:00:00.000000Z |
| icsa-18-151-01 | ICSA-18-151-01_Delta Industrial Automation DOPSoft | 2018-05-31T00:00:00.000000Z | 2018-05-31T00:00:00.000000Z |
| icsa-18-151-02 | GE MDS PulseNET and MDS PulseNET Enterprise | 2018-05-31T00:00:00.000000Z | 2018-05-31T00:00:00.000000Z |
| icsa-18-151-03 | Yokogawa STARDOM Controllers (Update A) | 2018-05-31T00:00:00.000000Z | 2018-10-11T00:00:00.000000Z |
| icsa-18-156-01 | ABB IP Gateway | 2018-06-05T00:00:00.000000Z | 2018-06-05T00:00:00.000000Z |
| icsma-18-156-01 | Philips' IntelliVue Patient and Avalon Fetal Monitors | 2018-06-05T00:00:00.000000Z | 2018-06-05T00:00:00.000000Z |
| icsa-18-158-01 | Rockwell Automation RSLinx Classic and FactoryTalk Linx Gateway | 2018-06-07T00:00:00.000000Z | 2018-06-07T00:00:00.000000Z |
| icsa-18-163-01 | Schneider Electric U.motion Builder | 2018-06-12T00:00:00.000000Z | 2018-06-12T00:00:00.000000Z |
| icsa-18-163-02 | Siemens SCALANCE X Switches (Update A) | 2018-06-12T00:00:00.000000Z | 2022-12-13T00:00:00.000000Z |
| icsa-18-165-01 | Siemens SCALANCE X Switches, RUGGEDCOM WiMAX, RFID 181-EIP, and SIMATIC RF182C (Update D) | 2018-06-12T00:00:00.000000Z | 2020-12-08T00:00:00.000000Z |
| icsma-18-165-01 | Natus Xltek NeuroWorks | 2018-06-14T00:00:00.000000Z | 2018-06-14T00:00:00.000000Z |
| icsa-18-172-01 | Delta Electronics Delta Industrial Automation COMMGR | 2018-06-21T00:00:00.000000Z | 2018-06-21T00:00:00.000000Z |
| icsa-18-172-02 | Rockwell Automation Allen-Bradley CompactLogix and Compact GuardLogix (Update A) | 2018-06-21T00:00:00.000000Z | 2018-07-17T00:00:00.000000Z |
| icsa-18-317-01 | ICSA-18-317-01 Siemens IEC 61850 System Configurator, DIGSI 5, DIGSI 4, SICAM PAS/PQS, SICAM PQ Analyzer, and SICAM SCC | 2018-06-26T00:00:00.000000Z | 2018-11-13T00:00:00.000000Z |
| icsma-18-179-01 | Medtronic MyCareLink Patient Monitor | 2018-06-28T00:00:00.000000Z | 2018-06-28T00:00:00.000000Z |
| icsa-18-184-01 | Rockwell Automation Allen-Bradley Stratix 5950 | 2018-07-03T00:00:00.000000Z | 2018-07-03T00:00:00.000000Z |
| icsa-18-191-01 | Universal Robots Robot Controllers | 2018-07-10T00:00:00.000000Z | 2018-07-10T00:00:00.000000Z |
| icsa-18-191-02 | Schweitzer Engineering Laboratories, Inc. Compass and AcSELerator Architect | 2018-07-10T00:00:00.000000Z | 2018-07-10T00:00:00.000000Z |
| icsa-18-191-03 | Tridium Niagara | 2018-07-10T00:00:00.000000Z | 2018-08-16T00:00:00.000000Z |
| icsa-18-347-02 | ICSA-18-347-02 Siemens EN100 Ethernet Communication Module and SIPROTEC 5 Relays (Update A) | 2018-07-11T00:00:00.000000Z | 2019-02-12T00:00:00.000000Z |
| icsa-18-193-01 | Eaton 9000X Drive | 2018-07-12T00:00:00.000000Z | 2018-07-12T00:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-20190821-rphy | Cisco Remote PHY Device Software Command Injection Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| cisco-sa-20190821-ucs-cimc | Cisco Integrated Management Controller Command Injection Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| cisco-sa-20190821-ucs-imc-dos | Cisco Integrated Management Controller Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data Denial of Service Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| cisco-sa-20190821-ucsd-authbypass | Cisco UCS Director and Cisco UCS Director Express for Big Data API Authentication Bypass Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| cisco-sa-20190821-webex-ssl-cert | Cisco Webex Meetings Mobile (iOS) SSL Certificate Validation Vulnerability | 2019-08-21T16:00:00+00:00 | 2019-08-21T16:00:00+00:00 |
| cisco-sa-20190828-fxnxos-snmp-dos | Cisco FXOS and NX-OS Software Authenticated Simple Network Management Protocol Denial of Service Vulnerability | 2019-08-28T16:00:00+00:00 | 2019-10-08T14:45:55+00:00 |
| cisco-sa-20190828-iosxe-rest-auth-bypass | Cisco REST API Container for IOS XE Software Authentication Bypass Vulnerability | 2019-08-28T16:00:00+00:00 | 2019-10-18T16:08:02+00:00 |
| cisco-sa-20190828-nexus-aci-dos | Cisco Nexus 9000 Series Fabric Switches ACI Mode Border Leaf Endpoint Learning Vulnerability | 2019-08-28T16:00:00+00:00 | 2019-08-28T16:00:00+00:00 |
| cisco-sa-20190828-nxos-api-dos | Cisco NX-OS Software NX-API Denial of Service Vulnerability | 2019-08-28T16:00:00+00:00 | 2019-08-28T16:00:00+00:00 |
| cisco-sa-20190828-nxos-fsip-dos | Cisco NX-OS Software Cisco Fabric Services over IP Denial of Service Vulnerability | 2019-08-28T16:00:00+00:00 | 2019-10-08T14:45:56+00:00 |
| cisco-sa-20190828-nxos-ipv6-dos | Cisco NX-OS Software IPv6 Denial of Service Vulnerability | 2019-08-28T16:00:00+00:00 | 2019-08-28T16:00:00+00:00 |
| cisco-sa-20190828-nxos-memleak-dos | Cisco NX-OS Software Remote Management Memory Leak Denial of Service Vulnerability | 2019-08-28T16:00:00+00:00 | 2019-10-08T14:45:53+00:00 |
| cisco-sa-20190828-nxos-ntp-dos | Cisco NX-OS Software Network Time Protocol Denial of Service Vulnerability | 2019-08-28T16:00:00+00:00 | 2019-10-08T14:45:52+00:00 |
| cisco-sa-20190828-nxos-snmp-bypass | Cisco NX-OS Software SNMP Access Control List Configuration Name Bypass Vulnerability | 2019-08-28T16:00:00+00:00 | 2019-08-28T16:00:00+00:00 |
