Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
CVE-2026-28352
6.5 (3.1)
Indico missing access check in event series management API indico
 indico
 2026-02-27T21:01:45.740Z 2026-02-27T21:01:45.740Z
CVE-2026-28351
6.9 (4.0)
Manipulated RunLengthDecode streams can exhaust RAM py-pdf
 pypdf
 2026-02-27T20:59:16.839Z 2026-02-27T20:59:16.839Z
CVE-2026-28338
6.8 (3.1)
PMD Designer has Stored XSS in VBHTMLRenderer and YAHT… pmd
 pmd
 2026-02-27T20:28:05.739Z 2026-02-27T20:28:05.739Z
CVE-2026-28288
5.5 (4.0)
Dify has a user enumeration issue langgenius
 dify
 2026-02-27T20:25:24.599Z 2026-02-27T20:45:44.126Z
CVE-2026-28272
8.1 (3.1)
Kiteworks Email Protection Gateway has a Cross-site Sc… kiteworks
 security-advisories
 2026-02-27T20:22:59.656Z 2026-02-27T20:22:59.656Z
CVE-2026-28271
6.5 (3.1)
Kiteworks Core is vulnerable to Server-Side Request Fo… kiteworks
 security-advisories
 2026-02-27T20:21:12.194Z 2026-02-27T20:21:29.444Z
CVE-2026-28270
4.9 (3.1)
Kiteworks Core has an Unrestricted Upload of File with… kiteworks
 security-advisories
 2026-02-27T20:19:54.611Z 2026-02-27T20:19:54.611Z
CVE-2026-28268
9.8 (3.1)
Vikunja Vulnerable to Account Takeover via Password Re… go-vikunja
 vikunja
 2026-02-27T20:16:29.842Z 2026-02-27T20:16:29.842Z
CVE-2018-25160
N/A
HTTP::Session2 versions through 1.09 for Perl does not… TOKUHIROM
 HTTP::Session2
 2026-02-27T20:15:31.418Z 2026-02-28T00:15:29.050Z
CVE-2026-28231
5.5 (4.0)
pillow_heif Has Integer Overflow in Encode Path Buffer… bigcat88
 pillow_heif
 2026-02-27T20:13:45.195Z 2026-02-27T20:13:45.195Z
CVE-2026-3255
N/A
HTTP::Session2 versions before 1.12 for Perl may gener… TOKUHIROM
 HTTP::Session2
 2026-02-27T20:12:35.414Z 2026-02-28T00:15:39.689Z
CVE-2026-27836
7.5 (3.1)
phpMyFAQ Allows Unauthenticated Account Creation via W… thorsten
 phpMyFAQ
 2026-02-27T19:54:51.992Z 2026-02-27T19:54:51.992Z
CVE-2026-27947
9.4 (4.0)
Group-Office Vulnerable to Remote Code Execution (RCE) Intermesh
 groupoffice
 2026-02-27T19:52:41.592Z 2026-02-27T19:52:41.592Z
CVE-2026-27832
7.1 (4.0)
Group-Office Has Authenticated SQL Injection in advanc… Intermesh
 groupoffice
 2026-02-27T19:49:57.867Z 2026-02-27T19:49:57.867Z
CVE-2026-27824
5.3 (3.1)
calibre has IP Ban Bypass via X-Forwarded-For Header S… kovidgoyal
 calibre
 2026-02-27T19:46:07.612Z 2026-02-27T19:46:07.612Z
CVE-2026-27810
6.4 (3.1)
calibre Vulnerable to HTTP Response Header Injection kovidgoyal
 calibre
 2026-02-27T19:44:39.106Z 2026-02-27T19:44:39.106Z
CVE-2026-27734
6.5 (3.1)
Beszel Vulnerable to Docker API Path Traversal via Uns… henrygd
 beszel
 2026-02-27T19:41:30.418Z 2026-02-27T19:41:30.418Z
CVE-2026-27793
6.5 (3.1)
Seerr has Broken Object-Level Authorization in User Pr… seerr-team
 seerr
 2026-02-27T19:38:49.589Z 2026-02-27T19:38:49.589Z
CVE-2026-27792
5.4 (3.1)
Seerr missing authentication on pushSubscription endpoints seerr-team
 seerr
 2026-02-27T19:33:18.469Z 2026-02-27T20:19:07.348Z
CVE-2026-27707
7.3 (3.1)
Plex-configured Seerr instances vulnerable to unauthen… seerr-team
 seerr
 2026-02-27T19:29:18.768Z 2026-02-27T20:22:24.091Z
CVE-2026-28354
5.7 (4.0)
ClipBucket v5 has IDOR in Collection Item Management MacWarrior
 clipbucket-v5
 2026-02-27T19:18:25.500Z 2026-02-27T20:23:22.876Z
CVE-2026-26997
2 (4.0)
ClipBucket v5 has Stored XSS via Collection name MacWarrior
 clipbucket-v5
 2026-02-27T19:15:11.123Z 2026-02-27T20:24:08.947Z
CVE-2026-22717
2.7 (3.1)
VMware Workstation out-of-bound read vulnerability VMware
 Workstation
 2026-02-27T19:11:54.924Z 2026-02-27T20:14:10.400Z
CVE-2026-22716
5 (3.1)
VMware Workstation out-of-bounds write vulnerability VMware
 Workstation
 2026-02-27T19:01:44.248Z 2026-02-27T19:19:19.576Z
CVE-2026-2880
8.2 (4.0)
@fastify/middie has an improper path normalization vul… @fastify/middie
 @fastify/middie
 2026-02-27T18:25:37.428Z 2026-02-27T18:56:02.979Z
CVE-2026-27758
5.1 (4.0)
4.3 (3.1)
SODOLA SL902-SWTGW124AS <= 200.1.20 Missing CSRF Protections Shenzhen Hongyavision Technology Co., Ltd. (Sodola Networks)
 SODOLA SL902-SWTGW124AS
 2026-02-27T18:11:35.902Z 2026-02-27T18:56:59.468Z
CVE-2026-27757
7.1 (4.0)
7.1 (3.1)
SODOLA SL902-SWTGW124AS <= 200.1.20 Unverified Passwor… Shenzhen Hongyavision Technology Co., Ltd. (Sodola Networks)
 SODOLA SL902-SWTGW124AS
 2026-02-27T18:11:05.367Z 2026-02-27T18:58:26.451Z
CVE-2026-27756
5.1 (4.0)
6.1 (3.1)
SODOLA SL902-SWTGW124AS <= 200.1.20 Reflected XSS in M… Shenzhen Hongyavision Technology Co., Ltd. (Sodola Networks)
 SODOLA SL902-SWTGW124AS
 2026-02-27T18:10:26.530Z 2026-02-27T18:59:21.071Z
CVE-2026-27755
9.3 (4.0)
9.8 (3.1)
SODOLA SL902-SWTGW124AS <= 200.1.20 Predictable Session ID Shenzhen Hongyavision Technology Co., Ltd. (Sodola Networks)
 SODOLA SL902-SWTGW124AS
 2026-02-27T18:09:57.668Z 2026-02-27T19:01:17.431Z
CVE-2026-27754
6.9 (4.0)
6.5 (3.1)
SODOLA SL902-SWTGW124AS <= 200.1.20 MD5 Session Token … Shenzhen Hongyavision Technology Co., Ltd. (Sodola Networks)
 SODOLA SL902-SWTGW124AS
 2026-02-27T18:09:33.191Z 2026-02-27T18:09:33.191Z
ID CVSS Description Vendor Product Published Updated
CVE-2026-28355
1.3 (4.0)
"PWA" Canarytoken Vulnerable to Stored Self Cross-Site… thinkst
 canarytokens
 2026-02-27T21:04:13.445Z 2026-02-27T21:04:13.445Z
CVE-2026-28352
6.5 (3.1)
Indico missing access check in event series management API indico
 indico
 2026-02-27T21:01:45.740Z 2026-02-27T21:01:45.740Z
CVE-2026-28351
6.9 (4.0)
Manipulated RunLengthDecode streams can exhaust RAM py-pdf
 pypdf
 2026-02-27T20:59:16.839Z 2026-02-27T20:59:16.839Z
CVE-2026-28338
6.8 (3.1)
PMD Designer has Stored XSS in VBHTMLRenderer and YAHT… pmd
 pmd
 2026-02-27T20:28:05.739Z 2026-02-27T20:28:05.739Z
CVE-2026-28288
5.5 (4.0)
Dify has a user enumeration issue langgenius
 dify
 2026-02-27T20:25:24.599Z 2026-02-27T20:45:44.126Z
CVE-2026-28272
8.1 (3.1)
Kiteworks Email Protection Gateway has a Cross-site Sc… kiteworks
 security-advisories
 2026-02-27T20:22:59.656Z 2026-02-27T20:22:59.656Z
CVE-2026-28271
6.5 (3.1)
Kiteworks Core is vulnerable to Server-Side Request Fo… kiteworks
 security-advisories
 2026-02-27T20:21:12.194Z 2026-02-27T20:21:29.444Z
CVE-2026-28270
4.9 (3.1)
Kiteworks Core has an Unrestricted Upload of File with… kiteworks
 security-advisories
 2026-02-27T20:19:54.611Z 2026-02-27T20:19:54.611Z
CVE-2026-28268
9.8 (3.1)
Vikunja Vulnerable to Account Takeover via Password Re… go-vikunja
 vikunja
 2026-02-27T20:16:29.842Z 2026-02-27T20:16:29.842Z
CVE-2018-25160
N/A
HTTP::Session2 versions through 1.09 for Perl does not… TOKUHIROM
 HTTP::Session2
 2026-02-27T20:15:31.418Z 2026-02-28T00:15:29.050Z
CVE-2026-3255
N/A
HTTP::Session2 versions before 1.12 for Perl may gener… TOKUHIROM
 HTTP::Session2
 2026-02-27T20:12:35.414Z 2026-02-28T00:15:39.689Z
CVE-2026-28354
5.7 (4.0)
ClipBucket v5 has IDOR in Collection Item Management MacWarrior
 clipbucket-v5
 2026-02-27T19:18:25.500Z 2026-02-27T20:23:22.876Z
CVE-2026-28231
5.5 (4.0)
pillow_heif Has Integer Overflow in Encode Path Buffer… bigcat88
 pillow_heif
 2026-02-27T20:13:45.195Z 2026-02-27T20:13:45.195Z
CVE-2026-27947
9.4 (4.0)
Group-Office Vulnerable to Remote Code Execution (RCE) Intermesh
 groupoffice
 2026-02-27T19:52:41.592Z 2026-02-27T19:52:41.592Z
CVE-2026-27836
7.5 (3.1)
phpMyFAQ Allows Unauthenticated Account Creation via W… thorsten
 phpMyFAQ
 2026-02-27T19:54:51.992Z 2026-02-27T19:54:51.992Z
CVE-2026-27832
7.1 (4.0)
Group-Office Has Authenticated SQL Injection in advanc… Intermesh
 groupoffice
 2026-02-27T19:49:57.867Z 2026-02-27T19:49:57.867Z
CVE-2026-27824
5.3 (3.1)
calibre has IP Ban Bypass via X-Forwarded-For Header S… kovidgoyal
 calibre
 2026-02-27T19:46:07.612Z 2026-02-27T19:46:07.612Z
CVE-2026-27810
6.4 (3.1)
calibre Vulnerable to HTTP Response Header Injection kovidgoyal
 calibre
 2026-02-27T19:44:39.106Z 2026-02-27T19:44:39.106Z
CVE-2026-27793
6.5 (3.1)
Seerr has Broken Object-Level Authorization in User Pr… seerr-team
 seerr
 2026-02-27T19:38:49.589Z 2026-02-27T19:38:49.589Z
CVE-2026-27792
5.4 (3.1)
Seerr missing authentication on pushSubscription endpoints seerr-team
 seerr
 2026-02-27T19:33:18.469Z 2026-02-27T20:19:07.348Z
CVE-2026-27734
6.5 (3.1)
Beszel Vulnerable to Docker API Path Traversal via Uns… henrygd
 beszel
 2026-02-27T19:41:30.418Z 2026-02-27T19:41:30.418Z
CVE-2026-27707
7.3 (3.1)
Plex-configured Seerr instances vulnerable to unauthen… seerr-team
 seerr
 2026-02-27T19:29:18.768Z 2026-02-27T20:22:24.091Z
CVE-2026-27583
N/A
Further research determined the situation described is not a vulnerability. N/A N/A 2026-02-27T19:11:46.699Z
CVE-2026-27582
N/A
Further research determined the situation described is not a vulnerability. N/A N/A 2026-02-27T19:11:40.783Z
CVE-2026-27581
N/A
Further research determined the situation described is not a vulnerability. N/A N/A 2026-02-27T19:11:34.862Z
CVE-2026-27580
N/A
Further research determined the situation described is not a vulnerability. N/A N/A 2026-02-27T19:11:28.138Z
CVE-2026-27573
N/A
Further research determined the situation described is not a vulnerability. N/A N/A 2026-02-27T19:11:07.121Z
CVE-2026-27501
N/A
Further research determined the situation described is not a vulnerability. N/A N/A 2026-02-27T19:11:20.985Z
CVE-2026-27500
N/A
Further research determined the situation described is not a vulnerability. N/A N/A 2026-02-27T19:11:15.207Z
CVE-2026-27201
N/A
Further research determined the situation described is not a vulnerability. N/A N/A 2026-02-27T19:10:44.191Z
ID Description Published Updated
ID Severity Description Published Updated
ghsa-8m37-836g-p9g7
6.1 (3.1)
5.1 (4.0)
SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 contain a reflected cross-site scripting… 2026-02-27T21:31:21Z 2026-02-27T21:31:21Z
ghsa-282g-fhmx-xf54
8.2 (4.0)
ZITADEL Users Can Self-Verify Email/Phone via UpdateHumanUser API 2026-02-27T21:26:46Z 2026-02-27T21:26:46Z
ghsa-6mq3-xmgp-pjm5
4.3 (3.1)
ZITADEL's truncated opaque tokens are still valid 2026-02-27T21:22:00Z 2026-02-27T21:22:00Z
ghsa-w22q-m2fm-x9f4
7.5 (3.1)
phpMyFAQ Allows Unauthenticated Account Creation via WebAuthn Prepare Endpoint 2026-02-27T21:01:58Z 2026-02-27T22:20:47Z
ghsa-phwh-4f42-gwf3
6.5 (3.1)
Beszel: Docker API has a Path Traversal Vulnerability via Unsanitized Container ID 2026-02-27T21:01:05Z 2026-02-27T22:20:39Z
ghsa-qmjj-p7m9-wjrv
5.7 (4.0)
@actual-app/sync-server: Missing authorization in sync endpoints allows cross-user budget file acce… 2026-02-27T19:29:46Z 2026-02-27T19:29:46Z
ghsa-86vq-ccwf-rm62
7.5 (3.1)
Umbraco.Engage.Forms Allows Unauthorized Access to Multiple API Endpoints 2026-02-27T18:35:57Z 2026-02-27T18:35:57Z
ghsa-prjf-86w9-mfqv
6.1 (3.1)
7.0 (4.0)
Angular i18n vulnerable to Cross-Site Scripting 2026-02-27T18:33:16Z 2026-02-27T18:33:16Z
ghsa-xxc3-jv86-6hxx
8.2 (3.1)
8.8 (4.0)
osCommerce 2.3.4.1 contains a SQL injection vulnerability that allows unauthenticated attackers to … 2026-02-27T18:31:06Z 2026-02-27T18:31:06Z
ghsa-xp4w-rp7m-jgwq
5.9 (3.1)
8.2 (4.0)
SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 transmit authentication credentials over… 2026-02-27T18:31:06Z 2026-02-27T18:31:06Z
ghsa-pr7p-x9q9-qph3
8.2 (3.1)
8.8 (4.0)
osCommerce 2.3.4.1 contains a SQL injection vulnerability that allows unauthenticated attackers to … 2026-02-27T18:31:06Z 2026-02-27T18:31:06Z
ghsa-p7f5-m66f-fmfw
8.2 (3.1)
8.8 (4.0)
Homey BNB V4 contains an SQL injection vulnerability that allows unauthenticated attackers to manip… 2026-02-27T18:31:06Z 2026-02-27T18:31:06Z
ghsa-jw6x-gh8v-8x7w
8.2 (3.1)
8.8 (4.0)
Homey BNB V4 contains an SQL injection vulnerability that allows unauthenticated attackers to manip… 2026-02-27T18:31:06Z 2026-02-27T18:31:06Z
ghsa-jq67-r98p-22qp
6.5 (3.1)
6.9 (4.0)
SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 contain an authentication bypass vulnera… 2026-02-27T18:31:06Z 2026-02-27T18:31:06Z
ghsa-jfrq-hj9f-c8qx
8.3 (3.1)
CleverTap Web SDK version 1.15.2 and earlier is vulnerable to DOM-based Cross-Site Scripting (XSS) … 2026-02-27T18:31:06Z 2026-02-27T21:31:21Z
ghsa-j5mf-6rh3-rhgg
8.3 (3.1)
CleverTap Web SDK version 1.15.2 and earlier is vulnerable to Cross-Site Scripting (XSS) via window… 2026-02-27T18:31:06Z 2026-02-27T21:31:21Z
ghsa-j48f-gjx4-8g9f
