Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
CVE-1999-0037
N/A
Arbitrary command execution via metamail package … n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.203Z
CVE-1999-0038
8.4 (3.1)
Buffer overflow in xlock program allows local use… n/a
 n/a
 1999-09-29T04:00:00 2024-09-12T14:37:48.860Z
CVE-1999-0039
7.3 (3.1)
webdist CGI program (webdist.cgi) in SGI IRIX all… n/a
 n/a
 1999-09-29T04:00:00 2024-09-12T14:37:05.701Z
CVE-1999-0040
N/A
Buffer overflow in Xt library of X Windowing Syst… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:56.678Z
CVE-1999-0041
N/A
Buffer overflow in NLS (Natural Language Service). n/a
 n/a
 1999-09-29T04:00:00 2024-09-17T14:25:15.473Z
CVE-1999-0042
N/A
Buffer overflow in University of Washington's imp… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.030Z
CVE-1999-0043
9.8 (3.1)
Command execution via shell metachars in INN daem… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T20:03:35.981Z
CVE-1999-0044
N/A
fsdump command in IRIX allows local users to obta… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.595Z
CVE-1999-0045
N/A
List of arbitrary files on Web host via nph-test-… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.679Z
CVE-1999-0046
N/A
Buffer overflow of rlogin program using TERM envi… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.114Z
CVE-1999-0047
N/A
MIME conversion buffer overflow in sendmail versi… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.134Z
CVE-1999-0048
N/A
Talkd, when given corrupt DNS information, can be… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.128Z
CVE-1999-0049
N/A
Csetup under IRIX allows arbitrary file creation … n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:56.698Z
CVE-1999-0050
N/A
Buffer overflow in HP-UX newgrp program. n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:56.781Z
CVE-1999-0051
N/A
Arbitrary file creation and program execution usi… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.441Z
CVE-1999-0052
7.5 (3.1)
IP fragmentation denial of service in FreeBSD all… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T20:32:09.970Z
CVE-1999-0053
N/A
TCP RST denial of service in FreeBSD. n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.548Z
CVE-1999-0054
N/A
Sun's ftpd daemon can be subjected to a denial of… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.455Z
CVE-1999-0055
N/A
Buffer overflows in Sun libnsl allow root access. n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.271Z
CVE-1999-0056
N/A
Buffer overflow in Sun's ping program can give ro… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.417Z
CVE-1999-0057
N/A
Vacation program allows command execution by remo… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.213Z
CVE-1999-0058
N/A
Buffer overflow in PHP cgi program, php.cgi allow… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.281Z
CVE-1999-0059
7.3 (3.1)
IRIX fam service allows an attacker to obtain a l… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T20:35:57.570Z
CVE-1999-0060
N/A
Attackers can cause a denial of service in Ascend… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:56.721Z
CVE-1999-0062
N/A
The chpass command in OpenBSD allows a local user… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.414Z
CVE-1999-0063
N/A
Cisco IOS 12.0 and other versions can be crashed … n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.325Z
CVE-1999-0064
N/A
Buffer overflow in AIX lquerylv program gives roo… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.301Z
CVE-1999-0065
N/A
Multiple buffer overflows in how dtmail handles a… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.300Z
CVE-1999-0066
9.8 (3.1)
AnyForm CGI remote execution. n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T20:50:29.555Z
CVE-1999-0067
N/A
phf CGI program allows remote command execution t… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.471Z
ID CVSS Description Vendor Product Published Updated
CVE-1999-1032
N/A
Vulnerability in LAT/Telnet Gateway (lattelnet) o… n/a
 n/a
 2002-03-09T05:00:00 2024-08-01T16:55:29.565Z
CVE-1999-1059
N/A
Vulnerability in rexec daemon (rexecd) in AT&T TC… n/a
 n/a
 2002-03-09T05:00:00 2024-08-01T17:02:52.980Z
CVE-1999-0627
N/A
The rexd service is running, which uses weak auth… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:41:45.714Z
CVE-1999-1121
N/A
The default configuration for UUCP in AIX before … n/a
 n/a
 2002-03-09T05:00:00 2024-08-01T17:02:53.747Z
CVE-1999-0117
N/A
AIX passwd allows local users to gain root access. n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.677Z
CVE-1999-1119
N/A
FTP installation script anon.ftp in AIX insecurel… n/a
 n/a
 2002-03-09T05:00:00 2024-08-01T17:02:53.747Z
CVE-1999-1142
N/A
SunOS 4.1.2 and earlier allows local users to gai… n/a
 n/a
 2002-03-09T05:00:00 2024-08-01T17:02:53.703Z
CVE-1999-0168
N/A
The portmapper may act as a proxy and redirect se… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.737Z
CVE-1999-0214
N/A
Denial of service by sending forged ICMP unreacha… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:34:51.621Z
CVE-1999-1396
N/A
Vulnerability in integer multiplication emulation… n/a
 n/a
 2001-09-12T04:00:00 2024-08-01T17:11:03.183Z
CVE-1999-1395
N/A
Vulnerability in Monitor utility (SYS$SHARE:SPISH… n/a
 n/a
 2001-09-12T04:00:00 2024-08-01T17:11:03.180Z
CVE-1999-1306
N/A
Cisco IOS 9.1 and earlier does not properly handl… n/a
 n/a
 2001-09-12T04:00:00 2024-08-01T17:11:02.973Z
CVE-1999-1466
N/A
Vulnerability in Cisco routers versions 8.2 throu… n/a
 n/a
 2001-09-12T04:00:00 2024-08-01T17:18:07.269Z
CVE-1999-1021
N/A
NFS on SunOS 4.1 through 4.1.2 ignores the high o… n/a
 n/a
 2002-03-09T05:00:00 2024-08-01T16:55:29.374Z
CVE-1999-1056
N/A
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-1395. Reason: This candidate is a duplicate of CVE-1999-1395. Notes: All CVE users should reference CVE-1999-1395 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage N/A N/A 2001-09-12T04:00:00 2005-02-04T00:00:00
CVE-1999-0312
N/A
HP ypbind allows attackers with root privileges t… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:34:51.825Z
CVE-1999-1507
N/A
Sun SunOS 4.1 through 4.1.3 allows local attacker… n/a
 n/a
 2002-03-09T05:00:00 2024-08-01T17:18:07.522Z
CVE-1999-1218
N/A
Vulnerability in finger in Commodore Amiga UNIX 2… n/a
 n/a
 2001-09-12T04:00:00 2024-08-01T17:02:53.763Z
CVE-1999-1312
N/A
Vulnerability in DEC OpenVMS VAX 5.5-2 through 5.… n/a
 n/a
 2001-09-12T04:00:00 2024-08-01T17:11:02.912Z
CVE-1999-1216
N/A
Cisco routers 9.17 and earlier allow remote attac… n/a
 n/a
 2001-09-12T04:00:00 2024-08-01T17:02:53.915Z
CVE-1999-1162
N/A
Vulnerability in passwd in SCO UNIX 4.0 and earli… n/a
 n/a
 2002-03-09T05:00:00 2024-08-01T17:02:53.757Z
CVE-1999-0124
N/A
Vulnerabilities in UMN gopher and gopher+ version… n/a
 n/a
 2000-06-02T04:00:00 2024-08-01T16:27:57.636Z
CVE-1999-1215
N/A
LOGIN.EXE program in Novell Netware 4.0 and 4.01 … n/a
 n/a
 2002-03-09T05:00:00 2024-08-01T17:02:53.798Z
CVE-1999-1138
N/A
SCO UNIX System V/386 Release 3.2, and other SCO … n/a
 n/a
 2002-03-09T05:00:00 2024-08-01T17:02:53.798Z
CVE-1999-1318
N/A
/usr/5bin/su in SunOS 4.1.3 and earlier uses a se… n/a
 n/a
 2002-03-09T05:00:00 2024-08-01T17:11:02.962Z
CVE-1999-0145
N/A
Sendmail WIZ command enabled, allowing root access. n/a
 n/a
 2000-10-13T04:00:00 2024-08-01T16:27:57.695Z
CVE-1999-1137
N/A
The permissions for the /dev/audio device on Sola… n/a
 n/a
 2002-03-09T05:00:00 2024-08-01T17:02:53.705Z
CVE-1999-0334
N/A
In Solaris 2.2 and 2.3, when fsck fails on startu… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:34:51.960Z
CVE-1999-0181
N/A
The wall daemon can be used for denial of service… n/a
 n/a
 1999-09-29T04:00:00 2024-08-01T16:27:57.764Z
CVE-1999-1242
N/A
Vulnerability in subnetconfig in HP-UX 9.01 and 9… n/a
 n/a
 2001-09-12T04:00:00 2024-08-01T17:02:53.864Z
ID Description Published Updated
ID Severity Description Published Updated
ghsa-5726-g6r9-5f22
Potential for Script Injection in syntax-error 2017-10-24T18:33:36Z 2022-02-25T19:54:10Z
ghsa-59c7-4xj2-hgvw
6.1 (3.1)
rails-html-sanitizer Cross-site Scripting vulnerability 2017-10-24T18:33:36Z 2023-01-23T20:38:10Z
ghsa-5j3g-jfq3-7jwx
Arbitrary JavaScript Execution in bassmaster 2017-10-24T18:33:36Z 2021-09-01T22:16:02Z
ghsa-67j6-xv27-w6ww
Web Console (Ruby gem) contains whitelisted_ips bypass 2017-10-24T18:33:36Z 2023-03-14T23:11:59Z
ghsa-6h5q-96hp-9jgm
actionpack vulnerable to Cross-site Scripting 2017-10-24T18:33:36Z 2023-08-25T18:48:39Z
ghsa-6jvm-3j5h-79f6
paperclip Cross-site Scripting vulnerability 2017-10-24T18:33:36Z 2023-01-23T20:43:16Z
ghsa-6x85-j5j2-27jx
7.5 (3.1)
actionpack Path Traversal vulnerability 2017-10-24T18:33:36Z 2025-10-24T19:28:04Z
ghsa-73qw-ww62-m54x
10.0 (3.1)
colorscore Command Injection vulnerability 2017-10-24T18:33:36Z 2023-01-25T23:05:06Z
ghsa-7cgp-c3g7-qvrw
actionpack Improper Input Validation vulnerability 2017-10-24T18:33:36Z 2023-06-30T21:25:19Z
ghsa-84fq-6626-w5fg
CORS Token Disclosure in crumb 2017-10-24T18:33:36Z 2020-08-31T18:07:28Z
ghsa-8r6h-7x9g-xmw9
will_paginate Cross-site Scripting vulnerability 2017-10-24T18:33:36Z 2023-01-23T20:49:57Z
ghsa-92v7-pq4h-58j5
facter, hiera, mcollective-client, and puppet affected by untrusted search path vulnerability 2017-10-24T18:33:36Z 2023-06-07T14:06:11Z
ghsa-959j-5g9v-3fpq
Paratrooper-newrelic Exposes of Sensitive Information to an Unauthorized Actor 2017-10-24T18:33:36Z 2023-08-25T22:59:09Z
ghsa-9959-c6q6-6qp3
Moderate severity vulnerability that affects validator 2017-10-24T18:33:36Z 2020-06-17T16:30:41Z
ghsa-9h6g-gp95-x3q5
7.5 (3.1)
actionpack is vulnerable to denial of service because of a wildcard controller route 2017-10-24T18:33:36Z 2022-04-25T20:52:00Z
ghsa-9rf5-jm6f-2fmm
Active Record subject to strong parameters protection bypass 2017-10-24T18:33:36Z 2023-08-25T22:56:38Z
ghsa-c9c5-9fpr-m882
sentry-raven allows remote attackers to cause a denial of service via a large exponent value in a s… 2017-10-24T18:33:36Z 2023-01-25T23:16:15Z
ghsa-c9f4-xj24-8jqx
