Recent vulnerabilities

Recent vulnerabilities from
Select from 69 available sources using the dropdown above.
ID CVSS Description Vendor Product Published Updated
CVE-1999-0037
N/A
Arbitrary command execution via metamail package … n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.203Z
CVE-1999-0038
8.4 (3.1)
Buffer overflow in xlock program allows local use… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-09-12T14:37:48.860Z
CVE-1999-0039
7.3 (3.1)
webdist CGI program (webdist.cgi) in SGI IRIX all… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-09-12T14:37:05.701Z
CVE-1999-0040
N/A
Buffer overflow in Xt library of X Windowing Syst… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:56.678Z
CVE-1999-0041
N/A
Buffer overflow in NLS (Natural Language Service). n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-09-17T14:25:15.473Z
CVE-1999-0042
N/A
Buffer overflow in University of Washington's imp… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.030Z
CVE-1999-0043
9.8 (3.1)
Command execution via shell metachars in INN daem… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T20:03:35.981Z
CVE-1999-0044
N/A
fsdump command in IRIX allows local users to obta… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.595Z
CVE-1999-0045
N/A
List of arbitrary files on Web host via nph-test-… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.679Z
CVE-1999-0046
N/A
Buffer overflow of rlogin program using TERM envi… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.114Z
CVE-1999-0047
N/A
MIME conversion buffer overflow in sendmail versi… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.134Z
CVE-1999-0048
N/A
Talkd, when given corrupt DNS information, can be… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.128Z
CVE-1999-0049
N/A
Csetup under IRIX allows arbitrary file creation … n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:56.698Z
CVE-1999-0050
N/A
Buffer overflow in HP-UX newgrp program. n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:56.781Z
CVE-1999-0051
N/A
Arbitrary file creation and program execution usi… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.441Z
CVE-1999-0052
7.5 (3.1)
IP fragmentation denial of service in FreeBSD all… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T20:32:09.970Z
CVE-1999-0053
N/A
TCP RST denial of service in FreeBSD. n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.548Z
CVE-1999-0054
N/A
Sun's ftpd daemon can be subjected to a denial of… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.455Z
CVE-1999-0055
N/A
Buffer overflows in Sun libnsl allow root access. n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.271Z
CVE-1999-0056
N/A
Buffer overflow in Sun's ping program can give ro… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.417Z
CVE-1999-0057
N/A
Vacation program allows command execution by remo… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.213Z
CVE-1999-0058
N/A
Buffer overflow in PHP cgi program, php.cgi allow… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.281Z
CVE-1999-0059
7.3 (3.1)
IRIX fam service allows an attacker to obtain a l… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T20:35:57.570Z
CVE-1999-0060
N/A
Attackers can cause a denial of service in Ascend… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:56.721Z
CVE-1999-0062
N/A
The chpass command in OpenBSD allows a local user… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.414Z
CVE-1999-0063
N/A
Cisco IOS 12.0 and other versions can be crashed … n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.325Z
CVE-1999-0064
N/A
Buffer overflow in AIX lquerylv program gives roo… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.301Z
CVE-1999-0065
N/A
Multiple buffer overflows in how dtmail handles a… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.300Z
CVE-1999-0066
9.8 (3.1)
AnyForm CGI remote execution. n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T20:50:29.555Z
CVE-1999-0067
N/A
phf CGI program allows remote command execution t… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.471Z
ID CVSS Description Vendor Product Published Updated
CVE-1999-1032
N/A
Vulnerability in LAT/Telnet Gateway (lattelnet) o… n/a
 n/a
 2002-03-09T05:00:00.000Z 2024-08-01T16:55:29.565Z
CVE-1999-1059
N/A
Vulnerability in rexec daemon (rexecd) in AT&T TC… n/a
 n/a
 2002-03-09T05:00:00.000Z 2024-08-01T17:02:52.980Z
CVE-1999-0627
N/A
The rexd service is running, which uses weak auth… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:41:45.714Z
CVE-1999-1121
N/A
The default configuration for UUCP in AIX before … n/a
 n/a
 2002-03-09T05:00:00.000Z 2024-08-01T17:02:53.747Z
CVE-1999-0117
N/A
AIX passwd allows local users to gain root access. n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.677Z
CVE-1999-1119
N/A
FTP installation script anon.ftp in AIX insecurel… n/a
 n/a
 2002-03-09T05:00:00.000Z 2024-08-01T17:02:53.747Z
CVE-1999-1142
N/A
SunOS 4.1.2 and earlier allows local users to gai… n/a
 n/a
 2002-03-09T05:00:00.000Z 2024-08-01T17:02:53.703Z
CVE-1999-0168
N/A
The portmapper may act as a proxy and redirect se… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.737Z
CVE-1999-0214
N/A
Denial of service by sending forged ICMP unreacha… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:34:51.621Z
CVE-1999-1396
N/A
Vulnerability in integer multiplication emulation… n/a
 n/a
 2001-09-12T04:00:00.000Z 2024-08-01T17:11:03.183Z
CVE-1999-1395
N/A
Vulnerability in Monitor utility (SYS$SHARE:SPISH… n/a
 n/a
 2001-09-12T04:00:00.000Z 2024-08-01T17:11:03.180Z
CVE-1999-1306
N/A
Cisco IOS 9.1 and earlier does not properly handl… n/a
 n/a
 2001-09-12T04:00:00.000Z 2024-08-01T17:11:02.973Z
CVE-1999-1466
N/A
Vulnerability in Cisco routers versions 8.2 throu… n/a
 n/a
 2001-09-12T04:00:00.000Z 2024-08-01T17:18:07.269Z
CVE-1999-1021
N/A
NFS on SunOS 4.1 through 4.1.2 ignores the high o… n/a
 n/a
 2002-03-09T05:00:00.000Z 2024-08-01T16:55:29.374Z
CVE-1999-1056
N/A
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-1395. Reason: This candidate is a duplicate of CVE-1999-1395. Notes: All CVE users should reference CVE-1999-1395 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage N/A N/A 2001-09-12T04:00:00.000Z 2005-02-04T00:00:00.000Z
CVE-1999-0312
N/A
HP ypbind allows attackers with root privileges t… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:34:51.825Z
CVE-1999-1507
N/A
Sun SunOS 4.1 through 4.1.3 allows local attacker… n/a
 n/a
 2002-03-09T05:00:00.000Z 2024-08-01T17:18:07.522Z
CVE-1999-1218
N/A
Vulnerability in finger in Commodore Amiga UNIX 2… n/a
 n/a
 2001-09-12T04:00:00.000Z 2024-08-01T17:02:53.763Z
CVE-1999-1312
N/A
Vulnerability in DEC OpenVMS VAX 5.5-2 through 5.… n/a
 n/a
 2001-09-12T04:00:00.000Z 2024-08-01T17:11:02.912Z
CVE-1999-1216
N/A
Cisco routers 9.17 and earlier allow remote attac… n/a
 n/a
 2001-09-12T04:00:00.000Z 2024-08-01T17:02:53.915Z
CVE-1999-1162
N/A
Vulnerability in passwd in SCO UNIX 4.0 and earli… n/a
 n/a
 2002-03-09T05:00:00.000Z 2024-08-01T17:02:53.757Z
CVE-1999-0124
N/A
Vulnerabilities in UMN gopher and gopher+ version… n/a
 n/a
 2000-06-02T04:00:00.000Z 2024-08-01T16:27:57.636Z
CVE-1999-1215
N/A
LOGIN.EXE program in Novell Netware 4.0 and 4.01 … n/a
 n/a
 2002-03-09T05:00:00.000Z 2024-08-01T17:02:53.798Z
CVE-1999-1138
N/A
SCO UNIX System V/386 Release 3.2, and other SCO … n/a
 n/a
 2002-03-09T05:00:00.000Z 2024-08-01T17:02:53.798Z
CVE-1999-1318
N/A
/usr/5bin/su in SunOS 4.1.3 and earlier uses a se… n/a
 n/a
 2002-03-09T05:00:00.000Z 2024-08-01T17:11:02.962Z
CVE-1999-0145
N/A
Sendmail WIZ command enabled, allowing root access. n/a
 n/a
 2000-10-13T04:00:00.000Z 2024-08-01T16:27:57.695Z
CVE-1999-1137
N/A
The permissions for the /dev/audio device on Sola… n/a
 n/a
 2002-03-09T05:00:00.000Z 2024-08-01T17:02:53.705Z
CVE-1999-0334
N/A
In Solaris 2.2 and 2.3, when fsck fails on startu… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:34:51.960Z
CVE-1999-0181
N/A
The wall daemon can be used for denial of service… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:27:57.764Z
CVE-1999-1242
N/A
Vulnerability in subnetconfig in HP-UX 9.01 and 9… n/a
 n/a
 2001-09-12T04:00:00.000Z 2024-08-01T17:02:53.864Z
ID Description Published Updated
ID Severity Description Published Updated
ghsa-5726-g6r9-5f22
Potential for Script Injection in syntax-error 2017-10-24T18:33:36Z 2022-02-25T19:54:10Z
ghsa-59c7-4xj2-hgvw
6.1 (3.1)
rails-html-sanitizer Cross-site Scripting vulnerability 2017-10-24T18:33:36Z 2023-01-23T20:38:10Z
ghsa-5j3g-jfq3-7jwx
Arbitrary JavaScript Execution in bassmaster 2017-10-24T18:33:36Z 2021-09-01T22:16:02Z
ghsa-67j6-xv27-w6ww
Web Console (Ruby gem) contains whitelisted_ips bypass 2017-10-24T18:33:36Z 2023-03-14T23:11:59Z
ghsa-6h5q-96hp-9jgm
actionpack vulnerable to Cross-site Scripting 2017-10-24T18:33:36Z 2023-08-25T18:48:39Z
ghsa-6jvm-3j5h-79f6
paperclip Cross-site Scripting vulnerability 2017-10-24T18:33:36Z 2023-01-23T20:43:16Z
ghsa-6x85-j5j2-27jx
7.5 (3.1)
actionpack Path Traversal vulnerability 2017-10-24T18:33:36Z 2025-10-24T19:28:04Z
ghsa-73qw-ww62-m54x
10.0 (3.1)
colorscore Command Injection vulnerability 2017-10-24T18:33:36Z 2023-01-25T23:05:06Z
ghsa-7cgp-c3g7-qvrw
actionpack Improper Input Validation vulnerability 2017-10-24T18:33:36Z 2023-06-30T21:25:19Z
ghsa-84fq-6626-w5fg
CORS Token Disclosure in crumb 2017-10-24T18:33:36Z 2020-08-31T18:07:28Z
ghsa-8r6h-7x9g-xmw9
will_paginate Cross-site Scripting vulnerability 2017-10-24T18:33:36Z 2023-01-23T20:49:57Z
ghsa-92v7-pq4h-58j5
facter, hiera, mcollective-client, and puppet affected by untrusted search path vulnerability 2017-10-24T18:33:36Z 2023-06-07T14:06:11Z
ghsa-959j-5g9v-3fpq
Paratrooper-newrelic Exposes of Sensitive Information to an Unauthorized Actor 2017-10-24T18:33:36Z 2023-08-25T22:59:09Z
ghsa-9959-c6q6-6qp3
Moderate severity vulnerability that affects validator 2017-10-24T18:33:36Z 2020-06-17T16:30:41Z
ghsa-9h6g-gp95-x3q5
7.5 (3.1)
actionpack is vulnerable to denial of service because of a wildcard controller route 2017-10-24T18:33:36Z 2022-04-25T20:52:00Z
ghsa-9rf5-jm6f-2fmm
Active Record subject to strong parameters protection bypass 2017-10-24T18:33:36Z 2023-08-25T22:56:38Z
ghsa-c9c5-9fpr-m882
sentry-raven allows remote attackers to cause a denial of service via a large exponent value in a s… 2017-10-24T18:33:36Z 2023-01-25T23:16:15Z
ghsa-c9f4-xj24-8jqx
7.5 (3.1)
Regular Expression Denial of Service in uglify-js 2017-10-24T18:33:36Z 2021-09-08T21:59:09Z
ghsa-cfjh-p3g4-3q2f
VBScript Content Injection in marked 2017-10-24T18:33:36Z 2021-09-09T17:02:02Z
ghsa-cqr7-78pj-3g7j
File Descriptor Leak Can Cause DoS Vulnerability in hapi 2017-10-24T18:33:36Z 2021-09-09T20:31:02Z
ghsa-fmr4-7g9q-7hc7
Moderate severity vulnerability that affects handlebars 2017-10-24T18:33:36Z 2020-06-17T16:30:43Z
ghsa-fqrr-rrwg-69pv
Local API Login Credentials Disclosure in paratrooper-pingdom 2017-10-24T18:33:36Z 2023-07-05T18:46:48Z
ghsa-gfjr-3jmm-4g9v
7.5 (3.1)
Symlink Arbitrary File Overwrite in tar 2017-10-24T18:33:36Z 2021-09-10T20:53:22Z
ghsa-ghqm-pgxj-37gq
6.1 (3.1)
rails-html-sanitizer Cross-site Scripting vulnerability 2017-10-24T18:33:36Z 2023-01-23T21:16:04Z
ghsa-h56m-vwxc-3qpw
Directory traversal vulnerability in actionpack 2017-10-24T18:33:36Z 2023-08-25T19:56:49Z
ghsa-hgmw-x865-hf9x
Arabic Prawn allows remote attackers to execute arbitrary commands via shell metacharacters 2017-10-24T18:33:36Z 2023-01-26T20:58:07Z
ghsa-hjcp-j389-59ff
7.5 (3.1)
Regular Expression Denial of Service in marked 2017-10-24T18:33:36Z 2024-02-09T17:50:43Z
ghsa-hqf9-rc9j-5fmj
Array data injection vulnerability in activerecord 2017-10-24T18:33:36Z 2023-07-05T17:50:02Z
ghsa-j96r-xvjq-r9pg
activesupport vulnerable to Denial of Service via large XML document depth 2017-10-24T18:33:36Z 2025-03-31T17:46:20Z
ghsa-jgqf-hwc5-hh37
5.3 (3.1)
Root Path Disclosure in send 2017-10-24T18:33:36Z 2021-09-14T19:42:25Z
ID Severity Description Package Published Updated
pysec-2009-5
schema.py in FormEncode for Python (python-formencode) 1.0 does not apply the chained_val… formencode 2009-03-30T01:30:00Z 2021-07-16T01:31:20.304490Z
pysec-2009-13
MoinMoin 1.6.2 and 1.7 does not properly enforce ACL checks when acl_hierarchic is set to… moin 2009-04-03T18:30:00Z 2024-11-25T18:35:18.357593Z
pysec-2009-6
Multiple cross-site scripting (XSS) vulnerabilities in action/AttachFile.py in MoinMoin 1… moin 2009-04-29T18:30:00Z 2017-08-17T01:30:00Z
pysec-2009-3
The Admin media handler in core/servers/basehttp.py in Django 1.0 and 0.96 does not prope… django 2009-08-04T16:30:00Z 2021-07-15T02:22:07.875702Z
pysec-2009-8
Unspecified vulnerability in Zope Object Database (ZODB) before 3.8.2, when certain Zope … zodb3 2009-08-07T19:30:00Z 2021-07-16T01:31:36.649414Z
pysec-2009-9
Zope Object Database (ZODB) before 3.8.2, when certain Zope Enterprise Objects (ZEO) data… zodb3 2009-08-07T19:30:00Z 2021-07-16T01:31:36.719288Z
pysec-2009-1
Cross-site scripting (XSS) vulnerability in the waterfall web status view (status/web/wat… buildbot 2009-08-25T17:30:00Z 2021-07-15T02:22:07.208084Z
pysec-2009-2
Multiple cross-site scripting (XSS) vulnerabilities in Buildbot 0.7.6 through 0.7.11p2 al… buildbot 2009-08-26T14:24:00Z 2021-07-15T02:22:07.247020Z
pysec-2009-10
Unspecified vulnerability in the Zope Enterprise Objects (ZEO) storage-server functionali… zodb3 2009-09-08T18:30:00Z 2024-01-17T10:48:40.464440Z
pysec-2009-4
Algorithmic complexity vulnerability in the forms library in Django 1.0 before 1.0.4 and … django 2009-10-13T10:30:00Z 2021-07-15T02:22:07.960103Z
pysec-2009-7
Multiple unspecified vulnerabilities in Trac before 0.11.6 have unknown impact and attack… trac 2009-12-23T21:30:00Z 2021-07-16T01:31:34.738485Z
pysec-2010-14
MoinMoin 1.9 before 1.9.1 does not perform the expected clearing of the sys.argv array in… moin 2010-02-26T19:30:00Z 2021-07-16T01:31:23.463823Z
pysec-2010-15
Unspecified vulnerability in MoinMoin 1.5.x through 1.7.x, 1.8.x before 1.8.7, and 1.9.x … moin 2010-02-26T19:30:00Z 2021-07-16T01:31:23.566810Z
pysec-2010-2
MoinMoin before 1.8.7 and 1.9.x before 1.9.2 does not properly sanitize user profiles, wh… moin 2010-02-26T19:30:00Z 2021-07-05T00:01:22.841909Z
pysec-2010-3
The default configuration of cfg.packagepages_actions_excluded in MoinMoin before 1.8.7 d… moin 2010-02-26T19:30:00Z 2021-07-05T00:01:22.874295Z
pysec-2010-13
MoinMoin 1.7.x before 1.7.3 and 1.8.x before 1.8.3 checks parent ACLs in certain inapprop… moin 2010-03-29T20:30:00Z 2010-05-27T05:47:00Z
pysec-2010-28
Cross-site scripting (XSS) vulnerability in action/Despam.py in the Despam action module … moin 2010-04-05T15:30:00Z 2021-08-27T03:22:07.708069Z
pysec-2010-19
Cross-site scripting (XSS) vulnerability in PortalTransforms in Plone 2.1 through 3.3.4 b… plone 2010-06-24T12:17:00Z 2021-07-16T01:31:27.252837Z
pysec-2010-1
Mako before 0.3.4 relies on the cgi.escape function in the Python standard library for cr… mako 2010-07-02T19:00:00Z 2021-07-05T00:01:22.516270Z
pysec-2010-30
Buffer overflow in Dan Pascu python-cjson 1.0.5, when UCS-4 encoding is enabled, allows c… python-cjson 2010-07-02T19:00:00Z 2021-08-27T03:22:17.891561Z
pysec-2010-26