9.8 (3.1)
9.3 (4.0)
SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 contain a default credentials vulnerabil… 2026-02-27T18:31:06Z 2026-02-27T18:31:06Z
ghsa-gg87-rfp4-hx5w
8.2 (3.1)
8.8 (4.0)
Homey BNB V4 contains a SQL injection vulnerability that allows unauthenticated attackers to manipu… 2026-02-27T18:31:06Z 2026-02-27T18:31:06Z
ghsa-7vh4-6xxj-cp37
8.2 (3.1)
8.8 (4.0)
Homey BNB V4 contains a SQL injection vulnerability that allows unauthenticated attackers to manipu… 2026-02-27T18:31:06Z 2026-02-27T18:31:06Z
ghsa-7q64-3rg2-h9pf
8.2 (4.0)
A NestJS application using @nestjs/platform-fastify can allow bypass of authentication/authorizatio… 2026-02-27T18:31:06Z 2026-02-27T18:31:06Z
ghsa-659v-qhqp-595j
8.2 (3.1)
8.8 (4.0)
osCommerce 2.3.4.1 contains a SQL injection vulnerability that allows unauthenticated attackers to … 2026-02-27T18:31:06Z 2026-02-27T18:31:06Z
ghsa-5vcj-3qv7-j6hw
8.7 (3.1)
PublicCMS v5.202506.d and earlier is vulnerable to stored XSS. Uploaded PDFs can contain JavaScript… 2026-02-27T18:31:06Z 2026-02-27T21:31:21Z
ghsa-3vq4-2c4v-g9jf
8.2 (3.1)
8.8 (4.0)
Homey BNB V4 contains an SQL injection vulnerability that allows unauthenticated attackers to manip… 2026-02-27T18:31:06Z 2026-02-27T18:31:06Z
ghsa-22p3-cw83-672h
8.2 (3.1)
8.8 (4.0)
Homey BNB V4 contains an SQL injection vulnerability in the administration panel login that allows … 2026-02-27T18:31:06Z 2026-02-27T18:31:06Z
ghsa-vrv3-8mcq-ppf5
The OpenID Connect (OIDC) authentication configuration in PowerShell Universal before 2026.1.3 sto… 2026-02-27T18:31:05Z 2026-02-27T18:31:05Z
ghsa-p9c8-78v7-93hh
9.9 (3.1)
Vulnerability in Centreon Centreon Open Tickets on Central Server on Linux (Centroen Open Ticket mo… 2026-02-27T18:31:05Z 2026-02-27T18:31:05Z
ghsa-34c9-25wc-q378
9.1 (3.1)
Improper Input Validation vulnerability in Centreon Centreon Open Tickets on Central Server on Linu… 2026-02-27T18:31:05Z 2026-02-27T18:31:05Z
ghsa-r492-hjgh-c9gw
9.3 (4.0)
Vitess users with backup storage access can write to arbitrary file paths on restore 2026-02-27T16:03:54Z 2026-02-27T16:03:54Z
ghsa-747p-wmpv-9c78
5.9 (3.1)
AWS CLI: cli_history database does not restrict file permissions on Unix systems 2026-02-27T15:50:32Z 2026-02-27T15:50:32Z
ghsa-3645-fxcv-hqr4
9.8 (3.1)
Langflow has Remote Code Execution in CSV Agent 2026-02-27T15:47:29Z 2026-02-27T15:47:29Z
ID Severity Description Package Published Updated
pysec-2025-56
4.3 (3.1)
OctoPrint provides a web interface for controlling consumer 3D printers. In versions up t… octoprint 2025-04-22T18:15:59+00:00 2025-06-27T17:22:53.513680+00:00
pysec-2025-41
9.8 (3.1)
PyTorch is a Python package that provides tensor computation with strong GPU acceleration… torch 2025-04-18T16:15:23+00:00 2025-05-28T15:23:37.843138+00:00
pysec-2025-35
7.5 (3.1)
Weblate is a web based localization tool. Prior to version 5.11, when creating a new comp… weblate 2025-04-15T21:16:04+00:00 2025-04-30T17:22:51.467257+00:00
pysec-2025-32
9.8 (3.1)
BentoML is a Python library for building online serving systems optimized for AI apps and… bentoml 2025-04-09T16:15:25+00:00 2025-04-22T19:21:34.073355+00:00
pysec-2025-36
9.8 (3.1)
Langflow versions prior to 1.3.0 are susceptible to code injection in the /api/v1/valida… langflow 2025-04-07T15:15:44+00:00 2025-05-07T19:22:44.993642+00:00
pysec-2025-16
7.5 (3.1)
LNbits is a Lightning wallet and accounts system. A Server-Side Request Forgery (SSRF) vu… lnbits 2025-04-06T20:15:15+00:00 2025-04-09T17:27:25.872691+00:00
pysec-2025-14
An issue was discovered in Django 5.1 before 5.1.8 and 5.0 before 5.0.14. The NFKC normal… django 2025-04-02T13:15:44+00:00 2025-04-09T17:27:25.169049+00:00
pysec-2025-48
9.8 (3.1)
Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm… mobsf 2025-03-31T17:15:42+00:00 2025-06-12T22:23:10.476087+00:00
pysec-2025-17
5.5 (3.1)
In mlflow/mlflow version 2.18, an admin is able to create a new user account without sett… mlflow 2025-03-20T10:15:54+00:00 2025-04-09T17:27:26.322333+00:00
pysec-2025-57
A Denial of Service (DoS) vulnerability in zenml-io/zenml version 0.66.0 allows unauthent… zenml 2025-03-20T10:15:48+00:00 2025-06-27T17:22:55.175431+00:00
pysec-2025-10
9.1 (3.1)
A vulnerability in the `download_model` function of the onnx/onnx framework, before and i… onnx 2025-03-20T10:15:37+00:00 2025-03-26T19:21:38.843396+00:00
pysec-2025-11
5.9 (3.1)
A vulnerability in the `KnowledgeBaseWebReader` class of the run-llama/llama_index reposi… llama-index 2025-03-20T10:15:31+00:00 2025-04-01T23:22:47.294256+00:00
pysec-2025-9
A remote code execution vulnerability exists in invoke-ai/invokeai versions 5.3.1 through… invokeai 2025-03-20T10:15:26+00:00 2025-03-20T11:21:37.872971+00:00
pysec-2025-63
vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Whe… vllm 2025-03-19T16:15:32+00:00 2025-07-01T23:22:49.176005+00:00
pysec-2025-8
The `pygments-style-solarized` project was removed from PyPI by its owner on 2021-08-26. … pygments-style-solarized 2025-03-17T16:35:37+00:00
pysec-2025-22
9.8 (3.1)
A vulnerability, that could result in Remote Code Execution (RCE), has been found in Plot… plotai 2025-03-10T14:15:24+00:00 2025-04-09T17:27:27.203714+00:00
pysec-2025-21
9.8 (3.1)
picklescan before 0.0.23 fails to detect malicious pickle files inside PyTorch model arch… picklescan 2025-03-10T12:15:12+00:00 2025-04-09T17:27:27.016747+00:00
pysec-2025-20
6.5 (3.1)
picklescan before 0.0.23 is vulnerable to a ZIP archive manipulation attack that causes i… picklescan 2025-03-10T12:15:10+00:00 2025-04-09T17:27:26.966215+00:00
pysec-2025-13
An issue was discovered in Django 5.1 before 5.1.7, 5.0 before 5.0.13, and 4.2 before 4.2… django 2025-03-06T19:15:27+00:00 2025-04-09T17:27:25.095679+00:00
pysec-2025-23
Versions of the package ray before 2.43.0 are vulnerable to Insertion of Sensitive Inform… ray 2025-03-06T05:15:16+00:00 2025-04-09T17:27:27.434099+00:00
pysec-2025-19
9.8 (3.1)
picklescan before 0.0.22 only considers standard pickle file extensions in the scope for … picklescan 2025-03-03T19:15:34+00:00 2025-04-09T17:27:26.916350+00:00
pysec-2025-25
6.5 (3.1)
Rembg is a tool to remove images background. In Rembg 2.0.57 and earlier, the CORS middle… rembg 2025-03-03T17:15:14+00:00 2025-04-09T17:27:27.532849+00:00
pysec-2025-24
7.5 (3.1)
Rembg is a tool to remove images background. In Rembg 2.0.57 and earlier, the /api/remove… rembg 2025-03-03T17:15:14+00:00 2025-04-09T17:27:27.486485+00:00
pysec-2025-15
5.3 (3.1)
Flask-AppBuilder is an application development framework. Prior to 4.5.3, Flask-AppBuilde… flask-appbuilder 2025-03-03T16:15:41+00:00 2025-04-09T17:27:25.227116+00:00
pysec-2025-66
Improper privilege management in a REST interface allowed registered users to access unau… streampipes 2025-03-03T11:15:11+00:00 2025-07-08T15:23:46.628375+00:00
pysec-2025-7
Published in 2021, the imblog package is a Python library that scrapes data from a blog p… imblog 2025-02-26T21:19:19+00:00
pysec-2025-6
Published in 2021, the colabrun package is a Python library that exfiltrates user cookies… colabrun 2025-02-26T20:59:48+00:00
pysec-2025-5
Published in 2020, the autodzee package is a Python library that bypasses Deezer API rest… browsercmdhbt2 2025-02-26T20:57:11+00:00
pysec-2025-3
Published in 2019, the autodzee package is a Python library that bypasses Deezer API rest… autodzee 2025-02-26T20:54:20+00:00
pysec-2025-4
Published in 2019, the automslc package is a Python library that bypasses Deezer API rest… automslc 2025-02-26T19:26:49+00:00
ID Description Type
ID Description Updated
ID Description Published Updated
mal-2026-1055 Malicious code in jslint-config (npm) 2026-02-26T13:41:14Z 2026-02-26T13:41:14Z
mal-2026-1053 Malicious code in hardhat-node (npm) 2026-02-26T13:32:42Z 2026-02-26T22:14:36Z
mal-2026-1058 Malicious code in zoddle (npm) 2026-02-26T13:21:03Z 2026-02-26T13:21:03Z
mal-2026-1047 Malicious code in ts-packer (npm) 2026-02-26T11:22:38Z 2026-02-26T11:22:39Z
mal-2026-1046 Malicious code in jest-param-validator (npm) 2026-02-26T11:22:38Z 2026-02-26T11:22:39Z
mal-2026-1045 Malicious code in jest-node-paramset (npm) 2026-02-26T11:22:38Z 2026-02-26T11:22:39Z
mal-2026-1051 Malicious code in corstoken (npm) 2026-02-26T10:50:36Z 2026-02-26T10:50:36Z
mal-2026-1054 Malicious code in iosysredis (npm) 2026-02-26T10:34:36Z 2026-02-26T10:34:36Z
mal-2026-1056 Malicious code in undicy-lint (npm) 2026-02-26T10:17:13Z 2026-02-26T10:17:13Z
mal-2026-1044 Malicious code in awareness-demo-pkg (PyPI) 2026-02-26T10:11:33Z 2026-02-26T10:11:33Z
mal-2026-1038 Malicious code in promanage (npm) 2026-02-25T22:31:19Z 2026-02-25T22:31:19Z
mal-2026-1043 Malicious code in uuindex (npm) 2026-02-25T21:51:09Z 2026-02-25T21:51:09Z
mal-2026-1035 Malicious code in neural-compressor-jax (PyPI) 2026-02-25T19:42:30Z 2026-02-25T19:42:30Z
mal-2026-1034 Malicious code in chai-lite-lib (npm) 2026-02-25T17:42:40Z 2026-02-25T17:42:40Z
mal-2026-1033 Malicious code in duer-js (npm) 2026-02-25T16:53:55Z 2026-02-25T16:53:56Z
mal-2026-1031 Malicious code in react-svg-helper-fast (npm) 2026-02-25T16:29:50Z 2026-02-25T16:29:51Z
mal-2026-1030 Malicious code in chai-as-utils (npm) 2026-02-25T16:19:24Z 2026-02-25T16:19:25Z
mal-2026-1032 Malicious code in sample-custom-component (npm) 2026-02-25T16:13:53Z 2026-02-25T16:14:27Z
mal-2026-1029 Malicious code in geocommunes-geoportal (PyPI) 2026-02-25T11:49:41Z 2026-02-25T11:49:41Z
mal-2026-1039 Malicious code in react-devtools-raycast (npm) 2026-02-25T04:33:21Z 2026-02-25T04:33:21Z
mal-2026-1037 Malicious code in get-fonts (npm) 2026-02-25T04:20:48Z 2026-02-25T04:20:48Z
mal-2026-1042 Malicious code in trae-browser-inspect (npm) 2026-02-25T03:30:34Z 2026-02-25T03:30:34Z
mal-2026-1028 Malicious code in examplereactnative76 (npm) 2026-02-24T22:45:56Z 2026-02-24T22:45:56Z
mal-2026-1026 Malicious code in rncalendareventsexample (npm) 2026-02-24T21:35:58Z 2026-02-24T21:35:58Z
mal-2026-1027 Malicious code in rtxbbtyols (npm) 2026-02-24T18:40:07Z 2026-02-24T18:40:07Z
mal-2026-1025 Malicious code in @unitedcapitalfinancialadvisors/finlife-component-library (npm) 2026-02-24T16:56:49Z 2026-02-24T16:56:56Z
mal-2026-1024 Malicious code in @protonme/routing (npm) 2026-02-24T16:56:49Z 2026-02-24T16:56:49Z
mal-2026-1023 Malicious code in @kiukicom/sidebar (npm) 2026-02-24T16:56:48Z 2026-02-24T16:56:49Z
mal-2026-1022 Malicious code in @coinmetro/app (npm) 2026-02-24T16:56:48Z 2026-02-24T16:56:49Z
mal-2026-1021 Malicious code in @atg-aml-shared/kyc-domain (npm) 2026-02-24T16:56:48Z 2026-02-24T16:56:48Z
ID Description Published Updated
wid-sec-w-2026-0347 Red Hat Build of Keycloak: Mehrere Schwachstellen 2026-02-09T23:00:00.000+00:00 2026-02-19T23:00:00.000+00:00
wid-sec-w-2026-0345 Golang Go: Mehrere Schwachstellen 2026-02-08T23:00:00.000+00:00 2026-02-23T23:00:00.000+00:00
wid-sec-w-2026-0335 vim: Schwachstelle ermöglicht Codeausführung 2026-02-05T23:00:00.000+00:00 2026-02-15T23:00:00.000+00:00
wid-sec-w-2026-0331 BeyondTrust Privileged Remote Access und Remote Support: Schwachstelle ermöglicht Codeausführung 2026-02-05T23:00:00.000+00:00 2026-02-25T23:00:00.000+00:00
wid-sec-w-2026-0324 Linux Kernel: Mehrere Schwachstellen 2026-02-04T23:00:00.000+00:00 2026-02-23T23:00:00.000+00:00
wid-sec-w-2026-0318 n8n: Mehrere Schwachstellen 2026-02-04T23:00:00.000+00:00 2026-02-05T23:00:00.000+00:00
wid-sec-w-2026-0309 NGINX OSS und NGINX Plus: Schwachstelle ermöglicht Manipulation von Dateien 2026-02-04T23:00:00.000+00:00 2026-02-12T23:00:00.000+00:00
wid-sec-w-2026-0306 Red Hat Enterprise Linux (pyasn1): Schwachstelle ermöglicht Denial of Service 2026-02-04T23:00:00.000+00:00 2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0305 Red Hat Enterprise Linux (libsoup): Mehrere Schwachstellen 2026-02-04T23:00:00.000+00:00 2026-02-19T23:00:00.000+00:00
wid-sec-w-2026-0303 OpenClaw: Schwachstelle ermöglicht Offenlegung von Informationen 2026-02-03T23:00:00.000+00:00 2026-02-04T23:00:00.000+00:00
wid-sec-w-2026-0302 Red Hat Enterprise Linux (python-wheel): Schwachstelle ermöglicht Privilegieneskalation und Codeausführung 2026-02-03T23:00:00.000+00:00 2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0297 Django: Mehrere Schwachstellen 2026-02-03T23:00:00.000+00:00 2026-02-19T23:00:00.000+00:00