7.5 (3.1)
Regular Expression Denial of Service in uglify-js 2017-10-24T18:33:36Z 2021-09-08T21:59:09Z
ghsa-cfjh-p3g4-3q2f
VBScript Content Injection in marked 2017-10-24T18:33:36Z 2021-09-09T17:02:02Z
ghsa-cqr7-78pj-3g7j
File Descriptor Leak Can Cause DoS Vulnerability in hapi 2017-10-24T18:33:36Z 2021-09-09T20:31:02Z
ghsa-fmr4-7g9q-7hc7
Moderate severity vulnerability that affects handlebars 2017-10-24T18:33:36Z 2020-06-17T16:30:43Z
ghsa-fqrr-rrwg-69pv
Local API Login Credentials Disclosure in paratrooper-pingdom 2017-10-24T18:33:36Z 2023-07-05T18:46:48Z
ghsa-gfjr-3jmm-4g9v
7.5 (3.1)
Symlink Arbitrary File Overwrite in tar 2017-10-24T18:33:36Z 2021-09-10T20:53:22Z
ghsa-ghqm-pgxj-37gq
6.1 (3.1)
rails-html-sanitizer Cross-site Scripting vulnerability 2017-10-24T18:33:36Z 2023-01-23T21:16:04Z
ghsa-h56m-vwxc-3qpw
Directory traversal vulnerability in actionpack 2017-10-24T18:33:36Z 2023-08-25T19:56:49Z
ghsa-hgmw-x865-hf9x
Arabic Prawn allows remote attackers to execute arbitrary commands via shell metacharacters 2017-10-24T18:33:36Z 2023-01-26T20:58:07Z
ghsa-hjcp-j389-59ff
7.5 (3.1)
Regular Expression Denial of Service in marked 2017-10-24T18:33:36Z 2024-02-09T17:50:43Z
ghsa-hqf9-rc9j-5fmj
Array data injection vulnerability in activerecord 2017-10-24T18:33:36Z 2023-07-05T17:50:02Z
ghsa-j96r-xvjq-r9pg
activesupport vulnerable to Denial of Service via large XML document depth 2017-10-24T18:33:36Z 2025-03-31T17:46:20Z
ghsa-jgqf-hwc5-hh37
5.3 (3.1)
Root Path Disclosure in send 2017-10-24T18:33:36Z 2021-09-14T19:42:25Z
ID Severity Description Package Published Updated
pysec-2009-5
schema.py in FormEncode for Python (python-formencode) 1.0 does not apply the chained_val… formencode 2009-03-30T01:30:00Z 2021-07-16T01:31:20.304490Z
pysec-2009-13
MoinMoin 1.6.2 and 1.7 does not properly enforce ACL checks when acl_hierarchic is set to… moin 2009-04-03T18:30:00Z 2024-11-25T18:35:18.357593Z
pysec-2009-6
Multiple cross-site scripting (XSS) vulnerabilities in action/AttachFile.py in MoinMoin 1… moin 2009-04-29T18:30:00Z 2017-08-17T01:30:00Z
pysec-2009-3
The Admin media handler in core/servers/basehttp.py in Django 1.0 and 0.96 does not prope… django 2009-08-04T16:30:00Z 2021-07-15T02:22:07.875702Z
pysec-2009-8
Unspecified vulnerability in Zope Object Database (ZODB) before 3.8.2, when certain Zope … zodb3 2009-08-07T19:30:00Z 2021-07-16T01:31:36.649414Z
pysec-2009-9
Zope Object Database (ZODB) before 3.8.2, when certain Zope Enterprise Objects (ZEO) data… zodb3 2009-08-07T19:30:00Z 2021-07-16T01:31:36.719288Z
pysec-2009-1
Cross-site scripting (XSS) vulnerability in the waterfall web status view (status/web/wat… buildbot 2009-08-25T17:30:00Z 2021-07-15T02:22:07.208084Z
pysec-2009-2
Multiple cross-site scripting (XSS) vulnerabilities in Buildbot 0.7.6 through 0.7.11p2 al… buildbot 2009-08-26T14:24:00Z 2021-07-15T02:22:07.247020Z
pysec-2009-10
Unspecified vulnerability in the Zope Enterprise Objects (ZEO) storage-server functionali… zodb3 2009-09-08T18:30:00Z 2024-01-17T10:48:40.464440Z
pysec-2009-4
Algorithmic complexity vulnerability in the forms library in Django 1.0 before 1.0.4 and … django 2009-10-13T10:30:00Z 2021-07-15T02:22:07.960103Z
pysec-2009-7
Multiple unspecified vulnerabilities in Trac before 0.11.6 have unknown impact and attack… trac 2009-12-23T21:30:00Z 2021-07-16T01:31:34.738485Z
pysec-2010-14
MoinMoin 1.9 before 1.9.1 does not perform the expected clearing of the sys.argv array in… moin 2010-02-26T19:30:00Z 2021-07-16T01:31:23.463823Z
pysec-2010-15
Unspecified vulnerability in MoinMoin 1.5.x through 1.7.x, 1.8.x before 1.8.7, and 1.9.x … moin 2010-02-26T19:30:00Z 2021-07-16T01:31:23.566810Z
pysec-2010-2
MoinMoin before 1.8.7 and 1.9.x before 1.9.2 does not properly sanitize user profiles, wh… moin 2010-02-26T19:30:00Z 2021-07-05T00:01:22.841909Z
pysec-2010-3
The default configuration of cfg.packagepages_actions_excluded in MoinMoin before 1.8.7 d… moin 2010-02-26T19:30:00Z 2021-07-05T00:01:22.874295Z
pysec-2010-13
MoinMoin 1.7.x before 1.7.3 and 1.8.x before 1.8.3 checks parent ACLs in certain inapprop… moin 2010-03-29T20:30:00Z 2010-05-27T05:47:00Z
pysec-2010-28
Cross-site scripting (XSS) vulnerability in action/Despam.py in the Despam action module … moin 2010-04-05T15:30:00Z 2021-08-27T03:22:07.708069Z
pysec-2010-19
Cross-site scripting (XSS) vulnerability in PortalTransforms in Plone 2.1 through 3.3.4 b… plone 2010-06-24T12:17:00Z 2021-07-16T01:31:27.252837Z
pysec-2010-1
Mako before 0.3.4 relies on the cgi.escape function in the Python standard library for cr… mako 2010-07-02T19:00:00Z 2021-07-05T00:01:22.516270Z
pysec-2010-30
Buffer overflow in Dan Pascu python-cjson 1.0.5, when UCS-4 encoding is enabled, allows c… python-cjson 2010-07-02T19:00:00Z 2021-08-27T03:22:17.891561Z
pysec-2010-26
Dan Pascu python-cjson 1.0.5 does not properly handle a ['/'] argument to cjson.encode, w… python-cjson 2010-07-02T19:30:00Z 2021-07-16T01:31:29.455845Z
pysec-2010-16
Multiple cross-site scripting (XSS) vulnerabilities in MoinMoin 1.7.3 and earlier, 1.8.x … moin 2010-08-05T13:22:00Z 2021-07-16T01:31:23.671563Z
pysec-2010-17
Multiple cross-site scripting (XSS) vulnerabilities in MoinMoin 1.7.3 and earlier, and 1.… moin 2010-08-05T13:22:00Z 2021-07-16T01:31:23.735889Z
pysec-2010-18
Multiple cross-site scripting (XSS) vulnerabilities in MoinMoin 1.9.x before 1.9.3 allow … moin 2010-08-05T13:22:00Z 2021-07-16T01:31:23.812033Z
pysec-2010-32
ZServer in Zope 2.10.x before 2.10.12 and 2.11.x before 2.11.7 allows remote attackers to… Zope 2010-09-08T20:00:00Z 2024-11-25T18:35:18.357593Z
pysec-2010-12
Cross-site scripting (XSS) vulnerability in Django 1.2.x before 1.2.2 allows remote attac… django 2010-09-14T19:00:00Z 2021-07-15T02:22:08.006222Z
pysec-2010-31
Cross-site scripting (XSS) vulnerability in cgi/client.py in Roundup before 1.4.14 allows… roundup 2010-09-24T19:00:00Z 2021-08-27T03:22:19.672970Z
pysec-2010-10
Memory leak in the on_dtp_close function in ftpserver.py in pyftpdlib before 0.5.2 allows… pyftpdlib 2010-10-19T20:00:00Z 2021-07-05T00:01:24.847543Z
pysec-2010-11
Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows r… pyftpdlib 2010-10-19T20:00:00Z 2021-07-05T00:01:24.878652Z
pysec-2010-20
Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.2.0 al… pyftpdlib 2010-10-19T20:00:00Z 2010-10-20T04:00:00Z
ID Description Type
ID Description Updated
ID Description Published Updated
mal-2022-3502 Malicious code in gulp-browserify-thin (npm) 2022-05-16T06:47:08Z 2022-05-16T06:47:15Z
mal-2022-2020 Malicious code in colors-update (npm) 2022-05-16T07:05:12Z 2022-05-16T07:06:31Z
mal-2022-230 Malicious code in @epc-apps/alert-servie (npm) 2022-05-16T07:13:06Z 2022-05-16T07:13:06Z
mal-2022-232 Malicious code in @epc-apps/api-ingestor (npm) 2022-05-16T07:13:06Z 2022-05-16T07:13:06Z
mal-2022-234 Malicious code in @epc-apps/api-outages (npm) 2022-05-16T07:13:11Z 2022-05-16T07:13:12Z
mal-2022-243 Malicious code in @epc-infra/users-stack (npm) 2022-05-16T07:13:11Z 2022-05-16T07:13:12Z
mal-2022-231 Malicious code in @epc-apps/api-generic-plan (npm) 2022-05-16T07:13:13Z 2022-05-16T07:13:14Z
mal-2022-238 Malicious code in @epc-infra/clinstestpackage (npm) 2022-05-16T07:13:13Z 2022-05-16T07:13:14Z
mal-2022-239 Malicious code in @epc-infra/dns-stack (npm) 2022-05-16T07:13:33Z 2022-05-16T07:13:33Z
mal-2022-240 Malicious code in @epc-infra/dynamo-stack (npm) 2022-05-16T07:13:33Z 2022-05-16T07:13:33Z
mal-2022-241 Malicious code in @epc-infra/region-only-policy (npm) 2022-05-16T07:13:33Z 2022-05-16T07:13:33Z
mal-2022-242 Malicious code in @epc-infra/stack-config (npm) 2022-05-16T07:13:33Z 2022-05-16T07:13:33Z
mal-2022-244 Malicious code in @epc-libraries/cdk-custom-resources (npm) 2022-05-16T07:13:33Z 2022-05-16T07:13:33Z
mal-2022-233 Malicious code in @epc-apps/api-management-plan (npm) 2022-05-16T07:13:34Z 2022-05-16T07:13:35Z
mal-2022-245 Malicious code in @epc-libraries/data-api-versions (npm) 2022-05-16T07:14:57Z 2022-05-16T07:14:57Z
mal-2022-237 Malicious code in @epc-infra/aurora-stack (npm) 2022-05-16T07:15:02Z 2022-05-16T07:15:02Z
mal-2022-246 Malicious code in @epc-libraries/driver-outage-db (npm) 2022-05-16T07:15:02Z 2022-05-16T07:15:02Z
mal-2022-1929 Malicious code in clinstestpackage (npm) 2022-05-16T07:17:21Z 2022-05-16T07:17:28Z
mal-2022-247 Malicious code in @epc-libraries/kinesis-service (npm) 2022-05-16T07:19:35Z 2022-05-16T07:19:35Z
mal-2022-248 Malicious code in @epc-libraries/utils (npm) 2022-05-16T07:19:45Z 2022-05-16T07:19:45Z
mal-2022-236 Malicious code in @epc-infra/app-lookup-stack (npm) 2022-05-16T07:19:51Z 2022-05-16T07:19:51Z
mal-2022-1040 Malicious code in api-extractor-test-01 (npm) 2022-05-16T07:27:01Z 2022-05-16T07:27:01Z
mal-2022-5577 Malicious code in rainbow-bridge-testing (npm) 2022-05-16T07:27:01Z 2022-05-16T07:27:02Z
mal-2022-4264 Malicious code in lbc-git (npm) 2022-05-16T07:31:48Z 2022-05-16T07:31:49Z
mal-2022-1142 Malicious code in assets-common (npm) 2022-05-16T07:40:54Z 2022-05-16T07:41:02Z
mal-2022-1645 Malicious code in bolt-styles (npm) 2022-05-16T07:40:54Z 2022-05-16T07:41:01Z
mal-2022-1823 Malicious code in cap-common-pages (npm) 2022-05-16T07:40:54Z 2022-05-16T07:40:54Z
mal-2022-1824 Malicious code in cap-products (npm) 2022-05-16T07:40:54Z 2022-05-16T07:40:54Z
mal-2022-1990 Malicious code in coldstone-helpers (npm) 2022-05-16T07:40:54Z 2022-05-16T07:40:54Z
mal-2022-1991 Malicious code in coldstone-sls (npm) 2022-05-16T07:40:54Z 2022-05-16T07:40:54Z
ID Description Published Updated
wid-sec-w-2025-1232 FreeType: Mehrere Schwachstellen 2014-03-11T23:00:00.000+00:00 2025-06-03T22:00:00.000+00:00
wid-sec-w-2024-3574 Cisco ASA (Adaptive Security Appliance): Schwachstelle ermöglicht Cross-Site Scripting 2014-03-18T23:00:00.000+00:00 2024-12-02T23:00:00.000+00:00
wid-sec-w-2025-0662 TigerVNC: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Benutzerrechten 2014-03-24T23:00:00.000+00:00 2025-03-31T22:00:00.000+00:00
wid-sec-w-2023-0502 OpenSSL: Schwachstelle ermöglicht Denial of Service oder Datenmanipulation 2014-05-01T22:00:00.000+00:00 2023-02-27T23:00:00.000+00:00