Dan Pascu python-cjson 1.0.5 does not properly handle a ['/'] argument to cjson.encode, w… python-cjson 2010-07-02T19:30:00Z 2021-07-16T01:31:29.455845Z
pysec-2010-16
Multiple cross-site scripting (XSS) vulnerabilities in MoinMoin 1.7.3 and earlier, 1.8.x … moin 2010-08-05T13:22:00Z 2021-07-16T01:31:23.671563Z
pysec-2010-17
Multiple cross-site scripting (XSS) vulnerabilities in MoinMoin 1.7.3 and earlier, and 1.… moin 2010-08-05T13:22:00Z 2021-07-16T01:31:23.735889Z
pysec-2010-18
Multiple cross-site scripting (XSS) vulnerabilities in MoinMoin 1.9.x before 1.9.3 allow … moin 2010-08-05T13:22:00Z 2021-07-16T01:31:23.812033Z
pysec-2010-32
ZServer in Zope 2.10.x before 2.10.12 and 2.11.x before 2.11.7 allows remote attackers to… Zope 2010-09-08T20:00:00Z 2024-11-25T18:35:18.357593Z
pysec-2010-12
Cross-site scripting (XSS) vulnerability in Django 1.2.x before 1.2.2 allows remote attac… django 2010-09-14T19:00:00Z 2021-07-15T02:22:08.006222Z
pysec-2010-31
Cross-site scripting (XSS) vulnerability in cgi/client.py in Roundup before 1.4.14 allows… roundup 2010-09-24T19:00:00Z 2021-08-27T03:22:19.672970Z
pysec-2010-10
Memory leak in the on_dtp_close function in ftpserver.py in pyftpdlib before 0.5.2 allows… pyftpdlib 2010-10-19T20:00:00Z 2021-07-05T00:01:24.847543Z
pysec-2010-11
Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows r… pyftpdlib 2010-10-19T20:00:00Z 2021-07-05T00:01:24.878652Z
pysec-2010-20
Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.2.0 al… pyftpdlib 2010-10-19T20:00:00Z 2010-10-20T04:00:00Z
ID Description Updated
ID Description Published Updated
mal-2022-3502 Malicious code in gulp-browserify-thin (npm) 2022-05-16T06:47:08Z 2022-05-16T06:47:15Z
mal-2022-2020 Malicious code in colors-update (npm) 2022-05-16T07:05:12Z 2022-05-16T07:06:31Z
mal-2022-230 Malicious code in @epc-apps/alert-servie (npm) 2022-05-16T07:13:06Z 2022-05-16T07:13:06Z
mal-2022-232 Malicious code in @epc-apps/api-ingestor (npm) 2022-05-16T07:13:06Z 2022-05-16T07:13:06Z
mal-2022-234 Malicious code in @epc-apps/api-outages (npm) 2022-05-16T07:13:11Z 2022-05-16T07:13:12Z
mal-2022-243 Malicious code in @epc-infra/users-stack (npm) 2022-05-16T07:13:11Z 2022-05-16T07:13:12Z
mal-2022-231 Malicious code in @epc-apps/api-generic-plan (npm) 2022-05-16T07:13:13Z 2022-05-16T07:13:14Z
mal-2022-238 Malicious code in @epc-infra/clinstestpackage (npm) 2022-05-16T07:13:13Z 2022-05-16T07:13:14Z
mal-2022-239 Malicious code in @epc-infra/dns-stack (npm) 2022-05-16T07:13:33Z 2022-05-16T07:13:33Z
mal-2022-240 Malicious code in @epc-infra/dynamo-stack (npm) 2022-05-16T07:13:33Z 2022-05-16T07:13:33Z
mal-2022-241 Malicious code in @epc-infra/region-only-policy (npm) 2022-05-16T07:13:33Z 2022-05-16T07:13:33Z
mal-2022-242 Malicious code in @epc-infra/stack-config (npm) 2022-05-16T07:13:33Z 2022-05-16T07:13:33Z
mal-2022-244 Malicious code in @epc-libraries/cdk-custom-resources (npm) 2022-05-16T07:13:33Z 2022-05-16T07:13:33Z
mal-2022-233 Malicious code in @epc-apps/api-management-plan (npm) 2022-05-16T07:13:34Z 2022-05-16T07:13:35Z
mal-2022-245 Malicious code in @epc-libraries/data-api-versions (npm) 2022-05-16T07:14:57Z 2022-05-16T07:14:57Z
mal-2022-237 Malicious code in @epc-infra/aurora-stack (npm) 2022-05-16T07:15:02Z 2022-05-16T07:15:02Z
mal-2022-246 Malicious code in @epc-libraries/driver-outage-db (npm) 2022-05-16T07:15:02Z 2022-05-16T07:15:02Z
mal-2022-1929 Malicious code in clinstestpackage (npm) 2022-05-16T07:17:21Z 2022-05-16T07:17:28Z
mal-2022-247 Malicious code in @epc-libraries/kinesis-service (npm) 2022-05-16T07:19:35Z 2022-05-16T07:19:35Z
mal-2022-248 Malicious code in @epc-libraries/utils (npm) 2022-05-16T07:19:45Z 2022-05-16T07:19:45Z
mal-2022-236 Malicious code in @epc-infra/app-lookup-stack (npm) 2022-05-16T07:19:51Z 2022-05-16T07:19:51Z
mal-2022-1040 Malicious code in api-extractor-test-01 (npm) 2022-05-16T07:27:01Z 2022-05-16T07:27:01Z
mal-2022-5577 Malicious code in rainbow-bridge-testing (npm) 2022-05-16T07:27:01Z 2022-05-16T07:27:02Z
mal-2022-4264 Malicious code in lbc-git (npm) 2022-05-16T07:31:48Z 2022-05-16T07:31:49Z
mal-2022-1142 Malicious code in assets-common (npm) 2022-05-16T07:40:54Z 2022-05-16T07:41:02Z
mal-2022-1645 Malicious code in bolt-styles (npm) 2022-05-16T07:40:54Z 2022-05-16T07:41:01Z
mal-2022-1823 Malicious code in cap-common-pages (npm) 2022-05-16T07:40:54Z 2022-05-16T07:40:54Z
mal-2022-1824 Malicious code in cap-products (npm) 2022-05-16T07:40:54Z 2022-05-16T07:40:54Z
mal-2022-1990 Malicious code in coldstone-helpers (npm) 2022-05-16T07:40:54Z 2022-05-16T07:40:54Z
mal-2022-1991 Malicious code in coldstone-sls (npm) 2022-05-16T07:40:54Z 2022-05-16T07:40:54Z
ID Description Published Updated
sa25p002 B&R Automation Runtime DoS Vulnerability in System Diagnostics Manager (SDM) 2025-10-07T00:30:00.000Z 2025-10-07T00:30:00.000Z
sa25p003 B&R Automation Runtime Vulnerabilities in System Diagnostic Manager (SDM) 2025-10-07T00:30:00.000Z 2025-10-14T00:30:00.000Z
4tz00000006008 LVS MConfig Insecure memory handling 2025-10-08T00:30:00.000Z 2025-10-08T00:30:00.000Z
4tz00000006007 ALS-mini-S4/S8 IP Missing Authentication Vulnerability and its Mitigations 2025-10-20T00:30:00.000Z 2025-10-23T00:30:00.000Z
9akk108471a8948 Terra AC wallbox Heap Memory Corruption Vulnerability 2025-10-20T00:30:00.000Z 2025-10-21T00:30:00.000Z
2nga002813 PCM600 SharpZip library vulnerability 2025-11-03T00:30:00.000Z 2025-11-03T00:30:00.000Z
7paa022088 Edgenius Management Portal Authentication Bypass 2025-11-20T00:30:00.000Z 2025-11-20T00:30:00.000Z
4hzm000603 ABB Ability Camera Connect Vulnerabilities in outdated 3rd party component (VLC) 2025-11-27T00:30:00.000Z 2025-11-28T00:30:00.000Z
2crt000009 WebPro SNMP Card PowerValue Multiple Vulnerabilities 2026-01-07T00:30:00.000Z 2026-01-07T00:30:00.000Z
9akk108472a1331 ABB Ability™ OPTIMAX® Authentication Bypass in Single-Sign On with Azure Active Directory 2026-01-16T00:30:00.000Z 2026-01-16T00:30:00.000Z
sa25p004 Automation Studio Insufficient Server Certificate Validation 2026-01-19T00:30:00.000Z 2026-01-19T00:30:00.000Z
sa25p005 B&R Automation Runtime Improper Handling of Flooding conditions on ANSL Server 2026-01-19T00:30:00.000Z 2026-01-19T00:30:00.000Z
sa24p003 ​B&R PCs vulnerable to PixieFail attack​ 2026-01-29T00:30:00.000Z 2026-01-29T00:30:00.000Z
sa26p001 ​​PVI​ ​​Insertion of Sensitive Information into Logfile 2026-01-29T00:30:00.000Z 2026-01-29T00:30:00.000Z
sa25p007 B&R Automation Studio Update of SQLite version 2026-02-18T00:30:00.000Z 2026-02-18T00:30:00.000Z
3adr011524 AC500 V3 Multiple vulnerabilities 2026-02-24T00:30:00.000Z 2026-02-24T00:30:00.000Z
3adr011525 ABB Automation Builder Gateway for Windows with insecure defaults 2026-02-24T00:30:00.000Z 2026-02-24T00:30:00.000Z
3adr011536 AC500 V3 Stack buffer overflow in Cryptographic Message Syntax 2026-03-12T00:30:00.000Z 2026-03-12T00:30:00.000Z
4jno000329 AWIN Gateways Vulnerabilities in Embedded Webserver 2026-03-13T00:30:00.000Z 2026-03-13T00:30:00.000Z
4hzm000604 ABB Ability Camera Connect Vulnerabilities in outdated 3rd party component (SQLite 3.2.4) 2026-03-26T00:30:00.000Z 2026-03-26T00:30:00.000Z
7paa023732 System 800xA affected by 3rd party component vulnerabilities 2026-03-31T00:30:00.000Z 2026-03-31T00:30:00.000Z
7paa017341 PostgreSQL vulnerabilities in ABB Ability™ Symphony® Plus Engineering 2026-04-13T00:30:00.000Z 2026-04-13T00:30:00.000Z
7paa020125 Denial of Service Vulnerabilities in System 800xA, Symphony® Plus IEC 61850 communication stack 2026-04-13T00:30:00.000Z 2026-04-13T00:30:00.000Z
ID Description Published Updated
wid-sec-w-2025-1232 FreeType: Mehrere Schwachstellen 2014-03-11T23:00:00.000+00:00 2025-06-03T22:00:00.000+00:00
wid-sec-w-2024-3574 Cisco ASA (Adaptive Security Appliance): Schwachstelle ermöglicht Cross-Site Scripting 2014-03-18T23:00:00.000+00:00 2024-12-02T23:00:00.000+00:00
wid-sec-w-2025-0662 TigerVNC: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Benutzerrechten 2014-03-24T23:00:00.000+00:00 2025-03-31T22:00:00.000+00:00
wid-sec-w-2023-0502 OpenSSL: Schwachstelle ermöglicht Denial of Service oder Datenmanipulation 2014-05-01T22:00:00.000+00:00 2023-02-27T23:00:00.000+00:00
wid-sec-w-2023-1282 PHP: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes 2014-05-04T22:00:00.000+00:00 2023-05-23T22:00:00.000+00:00
wid-sec-w-2023-0501 OpenSSL: Schwachstelle ermöglicht Denial of Service 2014-05-06T22:00:00.000+00:00 2023-02-27T23:00:00.000+00:00
wid-sec-w-2023-0918 Apache Struts: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes 2014-05-06T22:00:00.000+00:00 2025-07-30T22:00:00.000+00:00
wid-sec-w-2025-0620 libxml2: Schwachstelle ermöglicht Denial of Service 2014-05-06T22:00:00.000+00:00 2025-03-20T23:00:00.000+00:00
wid-sec-w-2023-2930 cobbler: Schwachstelle ermöglicht Offenlegung von Informationen 2014-05-08T22:00:00.000+00:00 2023-11-14T23:00:00.000+00:00
wid-sec-w-2023-0754 Apache Tomcat: Mehrere Schwachstellen 2014-06-10T22:00:00.000+00:00 2023-03-26T22:00:00.000+00:00
wid-sec-w-2023-0499 GNU libc: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2014-07-10T22:00:00.000+00:00 2023-02-27T23:00:00.000+00:00
wid-sec-w-2023-0498 OpenSSL: Mehrere Schwachstellen 2014-08-06T22:00:00.000+00:00 2023-02-27T23:00:00.000+00:00
wid-sec-w-2023-0306 Apache HttpComponents: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2014-08-18T22:00:00.000+00:00 2024-09-17T22:00:00.000+00:00
wid-sec-w-2023-0497 GNU libc: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Benutzerrechten 2014-08-25T22:00:00.000+00:00 2023-02-27T23:00:00.000+00:00
wid-sec-w-2025-1695 Net-SNMP: Schwachstelle ermöglicht Denial of Service 2014-08-31T22:00:00.000+00:00 2025-07-31T22:00:00.000+00:00
wid-sec-w-2023-1653 cURL: Mehrere Schwachstellen 2014-09-10T22:00:00.000+00:00 2023-07-04T22:00:00.000+00:00
wid-sec-w-2023-2704 IBM Storwize: Schwachstelle ermöglicht Privilegieneskalation 2014-09-10T22:00:00.000+00:00 2023-10-17T22:00:00.000+00:00
wid-sec-w-2025-0213 Perl: Schwachstelle ermöglicht Denial of Service 2014-09-28T22:00:00.000+00:00 2025-01-28T23:00:00.000+00:00
wid-sec-w-2022-0140 rsyslog: Schwachstelle ermöglicht Denial of Service 2014-09-30T22:00:00.000+00:00 2023-08-17T22:00:00.000+00:00
wid-sec-w-2023-0431 SSL 3.0: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2014-10-14T22:00:00.000+00:00 2023-04-16T22:00:00.000+00:00
wid-sec-w-2024-3391 libxml2: Schwachstelle ermöglicht Denial of Service 2014-10-16T22:00:00.000+00:00 2025-06-30T22:00:00.000+00:00
wid-sec-w-2025-2520 Python: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2014-11-16T23:00:00.000+00:00 2025-11-09T23:00:00.000+00:00
wid-sec-w-2025-1178 Internet Systems Consortium BIND: Mehrere Schwachstellen ermöglichen Denial of Service 2014-12-08T23:00:00.000+00:00 2025-05-29T22:00:00.000+00:00
wid-sec-w-2025-0661 tigervnc: Mehrere Schwachstellen 2014-12-09T23:00:00.000+00:00 2025-03-31T22:00:00.000+00:00
wid-sec-w-2024-1056 libssh: Schwachstelle ermöglicht Denial of Service 2014-12-28T23:00:00.000+00:00 2024-05-07T22:00:00.000+00:00
wid-sec-w-2025-1424 libpng: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Benutzerrechten 2015-01-18T23:00:00.000+00:00 2025-06-30T22:00:00.000+00:00
wid-sec-w-2025-1658 Oracle Java SE und Oracle JRockit : Mehrere Schwachstellen 2015-01-20T23:00:00.000+00:00 2025-07-28T22:00:00.000+00:00
wid-sec-w-2023-0975 GNU libc: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes 2015-01-27T23:00:00.000+00:00 2023-04-16T22:00:00.000+00:00
wid-sec-w-2025-0271 libyaml: Schwachstelle ermöglicht Denial of Service 2015-01-28T23:00:00.000+00:00 2025-02-04T23:00:00.000+00:00
wid-sec-w-2024-0542 cpio: Schwachstelle ermöglicht Manipulation von Dateien 2015-02-02T23:00:00.000+00:00 2024-03-18T23:00:00.000+00:00
ID Description Published Updated
icsa-11-279-04 Beckhoff TwinCAT Read Access Violation 2011-07-09T06:00:00.000000Z 2025-06-09T19:51:19.034220Z
icsa-11-280-01 Cogent DataHub Vulnerabilities 2011-07-10T06:00:00.000000Z 2025-06-09T19:51:25.265310Z
icsa-11-294-01 Progea Movicon Power HMI Vulnerabilities 2011-07-24T06:00:00.000000Z 2025-06-09T19:51:50.522681Z
icsa-11-298-01a Sielco Sistemi Winlog Buffer Overflow 2011-07-28T06:00:00.000000Z 2025-06-09T19:52:09.187490Z
icsa-11-307-01 Schneider Electric Vijeo Historian Web Server Multiple Vulnerabilities 2011-08-06T06:00:00.000000Z 2025-06-09T19:52:15.424002Z
icsa-11-314-01 Safenet Sentinel and 7-T Input Sanitization Vulnerability 2011-08-13T06:00:00.000000Z 2025-06-09T19:52:40.428887Z
icsa-11-319-01 InduSoft Web Studio Vulnerabilities 2011-08-18T06:00:00.000000Z 2025-06-09T19:52:46.658796Z
icsa-11-332-01a Wonderware InBatch ActiveX Vulnerabilities 2011-08-31T06:00:00.000000Z 2025-06-05T21:50:14.861339Z
icsa-11-335-01 7-Technologies Data Server Denial of Service 2011-09-03T06:00:00.000000Z 2025-06-09T19:52:59.122386Z
icsa-11-340-01 ARC Informatique PcVue HMI/SCADA ActiveX Vulnerabilities 2011-09-08T06:00:00.000000Z 2025-06-09T19:53:05.359419Z
icsa-11-343-01 Siemens FactoryLink Multiple ActiveX Vulnerabilities 2011-09-11T06:00:00.000000Z 2025-06-09T16:33:03.608185Z
icsa-11-353-01 7-Technologies Interactive Graphical SCADA 2011-09-21T06:00:00.000000Z 2025-06-09T16:33:16.051366Z
icsa-11-355-01 7-Technologies IGSS Buffer Overflow 2011-09-23T06:00:00.000000Z 2025-06-09T16:33:22.315361Z
icsa-11-355-02 WellinTech KingView History Server Buffer Overflow 2011-09-23T06:00:00.000000Z 2025-06-09T16:33:28.540538Z
icsa-11-356-01 Siemens Simatic HMI Authentication Vulnerabilities 2011-09-24T06:00:00.000000Z 2025-06-05T21:54:31.029394Z
icsa-11-361-01 Siemens Automation License Manager Vulnerabilities 2011-09-29T06:00:00.000000Z 2025-06-09T16:33:34.827604Z
icsa-11-362-01 ScadaTEC ScadaPhone & Modbus TagServer Buffer Overflow Vulnerability 2011-09-30T06:00:00.000000Z 2025-06-09T16:33:59.781942Z
icsa-11-017-01 WellinTech Kingview 6.53 Remote Heap Overflow 2011-10-20T06:00:00.000000Z 2025-06-09T17:26:33.851054Z
icsa-11-017-02 Sielco Sistemi WinLog Stack Overflow 2011-10-20T06:00:00.000000Z 2025-06-09T17:26:40.152728Z
icsa-11-018-02 7-Technologies IGSS 8 ODBC Server Remote Heap Corruption 2011-10-21T06:00:00.000000Z 2025-06-09T17:26:46.401729Z
icsa-11-069-01b Samsung Data Management Server (Update B) 2011-12-11T07:00:00.000000Z 2025-06-09T17:26:52.608805Z
icsa-11-074-01 WellinTech KingView 6.53 KVWebSvr ActiveX 2011-12-16T07:00:00.000000Z 2025-06-09T17:26:58.846835Z
icsa-11-082-01 Ecava IntegraXor SQL 2011-12-24T07:00:00.000000Z 2025-06-09T17:27:05.078770Z
icsa-12-095-01a ABB Multiple Components Buffer Overflow 2012-01-06T07:00:00.000000Z 2025-06-06T21:44:41.492952Z
icsa-12-102-01 Certec atvise webMI2ADS Vulnerabilities 2012-01-13T07:00:00.000000Z 2025-06-06T21:44:47.952815Z
icsa-12-102-02 Koyo Ecom Modules Vulnerabilities 2012-01-13T07:00:00.000000Z 2025-06-06T21:44:54.405200Z
icsa-12-102-03 MICROSYS PROMOTIC Use After Free Vulnerability 2012-01-13T07:00:00.000000Z 2025-06-06T21:45:00.844061Z
icsa-12-102-04 Siemens Scalance X Buffer Overflow Vulnerability 2012-01-13T07:00:00.000000Z 2025-06-06T21:45:07.306451Z
icsa-12-102-05 Siemens Scalance S Multiple Security Vulnerabilities 2012-01-13T07:00:00.000000Z 2025-06-06T21:45:13.758298Z
icsa-12-122-01 WellinTech KingView DLL Hijack Vulnerability 2012-02-02T07:00:00.000000Z 2025-06-06T21:45:20.208792Z