| cisco-sa-20190828-ucs-privescalation | Cisco Unified Computing System Fabric Interconnect root Privilege Escalation Vulnerability | 2019-08-28T16:00:00+00:00 | 2019-10-08T14:45:54+00:00 |
| cisco-sa-20190904-finesse-ssrf | Cisco Finesse Request Processing Server-Side Request Forgery Vulnerability | 2019-09-04T16:00:00+00:00 | 2019-09-04T16:00:00+00:00 |
| cisco-sa-20190904-ind | Cisco Industrial Network Director Configuration Data Information Disclosure Vulnerability | 2019-09-04T16:00:00+00:00 | 2019-09-04T16:00:00+00:00 |
| cisco-sa-20190904-ise-xss | Cisco Identity Services Engine Cross-Site Scripting Vulnerability | 2019-09-04T16:00:00+00:00 | 2020-07-16T17:26:05+00:00 |
| cisco-sa-20190904-jcf-codex | Cisco Jabber Client Framework for Mac Code Execution Vulnerability | 2019-09-04T16:00:00+00:00 | 2019-09-04T16:00:00+00:00 |
| cisco-sa-20190904-sma-info-dis | Cisco Content Security Management Appliance and Cisco Email Security Appliance Information Disclosure Vulnerability | 2019-09-04T16:00:00+00:00 | 2020-09-21T18:29:00+00:00 |
| cisco-sa-20190904-unified-ccx-ssrf | Cisco Unified Contact Center Express Request Processing Server-Side Request Forgery Vulnerability | 2019-09-04T16:00:00+00:00 | 2019-09-04T16:00:00+00:00 |
| cisco-sa-20190904-webex-teams | Cisco Webex Teams Logging Feature Command Execution Vulnerability | 2019-09-04T16:00:00+00:00 | 2019-09-04T16:00:00+00:00 |
| cisco-sa-20190918-hyperflex-valinj | Cisco HyperFlex Software Counter Value Injection Vulnerability | 2019-09-18T16:00:00+00:00 | 2019-09-18T16:00:00+00:00 |
| cisco-sa-20190918-hyperflex-xfs | Cisco HyperFlex Software Cross-Frame Scripting Vulnerability | 2019-09-18T16:00:00+00:00 | 2019-09-18T16:00:00+00:00 |
| cisco-sa-20190925-awr | Cisco IOS XE Software ASIC Register Write Vulnerability | 2019-09-25T16:00:00+00:00 | 2019-09-25T16:00:00+00:00 |
| cisco-sa-20190925-cat4000-tcp-dos | Cisco Catalyst 4000 Series Switches TCP Denial of Service Vulnerability | 2019-09-25T16:00:00+00:00 | 2019-09-25T16:00:00+00:00 |
| cisco-sa-20190925-ctspac-dos | Cisco IOS XE Software TrustSec Protected Access Credential Provisioning Denial of Service Vulnerability | 2019-09-25T16:00:00+00:00 | 2019-09-25T16:00:00+00:00 |
| cisco-sa-20190925-dt | Cisco IOS XE Software Path Traversal Vulnerability | 2019-09-25T16:00:00+00:00 | 2019-09-25T16:00:00+00:00 |
| cisco-sa-20190925-ftp | Cisco IOS XE Software FTP Application Layer Gateway for NAT, NAT64, and ZBFW Denial of Service Vulnerability | 2019-09-25T16:00:00+00:00 | 2019-11-20T15:15:59+00:00 |
| cisco-sa-20190925-http-client | Cisco IOS and IOS XE Software HTTP Client Information Disclosure Vulnerability | 2019-09-25T16:00:00+00:00 | 2019-09-25T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2020-29511 | The encoding/xml package in Go (all versions) does not correctly preserve the semantics of element namespace prefixes during tokenization round-trips which allows an attacker to craft inputs that behave in conflicting ways during different stages of processing in affected downstream applications. | 2020-12-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-29534 | An issue was discovered in the Linux kernel before 5.9.3. io_uring takes a non-refcounted reference to the files_struct of the process that submitted a request causing execve() to incorrectly optimize unshare_fd() aka CID-0f2122045b94. | 2020-12-02T00:00:00.000Z | 2020-12-08T00:00:00.000Z |
| msrc_cve-2020-29569 | An issue was discovered in the Linux kernel through 5.10.1 as used with Xen through 4.14.x. The Linux kernel PV block backend expects the kernel thread handler to reset ring->xenblkd to NULL when stopped. However the handler may not have time to run if the frontend quickly toggles between the states connect and disconnect. As a consequence the block backend may re-use a pointer after it was freed. A misbehaving guest can trigger a dom0 crash by continuously connecting / disconnecting a block frontend. Privilege escalation and information leaks cannot be ruled out. This only affects systems with a Linux blkback. | 2020-12-02T00:00:00.000Z | 2020-12-19T00:00:00.000Z |
| msrc_cve-2020-29651 | A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality. | 2020-12-02T00:00:00.000Z | 2020-12-21T00:00:00.000Z |
| msrc_cve-2020-29660 | A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_io.c and drivers/tty/tty_jobctrl.c may allow a read-after-free attack against TIOCGSID aka CID-c8bcd9c5be24. | 2020-12-02T00:00:00.000Z | 2020-12-11T00:00:00.000Z |
| msrc_cve-2020-29661 | A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_jobctrl.c allows a use-after-free attack against TIOCSPGRP aka CID-54ffccbf053b. | 2020-12-02T00:00:00.000Z | 2020-12-11T00:00:00.000Z |
| msrc_cve-2020-35457 | GNOME GLib before 2.65.3 has an integer overflow that might lead to an out-of-bounds write in g_option_group_add_entries. NOTE: the vendor's position is "Realistically this is not a security issue. The standard pattern is for callers to provide a static list of option entries in a fixed number of calls to g_option_group_add_entries()." The researcher states that this pattern is undocumented | 2020-12-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-8169 | curl 7.62.0 through 7.70.0 is vulnerable to an information disclosure vulnerability that can lead to a partial password being leaked over the network and to the DNS server(s). | 2020-12-02T00:00:00.000Z | 2020-12-15T00:00:00.000Z |