wid-sec-w-2023-1282 PHP: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes 2014-05-04T22:00:00.000+00:00 2023-05-23T22:00:00.000+00:00
wid-sec-w-2023-0501 OpenSSL: Schwachstelle ermöglicht Denial of Service 2014-05-06T22:00:00.000+00:00 2023-02-27T23:00:00.000+00:00
wid-sec-w-2023-0918 Apache Struts: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes 2014-05-06T22:00:00.000+00:00 2025-07-30T22:00:00.000+00:00
wid-sec-w-2025-0620 libxml2: Schwachstelle ermöglicht Denial of Service 2014-05-06T22:00:00.000+00:00 2025-03-20T23:00:00.000+00:00
wid-sec-w-2023-2930 cobbler: Schwachstelle ermöglicht Offenlegung von Informationen 2014-05-08T22:00:00.000+00:00 2023-11-14T23:00:00.000+00:00
wid-sec-w-2023-0754 Apache Tomcat: Mehrere Schwachstellen 2014-06-10T22:00:00.000+00:00 2023-03-26T22:00:00.000+00:00
wid-sec-w-2023-0499 GNU libc: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2014-07-10T22:00:00.000+00:00 2023-02-27T23:00:00.000+00:00
wid-sec-w-2023-0498 OpenSSL: Mehrere Schwachstellen 2014-08-06T22:00:00.000+00:00 2023-02-27T23:00:00.000+00:00
wid-sec-w-2023-0306 Apache HttpComponents: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2014-08-18T22:00:00.000+00:00 2024-09-17T22:00:00.000+00:00
wid-sec-w-2023-0497 GNU libc: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Benutzerrechten 2014-08-25T22:00:00.000+00:00 2023-02-27T23:00:00.000+00:00
wid-sec-w-2025-1695 Net-SNMP: Schwachstelle ermöglicht Denial of Service 2014-08-31T22:00:00.000+00:00 2025-07-31T22:00:00.000+00:00
wid-sec-w-2023-1653 cURL: Mehrere Schwachstellen 2014-09-10T22:00:00.000+00:00 2023-07-04T22:00:00.000+00:00
wid-sec-w-2023-2704 IBM Storwize: Schwachstelle ermöglicht Privilegieneskalation 2014-09-10T22:00:00.000+00:00 2023-10-17T22:00:00.000+00:00
wid-sec-w-2025-0213 Perl: Schwachstelle ermöglicht Denial of Service 2014-09-28T22:00:00.000+00:00 2025-01-28T23:00:00.000+00:00
wid-sec-w-2022-0140 rsyslog: Schwachstelle ermöglicht Denial of Service 2014-09-30T22:00:00.000+00:00 2023-08-17T22:00:00.000+00:00
wid-sec-w-2023-0431 SSL 3.0: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2014-10-14T22:00:00.000+00:00 2023-04-16T22:00:00.000+00:00
wid-sec-w-2024-3391 libxml2: Schwachstelle ermöglicht Denial of Service 2014-10-16T22:00:00.000+00:00 2025-06-30T22:00:00.000+00:00
wid-sec-w-2025-2520 Python: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2014-11-16T23:00:00.000+00:00 2025-11-09T23:00:00.000+00:00
wid-sec-w-2025-1178 Internet Systems Consortium BIND: Mehrere Schwachstellen ermöglichen Denial of Service 2014-12-08T23:00:00.000+00:00 2025-05-29T22:00:00.000+00:00
wid-sec-w-2025-0661 tigervnc: Mehrere Schwachstellen 2014-12-09T23:00:00.000+00:00 2025-03-31T22:00:00.000+00:00
wid-sec-w-2024-1056 libssh: Schwachstelle ermöglicht Denial of Service 2014-12-28T23:00:00.000+00:00 2024-05-07T22:00:00.000+00:00
wid-sec-w-2025-1424 libpng: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Benutzerrechten 2015-01-18T23:00:00.000+00:00 2025-06-30T22:00:00.000+00:00
wid-sec-w-2025-1658 Oracle Java SE und Oracle JRockit : Mehrere Schwachstellen 2015-01-20T23:00:00.000+00:00 2025-07-28T22:00:00.000+00:00
wid-sec-w-2023-0975 GNU libc: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes 2015-01-27T23:00:00.000+00:00 2023-04-16T22:00:00.000+00:00
wid-sec-w-2025-0271 libyaml: Schwachstelle ermöglicht Denial of Service 2015-01-28T23:00:00.000+00:00 2025-02-04T23:00:00.000+00:00
wid-sec-w-2024-0542 cpio: Schwachstelle ermöglicht Manipulation von Dateien 2015-02-02T23:00:00.000+00:00 2024-03-18T23:00:00.000+00:00
ID Description Published Updated
ncsc-2024-0249 Kwetsbaarheden verholpen in Microsoft Azure 2024-06-11T18:15:29.806897Z 2024-06-11T18:15:29.806897Z
ncsc-2024-0250 Kwetsbaarheden verholpen in Microsoft Visual Studio 2024-06-11T18:18:10.131111Z 2024-06-11T18:18:10.131111Z
ncsc-2024-0251 Kwetsbaarheden verholpen in Microsoft Office 2024-06-11T18:20:51.628241Z 2024-06-11T18:20:51.628241Z
ncsc-2024-0252 Kwetsbaarheden verholpen in Microsoft Dynamics 2024-06-11T18:23:19.082621Z 2024-06-11T18:23:19.082621Z
ncsc-2024-0253 Kwetsbaarheid verholpen in Adobe Photoshop 2024-06-13T13:31:15.643260Z 2024-06-13T13:31:15.643260Z
ncsc-2024-0254 Kwetsbaarheden verholpen in Adobe FrameMaker Publishing Server 2024-06-13T13:34:41.831468Z 2024-06-13T13:34:41.831468Z
ncsc-2024-0255 Kwetsbaarheden verholpen in Adobe Commerce 2024-06-13T13:36:13.246216Z 2024-07-01T07:10:59.549847Z
ncsc-2024-0256 Kwetsbaarheden verholpen in Adobe ColdFusion 2024-06-13T13:37:57.490381Z 2024-06-13T13:37:57.490381Z
ncsc-2024-0257 Kwetsbaarheid verholpen in Adobe Creative Cloud Desktop Application 2024-06-14T06:27:08.002611Z 2024-06-14T06:27:08.002611Z
ncsc-2024-0258 Kwetsbaarheden verholpen in GitLab Enterprise Edition en Community Edition 2024-06-14T06:28:31.318295Z 2024-06-14T06:28:31.318295Z
ncsc-2024-0259 Kwetsbaarheden verholpen in Adobe Experience Manager 2024-06-14T06:30:30.926535Z 2024-06-14T06:30:30.926535Z
ncsc-2024-0260 Kwetsbaarheden verholpen in Nvidia GPU Drivers 2024-06-14T06:34:54.620125Z 2024-06-14T06:34:54.620125Z
ncsc-2024-0261 Kwetsbaarheid verholpen in Fortinet FortiOS 2024-06-14T09:59:56.652183Z 2024-06-14T09:59:56.652183Z
ncsc-2024-0262 Kwetsbaarheden verholpen in VMware vCenter 2024-06-18T11:46:03.858476Z 2024-06-18T11:46:03.858476Z
ncsc-2024-0264 Kwetsbaarheden verholpen in Avaya IP Office 2024-06-25T10:17:16.686897Z 2024-06-25T10:17:16.686897Z
ncsc-2024-0265 Kwetsbaarheid verholpen in XWiki 2024-06-25T10:17:56.645201Z 2024-06-25T10:17:56.645201Z
ncsc-2024-0266 Kwetsbaarheden verholpen in WordPress 2024-06-25T12:19:50.298884Z 2024-06-25T12:19:50.298884Z
ncsc-2024-0267 Kwetsbaarheden verholpen in Progress MOVEit 2024-06-26T07:27:55.195431Z 2024-06-26T08:58:01.371553Z
ncsc-2024-0268 Kwetsbaarheden verholpen in Progress WhatsUp Gold 2024-06-26T07:43:11.795773Z 2024-08-08T07:50:41.453544Z
ncsc-2024-0269 Kwetsbaarheden verholpen in VMware ESXi en vCenter Server 2024-06-26T09:02:10.988453Z 2024-07-30T09:32:13.311694Z
ncsc-2024-0270 Kwetsbaarheden verholpen in GitLab Enterprise Edition en Community Edition 2024-06-27T13:09:06.950898Z 2024-07-04T06:45:26.935999Z
ncsc-2024-0271 Kwetsbaarheid verholpen in Juniper Session Smart Router 2024-06-28T09:55:17.082602Z 2024-06-28T09:55:17.082602Z
ncsc-2024-0272 Kwetsbaarheid verholpen in OpenSSH 2024-07-01T12:21:57.127505Z 2024-07-01T15:37:23.231069Z
ncsc-2024-0273 Kwetsbaarheden ontdekt in Kiloview P1 4G Video Encoder en P2 4G Video Encoder 2024-07-02T07:04:39.395441Z 2024-07-02T07:04:39.395441Z
ncsc-2024-0274 Kwetsbaarheid verholpen in GeoServer 2024-07-02T11:40:34.048090Z 2024-07-05T09:41:10.197056Z
ncsc-2024-0275 Kwetsbaarheden verholpen in Apache HHTP-server 2024-07-02T11:44:22.653047Z 2024-07-02T11:44:22.653047Z
ncsc-2024-0276 Kwetsbaarheden verholpen in Splunk 2024-07-02T13:15:06.374293Z 2024-07-02T13:15:06.374293Z
ncsc-2024-0277 Kwetsbaarheid verholpen in Juniper JunOS 2024-07-03T07:16:21.498075Z 2024-07-03T07:16:21.498075Z
ncsc-2024-0278 Kwetsbaarheden verholpen in Google Android en Samsung Mobile 2024-07-03T07:21:50.013074Z 2024-07-03T07:21:50.013074Z
ncsc-2024-0279 Kwetsbaarheden verholpen in Microsoft Windows 2024-07-09T18:40:21.043319Z 2024-07-09T18:40:21.043319Z
ID Description Published Updated
ID Description Published Updated
ssa-301229 SSA-301229: Client-Side Enforcement of Server-Side Security Vulnerabilities in RUGGEDCOM ROX II 2025-05-13T00:00:00Z 2025-11-11T00:00:00Z
ssa-614723 SSA-614723: Denial of Service Vulnerabilities in User Management Component (UMC) 2025-05-13T00:00:00Z 2025-10-14T00:00:00Z
ssa-726617 SSA-726617: Incorrect Privilege Assignment Vulnerability in Mendix OIDC SSO Module 2025-05-13T00:00:00Z 2025-11-11T00:00:00Z
ssa-794185 SSA-794185: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SIPROTEC, SICAM and Related Products 2025-05-13T00:00:00Z 2025-11-11T00:00:00Z
ssa-864900 SSA-864900: Multiple Vulnerabilities in Fortigate NGFW on RUGGEDCOM APE1808 Devices 2025-05-13T00:00:00Z 2025-11-11T00:00:00Z
ssa-367714 SSA-367714: Improper Integrity Check of Firmware Updates in SiPass integrated AC5102 / ACC-G2 and ACC-AP 2025-05-23T00:00:00Z 2025-10-14T00:00:00Z
ssa-513708 SSA-513708: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 Devices 2025-06-10T00:00:00Z 2025-10-14T00:00:00Z
ssa-083019 SSA-083019: Multiple Vulnerabilities in RUGGEDCOM ROS Devices 2025-07-08T00:00:00Z 2025-10-14T00:00:00Z
ssa-186293 SSA-186293: XML External Entity (XXE) Injection Vulnerability in SIMOTION SCOUT, SIMOTION SCOUT TIA and SINAMICS STARTER 2025-08-12T00:00:00Z 2025-10-14T00:00:00Z
ssa-282044 SSA-282044: DLL Hijacking Vulnerability in Siemens Web Installer used by the Online Software Delivery 2025-08-12T00:00:00Z 2025-12-09T00:00:00Z
ssa-493396 SSA-493396: Deserialization Vulnerability in Siemens Engineering Platforms 2025-08-12T00:00:00Z 2025-12-09T00:00:00Z
ssa-693808 SSA-693808: Deserialization Vulnerability in Siemens Engineering Platforms 2025-08-12T00:00:00Z 2025-12-09T00:00:00Z
ssa-978177 SSA-978177: Vulnerability in Nozomi Guardian/CMC Before 25.4.0 on RUGGEDCOM APE1808 Devices 2025-08-12T00:00:00Z 2025-11-17T00:00:00Z
ssa-722410 SSA-722410: Multiple Vulnerabilities in User Management Component (UMC) 2025-09-09T00:00:00Z 2025-10-14T00:00:00Z
ssa-062309 SSA-062309: Information Disclosure Vulnerability in TeleControl Server Basic V3.1 2025-10-14T00:00:00Z 2025-10-14T00:00:00Z
ssa-318832 SSA-318832: SQL Injection Vulnerability in SINEC NMS 2025-10-14T00:00:00Z 2025-10-14T00:00:00Z
ssa-365200 SSA-365200: Google Chrome Type Confusion Vulnerability in Siemens Products 2025-10-14T00:00:00Z 2025-10-14T00:00:00Z
ssa-486936 SSA-486936: Authentication Vulnerability in SIMATIC ET 200SP Communication Processors 2025-10-14T00:00:00Z 2025-10-14T00:00:00Z
ssa-541582 SSA-541582: Multiple File Parsing Vulnerabilities in Solid Edge 2025-10-14T00:00:00Z 2025-10-14T00:00:00Z
ssa-599451 SSA-599451: Multiple Vulnerabilities in SiPass integrated Before V3.0 2025-10-14T00:00:00Z 2025-10-14T00:00:00Z