wid-sec-w-2026-0291 OpenClaw/Clawdbot: Mehrere Schwachstellen ermöglichen Codeausführung 2026-02-02T23:00:00.000+00:00 2026-02-04T23:00:00.000+00:00
wid-sec-w-2026-0290 Samsung Android: Mehrere Schwachstellen 2026-02-02T23:00:00.000+00:00 2026-02-04T23:00:00.000+00:00
wid-sec-w-2026-0289 Kubernetes (ingress-nginx): Mehrere Schwachstellen 2026-02-02T23:00:00.000+00:00 2026-02-04T23:00:00.000+00:00
bsi-2026-0001 Unauthorized access affects VibroLine and AvibiaLine devices 2026-02-02T13:00:00.000Z 2026-02-02T13:00:00.000Z
wid-sec-w-2026-0265 expat: Schwachstelle ermöglicht Codeausführung 2026-01-29T23:00:00.000+00:00 2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0258 Red Hat Enterprise Linux (iperf3): Schwachstelle ermöglicht Codeausführung 2026-01-29T23:00:00.000+00:00 2026-02-15T23:00:00.000+00:00
wid-sec-w-2026-0250 Drupal Canvas und CAS: Mehrere Schwachstellen 2026-01-28T23:00:00.000+00:00 2026-02-04T23:00:00.000+00:00
wid-sec-w-2026-0246 Lexmark Laser Printers: Mehrere Schwachstellen ermöglichen Ausführen von beliebigem Programmcode mit Benutzerrechten 2026-01-28T23:00:00.000+00:00 2026-02-04T23:00:00.000+00:00
wid-sec-w-2026-0244 FreeRDP: Mehrere Schwachstellen 2026-01-27T23:00:00.000+00:00 2026-02-23T23:00:00.000+00:00
wid-sec-w-2026-0243 Red Hat OpenShift Container Platform: Schwachstelle ermöglicht Denial of Service 2026-01-27T23:00:00.000+00:00 2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0237 libpng: Mehrere Schwachstellen ermöglichen Denial of Service 2026-01-27T23:00:00.000+00:00 2026-02-23T23:00:00.000+00:00
wid-sec-w-2026-0235 Nvidia Treiber: Mehrere Schwachstellen 2026-01-27T23:00:00.000+00:00 2026-01-28T23:00:00.000+00:00
wid-sec-w-2026-0234 OpenSSL: Mehrere Schwachstellen 2026-01-27T23:00:00.000+00:00 2026-02-23T23:00:00.000+00:00
wid-sec-w-2026-0233 vllm: Schwachstelle ermöglicht Offenlegung von Informationen und DoS 2026-01-27T23:00:00.000+00:00 2026-01-28T23:00:00.000+00:00
wid-sec-w-2026-0231 GnuPG und Gpg4win: Mehrere Schwachstellen 2026-01-27T23:00:00.000+00:00 2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0230 Mozilla Thunderbird: Schwachstelle ermöglicht Offenlegung von Informationen 2026-01-27T23:00:00.000+00:00 2026-01-28T23:00:00.000+00:00
wid-sec-w-2026-0229 Citrix Systems XenServer und Xen: Schwachstelle ermöglicht Offenlegung von Informationen 2026-01-27T23:00:00.000+00:00 2026-01-28T23:00:00.000+00:00
wid-sec-w-2026-0226 Fortinet FortiAnalyzer, FortiManager, FortiOS und FortiProxy: Schwachstelle ermöglicht Erlangen von Administratorrechten 2026-01-27T23:00:00.000+00:00 2026-01-27T23:00:00.000+00:00
ID Description Published Updated
ncsc-2026-0043 Zeroday-kwetsbaarheden verholpen in Ivanti Endpoint Manager Mobile 2026-01-29T19:15:04.575371Z 2026-02-20T14:47:02.047999Z
ncsc-2026-0042 Kwetsbaarheden verholpen in SolarWinds Web Help Desk 2026-01-28T16:37:21.114054Z 2026-02-02T09:47:54.857445Z
ncsc-2026-0041 Kwetsbaarheid verholpen in Fortinet producten 2026-01-28T09:32:41.752905Z 2026-01-28T09:32:41.752905Z
ncsc-2026-0040 Kwetsbaarheid verholpen in SmarterTools SmarterMail 2026-01-27T10:51:39.476320Z 2026-02-06T09:25:57.008166Z
ncsc-2026-0039 ZeroDay kwetsbaarheid verholpen in Microsoft Office 2026-01-27T07:27:52.867415Z 2026-01-27T07:27:52.867415Z
ncsc-2026-0038 Kwetsbaarheid verholpen in BIND 9 2026-01-23T08:54:43.506215Z 2026-01-23T08:54:43.506215Z
ncsc-2026-0037 Kwetsbaarheden verholpen in GitLab Community Edition en Enterprise Edition 2026-01-22T12:35:30.505659Z 2026-01-22T12:35:30.505659Z
ncsc-2026-0036 Kwetsbaarheden verholpen in Cisco Unified Communications producten 2026-01-22T09:49:39.156365Z 2026-01-22T09:49:39.156365Z
ncsc-2026-0035 Kwetsbaarheid verholpen in Palo Alto Networks PAN-OS 2026-01-22T09:22:36.433609Z 2026-01-22T09:22:36.433609Z
ncsc-2026-0034 Kwetsbaarheden verholpen in Atlassian producten 2026-01-22T09:03:42.667958Z 2026-01-22T09:03:42.667958Z
ncsc-2026-0033 Kwetsbaarheid verholpen in GNU Inetutils telnetd 2026-01-21T14:15:46.424529Z 2026-01-21T14:15:46.424529Z
ncsc-2026-0032 Kwetsbaarheden verholpen in Oracle MySQL 2026-01-21T10:12:24.844869Z 2026-01-21T10:12:24.844869Z
ncsc-2026-0031 Kwetsbaarheden verholpen in Oracle JD Edwards 2026-01-21T10:12:00.674214Z 2026-01-21T10:12:00.674214Z
ncsc-2026-0030 Kwetsbaarheden verholpen in Oracle Java 2026-01-21T10:11:39.759123Z 2026-01-21T10:11:39.759123Z
ncsc-2026-0029 Kwetsbaarheden verholpen in Oracle Hyperion 2026-01-21T10:10:46.297433Z 2026-01-21T10:10:46.297433Z
ncsc-2026-0028 Kwetsbaarheden verholpen in Oracle Analytics 2026-01-21T10:10:15.985753Z 2026-01-21T10:10:15.985753Z
ncsc-2026-0027 Kwetsbaarheden verholpen in Oracle Fusion Middleware 2026-01-21T10:08:59.379774Z 2026-01-21T10:08:59.379774Z
ncsc-2026-0026 Kwetsbaarheden verholpen in Oracle Enterprise Manager 2026-01-21T10:06:27.920991Z 2026-01-21T10:06:27.920991Z
ncsc-2026-0025 Kwetsbaarheden verholpen in Oracle Financial Services 2026-01-21T09:55:33.889125Z 2026-01-21T09:55:33.889125Z
ncsc-2026-0024 Kwetsbaarheden verholpen in Oracle E-Business Suite 2026-01-21T09:29:38.334428Z 2026-01-21T09:29:38.334428Z
ncsc-2026-0023 Kwetsbaarheden verholpen in Oracle PeopleSoft 2026-01-21T09:27:58.715578Z 2026-01-21T09:27:58.715578Z
ncsc-2026-0022 Kwetsbaarheden verholpen in Oracle Communications producten 2026-01-21T09:25:39.876330Z 2026-01-21T09:25:39.876330Z
ncsc-2026-0021 Kwetsbaarheden verholpen in Oracle Database Server producten 2026-01-21T09:19:00.000449Z 2026-01-21T09:19:00.000449Z
ncsc-2026-0020 Kwetsbaarheden verholpen in Oracle Commerce 2026-01-21T09:18:16.268788Z 2026-01-21T09:18:16.268788Z
ncsc-2026-0019 Kwetsbaarheid verholpen in Fortinet FortiSIEM 2026-01-16T13:34:34.467426Z 2026-01-16T13:34:34.467426Z
ncsc-2026-0018 Kwetsbaarheden verholpen in TYPO3 CMS 2026-01-16T10:11:37.524826Z 2026-01-16T10:11:37.524826Z
ncsc-2026-0017 Kwetsbaarheden verholpen in Juniper Networks JunOS 2026-01-16T10:07:39.310560Z 2026-01-16T10:07:39.310560Z
ncsc-2026-0016 Kwetsbaarheden verholpen in Aruba Networks ArubaOS 2026-01-16T09:44:20.575860Z 2026-01-16T09:44:20.575860Z
ncsc-2026-0015 Kwetsbaarheid verholpen in Fortinet FortiOS 2026-01-15T12:31:57.265723Z 2026-01-15T12:31:57.265723Z
ncsc-2026-0014 Kwetsbaarheden verholpen in Adobe Illustrator 2026-01-15T12:16:05.427141Z 2026-01-15T12:16:05.427141Z
ID Description Published Updated
ID Description Published Updated
ssa-682326 SSA-682326: Multiple Vulnerabilities in COMOS before V10.4.5 2025-11-11T00:00:00Z 2025-11-11T00:00:00Z
ssa-522291 SSA-522291: Improper Certificate Validation Vulnerability in Solid Edge 2025-11-11T00:00:00Z 2025-11-11T00:00:00Z
ssa-514895 SSA-514895: Multiple Vulnerabilities in Altair Grid Engine V2025.1.0 2025-11-11T00:00:00Z 2025-11-11T00:00:00Z
ssa-365596 SSA-365596: DLL Hijacking Vulnerability in Siemens Software Center and Solid Edge 2025-11-11T00:00:00Z 2025-11-11T00:00:00Z
ssa-339694 SSA-339694: Multiple Vulnerabilities in Spectrum Power 4 Before v4.70 SP12 Security Patch 2 2025-11-11T00:00:00Z 2025-11-11T00:00:00Z
ssa-267056 SSA-267056: Multiple Vulnerabilities in LOGO! 8 BM Devices 2025-11-11T00:00:00Z 2025-11-11T00:00:00Z
ssa-201498 SSA-201498: Multiple Vulnerabilities in the Web Server of SICAM P850 and SICAM P855 Devices Before V3.11 2025-11-11T00:00:00Z 2025-11-11T00:00:00Z
ssa-599451 SSA-599451: Multiple Vulnerabilities in SiPass integrated 2025-10-14T00:00:00Z 2026-02-10T00:00:00Z
ssa-541582 SSA-541582: Multiple File Parsing Vulnerabilities in Solid Edge 2025-10-14T00:00:00Z 2025-10-14T00:00:00Z
ssa-486936 SSA-486936: Authentication Vulnerability in SIMATIC ET 200SP Communication Processors 2025-10-14T00:00:00Z 2025-10-14T00:00:00Z
ssa-365200 SSA-365200: Google Chrome Type Confusion Vulnerability in Siemens Products 2025-10-14T00:00:00Z 2026-01-13T00:00:00Z
ssa-318832 SSA-318832: SQL Injection Vulnerability in SINEC NMS 2025-10-14T00:00:00Z 2025-10-14T00:00:00Z
ssa-062309 SSA-062309: Information Disclosure Vulnerability in TeleControl Server Basic V3.1 2025-10-14T00:00:00Z 2025-10-14T00:00:00Z
ssa-722410 SSA-722410: Multiple Vulnerabilities in User Management Component (UMC) 2025-09-09T00:00:00Z 2025-10-14T00:00:00Z
ssa-201595 SSA-201595: Privilege Escalation Vulnerability in WIBU CodeMeter Runtime Affecting the Desigo CC Product Family and SENTRON Powermanager 2025-08-14T00:00:00Z 2026-01-13T00:00:00Z
ssa-978177 SSA-978177: Vulnerability in Nozomi Guardian/CMC Before 25.4.0 on RUGGEDCOM APE1808 Devices 2025-08-12T00:00:00Z 2026-01-13T00:00:00Z
ssa-693808 SSA-693808: Deserialization Vulnerability in Siemens Engineering Platforms 2025-08-12T00:00:00Z 2025-12-09T00:00:00Z
ssa-613116 SSA-613116: Multiple Vulnerabilities in Third-Party Components in SINEC OS before V3.1 2025-08-12T00:00:00Z 2026-02-24T00:00:00Z
ssa-517338 SSA-517338: Multiple Vulnerabilities in SINEC Traffic Analyzer Before V3.0 2025-08-12T00:00:00Z 2025-08-12T00:00:00Z
ssa-493396 SSA-493396: Deserialization Vulnerability in Siemens Engineering Platforms 2025-08-12T00:00:00Z 2025-12-09T00:00:00Z
ssa-355557 SSA-355557: Multiple Vulnerabilities in Third-Party Components in SINEC OS before V3.2 2025-08-12T00:00:00Z 2026-02-24T00:00:00Z
ssa-282044 SSA-282044: DLL Hijacking Vulnerability in Siemens Web Installer used by the Online Software Delivery 2025-08-12T00:00:00Z 2026-02-10T00:00:00Z
ssa-186293 SSA-186293: XML External Entity (XXE) Injection Vulnerability in SIMOTION SCOUT, SIMOTION SCOUT TIA and SINAMICS STARTER 2025-08-12T00:00:00Z 2025-10-14T00:00:00Z
ssa-083019 SSA-083019: Multiple Vulnerabilities in RUGGEDCOM ROS Devices 2025-07-08T00:00:00Z 2025-10-14T00:00:00Z
ssa-693776 SSA-693776: Multiple Vulnerabilities in Industrial Communication Devices based on SINEC OS before V3.2 2025-06-10T00:00:00Z 2026-01-13T00:00:00Z
ssa-513708 SSA-513708: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 Devices 2025-06-10T00:00:00Z 2026-02-10T00:00:00Z
ssa-082556 SSA-082556: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1.5 2025-06-10T00:00:00Z 2026-02-10T00:00:00Z
ssa-367714 SSA-367714: Improper Integrity Check of Firmware Updates in SiPass integrated AC5102 / ACC-G2 and ACC-AP 2025-05-23T00:00:00Z 2025-10-14T00:00:00Z
ssa-864900 SSA-864900: Multiple Vulnerabilities in Fortigate NGFW on RUGGEDCOM APE1808 Devices 2025-05-13T00:00:00Z 2026-02-10T00:00:00Z
ssa-794185 SSA-794185: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SIPROTEC, SICAM and Related Products 2025-05-13T00:00:00Z 2025-11-11T00:00:00Z
ID Description Published Updated
rhsa-2026:2718 Red Hat Security Advisory: python-urllib3 security update 2026-02-16T11:40:57+00:00 2026-02-17T12:41:45+00:00
rhsa-2026:2717 Red Hat Security Advisory: python-urllib3 security update 2026-02-16T11:34:12+00:00 2026-02-17T12:41:45+00:00
rhsa-2026:2725 Red Hat Security Advisory: pki-deps:10.6 security update 2026-02-16T11:27:07+00:00 2026-02-16T14:38:07+00:00
rhsa-2026:2723 Red Hat Security Advisory: python-urllib3 security update 2026-02-16T11:26:37+00:00 2026-02-17T12:41:45+00:00
rhsa-2026:2713 Red Hat Security Advisory: python3 security update 2026-02-16T11:10:11+00:00 2026-02-16T14:26:33+00:00
rhsa-2026:2712 Red Hat Security Advisory: resource-agents security update 2026-02-16T10:53:41+00:00 2026-02-16T19:52:46+00:00
rhsa-2026:2711 Red Hat Security Advisory: Red Hat Ceph Storage 8.1 security and bug fix update 2026-02-16T10:49:01+00:00 2026-02-17T09:27:59+00:00
rhsa-2026:2710 Red Hat Security Advisory: python3.12-wheel security update 2026-02-16T10:46:56+00:00 2026-02-16T17:59:38+00:00
rhsa-2026:2709 Red Hat Security Advisory: golang security update 2026-02-16T10:32:31+00:00 2026-02-17T08:02:39+00:00
rhsa-2026:2687 Red Hat Security Advisory: osbuild-composer security update 2026-02-16T10:31:46+00:00 2026-02-17T08:02:32+00:00
rhsa-2026:2688 Red Hat Security Advisory: osbuild-composer security update 2026-02-16T10:30:06+00:00 2026-02-17T08:02:32+00:00
rhsa-2026:2708 Red Hat Security Advisory: go-toolset:rhel8 security update 2026-02-16T10:08:41+00:00 2026-02-17T08:02:34+00:00
rhsa-2026:2707 Red Hat Security Advisory: gimp security update 2026-02-16T10:06:36+00:00 2026-02-16T19:54:49+00:00
rhsa-2026:2706 Red Hat Security Advisory: golang security update 2026-02-16T09:40:31+00:00 2026-02-17T08:02:33+00:00
rhsa-2026:2064 Red Hat Security Advisory: OpenShift Container Platform 4.12.85 bug fix and security update 2026-02-13T16:55:24+00:00 2026-02-13T19:06:52+00:00
rhsa-2026:1959 Red Hat Security Advisory: Red Hat OpenStack Services on OpenShift 18.0 (python-eventlet) security update 2026-02-13T07:33:13+00:00 2026-02-13T12:59:36+00:00
rhsa-2026:1958 Red Hat Security Advisory: Red Hat OpenStack Services on OpenShift 18.0 (openstack-keystone) security update 2026-02-13T04:28:58+00:00 2026-02-13T06:50:16+00:00
rhsa-2026:2695 Red Hat Security Advisory: RHOAI 2.25.2 - Red Hat OpenShift AI 2026-02-12T22:43:13+00:00 2026-02-17T12:41:45+00:00
rhsa-2026:2694 Red Hat Security Advisory: A Subscription Management tool for finding and reporting Red Hat product usage 2026-02-12T22:32:47+00:00 2026-02-17T12:26:57+00:00
rhsa-2026:2685 Red Hat Security Advisory: osbuild-composer security update 2026-02-12T20:07:52+00:00 2026-02-17T08:02:31+00:00
rhsa-2026:2686 Red Hat Security Advisory: osbuild-composer security update 2026-02-12T19:52:02+00:00 2026-02-17T08:02:31+00:00
rhsa-2026:2681 Red Hat Security Advisory: Red Hat Quay 3.16.2 2026-02-12T17:29:21+00:00 2026-02-17T12:41:45+00:00
rhsa-2026:2675 Red Hat Security Advisory: Red Hat Developer Hub 1.8.3 release. 2026-02-12T15:30:56+00:00 2026-02-17T12:41:45+00:00
rhsa-2026:2664 Red Hat Security Advisory: kernel security update 2026-02-12T15:15:16+00:00 2026-02-17T07:23:49+00:00
rhsa-2026:2654 Red Hat Security Advisory: Release of components for Service Telemetry Framework 1.5.7 2026-02-12T13:46:10+00:00 2026-02-17T12:41:44+00:00
rhsa-2026:2065 Red Hat Security Advisory: OpenShift Container Platform 4.12.85 bug fix and security update 2026-02-12T12:19:52+00:00 2026-02-17T08:02:08+00:00
rhsa-2026:2066 Red Hat Security Advisory: OpenShift Container Platform 4.12.85 security and extras update 2026-02-12T10:52:37+00:00 2026-02-17T08:02:09+00:00
rhsa-2026:2627 Red Hat Security Advisory: gcc-toolset-14-binutils security update 2026-02-12T09:17:04+00:00 2026-02-12T13:26:53+00:00
rhsa-2026:2628 Red Hat Security Advisory: libsoup security update 2026-02-12T09:15:54+00:00 2026-02-12T13:28:21+00:00
rhsa-2026:2594 Red Hat Security Advisory: kernel security update 2026-02-12T01:06:38+00:00 2026-02-16T19:43:24+00:00
ID Description Published Updated
icsa-26-036-03 o6 Automation GmbH Open62541 2026-02-05T07:00:00.000000Z 2026-02-05T07:00:00.000000Z
icsa-26-036-02 Mitsubishi Electric MELSEC iQ-R Series 2026-02-05T07:00:00.000000Z 2026-02-05T07:00:00.000000Z
icsa-26-036-01 TP-Link Systems Inc. VIGI Series IP Camera 2026-02-05T06:00:00.000000Z 2026-02-05T06:00:00.000000Z
icsa-26-034-04 Synectix LAN 232 TRIO 2026-02-03T07:00:00.000000Z 2026-02-03T07:00:00.000000Z
icsa-26-034-03 RISS SRL MOMA Seismic Station 2026-02-03T07:00:00.000000Z 2026-02-03T07:00:00.000000Z
icsa-26-034-02 *Avation Light Engine Pro * 2026-02-03T07:00:00.000000Z 2026-02-03T07:00:00.000000Z
icsa-26-034-01 Mitsubishi Electric FREQSHIP-mini for Windows 2026-02-03T07:00:00.000000Z 2026-02-03T07:00:00.000000Z
icsa-26-029-03 Rockwell Automation ControlLogix 2026-01-29T07:00:00.000000Z 2026-01-29T07:00:00.000000Z
icsa-26-029-02 Rockwell Automation ArmorStart LT 2026-01-29T07:00:00.000000Z 2026-01-29T07:00:00.000000Z
icsa-26-029-01 KiloView Encoder Series (Update A) 2026-01-29T07:00:00.000000Z 2026-02-05T07:00:00.000000Z
icsa-26-043-06 Siemens SINEC OS 2026-01-28T00:00:00.000000Z 2026-02-25T07:00:00.000000Z
icsa-26-027-04 Johnson Controls Metasys Products 2026-01-27T07:00:00.000000Z 2026-01-27T07:00:00.000000Z
icsa-26-027-01 iba Systems ibaPDA 2026-01-27T07:00:00.000000Z 2026-02-25T07:00:00.000000Z
icsa-26-043-09 Hitachi Energy SuprOS 2026-01-27T00:00:00.000000Z 2026-02-12T07:00:00.000000Z
icsa-26-036-06 Hitachi Energy FOX61x 2026-01-27T00:00:00.000000Z 2026-02-05T07:00:00.000000Z
icsa-26-036-05 Hitachi Energy XMC20 2026-01-27T00:00:00.000000Z 2026-02-05T07:00:00.000000Z
icsa-26-022-08 EVMAPA 2026-01-22T07:00:00.000000Z 2026-01-22T07:00:00.000000Z
icsa-26-022-07 Delta Electronics DIAView 2026-01-22T07:00:00.000000Z 2026-01-22T07:00:00.000000Z
icsa-26-022-06 Hubitat Elevation Hubs 2026-01-22T07:00:00.000000Z 2026-01-22T07:00:00.000000Z
icsa-26-022-05 Weintek cMT X Series HMI EasyWeb Service 2026-01-22T07:00:00.000000Z 2026-01-22T07:00:00.000000Z
icsa-26-022-04 Johnson Controls Inc. iSTAR Configuration Utility (ICU) tool 2026-01-22T07:00:00.000000Z 2026-01-22T07:00:00.000000Z
icsa-26-022-03 Rockwell Automation CompactLogix 5370 2026-01-22T07:00:00.000000Z 2026-01-22T07:00:00.000000Z
icsa-26-022-02 AutomationDirect CLICK Programmable Logic Controller 2026-01-22T07:00:00.000000Z 2026-01-22T07:00:00.000000Z
icsa-26-020-03 Rockwell Automation Verve Asset Manager 2026-01-20T07:00:00.000000Z 2026-01-20T07:00:00.000000Z
va-26-015-01 NOAA PMEL Live Access Server (LAS) command injection 2026-01-15T19:59:37Z 2026-01-15T19:59:37Z
icsa-26-015-01 AVEVA Process Optimization 2026-01-15T07:00:00.000000Z 2026-01-15T07:00:00.000000Z
icsa-26-027-03 Schneider Electric Zigbee Products 2026-01-13T08:00:00.000000Z 2026-01-27T20:13:34.637968Z
icsa-26-022-01 Schneider Electric 2026-01-13T08:00:00.000000Z 2026-01-22T17:29:46.950679Z
icsa-26-015-10 Schneider Electric EcoStruxure Power Build Rapsody 2026-01-13T08:00:00.000000Z 2026-01-14T22:35:43.622072Z
icsa-26-013-03 YoSmart YoLink Smart Hub 2026-01-13T07:00:00.000000Z 2026-01-13T07:00:00.000000Z
ID Description Published Updated
cisco-sa-catc-priv-esc-vs8eecux Cisco Catalyst Center Virtual Appliance Privilege Escalation Vulnerability 2025-11-13T16:00:00+00:00 2025-11-13T16:00:00+00:00
cisco-sa-catc-open-redirect-3w5bk3je Cisco Catalyst Center Virtual Appliance HTTP Open Redirect Vulnerability 2025-11-13T16:00:00+00:00 2025-11-13T16:00:00+00:00
cisco-sa-ise-radsupress-dos-8yf3jthh Cisco Identity Services Engine RADIUS Suppression Denial of Service Vulnerability 2025-11-05T16:00:00+00:00 2025-11-05T16:00:00+00:00
cisco-sa-ise-multiple-vulns-o9beswjh Cisco Identity Services Engine Reflected Cross-Site Scripting and Information Disclosure Vulnerabilities 2025-11-05T16:00:00+00:00 2025-12-04T14:23:54+00:00
cisco-sa-cc-unauth-rce-qen8h7mq Cisco Unified Contact Center Express Remote Code Execution Vulnerabilities 2025-11-05T16:00:00+00:00 2025-11-13T12:48:42+00:00
cisco-sa-cc-mult-vuln-gk4tfxsn Multiple Cisco Contact Center Products Vulnerabilities 2025-11-05T16:00:00+00:00 2025-11-18T14:49:09+00:00
cisco-sa-snort3-mime-vulns-ttl8pgvh Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerabilities 2025-10-15T16:00:00+00:00 2026-02-12T18:38:13+00:00
cisco-sa-roomos-inf-disc-qggsbxam Cisco TelePresence Collaboration Endpoint and RoomOS Software Information Disclosure Vulnerability 2025-10-15T16:00:00+00:00 2025-10-15T16:00:00+00:00
cisco-sa-phone-dos-fpyjlv7a Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Software Vulnerabilities 2025-10-15T16:00:00+00:00 2025-10-15T16:00:00+00:00
cisco-sa-cv-xss-rwrakaj9 Cisco Cyber Vision Center Stored Cross-Site Scripting Vulnerabilities 2025-10-01T16:00:00+00:00 2025-10-01T16:00:00+00:00
cisco-sa-cucm-stored-xss-fnj66yly Cisco Unified Communications Manager Stored Cross-Site Scripting Vulnerability 2025-10-01T16:00:00+00:00 2025-10-01T16:00:00+00:00
cisco-sa-http-code-exec-wmfp3h3o Cisco Secure Firewall Adaptive Security Appliance Software, Secure Firewall Threat Defense Software, IOS Software, IOS XE Software, and IOS XR Software Web Services Remote Code Execution Vulnerability 2025-09-25T16:00:00+00:00 2025-11-06T15:50:51+00:00
cisco-sa-asaftd-webvpn-z5xp8eub Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability 2025-09-25T16:00:00+00:00 2025-11-06T15:50:54+00:00
cisco-sa-asaftd-webvpn-yrootuw Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Unauthorized Access Vulnerability 2025-09-25T16:00:00+00:00 2025-11-06T15:50:55+00:00
cisco-sa-webui-xss-vwydgjou Cisco IOS XE Software Web Authentication Reflected Cross-Site Scripting Vulnerability 2025-09-24T16:00:00+00:00 2025-09-26T16:35:50+00:00
cisco-sa-snmpwred-x3mjyf5m Cisco IOS XE Software Simple Network Management Protocol Denial of Service Vulnerability 2025-09-24T16:00:00+00:00 2025-09-24T16:00:00+00:00
cisco-sa-snmp-x4lphte Cisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerability 2025-09-24T16:00:00+00:00 2025-10-06T18:27:02+00:00
cisco-sa-secboot-uqfd8avc Cisco IOS XE Software Secure Boot Bypass Vulnerabilities 2025-09-24T16:00:00+00:00 2025-10-15T15:57:29+00:00
cisco-sa-nbar-dos-lavwtmet Cisco IOS XE Software Network-Based Application Recognition Denial of Service Vulnerability 2025-09-24T16:00:00+00:00 2025-09-24T16:00:00+00:00
cisco-sa-iosxe-arg-inject-eyddbh4e Cisco IOS XE Software CLI Argument Injection Vulnerability 2025-09-24T16:00:00+00:00 2025-09-24T16:00:00+00:00
cisco-sa-ios-xe-cmd-inject-rpjm8bgl Cisco IOS XE Software HTTP API Command Injection Vulnerability 2025-09-24T16:00:00+00:00 2025-09-24T16:00:00+00:00
cisco-sa-ios-tacacs-hdb7thjw Cisco IOS and IOS XE Software TACACS+ Authentication Bypass Vulnerability 2025-09-24T16:00:00+00:00 2025-10-01T16:39:50+00:00
cisco-sa-ios-invalid-url-dos-nvxszf6u Cisco IOS Software Industrial Ethernet Switch Device Manager Denial of Service Vulnerability 2025-09-24T16:00:00+00:00 2025-09-24T16:00:00+00:00
cisco-sa-ios-cli-eb7cz6yo Cisco IOS and IOS XE Software CLI Denial of Service Vulnerability 2025-09-24T16:00:00+00:00 2025-09-24T16:00:00+00:00
cisco-sa-defaultacl-psjk9nvf Cisco SD-WAN vEdge Software Access Control List Bypass Vulnerability 2025-09-24T16:00:00+00:00 2025-09-24T16:00:00+00:00
cisco-sa-cat9k-ptmd7bgy Cisco IOS XE Software for Catalyst 9000 Series Switches Denial of Service Vulnerability 2025-09-24T16:00:00+00:00 2025-09-30T14:26:46+00:00
cisco-sa-cat9k-acl-l4k7vxgd Cisco IOS XE Software on Cisco Catalyst 9500X and 9600X Series Switches Virtual Interface Access Control List Bypass Vulnerability 2025-09-24T16:00:00+00:00 2025-09-24T16:00:00+00:00
cisco-sa-ap-ipv6-gw-tuazpn9o Cisco Access Point Software Intermittent IPv6 Gateway Change Vulnerability 2025-09-24T16:00:00+00:00 2025-09-26T16:35:51+00:00
cisco-sa-action-frame-inj-qqcncz8h Cisco Wireless Access Point Software Device Analytics Action Frame Injection Vulnerability 2025-09-24T16:00:00+00:00 2025-09-24T16:00:00+00:00
cisco-sa-9800cl-openscep-sb4xtxzp Cisco IOS XE Software for Catalyst 9800 Series Wireless Controller for Cloud Unauthenticated Access to Certificate Enrollment Service Vulnerability 2025-09-24T16:00:00+00:00 2025-09-24T16:00:00+00:00
ID Description Published Updated
sca-2023-0007 Vulnerabilities in SICK LMS5xx 2023-08-25T11:00:00.000Z 2023-08-25T11:00:00.000Z
sca-2023-0006 Vulnerabilities in SICK ICR890-4 2023-07-10T13:00:00.000Z 2023-07-10T13:00:00.000Z
sca-2023-0005 Vulnerabilities in SICK EventCam App 2023-06-19T11:00:00.000Z 2023-06-19T11:00:00.000Z
sca-2023-0004 Vulnerabilities in SICK FTMg 2023-05-11T13:00:00.000Z 2023-05-11T13:00:00.000Z
sca-2023-0003 Vulnerability in SICK Flexi Soft and Flexi Classic Gateways 2023-05-03T13:00:00.000Z 2023-05-03T13:00:00.000Z
sca-2023-0002 Use of Telnet in multiple SICK Flexi Soft and Flexi Classic Gateways 2023-04-11T10:00:00.000Z 2023-04-11T10:00:00.000Z
sca-2023-0001 Bootloader mode vulnerability in Flexi Soft Gateways v3 2023-02-20T14:00:00.000Z 2023-02-20T14:00:00.000Z
sca-2022-0015 Use of a Broken or Risky Cryptographic Algorithm in SICK RFU6xx RADIO FREQUEN. SENSOR 2022-12-08T16:00:00.000Z 2022-12-08T16:00:00.000Z
sca-2022-0014 SICK FlexiCompact affected by Denial of Service vulnerability 2022-10-31T11:00:00.000Z 2022-10-31T11:00:00.000Z
sca-2022-0013 Password recovery vulnerability affects multiple SICK SIMs 2022-10-21T13:00:00.000Z 2022-11-04T14:00:00.000Z
sca-2022-0012 OpenSSL vulnerability affects multiple SICK SIMs 2022-08-08T13:00:00.000Z 2022-08-03T13:00:00.000Z
sca-2022-0011 Vulnerabilities in SICK Package Analytics 2022-06-08T15:00:00.000Z 2022-06-08T15:00:00.000Z
sca-2022-0010 Vulnerability in SICK Flexi Soft Designer & Safety Designer 2022-05-16T10:00:00.000Z 2022-07-19T10:00:00.000Z
sca-2022-0009 Vulnerability in SICK Flexi Soft PROFINET IO Gateway FX0-GPNT and SICK microScan3 PROFINET 2022-04-29T15:00:00.000Z 2022-04-29T15:00:00.000Z
sca-2022-0008 Vulnerability in SICK Gateways for Flexi Soft, Flexi Compact, SICK EFI Gateway UE4740, SICK microScan3 and outdoorScan3 2022-04-29T15:00:00.000Z 2022-04-29T15:00:00.000Z
sca-2022-0007 Vulnerabilities in SICK MARSIC300 2022-04-21T15:00:00.000Z 2022-04-21T15:00:00.000Z
sca-2022-0006 Vulnerability in SICK MSC800 2022-04-11T15:00:00.000Z 2022-04-11T15:00:00.000Z
sca-2022-0005 Vulnerability in SICK Overall Equipment Effectiveness (OEE) 2022-04-11T15:00:00.000Z 2022-04-11T15:00:00.000Z
sca-2022-0004 Microsoft vulnerability affects multiple SICK IPCs with SICK MEAC 2022-04-11T15:00:00.000Z 2022-03-31T15:00:00.000Z
sca-2022-0003 Vulnerabilities in SICK FTMg 2022-03-31T15:00:00.000Z 2022-03-31T15:00:00.000Z
sca-2022-0002 PwnKit vulnerability affects multiple SICK IPCs 2022-02-23T16:00:00.000Z 2022-02-23T16:00:00.000Z
sca-2022-0001 Vulnerability in SICK FieldEcho 2022-02-17T16:00:00.000Z 2022-02-17T16:00:00.000Z
sca-2021-0004 Vulnerabilities in SICK SOPAS ET 2021-12-16T08:00:00.000Z 2021-12-17T08:00:00.000Z
sca-2021-0003 SICK Security Advisory for Apache Log4j (CVE-2021-44228) 2021-12-14T17:00:00.000Z 2021-12-17T12:00:00.000Z
sca-2021-0002 MEAC affected by Windows SMBv1 vulnerability 2021-08-04T10:00:00.000Z 2021-08-04T10:00:00.000Z
sca-2021-0001 Inadequate SSH configuration in SICK Visionary-S CX 2021-06-25T10:00:00.000Z 2021-06-25T10:00:00.000Z
sca-2020-0005 Package Analytics affected by Windows TCP/IP vulnerability 2020-10-29T11:00:00.000Z 2020-10-29T11:00:00.000Z
sca-2020-0004 Vulnerability in Platform Mechanism AutoIP 2020-08-31T10:00:00.000Z 2020-08-31T10:00:00.000Z
sca-2020-0003 MEAC affected by Windows SMBv3 vulnerability 2020-08-07T10:00:00.000Z 2020-08-07T10:00:00.000Z
sca-2020-0002 Vulnerabilities in SICK Package Analytics 2020-08-07T10:00:00.000Z 2020-07-28T10:00:00.000Z
ID Description Published Updated
nn-2023:4-01 Stored Cross-Site Scripting (XSS) in Threat Intelligence rules in Guardian/CMC before 22.6.2 2023-08-09T11:00:00.000Z 2024-09-19T11:00:00.000Z
nn-2023:3-01 Authenticated Blind SQL Injection on alerts count in Guardian/CMC before 22.6.2 2023-08-09T11:00:00.000Z 2024-09-19T11:00:00.000Z
nn-2023:2-01 Authenticated Blind SQL Injection on sorting in Guardian/CMC before 22.6.2 2023-08-09T11:00:00.000Z 2024-09-19T11:00:00.000Z
nn-2023:1-01 Authenticated SQL Injection on Alerts in Guardian/CMC before 22.5.2 2023-05-03T11:00:00.000Z 2024-05-20T11:00:00.000Z
nn-2022:2-02 Authenticated RCE on project configuration import in Guardian/CMC before 22.0.0 2022-02-14T11:00:00.000Z 2024-09-19T11:00:00.000Z
nn-2022:2-01 Authenticated RCE on logo report upload in Guardian/CMC before 22.0.0 2022-02-14T11:00:00.000Z 2024-09-19T11:00:00.000Z
nn-2021:2-01 Authenticated command path traversal on timezone settings in Guardian/CMC before 20.0.7.4 2021-02-22T11:00:00.000Z 2024-05-20T11:00:00.000Z
nn-2021:1-01 Authenticated command injection when changing date settings or hostname in Guardian/CMC before 20.0.7.4 2021-02-22T11:00:00.000Z 2024-05-20T11:00:00.000Z
nn-2020:3-01 Angular template injection on custom report name field 2020-05-26T11:00:00.000Z 2024-05-20T11:00:00.000Z
nn-2020:2-01 Cross-site request forgery attack on change password form 2020-05-26T11:00:00.000Z 2024-05-20T11:00:00.000Z
nn-2019:2-01 CSV Injection on node label 2019-11-11T11:00:00.000Z 2024-05-20T11:00:00.000Z
nn-2019:1-01 Stored XSS in field name data model 2019-11-11T11:00:00.000Z 2024-05-20T11:00:00.000Z
ID Description Published Updated
ID Description Published Updated
msrc_cve-2026-21255 Windows Hyper-V Security Feature Bypass Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21253 Mailslot File System Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21251 Cluster Client Failover (CCF) Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21250 Windows HTTP.sys Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21249 Windows NTLM Spoofing Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21248 Windows Hyper-V Remote Code Execution Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21247 Windows Hyper-V Remote Code Execution Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21246 Windows Graphics Component Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21245 Windows Kernel Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21244 Windows Hyper-V Remote Code Execution Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21243 Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21242 Windows Subsystem for Linux Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21241 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21240 Windows HTTP.sys Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21239 Windows Kernel Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21238 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21237 Windows Subsystem for Linux Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21236 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21235 Windows Graphics Component Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21234 Windows Connected Devices Platform Service Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21232 Windows HTTP.sys Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21231 Windows Kernel Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21229 Power BI Remote Code Execution Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21228 Azure Local Remote Code Execution Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21222 Windows Kernel Information Disclosure Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-21218 .NET Spoofing Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-20846 GDI+ Denial of Service Vulnerability 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
msrc_cve-2026-20841 Windows Notepad App Remote Code Execution Vulnerability 2026-02-10T08:00:00.000Z 2026-02-12T08:00:00.000Z
msrc_cve-2026-0391 Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability 2026-02-10T08:00:00.000Z 2026-02-05T08:00:00.000Z
msrc_cve-2026-0102 Microsoft Edge (Chromium-based) Defense in Depth Vulnerability 2026-02-10T08:00:00.000Z 2026-02-17T08:00:00.000Z
ID Description Published Updated
3adr011407 ABB Automation Builder Vulnerabilities in user management and access control 2025-04-30T00:00:00.000Z 2025-07-25T00:00:00.000Z
2crt000007 Ekip Com IEC61850 Vulnerability in 3rd Party Library 2025-04-29T00:30:00.000Z 2025-04-29T00:30:00.000Z
3kxg200000r4801 CoreSense™ HM and CoreSense™ M10 File Path Traversal Vulnerability 2025-04-16T00:30:00.000Z 2025-10-20T00:30:00.000Z
9akk108470a9989 ABB MV Drives Affected by CODESYS RTS (Runtime System) Vulnerabilities 2025-04-10T08:30:00.000Z 2025-04-10T08:30:00.000Z
2nga002579 ABB Arctic communication solution ARM600 Vulnerabilities 2025-04-07T10:30:00.000Z 2025-04-07T10:30:00.000Z
2nga002427 ABB Arctic ARG600, ARC600, ARR600, ARP600 Arctic Wireless Gateway Modem Module and OpenSSH vulnerabilities 2025-04-07T10:30:00.000Z 2025-04-07T10:30:00.000Z
9akk108470a9494 Low Voltage DC Drives and Power Controllers CODESYS RTS Vulnerabilities 2025-03-26T00:30:00.000Z 2025-03-27T00:30:00.000Z
9akk108470a9491 ABB ACS880 +N8010 Drives CODESYS RTS Vulnerabilities 2025-03-26T00:30:00.000Z 2025-03-27T00:30:00.000Z
sa24p015 B&R APROL Potential Privilege Escalation and Information Disclosure 2025-03-24T00:30:00.000Z 2025-03-24T00:30:00.000Z
9akk108470a8565 RMC-100 Vulnerability in the Web UI (REST Interface) 2025-03-11T00:30:00.000Z 2025-03-11T00:30:00.000Z
7paa012159 System 800xA 5.1.x, 6.0.3.x, 6.1.1.x, 6.2.x - VideONet Camera passwords stored in clear text 2025-02-10T00:30:00.000Z 2025-02-10T00:30:00.000Z
9akk108470a6775 Hardcoded credentials in ASPECT Energy Management System 2025-02-05T00:30:00.000Z 2025-02-06T00:30:00.000Z
9akk108470a5466 Drive Composer Path Traversal Vulnerability 2025-02-05T00:30:00.000Z 2025-01-10T00:30:00.000Z
9akk108470a5684 FLXeon Controllers Cyber Security Advisory 2025-01-20T00:30:00.000Z 2025-02-14T00:30:00.000Z
sa25p001 Automation Runtime and mapp View Use of insecure algorithm for self-signed certificates 2025-01-15T00:30:00.000Z 2025-01-16T00:30:00.000Z
3adr011377 AC500 V3 Multiple vulnerabilities 2025-01-07T00:30:00.000Z 2025-01-07T00:30:00.000Z
7paa013309 System 800xA SECURITY Advisory - ABB 800xA Base 6.0.x, 6.1.x CSLib communication DoS vulnerability 2024-06-05T00:30:00.000Z 2026-01-23T00:30:00.000Z
ID Description Updated
var-200512-0300 Heap-based buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to exe… 2025-12-22T23:51:40.062000Z
var-200512-0611 Multiple heap-based buffer overflows in QuickTime.qts in Apple QuickTime Player 7.0.3 and… 2025-12-22T23:51:39.990000Z
var-200512-0294 Buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitr… 2025-12-22T23:51:39.922000Z
var-201601-0038 Multiple stack-based buffer overflows in Advantech WebAccess before 8.1 allow remote atta… 2025-12-22T23:49:01.892000Z
var-201801-0151 A Stack-based Buffer Overflow issue was discovered in Advantech WebAccess versions prior … 2025-12-22T23:48:57.831000Z
var-201801-0152 An Untrusted Pointer Dereference issue was discovered in Advantech WebAccess versions pri… 2025-12-22T23:48:57.732000Z
var-201805-1143 In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and pr… 2025-12-22T23:48:56.039000Z
var-201805-1144 In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and pr… 2025-12-22T23:48:55.924000Z
var-202206-2050 The affected product is vulnerable to multiple SQL injections, which may allow an unautho… 2025-12-22T23:48:47.890000Z
var-200107-0035 slapd in OpenLDAP 1.x before 1.2.12, and 2.x before 2.0.8, allows remote attackers to cau… 2025-12-22T23:48:28.809000Z
var-201105-0156 Multiple buffer overflows in the ISSymbol ActiveX control in ISSymbol.ocx 61.6.0.0 and 30… 2025-12-22T23:45:15.166000Z
var-201112-0297 Multiple cross-site scripting (XSS) vulnerabilities in the Virus Scan Interface in SAP Ne… 2025-12-22T23:44:53.453000Z
var-201801-0394 TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbi… 2025-12-22T23:43:40.772000Z
var-201809-0087 WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple stack-based buffer overflow vul… 2025-12-22T23:43:09.284000Z
var-201902-0647 LCDS Laquis SCADA prior to version 4.1.0.4150 allows execution of script code by opening … 2025-12-22T23:43:06.976000Z
var-202004-0077 There are multiple ways an unauthenticated attacker could perform SQL injection on WebAcc… 2025-12-22T23:42:52.255000Z
var-200603-0283 Unspecified vulnerability in Safari, LaunchServices, and/or CoreTypes in Apple Mac OS X 1… 2025-12-22T23:41:21.128000Z
var-201202-0245 Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on Windows, Mac OS X, L… 2025-12-22T23:41:18.968000Z
var-201801-1712 Systems with microprocessors utilizing speculative execution and branch prediction may al… 2025-12-22T23:41:18.264000Z
var-200505-1436 zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users… 2025-12-22T23:41:09.495000Z
var-202012-1529 A flaw was found in FasterXML Jackson Databind, where it did not have entity expansion se… 2025-12-22T23:41:08.737000Z
var-200607-0664 Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to … 2025-12-22T23:41:08.009000Z
var-201904-1410 A use after free issue was addressed with improved memory management. This issue affected… 2025-12-22T23:41:01.954000Z
var-201710-0206 Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Pairwise Transient Key… 2025-12-22T23:41:01.766000Z
var-200608-0028 AFP Server in Apple Mac OS X 10.3.9 and 10.4.7 stores reconnect keys in a world-readable … 2025-12-22T23:40:00.035000Z
var-201808-1002 Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo… 2025-12-22T23:39:27.228000Z
var-201202-0067 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2025-12-22T23:38:55.200000Z
var-201110-0450 The OSPFv3 implementation in ospf6d in Quagga before 0.99.19 allows remote attackers to c… 2025-12-22T23:38:54.765000Z
var-201201-0018 Heap-based buffer overflow in libxml2, as used in Google Chrome before 16.0.912.75, allow… 2025-12-22T23:38:54.673000Z
var-202202-0081 In Expat (aka libexpat) before 2.4.5, there is an integer overflow in storeRawNames. Desc… 2025-12-22T23:38:21.079000Z
ID Description Published Updated
jvndb-2026-000018 Undocumented "TelnetEnable" functionality of End of Service NETGEAR products 2026-01-30T14:23+09:00 2026-01-30T14:23+09:00
jvndb-2026-002119 Multiple vulnerabilities in BROTHER MFPs (multifunction printers) 2026-01-30T11:26+09:00 2026-01-30T11:26+09:00
jvndb-2026-002030 Multiple Vulnerabilities in Cosminexus 2026-01-29T10:32+09:00 2026-01-29T10:32+09:00
jvndb-2026-001972 Archer MR600 vulnerable to OS command injection 2026-01-28T10:41+09:00 2026-01-28T10:41+09:00
jvndb-2026-000011 beat-access for Windows may insecurely load Dynamic Link Libraries 2026-01-27T18:22+09:00 2026-01-27T18:22+09:00
jvndb-2026-001732 Multiple Brother software installers may insecurely load Dynamic Link Libraries 2026-01-26T16:04+09:00 2026-01-26T16:04+09:00
jvndb-2026-000010 Command injection vulnerability in ASUS routers 2026-01-23T15:22+09:00 2026-01-23T15:22+09:00
jvndb-2026-001663 "iRMC S5/S6" implemented in PRIMERGY vulnerable to incorrect authorization 2026-01-23T11:29+09:00 2026-01-23T11:29+09:00
jvndb-2026-001662 Multiple vulnerabilities in Trend Micro Apex Central (January 2026) 2026-01-23T11:29+09:00 2026-01-23T11:29+09:00
jvndb-2026-000009 Installer of Fujitsu ServerView Agents for Windows may insecurely load Dynamic Link Libraries 2026-01-21T15:17+09:00 2026-01-21T15:17+09:00
jvndb-2026-000008 Ruijie Networks AP180 series vulnerable to OS command injection 2026-01-21T15:17+09:00 2026-01-21T15:17+09:00
jvndb-2026-001582 Security information for Hitachi Disk Array Systems 2026-01-21T12:11+09:00 2026-01-21T12:11+09:00
jvndb-2026-001578 ETERNUS SF vulnerable to insertion of sensitive information into maintenance data 2026-01-20T20:00+09:00 2026-01-20T20:00+09:00
jvndb-2026-001380 Multiple vulnerabilities in Canon Small Office Multifunction Printers and Laser Printers 2026-01-19T10:08+09:00 2026-01-19T10:08+09:00
jvndb-2026-000007 Multiple Vulnerabilities in TOA Network Cameras TRIFORA 3 series 2026-01-16T15:06+09:00 2026-01-16T15:06+09:00
jvndb-2026-000006 Chainlit vulnerable to improper access restriction 2026-01-14T17:03+09:00 2026-01-14T17:03+09:00
jvndb-2026-000005 Multiple vulnerabilities in EATON UPS Companion 2026-01-13T19:01+09:00 2026-01-13T19:01+09:00
jvndb-2026-000003 RICOH Streamline NX vulnerable to improper authorization 2026-01-09T18:17+09:00 2026-01-09T18:17+09:00
jvndb-2026-000004 The installers for multiple PIONEER products may insecurely load Dynamic Link Libraries 2026-01-08T13:47+09:00 2026-01-08T13:47+09:00
jvndb-2026-000001 Origin validation error vulnerability in Fujitsu Security Solution AuthConductor Client Basic V2 2026-01-07T14:19+09:00 2026-01-07T14:19+09:00
jvndb-2026-000002 Multiple vulnerabilities in multiple NEC branded projectors manufactured by Sharp Display Solutions, Ltd. 2026-01-07T14:10+09:00 2026-01-14T16:54+09:00
jvndb-2026-001001 Authentication bypass vulnerability in OpenBlocks series 2026-01-07T10:46+09:00 2026-01-07T10:46+09:00
jvndb-2025-022878 Media Player MP-01 vulnerable to Missing Authentication for Critical Function 2025-12-24T11:10+09:00 2026-01-15T11:10+09:00
jvndb-2025-022400 Ruijie Networks AP180 Series vulnerable to OS command injection 2025-12-19T12:33+09:00 2025-12-19T12:33+09:00
jvndb-2025-000118 GROWI vulnerable to cross-site request forgery 2025-12-17T13:04+09:00 2025-12-17T13:04+09:00
jvndb-2025-022062 Multiple vulnerabilities in CHOCO TEI WATCHER mini 2025-12-17T11:28+09:00 2025-12-17T11:28+09:00
jvndb-2025-000117 SEIKO EPSON printer Web Config vulnerable to stack-based buffer overflow 2025-12-16T15:31+09:00 2025-12-23T11:57+09:00
jvndb-2025-000115 QND vulnerable to privilege escalation 2025-12-11T14:33+09:00 2025-12-11T14:33+09:00
jvndb-2025-021305 Android App "Brother iPrint&Scan" improper use of an external cache directory 2025-12-09T17:25+09:00 2025-12-09T17:25+09:00
jvndb-2025-000114 ELECOM Clone for Windows registers a Windows service with an unquoted file path 2025-12-09T17:16+09:00 2025-12-09T17:16+09:00
ID Description Updated
ID Description Published Updated
suse-su-2026:0613-1 Security update for python310 2026-02-24T15:14:45Z 2026-02-24T15:14:45Z
suse-su-2026:0612-1 Security update for python36 2026-02-24T15:14:18Z 2026-02-24T15:14:18Z
suse-su-2026:0606-1 Security update for libxml2 2026-02-24T11:19:39Z 2026-02-24T11:19:39Z
suse-su-2026:0605-1 Security update for libxml2 2026-02-24T11:19:20Z 2026-02-24T11:19:20Z
suse-su-2026:0604-1 Security update for gimp 2026-02-24T11:16:24Z 2026-02-24T11:16:24Z
suse-su-2026:0598-1 Security update for libpng12 2026-02-23T15:58:31Z 2026-02-23T15:58:31Z
suse-su-2026:0597-1 Security update for libpng16 2026-02-23T15:58:09Z 2026-02-23T15:58:09Z
suse-su-2026:0596-1 Security update for libpng16 2026-02-23T15:57:24Z 2026-02-23T15:57:24Z
suse-su-2026:0592-1 Security update for vexctl 2026-02-20T14:27:24Z 2026-02-20T14:27:24Z
suse-su-2026:0590-1 Security update for python 2026-02-20T10:05:50Z 2026-02-20T10:05:50Z
suse-su-2026:0589-1 Security update for xen 2026-02-20T10:05:27Z 2026-02-20T10:05:27Z
suse-su-2026:0588-1 Security update for postgresql16 2026-02-20T10:05:15Z 2026-02-20T10:05:15Z
suse-su-2026:0587-1 Security update for the Linux Kernel 2026-02-20T10:04:28Z 2026-02-20T10:04:28Z
suse-su-2026:0586-1 Security update for postgresql17 2026-02-20T10:04:16Z 2026-02-20T10:04:16Z
suse-su-2026:0585-1 Security update for postgresql18 2026-02-20T10:03:34Z 2026-02-20T10:03:34Z
suse-su-2026:0584-1 Security update for postgresql18 2026-02-20T10:03:22Z 2026-02-20T10:03:22Z
suse-su-2026:0583-1 Security update for libpng16 2026-02-20T10:02:34Z 2026-02-20T10:02:34Z
suse-su-2026:0582-1 Security update for snpguest 2026-02-20T10:02:23Z 2026-02-20T10:02:23Z
suse-su-2026:0581-1 Security update for openCryptoki 2026-02-20T06:38:26Z 2026-02-20T06:38:26Z
suse-su-2026:0577-1 Security update for avahi 2026-02-18T15:49:23Z 2026-02-18T15:49:23Z
suse-su-2026:0573-1 Security update for kubernetes-old 2026-02-17T18:47:26Z 2026-02-17T18:47:26Z
suse-su-2026:0572-1 Security update for kubernetes 2026-02-17T18:47:08Z 2026-02-17T18:47:08Z
suse-su-2026:0571-1 Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer 2026-02-17T18:46:54Z 2026-02-17T18:46:54Z
suse-su-2026:0570-1 Security update for libxml2 2026-02-17T16:38:51Z 2026-02-17T16:38:51Z
suse-su-2026:0561-1 Security update for the Linux Kernel (Live Patch 5 for SUSE Linux Enterprise 15 SP7) 2026-02-16T12:33:41Z 2026-02-16T12:33:41Z
suse-su-2026:0560-1 Security update for the Linux Kernel (Live Patch 1 for SUSE Linux Enterprise 15 SP7) 2026-02-16T12:03:47Z 2026-02-16T12:03:47Z
suse-su-2026:0559-1 Security update for freerdp 2026-02-16T11:43:04Z 2026-02-16T11:43:04Z
suse-su-2026:0558-1 Security update for libnvidia-container 2026-02-16T11:42:25Z 2026-02-16T11:42:25Z
suse-su-2026:0557-1 Security update for the Linux Kernel (Live Patch 4 for SUSE Linux Enterprise 15 SP7) 2026-02-16T10:33:36Z 2026-02-16T10:33:36Z
suse-su-2026:0556-1 Security update for the Linux Kernel (Live Patch 2 for SUSE Linux Enterprise 15 SP7) 2026-02-16T10:03:47Z 2026-02-16T10:03:47Z
ID Description Published Updated
opensuse-su-2026:10199-1 python311-pymssql-2.3.12-1.1 on GA media 2026-02-13T00:00:00Z 2026-02-13T00:00:00Z
opensuse-su-2026:10198-1 python311-Pillow-12.1.1-1.1 on GA media 2026-02-13T00:00:00Z 2026-02-13T00:00:00Z
opensuse-su-2026:10197-1 libecpg6-18.2-1.1 on GA media 2026-02-13T00:00:00Z 2026-02-13T00:00:00Z
opensuse-su-2026:10196-1 matrix-synapse-1.147.1-1.1 on GA media 2026-02-13T00:00:00Z 2026-02-13T00:00:00Z
opensuse-su-2026:10195-1 gimp-3.0.8-2.1 on GA media 2026-02-13T00:00:00Z 2026-02-13T00:00:00Z
opensuse-su-2026:10194-1 cargo-audit-advisory-db-20260213-1.1 on GA media 2026-02-13T00:00:00Z 2026-02-13T00:00:00Z
opensuse-su-2026:10182-1 snpguest-0.10.0-2.1 on GA media 2026-02-11T00:00:00Z 2026-02-11T00:00:00Z
opensuse-su-2026:10181-1 sccache-0.13.0~1-2.1 on GA media 2026-02-11T00:00:00Z 2026-02-11T00:00:00Z
opensuse-su-2026:10180-1 rustup-1.28.2~0-3.1 on GA media 2026-02-11T00:00:00Z 2026-02-11T00:00:00Z
opensuse-su-2026:10179-1 python311-maturin-1.11.5-1.1 on GA media 2026-02-11T00:00:00Z 2026-02-11T00:00:00Z
opensuse-su-2026:10178-1 libmunge2-0.5.18-1.1 on GA media 2026-02-11T00:00:00Z 2026-02-11T00:00:00Z
opensuse-su-2026:10177-1 gnutls-3.8.12-1.1 on GA media 2026-02-11T00:00:00Z 2026-02-11T00:00:00Z
opensuse-su-2026:10176-1 freerdp2-2.11.7-4.1 on GA media 2026-02-11T00:00:00Z 2026-02-11T00:00:00Z
opensuse-su-2026:10175-1 cargo-audit-0.22.1~git0.efcde93-2.1 on GA media 2026-02-11T00:00:00Z 2026-02-11T00:00:00Z
opensuse-su-2026:10174-1 assimp-devel-6.0.4-1.1 on GA media 2026-02-11T00:00:00Z 2026-02-11T00:00:00Z
opensuse-su-2026:10173-1 apptainer-1.4.5-2.1 on GA media 2026-02-11T00:00:00Z 2026-02-11T00:00:00Z
opensuse-su-2026:20193-1 Security update for orthanc, gdcm, orthanc-authorization, orthanc-dicomweb, orthanc-gdcm, orthanc-indexer, orthanc-mysql, orthanc-neuro, orthanc-postgresql, orthanc-python, orthanc-stl, orthanc-tcia, orthanc-wsi, python-pyorthanc 2026-02-10T22:29:40Z 2026-02-10T22:29:40Z
opensuse-su-2026:20191-1 Security update for trivy 2026-02-10T21:52:10Z 2026-02-10T21:52:10Z
opensuse-su-2026:20192-1 Security update for tailscale 2026-02-10T21:45:05Z 2026-02-10T21:45:05Z
opensuse-su-2026:20183-1 Security update for chromium 2026-02-07T14:42:36Z 2026-02-07T14:42:36Z
opensuse-su-2026:20184-1 Security update for python-Django 2026-02-07T13:45:17Z 2026-02-07T13:45:17Z
opensuse-su-2026:20182-1 Security update for cockpit 2026-02-06T03:08:03Z 2026-02-06T03:08:03Z
opensuse-su-2026:20181-1 Security update for cockpit-subscriptions 2026-02-06T02:48:38Z 2026-02-06T02:48:38Z
opensuse-su-2026:10146-1 libpainter0-0.9.27-1.1 on GA media 2026-02-04T00:00:00Z 2026-02-04T00:00:00Z
opensuse-su-2026:10145-1 python312-Django6-6.0.2-1.1 on GA media 2026-02-04T00:00:00Z 2026-02-04T00:00:00Z
opensuse-su-2026:10144-1 expat-2.7.4-1.1 on GA media 2026-02-04T00:00:00Z 2026-02-04T00:00:00Z
opensuse-su-2026:20167-1 Security update for xrdp 2026-02-03T15:00:07Z 2026-02-03T15:00:07Z
opensuse-su-2026:10143-1 traefik2-2.11.35-1.1 on GA media 2026-02-03T00:00:00Z 2026-02-03T00:00:00Z
opensuse-su-2026:10142-1 traefik-3.6.7-1.1 on GA media 2026-02-03T00:00:00Z 2026-02-03T00:00:00Z
opensuse-su-2026:10141-1 rizin-0.8.2-1.1 on GA media 2026-02-03T00:00:00Z 2026-02-03T00:00:00Z
ID Description Published Updated
sevd-2025-098-02 Trio™ Q Licensed Data Radios 2025-04-08T04:00:00.000Z 2025-04-08T04:00:00.000Z
sevd-2025-098-01 ConneXium Network Manager Software 2025-04-08T04:00:00.000Z 2025-05-13T04:00:00.000Z
sevd-2025-070-03 WebHMI Component For EcoStruxure™ Power Automation System User Interface and EcoStruxure™ Microgrid Operation Large 2025-03-11T04:00:00.000Z 2025-03-11T04:00:00.000Z
sevd-2025-070-02 EPAS-UI & EcoSUI 2025-03-11T04:00:00.000Z 2025-03-11T04:00:00.000Z
sevd-2025-070-01 EcoStruxure™ Panel Server 2025-03-11T04:00:00.000Z 2025-03-11T04:00:00.000Z
sevd-2025-042-04 Enerlin'X IFE and eIFE 2025-02-11T06:00:00.000Z 2025-02-11T06:00:00.000Z
sevd-2025-042-03 EcoStruxure™ Process Expert, EcoStruxure™ Process Expert for AVEVA System Platform 2025-02-11T06:00:00.000Z 2025-02-11T06:00:00.000Z
sevd-2025-042-01 ASCO 5310 / 5350 Remote Annunciator 2025-02-11T06:00:00.000Z 2025-02-11T06:00:00.000Z
sevd-2025-042-02 Improper Input Validation Vulnerability in Uni-Telway Driver 2025-02-11T05:00:00.000Z 2026-02-10T08:00:00.000Z
sevd-2025-014-07 FlexNet Publisher Vulnerability 2025-01-14T07:00:00.000Z 2025-11-11T08:00:00.000Z
sevd-2025-014-03 Wind River VxWorks DHCP Server Vulnerability 2025-01-14T05:00:00.000Z 2025-08-12T04:00:00.000Z
sevd-2025-014-01 Modicon M580 PLCs, BMENOR2200H and EVLink Pro AC 2025-01-14T05:00:00.000Z 2025-04-08T04:00:00.000Z
sevd-2025-014-09 EcoStruxure™ Power Build Rapsody 2025-01-14T00:00:00.000Z 2025-05-13T04:00:00.000Z
sevd-2025-014-08 Power Logic HDPM6000 High-Density Metering System 2025-01-14T00:00:00.000Z 2025-01-14T00:00:00.000Z
sevd-2025-014-06 RemoteConnect and SCADAPack™ x70 Utilities 2025-01-14T00:00:00.000Z 2026-01-13T08:00:00.000Z
sevd-2025-014-05 Web Server on Modicon M340, Modbus/TCP Ethernet Modicon M340 module, Modbus/TCP Ethernet Modicon M340 FactoryCast module and Ethernet / Serial RTU communication modules 2025-01-14T00:00:00.000Z 2025-08-12T04:00:00.000Z
sevd-2025-014-04 Web Designer for Modicon Communication Modules 2025-01-14T00:00:00.000Z 2025-01-14T00:00:00.000Z
sevd-2025-014-02 Pro-face GP-Pro EX and Remote HMI 2025-01-14T00:00:00.000Z 2025-09-09T04:00:00.000Z
sevd-2024-345-03 Modicon M241 / M251 / M258 / LMC058 2024-12-10T05:00:00.000Z 2025-10-14T07:00:00.000Z
sevd-2024-345-02 Harmony HMI and Pro-face HMI products 2024-12-10T00:00:00.000Z 2024-12-10T00:00:00.000Z
sevd-2024-345-01 PowerChute Serial Shutdown 2024-12-10T00:00:00.000Z 2024-12-10T00:00:00.000Z
sevd-2024-317-03 Modicon Controllers M340 / Momentum / MC80 2024-11-12T05:00:00.000Z 2026-01-13T08:00:00.000Z
sevd-2024-317-04 EcoStruxure™ IT Gateway 2024-11-12T00:00:00.000Z 2024-11-12T00:00:00.000Z
sevd-2024-317-02 Modicon Controllers M340 / Momentum / MC80 2024-11-12T00:00:00.000Z 2024-11-12T00:00:00.000Z
sevd-2024-317-01 PowerLogic PM5300 Series 2024-11-12T00:00:00.000Z 2024-11-12T00:00:00.000Z
sevd-2024-282-05 EcoStruxure™ Power Monitoring Expert (PME) 2024-10-08T04:00:00.000Z 2025-05-13T04:00:00.000Z
sevd-2024-282-08 EcoStruxure EV Charging Expert 2024-10-08T00:00:00.000Z 2024-10-08T00:00:00.000Z
sevd-2024-282-07 System Monitor Application in Harmony and Pro-face PS5000 Legacy Industrial PCs 2024-10-08T00:00:00.000Z 2024-10-08T00:00:00.000Z
sevd-2024-282-06 Zelio Soft 2 2024-10-08T00:00:00.000Z 2024-10-08T00:00:00.000Z
sevd-2024-282-04 EVlink Home Smart and Schneider Charge 2024-10-08T00:00:00.000Z 2024-10-08T00:00:00.000Z
ID Description Published Updated
bit-grafana-2026-21721 Dashboard Permissions Scope Bypass Enables Cross‑Dashboard Privilege Escalation 2026-02-20T08:41:27.652Z 2026-02-20T09:09:49.097Z
bit-grafana-2025-41117 XSS in Grafana Explore stack trace 2026-02-20T08:41:19.089Z 2026-02-24T09:11:39.593Z
bit-milvus-2026-26190 Milvus Allows Unauthenticated Access to Restful API on Metrics Port (9091) Leads to Critical System Compromise 2026-02-19T08:47:10.808Z 2026-02-19T09:13:37.164Z
bit-grafana-2026-21720 Unauthenticated DoS: avatar cache leaks goroutines when /avatar/:hash requests time out 2026-02-18T17:41:21.379Z 2026-02-18T18:09:39.057Z
bit-gitlab-2026-1458 Allocation of Resources Without Limits or Throttling in GitLab 2026-02-16T16:31:06.973Z 2026-02-16T16:32:40.318Z
bit-gitlab-2026-1456 Allocation of Resources Without Limits or Throttling in GitLab 2026-02-16T16:31:05.146Z 2026-02-16T16:32:40.318Z
bit-gitlab-2026-1282 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in GitLab 2026-02-16T16:31:03.017Z 2026-02-16T16:32:40.318Z
bit-gitlab-2026-1094 Improper Validation of Unsafe Equivalence in Input in GitLab 2026-02-16T16:30:59.417Z 2026-02-16T16:32:40.318Z
bit-gitlab-2026-0958 Interpretation Conflict in GitLab 2026-02-16T16:30:57.233Z 2026-02-16T16:32:40.318Z
bit-gitlab-2026-0595 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab 2026-02-16T16:30:53.679Z 2026-02-16T16:32:40.318Z
bit-gitlab-2025-8099 Allocation of Resources Without Limits or Throttling in GitLab 2026-02-16T16:30:40.312Z 2026-02-16T16:32:40.318Z
bit-gitlab-2025-7659 Origin Validation Error in GitLab 2026-02-16T16:30:29.449Z 2026-02-16T16:32:40.318Z
bit-gitlab-2025-14594 Authorization Bypass Through User-Controlled Key in GitLab 2026-02-16T16:28:35.547Z 2026-02-16T16:32:40.318Z
bit-gitlab-2025-14592 Missing Authorization in GitLab 2026-02-16T16:28:33.785Z 2026-02-16T16:32:40.318Z
bit-gitlab-2025-14560 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab 2026-02-16T16:28:32.048Z 2026-02-16T16:32:40.318Z
bit-gitlab-2025-12073 Server-Side Request Forgery (SSRF) in GitLab 2026-02-16T16:27:53.661Z 2026-02-16T16:32:40.318Z
bit-postgresql-2026-2007 PostgreSQL pg_trgm heap buffer overflow writes pattern onto server memory 2026-02-16T16:03:46.313Z 2026-02-16T16:32:40.318Z
bit-postgresql-2026-2006 PostgreSQL missing validation of multibyte character length executes arbitrary code 2026-02-16T16:03:41.880Z 2026-02-16T16:32:40.318Z
bit-postgresql-2026-2005 PostgreSQL pgcrypto heap buffer overflow executes arbitrary code 2026-02-16T16:03:36.943Z 2026-02-16T16:32:40.318Z
bit-postgresql-2026-2004 PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code 2026-02-16T16:03:32.935Z 2026-02-16T16:32:40.318Z
bit-postgresql-2026-2003 PostgreSQL oidvector discloses a few bytes of memory 2026-02-16T16:03:27.354Z 2026-02-16T16:32:40.318Z
bit-pillow-2026-25990 Pillow has an out-of-bounds write when loading PSD images 2026-02-16T16:02:06.871Z 2026-02-16T16:32:40.318Z
bit-pip-2026-1703 Limited path traversal when installing wheel archives 2026-02-16T15:59:06.080Z 2026-02-16T16:32:40.318Z
bit-dotnet-2026-21218 .NET Spoofing Vulnerability 2026-02-16T15:58:16.593Z 2026-02-16T16:32:40.318Z
bit-moodle-2025-67857 Moodle: moodle: data exposure of user identifiers in urls 2026-02-12T08:51:13.591Z 2026-02-12T09:10:24.600Z
bit-moodle-2025-67856 Moodle: moodle: privilege escalation via incomplete role checks in badge awarding 2026-02-12T08:51:12.105Z 2026-02-12T09:10:24.600Z
bit-moodle-2025-67855 Mooodle: mooodle: information disclosure and script execution via reflected cross-site scripting 2026-02-12T08:51:10.563Z 2026-02-12T09:10:24.600Z
bit-moodle-2025-67853 Moodle: moodle: brute-force facilitation due to missing rate limiting in confirmation email service 2026-02-12T08:51:08.996Z 2026-02-12T09:10:24.600Z
bit-moodle-2025-67852 Moodle: moodle: open redirect vulnerability in oauth login flow allows redirection to malicious sites. 2026-02-12T08:51:07.525Z 2026-02-12T09:10:24.600Z
bit-moodle-2025-67851 Moodle: moodle: formula injection allows arbitrary formula execution via unescaped data export 2026-02-12T08:51:05.950Z 2026-02-12T09:10:24.600Z
ID Description Published Updated
cleanstart-2026-bs57244 Within HostnameError 2026-02-17T00:39:44.907078Z 2026-02-16T09:23:22Z
cleanstart-2026-kk07808 issue has been found in third-party PNM decoding associated with libpng 1 2026-02-14T00:37:45.311656Z 2026-02-13T12:28:27Z
cleanstart-2026-pr84319 Security fixes for GHSA-2gh3-rmm4-6rq5, GHSA-r6v5-fh4h-64xc, GHSA-rhfx-m35p-ff5j, GHSA-xwfj-jgwm-7wp5 applied in versions: 1.27.5-r1, 1.27.6-r0 2026-02-14T00:37:23.085740Z 2026-02-13T12:28:27Z
cleanstart-2026-mh09144 issue was discovered in libexpat before 2 2026-02-13T00:45:17.459930Z 2026-02-12T13:07:54Z
cleanstart-2026-wv76464 libexpat in Expat before 2 2026-02-13T00:43:45.311968Z 2026-02-12T13:07:54Z
cleanstart-2026-tr92727 During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed handshake, the resumed handshake may succ... 2026-02-13T00:41:14.875956Z 2026-02-12T13:07:54Z
cleanstart-2026-ca79883 Security fixes for GHSA-6v2p-p943-phr9, GHSA-c6gw-w398-hv78, GHSA-f6x5-jh6r-wrfv, GHSA-hcg3-p754-cr77, GHSA-j5w8-q4qc-rx2x, GHSA-qxp5-gw88-xv66, GHSA-v778-237x-gjrc, GHSA-vvgc-356p-c3xw applied in versions: 1.15.0-r1 2026-02-13T00:40:14.901695Z 2026-02-12T13:07:54Z
cleanstart-2026-gv85693 SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process 2026-02-13T00:40:14.240914Z 2026-02-12T13:07:54Z
cleanstart-2026-jb30245 Security fixes for GHSA-f6x5-jh6r-wrfv, GHSA-j5w8-q4qc-rx2x applied in versions: 0.47.2-r0 2026-02-13T00:39:45.274258Z 2026-02-12T13:07:54Z
cleanstart-2026-qi35149 SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process 2026-02-13T00:39:44.259950Z 2026-02-12T13:07:54Z
cleanstart-2026-fi29887 During the TLS 1 2026-02-13T00:39:44.225771Z 2026-02-12T13:07:54Z
cleanstart-2026-by71381 SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption 2026-02-11T00:41:59.117560Z 2026-02-10T22:11:02Z
cleanstart-2026-cv28298 SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption 2026-02-11T00:41:59.034081Z 2026-02-10T22:11:02Z
cleanstart-2026-ls08172 Within HostnameError 2026-02-11T00:41:59.030674Z 2026-02-10T22:11:02Z
cleanstart-2026-xb34574 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-02-11T00:40:59.223419Z 2026-02-10T22:11:02Z
cleanstart-2026-im73098 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-02-11T00:40:59.052841Z 2026-02-10T22:11:02Z
cleanstart-2026-tj33788 Within HostnameError 2026-02-10T00:39:24.476012Z 2026-02-09T12:51:17Z
cleanstart-2026-gp14462 Security fixes for GHSA-vvgc-356p-c3xw applied in versions: 0.18.0-r0 2026-02-10T00:39:23.397354Z 2026-02-09T12:51:17Z
cleanstart-2026-xe32069 Buffer Overflow vulnerability in Ffmpeg before github commit 4565747056a11356210ed8edcecb920105e40b60 allows a remote attacker to achieve an out-of-array write, execute arbitrary code, and cause a ... 2026-02-06T01:10:32.733224Z 2026-02-03T13:35:45Z
cleanstart-2026-wx01708 vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device 2026-02-06T01:10:02.024980Z 2026-02-03T13:35:45Z
cleanstart-2026-ps82605 Buffer Overflow vulnerability in Ffmpeg before github commit 4565747056a11356210ed8edcecb920105e40b60 allows a remote attacker to achieve an out-of-array write, execute arbitrary code, and cause a ... 2026-02-06T01:09:01.544353Z 2026-02-03T13:35:45Z
cleanstart-2026-tc95380 vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device 2026-02-06T01:06:01.062694Z 2026-02-03T13:35:45Z
cleanstart-2026-zm20570 Moby is an open-source project created by Docker for software containerization 2026-02-06T00:54:29.621254Z 2026-02-03T13:35:45Z
cleanstart-2026-sp51034 Moby is an open-source project created by Docker for software containerization 2026-02-06T00:52:59.619100Z 2026-02-03T13:35:45Z
cleanstart-2026-td34476 Moby is an open-source project created by Docker for software containerization 2026-02-06T00:51:29.459800Z 2026-02-03T13:35:45Z
cleanstart-2026-wk88787 SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption 2026-02-06T00:41:29.451524Z 2026-02-05T12:20:16Z
cleanstart-2026-jn44153 Security fixes for GHSA-f6x5-jh6r-wrfv, GHSA-gx3x-vq4p-mhhv, GHSA-j5w8-q4qc-rx2x applied in versions: 1.18.0-r0, 1.19.0-r1 2026-02-06T00:39:29.662228Z 2026-02-05T12:20:16Z
cleanstart-2026-bz58799 Within HostnameError 2026-02-06T00:39:29.590361Z 2026-02-05T12:20:16Z
cleanstart-2026-rr78450 Within HostnameError 2026-02-06T00:39:29.463576Z 2026-02-05T12:20:16Z
cleanstart-2026-xr99875 Security fixes for GHSA-389x-839f-4rhx, GHSA-3p8m-j85q-pgmj, GHSA-5jpm-x58v-624v, GHSA-84h7-rjj3-6jx4, GHSA-fghv-69vj-qj49, GHSA-jq43-27x9-3v86, GHSA-qqpg-mvqg-649v applied in versions: 0.1.109-r0, 0.1.113-r1 2026-02-03T16:02:30.597873Z 2026-02-03T11:13:56Z
ID Description Published Updated
drupal-contrib-2025-115 2025-11-05T18:08:01.000Z 2025-11-05T18:08:01.000Z
drupal-contrib-2025-114 2025-10-29T16:44:39.000Z 2025-10-29T20:15:52.000Z
drupal-contrib-2025-113 2025-10-22T16:35:12.000Z 2025-10-22T16:35:12.000Z
drupal-contrib-2025-112 2025-10-22T16:34:46.000Z 2025-10-22T16:34:46.000Z
drupal-contrib-2025-111 2025-09-24T17:28:05.000Z 2025-09-24T17:28:05.000Z
drupal-contrib-2025-110 2025-09-24T17:27:41.000Z 2025-09-24T17:27:41.000Z
drupal-contrib-2025-109 2025-09-24T17:27:33.000Z 2025-09-24T17:27:33.000Z
drupal-contrib-2025-108 2025-09-24T17:27:20.000Z 2025-09-24T17:27:20.000Z
drupal-contrib-2025-107 2025-09-24T17:18:08.000Z 2025-09-24T17:18:08.000Z
drupal-contrib-2025-106 2025-09-24T17:16:20.000Z 2025-09-24T17:16:20.000Z
drupal-contrib-2025-105 2025-09-03T16:15:48.000Z 2025-09-03T16:15:48.000Z
drupal-contrib-2025-104 2025-08-27T17:20:41.000Z 2025-08-27T17:20:41.000Z
drupal-contrib-2025-103 2025-08-27T17:20:16.000Z 2025-08-27T17:20:16.000Z
drupal-contrib-2025-102 2025-08-27T17:20:11.000Z 2025-08-27T17:20:11.000Z
drupal-contrib-2025-101 2025-08-27T17:19:59.000Z 2025-09-03T18:55:46.000Z
drupal-contrib-2025-100 2025-08-27T17:19:45.000Z 2025-08-27T17:23:11.000Z
drupal-contrib-2025-099 2025-08-27T17:19:24.000Z 2025-08-27T17:19:24.000Z
drupal-contrib-2025-098 2025-08-27T17:19:14.000Z 2025-08-27T17:19:14.000Z
drupal-contrib-2025-097 2025-08-13T17:33:34.000Z 2025-09-03T18:53:10.000Z
drupal-contrib-2025-096 2025-08-13T17:33:24.000Z 2025-08-13T20:10:05.000Z
drupal-contrib-2025-095 2025-08-06T16:50:43.000Z 2025-08-06T16:50:43.000Z
drupal-contrib-2025-094 2025-07-30T16:31:23.000Z 2025-07-30T16:31:23.000Z
drupal-contrib-2025-093 2025-07-30T16:30:44.000Z 2025-07-30T16:30:44.000Z
drupal-contrib-2025-092 2025-07-23T17:10:19.000Z 2025-07-23T17:10:19.000Z
drupal-contrib-2025-091 2025-07-16T16:46:49.000Z 2025-07-17T14:42:36.000Z
drupal-contrib-2025-090 2025-07-16T16:46:26.000Z 2025-07-16T16:46:26.000Z
drupal-contrib-2025-089 2025-07-16T16:46:08.000Z 2025-07-16T16:46:08.000Z
drupal-contrib-2025-088 2025-07-09T16:37:40.000Z 2025-11-22T09:22:47.000Z
drupal-contrib-2025-087 2025-07-09T16:37:27.000Z 2025-07-09T16:37:27.000Z
drupal-contrib-2025-086 2025-07-02T17:37:13.000Z 2025-07-02T17:37:13.000Z
ID Description Published Updated
cnvd-2026-10661 IBM Concert信息泄露漏洞(CNVD-2026-10661) 2026-01-30 2026-02-10
cnvd-2026-10656 IBM ApplinX跨站请求伪造漏洞(CNVD-2026-10656) 2026-01-30 2026-02-10
cnvd-2026-10655 IBM ApplinX跨站脚本漏洞 2026-01-30 2026-02-10
cnvd-2026-10654 IBM ApplinX未授权访问漏洞 2026-01-30 2026-02-10
cnvd-2026-10653 IBM ApplinX信息泄露漏洞(CNVD-2026-10653) 2026-01-30 2026-02-10
cnvd-2026-10638 Tenda AX1803缓冲区溢出漏洞(CNVD-2026-10638) 2026-01-30 2026-02-09
cnvd-2026-10318 Tenda AX1806 fromSetSysTime函数堆栈溢出漏洞 2026-01-30 2026-02-05
cnvd-2026-10317 Oracle MySQL Server存在未明漏洞(CNVD-2026-10317) 2026-01-30 2026-02-05
cnvd-2026-10316 Tenda AX1806 deviceList参数堆栈溢出漏洞 2026-01-30 2026-02-05
cnvd-2026-10313 Oracle MySQL Server存在未明漏洞(CNVD-2026-10313) 2026-01-30 2026-02-05
cnvd-2026-10312 Oracle MySQL Server存在未明漏洞(CNVD-2026-10312) 2026-01-30 2026-02-05
cnvd-2026-09811 OpenEMR未授权访问漏洞 2026-01-30 2026-01-30
cnvd-2026-09793 Apache Solr输入验证错误漏洞 2026-01-30 2026-01-30
cnvd-2026-09792 Apache Linkis信息泄露漏洞(CNVD-2026-09792) 2026-01-30 2026-01-30
cnvd-2026-09791 Apache Linkis授权问题漏洞 2026-01-30 2026-01-30
cnvd-2026-09790 Apache Airflow信息泄露漏洞 2026-01-30 2026-01-30
cnvd-2026-09789 Apache Hadoop HDFS越界写入漏洞 2026-01-30 2026-01-30
cnvd-2026-09634 MedDream PACS Premium notifynewstudy功能跨站脚本漏洞 2026-01-30 2026-02-04
cnvd-2026-09633 MedDream PACS Premium modifyTranscript功能跨站脚本漏洞 2026-01-30 2026-02-04
cnvd-2026-09632 MedDream PACS Premium modifyRoute功能跨站脚本漏洞 2026-01-30 2026-02-04
cnvd-2026-09631 MedDream PACS Premium modifyHL7Route功能跨站脚本漏洞 2026-01-30 2026-02-04
cnvd-2026-09630 MedDream PACS Premium modifyHL7App功能跨站脚本漏洞 2026-01-30 2026-02-03
cnvd-2026-09629 MedDream PACS Premium modifyEmail功能跨站脚本漏洞 2026-01-30 2026-02-04
cnvd-2026-09628 MedDream PACS Premium modifyCoercion功能跨站脚本漏洞 2026-01-30 2026-02-04
cnvd-2026-09627 MedDream PACS Premium modifyAutopurgeFilter功能跨站脚本漏洞 2026-01-30 2026-02-04
cnvd-2026-09626 MedDream PACS Premium modifyAeTitle功能跨站脚本漏洞 2026-01-30 2026-02-04
cnvd-2026-09625 MedDream PACS Premium ldapUser功能跨站脚本漏洞 2026-01-30 2026-02-04
cnvd-2026-09624 MedDream PACS Premium fetchPriorStudies功能跨站脚本漏洞 2026-01-30 2026-02-04
cnvd-2026-09623 MedDream PACS Premium existingUser功能跨站脚本漏洞 2026-01-30 2026-02-03
cnvd-2026-09622 MedDream PACS Premium encapsulatedDoc功能跨站脚本漏洞 2026-01-30 2026-02-03
ID Description Published Updated
certfr-2026-avi-0197 Multiples vulnérabilités dans Microsoft Edge 2026-02-23T00:00:00.000000 2026-02-23T00:00:00.000000
certfr-2026-avi-0196 Multiples vulnérabilités dans les produits IBM 2026-02-20T00:00:00.000000 2026-02-20T00:00:00.000000
certfr-2026-avi-0195 Multiples vulnérabilités dans le noyau Linux de SUSE 2026-02-20T00:00:00.000000 2026-02-20T00:00:00.000000
certfr-2026-avi-0194 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2026-02-20T00:00:00.000000 2026-02-20T00:00:00.000000
certfr-2026-avi-0193 Multiples vulnérabilités dans le noyau Linux de Red Hat 2026-02-20T00:00:00.000000 2026-02-20T00:00:00.000000
certfr-2026-avi-0192 Multiples vulnérabilités dans le noyau Linux de Debian 2026-02-20T00:00:00.000000 2026-02-20T00:00:00.000000
certfr-2026-avi-0191 Vulnérabilité dans Traefik 2026-02-20T00:00:00.000000 2026-02-20T00:00:00.000000
certfr-2026-avi-0190 Multiples vulnérabilités dans Microsoft Edge 2026-02-19T00:00:00.000000 2026-02-19T00:00:00.000000
certfr-2026-avi-0189 Vulnérabilité dans F5 BIG-IP 2026-02-19T00:00:00.000000 2026-02-19T00:00:00.000000
certfr-2026-avi-0188 Multiples vulnérabilités dans les produits Splunk 2026-02-19T00:00:00.000000 2026-02-19T00:00:00.000000
certfr-2026-avi-0187 Multiples vulnérabilités dans Tenable Security Center 2026-02-19T00:00:00.000000 2026-02-23T00:00:00.000000
certfr-2026-avi-0186 Multiples vulnérabilités dans Google Chrome 2026-02-19T00:00:00.000000 2026-02-19T00:00:00.000000
certfr-2026-avi-0185 Vulnérabilité dans Microsoft Windows 2026-02-18T00:00:00.000000 2026-02-18T00:00:00.000000
certfr-2026-avi-0184 Multiples vulnérabilités dans Microsoft Edge 2026-02-18T00:00:00.000000 2026-02-18T00:00:00.000000
certfr-2026-avi-0183 Vulnérabilité dans HPE Aruba Networking ClearPass Policy Manager 2026-02-18T00:00:00.000000 2026-02-18T00:00:00.000000
certfr-2026-avi-0182 Multiples vulnérabilités dans Atlassian Confluence 2026-02-18T00:00:00.000000 2026-02-18T00:00:00.000000
certfr-2026-avi-0181 Vulnérabilité dans Apache Tomcat 2026-02-18T00:00:00.000000 2026-02-18T00:00:00.000000
certfr-2026-avi-0180 Vulnérabilité dans NetApp StorageGRID 2026-02-18T00:00:00.000000 2026-02-18T00:00:00.000000
certfr-2026-avi-0179 Multiples vulnérabilités dans SPIP 2026-02-18T00:00:00.000000 2026-02-25T00:00:00.000000
certfr-2026-avi-0178 Multiples vulnérabilités dans Tenable Security Center 2026-02-18T00:00:00.000000 2026-02-18T00:00:00.000000
certfr-2026-avi-0177 Multiples vulnérabilités dans Moodle 2026-02-17T00:00:00.000000 2026-02-17T00:00:00.000000
certfr-2026-avi-0176 Vulnérabilité dans Mattermost Server 2026-02-17T00:00:00.000000 2026-02-17T00:00:00.000000
certfr-2026-avi-0175 Multiples vulnérabilités dans les produits Mozilla 2026-02-17T00:00:00.000000 2026-02-17T00:00:00.000000
certfr-2026-avi-0174 Multiples vulnérabilités dans LibreNMS 2026-02-17T00:00:00.000000 2026-02-17T00:00:00.000000
certfr-2026-avi-0173 Multiples vulnérabilités dans les produits Mattermost 2026-02-16T00:00:00.000000 2026-02-16T00:00:00.000000
certfr-2026-avi-0172 Vulnérabilité dans Google Chrome 2026-02-16T00:00:00.000000 2026-02-16T00:00:00.000000
certfr-2026-avi-0171 Multiples vulnérabilités dans les produits IBM 2026-02-13T00:00:00.000000 2026-02-13T00:00:00.000000
certfr-2026-avi-0170 Multiples vulnérabilités dans le noyau Linux de SUSE 2026-02-13T00:00:00.000000 2026-02-13T00:00:00.000000
certfr-2026-avi-0169 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2026-02-13T00:00:00.000000 2026-02-13T00:00:00.000000
certfr-2026-avi-0168 Multiples vulnérabilités dans le noyau Linux de Red Hat 2026-02-13T00:00:00.000000 2026-02-13T00:00:00.000000
ID Description Published Updated
certfr-2024-ale-001 [MàJ] Multiples vulnérabilités dans Ivanti Connect Secure et Policy Secure Gateways 2024-01-11T00:00:00.000000 2024-04-15T00:00:00.000000
certfr-2023-ale-013 Vulnérabilité dans Apache Struts 2 2023-12-13T00:00:00.000000 2024-02-16T00:00:00.000000
certfr-2023-ale-006 Vulnérabilité dans les produits Microsoft 2023-12-12T00:00:00.000000 2023-07-12T00:00:00.000000
certfr-2023-ale-012 [MàJ] Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway 2023-10-23T00:00:00.000000 2024-02-16T00:00:00.000000
certfr-2023-ale-011 [MàJ] Multiples vulnérabilités dans Cisco IOS XE 2023-10-17T00:00:00.000000 2024-02-16T00:00:00.000000
certfr-2023-ale-010 Multiples vulnérabilités dans Exim 2023-10-02T00:00:00.000000 2024-02-16T00:00:00.000000
certfr-2023-ale-009 [MàJ] Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile 2023-07-26T00:00:00.000000 2023-09-15T00:00:00.000000
certfr-2023-ale-008 [MàJ] Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway 2023-07-19T00:00:00.000000 2024-01-02T00:00:00.000000
certfr-2023-ale-007 [MàJ] Vulnérabilité dans Zimbra Collaboration Suite 2023-07-17T00:00:00.000000 2024-01-02T00:00:00.000000
certfr-2023-ale-005 Synthèse sur l'exploitation d'une vulnérabilité dans MOVEit Transfer 2023-07-05T00:00:00.000000 2023-09-11T00:00:00.000000
certfr-2023-ale-004 Vulnérabilité dans les produits Fortinet 2023-06-13T00:00:00.000000 2023-09-11T00:00:00.000000
certfr-2023-ale-003 [MàJ] Compromission de l'application 3CX Desktop App 2023-03-31T00:00:00.000000 2023-04-12T00:00:00.000000
certfr-2023-ale-002 [MàJ] Vulnérabilité dans Microsoft Outlook 2023-03-15T00:00:00.000000 2023-05-11T00:00:00.000000
certfr-2023-ale-001 Vulnérabilité dans Fortinet FortiOS 2023-03-14T00:00:00.000000 2023-03-14T00:00:00.000000
certfr-2023-ale-015 [MàJ] Campagne d'exploitation d'une vulnérabilité affectant VMware ESXi 2023-02-03T00:00:00.000000 2023-03-14T00:00:00.000000
certfr-2022-ale-014 Multiples vulnérabilités dans AMI MegaRAC 2022-12-16T00:00:00.000000 2023-09-11T00:00:00.000000
certfr-2022-ale-013 [MàJ] Vulnérabilité dans Citrix ADC et Gateway 2022-12-13T00:00:00.000000 2023-03-14T00:00:00.000000
certfr-2022-ale-012 [MàJ] Vulnérabilité dans FortiOS SSL-VPN 2022-12-13T00:00:00.000000 2022-12-20T00:00:00.000000
certfr-2022-ale-011 Vulnérabilité dans les produits Fortinet 2022-10-14T00:00:00.000000 2022-10-14T00:00:00.000000
certfr-2022-ale-010 Multiples vulnérabilités dans GLPI 2022-10-07T00:00:00.000000 2023-03-14T00:00:00.000000
certfr-2022-ale-009 [MaJ] Vulnérabilité dans Zimbra Collaboration 2022-10-07T00:00:00.000000 2023-03-14T00:00:00.000000
certfr-2022-ale-008 [MaJ] Multiples vulnérabilités dans Microsoft Exchange 2022-09-30T00:00:00.000000 2023-03-14T00:00:00.000000
certfr-2022-ale-007 Multiples vulnérabilités dans Microsoft Windows 2022-09-16T00:00:00.000000 2023-03-14T00:00:00.000000
certfr-2022-ale-006 [MàJ] Vulnérabilité dans Atlassian Confluence 2022-06-03T00:00:00.000000 2022-10-07T00:00:00.000000
certfr-2022-ale-005 [MàJ] Vulnérabilité dans Microsoft Windows 2022-05-31T00:00:00.000000 2022-09-16T00:00:00.000000
certfr-2022-ale-004 Vulnérabilité dans F5 BIG-IP 2022-05-11T00:00:00.000000 2022-09-16T00:00:00.000000
certfr-2022-ale-003 [MàJ] Vulnérabilité dans l'implémentation du protocole RPC par Microsoft 2022-04-13T00:00:00.000000 2022-05-04T00:00:00.000000
certfr-2022-ale-002 Vulnérabilité dans VMware Spring Cloud Gateway 2022-03-03T00:00:00.000000 2022-10-07T00:00:00.000000
certfr-2022-ale-001 [MaJ] Vulnérabilité dans Microsoft Windows 2022-01-12T00:00:00.000000 2022-05-04T00:00:00.000000
certfr-2021-ale-022 [MaJ] Vulnérabilité dans Apache Log4j 2021-12-10T00:00:00.000000 2022-05-04T00:00:00.000000
ID CVSS Description Vendor Product Published Updated
GCVE-1-2025-0026
9.4 (4.0)
Reflected cross-site scripting (XSS) vulnerability in … misp
 misp
 2025-11-26T16:35:00.000Z 2025-12-02T08:50:46.381572Z
GCVE-1-2025-0025
9.4 (4.0)
Reflected cross-site scripting (XSS) vulnerability in … misp
 misp
 2025-11-26T16:27:00.000Z 2025-12-02T08:50:18.897756Z
GCVE-1-2025-0024
9.4 (4.0)
cross-site scripting (XSS) vulnerability in the MISP s… misp
 misp
 2025-11-26T16:14:00.000Z 2025-12-02T08:50:01.482327Z
GCVE-1-2025-0023
9.4 (4.0)
XSS in MISP server comparison tool misp
 misp
 2025-11-26T16:10:00.000Z 2025-12-02T08:49:24.626168Z
GCVE-1-2025-0022
9.4 (4.0)
Clarified setting's impact on download_attachments_on_load misp
 misp
 2025-11-26T16:04:00.000Z 2025-12-02T08:49:04.510294Z
GCVE-1-2025-0021
9.4 (4.0)
XSS in MISP ReST client in HTML view misp
 misp
 2025-11-26T15:55:00.000Z 2025-12-02T08:48:41.869838Z
GCVE-1-2025-0020
9.4 (4.0)
cross-site scripting (XSS) in Galaxy element JSON view misp
 misp
 2025-11-26T15:49:00.000Z 2025-12-02T08:47:41.151429Z
GCVE-1-2025-0019
4 (4.0)
Path traversal vulnerability in EventReport for site-admin misp
 misp
 2025-11-26T14:47:00.000Z 2025-11-28T07:27:42.721350Z
GCVE-1-2025-0018
9.4 (4.0)
HTML injection issue was identified in Lookyloo’s web … lookyloo
 lookyloo
 2025-11-18T15:33:00.000Z 2025-11-18T20:39:45.579295Z
GCVE-1-2025-0017
9.4 (4.0)
Privilege escalation in Cerebrate allows an authentica… cerebrate
 cerebrate
 2025-11-12T08:15:00.000Z 2025-11-28T07:22:08.205835Z
GCVE-1-2025-0016
6 (4.0)
Local file inclusion in [ImportFromUrl() URL hand… misp
 misp
 2025-11-04T09:20:00.000Z 2025-11-04T09:56:38.383646Z
ID CVSS Description Vendor Product Published Updated