| msrc_cve-2020-8177 | curl 7.20.0 through 7.70.0 is vulnerable to improper restriction of names for files and other resources that can lead too overwriting a local file when the -J flag is used. | 2020-12-02T00:00:00.000Z | 2020-12-15T00:00:00.000Z |
| msrc_cve-2020-8231 | Due to use of a dangling pointer libcurl 7.29.0 through 7.71.1 can use the wrong connection when sending data. | 2020-12-02T00:00:00.000Z | 2020-12-17T00:00:00.000Z |
| msrc_cve-2020-8284 | A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port and this way potentially make curl extract information about services that are otherwise private and not disclosed for example doing port scanning and service banner extractions. | 2020-12-02T00:00:00.000Z | 2020-12-16T00:00:00.000Z |
| msrc_cve-2020-8285 | curl 7.21.0 to and including 7.73.0 is vulnerable to uncontrolled recursion due to a stack overflow issue in FTP wildcard match parsing. | 2020-12-02T00:00:00.000Z | 2020-12-15T00:00:00.000Z |
| msrc_cve-2020-8286 | curl 7.41.0 through 7.73.0 is vulnerable to an improper check for certificate revocation due to insufficient verification of the OCSP response. | 2020-12-02T00:00:00.000Z | 2020-12-15T00:00:00.000Z |
| msrc_cve-2020-8563 | Secret leaks in logs for vSphere Provider kube-controller-manager | 2020-12-02T00:00:00.000Z | 2020-12-09T00:00:00.000Z |
| msrc_cve-2020-8565 | Incomplete fix for CVE-2019-11250 allows for token leak in logs when logLevel >= 9 | 2020-12-02T00:00:00.000Z | 2025-03-27T00:00:00.000Z |
| msrc_cve-2020-8908 | Temp directory permission issue in Guava | 2020-12-02T00:00:00.000Z | 2023-04-07T00:00:00.000Z |
| msrc_cve-2020-17153 | Microsoft Edge for Android Spoofing Vulnerability | 2020-12-08T08:00:00.000Z | 2020-12-08T08:00:00.000Z |
| msrc_cve-2019-25013 | The iconv feature in the GNU C Library (aka glibc or libc6) through 2.32 when processing invalid multi-byte input sequences in the EUC-KR encoding may have a buffer over-read. | 2021-01-02T00:00:00.000Z | 2021-01-07T00:00:00.000Z |
| msrc_cve-2020-17380 | A heap-based buffer overflow was found in QEMU through 5.0.0 in the SDHCI device emulation support. It could occur while doing a multi block SDMA transfer via the sdhci_sdma_transfer_multi_blocks() routine in hw/sd/sdhci.c. A guest user or process could use this flaw to crash the QEMU process on the host resulting in a denial of service condition or potentially execute arbitrary code with privileges of the QEMU process on the host. | 2021-01-02T00:00:00.000Z | 2021-02-06T00:00:00.000Z |
| msrc_cve-2020-24025 | Certificate validation in node-sass 2.0.0 to 4.14.1 is disabled when requesting binaries even if the user is not specifying an alternative download path. | 2021-01-02T00:00:00.000Z | 2023-07-31T00:00:00.000Z |
| msrc_cve-2020-25657 | A flaw was found in all released versions of m2crypto where they are vulnerable to Bleichenbacher timing attacks in the RSA decryption API via the timed processing of valid PKCS#1 v1.5 Ciphertext. The highest threat from this vulnerability is to confidentiality. | 2021-01-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2020-25659 | python-cryptography 3.2 is vulnerable to Bleichenbacher timing attacks in the RSA decryption API via timed processing of valid PKCS#1 v1.5 ciphertext. | 2021-01-02T00:00:00.000Z | 2021-01-20T00:00:00.000Z |
| msrc_cve-2020-25681 | A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in the way RRSets are sorted before validating with DNSSEC data. An attacker on the network who can forge DNS replies such as that they are accepted as valid could use this flaw to cause a buffer overflow with arbitrary data in a heap memory segment possibly executing code on the machine. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | 2021-01-02T00:00:00.000Z | 2021-01-29T00:00:00.000Z |
| msrc_cve-2020-25682 | A flaw was found in dnsmasq before 2.83. A buffer overflow vulnerability was discovered in the way dnsmasq extract names from DNS packets before validating them with DNSSEC data. An attacker on the network who can create valid DNS replies could use this flaw to cause an overflow with arbitrary data in a heap-allocated memory possibly executing code on the machine. The flaw is in the rfc1035.c:extract_name() function which writes data to the memory pointed by name assuming MAXDNAME*2 bytes are available in the buffer. However in some code execution paths it is possible extract_name() gets passed an offset from the base buffer thus reducing in practice the number of available bytes that can be written in the buffer. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | 2021-01-02T00:00:00.000Z | 2021-01-29T00:00:00.000Z |
| msrc_cve-2020-25683 | A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in dnsmasq when DNSSEC is enabled and before it validates the received DNS entries. A remote attacker who can create valid DNS replies could use this flaw to cause an overflow in a heap-allocated memory. This flaw is caused by the lack of length checks in rfc1035.c:extract_name() which could be abused to make the code execute memcpy() with a negative size in get_rdata() and cause a crash in dnsmasq resulting in a denial of service. The highest threat from this vulnerability is to system availability. | 2021-01-02T00:00:00.000Z | 2021-01-27T00:00:00.000Z |
| msrc_cve-2020-25684 | A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query dnsmasq checks in the forward.c:reply_query() if the reply destination address/port is used by the pending forwarded queries. However it does not use the address/port to retrieve the exact forwarded query substantially reducing the number of attempts an attacker on the network would have to perform to forge a reply and get it accepted by dnsmasq. This issue contrasts with RFC5452 which specifies a query's attributes that all must be used to match a reply. This flaw allows an attacker to perform a DNS Cache Poisoning attack. If chained with CVE-2020-25685 or CVE-2020-25686 the attack complexity of a successful attack is reduced. The highest threat from this vulnerability is to data integrity. | 2021-01-02T00:00:00.000Z | 2021-01-29T00:00:00.000Z |
| msrc_cve-2020-25685 | A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query dnsmasq checks in forward.c:reply_query() which is the forwarded query that matches the reply by only using a weak hash of the query name. Due to the weak hash (CRC32 when dnsmasq is compiled without DNSSEC SHA-1 when it is) this flaw allows an off-path attacker to find several different domains all having the same hash substantially reducing the number of attempts they would have to perform to forge a reply and get it accepted by dnsmasq. This is in contrast with RFC5452 which specifies that the query name is one of the attributes of a query that must be used to match a reply. This flaw could be abused to perform a DNS Cache Poisoning attack. If chained with CVE-2020-25684 the attack complexity of a successful attack is reduced. The highest threat from this vulnerability is to data integrity. | 2021-01-02T00:00:00.000Z | 2021-01-29T00:00:00.000Z |
| msrc_cve-2020-25686 | A flaw was found in dnsmasq before version 2.83. When receiving a query dnsmasq does not check for an existing pending request for the same name and forwards a new request. By default a maximum of 150 pending queries can be sent to upstream servers so there can be at most 150 queries for the same name. This flaw allows an off-path attacker on the network to substantially reduce the number of attempts that it would have to perform to forge a reply and have it accepted by dnsmasq. This issue is mentioned in the "Birthday Attacks" section of RFC5452. If chained with CVE-2020-25684 the attack complexity of a successful attack is reduced. The highest threat from this vulnerability is to data integrity. | 2021-01-02T00:00:00.000Z | 2021-01-27T00:00:00.000Z |
| msrc_cve-2020-25687 | A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in dnsmasq when DNSSEC is enabled and before it validates the received DNS entries. This flaw allows a remote attacker who can create valid DNS replies to cause an overflow in a heap-allocated memory. This flaw is caused by the lack of length checks in rfc1035.c:extract_name() which could be abused to make the code execute memcpy() with a negative size in sort_rrset() and cause a crash in dnsmasq resulting in a denial of service. The highest threat from this vulnerability is to system availability. | 2021-01-02T00:00:00.000Z | 2021-01-27T00:00:00.000Z |
| msrc_cve-2020-27814 | A heap-buffer overflow was found in the way openjpeg2 handled certain PNG format files. An attacker could use this flaw to cause an application crash or in some cases execute arbitrary code with the permission of the user running such an application. | 2021-01-02T00:00:00.000Z | 2024-07-23T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201612-0647 | HollySys, founded in 1993, is a provider of automation and information technology solutio… | 2022-05-04T09:17:46.515000Z |
| var-201609-0696 | ASUSRT-N10EWirelessRouter is a wireless router device developed by ASUS. A cross-site scr… | 2022-05-04T09:17:47.868000Z |
| var-201601-0675 | The user's password is generated using a simpler algorithm , The attacker can obtain the … | 2022-05-04T09:17:57.487000Z |
| var-201507-0712 | Tableau Server is enterprise intelligence software that provides browser-based analysis t… | 2022-05-04T09:18:03.671000Z |
| var-201408-0478 | Hikvision video network monitoring system iVMS-8100 is a set of video network monitoring … | 2022-05-04T09:18:13.880000Z |
| var-201406-0507 | XML link function of Hitachi COBOL2002 contains vulnerabilities to conduct information le… | 2022-05-04T09:18:15.251000Z |
| var-201401-0739 | The Appotech AX211 / AX215 is a microcontroller device. The Appotech AX211 / AX215 8-bit … | 2022-05-04T09:18:21.619000Z |
| var-201312-0603 | Alvarion BreezeACCESS VL is a wireless bridge device that is a flexible, proven point-to-… | 2022-05-04T09:18:22.392000Z |
| var-201310-0804 | The Netgear WNDR3700 is a router device. The Netgear WNDR3700 Router sprintf() function h… | 2022-05-04T09:18:26.601000Z |
| var-201211-0603 | NETGEAR NTV300 (NeoTV) is a set-top box device. NETGEAR NTV300 (NeoTV) has defects. The s… | 2022-05-04T09:19:01.223000Z |
| var-201009-0313 | YOPS (Your Own Personal [WEB] Server) is a Linux platform HTTP server written in C. The h… | 2022-05-04T09:19:21.549000Z |
| var-201003-0532 | Computer systems running the JP1/Cm2/Network Node Manager (NNM) Remote Console for Window… | 2022-05-04T09:19:25.598000Z |
| var-201001-0329 | Apache HTTP Server is a popular web server. The Apache server's mod_proxy module has an i… | 2022-05-04T09:19:26.600000Z |
| var-200909-0584 | Hitachi JP1/File Transmission Server/FTP contains multiple vulnerabilities that could all… | 2022-05-04T09:19:31.130000Z |
| var-200811-0453 | SpeedStream 5200 is an ADSL router for SMEs. The authentication process of the SpeedStr… | 2022-05-04T09:19:42.213000Z |
| var-200712-0453 | Provided by Hitachi JP1/Cm2/Network Node Manager (NNM) Contains a cross-site scripting vu… | 2022-05-04T09:19:57.162000Z |
| var-202112-1088 | TOTOLINK EX1200T is a wireless signal booster. TOTOLINK EX1200T has an information di… | 2022-05-04T09:21:11.424000Z |
| var-202111-1526 | IBM MQ Appliance 9.2 CD and 9.2 LTS could allow a local attacker to obtain sensitive info… | 2022-05-04T09:21:12.415000Z |
| var-202110-1912 | Huawei Technologies Co., Ltd. is the world's leading provider of information and communic… | 2022-05-04T09:21:13.900000Z |
| var-202108-2579 | NBR6210-E is an enterprise router launched by Ruijie Networks Co., Ltd. Beijing Xingw… | 2022-05-04T09:21:16.341000Z |
| var-202108-2558 | The business scope of Wuxi Chengan Information Technology Co., Ltd. includes: research an… | 2022-05-04T09:21:16.355000Z |
| var-202108-2537 | Ricoh (China) Investment Co., Ltd. provides office image processing equipment (such as MF… | 2022-05-04T09:21:16.365000Z |
| var-202108-2516 | Hangzhou Hikvision Digital Technology Co., Ltd. is a video-centric IoT solution provider,… | 2022-05-04T09:21:16.376000Z |
| var-202108-2495 | Axis is an IT company that specializes in providing network video solutions. AXIS Q61… | 2022-05-04T09:21:16.387000Z |
| var-202108-2474 | Toshiba (China) Co., Ltd. is a company mainly engaged in Toshiba's four major business ar… | 2022-05-04T09:21:16.397000Z |
| var-202108-2453 | SL-M4020ND is a laser printer of Samsung (China) Investment Co., Ltd. Samsung (China)… | 2022-05-04T09:21:16.409000Z |
| var-202108-2432 | Samsung (China) Investment Co., Ltd. is the headquarters of Samsung Group in China. As of… | 2022-05-04T09:21:16.424000Z |
| var-202108-2411 | HP Color LaserJet Pro M252n is a laser printer under Hewlett-Packard (HP). The HP Col… | 2022-05-04T09:21:16.436000Z |
| var-202108-2390 | Fuji Xerox (China) Co., Ltd. was established on January 3, 1995. It is a wholly-owned hol… | 2022-05-04T09:21:16.447000Z |
| var-202108-2369 | MX-2314N is a printer of Sharp Trading (China) Co., Ltd. Sharp Trading (China) Co., L… | 2022-05-04T09:21:16.458000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2012-000111 | Boat Browser / Boat Browser Mini vulnerable in the WebView class | 2012-12-20T15:00+09:00 | 2012-12-20T15:00+09:00 |
| jvndb-2012-000112 | Opera Mini / Opera Mobile for Android vulnerable in the WebView class | 2012-12-20T15:04+09:00 | 2012-12-28T16:13+09:00 |
| jvndb-2012-000114 | Loctouch for Android vulnerable in handling of implicit intents | 2012-12-21T12:29+09:00 | 2012-12-21T12:29+09:00 |
| jvndb-2012-000115 | Loctouch for Android information management vulnerability | 2012-12-21T12:37+09:00 | 2012-12-21T12:37+09:00 |
| jvndb-2012-000113 | concrete5 vulnerable to cross-site scripting | 2012-12-21T12:41+09:00 | 2013-02-20T16:10+09:00 |
| jvndb-2012-005827 | Cross-site Scripting Vulnerability in Collaboration - Bulletin board in Multiple Hitachi Products | 2012-12-28T16:43+09:00 | 2012-12-28T16:43+09:00 |
| jvndb-2013-000001 | Documents Pro (formerly Files HD) vulnerable to cross-site scripting | 2013-01-18T13:36+09:00 | 2013-01-18T13:36+09:00 |
| jvndb-2013-000002 | Documents Pro (formerly Files HD) vulnerable to directory traversal | 2013-01-18T13:39+09:00 | 2013-01-18T13:39+09:00 |
| jvndb-2013-000003 | myu-s / PHP WeblogSystem by netmania vulnerable to cross-site scripting | 2013-01-22T15:22+09:00 | 2013-01-22T15:22+09:00 |
| jvndb-2013-000004 | WebSphere Application Server (WAS) vulnerable to cross-site scripting | 2013-01-25T12:32+09:00 | 2013-01-25T12:32+09:00 |
| jvndb-2013-000005 | Weathernews Touch for Android stores location information in the system log file | 2013-01-31T13:38+09:00 | 2013-01-31T13:38+09:00 |
| jvndb-2013-000006 | mora Downloader may insecurely load executable files | 2013-02-07T14:00+09:00 | 2013-02-07T14:00+09:00 |
| jvndb-2013-000008 | Cybozu Garoon vulnerable to cross-site scripting | 2013-02-08T13:53+09:00 | 2013-02-08T13:53+09:00 |
| jvndb-2013-000007 | Cybozu Garoon vulnerable to SQL injection | 2013-02-08T13:58+09:00 | 2013-02-08T13:58+09:00 |
| jvndb-2013-001321 | User Authentication Vulnerability in Operational Management Function of Cosminexus | 2013-02-12T14:24+09:00 | 2013-02-12T14:24+09:00 |
| jvndb-2013-001470 | Accela BizSearch Gateway Option for TeamWARE Spoofing Vulnerability | 2013-02-13T16:47+09:00 | 2013-02-13T16:47+09:00 |
| jvndb-2013-000009 | imgboard vulnerable to cross-site scripting | 2013-02-14T14:10+09:00 | 2013-02-14T14:10+09:00 |
| jvndb-2013-000010 | GREE for Android vulnerable to directory traversal | 2013-02-14T14:15+09:00 | 2013-02-14T14:15+09:00 |
| jvndb-2013-000011 | 3DM (3ware Disk Manager) vulnerable to directory traversal | 2013-02-15T14:29+09:00 | 2013-02-15T14:29+09:00 |
| jvndb-2013-000012 | NEC Universal RAID Utility fails to restrict access permissions | 2013-02-21T13:54+09:00 | 2013-03-01T11:34+09:00 |
| jvndb-2013-001605 | Multiple vulnerabilities in Hitachi Tuning Manager and JP1/Performance Management | 2013-02-22T20:09+09:00 | 2013-02-22T20:09+09:00 |
| jvndb-2013-000015 | Multiple JustSystems products vulnerable to arbitrary code execution | 2013-02-26T14:45+09:00 | 2013-02-26T14:45+09:00 |
| jvndb-2013-000013 | dopvCOMET* vulnerable to cross-site scripting | 2013-02-28T13:37+09:00 | 2013-02-28T13:37+09:00 |
| jvndb-2013-000014 | dopvSTAR* vulnerable to cross-site scripting | 2013-02-28T13:46+09:00 | 2013-02-28T13:46+09:00 |
| jvndb-2013-000016 | Kingsoft Writer vulnerable to buffer overflow | 2013-03-01T14:47+09:00 | 2013-03-01T14:47+09:00 |
| jvndb-2013-000017 | Multiple Cisco products vulnerable to denial-of-service (DoS) | 2013-03-07T14:13+09:00 | 2013-03-11T16:22+09:00 |
| jvndb-2013-000020 | VxWorks SSH server (IPSSH) denial-of-service (DoS) vulnerability | 2013-03-18T14:30+09:00 | 2013-06-25T18:01+09:00 |
| jvndb-2013-000019 | VxWorks SSH server (IPSSH) denial-of-service (DoS) vulnerability | 2013-03-18T14:32+09:00 | 2013-06-25T17:57+09:00 |
| jvndb-2013-000018 | VxWorks SSH server (IPSSH) denial-of-service (DoS) vulnerability | 2013-03-18T14:33+09:00 | 2013-06-25T17:54+09:00 |
| jvndb-2013-000021 | VxWorks SSH server (IPSSH) denial-of-service (DoS) vulnerability | 2013-03-18T14:38+09:00 | 2013-06-25T18:06+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2016:1299-1 | Security update for java-1_7_1-ibm | 2016-05-13T10:21:44Z | 2016-05-13T10:21:44Z |
| suse-su-2016:1300-1 | Security update for java-1_7_1-ibm | 2016-05-13T10:22:20Z | 2016-05-13T10:22:20Z |
| suse-su-2016:1301-1 | Security update for ImageMagick | 2016-05-13T14:27:21Z | 2016-05-13T14:27:21Z |
| suse-su-2016:1303-1 | Security update for java-1_6_0-ibm | 2016-05-13T15:09:19Z | 2016-05-13T15:09:19Z |
| suse-su-2016:1305-1 | Security update for flash-player | 2016-05-16T12:14:28Z | 2016-05-16T12:14:28Z |
| suse-su-2016:1311-1 | Security update for ntp | 2016-05-17T09:29:35Z | 2016-05-17T09:29:35Z |
| suse-su-2016:1310-1 | Security update for php53 | 2016-05-17T10:01:04Z | 2016-05-17T10:01:04Z |
| suse-su-2016:1318-1 | Security update for xen | 2016-05-17T12:09:35Z | 2016-05-17T12:09:35Z |
| suse-su-2016:1342-1 | Security update for MozillaFirefox | 2016-05-18T12:34:08Z | 2016-05-18T12:34:08Z |
| suse-su-2016:1345-1 | Security update for wireshark | 2016-05-18T12:35:30Z | 2016-05-18T12:35:30Z |
| suse-su-2016:1344-1 | Security update for wireshark | 2016-05-18T12:36:20Z | 2016-05-18T12:36:20Z |
| suse-su-2016:1343-1 | Security update for salt | 2016-05-18T12:36:47Z | 2016-05-18T12:36:47Z |
| suse-su-2016:1346-1 | Security update for systemd | 2016-05-18T13:20:10Z | 2016-05-18T13:20:10Z |
| suse-su-2016:1351-1 | Security update for systemd | 2016-05-18T13:21:09Z | 2016-05-18T13:21:09Z |
| suse-su-2016:1355-1 | Security update for python-Pillow | 2016-05-19T08:04:33Z | 2016-05-19T08:04:33Z |
| suse-su-2016:1367-1 | Security update for SUSE Manager Server 2.1 | 2016-05-19T20:37:06Z | 2016-05-19T20:37:06Z |
| suse-su-2016:1366-1 | Recommended udpate for SUSE Manager Client Tools | 2016-05-19T20:37:14Z | 2016-05-19T20:37:14Z |
| suse-su-2016:1374-1 | Security update for MozillaFirefox | 2016-05-20T13:33:44Z | 2016-05-20T13:33:44Z |
| suse-su-2016:1378-1 | Security update for java-1_7_0-ibm | 2016-05-20T21:06:13Z | 2016-05-20T21:06:13Z |
| suse-su-2016:1379-1 | Security update for java-1_6_0-ibm | 2016-05-20T21:06:58Z | 2016-05-20T21:06:58Z |
| suse-su-2016:1386-1 | Security update for openssh | 2016-05-23T15:04:45Z | 2016-05-23T15:04:45Z |
| suse-su-2016:1443-1 | Security update for mercurial | 2016-05-30T13:31:17Z | 2016-05-30T13:31:17Z |
| suse-su-2016:1442-1 | Security update for mercurial | 2016-05-30T13:31:38Z | 2016-05-30T13:31:38Z |
| suse-su-2016:1457-1 | Security update for cyrus-imapd | 2016-05-31T16:39:22Z | 2016-05-31T16:39:22Z |
| suse-su-2016:1458-1 | Security update for java-1_6_0-ibm | 2016-05-31T16:39:38Z | 2016-05-31T16:39:38Z |
| suse-su-2016:1459-1 | Security update for cyrus-imapd | 2016-06-01T07:00:34Z | 2016-06-01T07:00:34Z |
| suse-su-2016:1465-1 | Recommended update for NetworkManager-kde4 | 2016-06-01T09:43:57Z | 2016-06-01T09:43:57Z |
| suse-su-2016:1471-1 | Security update for ntp | 2016-06-01T12:36:52Z | 2016-06-01T12:36:52Z |
| suse-su-2016:1475-1 | Security update for java-1_8_0-ibm | 2016-06-02T06:01:53Z | 2016-06-02T06:01:53Z |
| suse-ru-2016:1478-1 | Recommended update for samba | 2016-06-02T12:55:28Z | 2016-06-02T12:55:28Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2019:2499-1 | Security update for apache2-mod_auth_openidc | 2019-11-13T15:20:41Z | 2019-11-13T15:20:41Z |
| opensuse-su-2019:2500-1 | Security update for rsyslog | 2019-11-13T19:20:38Z | 2019-11-13T19:20:38Z |
| opensuse-su-2019:2501-1 | Security update for rsyslog | 2019-11-13T23:20:20Z | 2019-11-13T23:20:20Z |
| opensuse-su-2019:2503-1 | Security update for the Linux Kernel | 2019-11-14T05:53:54Z | 2019-11-14T05:53:54Z |
| opensuse-su-2019:2504-1 | Security update for ucode-intel | 2019-11-14T05:54:05Z | 2019-11-14T05:54:05Z |
| opensuse-su-2019:2505-1 | Security update for qemu | 2019-11-14T05:54:23Z | 2019-11-14T05:54:23Z |
| opensuse-su-2019:2506-1 | Security update for xen | 2019-11-14T05:54:33Z | 2019-11-14T05:54:33Z |
| opensuse-su-2019:2507-1 | Security update for the Linux Kernel | 2019-11-14T05:59:09Z | 2019-11-14T05:59:09Z |
| opensuse-su-2019:2509-1 | Security update for ucode-intel | 2019-11-14T06:30:51Z | 2019-11-14T06:30:51Z |
| opensuse-su-2019:2510-1 | Security update for qemu | 2019-11-14T06:31:05Z | 2019-11-14T06:31:05Z |
| opensuse-su-2019:2514-1 | Security update for libtomcrypt | 2019-11-15T05:20:55Z | 2019-11-15T05:20:55Z |
| opensuse-su-2019:2515-1 | Security update for ImageMagick | 2019-11-15T05:21:07Z | 2019-11-15T05:21:07Z |
| opensuse-su-2019:2519-1 | Security update for ImageMagick | 2019-11-16T09:23:00Z | 2019-11-16T09:23:00Z |
| opensuse-su-2019:2521-1 | Security update for go1.12 | 2019-11-17T19:22:02Z | 2019-11-17T19:22:02Z |
| opensuse-su-2019:2522-1 | Security update for go1.12 | 2019-11-17T19:22:11Z | 2019-11-17T19:22:11Z |
| opensuse-su-2019:2527-1 | Security update for ucode-intel | 2019-11-18T09:56:28Z | 2019-11-18T09:56:28Z |
| opensuse-su-2019:2528-1 | Security update for ucode-intel | 2019-11-18T09:56:36Z | 2019-11-18T09:56:36Z |
| opensuse-su-2019:2529-1 | Security update for libjpeg-turbo | 2019-11-19T13:22:26Z | 2019-11-19T13:22:26Z |
| opensuse-su-2019:2530-1 | Security update for libjpeg-turbo | 2019-11-19T15:27:27Z | 2019-11-19T15:27:27Z |
| opensuse-su-2019:2534-1 | Security update for ghostscript | 2019-11-20T13:27:48Z | 2019-11-20T13:27:48Z |
| opensuse-su-2019:2535-1 | Security update for ghostscript | 2019-11-20T13:27:59Z | 2019-11-20T13:27:59Z |
| opensuse-su-2019:2536-1 | Security update for slurm | 2019-11-20T19:24:15Z | 2019-11-20T19:24:15Z |
| opensuse-su-2019:2537-1 | Security update for chromium | 2019-11-21T11:03:02Z | 2019-11-21T11:03:02Z |
| opensuse-su-2019:2538-1 | Security update for chromium | 2019-11-21T12:14:15Z | 2019-11-21T12:14:15Z |
| opensuse-su-2019:2539-1 | Security update for chromium | 2019-11-21T12:15:15Z | 2019-11-21T12:15:15Z |
| opensuse-su-2019:2540-1 | Security update for squid | 2019-11-21T13:25:53Z | 2019-11-21T13:25:53Z |
| opensuse-su-2019:2541-1 | Security update for squid | 2019-11-21T13:26:12Z | 2019-11-21T13:26:12Z |
| opensuse-su-2019:2544-1 | Security update for chromium | 2019-11-22T05:20:59Z | 2019-11-22T05:20:59Z |
| opensuse-su-2019:2545-1 | Security update for chromium | 2019-11-22T05:21:22Z | 2019-11-22T05:21:22Z |
| opensuse-su-2019:2549-1 | Security update for apache2-mod_perl | 2019-11-23T17:20:34Z | 2019-11-23T17:20:34Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2015-00773 | Apple MAC OS X Yosemite Thunderbolt设备固件修改漏洞 | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00774 | Apple MAC OS X Yosemite SceneKit越界漏洞 | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00776 | Apple MAC OS X Yosemite文件处理堆缓冲区溢出漏洞 | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00777 | Apple MAC OS X Yosemite App Store日志信息泄露漏洞 | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00778 | Apple MAC OS X Yosemite访问控制漏洞 | 2015-01-30 | 2015-01-31 |
| cnvd-2015-00779 | Apple MAC OS X Yosemite蓝牙驱动任意代码执行漏洞 | 2015-01-30 | 2015-01-31 |
| cnvd-2015-00780 | Apple MAC OS X Yosemite PDF文件信息泄露漏洞 | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00781 | Apple MAC OS X Yosemite sysmond类型混淆漏洞 | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00782 | Apple MAC OS X Yosemite沙盒绕过漏洞 | 2015-01-30 | 2015-01-31 |
| cnvd-2015-00783 | Apple MAC OS X Yosemite DF文件内存破坏漏洞 | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00784 | Apple MAC OS X Yosemite IOBluetoothFamily整数溢出漏洞 | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00785 | Apple MAC OS X Yosemite XPC消息处理类型混淆漏洞 | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00786 | Apple MAC OS X Yosemite锁屏绕过漏洞 | 2015-01-30 | 2015-01-31 |
| cnvd-2015-00787 | Apple MAC OS X Yosemite IOHIDFamily驱动边界检查代码执行漏洞 | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00788 | Apple MAC OS X Yosemite目录服务解析处理校验漏洞 | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00789 | Apple MAC OS X Yosemite IODataQueue对象处理校验漏洞 | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00790 | Apple MAC OS X Yosemite IOUSB控制器用户客户端函数内存访问漏洞 | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00791 | Apple MAC OS X Yosemite Intel图像驱动代码执行漏洞(CNVD-2015-00791) | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00792 | Apple MAC OS X Yosemite Intel图像驱动代码执行漏洞(CNVD-2015-00792) | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00793 | Apple MAC OS X Yosemite Intel图像驱动代码执行漏洞(CNVD-2015-00793) | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00794 | WordPress插件Blubrry PowerPress Podcast 'admin.php'跨站脚本漏洞 | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00795 | Privoxy存在多个内存破坏漏洞 | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00796 | Privoxy远程拒绝服务漏洞(CNVD-2015-00796) | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00797 | Linux Kernel本地拒绝服务漏洞(CNVD-2015-00797) | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00798 | Linux Kernel 'fs/fhandle.c'本地竞争条件漏洞 | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00799 | WordPress插件Geo Mashup跨站脚本漏洞 | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00800 | Pexip Infinity中间人安全绕过漏洞 | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00801 | Privoxy远程拒绝服务漏洞(CNVD-2015-00801) | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00802 | Libvirt信息泄露漏洞(CNVD-2015-00802) | 2015-01-30 | 2015-02-02 |
| cnvd-2015-00803 | Xen拒绝服务漏洞(CNVD-2015-00803) | 2015-01-30 | 2015-02-02 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2004-avi-078 | Vulnérabilité sur gdk-pixbuf sous Linux | 2004-03-11T00:00:00.000000 | 2004-03-16T00:00:00.000000 |
| certa-2004-avi-079 | Vulnérabilité du serveur HTTP Apache | 2004-03-11T00:00:00.000000 | 2004-05-12T00:00:00.000000 |
| certa-2004-avi-080 | Multiples vulnérabilités dans Mozilla | 2004-03-11T00:00:00.000000 | 2004-05-14T00:00:00.000000 |
| certa-2004-avi-081 | Vulnérabilité du navigateur Konqueror | 2004-03-11T00:00:00.000000 | 2004-03-11T00:00:00.000000 |
| certa-2004-avi-082 | Vulnérabilité de F-Secure pour Linux | 2004-03-11T00:00:00.000000 | 2004-03-11T00:00:00.000000 |
| certa-2004-avi-083 | Vulnérabilité de rexecd sous AIX | 2004-03-12T00:00:00.000000 | 2004-03-12T00:00:00.000000 |
| certa-2004-avi-084 | Vulnérabilité de Calife | 2004-03-12T00:00:00.000000 | 2004-03-12T00:00:00.000000 |
| certa-2004-avi-085 | Vulnérabilité de sysstat | 2004-03-15T00:00:00.000000 | 2004-04-07T00:00:00.000000 |
| certa-2004-avi-086 | Vulnérabilité du serveur HTTP Apache | 2004-03-15T00:00:00.000000 | 2004-05-18T00:00:00.000000 |
| certa-2004-avi-087 | Vulnérabilité de Antigen pour Lotus Domino | 2004-03-15T00:00:00.000000 | 2004-03-15T00:00:00.000000 |
| certa-2004-avi-088 | Vulnérabilité du serveur SAMBA | 2004-03-15T00:00:00.000000 | 2004-04-30T00:00:00.000000 |
| certa-2004-avi-089 | Vulnérabilité sur Novell GroupWise WebAccess | 2004-03-15T00:00:00.000000 | 2004-03-15T00:00:00.000000 |
| certa-2004-avi-090 | Vulnérabilité dans Oracle Application Server Web Cache | 2004-03-15T00:00:00.000000 | 2004-03-15T00:00:00.000000 |
| certa-2004-avi-091 | Compromission possible de certificats sur <SPAN class="textit">HP HTTP Server</SPAN> | 2004-03-15T00:00:00.000000 | 2004-03-15T00:00:00.000000 |
| certa-2004-avi-092 | Vulnérabilité de IPsec/IKE sous Tru64 UNIX | 2004-03-15T00:00:00.000000 | 2004-03-15T00:00:00.000000 |
| certa-2004-avi-093 | Vulnérabilité de Solaris | 2004-03-15T00:00:00.000000 | 2004-03-15T00:00:00.000000 |
| certa-2004-avi-094 | Vulnérabilité sur plusieurs serveurs SOAP | 2004-03-18T00:00:00.000000 | 2004-03-18T00:00:00.000000 |
| certa-2004-avi-095 | Multiples vulnérabilités d'OpenSSL | 2004-03-18T00:00:00.000000 | 2004-05-07T00:00:00.000000 |
| certa-2004-avi-096 | Vulnérabilité des produits Proventia, BlackICE et RealSecure d'ISS | 2004-03-19T00:00:00.000000 | 2004-03-22T00:00:00.000000 |
| certa-2004-avi-097 | Vulnérabilités dans Norton Internet Security et Norton AntiSpam | 2004-03-22T00:00:00.000000 | 2004-03-22T00:00:00.000000 |
| certa-2004-avi-098 | Vulnérabilité de Clamav | 2004-03-23T00:00:00.000000 | 2004-04-08T00:00:00.000000 |
| certa-2004-avi-099 | Vulnérabilités dans Ethereal | 2004-03-24T00:00:00.000000 | 2004-06-01T00:00:00.000000 |
| certa-2004-avi-100 | Multiples vulnérabilités de isakmpd sous OpenBSD | 2004-03-24T00:00:00.000000 | 2004-05-12T00:00:00.000000 |
| certa-2004-avi-101 | Vulnérabilité du module mod_survey | 2004-03-25T00:00:00.000000 | 2004-03-25T00:00:00.000000 |
| certa-2004-avi-102 | Vulnérabilité sur Novell Netware 6.5 | 2004-03-26T00:00:00.000000 | 2004-03-26T00:00:00.000000 |
| certa-2004-avi-103 | Vulnérabilité dans l'utilitaire nslookup de IBM AIX | 2004-03-26T00:00:00.000000 | 2004-03-26T00:00:00.000000 |
| certa-2004-avi-104 | Multiples vulnérabilités dans SD-UX de HP-UX | 2004-03-26T00:00:00.000000 | 2004-03-26T00:00:00.000000 |
| certa-2004-avi-105 | Vulnérabilité de la fonction setsockopt() sous FreeBSD | 2004-03-30T00:00:00.000000 | 2004-03-30T00:00:00.000000 |
| certa-2004-avi-106 | Vulnérabilités de tcpdump | 2004-03-31T00:00:00.000000 | 2004-09-08T00:00:00.000000 |
| certa-2004-avi-107 | Vulnérabilité dans MPlayer | 2004-04-02T00:00:00.000000 | 2004-05-12T00:00:00.000000 |