ssa-201498 SSA-201498: Multiple Vulnerabilities in the Web Server of SICAM P850 and SICAM P855 Devices Before V3.11 2025-11-11T00:00:00Z 2025-11-11T00:00:00Z
ssa-267056 SSA-267056: Multiple Vulnerabilities in LOGO! 8 BM Devices 2025-11-11T00:00:00Z 2025-11-11T00:00:00Z
ssa-339694 SSA-339694: Multiple Vulnerabilities in Spectrum Power 4 Before v4.70 SP12 Security Patch 2 2025-11-11T00:00:00Z 2025-11-11T00:00:00Z
ssa-365596 SSA-365596: DLL Hijacking Vulnerability in Siemens Software Center and Solid Edge 2025-11-11T00:00:00Z 2025-11-11T00:00:00Z
ssa-514895 SSA-514895: Multiple Vulnerabilities in Altair Grid Engine V2025.1.0 2025-11-11T00:00:00Z 2025-11-11T00:00:00Z
ssa-522291 SSA-522291: Improper Certificate Validation Vulnerability in Solid Edge 2025-11-11T00:00:00Z 2025-11-11T00:00:00Z
ssa-682326 SSA-682326: Multiple Vulnerabilities in COMOS before V10.4.5 2025-11-11T00:00:00Z 2025-11-11T00:00:00Z
ssa-190588 SSA-190588: Cross-Site Scripting Vulnerability in Mendix Rich Text Widget 2025-11-17T00:00:00Z 2025-11-17T00:00:00Z
ssa-241605 SSA-241605: Out of Bounds Read in PS/IGES Parasolid Translator Component Before V29.0.258 2025-11-17T00:00:00Z 2025-11-17T00:00:00Z
ssa-202008 SSA-202008: Multiple Vulnerabilities in Ruggedcom Rox Before V2.17.0 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ID Description Published Updated
rhsa-2002:103 Red Hat Security Advisory: : : : Updated Apache packages fix chunked encoding issue 2002-06-19T23:57:00+00:00 2025-11-21T17:24:50+00:00
rhsa-2002:118 Red Hat Security Advisory: apache security update for Stronghold 2002-06-20T13:22:00+00:00 2025-11-21T17:24:50+00:00
rhsa-2002:129 Red Hat Security Advisory: php security update 2002-06-26T00:00:00+00:00 2025-11-21T17:24:52+00:00
rhsa-2002:101 Red Hat Security Advisory: : Updated mailman packages available 2002-06-27T08:29:00+00:00 2025-11-21T17:24:52+00:00
rhsa-2002:127 Red Hat Security Advisory: : : : Updated OpenSSH packages fix various security issues 2002-06-27T21:45:00+00:00 2025-11-21T17:24:52+00:00
rhsa-2002:117 Red Hat Security Advisory: : : : Updated secureweb packages fix chunked encoding issue 2002-06-30T15:23:00+00:00 2025-11-21T17:24:50+00:00
rhsa-2001:164 Red Hat Security Advisory: : Updated secureweb packages available 2002-07-01T10:35:00+00:00 2025-11-21T17:24:43+00:00
rhsa-2002:051 Red Hat Security Advisory: : : : New Squid packages available 2002-07-04T02:44:00+00:00 2025-11-21T17:24:46+00:00
rhsa-2002:131 Red Hat Security Advisory: openssh security update 2002-07-12T22:37:00+00:00 2025-11-21T17:24:52+00:00
rhsa-2002:130 Red Hat Security Advisory: squid security update 2002-07-12T22:58:00+00:00 2025-11-21T17:24:52+00:00
rhsa-2002:125 Red Hat Security Advisory: mailman security update 2002-07-12T22:59:00+00:00 2025-11-21T17:24:53+00:00
rhsa-2002:126 Red Hat Security Advisory: apache security update 2002-07-12T23:00:00+00:00 2025-11-21T17:24:52+00:00
rhsa-2002:128 Red Hat Security Advisory: Updated kernel with information security fixes, bug fixes, and updated drivers 2002-07-16T15:57:00+00:00 2025-11-21T17:24:52+00:00
rhsa-2002:134 Red Hat Security Advisory: : Updated mod_ssl packages available 2002-07-16T19:23:00+00:00 2025-11-21T17:24:55+00:00
rhsa-2002:136 Red Hat Security Advisory: mod_ssl security update 2002-07-16T21:35:00+00:00 2025-11-21T17:24:54+00:00
rhsa-2002:135 Red Hat Security Advisory: : : : Updated secureweb packages available 2002-07-24T08:37:00+00:00 2025-11-21T17:24:54+00:00
rhsa-2002:139 Red Hat Security Advisory: : Updated glibc packages fix vulnerabilities in resolver 2002-07-25T02:15:00+00:00 2025-11-21T17:24:55+00:00
rhsa-2002:132 Red Hat Security Advisory: : : : Updated util-linux package fixes password locking race 2002-07-29T15:00:00+00:00 2025-11-21T17:24:53+00:00
rhsa-2002:137 Red Hat Security Advisory: util-linux security update 2002-07-29T15:51:00+00:00 2025-11-21T17:24:54+00:00
rhsa-2002:119 Red Hat Security Advisory: bind security update 2002-07-30T08:07:00+00:00 2025-11-21T17:24:50+00:00
rhsa-2002:157 Red Hat Security Advisory: openssl security update 2002-07-30T10:46:00+00:00 2025-11-21T17:24:57+00:00
rhsa-2002:155 Red Hat Security Advisory: : Updated openssl packages fix remote vulnerabilities 2002-07-30T10:47:00+00:00 2025-11-21T17:24:57+00:00
rhsa-2002:154 Red Hat Security Advisory: mm security update 2002-07-31T08:50:00+00:00 2025-11-21T17:24:57+00:00
rhsa-2002:153 Red Hat Security Advisory: : Updated mm packages fix temporary file handling 2002-07-31T08:51:00+00:00 2025-11-21T17:24:57+00:00
rhsa-2002:164 Red Hat Security Advisory: openssl, mm, mod_ssl security update for Stronghold 2002-07-31T15:58:00+00:00 2025-11-21T17:24:59+00:00
rhsa-2002:150 Red Hat Security Advisory: apache security update for Stronghold 2002-07-31T16:23:00+00:00 2025-11-21T17:24:56+00:00
rhsa-2002:146 Red Hat Security Advisory: mod_ssl security update for Stronghold 2002-08-01T21:25:00+00:00 2025-11-21T17:24:55+00:00
rhsa-2002:122 Red Hat Security Advisory: gaim security update 2002-08-02T13:50:00+00:00 2025-11-21T17:24:51+00:00
rhsa-2002:152 Red Hat Security Advisory: libpng security update 2002-08-05T07:25:00+00:00 2025-11-21T17:24:56+00:00
rhsa-2002:161 Red Hat Security Advisory: openssl security update 2002-08-05T18:59:00+00:00 2025-11-21T17:24:58+00:00
ID Description Published Updated
icsa-11-279-04 Beckhoff TwinCAT Read Access Violation 2011-07-09T06:00:00.000000Z 2025-06-09T19:51:19.034220Z
icsa-11-280-01 Cogent DataHub Vulnerabilities 2011-07-10T06:00:00.000000Z 2025-06-09T19:51:25.265310Z
icsa-11-294-01 Progea Movicon Power HMI Vulnerabilities 2011-07-24T06:00:00.000000Z 2025-06-09T19:51:50.522681Z
icsa-11-298-01a Sielco Sistemi Winlog Buffer Overflow 2011-07-28T06:00:00.000000Z 2025-06-09T19:52:09.187490Z
icsa-11-307-01 Schneider Electric Vijeo Historian Web Server Multiple Vulnerabilities 2011-08-06T06:00:00.000000Z 2025-06-09T19:52:15.424002Z
icsa-11-314-01 Safenet Sentinel and 7-T Input Sanitization Vulnerability 2011-08-13T06:00:00.000000Z 2025-06-09T19:52:40.428887Z
icsa-11-319-01 InduSoft Web Studio Vulnerabilities 2011-08-18T06:00:00.000000Z 2025-06-09T19:52:46.658796Z
icsa-11-332-01a Wonderware InBatch ActiveX Vulnerabilities 2011-08-31T06:00:00.000000Z 2025-06-05T21:50:14.861339Z
icsa-11-335-01 7-Technologies Data Server Denial of Service 2011-09-03T06:00:00.000000Z 2025-06-09T19:52:59.122386Z
icsa-11-340-01 ARC Informatique PcVue HMI/SCADA ActiveX Vulnerabilities 2011-09-08T06:00:00.000000Z 2025-06-09T19:53:05.359419Z
icsa-11-343-01 Siemens FactoryLink Multiple ActiveX Vulnerabilities 2011-09-11T06:00:00.000000Z 2025-06-09T16:33:03.608185Z
icsa-11-353-01 7-Technologies Interactive Graphical SCADA 2011-09-21T06:00:00.000000Z 2025-06-09T16:33:16.051366Z
icsa-11-355-01 7-Technologies IGSS Buffer Overflow 2011-09-23T06:00:00.000000Z 2025-06-09T16:33:22.315361Z
icsa-11-355-02 WellinTech KingView History Server Buffer Overflow 2011-09-23T06:00:00.000000Z 2025-06-09T16:33:28.540538Z
icsa-11-356-01 Siemens Simatic HMI Authentication Vulnerabilities 2011-09-24T06:00:00.000000Z 2025-06-05T21:54:31.029394Z
icsa-11-361-01 Siemens Automation License Manager Vulnerabilities 2011-09-29T06:00:00.000000Z 2025-06-09T16:33:34.827604Z
icsa-11-362-01 ScadaTEC ScadaPhone & Modbus TagServer Buffer Overflow Vulnerability 2011-09-30T06:00:00.000000Z 2025-06-09T16:33:59.781942Z
icsa-11-017-01 WellinTech Kingview 6.53 Remote Heap Overflow 2011-10-20T06:00:00.000000Z 2025-06-09T17:26:33.851054Z
icsa-11-017-02 Sielco Sistemi WinLog Stack Overflow 2011-10-20T06:00:00.000000Z 2025-06-09T17:26:40.152728Z
icsa-11-018-02 7-Technologies IGSS 8 ODBC Server Remote Heap Corruption 2011-10-21T06:00:00.000000Z 2025-06-09T17:26:46.401729Z
icsa-11-069-01b Samsung Data Management Server (Update B) 2011-12-11T07:00:00.000000Z 2025-06-09T17:26:52.608805Z
icsa-11-074-01 WellinTech KingView 6.53 KVWebSvr ActiveX 2011-12-16T07:00:00.000000Z 2025-06-09T17:26:58.846835Z
icsa-11-082-01 Ecava IntegraXor SQL 2011-12-24T07:00:00.000000Z 2025-06-09T17:27:05.078770Z
icsa-12-095-01a ABB Multiple Components Buffer Overflow 2012-01-06T07:00:00.000000Z 2025-06-06T21:44:41.492952Z
icsa-12-102-01 Certec atvise webMI2ADS Vulnerabilities 2012-01-13T07:00:00.000000Z 2025-06-06T21:44:47.952815Z
icsa-12-102-02 Koyo Ecom Modules Vulnerabilities 2012-01-13T07:00:00.000000Z 2025-06-06T21:44:54.405200Z
icsa-12-102-03 MICROSYS PROMOTIC Use After Free Vulnerability 2012-01-13T07:00:00.000000Z 2025-06-06T21:45:00.844061Z
icsa-12-102-04 Siemens Scalance X Buffer Overflow Vulnerability 2012-01-13T07:00:00.000000Z 2025-06-06T21:45:07.306451Z
icsa-12-102-05 Siemens Scalance S Multiple Security Vulnerabilities 2012-01-13T07:00:00.000000Z 2025-06-06T21:45:13.758298Z
icsa-12-122-01 WellinTech KingView DLL Hijack Vulnerability 2012-02-02T07:00:00.000000Z 2025-06-06T21:45:20.208792Z
ID Description Published Updated
cisco-sa-20170927-pnp Cisco IOS and IOS XE Software Plug-and-Play PKI API Certificate Validation Vulnerability 2017-09-27T16:00:00+00:00 2017-09-27T16:00:00+00:00
cisco-sa-20170927-privesc Cisco IOS XE Software Web UI Privilege Escalation Vulnerability 2017-09-27T16:00:00+00:00 2017-09-27T16:00:00+00:00
cisco-sa-20170927-profinet Cisco IOS Software for Cisco Industrial Ethernet Switches PROFINET Denial of Service Vulnerability 2017-09-27T16:00:00+00:00 2022-12-17T05:54:03+00:00
cisco-sa-20170927-rbip-dos Cisco IOS Software for Cisco Integrated Services Routers Generation 2 Denial of Service Vulnerability 2017-09-27T16:00:00+00:00 2022-12-17T04:17:58+00:00
cisco-sa-20170927-restapi Cisco IOS XE Software Web UI REST API Authentication Bypass Vulnerability 2017-09-27T16:00:00+00:00 2017-09-27T16:00:00+00:00
cisco-sa-20170927-vpls Cisco IOS Software for Cisco Catalyst 6800 Series Switches VPLS Denial of Service Vulnerability 2017-09-27T16:00:00+00:00 2017-09-27T16:00:00+00:00
cisco-sa-20171004-asa Cisco Adaptive Security Appliance Software Direct Authentication Denial of Service Vulnerability 2017-10-04T16:00:00+00:00 2017-10-12T13:48:00+00:00
cisco-sa-20171018-ccs Cisco Cloud Services Platform 2100 Unauthorized Access Vulnerability 2017-10-18T16:00:00+00:00 2017-10-18T16:00:00+00:00