ID Description Published Updated
cisco-sa-20170927-pnp Cisco IOS and IOS XE Software Plug-and-Play PKI API Certificate Validation Vulnerability 2017-09-27T16:00:00+00:00 2017-09-27T16:00:00+00:00
cisco-sa-20170927-privesc Cisco IOS XE Software Web UI Privilege Escalation Vulnerability 2017-09-27T16:00:00+00:00 2017-09-27T16:00:00+00:00
cisco-sa-20170927-profinet Cisco IOS Software for Cisco Industrial Ethernet Switches PROFINET Denial of Service Vulnerability 2017-09-27T16:00:00+00:00 2022-12-17T05:54:03+00:00
cisco-sa-20170927-rbip-dos Cisco IOS Software for Cisco Integrated Services Routers Generation 2 Denial of Service Vulnerability 2017-09-27T16:00:00+00:00 2022-12-17T04:17:58+00:00
cisco-sa-20170927-restapi Cisco IOS XE Software Web UI REST API Authentication Bypass Vulnerability 2017-09-27T16:00:00+00:00 2017-09-27T16:00:00+00:00
cisco-sa-20170927-vpls Cisco IOS Software for Cisco Catalyst 6800 Series Switches VPLS Denial of Service Vulnerability 2017-09-27T16:00:00+00:00 2017-09-27T16:00:00+00:00
cisco-sa-20171004-asa Cisco Adaptive Security Appliance Software Direct Authentication Denial of Service Vulnerability 2017-10-04T16:00:00+00:00 2017-10-12T13:48:00+00:00
cisco-sa-20171018-ccs Cisco Cloud Services Platform 2100 Unauthorized Access Vulnerability 2017-10-18T16:00:00+00:00 2017-10-18T16:00:00+00:00
cisco-sa-20171103-bgp Cisco IOS XE Software Ethernet Virtual Private Network Border Gateway Protocol Denial of Service Vulnerability 2017-11-03T16:00:00+00:00 2022-12-16T21:17:38+00:00
cisco-sa-20171129-fxnx Cisco FXOS and NX-OS System Software CLI Command Injection Vulnerability 2017-11-29T16:00:00+00:00 2018-01-11T18:32:00+00:00
cisco-sa-20171129-ipp Cisco IP Phone 8800 Series Denial of Service Vulnerability 2017-11-29T16:00:00+00:00 2017-11-29T16:00:00+00:00
cisco-sa-20171129-nss Cisco Nexus Series Switches CLI Command Injection Vulnerability 2017-11-29T16:00:00+00:00 2018-01-11T18:32:00+00:00
cisco-sa-20171129-nxos Cisco NX-OS System Software Patch Signature Bypass Vulnerability 2017-11-29T16:00:00+00:00 2017-11-29T16:00:00+00:00
cisco-sa-20171129-nxos1 Cisco NX-OS System Software Patch Installation Arbitrary File Write Vulnerability 2017-11-29T16:00:00+00:00 2017-11-29T16:00:00+00:00
cisco-sa-20171129-nxos2 Cisco NX-OS System Software Image Signature Bypass Vulnerability 2017-11-29T16:00:00+00:00 2017-11-29T16:00:00+00:00
cisco-sa-20180103-warfp Cisco WebEx Advanced Recording Format Player Remote Code Execution Vulnerability 2018-01-03T16:00:00+00:00 2018-01-03T16:00:00+00:00
cisco-sa-20180103-wnrp Cisco WebEx Network Recording Player Buffer Overflow Vulnerability 2018-01-03T16:00:00+00:00 2018-01-03T16:00:00+00:00
cisco-sa-20180104-cpusidechannel CPU Side-Channel Information Disclosure Vulnerabilities 2018-01-04T22:20:00+00:00 2018-07-06T21:11:00+00:00
cisco-sa-20180110-ucm Cisco Unified Communications Manager Cross-Site Scripting Vulnerability 2018-01-10T16:00:00+00:00 2018-01-10T16:00:00+00:00
cisco-sa-20180117-300-500-smb1 Cisco Small Business 300 and 500 Series Managed Switches Cross-Site Scripting Vulnerability 2018-01-17T16:00:00+00:00 2018-01-17T16:00:00+00:00
cisco-sa-20180117-300-500-smb2 Cisco Small Business 300 and 500 Series Managed Switches HTTP Response Splitting Vulnerability 2018-01-17T16:00:00+00:00 2018-01-17T16:00:00+00:00
cisco-sa-20180117-acpe Cisco AnyConnect Profile Editor XML External Entity Injection Vulnerability 2018-01-17T16:00:00+00:00 2018-01-17T16:00:00+00:00
cisco-sa-20180117-cpi Cisco Prime Infrastructure Privilege Escalation Vulnerability 2018-01-17T16:00:00+00:00 2018-01-17T16:00:00+00:00
cisco-sa-20180117-cps Cisco Policy Suite Unauthenticated Information Disclosure Vulnerability 2018-01-17T16:00:00+00:00 2018-01-17T16:00:00+00:00
cisco-sa-20180117-cvp Cisco Unified Customer Voice Portal Denial of Service Vulnerability 2018-01-17T16:00:00+00:00 2018-02-15T20:49:00+00:00
cisco-sa-20180117-elm Cisco Enterprise License Manager Information Disclosure Vulnerability 2018-01-17T16:00:00+00:00 2019-07-23T20:56:00+00:00
cisco-sa-20180117-esasma Cisco Email Security and Content Security Management Appliance Privilege Escalation Vulnerability 2018-01-17T16:00:00+00:00 2018-01-23T16:28:00+00:00
cisco-sa-20180117-esc Cisco Elastic Services Controller Information Disclosure Vulnerability 2018-01-17T16:00:00+00:00 2018-01-17T16:00:00+00:00
cisco-sa-20180117-iess Cisco IOS Software for Industrial Ethernet 4010 Series Switches Test Command Arbitrary Code Execution and Denial of Service Vulnerability 2018-01-17T16:00:00+00:00 2018-01-17T16:00:00+00:00
cisco-sa-20180117-ise Cisco Identity Services Engine DOM Cross-Site Scripting Vulnerability 2018-01-17T16:00:00+00:00 2018-01-17T16:00:00+00:00
ID Description Published Updated
msrc_cve-2007-6109 Stack-based buffer overflow in emacs allows user-assisted attackers to cause a denial of service (application crash) and possibly have unspecified other impact via a large precision value in an integer format string specifier to the format function as demonstrated via a certain "emacs -batch -eval" command line. 2007-12-02T00:00:00.000Z 2026-02-18T02:01:34.000Z
msrc_cve-2007-6353 Integer overflow in exif.cpp in exiv2 library allows context-dependent attackers to execute arbitrary code via a crafted EXIF file that triggers a heap-based buffer overflow. 2007-12-02T00:00:00.000Z 2025-10-01T23:10:51.000Z
msrc_cve-2007-4998 cp when running with an option to preserve symlinks on multiple OSes allows local user-assisted attackers to overwrite arbitrary files via a symlink attack using crafted directories containing multiple source files that are copied to the same destination. 2008-01-02T00:00:00.000Z 2026-02-19T01:07:31.000Z
msrc_cve-2008-0888 The NEEDBITS macro in the inflate_dynamic function in inflate.c for unzip can be invoked using invalid buffers which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors that trigger a free of uninitialized or previously-freed data. 2008-03-02T00:00:00.000Z 2024-06-30T07:00:00.000Z
msrc_cve-2008-2149 Stack-based buffer overflow in the searchwn function in Wordnet 2.0 2.1 and 3.0 might allow context-dependent attackers to execute arbitrary code via a long command line option. NOTE: this issue probably does not cross privilege boundaries except in cases in which Wordnet is used as a back end. 2008-05-02T00:00:00.000Z 2024-06-30T07:00:00.000Z
msrc_cve-2008-3908 Multiple buffer overflows in Princeton WordNet (wn) 3.0 allow context-dependent attackers to execute arbitrary code via (1) a long argument on the command line; a long (2) WNSEARCHDIR (3) WNHOME or (4) WNDBVERSION environment variable; or (5) a user-supplied dictionary (aka data file). NOTE: since WordNet itself does not run with special privileges this issue only crosses privilege boundaries when WordNet is invoked as a third party component. 2008-09-02T00:00:00.000Z 2024-06-30T07:00:00.000Z
msrc_cve-2008-3912 libclamav in ClamAV before 0.94 allows attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors related to an out-of-memory condition. 2008-09-02T00:00:00.000Z 2020-10-25T00:00:00.000Z
msrc_cve-2008-3913 Multiple memory leaks in freshclam/manager.c in ClamAV before 0.94 might allow attackers to cause a denial of service (memory consumption) via unspecified vectors related to "error handling logic". 2008-09-02T00:00:00.000Z 2020-10-25T00:00:00.000Z
msrc_cve-2008-3914 Multiple unspecified vulnerabilities in ClamAV before 0.94 have unknown impact and attack vectors related to file descriptor leaks on the "error path" in (1) libclamav/others.c and (2) libclamav/sis.c. 2008-09-02T00:00:00.000Z 2020-10-25T00:00:00.000Z
msrc_cve-2009-0590 The ASN1_STRING_print_ex function in OpenSSL before 0.9.8k allows remote attackers to cause a denial of service (invalid memory access and application crash) via vectors that trigger printing of a (1) BMPString or (2) UniversalString with an invalid encoded length. 2009-03-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2009-1241 Unspecified vulnerability in ClamAV before 0.95 allows remote attackers to bypass detection of malware via a modified RAR archive. 2009-04-02T00:00:00.000Z 2020-10-25T00:00:00.000Z
msrc_cve-2009-1890 The stream_reqbody_cl function in mod_proxy_http.c in the mod_proxy module in the Apache HTTP Server before 2.3.3 when a reverse proxy is configured does not properly handle an amount of streamed data that exceeds the Content-Length value which allows remote attackers to cause a denial of service (CPU consumption) via crafted requests. 2009-07-02T00:00:00.000Z 2022-05-27T00:00:00.000Z
msrc_cve-2009-3767 libraries/libldap/tls_o.c in OpenLDAP 2.2 and 2.4 and possibly other versions when OpenSSL is used does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority a related issue to CVE-2009-2408. 2009-10-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2009-4484 Multiple stack-based buffer overflows in the CertDecoder::GetName function in src/asn.cpp in TaoCrypt in yaSSL before 1.9.9 as used in mysqld in MySQL 5.0.x before 5.0.90 MySQL 5.1.x before 5.1.43 MySQL 5.5.x through 5.5.0-m2 and other products allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption and daemon crash) by establishing an SSL connection and sending an X.509 client certificate with a crafted name field as demonstrated by mysql_overflow1.py and the vd_mysql5 module in VulnDisco Pack Professional 8.11. NOTE: this was originally reported for MySQL 5.0.51a. 2009-12-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2009-4487 nginx 0.7.64 writes data to a log file without sanitizing non-printable characters which might allow remote attackers to modify a window's title or possibly execute arbitrary commands or overwrite files via an HTTP request containing an escape sequence for a terminal emulator. 2010-01-02T00:00:00.000Z 2020-11-17T00:00:00.000Z
msrc_cve-2010-0291 The Linux kernel before 2.6.32.4 allows local users to gain privileges or cause a denial of service (panic) by calling the (1) mmap or (2) mremap function, aka the "do_mremap() mess" or "mremap/mmap mess." 2010-02-02T00:00:00.000Z 2026-02-18T03:04:10.000Z
msrc_cve-2010-0298 The x86 emulator in KVM 83 does not use the Current Privilege Level (CPL) and I/O Privilege Level (IOPL) in determining the memory access available to CPL3 code which allows guest OS users to cause a denial of service (guest OS crash) or gain privileges on the guest OS by leveraging access to a (1) IO port or (2) MMIO region a related issue to CVE-2010-0306. 2010-02-02T00:00:00.000Z 2026-02-19T01:07:42.000Z
msrc_cve-2010-0309 The pit_ioport_read function in the Programmable Interval Timer (PIT) emulation in i8254.c in KVM 83 does not properly use the pit_state data structure which allows guest OS users to cause a denial of service (host OS crash or hang) by attempting to read the /dev/port file. 2010-02-02T00:00:00.000Z 2026-02-19T01:07:06.000Z
msrc_cve-2010-2249 Memory leak in pngrutil.c in libpng before 1.2.44, and 1.4.x before 1.4.3, allows remote attackers to cause a denial of service (memory consumption and application crash) via a PNG image containing malformed Physical Scale (aka sCAL) chunks. 2010-06-02T00:00:00.000Z 2025-09-03T23:15:39.000Z
msrc_cve-2010-2542 Stack-based buffer overflow in the is_git_directory function in setup.c in Git before 1.7.2.1 allows local users to gain privileges via a long gitdir: field in a .git file in a working copy. 2010-08-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2010-2891 Buffer overflow in the smiGetNode function in lib/smi.c in libsmi 0.4.8 allows context-dependent attackers to execute arbitrary code via an Object Identifier (aka OID) represented as a numerical string containing many components separated by . (dot) characters. 2010-10-02T00:00:00.000Z 2026-02-19T01:18:21.000Z
msrc_cve-2010-2642 Heap-based buffer overflow in the AFM font parser in the dvi-backend component in Evince 2.32 and earlier, teTeX 3.0, t1lib 5.1.2, and possibly other products allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font in conjunction with a DVI file that is processed by the thumbnailer. 2011-01-02T00:00:00.000Z 2025-10-01T23:10:51.000Z
msrc_cve-2010-3865 Integer overflow in the rds_rdma_pages function in net/rds/rdma.c in the Linux kernel allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted iovec struct in a Reliable Datagram Sockets (RDS) request which triggers a buffer overflow. 2011-01-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2011-0640 The default configuration of udev on Linux does not warn the user before enabling additional Human Interface Device (HID) functionality over USB which allows user-assisted attackers to execute arbitrary programs via crafted USB data as demonstrated by keyboard and mouse data sent by malware on a smartphone that the user connected to the computer. 2011-01-02T00:00:00.000Z 2021-12-16T00:00:00.000Z
msrc_cve-2010-4756 The glob implementation in the GNU C Library (aka glibc or libc6) allows remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames, as demonstrated by glob expressions in STAT commands to an FTP daemon, a different vulnerability than CVE-2010-2632. 2011-03-02T00:00:00.000Z 2026-02-18T03:09:43.000Z
msrc_cve-2011-1429 Mutt does not verify that the smtps server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof an SSL SMTP server via an arbitrary certificate, a different vulnerability than CVE-2009-3766. 2011-03-02T00:00:00.000Z 2025-10-01T23:10:51.000Z
msrc_cve-2011-2501 The png_format_buffer function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 allows remote attackers to cause a denial of service (application crash) via a crafted PNG image that triggers an out-of-bounds read during the copying of error-message data. NOTE: this vulnerability exists because of a CVE-2004-0421 regression. NOTE: this is called an off-by-one error by some sources. 2011-07-02T00:00:00.000Z 2025-04-16T00:00:00.000Z
msrc_cve-2011-2691 The png_err function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 makes a function call using a NULL pointer argument instead of an empty-string argument, which allows remote attackers to cause a denial of service (application crash) via a crafted PNG image. 2011-07-02T00:00:00.000Z 2025-04-16T00:00:00.000Z
msrc_cve-2009-5063 Memory leak in the embedded_profile_len function in pngwutil.c in libpng before 1.2.39beta5 allows context-dependent attackers to cause a denial of service (memory leak or segmentation fault) via a JPEG image containing an iCCP chunk with a negative embedded profile length. NOTE: this is due to an incomplete fix for CVE-2006-7244. 2011-08-02T00:00:00.000Z 2026-02-18T14:28:28.000Z
msrc_cve-2010-4563 The Linux kernel when using IPv6 allows remote attackers to determine whether a host is sniffing the network by sending an ICMPv6 Echo Request to a multicast address and determining whether an Echo Reply is sent as demonstrated by thcping. 2012-02-02T00:00:00.000Z 2026-02-19T01:07:54.000Z
ID Description Published Updated
ncsc-2024-0246 Kwetsbaarheden verholpen in Siemens producten 2024-06-11T13:29:25.912614Z 2024-06-11T13:29:25.912614Z
ncsc-2024-0248 Kwetsbaarheden verholpen in Microsoft Windows 2024-06-11T18:06:57.087085Z 2024-06-11T18:11:31.381556Z