cisco-sa-20171103-bgp Cisco IOS XE Software Ethernet Virtual Private Network Border Gateway Protocol Denial of Service Vulnerability 2017-11-03T16:00:00+00:00 2022-12-16T21:17:38+00:00
cisco-sa-20171129-fxnx Cisco FXOS and NX-OS System Software CLI Command Injection Vulnerability 2017-11-29T16:00:00+00:00 2018-01-11T18:32:00+00:00
cisco-sa-20171129-ipp Cisco IP Phone 8800 Series Denial of Service Vulnerability 2017-11-29T16:00:00+00:00 2017-11-29T16:00:00+00:00
cisco-sa-20171129-nss Cisco Nexus Series Switches CLI Command Injection Vulnerability 2017-11-29T16:00:00+00:00 2018-01-11T18:32:00+00:00
cisco-sa-20171129-nxos Cisco NX-OS System Software Patch Signature Bypass Vulnerability 2017-11-29T16:00:00+00:00 2017-11-29T16:00:00+00:00
cisco-sa-20171129-nxos1 Cisco NX-OS System Software Patch Installation Arbitrary File Write Vulnerability 2017-11-29T16:00:00+00:00 2017-11-29T16:00:00+00:00
cisco-sa-20171129-nxos2 Cisco NX-OS System Software Image Signature Bypass Vulnerability 2017-11-29T16:00:00+00:00 2017-11-29T16:00:00+00:00
cisco-sa-20180103-warfp Cisco WebEx Advanced Recording Format Player Remote Code Execution Vulnerability 2018-01-03T16:00:00+00:00 2018-01-03T16:00:00+00:00
cisco-sa-20180103-wnrp Cisco WebEx Network Recording Player Buffer Overflow Vulnerability 2018-01-03T16:00:00+00:00 2018-01-03T16:00:00+00:00
cisco-sa-20180104-cpusidechannel CPU Side-Channel Information Disclosure Vulnerabilities 2018-01-04T22:20:00+00:00 2018-07-06T21:11:00+00:00
cisco-sa-20180110-ucm Cisco Unified Communications Manager Cross-Site Scripting Vulnerability 2018-01-10T16:00:00+00:00 2018-01-10T16:00:00+00:00
cisco-sa-20180117-300-500-smb1 Cisco Small Business 300 and 500 Series Managed Switches Cross-Site Scripting Vulnerability 2018-01-17T16:00:00+00:00 2018-01-17T16:00:00+00:00
cisco-sa-20180117-300-500-smb2 Cisco Small Business 300 and 500 Series Managed Switches HTTP Response Splitting Vulnerability 2018-01-17T16:00:00+00:00 2018-01-17T16:00:00+00:00
cisco-sa-20180117-acpe Cisco AnyConnect Profile Editor XML External Entity Injection Vulnerability 2018-01-17T16:00:00+00:00 2018-01-17T16:00:00+00:00
cisco-sa-20180117-cpi Cisco Prime Infrastructure Privilege Escalation Vulnerability 2018-01-17T16:00:00+00:00 2018-01-17T16:00:00+00:00
cisco-sa-20180117-cps Cisco Policy Suite Unauthenticated Information Disclosure Vulnerability 2018-01-17T16:00:00+00:00 2018-01-17T16:00:00+00:00
cisco-sa-20180117-cvp Cisco Unified Customer Voice Portal Denial of Service Vulnerability 2018-01-17T16:00:00+00:00 2018-02-15T20:49:00+00:00
cisco-sa-20180117-elm Cisco Enterprise License Manager Information Disclosure Vulnerability 2018-01-17T16:00:00+00:00 2019-07-23T20:56:00+00:00
cisco-sa-20180117-esasma Cisco Email Security and Content Security Management Appliance Privilege Escalation Vulnerability 2018-01-17T16:00:00+00:00 2018-01-23T16:28:00+00:00
cisco-sa-20180117-esc Cisco Elastic Services Controller Information Disclosure Vulnerability 2018-01-17T16:00:00+00:00 2018-01-17T16:00:00+00:00
cisco-sa-20180117-iess Cisco IOS Software for Industrial Ethernet 4010 Series Switches Test Command Arbitrary Code Execution and Denial of Service Vulnerability 2018-01-17T16:00:00+00:00 2018-01-17T16:00:00+00:00
cisco-sa-20180117-ise Cisco Identity Services Engine DOM Cross-Site Scripting Vulnerability 2018-01-17T16:00:00+00:00 2018-01-17T16:00:00+00:00
ID Description Published Updated
sca-2023-0005 Vulnerabilities in SICK EventCam App 2023-06-19T11:00:00.000Z 2023-06-19T11:00:00.000Z
sca-2023-0006 Vulnerabilities in SICK ICR890-4 2023-07-10T13:00:00.000Z 2023-07-10T13:00:00.000Z
sca-2023-0007 Vulnerabilities in SICK LMS5xx 2023-08-25T11:00:00.000Z 2023-08-25T11:00:00.000Z
sca-2023-0009 Vulnerability in Wibu-Systems CodeMeter Runtime affects multiple SICK products 2023-09-29T10:00:00.000Z 2023-09-29T10:00:00.000Z
sca-2023-0008 Vulnerability in SICK SIM1012 2023-09-29T13:00:00.000Z 2023-09-29T13:00:00.000Z
sca-2023-0010 Vulnerabilities in SICK Application Processing Unit 2023-10-09T11:00:00.000Z 2023-10-09T11:00:00.000Z
sca-2023-0011 Vulnerability in multiple SICK Flexi Soft Gateways 2023-10-23T11:00:00.000Z 2023-10-23T11:00:00.000Z
sca-2024-0001 Vulnerability in SICK Logistics Analytics Products and SICK Field Analytics 2024-01-29T00:00:00.000Z 2024-01-29T00:00:00.000Z
sca-2024-0002 Vulnerability in SICK MSC800 2024-09-11T23:00:00.000Z 2024-09-11T23:00:00.000Z
sca-2024-0003 Critical vulnerability in multiple SICK products 2024-10-17T13:00:00.000Z 2024-10-17T13:00:00.000Z
sca-2024-0004 Third party vulnerabilities in SICK CDE-100 2024-11-07T12:00:00.000Z 2024-11-07T12:00:00.000Z
sca-2024-0005 Vulnerability in SICK Incoming Goods Suite 2024-11-19T00:00:00.000Z 2024-11-19T00:00:00.000Z
sca-2024-0006 Critical vulnerabilities in SICK InspectorP61x, InspectorP62x and TiM3xx 2024-12-06T00:00:00.000Z 2024-12-06T00:00:00.000Z
sca-2024-0007 Vulnerability in SICK OLM 2024-12-31T00:00:00.000Z 2024-12-31T00:00:00.000Z
sca-2025-0002 Vulnerability in SICK Lector8xx and SICK InspectorP8xx 2025-02-14T10:19:00.000Z 2025-02-14T10:19:00.000Z
sca-2025-0001 Multiple vulnerabilities in SICK MEAC300 2025-02-14T14:00:00.000Z 2025-02-21T14:00:00.000Z
sca-2025-0003 FreeRTOS Vulnerabilities have no impact on SICK Products 2025-02-28T00:00:00.000Z 2025-05-20T11:00:00.000Z
sca-2025-0004 Critical vulnerabilities in SICK DL100-2xxxxxxx 2025-03-14T11:00:00.000Z 2025-03-14T11:00:00.000Z
sca-2025-0005 Vulnerabilities in SICK Flexi Compact 2025-04-28T10:00:00.000Z 2025-04-28T10:00:00.000Z
sca-2025-0006 Vulnerability affecting picoScan and multiScan 2025-04-28T13:00:00.000Z 2025-04-28T13:00:00.000Z
sca-2025-0007 Multiple vulnerabilities in SICK Field Analytics and SICK Media Server 2025-06-12T13:00:00.000Z 2025-06-12T13:00:00.000Z
sca-2025-0008 Multiple vulnerabilities in Endress+Hauser MEAC300-FNADE4 2025-07-03T13:00:00.000Z 2025-07-03T13:00:00.000Z
sca-2025-0009 Vulnerabilities affecting SICK TDC-E210GC 2025-08-01T13:00:00.000Z 2025-08-01T13:00:00.000Z
sca-2025-0010 Multiple vulnerabilities in SICK Enterprise Analytics and SICK Logistic Analytics Products 2025-10-02T13:00:00.000Z 2025-10-02T13:00:00.000Z
sca-2025-0011 Vulnerabilities affecting Endress+Hauser SSG-E210GC 2025-10-02T13:00:00.000Z 2025-10-02T13:00:00.000Z
sca-2025-0012 Sudo vulnerability affects SICK SID products 2025-10-27T11:00:00.000Z 2025-10-27T14:00:00.000Z
sca-2025-0013 Vulnerabilities affecting SICK TLOC100-100 2025-10-27T14:00:00.000Z 2025-11-11T14:00:00.000Z
sca-2025-0014 CodeMeter vulnerablity affects SICK CODE-LOC and SICK LIDAR-LOC 2025-11-03T11:00:00.000Z 2025-11-03T14:00:00.000Z
ID Description Published Updated
nn-2025:10-01 Authenticated SQL Injection on CLI functionality in Guardian/CMC before 25.3.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:4-01 Client-side path traversal in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:5-01 Incorrect authorization for CLI in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:6-01 Authenticated SQL Injection on Smart Polling functionality in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:7-01 Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:8-01 Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:9-01 Path traversal in Time Machine functionality in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:11-01 Stored Cross-Site Scripting (XSS) in Dashboards in Guardian/CMC before 25.4.0 2025-11-25T11:00:00.000Z 2025-11-26T11:00:00.000Z
nn-2025:12-01 HTML injection in in Time Machine functionality in Guardian/CMC before 25.5.0 2025-12-18T11:00:00.000Z 2025-12-18T11:00:00.000Z
nn-2025:13-01 Stored Cross-Site Scripting (XSS) in Reports in Guardian/CMC before 25.5.0 2025-12-18T11:00:00.000Z 2025-12-18T11:00:00.000Z
nn-2025:14-01 HTML injection in Asset List in Guardian/CMC before 25.5.0 2025-12-18T11:00:00.000Z 2025-12-18T11:00:00.000Z
nn-2025:15-01 Path traversal in Import Arc data archive functionality in Guardian/CMC before 25.5.0 2025-12-18T11:00:00.000Z 2025-12-18T11:00:00.000Z
ID Description Published Updated
ID Description Published Updated
msrc_cve-2007-6109 Stack-based buffer overflow in emacs allows user-assisted attackers to cause a denial of service (application crash) and possibly have unspecified other impact via a large precision value in an integer format string specifier to the format function as demonstrated via a certain "emacs -batch -eval" command line. 2007-12-02T00:00:00.000Z 2022-06-17T00:00:00.000Z
msrc_cve-2007-6353 Integer overflow in exif.cpp in exiv2 library allows context-dependent attackers to execute arbitrary code via a crafted EXIF file that triggers a heap-based buffer overflow. 2007-12-02T00:00:00.000Z 2025-10-01T23:10:51.000Z
msrc_cve-2007-4998 cp when running with an option to preserve symlinks on multiple OSes allows local user-assisted attackers to overwrite arbitrary files via a symlink attack using crafted directories containing multiple source files that are copied to the same destination. 2008-01-02T00:00:00.000Z 2024-08-15T00:00:00.000Z
msrc_cve-2008-0888 The NEEDBITS macro in the inflate_dynamic function in inflate.c for unzip can be invoked using invalid buffers which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors that trigger a free of uninitialized or previously-freed data. 2008-03-02T00:00:00.000Z 2024-06-30T07:00:00.000Z
msrc_cve-2008-2149 Stack-based buffer overflow in the searchwn function in Wordnet 2.0 2.1 and 3.0 might allow context-dependent attackers to execute arbitrary code via a long command line option. NOTE: this issue probably does not cross privilege boundaries except in cases in which Wordnet is used as a back end. 2008-05-02T00:00:00.000Z 2024-06-30T07:00:00.000Z
msrc_cve-2008-3908 Multiple buffer overflows in Princeton WordNet (wn) 3.0 allow context-dependent attackers to execute arbitrary code via (1) a long argument on the command line; a long (2) WNSEARCHDIR (3) WNHOME or (4) WNDBVERSION environment variable; or (5) a user-supplied dictionary (aka data file). NOTE: since WordNet itself does not run with special privileges this issue only crosses privilege boundaries when WordNet is invoked as a third party component. 2008-09-02T00:00:00.000Z 2024-06-30T07:00:00.000Z
msrc_cve-2008-3912 libclamav in ClamAV before 0.94 allows attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors related to an out-of-memory condition. 2008-09-02T00:00:00.000Z 2020-10-25T00:00:00.000Z
msrc_cve-2008-3913 Multiple memory leaks in freshclam/manager.c in ClamAV before 0.94 might allow attackers to cause a denial of service (memory consumption) via unspecified vectors related to "error handling logic". 2008-09-02T00:00:00.000Z 2020-10-25T00:00:00.000Z
msrc_cve-2008-3914 Multiple unspecified vulnerabilities in ClamAV before 0.94 have unknown impact and attack vectors related to file descriptor leaks on the "error path" in (1) libclamav/others.c and (2) libclamav/sis.c. 2008-09-02T00:00:00.000Z 2020-10-25T00:00:00.000Z
msrc_cve-2009-0590 The ASN1_STRING_print_ex function in OpenSSL before 0.9.8k allows remote attackers to cause a denial of service (invalid memory access and application crash) via vectors that trigger printing of a (1) BMPString or (2) UniversalString with an invalid encoded length. 2009-03-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2009-1241 Unspecified vulnerability in ClamAV before 0.95 allows remote attackers to bypass detection of malware via a modified RAR archive. 2009-04-02T00:00:00.000Z 2020-10-25T00:00:00.000Z
msrc_cve-2009-1890 The stream_reqbody_cl function in mod_proxy_http.c in the mod_proxy module in the Apache HTTP Server before 2.3.3 when a reverse proxy is configured does not properly handle an amount of streamed data that exceeds the Content-Length value which allows remote attackers to cause a denial of service (CPU consumption) via crafted requests. 2009-07-02T00:00:00.000Z 2022-05-27T00:00:00.000Z
msrc_cve-2009-3767 libraries/libldap/tls_o.c in OpenLDAP 2.2 and 2.4 and possibly other versions when OpenSSL is used does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority a related issue to CVE-2009-2408. 2009-10-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2009-4484 Multiple stack-based buffer overflows in the CertDecoder::GetName function in src/asn.cpp in TaoCrypt in yaSSL before 1.9.9 as used in mysqld in MySQL 5.0.x before 5.0.90 MySQL 5.1.x before 5.1.43 MySQL 5.5.x through 5.5.0-m2 and other products allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption and daemon crash) by establishing an SSL connection and sending an X.509 client certificate with a crafted name field as demonstrated by mysql_overflow1.py and the vd_mysql5 module in VulnDisco Pack Professional 8.11. NOTE: this was originally reported for MySQL 5.0.51a. 2009-12-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2009-4487 nginx 0.7.64 writes data to a log file without sanitizing non-printable characters which might allow remote attackers to modify a window's title or possibly execute arbitrary commands or overwrite files via an HTTP request containing an escape sequence for a terminal emulator. 2010-01-02T00:00:00.000Z 2020-11-17T00:00:00.000Z
msrc_cve-2010-0291 The Linux kernel before 2.6.32.4 allows local users to gain privileges or cause a denial of service (panic) by calling the (1) mmap or (2) mremap function, aka the "do_mremap() mess" or "mremap/mmap mess." 2010-02-02T00:00:00.000Z 2025-09-03T22:00:06.000Z
msrc_cve-2010-0298 The x86 emulator in KVM 83 does not use the Current Privilege Level (CPL) and I/O Privilege Level (IOPL) in determining the memory access available to CPL3 code which allows guest OS users to cause a denial of service (guest OS crash) or gain privileges on the guest OS by leveraging access to a (1) IO port or (2) MMIO region a related issue to CVE-2010-0306. 2010-02-02T00:00:00.000Z 2024-08-15T00:00:00.000Z
msrc_cve-2010-0309 The pit_ioport_read function in the Programmable Interval Timer (PIT) emulation in i8254.c in KVM 83 does not properly use the pit_state data structure which allows guest OS users to cause a denial of service (host OS crash or hang) by attempting to read the /dev/port file. 2010-02-02T00:00:00.000Z 2024-08-15T00:00:00.000Z
msrc_cve-2010-2249 Memory leak in pngrutil.c in libpng before 1.2.44, and 1.4.x before 1.4.3, allows remote attackers to cause a denial of service (memory consumption and application crash) via a PNG image containing malformed Physical Scale (aka sCAL) chunks. 2010-06-02T00:00:00.000Z 2025-09-03T23:15:39.000Z
msrc_cve-2010-2542 Stack-based buffer overflow in the is_git_directory function in setup.c in Git before 1.7.2.1 allows local users to gain privileges via a long gitdir: field in a .git file in a working copy. 2010-08-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2010-2891 Buffer overflow in the smiGetNode function in lib/smi.c in libsmi 0.4.8 allows context-dependent attackers to execute arbitrary code via an Object Identifier (aka OID) represented as a numerical string containing many components separated by . (dot) characters. 2010-10-02T00:00:00.000Z 2024-06-30T07:00:00.000Z
msrc_cve-2010-2642 Heap-based buffer overflow in the AFM font parser in the dvi-backend component in Evince 2.32 and earlier, teTeX 3.0, t1lib 5.1.2, and possibly other products allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font in conjunction with a DVI file that is processed by the thumbnailer. 2011-01-02T00:00:00.000Z 2025-10-01T23:10:51.000Z
msrc_cve-2010-3865 Integer overflow in the rds_rdma_pages function in net/rds/rdma.c in the Linux kernel allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted iovec struct in a Reliable Datagram Sockets (RDS) request which triggers a buffer overflow. 2011-01-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2011-0640 The default configuration of udev on Linux does not warn the user before enabling additional Human Interface Device (HID) functionality over USB which allows user-assisted attackers to execute arbitrary programs via crafted USB data as demonstrated by keyboard and mouse data sent by malware on a smartphone that the user connected to the computer. 2011-01-02T00:00:00.000Z 2021-12-16T00:00:00.000Z
msrc_cve-2010-4756 The glob implementation in the GNU C Library (aka glibc or libc6) allows remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames, as demonstrated by glob expressions in STAT commands to an FTP daemon, a different vulnerability than CVE-2010-2632. 2011-03-02T00:00:00.000Z 2025-09-04T04:29:41.000Z
msrc_cve-2011-1429 Mutt does not verify that the smtps server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof an SSL SMTP server via an arbitrary certificate, a different vulnerability than CVE-2009-3766. 2011-03-02T00:00:00.000Z 2025-10-01T23:10:51.000Z
msrc_cve-2011-2501 The png_format_buffer function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 allows remote attackers to cause a denial of service (application crash) via a crafted PNG image that triggers an out-of-bounds read during the copying of error-message data. NOTE: this vulnerability exists because of a CVE-2004-0421 regression. NOTE: this is called an off-by-one error by some sources. 2011-07-02T00:00:00.000Z 2025-04-16T00:00:00.000Z
msrc_cve-2011-2691 The png_err function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 makes a function call using a NULL pointer argument instead of an empty-string argument, which allows remote attackers to cause a denial of service (application crash) via a crafted PNG image. 2011-07-02T00:00:00.000Z 2025-04-16T00:00:00.000Z
msrc_cve-2009-5063 Memory leak in the embedded_profile_len function in pngwutil.c in libpng before 1.2.39beta5 allows context-dependent attackers to cause a denial of service (memory leak or segmentation fault) via a JPEG image containing an iCCP chunk with a negative embedded profile length. NOTE: this is due to an incomplete fix for CVE-2006-7244. 2011-08-02T00:00:00.000Z 2025-09-03T20:45:49.000Z
msrc_cve-2010-4563 The Linux kernel when using IPv6 allows remote attackers to determine whether a host is sniffing the network by sending an ICMPv6 Echo Request to a multicast address and determining whether an Echo Reply is sent as demonstrated by thcping. 2012-02-02T00:00:00.000Z 2024-08-15T00:00:00.000Z
ID Description Published Updated
sa25p003 B&R Automation Runtime Vulnerabilities in System Diagnostic Manager (SDM) 2025-10-07T00:30:00.000Z 2025-10-14T00:30:00.000Z
4tz00000006008 LVS MConfig Insecure memory handling 2025-10-08T00:30:00.000Z 2025-10-08T00:30:00.000Z
4tz00000006007 ALS-mini-S4/S8 IP Missing Authentication Vulnerability and its Mitigations 2025-10-20T00:30:00.000Z 2025-10-23T00:30:00.000Z
9akk108471a8948 Terra AC wallbox Heap Memory Corruption Vulnerability 2025-10-20T00:30:00.000Z 2025-10-21T00:30:00.000Z
2nga002813 PCM600 SharpZip library vulnerability 2025-11-03T00:30:00.000Z 2025-11-03T00:30:00.000Z
7paa022088 Edgenius Management Portal Authentication Bypass 2025-11-20T00:30:00.000Z 2025-11-20T00:30:00.000Z
4hzm000603 ABB Ability Camera Connect Vulnerabilities in outdated 3rd party component (VLC) 2025-11-27T00:30:00.000Z 2025-11-28T00:30:00.000Z
2crt000009 WebPro SNMP Card PowerValue Multiple Vulnerabilities 2026-01-07T00:30:00.000Z 2026-01-07T00:30:00.000Z
ID Description Updated
var-201005-0064 Cisco Mediator Framework 1.5.1 before 1.5.1.build.14-eng, 2.2 before 2.2.1.dev.1, and 3.0… 2021-12-18T17:28:24.032000Z
var-200412-0263 The DSS verification code in Dropbear SSH Server before 0.43 frees uninitialized variable… 2021-12-18T17:51:52.131000Z
var-201001-0029 Unspecified vulnerability in PowerDNS Recursor before 3.1.7.2 allows remote attackers to … 2021-12-18T17:56:06.278000Z
var-201001-0163 The ipv6_hop_jumbo function in net/ipv6/exthdrs.c in the Linux kernel before 2.6.32.4, wh… 2021-12-18T21:59:59.281000Z
var-201805-0613 procps-ng before version 3.3.15 is vulnerable to multiple integer overflows leading to a … 2021-12-18T22:07:19.455000Z
var-201004-0267 The virtual networking stack in VMware Workstation 7.0 before 7.0.1 build 227600, VMware … 2021-12-18T23:56:55.293000Z