ncsc-2024-0249 Kwetsbaarheden verholpen in Microsoft Azure 2024-06-11T18:15:29.806897Z 2024-06-11T18:15:29.806897Z
ncsc-2024-0250 Kwetsbaarheden verholpen in Microsoft Visual Studio 2024-06-11T18:18:10.131111Z 2024-06-11T18:18:10.131111Z
ncsc-2024-0251 Kwetsbaarheden verholpen in Microsoft Office 2024-06-11T18:20:51.628241Z 2024-06-11T18:20:51.628241Z
ncsc-2024-0252 Kwetsbaarheden verholpen in Microsoft Dynamics 2024-06-11T18:23:19.082621Z 2024-06-11T18:23:19.082621Z
ncsc-2024-0253 Kwetsbaarheid verholpen in Adobe Photoshop 2024-06-13T13:31:15.643260Z 2024-06-13T13:31:15.643260Z
ncsc-2024-0254 Kwetsbaarheden verholpen in Adobe FrameMaker Publishing Server 2024-06-13T13:34:41.831468Z 2024-06-13T13:34:41.831468Z
ncsc-2024-0255 Kwetsbaarheden verholpen in Adobe Commerce 2024-06-13T13:36:13.246216Z 2024-07-01T07:10:59.549847Z
ncsc-2024-0256 Kwetsbaarheden verholpen in Adobe ColdFusion 2024-06-13T13:37:57.490381Z 2024-06-13T13:37:57.490381Z
ncsc-2024-0257 Kwetsbaarheid verholpen in Adobe Creative Cloud Desktop Application 2024-06-14T06:27:08.002611Z 2024-06-14T06:27:08.002611Z
ncsc-2024-0258 Kwetsbaarheden verholpen in GitLab Enterprise Edition en Community Edition 2024-06-14T06:28:31.318295Z 2024-06-14T06:28:31.318295Z
ncsc-2024-0259 Kwetsbaarheden verholpen in Adobe Experience Manager 2024-06-14T06:30:30.926535Z 2024-06-14T06:30:30.926535Z
ncsc-2024-0260 Kwetsbaarheden verholpen in Nvidia GPU Drivers 2024-06-14T06:34:54.620125Z 2024-06-14T06:34:54.620125Z
ncsc-2024-0261 Kwetsbaarheid verholpen in Fortinet FortiOS 2024-06-14T09:59:56.652183Z 2024-06-14T09:59:56.652183Z
ncsc-2024-0262 Kwetsbaarheden verholpen in VMware vCenter 2024-06-18T11:46:03.858476Z 2024-06-18T11:46:03.858476Z
ncsc-2024-0263 Kwetsbaarheden verholpen in Autodesk Autocad 2024-06-20T14:09:54.121906Z 2024-06-20T14:09:54.121906Z
ncsc-2024-0264 Kwetsbaarheden verholpen in Avaya IP Office 2024-06-25T10:17:16.686897Z 2024-06-25T10:17:16.686897Z
ncsc-2024-0265 Kwetsbaarheid verholpen in XWiki 2024-06-25T10:17:56.645201Z 2024-06-25T10:17:56.645201Z
ncsc-2024-0266 Kwetsbaarheden verholpen in WordPress 2024-06-25T12:19:50.298884Z 2024-06-25T12:19:50.298884Z
ncsc-2024-0267 Kwetsbaarheden verholpen in Progress MOVEit 2024-06-26T07:27:55.195431Z 2024-06-26T08:58:01.371553Z
ncsc-2024-0268 Kwetsbaarheden verholpen in Progress WhatsUp Gold 2024-06-26T07:43:11.795773Z 2024-08-08T07:50:41.453544Z
ncsc-2024-0269 Kwetsbaarheden verholpen in VMware ESXi en vCenter Server 2024-06-26T09:02:10.988453Z 2024-07-30T09:32:13.311694Z
ncsc-2024-0270 Kwetsbaarheden verholpen in GitLab Enterprise Edition en Community Edition 2024-06-27T13:09:06.950898Z 2024-07-04T06:45:26.935999Z
ncsc-2024-0271 Kwetsbaarheid verholpen in Juniper Session Smart Router 2024-06-28T09:55:17.082602Z 2024-06-28T09:55:17.082602Z
ncsc-2024-0272 Kwetsbaarheid verholpen in OpenSSH 2024-07-01T12:21:57.127505Z 2024-07-01T15:37:23.231069Z
ncsc-2024-0273 Kwetsbaarheden ontdekt in Kiloview P1 4G Video Encoder en P2 4G Video Encoder 2024-07-02T07:04:39.395441Z 2024-07-02T07:04:39.395441Z
ncsc-2024-0274 Kwetsbaarheid verholpen in GeoServer 2024-07-02T11:40:34.048090Z 2024-07-05T09:41:10.197056Z
ncsc-2024-0275 Kwetsbaarheden verholpen in Apache HHTP-server 2024-07-02T11:44:22.653047Z 2024-07-02T11:44:22.653047Z
ncsc-2024-0276 Kwetsbaarheden verholpen in Splunk 2024-07-02T13:15:06.374293Z 2024-07-02T13:15:06.374293Z
ID Description Published Updated
nn-2025:10-01 Authenticated SQL Injection on CLI functionality in Guardian/CMC before 25.3.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:4-01 Client-side path traversal in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:5-01 Incorrect authorization for CLI in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:6-01 Authenticated SQL Injection on Smart Polling functionality in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:7-01 Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:8-01 Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:9-01 Path traversal in Time Machine functionality in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:11-01 Stored Cross-Site Scripting (XSS) in Dashboards in Guardian/CMC before 25.4.0 2025-11-25T11:00:00.000Z 2025-11-26T11:00:00.000Z
nn-2025:12-01 HTML injection in in Time Machine functionality in Guardian/CMC before 25.5.0 2025-12-18T11:00:00.000Z 2025-12-18T11:00:00.000Z
nn-2025:13-01 Stored Cross-Site Scripting (XSS) in Reports in Guardian/CMC before 25.5.0 2025-12-18T11:00:00.000Z 2025-12-18T11:00:00.000Z
nn-2025:14-01 HTML injection in Asset List in Guardian/CMC before 25.5.0 2025-12-18T11:00:00.000Z 2025-12-18T11:00:00.000Z
nn-2025:15-01 Path traversal in Import Arc data archive functionality in Guardian/CMC before 25.5.0 2025-12-18T11:00:00.000Z 2025-12-18T11:00:00.000Z
nn-2025:16-01 HTML injection in Alerted Nodes Dashboard in Guardian/CMC before 25.6.0 2026-03-04T11:00:00.000Z 2026-03-04T11:00:00.000Z
nn-2025:17-01 HTML injection in Sensor Map in CMC before 25.6.0 2026-03-04T11:00:00.000Z 2026-03-04T11:00:00.000Z
nn-2025:18-01 Lack of TLS certificate validation when connecting Arc to a Guardian or CMC, in Arc before v2.2.0 2026-03-04T11:00:00.000Z 2026-03-04T11:00:00.000Z
nn-2026:1-01 Incorrect authorization for Threat Intelligence in Guardian/CMC before 26.0.0 2026-04-15T11:00:00.000Z 2026-04-15T11:00:00.000Z
nn-2026:2-01 Stored Cross-Site Scripting (XSS) in Assets and Nodes in Guardian/CMC before 26.0.0 2026-04-15T11:00:00.000Z 2026-04-15T11:00:00.000Z
ID Description Published Updated
opensuse-su-2016:2556-1 Security update for ffmpeg 2016-10-18T08:52:34Z 2016-10-18T08:52:34Z
opensuse-su-2016:2560-1 Security update for ffmpeg 2016-10-18T08:52:34Z 2016-10-18T08:52:34Z
opensuse-su-2016:2597-1 Security update for Chromium 2016-10-19T15:50:17Z 2016-10-19T15:50:17Z
opensuse-su-2016:2732-1 Security update for chromium 2016-11-04T16:43:12Z 2016-11-04T16:43:12Z
opensuse-su-2016:2733-1 Security update for chromium 2016-11-04T16:43:12Z 2016-11-04T16:43:12Z
opensuse-su-2016:3019-1 Security update for MozillaThunderbird 2016-12-06T09:05:20Z 2016-12-06T09:05:20Z
opensuse-su-2017:0563-1 Security update for Chromium 2016-12-16T22:45:25Z 2016-12-16T22:45:25Z
opensuse-su-2016:3307-1 Security update for MozillaThunderbird 2016-12-30T17:01:32Z 2016-12-30T17:01:32Z
opensuse-su-2016:3308-1 Security update for MozillaThunderbird 2016-12-30T17:01:32Z 2016-12-30T17:01:32Z
opensuse-su-2017:0034-1 Security update for kopete 2017-01-05T13:34:36Z 2017-01-05T13:34:36Z
opensuse-su-2017:0035-1 Security update for kopete 2017-01-05T13:34:36Z 2017-01-05T13:34:36Z
opensuse-su-2017:0093-1 Security update for irssi 2017-01-09T16:14:54Z 2017-01-09T16:14:54Z
opensuse-su-2017:0094-1 Security update for irssi 2017-01-09T16:14:54Z 2017-01-09T16:14:54Z
opensuse-su-2017:0140-1 Security update for ark 2017-01-16T14:46:13Z 2017-01-16T14:46:13Z
opensuse-su-2017:0150-1 Security update for ark 2017-01-16T14:46:13Z 2017-01-16T14:46:13Z
opensuse-su-2017:0195-1 Security update for libgit2 2017-01-18T13:51:54Z 2017-01-18T13:51:54Z
opensuse-su-2017:0354-1 Security update for MozillaThunderbird 2017-02-01T17:54:52Z 2017-02-01T17:54:52Z
opensuse-su-2017:0357-1 Security update for MozillaThunderbird 2017-02-01T17:54:52Z 2017-02-01T17:54:52Z
opensuse-su-2017:0361-1 Security update for nginx 2017-02-01T21:19:46Z 2017-02-01T21:19:46Z
opensuse-su-2017:0362-1 Security update for nginx 2017-02-01T21:19:46Z 2017-02-01T21:19:46Z
opensuse-su-2017:0405-1 Security update for libgit2 2017-02-06T12:58:42Z 2017-02-06T12:58:42Z
opensuse-su-2017:0413-1 Security update for irssi 2017-02-07T12:14:55Z 2017-02-07T12:14:55Z
opensuse-su-2017:0565-1 Security update of chromium 2017-02-18T10:40:17Z 2017-02-18T10:40:17Z
opensuse-su-2017:0677-1 Security update for kdelibs4, kio 2017-03-13T09:55:34Z 2017-03-13T09:55:34Z
opensuse-su-2017:0680-1 Security update for kdelibs4, kio 2017-03-13T09:55:34Z 2017-03-13T09:55:34Z
opensuse-su-2017:0687-1 Security update for MozillaThunderbird 2017-03-14T14:03:02Z 2017-03-14T14:03:02Z
opensuse-su-2017:0688-1 Security update for MozillaThunderbird 2017-03-14T14:03:02Z 2017-03-14T14:03:02Z
opensuse-su-2017:0737-1 Security update for irssi 2017-03-17T19:52:10Z 2017-03-17T19:52:10Z
opensuse-su-2017:0739-1 Security update for irssi 2017-03-17T19:52:10Z 2017-03-17T19:52:10Z
opensuse-su-2017:0738-1 Security update for Chromium 2017-03-17T20:07:47Z 2017-03-17T20:07:47Z
ID Description Published Updated
ID Description Published Updated
rhsa-2002:103 Red Hat Security Advisory: : : : Updated Apache packages fix chunked encoding issue 2002-06-19T23:57:00+00:00 2025-11-21T17:24:50+00:00
rhsa-2002:118 Red Hat Security Advisory: apache security update for Stronghold 2002-06-20T13:22:00+00:00 2025-11-21T17:24:50+00:00
rhsa-2002:129 Red Hat Security Advisory: php security update 2002-06-26T00:00:00+00:00 2025-11-21T17:24:52+00:00
rhsa-2002:101 Red Hat Security Advisory: : Updated mailman packages available 2002-06-27T08:29:00+00:00 2025-11-21T17:24:52+00:00
rhsa-2002:127 Red Hat Security Advisory: : : : Updated OpenSSH packages fix various security issues 2002-06-27T21:45:00+00:00 2025-11-21T17:24:52+00:00
rhsa-2002:117 Red Hat Security Advisory: : : : Updated secureweb packages fix chunked encoding issue 2002-06-30T15:23:00+00:00 2025-11-21T17:24:50+00:00
rhsa-2001:164 Red Hat Security Advisory: : Updated secureweb packages available 2002-07-01T10:35:00+00:00 2025-11-21T17:24:43+00:00
rhsa-2002:051 Red Hat Security Advisory: : : : New Squid packages available 2002-07-04T02:44:00+00:00 2025-11-21T17:24:46+00:00
rhsa-2002:131 Red Hat Security Advisory: openssh security update 2002-07-12T22:37:00+00:00 2025-11-21T17:24:52+00:00
rhsa-2002:130 Red Hat Security Advisory: squid security update 2002-07-12T22:58:00+00:00 2025-11-21T17:24:52+00:00
rhsa-2002:125 Red Hat Security Advisory: mailman security update 2002-07-12T22:59:00+00:00 2025-11-21T17:24:53+00:00
rhsa-2002:126 Red Hat Security Advisory: apache security update 2002-07-12T23:00:00+00:00 2025-11-21T17:24:52+00:00
rhsa-2002:128 Red Hat Security Advisory: Updated kernel with information security fixes, bug fixes, and updated drivers 2002-07-16T15:57:00+00:00 2025-11-21T17:24:52+00:00
rhsa-2002:134 Red Hat Security Advisory: : Updated mod_ssl packages available 2002-07-16T19:23:00+00:00 2025-11-21T17:24:55+00:00
rhsa-2002:136 Red Hat Security Advisory: mod_ssl security update 2002-07-16T21:35:00+00:00 2025-11-21T17:24:54+00:00
rhsa-2002:135 Red Hat Security Advisory: : : : Updated secureweb packages available 2002-07-24T08:37:00+00:00 2025-11-21T17:24:54+00:00
rhsa-2002:139 Red Hat Security Advisory: : Updated glibc packages fix vulnerabilities in resolver 2002-07-25T02:15:00+00:00 2025-11-21T17:24:55+00:00
rhsa-2002:132 Red Hat Security Advisory: : : : Updated util-linux package fixes password locking race 2002-07-29T15:00:00+00:00 2025-11-21T17:24:53+00:00
rhsa-2002:137 Red Hat Security Advisory: util-linux security update 2002-07-29T15:51:00+00:00 2025-11-21T17:24:54+00:00
rhsa-2002:119 Red Hat Security Advisory: bind security update 2002-07-30T08:07:00+00:00 2025-11-21T17:24:50+00:00
rhsa-2002:157 Red Hat Security Advisory: openssl security update 2002-07-30T10:46:00+00:00 2025-11-21T17:24:57+00:00
rhsa-2002:155 Red Hat Security Advisory: : Updated openssl packages fix remote vulnerabilities 2002-07-30T10:47:00+00:00 2025-11-21T17:24:57+00:00
rhsa-2002:154 Red Hat Security Advisory: mm security update 2002-07-31T08:50:00+00:00 2025-11-21T17:24:57+00:00
rhsa-2002:153 Red Hat Security Advisory: : Updated mm packages fix temporary file handling 2002-07-31T08:51:00+00:00 2025-11-21T17:24:57+00:00
rhsa-2002:164 Red Hat Security Advisory: openssl, mm, mod_ssl security update for Stronghold 2002-07-31T15:58:00+00:00 2025-11-21T17:24:59+00:00
rhsa-2002:150 Red Hat Security Advisory: apache security update for Stronghold 2002-07-31T16:23:00+00:00 2025-11-21T17:24:56+00:00
rhsa-2002:146 Red Hat Security Advisory: mod_ssl security update for Stronghold 2002-08-01T21:25:00+00:00 2025-11-21T17:24:55+00:00
rhsa-2002:122 Red Hat Security Advisory: gaim security update 2002-08-02T13:50:00+00:00 2025-11-21T17:24:51+00:00
rhsa-2002:152 Red Hat Security Advisory: libpng security update 2002-08-05T07:25:00+00:00 2025-11-21T17:24:56+00:00
rhsa-2002:161 Red Hat Security Advisory: openssl security update 2002-08-05T18:59:00+00:00 2025-11-21T17:24:58+00:00
ID Description Published Updated
sevd-2020-224-05 PowerChute Business Edition 2020-08-11T00:00:00.000Z 2020-08-11T00:00:00.000Z
sevd-2020-224-06 Harmony® eXLhoist 2020-08-11T00:00:00.000Z 2020-08-11T00:00:00.000Z
sevd-2020-224-07 SoMove 2020-08-11T00:00:00.000Z 2020-08-11T00:00:00.000Z
sevd-2020-224-08 Schneider Electric PACTware 2020-08-11T00:00:00.000Z 2020-08-13T00:00:00.000Z
sevd-2020-252-01 SCADAPack x70 Remote Connect and SCADAPack x70 Security Administrator 2020-09-08T00:00:00.000Z 2021-02-09T00:00:00.000Z
sevd-2020-287-01 Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules 2020-10-13T00:00:00.000Z 2025-06-10T04:00:00.000Z
sevd-2020-287-02 Wibu-Systems CodeMeter Vulnerabilities 2020-10-13T00:00:00.000Z 2020-12-08T00:00:00.000Z
sevd-2020-287-03 Smartlink, PowerTag, and Wiser Series Gateways 2020-10-13T00:00:00.000Z 2020-10-13T00:00:00.000Z
sevd-2020-287-04 EcoStruxure™ and SmartStruxure™ Power Monitoring and SCADA Software 2020-10-13T00:00:00.000Z 2020-10-13T00:00:00.000Z
sevd-2020-315-02 EcoStruxure™ Operator Terminal Expert (Vijeo XD), Pro-face BLUE and WinGP runtime 2020-11-09T00:00:00.000Z 2021-01-11T00:00:00.000Z
sevd-2020-315-03 Interactive Graphical SCADA System (IGSS) 2020-11-10T00:00:00.000Z 2021-04-15T00:00:00.000Z
sevd-2020-315-04 EcoStruxure Building Operation (EBO) 2020-11-10T00:00:00.000Z 2020-11-10T00:00:00.000Z
sevd-2020-315-05 Modicon M100/M200/M221 Programmable Logic Controller 2020-11-10T00:00:00.000Z 2021-01-12T00:00:00.000Z
sevd-2020-315-06 Easergy T300 2020-11-10T00:00:00.000Z 2020-12-08T00:00:00.000Z
sevd-2020-315-01 Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules 2020-11-10T12:05:04.000Z 2023-02-14T12:05:00.000Z
sevd-2020-315-07 PLC Simulator on EcoStruxure™ Control Expert and Process Expert 2020-11-10T15:07:11.000Z 2023-03-14T15:07:11.000Z
sevd-2020-343-01 EcoStruxure™ Control Expert, EcoStruxure™ Process Expert and RemoteConnect™ 2020-12-08T00:00:00.000Z 2021-07-13T00:00:00.000Z
sevd-2020-343-02 EcoStruxure Geo SCADA Expert 2020-12-08T00:00:00.000Z 2020-12-08T00:00:00.000Z
sevd-2020-343-03 Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modicon Premium and associated Communication Modules (V2.0) 2020-12-08T00:00:00.000Z 2021-08-10T00:00:00.000Z
sevd-2020-343-04 Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modicon Premium and associated Communication Modules 2020-12-08T00:00:00.000Z 2021-08-10T00:00:00.000Z
sevd-2020-343-08 Modicon M580, Modicon M340, Legacy Controllers Modicon Quantum & Modicon Premium 2020-12-08T00:00:00.000Z 2020-12-08T00:00:00.000Z
sevd-2020-343-09 Modicon M258 Logic Controllers and SoMachine/ SoMachine Motion Software 2020-12-08T00:00:00.000Z 2020-12-08T00:00:00.000Z
sevd-2020-343-07 SNMP Service on Modicon M340 and Associated Communication Modules 2020-12-08T05:49:51.000Z 2022-09-13T05:49:51.000Z
sevd-2020-343-06 Web Server on Modicon M340, Legacy Offers Modicon Quantum Modicon Premium and associated Communication Modules 2020-12-08T09:08:01.000Z 2020-12-08T09:08:01.000Z
sevd-2020-343-05 Web Server on Modicon M340, Legacy Offers Modicon Quantum and Modicon Premium and Associated Communication Modules 2020-12-08T21:04:43.000Z 2022-09-13T20:04:43.000Z
sevd-2020-353-02 Treck HTTP Server Vulnerability on TM3 Bus Coupler Modules (V2.0) 2020-12-18T00:00:00.000Z 2021-08-10T00:00:00.000Z
sevd-2021-012-02 EcoStruxure Power Build - Rapsody 2021-01-12T08:32:35.000Z 2022-06-14T18:30:00.000Z
sevd-2021-040-01 PowerLogic Power Metering Products 2021-02-08T00:00:00.000Z 2021-02-08T00:00:00.000Z
sevd-2021-068-01 IGSS (Interactive Graphical SCADA System) 2021-03-09T00:00:00.000Z 2021-03-09T00:00:00.000Z
sevd-2021-068-02 PowerLogic ION7400 / PM8000 / ION9000 Power Meters 2021-03-09T00:00:00.000Z 2021-03-09T00:00:00.000Z
ID Description Published Updated
sca-2023-0005 Vulnerabilities in SICK EventCam App 2023-06-19T11:00:00.000Z 2023-06-19T11:00:00.000Z
sca-2023-0006 Vulnerabilities in SICK ICR890-4 2023-07-10T13:00:00.000Z 2023-07-10T13:00:00.000Z
sca-2023-0007 Vulnerabilities in SICK LMS5xx 2023-08-25T11:00:00.000Z 2023-08-25T11:00:00.000Z
sca-2023-0009 Vulnerability in Wibu-Systems CodeMeter Runtime affects multiple SICK products 2023-09-29T10:00:00.000Z 2023-09-29T10:00:00.000Z
sca-2023-0008 Vulnerability in SICK SIM1012 2023-09-29T13:00:00.000Z 2023-09-29T13:00:00.000Z
sca-2023-0010 Vulnerabilities in SICK Application Processing Unit 2023-10-09T11:00:00.000Z 2023-10-09T11:00:00.000Z
sca-2023-0011 Vulnerability in multiple SICK Flexi Soft Gateways 2023-10-23T11:00:00.000Z 2023-10-23T11:00:00.000Z
sca-2024-0001 Vulnerability in SICK Logistics Analytics Products and SICK Field Analytics 2024-01-29T00:00:00.000Z 2024-01-29T00:00:00.000Z
sca-2024-0002 Vulnerability in SICK MSC800 2024-09-11T23:00:00.000Z 2024-09-11T23:00:00.000Z
sca-2024-0003 Critical vulnerability in multiple SICK products 2024-10-17T13:00:00.000Z 2024-10-17T13:00:00.000Z
sca-2024-0004 Third party vulnerabilities in SICK CDE-100 2024-11-07T12:00:00.000Z 2024-11-07T12:00:00.000Z
sca-2024-0005 Vulnerability in SICK Incoming Goods Suite 2024-11-19T00:00:00.000Z 2024-11-19T00:00:00.000Z
sca-2024-0006 Critical vulnerabilities in SICK InspectorP61x, InspectorP62x and TiM3xx 2024-12-06T00:00:00.000Z 2024-12-06T00:00:00.000Z
sca-2024-0007 Vulnerability in SICK OLM 2024-12-31T00:00:00.000Z 2024-12-31T00:00:00.000Z
sca-2025-0002 Vulnerability in SICK Lector8xx and SICK InspectorP8xx 2025-02-14T10:19:00.000Z 2025-02-14T10:19:00.000Z
sca-2025-0001 Multiple vulnerabilities in SICK MEAC300 2025-02-14T14:00:00.000Z 2025-02-21T14:00:00.000Z
sca-2025-0003 FreeRTOS Vulnerabilities have no impact on SICK Products 2025-02-28T00:00:00.000Z 2025-05-20T11:00:00.000Z
sca-2025-0004 Critical vulnerabilities in SICK DL100-2xxxxxxx 2025-03-14T11:00:00.000Z 2025-03-14T11:00:00.000Z
sca-2025-0005 Vulnerabilities in SICK Flexi Compact 2025-04-28T10:00:00.000Z 2025-04-28T10:00:00.000Z
sca-2025-0006 Vulnerability affecting picoScan and multiScan 2025-04-28T13:00:00.000Z 2025-04-28T13:00:00.000Z
sca-2025-0007 Multiple vulnerabilities in SICK Field Analytics and SICK Media Server 2025-06-12T13:00:00.000Z 2025-06-12T13:00:00.000Z
sca-2025-0008 Multiple vulnerabilities in Endress+Hauser MEAC300-FNADE4 2025-07-03T13:00:00.000Z 2025-07-03T13:00:00.000Z
sca-2025-0009 Vulnerabilities affecting SICK TDC-E210GC 2025-08-01T13:00:00.000Z 2025-08-01T13:00:00.000Z
sca-2025-0010 Multiple vulnerabilities in SICK Enterprise Analytics and SICK Logistic Analytics Products 2025-10-02T13:00:00.000Z 2025-10-02T13:00:00.000Z
sca-2025-0011 Vulnerabilities affecting Endress+Hauser SSG-E210GC 2025-10-02T13:00:00.000Z 2025-10-02T13:00:00.000Z
sca-2025-0012 Sudo vulnerability affects SICK SID products 2025-10-27T11:00:00.000Z 2025-10-27T14:00:00.000Z
sca-2025-0013 Vulnerabilities affecting SICK TLOC100-100 2025-10-27T14:00:00.000Z 2025-11-11T14:00:00.000Z
sca-2025-0014 CodeMeter vulnerablity affects SICK CODE-LOC and SICK LIDAR-LOC 2025-11-03T11:00:00.000Z 2025-11-03T14:00:00.000Z
sca-2026-0001 Vulnerabilities affecting SICK TDC-X401GL 2026-01-15T14:00:00.000Z 2026-01-15T14:00:00.000Z
sca-2026-0002 Vulnerabilities affecting SICK Incoming Goods Suite 2026-01-15T14:00:00.000Z 2026-01-22T19:00:00.000Z
ID Description Published Updated
ssa-591405 SSA-591405: Web Vulnerabilities in SCALANCE S-600 Family 2020-02-11T00:00:00Z 2021-04-13T00:00:00Z
ssa-780073 SSA-780073: Denial of Service Vulnerability in PROFINET Devices via DCE-RPC Packets 2020-02-11T00:00:00Z 2024-07-09T00:00:00Z
ssa-951513 SSA-951513: Clickjacking Vulnerability in SCALANCE S, SCALANCE X-300, X-200IRT, X-200RNA and X-200 Switch Families 2020-02-11T00:00:00Z 2022-12-13T00:00:00Z
ssa-978220 SSA-978220: Denial of Service Vulnerability over SNMP in Multiple Industrial Products 2020-02-11T00:00:00Z 2023-04-11T00:00:00Z
ssa-844761 SSA-844761: Multiple Vulnerabilities in SiNVR/SiVMS Video Server 2020-03-10T00:00:00Z 2024-01-09T00:00:00Z
ssa-102233 SSA-102233: SegmentSmack in VxWorks-based Industrial Devices 2020-04-14T00:00:00Z 2023-04-11T00:00:00Z
ssa-593272 SSA-593272: SegmentSmack in Interniche IP-Stack based Industrial Devices 2020-04-14T00:00:00Z 2025-07-08T00:00:00Z
ssa-312271 SSA-312271: Unquoted Search Path Vulnerability in Windows-based Industrial Software Applications 2020-06-09T00:00:00Z 2022-12-13T00:00:00Z
ssa-689942 SSA-689942: Denial-of-Service and DLL Hijacking Vulnerabilities in Multiple SIMATIC Software Products 2020-06-09T00:00:00Z 2021-04-13T00:00:00Z
ssa-455843 SSA-455843: WIBU Systems CodeMeter Runtime Vulnerabilities in Siemens Products 2020-09-08T00:00:00Z 2022-02-17T00:00:00Z
ssa-534763 SSA-534763: Special Register Buffer Data Sampling (SRBDS) aka Crosstalk in Industrial Products 2020-09-08T00:00:00Z 2022-03-08T00:00:00Z
ssa-542525 SSA-542525: Authentication Vulnerabilities in SIMATIC HMI Products 2020-09-08T00:00:00Z 2021-06-08T00:00:00Z
ssa-492828 SSA-492828: Denial-of-Service Vulnerability in SIMATIC S7-300 CPUs and SINUMERIK Controller 2020-11-10T00:00:00Z 2022-08-09T00:00:00Z
ssa-478893 SSA-478893: TightVNC Vulnerabilities in Industrial Products (Revoked) 2020-12-08T00:00:00Z 2021-05-11T00:00:00Z
ssa-541017 SSA-541017: Embedded TCP/IP Stack Vulnerabilities (AMNESIA:33) in SIRIUS 3RW5 Modbus TCP and SENTRON PAC / 3VA Devices 2020-12-08T00:00:00Z 2021-04-13T00:00:00Z
ssa-139628 SSA-139628: Vulnerabilities in Web Server for Scalance X Products 2021-01-12T00:00:00Z 2021-09-14T00:00:00Z
ssa-622830 SSA-622830: Multiple File Parsing Vulnerabilities in JT2Go and Teamcenter Visualization before V13.1.0 2021-01-12T00:00:00Z 2021-05-17T00:00:00Z
ssa-646763 SSA-646763: DNSpooq - Dnsmasq Vulnerabilities in SCALANCE and RUGGEDCOM Devices 2021-01-19T00:00:00Z 2021-05-11T00:00:00Z
ssa-362164 SSA-362164: Predictable Initial Sequence Numbers in the TCP/IP Stack of Nucleus RTOS 2021-02-09T00:00:00Z 2022-11-08T00:00:00Z
ssa-428051 SSA-428051: Privilege Escalation Vulnerability in TIA Administrator 2021-02-09T00:00:00Z 2021-09-14T00:00:00Z
ssa-663999 SSA-663999: Multiple File Parsing Vulnerabilities in JT2Go and Teamcenter Visualization before V13.1.0.1 2021-02-09T00:00:00Z 2021-05-17T00:00:00Z
ssa-794542 SSA-794542: Insecure Folder Permissions in SIMARIS Configuration 2021-02-09T00:00:00Z 2021-05-11T00:00:00Z
ssa-296266 SSA-296266: Denial-of-Service Vulnerability in SCALANCE and RUGGEDCOM Devices 2021-03-09T00:00:00Z 2021-04-13T00:00:00Z
ssa-541018 SSA-541018: Embedded TCP/IP Stack Vulnerabilities (AMNESIA:33) in SENTRON PAC / 3VA Devices (Part 2) 2021-03-09T00:00:00Z 2022-03-08T00:00:00Z
ssa-715184 SSA-715184: Multiple File Parsing Vulnerabilities in Solid Edge 2021-03-09T00:00:00Z 2021-04-13T00:00:00Z
ssa-783481 SSA-783481: Denial-of-Service Vulnerability in LOGO! 8 BM 2021-03-09T00:00:00Z 2024-10-08T00:00:00Z
ssa-936080 SSA-936080: Multiple Vulnerabilities in Third-Party Component libcurl 2021-03-09T00:00:00Z 2021-09-14T00:00:00Z
ssa-979775 SSA-979775: Stack Overflow Vulnerability in SCALANCE and RUGGEDCOM Devices 2021-03-09T00:00:00Z 2021-04-13T00:00:00Z
ssa-163226 SSA-163226: CELL File Parsing Vulnerability in Tecnomatix RobotExpert 2021-04-13T00:00:00Z 2021-04-13T00:00:00Z
ssa-185699 SSA-185699: Out of Bounds Write Vulnerabilities (NAME:WRECK) in the DNS Module of Nucleus RTOS 2021-04-13T00:00:00Z 2022-01-11T00:00:00Z
ID Description Published Updated
suse-su-2015:0758-1 Security update for mutt 2014-03-17T16:14:56Z 2014-03-17T16:14:56Z
suse-su-2015:0985-1 Security update for sudo 2014-03-20T16:16:51Z 2014-03-20T16:16:51Z
suse-ru-2015:0992-1 Security update for lxc 2014-04-01T09:58:11Z 2014-04-01T09:58:11Z
suse-su-2015:0841-1 Recommended update for mono-core 2014-04-10T23:19:27Z 2014-04-10T23:19:27Z
suse-su-2015:0962-1 Security update for curl 2014-04-15T15:50:15Z 2014-04-15T15:50:15Z
suse-su-2015:1227-1 Security update for strongswan 2014-05-14T09:26:44Z 2014-05-14T09:26:44Z
suse-su-2015:0674-1 Security update for xorg-x11-libs 2014-05-15T16:30:57Z 2014-05-15T16:30:57Z
suse-su-2015:0298-1 Recommended update for clamav 2014-05-28T15:49:37Z 2014-05-28T15:49:37Z
suse-su-2015:0871-1 Recommended update for clamav 2014-05-28T15:49:37Z 2014-05-28T15:49:37Z
suse-su-2015:0675-1 Security update for gnutls 2014-06-03T20:02:07Z 2014-06-03T20:02:07Z
suse-su-2015:0580-1 Recommended update for util-linux 2014-06-04T09:10:15Z 2014-06-04T09:10:15Z
suse-su-2015:0886-1 Security update for struts 2014-06-20T20:43:07Z 2014-06-20T20:43:07Z
suse-su-2015:0427-1 Recommended update for xorg-x11-server 2014-06-27T12:01:01Z 2014-06-27T12:01:01Z
suse-su-2015:1025-1 Recommended update for xorg-x11-server 2014-06-27T12:01:01Z 2014-06-27T12:01:01Z
suse-ru-2015:0696-1 Security update for puppet 2014-06-30T15:48:55Z 2014-06-30T15:48:55Z
suse-su-2015:1015-1 Recommended update for dnsmasq 2014-07-01T23:04:51Z 2014-07-01T23:04:51Z
suse-su-2015:0901-1 Security update for libtasn1 2014-07-17T14:16:08Z 2014-07-17T14:16:08Z
suse-su-2015:0498-1 Security update for oracle-update 2014-07-18T09:38:45Z 2014-07-18T09:38:45Z
suse-su-2015:0498-2 Security update for oracle-update 2014-07-18T13:49:14Z 2014-07-18T13:49:14Z
suse-su-2015:0907-1 Security update for oracle-update 2014-07-18T13:49:14Z 2014-07-18T13:49:14Z
suse-su-2015:0259-3 Security update for ntp 2014-07-21T14:05:24Z 2014-07-21T14:05:24Z
suse-su-2015:0575-1 Security update for CUPS 2014-07-29T16:37:43Z 2014-07-29T16:37:43Z
suse-su-2015:1011-1 Security update for CUPS 2014-07-29T16:37:43Z 2014-07-29T16:37:43Z
suse-su-2015:0620-1 Security update for MySQL 2014-08-19T23:56:10Z 2014-08-19T23:56:10Z
suse-su-2015:0946-1 Security update for MySQL 2014-08-19T23:56:10Z 2014-08-19T23:56:10Z
suse-su-2015:1177-1 Security update for MySQL 2014-08-19T23:56:10Z 2014-08-19T23:56:10Z
suse-su-2015:0709-1 Security update for subversion 2014-08-19T23:56:28Z 2014-08-19T23:56:28Z
suse-ru-2015:0591-1 Recommended update for apache2-mod_nss 2014-08-22T11:39:07Z 2014-08-22T11:39:07Z
suse-ru-2015:0410-1 Security update for openstack-dashboard 2014-08-28T12:06:29Z 2014-08-28T12:06:29Z
suse-ru-2015:0794-1 Security update for glibc 2014-08-29T01:15:58Z 2014-08-29T01:15:58Z
ID Description Published Updated
alsa-2020:0598 Important: nodejs:12 security update 2020-02-25T13:06:23Z 2020-02-25T13:06:23Z
alsa-2020:0633 Important: ppp security update 2020-02-27T14:59:09Z 2021-08-11T08:54:00Z
alsa-2020:0902 Important: icu security update 2020-03-19T10:43:49Z 2023-03-13T16:34:37Z
alsa-2020:0903 Important: zsh security update 2020-03-19T10:45:02Z 2021-11-12T10:20:55Z
alsa-2020:1293 Important: nodejs:12 security update 2020-04-02T07:23:16Z 2020-04-02T07:23:16Z
alsa-2020:1317 Important: nodejs:10 security update 2020-04-06T07:21:40Z 2020-04-06T07:21:40Z
alsa-2020:1379 Important: container-tools:rhel8 security and bug fix update 2020-04-07T09:15:36Z 2020-04-07T09:15:25Z
alsa-2020:1358 Important: virt:rhel security and bug fix update 2020-04-07T12:58:04Z 2021-12-23T15:15:25Z
alsa-2020:1360 Important: container-tools:1.0 security update 2020-04-07T12:58:09Z 2020-04-07T12:58:07Z
alsa-2020:1577 Moderate: exiv2 security, bug fix, and enhancement update 2020-04-28T08:52:31Z 2021-11-12T10:20:55Z
alsa-2020:1581 Low: wavpack security update 2020-04-28T08:53:05Z 2021-11-12T10:20:55Z
alsa-2020:1605 Moderate: python27:2.7 security, bug fix, and enhancement update 2020-04-28T08:55:59Z 2020-04-28T08:55:52Z
alsa-2020:1616 Low: irssi security update 2020-04-28T08:56:59Z 2021-11-12T10:20:55Z
alsa-2020:1624 Moderate: php:7.2 security, bug fix, and enhancement update 2020-04-28T08:57:54Z 2020-04-28T08:57:41Z
alsa-2020:1631 Low: GStreamer, libmad, and SDL security, bug fix, and enhancement update 2020-04-28T08:58:37Z 2021-11-12T10:20:55Z
alsa-2020:1636 Moderate: libsndfile security update 2020-04-28T08:59:15Z 2021-08-11T08:54:00Z
alsa-2020:1644 Moderate: pki-core:10.6 and pki-deps:10.6 security, bug fix, and enhancement update 2020-04-28T09:00:20Z 2020-04-28T09:00:04Z
alsa-2020:1650 Moderate: container-tools:rhel8 security, bug fix, and enhancement update 2020-04-28T09:01:00Z 2020-04-28T09:00:50Z
alsa-2020:1653 Moderate: zziplib security update 2020-04-28T09:01:25Z 2021-08-11T08:54:00Z
alsa-2020:1665 Moderate: qt5 security, bug fix, and enhancement update 2020-04-28T09:02:52Z 2021-08-11T08:54:00Z
alsa-2020:1686 Low: libmspack security and bug fix update 2020-04-28T09:05:11Z 2021-11-12T10:20:55Z
alsa-2020:1708 Moderate: liblouis security and bug fix update 2020-04-28T09:07:17Z 2021-11-12T10:20:55Z
alsa-2020:1766 Moderate: GNOME security, bug fix, and enhancement update 2020-04-28T09:13:23Z 2021-11-12T10:20:55Z
alsa-2020:1852 Moderate: patch security and bug fix update 2020-04-28T09:23:52Z 2020-04-28T09:23:44Z
alsa-2020:1880 Moderate: ibus and glib2 security and bug fix update 2020-04-28T09:26:53Z 2021-08-11T08:54:00Z
alsa-2020:1926 Important: container-tools:1.0 security and bug fix update 2020-04-28T16:06:48Z 2020-04-28T16:06:37Z
alsa-2020:1931 Important: container-tools:2.0 security update 2020-04-28T16:07:22Z 2020-04-28T16:07:11Z
alsa-2020:1932 Important: container-tools:rhel8 security update 2020-04-28T16:07:32Z 2020-04-28T16:07:22Z
alsa-2020:2041 Important: squid:4 security update 2020-05-06T12:52:10Z 2020-05-06T12:52:10Z
alsa-2020:2755 Important: nghttp2 security update 2020-06-25T16:31:29Z 2023-03-13T16:34:30Z
ID Description Published Updated
hsec-2026-0002 Hackage CSRF vulnerability 2026-03-28T16:04:58Z 2026-03-28T16:04:58Z
hsec-2026-0004 Hackage package metadata stored XSS vulnerability 2026-03-28T16:05:12Z 2026-03-28T16:05:12Z
hsec-2026-0006 Cabal deletes project source files during configure 2026-04-08T14:23:27Z 2026-04-08T14:23:27Z
ID Description Published Updated
ID Description Published Updated
osv-2020-49 Heap-buffer-overflow in ndpi_netbios_name_interpret 2020-06-24T01:51:11.785336Z 2022-04-13T03:04:36.140200Z
osv-2020-50 Bad-cast to pcpp::IDnsResource from invalid vptr 2020-06-24T01:51:11.832891Z 2022-04-13T03:04:38.606966Z
osv-2020-52 Heap-buffer-overflow in int arrow::util::RleDecoder::GetBatchWithDictSpaced<double> 2020-06-24T01:51:11.907364Z 2022-04-13T03:04:31.997317Z
osv-2020-53 Index-out-of-bounds in parse_exp 2020-06-24T01:51:11.960925Z 2022-04-13T03:04:40.943207Z
osv-2020-54 Heap-buffer-overflow in OT::HintingDevice* hb_serialize_context_t::embed<OT::HintingDevice> 2020-06-24T01:51:11.997638Z 2022-04-13T03:04:32.891216Z
osv-2020-55 Stack-buffer-overflow in tcos_decipher 2020-06-24T01:51:12.036793Z 2022-04-13T03:04:41.675366Z
osv-2020-57 Stack-buffer-overflow in ot::NetworkData::PrefixTlv::GetPrefixLength 2020-06-24T01:51:12.118424Z 2022-04-13T03:04:38.930668Z
osv-2020-58 Heap-buffer-overflow in asn1_get_next 2020-06-24T01:51:12.185211Z 2022-04-13T03:04:34.966282Z
osv-2020-59 Heap-buffer-overflow in ndpi_add_connection_as_bittorrent 2020-06-24T01:51:12.217599Z 2022-04-13T03:04:35.977811Z
osv-2020-60 Heap-buffer-overflow in get_ndpi_flow_info 2020-06-24T01:51:12.251398Z 2022-04-13T03:04:36.003716Z
osv-2020-62 Stack-buffer-overflow in tvb_get_ipv4_addr_with_prefix_len 2020-06-24T01:51:12.327011Z 2022-04-13T03:04:37.780752Z
osv-2020-63 UNKNOWN READ in arrow::BaseBinaryBuilder<arrow::BinaryType>::UnsafeAppend 2020-06-24T01:51:12.364400Z 2022-04-13T03:04:31.882807Z
osv-2020-64 Heap-buffer-overflow in read_reloc 2020-06-24T01:51:12.430335Z 2022-04-13T03:04:36.528190Z
osv-2020-65 Heap-use-after-free in std::__1::vector<unsigned long, std::__1::allocator<unsigned long> >::begin 2020-06-24T01:51:12.508705Z 2022-04-13T03:04:41.932323Z
osv-2020-66 Heap-buffer-overflow in CPLErr GDALResampleChunk32R_AverageT<unsigned char, int> 2020-06-24T01:51:12.546926Z 2022-04-13T03:04:42.124066Z
osv-2020-67 Heap-buffer-overflow in ndpi_workflow_process_packet 2020-06-24T01:51:12.608279Z 2022-04-13T03:04:35.998509Z
osv-2020-68 Heap-double-free in ares_parse_soa_reply 2020-06-24T01:51:12.645377Z 2022-04-13T03:04:36.406432Z
osv-2020-70 Heap-buffer-overflow in ndpi_handle_ipv6_extension_headers 2020-06-24T01:51:12.729868Z 2022-04-13T03:04:36.037052Z
osv-2020-71 Heap-buffer-overflow in ndpi_parse_packet_line_info 2020-06-24T01:51:12.776008Z 2022-04-13T03:04:35.913056Z
osv-2020-72 Use-of-uninitialized-value in print_crl 2020-06-24T01:51:12.820554Z 2022-04-13T03:04:35.593904Z
osv-2020-73 UNKNOWN WRITE in vips_foreign_load_gif_render 2020-06-24T01:51:12.855986Z 2022-04-13T03:04:38.047842Z
osv-2020-75 Index-out-of-bounds in der_tag 2020-06-24T01:51:12.970172Z 2022-04-13T03:04:30.881125Z
osv-2020-76 Heap-use-after-free in pixAverageRasterScans 2020-06-24T01:51:13.003871Z 2022-04-13T03:04:32.704451Z
osv-2020-77 Use-of-uninitialized-value in jbig2_text_region 2020-06-24T01:51:13.041556Z 2022-04-13T03:04:40.601044Z
osv-2020-78 Heap-buffer-overflow in ndpi_check_spotify 2020-06-24T01:51:13.073636Z 2022-04-13T03:04:36.188853Z
osv-2020-79 Use-of-uninitialized-value in check_exif 2020-06-24T01:51:13.128983Z 2022-04-13T03:04:33.703571Z
osv-2020-82 Heap-buffer-overflow in template_image_compose_opt 2020-06-24T01:51:13.276594Z 2022-04-13T03:04:40.558349Z
osv-2020-85 Dynamic-stack-buffer-overflow in janus_rtcp_incoming_transport_cc 2020-06-24T01:51:13.404463Z 2022-04-13T03:04:33.969023Z
osv-2020-86 Heap-buffer-overflow in bool arrow::util::RleDecoder::NextCounts<int> 2020-06-24T01:51:13.440194Z 2022-04-13T03:04:31.991977Z
osv-2020-87 Heap-buffer-overflow in Fax3Decode2D 2020-06-24T01:51:13.476121Z 2022-04-13T03:04:42.101628Z
ID Description Published Updated
rustsec-2018-0013 Vec-to-vec transmutations could lead to heap overflow/corruption 2018-11-27T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2018-0008 Bug in SliceDeque::move_head_unchecked allows read of corrupted memory 2018-12-05T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2018-0009 MsQueue and SegQueue suffer from double-free 2018-12-09T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2018-0011 Enum repr causing potential memory corruption 2018-12-18T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2018-0012 Flaw in streaming state reset() functions can create incorrect results. 2018-12-20T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2018-0020 Possible use-after-free with `proplist::Iterator` 2018-12-22T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2019-0038 Fix for UB in failure to catch panics crossing FFI boundaries 2019-03-10T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2019-0039 typemap is Unmaintained 2019-04-06T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2019-0035 Unaligned memory access 2019-04-19T12:00:00Z 2021-10-19T22:14:35Z
rustsec-2019-0001 Uncontrolled recursion leads to abort in HTML serialization 2019-04-27T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2019-0002 Bug in SliceDeque::move_head_unchecked corrupts its memory 2019-05-07T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2019-0004 Failure to properly verify ed25519 signatures makes any signature valid 2019-05-15T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2019-0015 Flaw in generativity allows out-of-bounds access 2019-05-21T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2019-0009 Double-free and use-after-free in SmallVec::grow() 2019-06-06T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2019-0003 Out of Memory in stream::read_raw_bytes_into() 2019-06-08T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2019-0037 Compiler optimisation for next_with_timeout in pnet::transport::IcmpTransportChannelIterator flaws to SEGFAULT 2019-06-11T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2019-0007 Processing of maliciously crafted length fields causes memory allocation SIGABRTs 2019-06-13T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2019-0005 Format string vulnerabilities in `pancurses` 2019-06-15T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2019-0006 Buffer overflow and format vulnerabilities in functions exposed without unsafe 2019-06-15T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2019-0040 `boxfnonce` obsolete with release of Rust 1.35.0 2019-06-20T12:00:00Z 2023-03-12T07:15:02Z
rustsec-2019-0008 Flaw in string parsing can lead to crashes due to invalid memory access. 2019-06-24T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2019-0010 MultiDecoder::read() drops uninitialized memory of arbitrary type on panic in client code 2019-07-04T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2019-0011 Flaw in offset_of and span_of causes SIGILL, drops uninitialized memory of arbitrary type on panic in client code 2019-07-16T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2019-0012 Memory corruption in SmallVec::grow() 2019-07-19T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2019-0014 Flaw in interface may drop uninitialized instance of arbitrary types 2019-08-21T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2019-0023 Cloned interners may read already dropped strings 2019-08-24T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2019-0019 HMAC-BLAKE2 algorithms compute incorrect results 2019-08-25T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2019-0013 Wrong memory orderings in RwLock potentially violates mutual exclusion 2019-08-27T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2019-0016 Use-after-free in buffer conversion implementation 2019-09-01T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2019-0017 Panic during initialization of Lazy<T> might trigger undefined behavior 2019-09-01T12:00:00Z 2023-06-13T13:10:24Z
ID Description Published Updated
bit-consul-2023-3518 JWT Auth in L7 Intentions Allow For Mismatched Service Identity and JWT Providers for Access 2024-03-06T10:51:07.390Z 2025-11-06T13:25:46.476Z
bit-django-2024-24680 2024-03-06T10:51:08.081Z 2025-11-06T13:25:46.476Z
bit-cassandra-2020-17516 2024-03-06T10:51:09.067Z 2025-04-03T14:40:37.652Z
bit-discourse-2024-23834 Discourse improperly sanitized user input leads to XSS 2024-03-06T10:51:09.899Z 2025-05-20T10:02:07.006Z
bit-contour-2021-32783 Authorization bypass in Contour 2024-03-06T10:51:10.983Z 2025-05-20T10:02:07.006Z
bit-couchdb-2023-26268 Apache CouchDB, IBM Cloudant: Information sharing via couchjs processes 2024-03-06T10:51:14.379Z 2025-05-20T10:02:07.006Z
bit-cosign-2022-36056 Vulnerabilities with blob verification in sigstore cosign 2024-03-06T10:51:15.106Z 2025-05-20T10:02:07.006Z
bit-concourse-2020-5409 Concourse Open Redirect in the /sky/login endpoint 2024-03-06T10:51:15.173Z 2025-05-20T10:02:07.006Z
bit-composer-2022-24828 Missing input validation can lead to command execution in composer 2024-03-06T10:51:15.586Z 2025-05-20T10:02:07.006Z
bit-appsmith-2022-38298 2024-03-06T10:51:15.688Z 2025-04-03T14:40:37.652Z
bit-django-2023-46695 2024-03-06T10:51:16.068Z 2025-04-03T14:40:37.652Z
bit-apache-2023-25690 Apache HTTP Server: HTTP request splitting with mod_rewrite and mod_proxy 2024-03-06T10:51:16.503Z 2025-05-20T10:02:07.006Z
bit-dotnet-2024-21319 Microsoft Identity Denial of service vulnerability 2024-03-06T10:51:16.762Z 2025-05-20T10:02:07.006Z
bit-airflow-2023-49920 Apache Airflow: Missing CSRF protection on DAG/trigger 2024-03-06T10:51:17.298Z 2025-05-20T10:02:07.006Z
bit-consul-2023-2816 Consul Envoy Extension Downsteam Proxy Configuration By Upstream Service Owner 2024-03-06T10:51:17.675Z 2025-05-20T10:02:07.006Z
bit-apisix-2021-43557 Path traversal in request_uri variable 2024-03-06T10:51:17.884Z 2025-05-20T10:02:07.006Z
bit-cassandra-2020-13946 2024-03-06T10:51:19.779Z 2025-04-03T14:40:37.652Z
bit-drupal-2024-22362 2024-03-06T10:51:21.001Z 2025-08-20T09:06:12.327Z
bit-discourse-2024-21655 Insufficient control of custom field value sizes 2024-03-06T10:51:21.402Z 2025-05-20T10:02:07.006Z
bit-contour-2020-15127 Denial of service in Contour 2024-03-06T10:51:22.784Z 2025-05-20T10:02:07.006Z
bit-cosign-2022-35929 False positive signature verification in cosign 2024-03-06T10:51:23.199Z 2025-05-20T10:02:07.006Z
bit-couchdb-2022-24706 Remote Code Execution Vulnerability in Packaging 2024-03-06T10:51:24.067Z 2025-10-22T09:08:25.162Z
bit-django-2023-43665 2024-03-06T10:51:25.579Z 2025-11-06T13:25:46.476Z
bit-airflow-2023-48291 Apache Airflow: Improper access control to DAG resources 2024-03-06T10:51:25.710Z 2025-05-20T10:02:07.006Z
bit-composer-2021-41116 Command injection in composer on Windows 2024-03-06T10:51:26.107Z 2025-05-20T10:02:07.006Z
bit-apisix-2020-13945 2024-03-06T10:51:26.305Z 2025-04-03T14:40:37.652Z
bit-consul-2023-1297 Consul Cluster Peering can Result in Denial of Service 2024-03-06T10:51:27.878Z 2025-05-20T10:02:07.006Z
bit-ejbca-2022-34831 2024-03-06T10:51:28.966Z 2025-04-03T14:40:37.652Z
bit-apache-2022-37436 Apache HTTP Server: mod_proxy prior to 2.4.55 allows a backend to trigger HTTP response splitting 2024-03-06T10:51:28.975Z 2025-05-20T10:02:07.006Z
bit-elasticsearch-2023-46674 Elasticsearch-hadoop Unsafe Deserialization 2024-03-06T10:51:29.796Z 2025-05-20T10:02:07.006Z
ID Description Published Updated
cleanstart-2026-pk92575 ParseAddress function constructs domain-literal address components through repeated string concatenation 2026-01-30T14:35:52.456913Z 2026-01-29T18:58:54Z
cleanstart-2026-dl37890 Redis is an open source, in-memory database that persists on disk 2026-01-30T14:36:22.812571Z 2026-01-29T18:58:54Z
cleanstart-2026-fr00621 Redis is an open source, in-memory database that persists on disk 2026-01-30T14:36:52.496829Z 2026-01-29T18:58:54Z
cleanstart-2026-jm36781 Within HostnameError 2026-01-30T14:37:22.513933Z 2026-01-29T18:58:54Z
cleanstart-2026-mz27698 Redis is an open source, in-memory database that persists on disk 2026-01-30T14:39:52.940858Z 2026-01-29T18:58:54Z
cleanstart-2026-la33013 Within HostnameError 2026-01-30T14:40:22.526589Z 2026-01-29T18:58:54Z
cleanstart-2026-fz95989 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T14:40:52.734894Z 2026-01-29T18:58:54Z
cleanstart-2026-kz63902 tar 2026-01-30T14:41:22.559595Z 2026-01-29T18:58:54Z
cleanstart-2026-di05920 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T14:41:22.824254Z 2026-01-29T18:58:54Z
cleanstart-2026-gv62494 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T14:41:53.003431Z 2026-01-29T18:58:54Z
cleanstart-2026-bx37171 Redis is an open source, in-memory database that persists on disk 2026-01-30T14:43:22.549529Z 2026-01-29T18:58:54Z
cleanstart-2026-rb28539 Within HostnameError 2026-01-30T14:43:52.571458Z 2026-01-29T18:58:54Z
cleanstart-2026-ol25917 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T14:44:22.881508Z 2026-01-29T18:58:54Z
cleanstart-2026-uy85485 Within HostnameError 2026-01-30T14:45:52.628542Z 2026-01-29T18:58:54Z
cleanstart-2026-hy43775 Within HostnameError 2026-01-30T14:46:52.607713Z 2026-01-29T18:58:54Z
cleanstart-2026-oo14630 tar 2026-01-30T14:47:23.043882Z 2026-01-29T18:58:54Z
cleanstart-2026-kc01126 tar 2026-01-30T14:48:22.721160Z 2026-01-29T18:58:54Z
cleanstart-2026-uu20906 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T14:48:52.774829Z 2026-01-29T18:58:54Z
cleanstart-2026-gn47077 Within HostnameError 2026-01-30T14:48:53.159123Z 2026-01-29T18:58:54Z
cleanstart-2026-mi26039 Within HostnameError 2026-01-30T14:49:22.768843Z 2026-01-29T18:58:54Z
cleanstart-2026-xo66167 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T14:49:52.662006Z 2026-01-29T18:58:54Z
cleanstart-2026-ph90623 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T14:49:52.682724Z 2026-01-29T18:58:54Z
cleanstart-2026-do68350 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T14:50:22.886394Z 2026-01-29T18:58:54Z
cleanstart-2026-ia26094 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T14:51:22.634752Z 2026-01-29T18:58:54Z
cleanstart-2026-cb20757 Cancelling a query (e 2026-01-30T14:51:22.636956Z 2026-01-29T18:58:54Z
cleanstart-2026-il55587 Cancelling a query (e 2026-01-30T14:51:52.694658Z 2026-01-29T18:58:54Z
cleanstart-2026-ol60454 Within HostnameError 2026-01-30T14:52:23.086717Z 2026-01-29T18:58:54Z
cleanstart-2026-nz19387 Within HostnameError 2026-01-30T14:52:23.218213Z 2026-01-29T18:58:54Z
cleanstart-2026-fr57243 Cancelling a query (e 2026-01-30T14:52:52.746706Z 2026-01-29T18:58:54Z
cleanstart-2026-ld23143 Cancelling a query (e 2026-01-30T14:52:52.766441Z 2026-01-29T18:58:54Z
ID Description Published Updated
drupal-contrib-2019-013 2019-02-06T17:36:06.000Z 2023-08-11T19:22:41.000Z
drupal-contrib-2019-014 2019-02-06T18:13:19.000Z 2023-08-11T19:23:01.000Z
drupal-contrib-2019-019 2019-02-20T17:37:45.000Z 2023-08-11T18:53:47.000Z
drupal-contrib-2019-021 2019-02-20T17:39:43.000Z 2023-08-11T18:55:05.000Z
drupal-contrib-2019-022 2019-02-20T17:44:08.000Z 2023-08-11T18:55:29.000Z
drupal-contrib-2019-023 2019-02-20T17:47:47.000Z 2023-08-11T18:56:27.000Z
drupal-contrib-2019-024 2019-02-20T17:49:58.000Z 2023-08-11T18:56:41.000Z
drupal-contrib-2019-025 2019-02-20T17:56:44.000Z 2023-08-11T18:57:13.000Z
drupal-contrib-2019-030 2019-02-27T17:28:36.000Z 2023-08-11T18:48:35.000Z
drupal-contrib-2019-033 2019-03-06T18:16:22.000Z 2023-08-11T18:50:05.000Z
drupal-contrib-2019-039 2019-03-20T13:26:14.000Z 2023-08-11T18:43:25.000Z
drupal-contrib-2019-046 2019-05-15T17:07:58.000Z 2023-08-11T18:46:39.000Z
drupal-contrib-2019-047 2019-05-15T17:09:57.000Z 2023-08-11T18:35:51.000Z
drupal-contrib-2019-048 2019-05-15T17:13:59.000Z 2023-08-11T18:36:19.000Z
drupal-contrib-2019-050 2019-05-22T16:29:17.000Z 2023-08-11T18:37:20.000Z
drupal-contrib-2019-055 2019-07-10T16:30:00.000Z 2023-08-11T18:39:41.000Z
drupal-contrib-2019-058 2019-07-24T16:31:19.000Z 2023-08-11T18:32:08.000Z
drupal-contrib-2019-060 2019-07-24T17:36:23.000Z 2023-08-11T18:32:38.000Z
drupal-contrib-2019-062 2019-08-14T17:14:00.000Z 2023-08-11T18:33:31.000Z
drupal-contrib-2019-063 2019-08-14T17:26:13.000Z 2023-08-11T18:33:56.000Z
drupal-contrib-2019-064 2019-08-14T17:33:20.000Z 2023-08-11T18:34:14.000Z
drupal-contrib-2019-065 2019-08-21T14:52:51.000Z 2023-08-11T18:34:31.000Z
drupal-contrib-2019-066 2019-09-18T15:07:56.000Z 2023-08-11T18:34:46.000Z
drupal-contrib-2019-067 2019-09-18T15:17:32.000Z 2023-08-11T18:24:28.000Z
drupal-contrib-2019-068 2019-09-25T14:43:49.000Z 2023-08-11T18:25:53.000Z
drupal-contrib-2019-069 2019-09-25T14:55:33.000Z 2023-08-11T18:26:25.000Z
drupal-contrib-2019-071 2019-10-02T16:29:46.000Z 2023-08-11T18:27:09.000Z
drupal-contrib-2019-074 2019-10-16T16:09:20.000Z 2023-08-11T18:28:44.000Z
drupal-contrib-2019-075 2019-11-06T16:10:25.000Z 2023-08-11T18:30:06.000Z
drupal-contrib-2019-078 2019-11-13T18:02:43.000Z 2023-08-11T18:22:43.000Z
ID Description Updated
ID Description Published Updated
certa-2001-ale-015 Exploitation massive d'une ancienne vulnérabilité de SSH 2001-11-19T00:00:00.000000 2001-11-19T00:00:00.000000
certa-2001-ale-016 Propagation du ver badtrans - variante B 2001-11-27T00:00:00.000000 2001-11-27T00:00:00.000000
certa-2002-ale-001 Exploitation massive d'une faille de CDE 2002-01-24T00:00:00.000000 2002-01-24T00:00:00.000000
certa-2002-ale-002 Exploitation d'une faille de wu-ftpd 2002-01-28T00:00:00.000000 2002-01-28T00:00:00.000000
certa-2002-ale-003 Propagation importante du virus « W32.Myparty@mm » 2002-01-29T00:00:00.000000 2002-01-29T00:00:00.000000
certa-2002-ale-004 Multiples implémentations de SNMP V1 vulnérables 2002-02-13T00:00:00.000000 2002-02-13T00:00:00.000000
certa-2002-ale-005 Risque de compromission des auto-commutateurs (PABX) ALCATEL 4400 2002-02-20T00:00:00.000000 2002-02-20T00:00:00.000000
certa-2002-ale-006 Propagation du ver Spida (Microsoft SQL Server) 2002-05-22T00:00:00.000000 2002-06-04T00:00:00.000000
certa-2002-ale-007 Cédérom Pages Pro 2002-09-04T00:00:00.000000 2002-09-04T00:00:00.000000
certa-2003-ale-001 Vulnérabilité dans l'implémentation des logiciels de lecture des documents PDF 2003-06-23T00:00:00.000000 2003-07-04T00:00:00.000000
certa-2003-ale-002 Exploitation d'une faille de Windows RPC 2003-08-01T00:00:00.000000 2003-08-19T00:00:00.000000
certa-2003-ale-003 Exploitation massive de la vulnérabilité « include PHP » 2003-09-09T00:00:00.000000 2003-09-09T00:00:00.000000
certa-2003-ale-004 Vulnérabilité d'Internet Explorer 2003-09-10T00:00:00.000000 2003-10-06T00:00:00.000000
certa-2003-ale-005 Vulnérabilité de sadmind sur Solaris 2003-09-19T00:00:00.000000 2003-09-19T00:00:00.000000
certa-2003-ale-006 Vulnérabilité dans l'affichage des adresses réticulaires 2003-12-19T00:00:00.000000 2004-02-03T00:00:00.000000
certa-2004-ale-001 Obstacles à la résolution d'incidents 2004-01-30T00:00:00.000000 2004-01-30T00:00:00.000000
certa-2004-ale-002 Propagation du virux Bizex 2004-02-26T00:00:00.000000 2004-02-26T00:00:00.000000
certa-2004-ale-003 Propagation du ver Phatbot 2004-03-19T00:00:00.000000 2004-03-19T00:00:00.000000
certa-2004-ale-004 Vulnérabilité du composant dtlogin de CDE 2004-03-26T00:00:00.000000 2004-08-05T00:00:00.000000
certa-2004-ale-005 Vulnérabilité d'Internet Explorer 2004-04-09T00:00:00.000000 2004-04-15T00:00:00.000000
certa-2004-ale-006 Vulnérabilité SMB sous Windows 2004-04-28T00:00:00.000000 2004-04-28T00:00:00.000000
certa-2004-ale-007 Exploitation de la vulnérabilité LSASS sous Windows : appration du ver Sasser 2004-05-02T00:00:00.000000 2004-05-02T00:00:00.000000
certa-2004-ale-008 Vulnérabilité de Safari 2004-05-19T00:00:00.000000 2004-05-24T00:00:00.000000
certa-2004-ale-009 Vulnérabilités d'Internet Explorer 2004-06-09T00:00:00.000000 2004-08-03T00:00:00.000000
certa-2004-ale-010 Vulnérabilité du service Telnet de Cisco IOS 2004-08-30T00:00:00.000000 2004-08-30T00:00:00.000000
certa-2004-ale-011 Diffusion de programmes exploitant la faille GDI+ 2004-09-23T00:00:00.000000 2004-09-23T00:00:00.000000
certa-2004-ale-012 Vulnérabilité d'Internet Explorer 2004-11-09T00:00:00.000000 2004-12-02T00:00:00.000000
certa-2004-ale-013 Vulnérabilité dans le composant ActiveX DHTML Edit d'Internet Explorer 2004-12-20T00:00:00.000000 2004-12-20T00:00:00.000000
certa-2004-ale-014 Exploitation massive d'une faille du forum phpBB 2004-12-22T00:00:00.000000 2004-12-22T00:00:00.000000
certa-2005-ale-001 Vulnérabilité d'Internet Explorer 2005-01-03T00:00:00.000000 2005-01-11T00:00:00.000000
ID Description Published Updated
certa-2000-avi-031 Faille dans la commande newgrp sous HP-UX 2000-08-17T00:00:00.000000 2000-08-17T00:00:00.000000
certa-2000-avi-032 Vulnérabilité dans la machine virtuelle Java de Microsoft 2000-08-22T00:00:00.000000 2000-08-22T00:00:00.000000
certa-2000-avi-033 Vulnérabilité dans GNOME Updater 2000-08-22T00:00:00.000000 2000-08-22T00:00:00.000000
certa-2000-avi-034 Faille dans le serveur Internet Java de SUN 2000-08-23T00:00:00.000000 2000-08-23T00:00:00.000000
certa-2000-avi-035 Vulnérabilité dans Microsoft Information Server 2000-08-28T00:00:00.000000 2000-08-28T00:00:00.000000
certa-2000-avi-036 Cheval de Troie : Troj/qaz 2000-08-29T00:00:00.000000 2000-08-29T00:00:00.000000
certa-2000-avi-037 Vulnérabilité sous Windows 2000 dans la politique de sécurité locale 2000-08-29T00:00:00.000000 2000-08-29T00:00:00.000000
certa-2000-avi-038 Vulnérabilité sous ISS REAL SECURE 2000-08-30T00:00:00.000000 2000-08-30T00:00:00.000000
certa-2000-avi-039 vulnérabilités de RPC.statd sous Unix 2000-08-30T00:00:00.000000 2000-08-30T00:00:00.000000
certa-2000-avi-040 Vulnérabilité sous PGP 5.5.x à 6.5.3 2000-08-31T00:00:00.000000 2000-08-31T00:00:00.000000
certa-2000-avi-041 Ver sous Windows : W32/Apology 2000-08-31T00:00:00.000000 2000-08-31T00:00:00.000000
certa-2000-avi-042 Vulnérabilité dans les extensions de fichiers sous Windows 2000-09-04T00:00:00.000000 2000-09-04T00:00:00.000000
certa-2000-avi-043 Vulnérabilité dans mgetty sous Unix 2000-09-04T00:00:00.000000 2000-09-04T00:00:00.000000
certa-2000-avi-044 Vulnérabilité de Windows NT4.0 affectant Internet Information Server 2000-09-07T00:00:00.000000 2000-09-07T00:00:00.000000
certa-2000-avi-045 Note concernant les correctifs ou mises à jour 2000-09-07T00:00:00.000000 2000-09-07T00:00:00.000000
certa-2000-avi-046 vulnérabilité du service imagerie sous Windows 2000 2000-09-11T00:00:00.000000 2000-09-11T00:00:00.000000
certa-2000-avi-047 Vulnérabilité de RPC sous Windows2000 2000-09-12T00:00:00.000000 2000-09-12T00:00:00.000000
certa-2000-avi-048 Vulnérabilité du client telnet sous Windows 2000 2000-09-15T00:00:00.000000 2000-09-15T00:00:00.000000
certa-2000-avi-049 Virus FunnyStory 2000-09-19T00:00:00.000000 2000-09-19T00:00:00.000000
certa-2000-avi-050 Vulnérabilité dans le démon klogd sous Linux 2000-09-20T00:00:00.000000 2000-09-20T00:00:00.000000
certa-2000-avi-051 Vulnérabilités dans CISCOSecure sous Windows NT Server 2000-09-22T00:00:00.000000 2000-09-22T00:00:00.000000
certa-2000-avi-052 Vulnérabilité sous Windows liée à l'ouverture d'un Document Office 2000-09-25T00:00:00.000000 2000-09-25T00:00:00.000000
certa-2000-avi-053 Vulnérabilité dans HP OpenView 2000-09-28T00:00:00.000000 2000-09-28T00:00:00.000000
certa-2000-avi-054 Vulnérabilité dans le garde barrière PIX de CISCO 2000-09-29T00:00:00.000000 2000-09-29T00:00:00.000000
certa-2000-avi-055 Vulnérabilités des LPC sous Windows 2000 et NT 2000-10-04T00:00:00.000000 2000-10-04T00:00:00.000000
certa-2000-avi-056 Vulnérabilité dans la fonction de « fusion-publipostage » sous Word 97 et 2000 2000-10-09T00:00:00.000000 2000-10-09T00:00:00.000000
certa-2000-avi-057 Vulnérabilité dans les protections de fichiers sous Windows 9x et Me 2000-10-11T00:00:00.000000 2000-10-11T00:00:00.000000
certa-2000-avi-058 Vulnérabilité dans IPX/SPX de Microsoft sous Windows 9x/ME 2000-10-12T00:00:00.000000 2000-10-12T00:00:00.000000
certa-2000-avi-059 Vulnérabilité dans la machine virtuelle Java de Microsoft 2000-10-13T00:00:00.000000 2000-10-13T00:00:00.000000
certa-2000-avi-060 Vulnérabilité dans le cache d'authentification d'Internet Explorer 2000-10-13T00:00:00.000000 2000-10-13T00:00:00.000000
ID Description Published Updated
jvndb-2005-000343 DeleGate DNS Message Decompression Denial of Service Vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000396 Ruby XMLRPC Arbitrary Command Execution Vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000530 Vulnerability in multiple web browsers allowing request spoofing attacks 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000537 Webmin and Usermin authentication bypass vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000538 Ruby vulnerability allowing to bypass safe level 4 as a sandbox 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000601 OpenSSL version rollback vulnerability 2008-05-21T00:00+09:00 2014-05-22T18:04+09:00
jvndb-2005-000695 Ruby XMLRPC Server Denial of Service Vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000705 Fujitsu Java Runtime Environment reflection API vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000706 Fujitsu Java Runtime Environment reflection API vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000707 Fujitsu Java Runtime Environment reflection API vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000727 mod_imap cross-site scripting vulnerability 2008-05-21T00:00+09:00 2014-05-22T18:03+09:00
jvndb-2005-000756 Tsuru-Kame Mail vulnerable in S/MIME signature verification 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000757 Cybozu Office browser script execution vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000758 msearch directory traversal vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000759 McAfee VirusScan Engine buffer overflow vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000760 McAfee VirusScan Engine buffer overflow vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000761 Norton AntiVirus causes abnormal OS termination when a user edits a shared network file 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000762 Norton AntiVirus causes abnormal OS termination when scanning illegal files 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000763 ppBlog cross-site scripting vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000764 Website connection problem when a mobile phone terminal uses specific QR code 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000765 Buffalo router configuration management interface vulnerable to remote access and password leakage 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000766 w3ml cross-site scripting vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000767 WebUD arbitrary program execution vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000768 Movable Type session management vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000769 Virus Security heap overflow vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000770 Virus Security memory leak vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000771 Wiki clone cross-site scripting vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000772 Inappropriate interpretation of mailto URL scheme by mail client software 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000773 desknet's cross-site scripting vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000774 SFS cross-site scripting vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
ID Description Published Updated
cnvd-2014-09191 Cisco Meraki MS MRMX存在shell获取漏洞 2014-12-26 2014-12-29
cnvd-2014-09192 Cisco Meraki MS MRMX任意固件安装漏洞 2014-12-26 2014-12-29
cnvd-2014-09193 IBM Security Access Manager拒绝服务漏洞(CNVD-2014-09193) 2014-12-26 2014-12-29
cnvd-2014-09194 IBM Security Access Manager信息泄露漏洞(CNVD-2014-09194) 2014-12-26 2014-12-29
cnvd-2014-09195 NetIQ Access Manager目录遍历漏洞 2014-12-26 2014-12-29
cnvd-2014-09196 IBM Security Access Manager信息泄露漏洞(CNVD-2014-09196) 2014-12-26 2014-12-29
cnvd-2014-09197 NetIQ Access Manager存在多个跨站脚本漏洞 2014-12-26 2014-12-29
cnvd-2014-09198 IBM Security Access Manager信息泄露漏洞(CNVD-2014-09198) 2014-12-26 2014-12-29
cnvd-2014-09199 IBM Security Access Manager信息泄露漏洞(CNVD-2014-09199) 2014-12-26 2014-12-29
cnvd-2014-09200 IBM Security Access Manager信息泄露漏洞(CNVD-2014-09200) 2014-12-26 2014-12-29
cnvd-2014-09201 IBM Security Access Manager拒绝服务漏洞(CNVD-2014-09201) 2014-12-26 2014-12-29
cnvd-2014-09202 IBM Security Access Manager SQL注入漏洞 2014-12-26 2014-12-29
cnvd-2014-09203 IBM Security Access Manager安全机制绕过漏洞 2014-12-26 2014-12-29
cnvd-2014-09204 IBM Security Access Manager跨站请求伪造漏洞 2014-12-26 2014-12-29
cnvd-2014-09205 IBM Security Access Manager点击劫持漏洞 2014-12-26 2014-12-29
cnvd-2014-09206 WordPress插件TwitterDash跨站请求伪造漏洞 2014-12-26 2014-12-29
cnvd-2014-09207 Piwigo 'rate_picture'函数SQL注入漏洞 2014-12-26 2014-12-29
cnvd-2014-09208 Ettercap堆缓冲区溢出漏洞 2014-12-26 2014-12-30
cnvd-2014-09209 IBM WebSphere Portal XML注入漏洞 2014-12-26 2014-12-30
cnvd-2014-09210 IBM Business Process Manager跨站脚本漏洞(CNVD-2014-09210) 2014-12-26 2014-12-30
cnvd-2014-09211 IBM WebSphere Portal跨站脚本漏洞(CNVD-2014-09211) 2014-12-26 2014-12-30
cnvd-2014-09212 IBM WebSphere Portal跨站脚本漏洞(CNVD-2014-09212) 2014-12-26 2014-12-30
cnvd-2014-09213 IBM Rational Quality Manager跨站脚本漏洞(CNVD-2014-09213) 2014-12-26 2014-12-30
cnvd-2014-09214 WordPress插件SPNbabble存在多个跨站请求伪造漏洞 2014-12-26 2014-12-30
cnvd-2014-09215 WordPress插件O2Tweet存在多个跨站请求伪造漏洞 2014-12-26 2014-12-30
cnvd-2014-09216 WordPress插件Mikiurl Wordpress Eklentisi存在多个跨站请求伪造漏洞 2014-12-26 2014-12-30
cnvd-2014-09217 WordPress插件DandyID Services存在多个跨站请求伪造漏洞 2014-12-26 2014-12-30
cnvd-2014-09218 Ricksoft WBS Gantt-Chart add-on跨站脚本漏洞(CNVD-2014-09218) 2014-12-26 2014-12-30
cnvd-2014-09219 Ricksoft WBS Gantt-Chart add-on跨站脚本漏洞(CNVD-2014-09219) 2014-12-26 2014-12-30
cnvd-2014-09220 TSUTAYA application任意命令执行漏洞 2014-12-26 2014-12-30
ID Description Published Updated
bdu:2015-02421 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02422 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02423 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02424 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02425 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02426 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02427 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02428 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02429 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02430 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02431 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02432 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02433 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02434 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02435 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02436 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02437 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02438 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02439 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02440 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02441 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02442 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02443 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02444 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02445 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02446 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02447 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02448 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02449 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-02450 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
ID Description Updated
var-201005-0064 Cisco Mediator Framework 1.5.1 before 1.5.1.build.14-eng, 2.2 before 2.2.1.dev.1, and 3.0… 2021-12-18T17:28:24.032000Z
var-200412-0263 The DSS verification code in Dropbear SSH Server before 0.43 frees uninitialized variable… 2021-12-18T17:51:52.131000Z
var-201001-0029 Unspecified vulnerability in PowerDNS Recursor before 3.1.7.2 allows remote attackers to … 2021-12-18T17:56:06.278000Z
var-201001-0163 The ipv6_hop_jumbo function in net/ipv6/exthdrs.c in the Linux kernel before 2.6.32.4, wh… 2021-12-18T21:59:59.281000Z
var-201805-0613 procps-ng before version 3.3.15 is vulnerable to multiple integer overflows leading to a … 2021-12-18T22:07:19.455000Z
var-201004-0267 The virtual networking stack in VMware Workstation 7.0 before 7.0.1 build 227600, VMware … 2021-12-18T23:56:55.293000Z
var-201804-1619 Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Install). Support… 2021-12-19T00:57:05.378000Z
var-202104-2088 2022-01-01T21:43:54.006000Z
var-201012-0429 2022-01-17T14:43:53.884000Z
var-201008-0396 2022-01-17T15:13:57.932000Z
var-201005-0441 2022-01-17T15:35:01.886000Z
var-201005-0440 2022-01-17T15:35:03.822000Z
var-202101-1992 2022-03-28T13:10:14.160000Z
var-202012-1590 2022-03-28T13:10:48.663000Z
var-202011-1582 2022-03-28T13:11:18.983000Z
var-201302-0422 2022-03-28T13:18:10.496000Z
var-201712-0384 2022-03-28T13:39:01.352000Z
var-201204-0234 2022-03-28T14:09:38.006000Z
var-202110-1907 2022-03-28T15:24:27.396000Z
var-202109-1968 2022-03-28T15:24:42.425000Z
var-202103-1752 2022-03-28T15:26:17.351000Z
var-202103-1651 2022-03-28T15:26:17.893000Z
var-202101-2000 2022-03-28T15:26:59.562000Z
var-202101-1994 2022-03-28T15:26:59.656000Z
var-202008-0729 2022-03-28T15:28:42.740000Z
var-201109-0401 2022-03-28T15:47:17.677000Z
var-202012-1631 2022-03-28T16:00:29.378000Z
var-202112-1881 DIAEnergie Version 1.7.5 and prior is vulnerable to a reflected cross-site scripting atta… 2022-03-29T07:27:46.293000Z
var-202112-1878 DIAEnergie Version 1.7.5 and prior is vulnerable to multiple cross-site scripting vulnera… 2022-03-29T07:33:48.880000Z
var-202112-1879 DIAEnergie Version 1.7.5 and prior is vulnerable to stored cross-site scripting when an u… 2022-03-29T07:41:37.597000Z
ID Description Published Updated
ID Description Published Updated
vde-2020-026 PHOENIX CONTACT: Denial-of-Service vulnerabilty in Emalytics, ILC 2050 BI and ILC 2050 BI-L 2020-08-20T07:11:00.000Z 2025-05-22T13:03:10.000Z
vde-2020-030 PHOENIX CONTACT: Products utilizing WIBU-SYSTEMS CodeMeter components 2020-09-09T06:22:00.000Z 2020-09-09T06:22:00.000Z
vde-2020-047 PHOENIX CONTACT: BTP Touch Panels uncontrolled resource consumption 2020-12-02T09:00:00.000Z 2025-05-14T12:28:19.000Z
vde-2020-049 Phoenix Contact: Multiple vulnerabilities in PLCnext Control devices < 2021.0 LTS 2020-12-17T09:00:00.000Z 2020-12-17T09:00:00.000Z
vde-2020-046 PHOENIX CONTACT: mGuard <8.8.3 products missing initialization of resource 2020-12-17T09:01:00.000Z 2025-05-14T12:28:19.000Z
vde-2021-024 PHOENIX CONTACT: Security Advisory for PLCNext, SMARTRTU AXC, CHARX control modular and EEM-SB37x 2021-05-04T08:17:00.000Z 2025-05-14T12:28:19.000Z
vde-2021-020 PHOENIX CONTACT: Security Advisory for Automation Worx Software Suite 2021-06-23T11:10:00.000Z 2025-05-14T12:28:19.000Z
vde-2021-021 PHOENIX CONTACT: Security Advisory for AXL F BK and IL BK products 2021-06-23T12:15:00.000Z 2025-05-14T12:28:19.000Z
vde-2021-019 PHOENIX CONTACT: Security Advisory for ILC1x1 Industrial controllers 2021-06-23T12:16:00.000Z 2025-05-14T13:00:14.000Z
vde-2021-022 PHOENIX CONTACT: Security Advisory for FL COMSERVER UNI 2021-06-23T12:16:00.000Z 2025-05-14T12:28:19.000Z
vde-2021-023 PHOENIX CONTACT: Security Advisory for FL SWITCH SMCS series 2021-06-23T12:17:00.000Z 2025-05-14T12:28:19.000Z
vde-2021-025 PHOENIX CONTACT: Security Advisory for PLCNext, ILC 2050 BI, FL MGUARD DM UNLIMITED, TC ROUTER und CLOUD CLIENT products 2021-06-23T12:19:00.000Z 2025-05-14T12:28:19.000Z
vde-2021-036 PHOENIX CONTACT: Products utilizing WIBU SYSTEMS CodeMeter components in versions prior to V7.21a 2021-08-04T07:56:00.000Z 2025-05-14T12:28:19.000Z
vde-2021-032 PHOENIX CONTACT: Niche Ethernet Stack for ILC1x0, ILC1x1 and AXC 1050 Industrial controllers and CHARX control DC 2021-08-04T07:57:00.000Z 2025-05-22T13:03:10.000Z
vde-2021-029 PHOENIX CONTACT: DoS for PLCnext Control devices in versions <2021.0.5 LTS 2021-08-04T07:58:00.000Z 2025-05-14T12:28:19.000Z
vde-2021-035 PHOENIX CONTACT: FL MGUARD DM version 1.12.0 and 1.13.0 Improper Privilege Management 2021-08-11T07:59:00.000Z 2025-05-22T13:03:10.000Z
vde-2021-052 PHOENIX CONTACT: PC Worx/-Express prone to improper input validation vulnerability 2021-11-03T09:45:00.000Z 2025-05-22T13:03:10.000Z
vde-2021-046 PHOENIX CONTACT: XSS and memory-leak in FL MGUARD 1102/1105 2021-11-10T07:23:00.000Z 2021-11-10T07:23:00.000Z
vde-2021-056 WAGO: Multiple Vulnerabilities in CODESYS Runtime 2.3 and WebVisualisation 2021-11-16T14:11:00.000Z 2025-05-22T13:03:10.000Z
vde-2021-059 PHOENIX CONTACT: BLUEMARK X1 / LED / CLED printers utilizing the Siemens Nucleus RTOS TCP/IP Stack 2022-01-11T07:00:00.000Z 2025-05-22T13:03:10.000Z
vde-2022-001 PHOENIX CONTACT: FL SWITCH 2xxx series incorrect privilege assignment 2022-01-25T08:05:00.000Z 2025-05-14T13:00:14.000Z
vde-2022-007 PHOENIX CONTACT: Path Traversal in Library of PLCnext Technology Toolchain and FL Network Manager 2022-03-22T07:43:00.000Z 2025-05-22T13:03:10.000Z
vde-2022-005 PHOENIX CONTACT: Vulnerabilities in XML parser library Expat (libexpat) 2022-03-30T07:30:00.000Z 2025-05-22T13:03:10.000Z
vde-2022-010 PHOENIX CONTACT: Multiple Linux component vulnerabilities fixed in latest AXC F x152 LTS release 2022-04-12T06:00:00.000Z 2025-05-22T13:03:10.000Z
vde-2022-013 PHOENIX CONTACT: Multiple products affected by possible infinite loop within OpenSSL library 2022-04-12T06:00:00.000Z 2025-05-14T13:00:15.000Z
vde-2022-014 PHOENIX CONTACT: mGuard Device Manager affected by HTTP Request Smuggling of Apache Webserver 2022-04-12T06:00:00.000Z 2025-05-22T13:03:10.000Z
vde-2022-018 PHOENIX CONTACT: Multiple vulnerabilities in RAD-ISM-900-EN-BD devices 2022-05-11T14:20:00.000Z 2022-05-11T14:20:00.000Z
vde-2022-025 PHOENIX CONTACT: Vulnerability in classic line industrial controllers 2022-06-21T05:15:00.000Z 2025-05-22T13:03:10.000Z
vde-2022-026 PHOENIX CONTACT: Vulnerability in ProConOS/ProConOS eCLR SDK and MULTIPROG Engineering tool 2022-06-21T05:16:00.000Z 2025-05-22T13:03:10.000Z
vde-2022-028 PHOENIX CONTACT: Missing Authentication in ProConOS/ProConOS eCLR SDK and MULTIPROG Engineering tool 2022-06-21T05:18:00.000Z 2025-05-14T13:00:15.000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
vde-2024-065 PEPPERL+FUCHS: HMI devices are affected by Insecure Platform Key 2024-11-26T11:00:00.000Z 2025-05-14T12:28:19.000Z
vde-2025-002 PEPPERL+FUCHS: HMI – devices are affected by Windows RCE 2025-02-25T11:00:00.000Z 2025-05-22T13:03:10.000Z
vde-2025-011 PEPPERL+FUCHS: Profinet Gateway LB8122A.1.EL – Device is affected by XSS vulnerability and information disclosure 2025-05-26T10:00:00.000Z 2025-08-27T10:00:00.000Z
ID Description Published Updated
ID Description Published Updated
vde-2022-002 WAGO: Vulnerable WIBU-SYSTEMS Codemeter installed through e!COCKPIT and WAGO-I/O-Pro 2022-01-31T13:00:00.000Z 2025-05-22T13:03:10.000Z
vde-2022-004 WAGO: Web-Based Management Cross-Site Scripting 2022-03-09T07:00:00.000Z 2022-03-09T07:00:00.000Z
vde-2022-009 WAGO: Multiple Products affected by Linux Kernel Vulnerability Dirty Pipe 2022-04-06T07:30:00.000Z 2025-05-22T13:03:10.000Z
vde-2022-031 WAGO: Multiple Products Series affected by multiple CODESYS vulnerabilities 2022-08-17T08:00:00.000Z 2022-08-17T08:00:00.000Z
vde-2022-035 WAGO: Multiple product series affected by multiple CODESYS vulnerabilities 2022-08-17T08:00:00.000Z 2022-08-17T08:00:00.000Z
vde-2022-047 WAGO: FTP-Server - Denial-of-Service 2022-10-12T08:00:00.000Z 2022-10-12T08:00:00.000Z
vde-2022-040 WAGO: Multiple Vulnerabilities in Controller with WAGO I/O-Pro / CODESYS 2.3 Runtime 2022-10-17T08:00:00.000Z 2023-09-22T12:39:00.000Z
vde-2022-042 WAGO: Multiple products - Loss of MAC-Address-Filtering after reboot 2022-10-17T08:00:00.000Z 2022-10-17T08:00:00.000Z
vde-2022-054 WAGO: Unauthenticated Configuration Export in web-based management in multiple devices 2023-01-12T07:52:00.000Z 2023-01-12T07:52:00.000Z
vde-2022-055 WAGO: Exposure of configuration interface in unmanaged switches 2023-02-16T13:43:00.000Z 2023-02-16T13:43:00.000Z
vde-2022-060 WAGO: Multiple vulnerabilities in web-based management of multiple products 2023-02-27T11:00:00.000Z 2023-02-27T11:00:00.000Z
vde-2023-007 WAGO: Unauthenticated command execution via Web-based-management UPDATE A 2023-05-15T08:00:00.000Z 2025-05-22T13:03:10.000Z
vde-2023-005 WAGO: Series 750-3x/-8x prone to MODBUS server DoS 2023-06-25T06:00:00.000Z 2023-06-25T06:00:00.000Z
vde-2023-006 WAGO: Controller with CODESYS 2.3 Runtime Denial-of-Service 2023-06-25T06:00:00.000Z 2024-07-08T10:00:00.000Z
vde-2023-014 WAGO: Bluetooth LE vulnerability in WLAN-ETHERNET-Gateway 2023-07-31T07:00:00.000Z 2023-07-31T07:00:00.000Z
vde-2023-026 WAGO: Multiple products prone to multiple vulnerabilities in e!Runtime / CODESYS V3 Runtime 2023-07-31T07:36:00.000Z 2025-05-22T13:03:10.000Z
vde-2023-042 Wago: Vulnerable WIBU-SYSTEMS Codemeter installed through e!COCKPIT and WAGO-I/O-Pro (UPDATE B) 2023-09-25T10:00:00.000Z 2024-11-20T11:00:00.000Z
vde-2023-046 WAGO: Multiple products vulnerable to local file inclusion 2023-10-23T10:00:00.000Z 2025-04-28T10:00:00.000Z
vde-2023-015 WAGO: Improper privilege management in web-based management 2023-11-20T07:00:00.000Z 2023-11-20T07:00:00.000Z
vde-2023-037 WAGO: Remote Code execution vulnerability in managed Switches 2023-11-21T07:00:00.000Z 2023-11-21T07:00:00.000Z
vde-2023-044 Wago: Vulnerabilities in IEC61850 Server / Telecontrol 2023-12-05T07:00:00.000Z 2023-12-05T07:00:00.000Z
vde-2023-045 Wago: Vulnerability in Smart Designer Web-Application 2023-12-05T07:00:00.000Z 2023-12-05T07:00:00.000Z
vde-2024-007 WAGO: WIBU-SYSTEMS CodeMeter Runtime vulnerabilities in multiple products 2024-01-22T07:00:00.000Z 2024-01-22T07:00:00.000Z
vde-2024-014 WAGO: Multiple products affected by Terrapin 2024-02-22T07:00:00.000Z 2025-06-05T13:28:13.000Z
vde-2023-039 Wago: Multiple vulnerabilities in web-based management of multiple products 2024-03-13T08:30:00.000Z 2024-03-13T08:30:00.000Z
vde-2023-068 WAGO: Multiple Vulnerabilities in e!Cockpit and e!Runtime / CODESYS Runtime 2024-05-21T06:00:00.000Z 2024-05-21T06:00:00.000Z
vde-2024-021 WAGO: Vulnerability in WAGO Navigator 2024-05-21T06:00:00.000Z 2024-05-21T06:00:00.000Z
vde-2024-047 WAGO: Multiple vulnerabilities in docker configuration 2024-11-18T11:00:00.000Z 2025-05-22T13:03:10.000Z
vde-2024-072 WAGO: Vulnerabilities in CODESYS Control 2024-12-03T11:00:00.000Z 2024-12-03T11:00:00.000Z
vde-2025-008 WAGO: Vulnerabilities in CODESYS Control 2025-02-04T11:00:00.000Z 2025-05-14T13:00:15.000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
GCVE-1-2026-0005
8.5 (4.0)
Improper Access Control in Cerebrate Alignment Model A… cerebrate
 cerebrate
 2026-01-13T15:31:00.000Z 2026-01-13T15:38:02.888546Z
GCVE-1-2026-0006
8.5 (4.0)
Improper Access Control in Cerebrate AuthKey and Encry… cerebrate
 cerebrate
 2026-01-13T15:37:17.337254Z 2026-01-13T15:37:17.337254Z
GCVE-1-2026-0007
10 (4.0)
GNU InetUtils Security Advisory: remote authentication… gnu
 InetUtils
 2026-01-20T20:57:00.000Z 2026-01-26T16:32:40.831364Z
GCVE-1-2026-0008
10 (4.0)
gpg-agent stack buffer overflow in pkdecrypt using KEM gnupg
 gpg-agent
 2026-01-28T13:48:12.350509Z 2026-01-28T13:48:12.350509Z
GCVE-1-2026-0009
9.3 (4.0)
Stack-based buffer overflow in the multiplayer ne… EA Games
 Command & Conquer: Generals
 2026-01-29T14:30:38.596928Z 2026-01-29T14:30:38.596928Z
GCVE-1-2026-0010
9.3 (4.0)
Improper input validation in the file transfer ha… EA Games
 Command & Conquer: Generals
 2026-01-29T14:33:18.822829Z 2026-01-29T14:33:18.822829Z
GCVE-1-2026-0011
8.7 (4.0)
Out-of-bounds memory write in the network packet … EA Games
 Command & Conquer: Generals
 2026-01-29T14:37:00.000Z 2026-01-29T14:39:17.728822Z
GCVE-1-2026-0012
2.1 (4.0)
Authentication Error Message Allows Email Address Enum… vulnerability-lookup
 vulnerability-lookup
 2026-02-04T19:21:34.411344Z 2026-02-04T19:21:34.411344Z
GCVE-1-2026-0013
2.1 (4.0)
Flask Application Username Route Collision Allows Rese… vulnerability-lookup
 vulnerability-lookup
 2026-02-04T19:27:00.000Z 2026-02-04T19:32:49.787763Z
GCVE-1-2026-0014
7.4 (4.0)
Missing Authorization Check Allows Unauthorized Modifi… vulnerability-lookup
 vulnerability-lookup
 2026-02-04T19:32:14.341383Z 2026-02-04T19:32:14.341383Z
GCVE-1-2026-0015
7.2 (4.0)
Threat actors use FortiCloud SSO bypass to collect LDA… fortinet
 fortios
 2026-02-09T09:09:00.000Z 2026-02-09T09:14:59.004089Z
GCVE-1-2026-0016
7 (4.0)
Server-Side Request Forgery via Event Report Import Fr… misp
 misp
 2026-02-27T10:56:32.745676Z 2026-02-27T10:56:32.745676Z
GCVE-1-2026-0017
7.2 (4.0)
Improper Neutralization of Raw HTML in MISP modules Ma… misp
 misp-modules
 2026-02-27T13:10:24.641948Z 2026-02-27T13:10:24.641948Z
GCVE-1-2026-0018
6.5 (4.0)
Improper access control in MISP user contact form allo… misp
 misp
 2026-02-27T13:25:32.632362Z 2026-02-27T13:25:32.632362Z
GCVE-1-2026-0019
6.4 (4.0)
Improper URL validation in MISP dashboard button widge… misp
 misp
 2026-02-27T14:55:00.000Z 2026-02-27T15:44:29.998063Z
GCVE-1-2026-0020
10 (4.0)
Remote Code Execution Attack Against Eircom D1000 Router Eir
 D1000
 2026-03-11T14:12:00.000Z 2026-03-11T14:23:24.609831Z
GCVE-1-2026-0021
10 (4.0)
Critical RCE Vulnerability reported in Windchill windchill
 FlexPLM
 2026-03-23T12:30:40.249187Z 2026-03-23T12:30:40.249187Z
GCVE-1-2026-0022
6.4 (4.0)
MISP - Beta Overmind UI Stored Cross-Site Scripting in… misp
 misp
 2026-03-30T09:48:36.968649Z 2026-03-30T09:48:36.968649Z
GCVE-1-2026-0023
8.5 (4.0)
Stored XSS in modal item preview for long item content… ail-project
 ail-framework
 2026-04-07T06:29:00.000Z 2026-04-08T04:22:15.084342Z
GCVE-1-2026-0024
8.8 (4.0)
LDAP injection in MISP ApacheAuthenticate when using a… misp
 misp
 2026-04-08T08:28:00.000Z 2026-04-09T04:44:04.936665Z
GCVE-1-2026-0025
6.9 (4.0)
RansomLook - Improper Filtering of Private Location En… ransomlook
 ransomlook
 2026-04-12T15:22:00.000Z 2026-04-12T15:27:31.523942Z
ID CVSS Description Vendor Product Published Updated