var-201804-1619 Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Install). Support… 2021-12-19T00:57:05.378000Z
var-202104-2088 2022-01-01T21:43:54.006000Z
var-201012-0429 2022-01-17T14:43:53.884000Z
var-201008-0396 2022-01-17T15:13:57.932000Z
var-201005-0441 2022-01-17T15:35:01.886000Z
var-201005-0440 2022-01-17T15:35:03.822000Z
var-202101-1992 2022-03-28T13:10:14.160000Z
var-202012-1590 2022-03-28T13:10:48.663000Z
var-202011-1582 2022-03-28T13:11:18.983000Z
var-201302-0422 2022-03-28T13:18:10.496000Z
var-201712-0384 2022-03-28T13:39:01.352000Z
var-201204-0234 2022-03-28T14:09:38.006000Z
var-202110-1907 2022-03-28T15:24:27.396000Z
var-202109-1968 2022-03-28T15:24:42.425000Z
var-202103-1752 2022-03-28T15:26:17.351000Z
var-202103-1651 2022-03-28T15:26:17.893000Z
var-202101-2000 2022-03-28T15:26:59.562000Z
var-202101-1994 2022-03-28T15:26:59.656000Z
var-202008-0729 2022-03-28T15:28:42.740000Z
var-201109-0401 2022-03-28T15:47:17.677000Z
var-202012-1631 2022-03-28T16:00:29.378000Z
var-202112-1881 DIAEnergie Version 1.7.5 and prior is vulnerable to a reflected cross-site scripting atta… 2022-03-29T07:27:46.293000Z
var-202112-1878 DIAEnergie Version 1.7.5 and prior is vulnerable to multiple cross-site scripting vulnera… 2022-03-29T07:33:48.880000Z
var-202112-1879 DIAEnergie Version 1.7.5 and prior is vulnerable to stored cross-site scripting when an u… 2022-03-29T07:41:37.597000Z
ID Description Published Updated
jvndb-2005-000343 DeleGate DNS Message Decompression Denial of Service Vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000396 Ruby XMLRPC Arbitrary Command Execution Vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000530 Vulnerability in multiple web browsers allowing request spoofing attacks 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000537 Webmin and Usermin authentication bypass vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000538 Ruby vulnerability allowing to bypass safe level 4 as a sandbox 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000601 OpenSSL version rollback vulnerability 2008-05-21T00:00+09:00 2014-05-22T18:04+09:00
jvndb-2005-000695 Ruby XMLRPC Server Denial of Service Vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000705 Fujitsu Java Runtime Environment reflection API vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000706 Fujitsu Java Runtime Environment reflection API vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000707 Fujitsu Java Runtime Environment reflection API vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000727 mod_imap cross-site scripting vulnerability 2008-05-21T00:00+09:00 2014-05-22T18:03+09:00
jvndb-2005-000756 Tsuru-Kame Mail vulnerable in S/MIME signature verification 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000757 Cybozu Office browser script execution vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000758 msearch directory traversal vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000759 McAfee VirusScan Engine buffer overflow vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000760 McAfee VirusScan Engine buffer overflow vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000761 Norton AntiVirus causes abnormal OS termination when a user edits a shared network file 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000762 Norton AntiVirus causes abnormal OS termination when scanning illegal files 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000763 ppBlog cross-site scripting vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000764 Website connection problem when a mobile phone terminal uses specific QR code 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000765 Buffalo router configuration management interface vulnerable to remote access and password leakage 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000766 w3ml cross-site scripting vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000767 WebUD arbitrary program execution vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000768 Movable Type session management vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000769 Virus Security heap overflow vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000770 Virus Security memory leak vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000771 Wiki clone cross-site scripting vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000772 Inappropriate interpretation of mailto URL scheme by mail client software 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000773 desknet's cross-site scripting vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
jvndb-2005-000774 SFS cross-site scripting vulnerability 2008-05-21T00:00+09:00 2008-05-21T00:00+09:00
ID Description Updated
ID Description Published Updated
suse-su-2015:0758-1 Security update for mutt 2014-03-17T16:14:56Z 2014-03-17T16:14:56Z
suse-su-2015:0985-1 Security update for sudo 2014-03-20T16:16:51Z 2014-03-20T16:16:51Z
suse-ru-2015:0992-1 Security update for lxc 2014-04-01T09:58:11Z 2014-04-01T09:58:11Z
suse-su-2015:0841-1 Recommended update for mono-core 2014-04-10T23:19:27Z 2014-04-10T23:19:27Z
suse-su-2015:0962-1 Security update for curl 2014-04-15T15:50:15Z 2014-04-15T15:50:15Z
suse-su-2015:1227-1 Security update for strongswan 2014-05-14T09:26:44Z 2014-05-14T09:26:44Z
suse-su-2015:0674-1 Security update for xorg-x11-libs 2014-05-15T16:30:57Z 2014-05-15T16:30:57Z
suse-su-2015:0298-1 Recommended update for clamav 2014-05-28T15:49:37Z 2014-05-28T15:49:37Z
suse-su-2015:0871-1 Recommended update for clamav 2014-05-28T15:49:37Z 2014-05-28T15:49:37Z
suse-su-2015:0675-1 Security update for gnutls 2014-06-03T20:02:07Z 2014-06-03T20:02:07Z
suse-su-2015:0580-1 Recommended update for util-linux 2014-06-04T09:10:15Z 2014-06-04T09:10:15Z
suse-su-2015:0886-1 Security update for struts 2014-06-20T20:43:07Z 2014-06-20T20:43:07Z
suse-su-2015:0427-1 Recommended update for xorg-x11-server 2014-06-27T12:01:01Z 2014-06-27T12:01:01Z
suse-su-2015:1025-1 Recommended update for xorg-x11-server 2014-06-27T12:01:01Z 2014-06-27T12:01:01Z
suse-ru-2015:0696-1 Security update for puppet 2014-06-30T15:48:55Z 2014-06-30T15:48:55Z
suse-su-2015:1015-1 Recommended update for dnsmasq 2014-07-01T23:04:51Z 2014-07-01T23:04:51Z
suse-su-2015:0901-1 Security update for libtasn1 2014-07-17T14:16:08Z 2014-07-17T14:16:08Z
suse-su-2015:0498-1 Security update for oracle-update 2014-07-18T09:38:45Z 2014-07-18T09:38:45Z
suse-su-2015:0498-2 Security update for oracle-update 2014-07-18T13:49:14Z 2014-07-18T13:49:14Z
suse-su-2015:0907-1 Security update for oracle-update 2014-07-18T13:49:14Z 2014-07-18T13:49:14Z
suse-su-2015:0259-3 Security update for ntp 2014-07-21T14:05:24Z 2014-07-21T14:05:24Z
suse-su-2015:0575-1 Security update for CUPS 2014-07-29T16:37:43Z 2014-07-29T16:37:43Z
suse-su-2015:1011-1 Security update for CUPS 2014-07-29T16:37:43Z 2014-07-29T16:37:43Z
suse-su-2015:0620-1 Security update for MySQL 2014-08-19T23:56:10Z 2014-08-19T23:56:10Z
suse-su-2015:0946-1 Security update for MySQL 2014-08-19T23:56:10Z 2014-08-19T23:56:10Z
suse-su-2015:1177-1 Security update for MySQL 2014-08-19T23:56:10Z 2014-08-19T23:56:10Z
suse-su-2015:0709-1 Security update for subversion 2014-08-19T23:56:28Z 2014-08-19T23:56:28Z
suse-ru-2015:0591-1 Recommended update for apache2-mod_nss 2014-08-22T11:39:07Z 2014-08-22T11:39:07Z
suse-ru-2015:0410-1 Security update for openstack-dashboard 2014-08-28T12:06:29Z 2014-08-28T12:06:29Z
suse-ru-2015:0794-1 Security update for glibc 2014-08-29T01:15:58Z 2014-08-29T01:15:58Z
ID Description Published Updated
opensuse-su-2016:2556-1 Security update for ffmpeg 2016-10-18T08:52:34Z 2016-10-18T08:52:34Z
opensuse-su-2016:2560-1 Security update for ffmpeg 2016-10-18T08:52:34Z 2016-10-18T08:52:34Z
opensuse-su-2016:2597-1 Security update for Chromium 2016-10-19T15:50:17Z 2016-10-19T15:50:17Z
opensuse-su-2016:2732-1 Security update for chromium 2016-11-04T16:43:12Z 2016-11-04T16:43:12Z
opensuse-su-2016:2733-1 Security update for chromium 2016-11-04T16:43:12Z 2016-11-04T16:43:12Z
opensuse-su-2016:3019-1 Security update for MozillaThunderbird 2016-12-06T09:05:20Z 2016-12-06T09:05:20Z
opensuse-su-2017:0563-1 Security update for Chromium 2016-12-16T22:45:25Z 2016-12-16T22:45:25Z
opensuse-su-2016:3307-1 Security update for MozillaThunderbird 2016-12-30T17:01:32Z 2016-12-30T17:01:32Z
opensuse-su-2016:3308-1 Security update for MozillaThunderbird 2016-12-30T17:01:32Z 2016-12-30T17:01:32Z
opensuse-su-2017:0034-1 Security update for kopete 2017-01-05T13:34:36Z 2017-01-05T13:34:36Z
opensuse-su-2017:0035-1 Security update for kopete 2017-01-05T13:34:36Z 2017-01-05T13:34:36Z
opensuse-su-2017:0093-1 Security update for irssi 2017-01-09T16:14:54Z 2017-01-09T16:14:54Z
opensuse-su-2017:0094-1 Security update for irssi 2017-01-09T16:14:54Z 2017-01-09T16:14:54Z
opensuse-su-2017:0140-1 Security update for ark 2017-01-16T14:46:13Z 2017-01-16T14:46:13Z
opensuse-su-2017:0150-1 Security update for ark 2017-01-16T14:46:13Z 2017-01-16T14:46:13Z
opensuse-su-2017:0195-1 Security update for libgit2 2017-01-18T13:51:54Z 2017-01-18T13:51:54Z
opensuse-su-2017:0354-1 Security update for MozillaThunderbird 2017-02-01T17:54:52Z 2017-02-01T17:54:52Z
opensuse-su-2017:0357-1 Security update for MozillaThunderbird 2017-02-01T17:54:52Z 2017-02-01T17:54:52Z
opensuse-su-2017:0361-1 Security update for nginx 2017-02-01T21:19:46Z 2017-02-01T21:19:46Z
opensuse-su-2017:0362-1 Security update for nginx 2017-02-01T21:19:46Z 2017-02-01T21:19:46Z
opensuse-su-2017:0405-1 Security update for libgit2 2017-02-06T12:58:42Z 2017-02-06T12:58:42Z
opensuse-su-2017:0413-1 Security update for irssi 2017-02-07T12:14:55Z 2017-02-07T12:14:55Z
opensuse-su-2017:0565-1 Security update of chromium 2017-02-18T10:40:17Z 2017-02-18T10:40:17Z
opensuse-su-2017:0677-1 Security update for kdelibs4, kio 2017-03-13T09:55:34Z 2017-03-13T09:55:34Z
opensuse-su-2017:0680-1 Security update for kdelibs4, kio 2017-03-13T09:55:34Z 2017-03-13T09:55:34Z
opensuse-su-2017:0687-1 Security update for MozillaThunderbird 2017-03-14T14:03:02Z 2017-03-14T14:03:02Z
opensuse-su-2017:0688-1 Security update for MozillaThunderbird 2017-03-14T14:03:02Z 2017-03-14T14:03:02Z
opensuse-su-2017:0737-1 Security update for irssi 2017-03-17T19:52:10Z 2017-03-17T19:52:10Z
opensuse-su-2017:0739-1 Security update for irssi 2017-03-17T19:52:10Z 2017-03-17T19:52:10Z
opensuse-su-2017:0738-1 Security update for Chromium 2017-03-17T20:07:47Z 2017-03-17T20:07:47Z
ID Description Published Updated
cnvd-2014-09191 Cisco Meraki MS MRMX存在shell获取漏洞 2014-12-26 2014-12-29
cnvd-2014-09192 Cisco Meraki MS MRMX任意固件安装漏洞 2014-12-26 2014-12-29
cnvd-2014-09193 IBM Security Access Manager拒绝服务漏洞(CNVD-2014-09193) 2014-12-26 2014-12-29
cnvd-2014-09194 IBM Security Access Manager信息泄露漏洞(CNVD-2014-09194) 2014-12-26 2014-12-29
cnvd-2014-09195 NetIQ Access Manager目录遍历漏洞 2014-12-26 2014-12-29
cnvd-2014-09196 IBM Security Access Manager信息泄露漏洞(CNVD-2014-09196) 2014-12-26 2014-12-29
cnvd-2014-09197 NetIQ Access Manager存在多个跨站脚本漏洞 2014-12-26 2014-12-29
cnvd-2014-09198 IBM Security Access Manager信息泄露漏洞(CNVD-2014-09198) 2014-12-26 2014-12-29
cnvd-2014-09199 IBM Security Access Manager信息泄露漏洞(CNVD-2014-09199) 2014-12-26 2014-12-29
cnvd-2014-09200 IBM Security Access Manager信息泄露漏洞(CNVD-2014-09200) 2014-12-26 2014-12-29
cnvd-2014-09201 IBM Security Access Manager拒绝服务漏洞(CNVD-2014-09201) 2014-12-26 2014-12-29
cnvd-2014-09202 IBM Security Access Manager SQL注入漏洞 2014-12-26 2014-12-29
cnvd-2014-09203 IBM Security Access Manager安全机制绕过漏洞 2014-12-26 2014-12-29
cnvd-2014-09204 IBM Security Access Manager跨站请求伪造漏洞 2014-12-26 2014-12-29
cnvd-2014-09205 IBM Security Access Manager点击劫持漏洞 2014-12-26 2014-12-29
cnvd-2014-09206 WordPress插件TwitterDash跨站请求伪造漏洞 2014-12-26 2014-12-29
cnvd-2014-09207 Piwigo 'rate_picture'函数SQL注入漏洞 2014-12-26 2014-12-29
cnvd-2014-09208 Ettercap堆缓冲区溢出漏洞 2014-12-26 2014-12-30
cnvd-2014-09209 IBM WebSphere Portal XML注入漏洞 2014-12-26 2014-12-30
cnvd-2014-09210 IBM Business Process Manager跨站脚本漏洞(CNVD-2014-09210) 2014-12-26 2014-12-30
cnvd-2014-09211 IBM WebSphere Portal跨站脚本漏洞(CNVD-2014-09211) 2014-12-26 2014-12-30
cnvd-2014-09212 IBM WebSphere Portal跨站脚本漏洞(CNVD-2014-09212) 2014-12-26 2014-12-30
cnvd-2014-09213 IBM Rational Quality Manager跨站脚本漏洞(CNVD-2014-09213) 2014-12-26 2014-12-30
cnvd-2014-09214 WordPress插件SPNbabble存在多个跨站请求伪造漏洞 2014-12-26 2014-12-30
cnvd-2014-09215 WordPress插件O2Tweet存在多个跨站请求伪造漏洞 2014-12-26 2014-12-30
cnvd-2014-09216 WordPress插件Mikiurl Wordpress Eklentisi存在多个跨站请求伪造漏洞 2014-12-26 2014-12-30
cnvd-2014-09217 WordPress插件DandyID Services存在多个跨站请求伪造漏洞 2014-12-26 2014-12-30
cnvd-2014-09218 Ricksoft WBS Gantt-Chart add-on跨站脚本漏洞(CNVD-2014-09218) 2014-12-26 2014-12-30
cnvd-2014-09219 Ricksoft WBS Gantt-Chart add-on跨站脚本漏洞(CNVD-2014-09219) 2014-12-26 2014-12-30
cnvd-2014-09220 TSUTAYA application任意命令执行漏洞 2014-12-26 2014-12-30
ID Description Published Updated
certa-2000-avi-031 Faille dans la commande newgrp sous HP-UX 2000-08-17T00:00:00.000000 2000-08-17T00:00:00.000000
certa-2000-avi-032 Vulnérabilité dans la machine virtuelle Java de Microsoft 2000-08-22T00:00:00.000000 2000-08-22T00:00:00.000000
certa-2000-avi-033 Vulnérabilité dans GNOME Updater 2000-08-22T00:00:00.000000 2000-08-22T00:00:00.000000
certa-2000-avi-034 Faille dans le serveur Internet Java de SUN 2000-08-23T00:00:00.000000 2000-08-23T00:00:00.000000
certa-2000-avi-035 Vulnérabilité dans Microsoft Information Server 2000-08-28T00:00:00.000000 2000-08-28T00:00:00.000000
certa-2000-avi-036 Cheval de Troie : Troj/qaz 2000-08-29T00:00:00.000000 2000-08-29T00:00:00.000000
certa-2000-avi-037 Vulnérabilité sous Windows 2000 dans la politique de sécurité locale 2000-08-29T00:00:00.000000 2000-08-29T00:00:00.000000
certa-2000-avi-038 Vulnérabilité sous ISS REAL SECURE 2000-08-30T00:00:00.000000 2000-08-30T00:00:00.000000
certa-2000-avi-039 vulnérabilités de RPC.statd sous Unix 2000-08-30T00:00:00.000000 2000-08-30T00:00:00.000000
certa-2000-avi-040 Vulnérabilité sous PGP 5.5.x à 6.5.3 2000-08-31T00:00:00.000000 2000-08-31T00:00:00.000000
certa-2000-avi-041 Ver sous Windows : W32/Apology 2000-08-31T00:00:00.000000 2000-08-31T00:00:00.000000
certa-2000-avi-042 Vulnérabilité dans les extensions de fichiers sous Windows 2000-09-04T00:00:00.000000 2000-09-04T00:00:00.000000
certa-2000-avi-043 Vulnérabilité dans mgetty sous Unix 2000-09-04T00:00:00.000000 2000-09-04T00:00:00.000000
certa-2000-avi-044 Vulnérabilité de Windows NT4.0 affectant Internet Information Server 2000-09-07T00:00:00.000000 2000-09-07T00:00:00.000000
certa-2000-avi-045 Note concernant les correctifs ou mises à jour 2000-09-07T00:00:00.000000 2000-09-07T00:00:00.000000
certa-2000-avi-046 vulnérabilité du service imagerie sous Windows 2000 2000-09-11T00:00:00.000000 2000-09-11T00:00:00.000000
certa-2000-avi-047 Vulnérabilité de RPC sous Windows2000 2000-09-12T00:00:00.000000 2000-09-12T00:00:00.000000
certa-2000-avi-048 Vulnérabilité du client telnet sous Windows 2000 2000-09-15T00:00:00.000000 2000-09-15T00:00:00.000000
certa-2000-avi-049 Virus FunnyStory 2000-09-19T00:00:00.000000 2000-09-19T00:00:00.000000
certa-2000-avi-050 Vulnérabilité dans le démon klogd sous Linux 2000-09-20T00:00:00.000000 2000-09-20T00:00:00.000000
certa-2000-avi-051 Vulnérabilités dans CISCOSecure sous Windows NT Server 2000-09-22T00:00:00.000000 2000-09-22T00:00:00.000000
certa-2000-avi-052 Vulnérabilité sous Windows liée à l'ouverture d'un Document Office 2000-09-25T00:00:00.000000 2000-09-25T00:00:00.000000
certa-2000-avi-053 Vulnérabilité dans HP OpenView 2000-09-28T00:00:00.000000 2000-09-28T00:00:00.000000
certa-2000-avi-054 Vulnérabilité dans le garde barrière PIX de CISCO 2000-09-29T00:00:00.000000 2000-09-29T00:00:00.000000
certa-2000-avi-055 Vulnérabilités des LPC sous Windows 2000 et NT 2000-10-04T00:00:00.000000 2000-10-04T00:00:00.000000
certa-2000-avi-056 Vulnérabilité dans la fonction de « fusion-publipostage » sous Word 97 et 2000 2000-10-09T00:00:00.000000 2000-10-09T00:00:00.000000
certa-2000-avi-057 Vulnérabilité dans les protections de fichiers sous Windows 9x et Me 2000-10-11T00:00:00.000000 2000-10-11T00:00:00.000000
certa-2000-avi-058 Vulnérabilité dans IPX/SPX de Microsoft sous Windows 9x/ME 2000-10-12T00:00:00.000000 2000-10-12T00:00:00.000000
certa-2000-avi-059 Vulnérabilité dans la machine virtuelle Java de Microsoft 2000-10-13T00:00:00.000000 2000-10-13T00:00:00.000000
certa-2000-avi-060 Vulnérabilité dans le cache d'authentification d'Internet Explorer 2000-10-13T00:00:00.000000 2000-10-13T00:00:00.000000
ID Description Published Updated
certa-2001-ale-015 Exploitation massive d'une ancienne vulnérabilité de SSH 2001-11-19T00:00:00.000000 2001-11-19T00:00:00.000000
certa-2001-ale-016 Propagation du ver badtrans - variante B 2001-11-27T00:00:00.000000 2001-11-27T00:00:00.000000
certa-2002-ale-001 Exploitation massive d'une faille de CDE 2002-01-24T00:00:00.000000 2002-01-24T00:00:00.000000
certa-2002-ale-002 Exploitation d'une faille de wu-ftpd 2002-01-28T00:00:00.000000 2002-01-28T00:00:00.000000
certa-2002-ale-003 Propagation importante du virus « W32.Myparty@mm » 2002-01-29T00:00:00.000000 2002-01-29T00:00:00.000000
certa-2002-ale-004 Multiples implémentations de SNMP V1 vulnérables 2002-02-13T00:00:00.000000 2002-02-13T00:00:00.000000
certa-2002-ale-005 Risque de compromission des auto-commutateurs (PABX) ALCATEL 4400 2002-02-20T00:00:00.000000 2002-02-20T00:00:00.000000
certa-2002-ale-006 Propagation du ver Spida (Microsoft SQL Server) 2002-05-22T00:00:00.000000 2002-06-04T00:00:00.000000
certa-2002-ale-007 Cédérom Pages Pro 2002-09-04T00:00:00.000000 2002-09-04T00:00:00.000000
certa-2003-ale-001 Vulnérabilité dans l'implémentation des logiciels de lecture des documents PDF 2003-06-23T00:00:00.000000 2003-07-04T00:00:00.000000
certa-2003-ale-002 Exploitation d'une faille de Windows RPC 2003-08-01T00:00:00.000000 2003-08-19T00:00:00.000000
certa-2003-ale-003 Exploitation massive de la vulnérabilité « include PHP » 2003-09-09T00:00:00.000000 2003-09-09T00:00:00.000000
certa-2003-ale-004 Vulnérabilité d'Internet Explorer 2003-09-10T00:00:00.000000 2003-10-06T00:00:00.000000
certa-2003-ale-005 Vulnérabilité de sadmind sur Solaris 2003-09-19T00:00:00.000000 2003-09-19T00:00:00.000000
certa-2003-ale-006 Vulnérabilité dans l'affichage des adresses réticulaires 2003-12-19T00:00:00.000000 2004-02-03T00:00:00.000000
certa-2004-ale-001 Obstacles à la résolution d'incidents 2004-01-30T00:00:00.000000 2004-01-30T00:00:00.000000
certa-2004-ale-002 Propagation du virux Bizex 2004-02-26T00:00:00.000000 2004-02-26T00:00:00.000000
certa-2004-ale-003 Propagation du ver Phatbot 2004-03-19T00:00:00.000000 2004-03-19T00:00:00.000000
certa-2004-ale-004 Vulnérabilité du composant dtlogin de CDE 2004-03-26T00:00:00.000000 2004-08-05T00:00:00.000000
certa-2004-ale-005 Vulnérabilité d'Internet Explorer 2004-04-09T00:00:00.000000 2004-04-15T00:00:00.000000
certa-2004-ale-006 Vulnérabilité SMB sous Windows 2004-04-28T00:00:00.000000 2004-04-28T00:00:00.000000
certa-2004-ale-007 Exploitation de la vulnérabilité LSASS sous Windows : appration du ver Sasser 2004-05-02T00:00:00.000000 2004-05-02T00:00:00.000000
certa-2004-ale-008 Vulnérabilité de Safari 2004-05-19T00:00:00.000000 2004-05-24T00:00:00.000000
certa-2004-ale-009 Vulnérabilités d'Internet Explorer 2004-06-09T00:00:00.000000 2004-08-03T00:00:00.000000
certa-2004-ale-010 Vulnérabilité du service Telnet de Cisco IOS 2004-08-30T00:00:00.000000 2004-08-30T00:00:00.000000
certa-2004-ale-011 Diffusion de programmes exploitant la faille GDI+ 2004-09-23T00:00:00.000000 2004-09-23T00:00:00.000000
certa-2004-ale-012 Vulnérabilité d'Internet Explorer 2004-11-09T00:00:00.000000 2004-12-02T00:00:00.000000
certa-2004-ale-013 Vulnérabilité dans le composant ActiveX DHTML Edit d'Internet Explorer 2004-12-20T00:00:00.000000 2004-12-20T00:00:00.000000
certa-2004-ale-014 Exploitation massive d'une faille du forum phpBB 2004-12-22T00:00:00.000000 2004-12-22T00:00:00.000000
certa-2005-ale-001 Vulnérabilité d'Internet Explorer 2005-01-03T00:00:00.000000 2005-01-11T00:00:00.000000
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated