Recent vulnerabilities

Recent vulnerabilities from
Select from 69 available sources using the dropdown above.
ID CVSS Description Vendor Product Published Updated
CVE-2026-30996
7.5 (3.1)
An issue in the file handling logic of the compon… n/a
 n/a
 2026-04-15T00:00:00.000Z 2026-04-15T18:05:30.972Z
CVE-2026-33220
6.8 (3.1)
Weblate: JavaScript localization CDN add-on allows arb… WeblateOrg
 weblate
 2026-04-15T18:03:40.728Z 2026-04-15T18:03:40.728Z
CVE-2026-30624
8.6 (3.1)
Agent Zero 0.9.8 contains a remote code execution… n/a
 n/a
 2026-04-15T00:00:00.000Z 2026-04-15T18:02:40.808Z
CVE-2026-6290
8 (3.1)
Velociraptor Query() Plugin Misapplies Permissions To Orgs Rapid7
 Velociraptor
 2026-04-15T17:29:04.306Z 2026-04-15T18:00:25.760Z
CVE-2026-30617
8.6 (3.1)
LangChain-ChatChat 0.3.1 contains a remote code e… n/a
 n/a
 2026-04-15T00:00:00.000Z 2026-04-15T18:00:20.495Z
CVE-2026-30616
7.3 (3.1)
Jaaz 1.0.30 contains a remote code execution vuln… n/a
 n/a
 2026-04-15T00:00:00.000Z 2026-04-15T17:56:48.614Z
CVE-2026-30615
8 (3.1)
A prompt injection vulnerability in Windsurf 1.95… n/a
 n/a
 2026-04-15T00:00:00.000Z 2026-04-15T17:54:48.560Z
CVE-2026-33214
4.3 (3.1)
Weblate has improper access control for the translatio… WeblateOrg
 weblate
 2026-04-15T17:51:46.812Z 2026-04-15T17:51:46.812Z
CVE-2026-30364
7.5 (3.1)
CentSDR commit e40795 was discovered to contain a… n/a
 n/a
 2026-04-15T00:00:00.000Z 2026-04-15T17:49:52.557Z
CVE-2026-35034
6.5 (3.1)
Jellyfin: Potential Application DoS from excessively l… jellyfin
 jellyfin
 2026-04-14T22:31:44.796Z 2026-04-15T17:48:39.733Z
CVE-2026-20204
7.1 (3.1)
Improper Handling and Insufficient Isolation of Specif… Splunk
 Splunk Enterprise
 2026-04-15T15:17:54.019Z 2026-04-15T17:46:07.188Z
CVE-2026-29955
8.8 (3.1)
The `/registercrd` endpoint in KubePlus 4.14 in t… n/a
 n/a
 2026-04-13T00:00:00.000Z 2026-04-15T17:44:09.045Z
CVE-2026-34457
9.1 (3.1)
OAuth2 Proxy: Health Check User-Agent Matching Bypasse… oauth2-proxy
 oauth2-proxy
 2026-04-14T22:14:38.937Z 2026-04-15T17:43:30.711Z
CVE-2026-34619
7.7 (3.1)
ColdFusion | Improper Limitation of a Pathname to a Re… Adobe
 ColdFusion
 2026-04-14T21:53:59.589Z 2026-04-15T17:42:57.834Z
CVE-2026-27282
7.5 (3.1)
ColdFusion | Improper Input Validation (CWE-20) Adobe
 ColdFusion
 2026-04-14T21:53:57.872Z 2026-04-15T17:42:33.468Z
CVE-2025-51414
8.8 (3.1)
In Phpgurukul Online Course Registration v3.1, an… n/a
 n/a
 2026-04-13T00:00:00.000Z 2026-04-15T17:42:00.712Z
CVE-2026-20203
4.3 (3.1)
Improper Access Control in Data Model Acceleration in … Splunk
 Splunk Enterprise
 2026-04-15T15:17:56.261Z 2026-04-15T17:40:36.484Z
CVE-2026-27222
5.5 (3.1)
Bridge | Divide By Zero (CWE-369) Adobe
 Bridge
 2026-04-14T19:44:58.971Z 2026-04-15T17:39:30.343Z
CVE-2026-20205
7.2 (3.1)
Sensitive Information Disclosure in ''_internal'' inde… Splunk
 Splunk MCP Server
 2026-04-15T15:17:58.202Z 2026-04-15T17:39:19.517Z
CVE-2026-5387
9.3 (4.0)
AVEVA Pipeline Simulation Missing Authorization AVEVA
 Pipeline Simulation 2025
 2026-04-15T15:24:15.623Z 2026-04-15T17:38:50.678Z
CVE-2026-34631
7.8 (3.1)
InCopy | Out-of-bounds Write (CWE-787) Adobe
 InCopy
 2026-04-14T21:14:03.822Z 2026-04-15T17:37:21.917Z
CVE-2026-39907
7 (4.0)
Unisys WebPerfect Image Suite 3.0 NTLMv2 Hash Leakage … Unisys
 WebPerfect Image Suite
 2026-04-14T21:21:43.564Z 2026-04-15T17:34:53.027Z
CVE-2026-27307
2.4 (3.1)
ColdFusion | Uncontrolled Resource Consumption (CWE-400) Adobe
 ColdFusion
 2026-04-14T21:53:53.899Z 2026-04-15T17:33:11.891Z
CVE-2025-15610
9.3 (4.0)
Deserialization of untrusted data vulnerability i… OpenText, Inc
 RightFax
 2026-04-15T16:31:53.959Z 2026-04-15T17:32:31.254Z
CVE-2026-27308
2.4 (3.1)
ColdFusion | Uncontrolled Resource Consumption (CWE-400) Adobe
 ColdFusion
 2026-04-14T21:53:58.735Z 2026-04-15T17:31:46.019Z
CVE-2026-27301
5.5 (3.1)
Adobe Framemaker | Heap-based Buffer Overflow (CWE-122) Adobe
 Adobe Framemaker
 2026-04-14T22:58:13.588Z 2026-04-15T17:30:38.862Z
CVE-2026-27300
5.5 (3.1)
Adobe Framemaker | Access of Uninitialized Pointer (CWE-824) Adobe
 Adobe Framemaker
 2026-04-14T22:58:18.661Z 2026-04-15T17:29:10.177Z
CVE-2024-53412
8.4 (3.1)
Command injection in the connect function in Niet… n/a
 n/a
 2026-04-15T00:00:00.000Z 2026-04-15T17:27:22.513Z
CVE-2025-15470
6.5 (3.1)
Eleganzo <= 1.2 - Authenticated (Subscriber+) Arbitrar… DesigningMedia
 Eleganzo
 2026-04-14T23:26:06.733Z 2026-04-15T17:26:49.516Z
CVE-2025-53444
4.3 (3.1)
WordPress Userpro plugin < 5.1.11 - Cross Site Request… DeluxeThemes
 Userpro
 2026-04-15T15:43:21.294Z 2026-04-15T17:26:16.160Z
ID CVSS Description Vendor Product Published Updated
CVE-2026-29955
8.8 (3.1)
The `/registercrd` endpoint in KubePlus 4.14 in t… n/a
 n/a
 2026-04-13T00:00:00.000Z 2026-04-15T17:44:09.045Z
CVE-2026-25219
N/A
Apache Airflow: Sensitive Azure Service Bus connection… Apache Software Foundation
 Apache Airflow
 2026-04-15T12:30:17.584Z 2026-04-15T17:24:18.117Z
CVE-2025-51414
8.8 (3.1)
In Phpgurukul Online Course Registration v3.1, an… n/a
 n/a
 2026-04-13T00:00:00.000Z 2026-04-15T17:42:00.712Z
CVE-2024-53412
8.4 (3.1)
Command injection in the connect function in Niet… n/a
 n/a
 2026-04-15T00:00:00.000Z 2026-04-15T17:27:22.513Z
CVE-2026-27292
7.8 (3.1)
Adobe Framemaker | Use After Free (CWE-416) Adobe
 Adobe Framemaker
 2026-04-14T22:58:10.867Z 2026-04-15T09:13:10.924Z
CVE-2026-27293
7.8 (3.1)
Adobe Framemaker | Heap-based Buffer Overflow (CWE-122) Adobe
 Adobe Framemaker
 2026-04-14T22:58:11.812Z 2026-04-15T09:13:10.769Z
CVE-2026-27294
7.8 (3.1)
Adobe Framemaker | Out-of-bounds Read (CWE-125) Adobe
 Adobe Framemaker
 2026-04-14T22:58:15.307Z 2026-04-15T09:13:10.507Z
CVE-2026-27295
7.8 (3.1)
Adobe Framemaker | Out-of-bounds Write (CWE-787) Adobe
 Adobe Framemaker
 2026-04-14T22:58:14.461Z 2026-04-15T09:13:10.635Z
CVE-2026-39888
10 (3.1)
PraisonAIAgents has a sandbox escape via exception fra… MervinPraison
 praisonaiagents
 2026-04-08T20:41:56.680Z 2026-04-09T20:21:16.297Z
CVE-2026-39889
7.5 (3.1)
PraisonAI has Unauthenticated SSE Event Stream Exposes… MervinPraison
 PraisonAI
 2026-04-08T20:44:24.276Z 2026-04-10T20:54:03.584Z
CVE-2026-39890
9.8 (3.1)
PraisonAI Affected by Remote Code Execution via YAML D… MervinPraison
 PraisonAI
 2026-04-08T20:45:30.928Z 2026-04-09T16:16:51.923Z
CVE-2026-34538
N/A
Apache Airflow: Authorization bypass in DagRun wait en… Apache Software Foundation
 Apache Airflow
 2026-04-09T09:09:20.906Z 2026-04-09T14:06:21.963Z
CVE-2026-35407
5.9 (4.0)
Saleor has Cross-Account Email Change via Unbound Conf… saleor
 saleor
 2026-04-08T17:24:39.716Z 2026-04-10T20:36:19.733Z
CVE-2026-34828
7.1 (3.1)
listmonk: Active sessions remain valid after password … knadh
 listmonk
 2026-04-02T17:32:24.756Z 2026-04-03T17:33:57.751Z
CVE-2026-5368
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
projectworlds Car Rental Project Parameter login.php s… projectworlds
 Car Rental Project
 2026-04-02T17:15:13.177Z 2026-04-02T17:44:32.432Z
CVE-2026-34425
5.3 (4.0)
5.4 (3.1)
OpenClaw - Shell-Bleed Protection Preflight Validation… OpenClaw
 OpenClaw
 2026-04-02T18:15:06.544Z 2026-04-03T13:00:31.471Z
CVE-2026-34581
8.1 (3.1)
goshs has Auth Bypass via Share Token patrickhener
 goshs
 2026-04-02T18:04:35.217Z 2026-04-03T17:01:54.432Z
CVE-2026-27296
7.8 (3.1)
Adobe Framemaker | Integer Underflow (Wrap or Wraparou… Adobe
 Adobe Framemaker
 2026-04-14T22:58:17.850Z 2026-04-15T09:13:10.081Z
CVE-2026-27297
7.8 (3.1)
Adobe Framemaker | Integer Underflow (Wrap or Wraparou… Adobe
 Adobe Framemaker
 2026-04-14T22:58:20.265Z 2026-04-15T09:13:09.916Z
CVE-2026-27298
7.8 (3.1)
Adobe Framemaker | Access of Resource Using Incompatib… Adobe
 Adobe Framemaker
 2026-04-14T22:58:16.131Z 2026-04-15T09:13:10.357Z
CVE-2026-27299
6.3 (3.1)
Adobe Framemaker | Improper Input Validation (CWE-20) Adobe
 Adobe Framemaker
 2026-04-14T22:58:12.664Z 2026-04-15T13:28:12.518Z
CVE-2026-27300
5.5 (3.1)
Adobe Framemaker | Access of Uninitialized Pointer (CWE-824) Adobe
 Adobe Framemaker
 2026-04-14T22:58:18.661Z 2026-04-15T17:29:10.177Z
CVE-2026-34743
1.7 (4.0)
XZ Utils: Buffer overflow in lzma_index_append() tukaani-project
 xz
 2026-04-02T18:36:37.450Z 2026-04-03T12:59:06.096Z
CVE-2026-27301
5.5 (3.1)
Adobe Framemaker | Heap-based Buffer Overflow (CWE-122) Adobe
 Adobe Framemaker
 2026-04-14T22:58:13.588Z 2026-04-15T17:30:38.862Z
CVE-2026-34832
6.5 (3.1)
Scoold: Cross-Account Feedback Deletion (IDOR) Erudika
 scoold
 2026-04-02T19:08:03.206Z 2026-04-03T14:43:14.459Z
CVE-2026-34838
10 (3.1)
Group-Office: Authenticated Remote Code Execution via … Intermesh
 groupoffice
 2026-04-02T19:15:40.591Z 2026-04-03T12:55:48.631Z
CVE-2026-34847
4.7 (3.1)
hoppscotch: Open redirect via `/enter?redirect=` hoppscotch
 hoppscotch
 2026-04-02T19:19:05.703Z 2026-04-03T15:39:17.767Z
CVE-2026-34848
5.4 (3.1)
hoppscotch: Stored XSS in team member overflow tooltip… hoppscotch
 hoppscotch
 2026-04-02T19:20:00.944Z 2026-04-03T12:54:39.887Z
CVE-2026-34931
8.5 (4.0)
hoppscotch: Improper loopback redirect_uri validation … hoppscotch
 hoppscotch
 2026-04-02T19:21:35.136Z 2026-04-06T14:07:20.977Z
CVE-2026-34932
8.5 (4.0)
hoppscotch: Stored XSS via mock server responses on ba… hoppscotch
 hoppscotch
 2026-04-02T19:19:15.697Z 2026-04-06T14:07:40.655Z
ID Description Published Updated
fkie_cve-2026-6372 Missing Authorization vulnerability in Plisio Accept Cryptocurrencies with Plisio allows Exploiting… 2026-04-15T17:17:06.547 2026-04-15T17:17:06.547
fkie_cve-2026-6370 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2026-04-15T17:17:06.387 2026-04-15T17:17:06.387
fkie_cve-2026-5588 : Use of a Broken or Risky Cryptographic Algorithm vulnerability in Legion of the Bouncy Castle Inc… 2026-04-15T10:16:49.597 2026-04-15T17:17:06.007
fkie_cve-2026-39884 mcp-server-kubernetes is a Model Context Protocol server for Kubernetes cluster management. Version… 2026-04-15T04:17:37.097 2026-04-15T17:17:04.943
fkie_cve-2026-35589 nanobot is a personal AI assistant. Versions prior to 0.1.5 contain a Cross-Site WebSocket Hijackin… 2026-04-14T23:16:29.130 2026-04-15T17:17:04.803
fkie_cve-2026-30996 An issue in the file handling logic of the component download.php of SAC-NFe v2.0.02 allows attacke… 2026-04-15T17:17:04.443 2026-04-15T17:17:04.443
fkie_cve-2026-30995 Slah CMS v1.5.0 and below was discovered to contain a SQL injection vulnerability via the id parame… 2026-04-15T17:17:04.337 2026-04-15T17:17:04.337
fkie_cve-2026-30994 Incorrect access control in the config.php component of Slah v1.5.0 and below allows unauthenticate… 2026-04-15T17:17:04.220 2026-04-15T17:17:04.220
fkie_cve-2026-20186 A vulnerability in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attack… 2026-04-15T17:17:03.933 2026-04-15T17:17:03.933
fkie_cve-2026-20184 A vulnerability in the integration of single sign-on (SSO) with Control Hub in Cisco Webex Services… 2026-04-15T17:17:03.677 2026-04-15T17:17:03.677
fkie_cve-2026-20180 A vulnerability in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attack… 2026-04-15T17:17:03.460 2026-04-15T17:17:03.460
fkie_cve-2026-20170 A vulnerability in the Desktop Agent functionality of Cisco Webex Contact Center could have allowed… 2026-04-15T17:17:03.297 2026-04-15T17:17:03.297
fkie_cve-2026-20161 A vulnerability in the CLI of Cisco ThousandEyes Enterprise Agent could allow an authenticated, loc… 2026-04-15T17:17:03.120 2026-04-15T17:17:03.120
fkie_cve-2026-20152 A vulnerability in the authentication service feature of Cisco AsyncOS Software for Cisco Secure We… 2026-04-15T17:17:02.870 2026-04-15T17:17:02.870
fkie_cve-2026-20148 A vulnerability in Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to per… 2026-04-15T17:17:02.637 2026-04-15T17:17:02.637
fkie_cve-2026-20147 A vulnerability in Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to exe… 2026-04-15T17:17:02.410 2026-04-15T17:17:02.410
fkie_cve-2026-20136 A vulnerability in the&nbsp;CLI of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Ident… 2026-04-15T17:17:02.150 2026-04-15T17:17:02.150
fkie_cve-2026-20132 Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (I… 2026-04-15T17:17:01.967 2026-04-15T17:17:01.967
fkie_cve-2026-20081 Multiple vulnerabilities in Cisco Unity Connection could allow an authenticated, remote attacker&nb… 2026-04-15T17:17:01.783 2026-04-15T17:17:01.783
fkie_cve-2026-20078 Multiple vulnerabilities in Cisco Unity Connection could allow an authenticated, remote attacker&nb… 2026-04-15T17:17:01.610 2026-04-15T17:17:01.610
fkie_cve-2026-20061 A vulnerability in the web-based management interface of Cisco Unity Connection could allow an auth… 2026-04-15T17:17:01.433 2026-04-15T17:17:01.433
fkie_cve-2026-20060 A vulnerability in the web-based management interface of Cisco Unity Connection could allow an unau… 2026-04-15T17:17:01.250 2026-04-15T17:17:01.250
fkie_cve-2026-20059 A vulnerability in the web-based management interface of Cisco Unity Connection could allow an unau… 2026-04-15T17:17:01.060 2026-04-15T17:17:01.060
fkie_cve-2025-63029 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … 2026-04-15T17:17:00.613 2026-04-15T17:17:00.613
fkie_cve-2025-15636 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2026-04-15T17:17:00.437 2026-04-15T17:17:00.437
fkie_cve-2025-15635 Cross-Site Request Forgery (CSRF) vulnerability in Zaytech Smart Online Order for Clover allows Cro… 2026-04-15T17:17:00.277 2026-04-15T17:17:00.277
fkie_cve-2025-15610 Deserialization of untrusted data vulnerability in OpenText, Inc RightFax on Windows, 64 bit, 32 bi… 2026-04-15T17:17:00.020 2026-04-15T17:17:00.020
fkie_cve-2026-34397 Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. From versions 2.0.… 2026-04-01T18:16:30.330 2026-04-15T17:14:04.947
fkie_cve-2019-25572 NordVPN 6.19.6 contains a denial of service vulnerability that allows local attackers to crash the … 2026-03-21T13:16:21.200 2026-04-15T17:12:40.193
fkie_cve-2026-35632 OpenClaw through 2026.2.22 contains a symlink traversal vulnerability in agents.create and agents.u… 2026-04-09T22:16:32.003 2026-04-15T17:09:56.083
ID Severity Description Published Updated
ghsa-gj97-4w7h-79j2
7.1 (3.1)
In Splunk Enterprise versions below 10.2.1, 10.0.5, 9.4.10, and 9.3.11, and Splunk Cloud Platform v… 2026-04-15T18:31:57Z 2026-04-15T18:31:57Z
ghsa-cw73-5f7h-m4gv
Upsonic 0.71.6 contains a remote code execution vulnerability in its MCP server/task creation funct… 2026-04-15T18:31:57Z 2026-04-15T18:31:57Z
ghsa-9xj2-4996-7w4r
6.5 (3.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2026-04-15T18:31:57Z 2026-04-15T18:31:57Z
ghsa-9p4v-rc38-f32h
6.5 (3.1)
Multiple vulnerabilities in Cisco Unity Connection could allow an authenticated, remote attacker&nb… 2026-04-15T18:31:57Z 2026-04-15T18:31:57Z
ghsa-83qv-c52p-jx5j
6.1 (3.1)
A vulnerability in the web-based management interface of Cisco Unity Connection could allow an unau… 2026-04-15T18:31:57Z 2026-04-15T18:31:57Z
ghsa-7hj6-v8wx-jqjx
9.3 (4.0)
Deserialization of untrusted data vulnerability in OpenText, Inc RightFax on Windows, 64 bit, 32 bi… 2026-04-15T18:31:57Z 2026-04-15T18:31:57Z
ghsa-6qfc-m9fp-c5rm
7.2 (3.1)
In Splunk MCP Server app versions below 1.0.3 , a user who holds a role with access to the Splunk `… 2026-04-15T18:31:57Z 2026-04-15T18:31:57Z
ghsa-3w73-fhv4-qr7q
4.3 (3.1)
A vulnerability in the web-based management interface of Cisco Unity Connection could allow an auth… 2026-04-15T18:31:57Z 2026-04-15T18:31:57Z
ghsa-wrhr-37c7-3326
Nordic Semiconductor IronSide SE for nRF54H20 before 23.0.2+17 has an Algorithmic complexity issue. 2026-04-15T18:31:56Z 2026-04-15T18:31:56Z
ghsa-pcxf-fmpx-32ph
1.3 (4.0)
In Grafana's alerting system, users with edit permissions for a contact point, specifically the per… 2026-04-15T18:31:56Z 2026-04-15T18:31:56Z
ghsa-p3vg-7hj9-6f24
6.6 (3.1)
In Splunk Enterprise versions below 10.2.2, 10.0.5, 9.4.10, and 9.3.11, and Splunk Cloud Platform v… 2026-04-15T18:31:56Z 2026-04-15T18:31:56Z
ghsa-hv95-2pcr-m52r
7.5 (3.1)
CentSDR commit e40795 was discovered to contain a stack overflow in the "Thread1" function. 2026-04-15T15:31:43Z 2026-04-15T18:31:56Z
ghsa-ggmw-mjhv-75rm
8.4 (3.1)
Command injection in the connect function in NietThijmen ShoppingCart 0.0.2 allows an attacker to e… 2026-04-15T15:31:43Z 2026-04-15T18:31:56Z
ghsa-74c3-5r2f-v2xg
4.3 (3.1)
Cross-Site Request Forgery (CSRF) vulnerability in DeluxeThemes Userpro allows Cross Site Request F… 2026-04-15T18:31:56Z 2026-04-15T18:31:56Z
ghsa-x75g-qm53-h84r
8.1 (3.1)
Authorization Bypass Through User-Controlled Key vulnerability in Mahmudul Hasan Arif FluentBoards … 2026-04-15T18:31:55Z 2026-04-15T18:31:55Z
ghsa-jpgq-q89g-m8wr
8.1 (3.1)
Cross-Site Request Forgery (CSRF) vulnerability in Syed Balkhi Contact Form by WPForms wpforms-lite… 2026-04-15T18:31:55Z 2026-04-15T18:31:55Z
ghsa-h93w-324f-xffx
5.3 (3.1)
Missing Authorization vulnerability in Nelio Software Nelio AB Testing nelio-ab-testing allows Expl… 2026-04-15T18:31:55Z 2026-04-15T18:31:55Z
ghsa-g5jh-99h2-gm4r
5.3 (3.1)
Authorization Bypass Through User-Controlled Key vulnerability in VillaTheme COMPE compe-woo-compar… 2026-04-15T18:31:55Z 2026-04-15T18:31:55Z
ghsa-82v2-5hpx-rj8w
7.6 (3.1)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … 2026-04-15T18:31:55Z 2026-04-15T18:31:55Z
ghsa-4g48-54q2-fg7q
The `access_key` and `connection_string` connection properties were not marked as sensitive names i… 2026-04-15T15:31:42Z 2026-04-15T18:31:55Z
ghsa-wg6q-6289-32hp
6.3 (4.0)
: Use of a Broken or Risky Cryptographic Algorithm vulnerability in Legion of the Bouncy Castle Inc… 2026-04-15T18:31:54Z 2026-04-15T18:31:54Z
ghsa-r6g6-6h6f-xcmj
Apache::API::Password versions through v0.5.2 for Perl can generate insecure random values for salt… 2026-04-15T18:31:54Z 2026-04-15T18:31:54Z
ghsa-mgp4-3fh3-m48x
4.3 (3.1)
Missing Authorization vulnerability in BlockArt Magazine Blocks magazine-blocks allows Exploiting I… 2026-04-15T18:31:54Z 2026-04-15T18:31:54Z
ghsa-x87c-g7pw-2xr5
6.3 (3.1)
5.3 (4.0)
GeoNode versions 4.0 before 4.4.5 and 5.0 before 5.0.2 contain a server-side request forgery vulner… 2026-04-10T21:31:15Z 2026-04-15T18:31:52Z
ghsa-v8f7-cg9p-w5jx
6.3 (3.1)
5.3 (4.0)
GeoNode versions 4.0 before 4.4.5 and 5.0 before 5.0.2 contain a server-side request forgery vulner… 2026-04-10T21:31:15Z 2026-04-15T18:31:52Z
ghsa-92r2-m39q-3xf6
8.8 (3.1)
In Phpgurukul Online Course Registration v3.1, an arbitrary file upload vulnerability was discovere… 2026-04-13T21:30:44Z 2026-04-15T18:31:52Z
ghsa-4grx-4f48-p5mq
6.1 (3.1)
A HTML Injection vulnerability exists in the Dashboard module of Vtiger CRM 8.4.0. The application … 2026-04-13T21:30:44Z 2026-04-15T18:31:52Z
ghsa-2w92-jcqh-43jc
5.3 (4.0)
The "profiling.sampling" module (Python 3.15+) and "asyncio introspection capabilities" (3.14+, "py… 2026-04-14T18:30:36Z 2026-04-15T18:31:52Z
ghsa-2m2q-qgx4-j4mp
8.8 (3.1)
The `/registercrd` endpoint in KubePlus 4.14 in the kubeconfiggenerator component is vulnerable to … 2026-04-13T21:30:43Z 2026-04-15T18:31:52Z
ghsa-37gx-xxp4-5rgx
7.5 (3.1)
Microsoft Security Advisory CVE-2026-33116 – .NET, .NET Framework, and Visual Studio Denial of Serv… 2026-04-14T23:30:27Z 2026-04-15T16:44:52Z
ID Severity Description Package Published Updated
pysec-2025-56
4.3 (3.1)
OctoPrint provides a web interface for controlling consumer 3D printers. In versions up t… octoprint 2025-04-22T18:15:59+00:00 2025-06-27T17:22:53.513680+00:00
pysec-2024-256
Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm… mobsf 2024-12-03T16:15:24+00:00 2025-06-27T17:22:53.325430+00:00
pysec-2025-55
vLLM is an inference and serving engine for large language models (LLMs). Version 0.8.0 u… vllm 2025-05-30T19:15:30+00:00 2025-06-26T21:23:06.407481+00:00
pysec-2025-54
vLLM is an inference and serving engine for large language models (LLMs). In versions 0.8… vllm 2025-05-30T19:15:30+00:00 2025-06-26T21:23:06.319321+00:00
pysec-2025-53
vLLM is an inference and serving engine for large language models (LLMs). Prior to versio… vllm 2025-05-29T17:15:21+00:00 2025-06-26T21:23:06.231251+00:00
pysec-2025-51
Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) v… apache-airflow-providers-snowflake 2025-06-24T08:15:24+00:00 2025-06-26T21:23:03.132527+00:00
pysec-2025-50
vLLM, an inference and serving engine for large language models (LLMs), has a Regular Exp… vllm 2025-05-30T18:15:32+00:00 2025-06-19T03:02:28.572160+00:00
pysec-2024-255
Gradio before 4.20 allows credential leakage on Windows. gradio 2024-05-05T20:15:07+00:00 2025-06-17T19:21:48.983901+00:00
pysec-2024-254
4.2 (3.1)
A session fixation vulnerability exists in the zenml-io/zenml application, where JWT toke… zenml 2024-04-16T00:15:11+00:00 2025-06-13T00:48:41.806476+00:00
pysec-2025-49
8.8 (3.1)
setuptools is a package that allows users to download, build, install, upgrade, and unins… setuptools 2025-05-17T16:15:19+00:00 2025-06-12T22:23:11.115559+00:00
pysec-2025-48
9.8 (3.1)
Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm… mobsf 2025-03-31T17:15:42+00:00 2025-06-12T22:23:10.476087+00:00
pysec-2024-253
pretix before 2024.1.1 mishandles file validation. pretix 2024-02-26T16:28:00+00:00 2025-06-11T15:23:51.683422+00:00
pysec-2024-252
PyTorch before v2.2.0 was discovered to contain a heap buffer overflow vulnerability in t… torch 2024-04-17T19:15:07+00:00 2025-06-10T19:22:08.948962+00:00
pysec-2024-251
Pytorch before version v2.2.0 was discovered to contain a use-after-free vulnerability in… torch 2024-04-17T19:15:07+00:00 2025-06-10T03:12:59.077932+00:00
pysec-2025-47
An issue was discovered in Django 5.2 before 5.2.2, 5.1 before 5.1.10, and 4.2 before 4.2… django 2025-06-05T03:15:25+00:00 2025-06-05T05:23:28.296596+00:00
pysec-2025-46
5.5 (3.1)
A vulnerability was found in erdogant pypickle up to 1.1.5. It has been classified as cri… pypickle 2025-05-26T08:15:19+00:00 2025-06-03T17:36:58.579358+00:00
pysec-2025-45
7.8 (3.1)
A vulnerability was found in erdogant pypickle up to 1.1.5 and classified as problematic.… pypickle 2025-05-26T07:15:26+00:00 2025-06-03T17:36:58.528116+00:00
pysec-2024-250
Pytorch before v2.2.0 has an Out-of-bounds Read vulnerability via the component torch/csr… torch 2024-04-19T21:15:08+00:00 2025-06-03T15:23:56.072490+00:00
pysec-2023-312
5.9 (3.1)
Redis before 6cbea7d allows a replica to cause an assertion failure in a primary server b… redis 2023-07-15T23:15:09Z 2025-06-02T11:48:06.372423Z
pysec-2025-44
django-helpdesk before 1.0.0 allows Sensitive Data Exposure because of os.umask(0) in mod… django-helpdesk 2025-05-31T01:15:19+00:00 2025-05-31T03:09:35.357757+00:00
pysec-2025-43
vLLM is an inference and serving engine for large language models (LLMs). In versions sta… vllm 2025-05-29T17:15:21+00:00 2025-05-29T19:21:01.611587+00:00
pysec-2025-42
9.8 (3.1)
vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Ver… vllm 2025-04-30T01:15:51+00:00 2025-05-28T21:23:12.396609+00:00
pysec-2025-41
9.8 (3.1)
PyTorch is a Python package that provides tensor computation with strong GPU acceleration… torch 2025-04-18T16:15:23+00:00 2025-05-28T15:23:37.843138+00:00
pysec-2025-40
7.5 (3.1)
A vulnerability in the `preprocess_string()` function of the `transformers.testing_utils`… transformers 2025-05-19T12:15:19+00:00 2025-05-21T19:22:10.801823+00:00
pysec-2024-249
6.1 (3.1)
### Summary On all Label Studio versions prior to 1.11.0, data imported via file upload f… label-studio 2024-02-22T22:15:47+00:00 2025-05-19T11:22:35.312280+00:00
pysec-2024-248
7.8 (3.1)
OpenCanary, a multi-protocol network honeypot, directly executed commands taken from its … opencanary 2024-10-14T21:15:12+00:00 2025-05-16T14:23:05.150356+00:00
pysec-2025-39
motionEye is an online interface for the software motion, a video surveillance program wi… motioneye 2025-05-14T16:15:29+00:00 2025-05-14T17:22:51.050788+00:00
pysec-2025-38
OpenStack Ironic before 29.0.1 can write unintended files to a target node disk during im… ironic 2025-05-08T17:16:01Z 2025-05-13T04:24:03.083929Z
pysec-2024-247
9.9 (3.1)
A directory traversal vulnerability exists in the zenml-io/zenml repository, specifically… zenml 2024-04-16T00:15:11+00:00 2025-05-12T15:23:53.861001+00:00
pysec-2025-37
An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2… django 2025-05-08T04:17:18+00:00 2025-05-08T05:23:16.210893+00:00
ID Description Updated
gsd-2024-33874 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.959238Z
gsd-2024-33861 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.958057Z
gsd-2024-33850 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.952536Z
gsd-2024-33856 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.944669Z
gsd-2024-33870 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.943118Z
gsd-2024-33849 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.924449Z
gsd-2024-33854 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.916266Z
gsd-2024-33868 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.896638Z
gsd-2024-33881 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.886591Z
gsd-2024-33880 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.882744Z
gsd-2024-33877 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.871220Z
gsd-2024-33873 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.870402Z
gsd-2024-33859 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.867340Z
gsd-2024-33875 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.862083Z
gsd-2024-33878 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.850311Z
gsd-2024-33858 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.848478Z
gsd-2024-33872 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.839468Z
gsd-2024-33857 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.834866Z
gsd-2024-33853 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.825026Z
gsd-2024-33863 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.824810Z
gsd-2024-33852 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.824312Z
gsd-2024-33866 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.819755Z
gsd-2024-33867 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.808129Z
gsd-2024-33882 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.803998Z
gsd-2024-33871 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.800751Z
gsd-2024-33862 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.799465Z
gsd-2024-33864 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.792101Z
gsd-2024-33865 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.790923Z
gsd-2024-33869 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.784255Z
gsd-2024-33860 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.777612Z
ID Description Published Updated
mal-2026-2669 Malicious code in ant-mcp-proxy-for-test (PyPI) 2026-04-14T21:19:11Z 2026-04-14T21:19:23Z
mal-2026-2668 Malicious code in pnpm-workspaces (npm) 2026-04-14T19:36:06Z 2026-04-14T19:36:06Z
mal-2026-2667 Malicious code in ckeditor5-minimap (npm) 2026-04-14T19:06:02Z 2026-04-14T19:06:02Z
mal-2026-2666 Malicious code in moooo (PyPI) 2026-04-14T15:21:49Z 2026-04-14T15:21:49Z
mal-2026-2664 Malicious code in buildenv-telemetry (PyPI) 2026-04-14T14:28:02Z 2026-04-14T14:28:02Z
mal-2026-2665 Malicious code in hive-os-settings (PyPI) 2026-04-14T14:27:24Z 2026-04-14T14:27:24Z
mal-2026-2662 Malicious code in @automation-toolchain/f5-cloud-libs (npm) 2026-04-14T13:05:55Z 2026-04-14T13:40:00Z
mal-2026-2529 Malicious code in use-form-builder-plugin (npm) 2026-04-06T16:16:50Z 2026-04-14T12:40:55Z
mal-2026-2429 Malicious code in vv-ftend-core (npm) 2026-04-02T12:10:43Z 2026-04-14T12:40:55Z
mal-2026-2428 Malicious code in vv-ftend-api (npm) 2026-04-02T12:21:07Z 2026-04-14T12:40:55Z
mal-2026-2568 Malicious code in pt-sc-logger (npm) 2026-04-12T21:36:18Z 2026-04-14T12:40:54Z
mal-2026-2567 Malicious code in pt-sc-demo-app (npm) 2026-04-12T21:41:40Z 2026-04-14T12:40:54Z
mal-2026-2427 Malicious code in partner-tracker-api (npm) 2026-04-02T12:10:47Z 2026-04-14T12:40:54Z
mal-2026-2426 Malicious code in partner-tracker (npm) 2026-04-02T12:10:54Z 2026-04-14T12:40:54Z
mal-2026-2513 Malicious code in gprofiler (npm) 2026-04-08T11:45:58Z 2026-04-14T12:40:52Z
mal-2026-2425 Malicious code in bytefrontier-tracker (npm) 2026-04-02T12:10:59Z 2026-04-14T12:40:51Z
mal-2026-2424 Malicious code in bytefrontier-sdk (npm) 2026-04-02T12:21:22Z 2026-04-14T12:40:51Z
mal-2026-2423 Malicious code in bytefrontier-partner (npm) 2026-04-02T12:10:52Z 2026-04-14T12:40:51Z
mal-2026-2422 Malicious code in bytefrontier-api (npm) 2026-04-02T12:10:50Z 2026-04-14T12:40:51Z
mal-2026-2658 Malicious code in tailwindcss-style-typography (npm) 2026-04-14T12:12:36Z 2026-04-14T12:12:37Z
mal-2026-2657 Malicious code in tailwind-typ (npm) 2026-04-14T12:01:40Z 2026-04-14T12:01:41Z
mal-2026-2656 Malicious code in tailwind-stylecss-typography (npm) 2026-04-14T11:52:39Z 2026-04-14T11:52:40Z
mal-2026-2641 Malicious code in chai-as-refined (npm) 2026-04-14T11:48:44Z 2026-04-14T11:48:44Z
mal-2026-2644 Malicious code in node-unpnotifyserv (npm) 2026-04-14T11:47:49Z 2026-04-14T11:47:50Z
mal-2026-2659 Malicious code in ui-utils-udhay-alerts (npm) 2026-04-14T11:47:49Z 2026-04-14T11:47:49Z
mal-2026-2661 Malicious code in vip-landing (npm) 2026-04-14T11:47:12Z 2026-04-14T11:47:19Z
mal-2026-2660 Malicious code in use-feature-flags-plugin (npm) 2026-04-14T11:47:12Z 2026-04-14T11:47:19Z
mal-2026-2654 Malicious code in pinstatsd (npm) 2026-04-14T11:47:13Z 2026-04-14T11:47:19Z
mal-2026-2653 Malicious code in pinlogger (npm) 2026-04-14T11:47:13Z 2026-04-14T11:47:19Z
mal-2026-2652 Malicious code in onewin-landing (npm) 2026-04-14T11:47:12Z 2026-04-14T11:47:19Z
ID Description Published Updated
2nga002743 ABB AbilityTM zenon Remote Transport Vulnerability 2025-08-12T00:30:00.000Z 2025-08-12T00:30:00.000Z
3adr011407 ABB Automation Builder Vulnerabilities in user management and access control 2025-04-30T00:00:00.000Z 2025-07-25T00:00:00.000Z
3adr011432 AC500 V2 Buffer overread on Modbus protocol 2025-07-23T00:30:00.000Z 2025-07-23T00:30:00.000Z
9akk108471a4556 Busch-Welcome® 2 wire Door opener actuator by default in compatibility mode. 2025-07-21T00:30:00.000Z 2025-07-21T00:30:00.000Z
2crt000008 Lite Panel Pro Vulnerability in Session Management 2025-06-26T00:30:00.000Z 2025-06-26T00:30:00.000Z
9akk108470a8948 ELSB/Home Solutions Outdated SW Components in ABB Welcome IP-Gateway. 2025-05-29T00:30:00.000Z 2025-06-05T00:30:00.000Z
9akk108471a1621 EIBPORT Session Management Fail 2025-06-02T00:30:00.000Z 2025-06-04T00:30:00.000Z
9akk108471a0021 ELSB/BLBA ASPECT advisory several CVEs 2025-05-22T00:30:00.000Z 2025-05-23T10:30:00.000Z
2crt000006 ANC – ABB Network Card Multiple vulnerabilities in ANC 2025-04-30T00:30:00.000Z 2025-04-30T00:30:00.000Z
2crt000007 Ekip Com IEC61850 Vulnerability in 3rd Party Library 2025-04-29T00:30:00.000Z 2025-04-29T00:30:00.000Z
9akk108470a9989 ABB MV Drives Affected by CODESYS RTS (Runtime System) Vulnerabilities 2025-04-10T08:30:00.000Z 2025-04-10T08:30:00.000Z
2nga002579 ABB Arctic communication solution ARM600 Vulnerabilities 2025-04-07T10:30:00.000Z 2025-04-07T10:30:00.000Z
2nga002427 ABB Arctic ARG600, ARC600, ARR600, ARP600 Arctic Wireless Gateway Modem Module and OpenSSH vulnerabilities 2025-04-07T10:30:00.000Z 2025-04-07T10:30:00.000Z
9akk108470a9494 Low Voltage DC Drives and Power Controllers CODESYS RTS Vulnerabilities 2025-03-26T00:30:00.000Z 2025-03-27T00:30:00.000Z
9akk108470a9491 ABB ACS880 +N8010 Drives CODESYS RTS Vulnerabilities 2025-03-26T00:30:00.000Z 2025-03-27T00:30:00.000Z
sa24p015 B&R APROL Potential Privilege Escalation and Information Disclosure 2025-03-24T00:30:00.000Z 2025-03-24T00:30:00.000Z
9akk108470a8565 RMC-100 Vulnerability in the Web UI (REST Interface) 2025-03-11T00:30:00.000Z 2025-03-11T00:30:00.000Z
9akk108470a5684 FLXeon Controllers Cyber Security Advisory 2025-01-20T00:30:00.000Z 2025-02-14T00:30:00.000Z
7paa012159 System 800xA 5.1.x, 6.0.3.x, 6.1.1.x, 6.2.x - VideONet Camera passwords stored in clear text 2025-02-10T00:30:00.000Z 2025-02-10T00:30:00.000Z
9akk108470a6775 Hardcoded credentials in ASPECT Energy Management System 2025-02-05T00:30:00.000Z 2025-02-06T00:30:00.000Z
sa25p001 Automation Runtime and mapp View Use of insecure algorithm for self-signed certificates 2025-01-15T00:30:00.000Z 2025-01-16T00:30:00.000Z
9akk108470a5466 Drive Composer Path Traversal Vulnerability 2025-02-05T00:30:00.000Z 2025-01-10T00:30:00.000Z
3adr011377 AC500 V3 Multiple vulnerabilities 2025-01-07T00:30:00.000Z 2025-01-07T00:30:00.000Z
ID Description Published Updated
wid-sec-w-2026-0824 Python: Schwachstelle ermöglicht Codeausführung 2026-03-22T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0790 Linux Kernel: Mehrere Schwachstellen 2026-03-18T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0769 Red Hat Enterprise Linux (capstone) und OpenShift (rhcos): Mehrere Schwachstellen 2026-03-17T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0733 libexpat: Mehrere Schwachstellen ermöglichen Denial of Service 2026-03-15T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0729 OpenSSL: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2026-03-15T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0725 FreeRDP: Mehrere Schwachstellen 2026-03-12T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0716 OpenSSH GSSAPI delta: Schwachstelle ermöglicht nicht spezifizierten Angriff 2026-03-12T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0692 Mattermost MS Teams plugin: Mehrere Schwachstellen ermöglichen Denial of Service 2026-03-10T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0614 Linux Kernel: Mehrere Schwachstellen 2026-03-04T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0548 Golang Go: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff 2026-02-26T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0525 GStreamer: Mehrere Schwachstellen 2026-02-25T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0514 FreeRDP: Mehrere Schwachstellen 2026-02-24T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0443 Apache Tomcat und Tomcat Native: Mehrere Schwachstellen 2026-02-17T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0421 Linux Kernel: Mehrere Schwachstellen 2026-02-15T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0409 PostgreSQL: Mehrere Schwachstellen 2026-02-12T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0378 IBM WebSphere Application Server: Schwachstelle ermöglicht nicht spezifizierten Angriff 2026-02-10T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0359 GnuTLS: Mehrere Schwachstellen ermöglichen Denial of Service 2026-02-09T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0324 Linux Kernel: Mehrere Schwachstellen 2026-02-04T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0309 NGINX OSS und NGINX Plus: Schwachstelle ermöglicht Manipulation von Dateien 2026-02-04T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0302 Red Hat Enterprise Linux (python-wheel): Schwachstelle ermöglicht Privilegieneskalation und Codeausführung 2026-02-03T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0280 Linux Kernel: Mehrere Schwachstellen 2026-02-01T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0244 FreeRDP: Mehrere Schwachstellen 2026-01-27T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0215 Linux Kernel: Mehrere Schwachstellen 2026-01-25T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0194 Linux Kernel: Schwachstelle ermöglicht Denial of Service 2026-01-21T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0184 Linux Kernel: Schwachstelle ermöglicht Denial of Service 2026-01-20T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0164 Oracle Java SE: Mehrere Schwachstellen 2026-01-20T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0145 FreeRDP: Mehrere Schwachstellen ermöglichen DoS und Codeausführung 2026-01-19T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2025-1350 Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service 2025-06-17T22:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2025-0861 Linux Kernel: Mehrere Schwachstellen 2025-04-21T22:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2025-0844 Linux Kernel: Mehrere Schwachstellen 2025-04-16T22:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
ID Description Published Updated
icsa-26-078-02 Schneider Electric Modicon Controllers M241, M251, M258, and LMC058 2026-03-10T07:00:00.000000Z 2026-03-19T06:00:00.000000Z
icsa-26-078-01 Schneider Electric Modicon M241, M251, and M262 2026-03-10T07:00:00.000000Z 2026-03-19T06:00:00.000000Z
icsa-26-078-07 IGL-Technologies eParking.fi 2026-03-19T05:00:00.000000Z 2026-03-19T05:00:00.000000Z
icsa-26-078-06 CTEK Chargeportal 2026-03-19T05:00:00.000000Z 2026-03-19T05:00:00.000000Z
icsa-26-076-04 Siemens SICAM SIAPP SDK 2026-03-10T00:00:00.000000Z 2026-03-17T06:00:00.000000Z
icsa-26-076-03 Schneider Electric EcoStruxure Data Center Expert 2026-03-10T07:00:00.000000Z 2026-03-17T06:00:00.000000Z
icsa-26-076-02 Schneider Electric SCADAPack and RemoteConnect 2026-02-10T08:00:00.000000Z 2026-03-17T06:00:00.000000Z
icsa-26-076-01 CODESYS in Festo Automation Suite 2026-02-26T08:00:00.000000Z 2026-03-17T06:00:00.000000Z
icsa-26-015-10 Schneider Electric EcoStruxure Power Build Rapsody (Update A) 2026-01-13T08:00:00.000000Z 2026-03-17T06:00:00.000000Z
icsa-25-160-02 Hitachi Energy Relion 670, 650, SAM600-IO Series (Update A) 2023-06-27T00:00:00.000000Z 2026-03-17T06:00:00.000000Z
icsa-25-303-01 International Standards Organization ISO 15118-2 (Update A) 2025-10-30T05:00:00.000000Z 2026-03-17T05:00:00.000000Z
icsa-26-071-06 Inductive Automation Ignition Software 2026-03-12T06:00:00.000000Z 2026-03-13T06:00:00.000000Z
icsa-26-071-05 Siemens Heliox EV Chargers 2026-03-10T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-26-071-04 Siemens SIMATIC 2026-03-10T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-26-071-03 Siemens SIDIS Prime 2026-03-10T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-26-071-02 Siemens RUGGEDCOM APE1808 Devices 2026-03-10T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-26-071-01 Trane Tracer SC, Tracer SC+, and Tracer Concierge 2026-03-12T06:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-26-048-04 Honeywell HIB2PI CCTV Camera (Update B) 2026-02-17T07:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-26-043-08 Siemens NX 2026-02-10T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-26-043-03 Siemens COMOS 2025-12-09T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-25-345-05 Siemens Advanced Licensing (SALT) Toolkit 2025-12-09T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-25-345-04 Siemens IAM Client 2025-12-09T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-25-254-03 Siemens SINAMICS Drives 2025-09-09T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-25-231-02 Siemens Mendix SAML Module 2025-08-14T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-25-226-22 Siemens Web Installer 2025-08-12T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-25-162-05 Siemens SIMATIC S7-1500 CPU Family 2025-06-10T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-25-162-02 Siemens RUGGEDCOM APE1808 2025-06-10T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-25-044-06 Siemens RUGGEDCOM APE1808 2025-02-11T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-24-284-06 Siemens SINEC Security Monitor 2024-10-08T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-26-069-03 Honeywell IQ4x BMS Controller 2026-03-10T06:00:00.000000Z 2026-03-10T06:00:00.000000Z
ID Description Published Updated
cisco-sa-snort3-multi-dos-xfwkwswz Multiple Cisco Products Snort 3 Denial of Service Vulnerabilities 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-onprem-fmc-authbypass-5jpp45v2 Cisco Secure Firewall Management Center Software Authentication Bypass Vulnerability 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-ftdfmc-dir-trav-wergjhwq Cisco Secure Firewall Management Center and Secure Firewall Threat Defense Software Path Traversal Vulnerability 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-ftd-tcp-dos-rhfqnwrg Cisco Secure Firewall Threat Defense Software TLS with Snort 3 Detection Engine Denial of Service Vulnerability 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-ftd-snort-bypass-rlggkzvf Cisco Secure Firewall Threat Defense Software Snort Deep Inspection Bypass Vulnerability 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-ftd-dnd-dos-bpecg7b7 Cisco Secure Firewall Threat Defense Software SSL Decryption Policy Denial of Service Vulnerability 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-ftd-cmd-inj-mtzgzexf Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Authenticated Command Injection Vulnerabilities 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-fmc-sql-injection-2qh6ccjd Cisco Secure Firewall Management Center Software SQL Injection Vulnerabilities 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-asaftd-vpn-m9sx6mbc Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Remote Access SSL VPN Denial of Service Vulnerabilities 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-asaftd-saml-lkttrwzp Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software SAML Reflected Cross-Site Scripting Vulnerability 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-asaftd-ospf-zh8phbsw Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software OSPF Protocol Vulnerabilities 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-asaftd-luainject-vescqgms Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Lua Code Injection Vulnerability 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-asaftd-ikev2-dos-ebuegdeg Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software IKEv2 Denial of Service Vulnerabilities 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-asaftd-desync-n5avzeqw Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software VPN Web Services Client-Side Request Smuggling Vulnerability 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-asa-ssh-keybypass-cr5xpusf Cisco Secure Firewall Adaptive Security Appliance Software SSH Partial Private Key Authentication Bypass Vulnerability 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-sdwan-rpa-ehchtzk Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability 2026-02-25T16:00:00+00:00 2026-03-03T00:38:56+00:00
cisco-sa-sd-wan-priv-e6e8tedf Cisco SD-WAN Software Privilege Escalation Vulnerabilities 2022-09-28T16:00:00+00:00 2026-02-25T20:29:00+00:00
cisco-sa-ucsm-cmdinj-gvxlpesb Cisco UCS Manager Software Command Injection Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-ucsm-afwae-mogufyln Cisco UCS Manager Software Privilege Escalation Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-ucsfxosxss-7skve8zv Cisco FXOS and UCS Manager Software Stored Cross-Site Scripting Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-ucsciv-wgytc78q Cisco FXOS and UCS Manager Software Command Injection Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-nxos-ether-dos-kv8ynwz4 Cisco Nexus 3600 and 9500-R Series Switching Platforms Layer 2 Loop Denial of Service Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-nxos-dsnmp-cnn39uh Cisco Nexus 9000 Series Fabric Switches in ACI Mode SNMP Denial of Service Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-nxos-cpdos-qlsv6pfd Cisco Nexus 9000 Series Fabric Switches in ACI Mode Denial of Service Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-n3kn9k_aci_lldp_dos-ndgrrra3 Cisco NX-OS Software Link Layer Discovery Protocol Denial of Service Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-apic-dos-rnus8efw Cisco Application Policy Infrastructure Controller Denial of Service Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-wsa-archive-bypass-scx2e8zf Cisco Secure Web Appliance Real-Time Scanning Archive File Bypass Vulnerability 2026-02-04T16:00:00+00:00 2026-02-20T21:08:47+00:00
cisco-sa-voice-rce-morhqy4b Cisco Unified Communications Products Remote Code Execution Vulnerability 2026-01-21T16:00:00+00:00 2026-02-13T15:21:01+00:00
cisco-sa-snort3-mime-vulns-ttl8pgvh Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerabilities 2025-10-15T16:00:00+00:00 2026-02-12T18:38:13+00:00
cisco-sa-tce-roomos-dos-9v9jrc2q Cisco TelePresence Collaboration Endpoint Software and RoomOS Software Denial of Service Vulnerability 2026-02-04T16:00:00+00:00 2026-02-12T17:37:39+00:00
ID Description Published Updated
msrc_cve-2026-32776 CVE-2026-32776 2026-03-02T00:00:00.000Z 2026-04-15T01:41:18.000Z
msrc_cve-2026-4176 Perl versions from 5.9.4 before 5.40.4-RC1, from 5.41.0 before 5.42.2-RC1, from 5.43.0 before 5.43.9 contain a vulnerable version of Compress::Raw::Zlib 2026-03-02T00:00:00.000Z 2026-04-15T01:41:11.000Z
msrc_cve-2026-27171 zlib before 1.3.2 allows CPU consumption via crc32_combine64 and crc32_combine_gen64 because x2nmodp can do right shifts within a loop that has no termination condition. 2026-02-02T00:00:00.000Z 2026-04-15T01:40:55.000Z
msrc_cve-2026-27139 FileInfo can escape from a Root in os 2026-03-02T00:00:00.000Z 2026-04-15T01:40:46.000Z
msrc_cve-2025-14523 Libsoup: libsoup: duplicate host header handling causes host-parsing discrepancy (first- vs last-value wins) 2025-12-02T00:00:00.000Z 2026-04-15T01:39:52.000Z
msrc_cve-2026-33940 Handlebars.js has JavaScript Injection via AST Type Confusion when passing an object as dynamic partial 2026-03-02T00:00:00.000Z 2026-04-15T01:39:35.000Z
msrc_cve-2025-61729 Excessive resource consumption when printing error string for host certificate validation in crypto/x509 2025-12-02T00:00:00.000Z 2026-04-15T01:39:31.000Z
msrc_cve-2026-33939 Handlebars.js has Denial of Service via Malformed Decorator Syntax in Template Compilation 2026-03-02T00:00:00.000Z 2026-04-15T01:39:30.000Z
msrc_cve-2026-33941 Handlebars.js has JavaScript Injection in CLI Precompiler via Unescaped Names and Options 2026-03-02T00:00:00.000Z 2026-04-15T01:39:24.000Z
msrc_cve-2026-33938 Handlebars.js has JavaScript Injection via AST Type Confusion by tampering @partial-block 2026-03-02T00:00:00.000Z 2026-04-15T01:39:18.000Z
msrc_cve-2026-33891 Forge has Denial of Service via Infinite Loop in BigInteger.modInverse() with Zero Input 2026-03-02T00:00:00.000Z 2026-04-15T01:39:13.000Z
msrc_cve-2026-33896 Forge has a basicConstraints bypass in its certificate chain verification (RFC 5280 violation) 2026-03-02T00:00:00.000Z 2026-04-15T01:39:04.000Z
msrc_cve-2026-33895 Forge has signature forgery in Ed25519 due to missing S > L check 2026-03-02T00:00:00.000Z 2026-04-15T01:38:56.000Z
msrc_cve-2026-33671 Picomatch has a ReDoS vulnerability via extglob quantifiers 2026-03-02T00:00:00.000Z 2026-04-15T01:38:37.000Z
msrc_cve-2025-1220 Null byte termination in hostnames 2025-07-02T00:00:00.000Z 2026-04-15T01:38:32.000Z
msrc_cve-2026-1519 Excessive NSEC3 iterations cause high CPU load during insecure delegation validation 2026-03-02T00:00:00.000Z 2026-04-15T01:38:23.000Z
msrc_cve-2026-33636 LIBPNG has ARM NEON Palette Expansion Out-of-Bounds Read on AArch64 2026-03-02T00:00:00.000Z 2026-04-15T01:38:17.000Z
msrc_cve-2026-33416 LIBPNG has use-after-free via pointer aliasing in `png_set_tRNS` and `png_set_PLTE` 2026-03-02T00:00:00.000Z 2026-04-15T01:38:06.000Z
msrc_cve-2025-30258 In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that has incorrect usage flags, the user loses the ability to verify signatures made from certain other signing keys, aka a "verification DoS." 2025-03-02T00:00:00.000Z 2026-04-15T01:37:50.000Z
msrc_cve-2025-62718 Axios has a NO_PROXY Hostname Normalization Bypass Leads to SSRF 2026-04-02T00:00:00.000Z 2026-04-15T01:05:34.000Z
msrc_cve-2026-40175 Axios has Unrestricted Cloud Metadata Exfiltration via Header Injection Chain 2026-04-02T00:00:00.000Z 2026-04-15T01:05:29.000Z
msrc_cve-2026-34480 Apache Log4j Core: Silent log event loss in XmlLayout due to unescaped XML 1.0 forbidden characters 2026-04-02T00:00:00.000Z 2026-04-15T01:05:23.000Z
msrc_cve-2026-34479 Apache Log4j 1 to Log4j 2 bridge: Silent log event loss in Log4j1XmlLayout due to unescaped XML 1.0 forbidden characters 2026-04-02T00:00:00.000Z 2026-04-15T01:05:18.000Z
msrc_cve-2026-34481 Apache Log4j JSON Template Layout: Improper serialization of non-finite floating-point values in JsonTemplateLayout 2026-04-02T00:00:00.000Z 2026-04-15T01:05:12.000Z
msrc_cve-2026-35201 Discount has an Out-of-bounds Read in rdiscount 2026-04-02T00:00:00.000Z 2026-04-15T01:05:07.000Z
msrc_cve-2026-1502 HTTP client proxy tunnel headers not validated for CR/LF 2026-04-02T00:00:00.000Z 2026-04-15T01:04:59.000Z
msrc_cve-2026-5446 wolfSSL ARIA-GCM TLS 1.2/DTLS 1.2 GCM nonce reuse 2026-04-02T00:00:00.000Z 2026-04-15T01:04:48.000Z
msrc_cve-2026-5392 wolfSSL heap OOB read in PKCS7 SignedData streaming 2026-04-02T00:00:00.000Z 2026-04-15T01:04:39.000Z
msrc_cve-2026-5263 URI nameConstraints not enforced in ConfirmNameConstraints() 2026-04-02T00:00:00.000Z 2026-04-15T01:04:31.000Z
msrc_cve-2026-5460 Heap Use-After-Free in PQC Hybrid KeyShare Error Cleanup in wolfSSL TLS 1.3 2026-04-02T00:00:00.000Z 2026-04-15T01:04:23.000Z
ID Description Published Updated
ncsc-2026-0096 Kwetsbaarheden verholpen in Veeam Backup & Replication 2026-03-12T14:54:08.200676Z 2026-03-12T14:54:08.200676Z
ncsc-2026-0095 Kwetsbaarheid verholpen in pac4j-jwt 2026-03-12T14:45:51.156512Z 2026-03-12T14:45:51.156512Z
ncsc-2026-0094 Kwetsbaarheden verholpen in Cisco IOS XR 2026-03-12T14:44:08.106602Z 2026-03-12T14:44:08.106602Z
ncsc-2026-0093 Kwetsbaarheden verholpen in GitLab 2026-03-12T14:42:46.936248Z 2026-03-12T14:42:46.936248Z
ncsc-2026-0092 Kwetsbaarheden verholpen in Fortinet FortiWeb 2026-03-12T07:46:15.529522Z 2026-03-12T07:46:15.529522Z
ncsc-2026-0091 Kwetsbaarheden verholpen in SAP-producten 2026-03-12T07:24:16.575638Z 2026-03-12T07:24:16.575638Z
ncsc-2026-0090 Kwetsbaarheden verholpen in Adobe Experience Manager 2026-03-12T07:12:51.952931Z 2026-03-12T07:12:51.952931Z
ncsc-2026-0089 Kwetsbaarheden verholpen in Adobe Acrobat Reader 2026-03-12T07:03:24.148324Z 2026-03-12T07:03:24.148324Z
ncsc-2026-0088 Kwetsbaarheden verholpen in Adobe Illustrator 2026-03-12T06:55:39.712240Z 2026-03-12T06:55:39.712240Z
ncsc-2026-0087 Kwetsbaarheden verholpen in Adobe Commerce 2026-03-12T06:49:56.459199Z 2026-03-12T06:49:56.459199Z
ncsc-2026-0086 Kwetsbaarheden verholpen in Fortinet FortiManager en FortiAnalyzer 2026-03-11T09:19:38.777277Z 2026-03-11T09:19:38.777277Z
ncsc-2026-0085 Kwetsbaarheden verholpen in Microsoft Developer tools 2026-03-10T20:35:10.478398Z 2026-03-10T20:35:10.478398Z
ncsc-2026-0084 Kwetsbaarheden verholpen in Microsoft Office 2026-03-10T20:20:08.157658Z 2026-03-10T20:20:08.157658Z
ncsc-2026-0083 Kwetsbaarheid verholpen in Microsoft Authenticator app 2026-03-10T20:18:35.792755Z 2026-03-10T20:18:35.792755Z
ncsc-2026-0082 Kwetsbaarheden verholpen in Microsoft Azure 2026-03-10T20:15:41.528951Z 2026-03-10T20:15:41.528951Z
ncsc-2026-0081 Kwetsbaarheden verholpen in Microsoft SQL Server 2026-03-10T20:12:56.032261Z 2026-03-10T20:12:56.032261Z
ncsc-2026-0080 Kwetsbaarheden verholpen in Microsoft Windows 2026-03-10T20:07:55.976638Z 2026-03-10T20:07:55.976638Z
ncsc-2026-0059 Kwetsbaarheden verholpen in Ivanti Endpoint Manager 2026-02-11T08:16:27.583936Z 2026-03-10T14:20:48.176282Z
ncsc-2026-0079 Kwetsbaarheden verholpen in Siemens producten 2026-03-10T12:39:14.474522Z 2026-03-10T12:39:14.474522Z
ncsc-2026-0071 Kwetsbaarheden verholpen in Cisco Catalyst SD-WAN Manager 2026-02-25T17:11:09.013125Z 2026-03-06T12:07:02.595940Z
ncsc-2026-0078 Kwetsbaarheden verholpen in Kibana 2026-03-05T09:36:49.056247Z 2026-03-05T09:36:49.056247Z
ncsc-2026-0077 Kwetsbaarheden verholpen in Cisco Secure Firewall systemen 2026-03-05T09:05:21.646499Z 2026-03-05T09:05:21.646499Z
ncsc-2026-0075 Kwetsbaarheid verholpen in n8n Automation Platform 2026-03-04T14:03:54.207583Z 2026-03-04T14:03:54.207583Z
ncsc-2026-0070 Kwetsbaarheden verholpen in VMware Aria Operations 2026-02-25T11:24:46.807867Z 2026-03-04T08:54:08.940512Z
ncsc-2026-0074 Kwetsbaarheden verholpen in Google Android en Samsung Mobile 2026-03-03T09:07:09.279353Z 2026-03-03T09:07:09.279353Z
ncsc-2026-0073 Kwetsbaarheid verholpen in Juniper Junos OS Evolved 2026-02-27T09:48:51.845864Z 2026-02-27T09:48:51.845864Z
ncsc-2026-0072 Kwetsbaarheden verholpen in GitLab 2026-02-27T07:15:18.318821Z 2026-02-27T07:15:18.318821Z
ncsc-2026-0069 Kwetsbaarheden verholpen in SolarWinds Serv-U 2026-02-25T10:39:38.154815Z 2026-02-25T10:39:38.154815Z
ncsc-2026-0068 Kwetsbaarheden verholpen in Splunk Enterprise en Splunk Cloud Platform 2026-02-23T14:27:28.865278Z 2026-02-23T14:27:28.865278Z
ncsc-2026-0043 Zeroday-kwetsbaarheden verholpen in Ivanti Endpoint Manager Mobile 2026-01-29T19:15:04.575371Z 2026-02-20T14:47:02.047999Z
ID Description Published Updated
nn-2023:15-01 Sensitive data exfiltration via unsafe permissions on Windows systems in Arc before v1.6.0 2024-05-15T11:00:00.000Z 2024-09-19T11:00:00.000Z
nn-2023:12-01 Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0 2024-01-15T11:00:00.000Z 2024-09-19T11:00:00.000Z
nn-2023:11-01 SQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0 2023-09-18T11:00:00.000Z 2024-09-19T11:00:00.000Z
nn-2023:10-01 DoS on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0 2023-09-18T11:00:00.000Z 2024-09-19T11:00:00.000Z
nn-2022:2-02 Authenticated RCE on project configuration import in Guardian/CMC before 22.0.0 2022-02-14T11:00:00.000Z 2024-09-19T11:00:00.000Z
nn-2022:2-01 Authenticated RCE on logo report upload in Guardian/CMC before 22.0.0 2022-02-14T11:00:00.000Z 2024-09-19T11:00:00.000Z
nn-2023:5-01 Information disclosure via the debug function in assertions in Guardian/CMC before 22.6.2 2023-08-09T11:00:00.000Z 2024-05-20T11:00:00.000Z
nn-2023:16-01 Path traversal via 'zip slip' in Arc before v1.6.0 2024-05-15T11:00:00.000Z 2024-05-20T11:00:00.000Z
nn-2023:14-01 Unsafe temporary data privileges on Unix systems in Arc before v1.6.0 2024-05-15T11:00:00.000Z 2024-05-20T11:00:00.000Z
nn-2023:13-01 Missing authentication for local web interface in Arc before v1.6.0 2024-05-15T11:00:00.000Z 2024-05-20T11:00:00.000Z
nn-2023:1-01 Authenticated SQL Injection on Alerts in Guardian/CMC before 22.5.2 2023-05-03T11:00:00.000Z 2024-05-20T11:00:00.000Z
nn-2021:2-01 Authenticated command path traversal on timezone settings in Guardian/CMC before 20.0.7.4 2021-02-22T11:00:00.000Z 2024-05-20T11:00:00.000Z
nn-2021:1-01 Authenticated command injection when changing date settings or hostname in Guardian/CMC before 20.0.7.4 2021-02-22T11:00:00.000Z 2024-05-20T11:00:00.000Z
nn-2020:3-01 Angular template injection on custom report name field 2020-05-26T11:00:00.000Z 2024-05-20T11:00:00.000Z
nn-2020:2-01 Cross-site request forgery attack on change password form 2020-05-26T11:00:00.000Z 2024-05-20T11:00:00.000Z
nn-2019:2-01 CSV Injection on node label 2019-11-11T11:00:00.000Z 2024-05-20T11:00:00.000Z
nn-2019:1-01 Stored XSS in field name data model 2019-11-11T11:00:00.000Z 2024-05-20T11:00:00.000Z
ID Description Published Updated
opensuse-su-2026:10483-1 himmelblau-2.3.9+git0.a9fd29b-1.1 on GA media 2026-04-03T00:00:00Z 2026-04-03T00:00:00Z
opensuse-su-2026:10481-1 python314-3.14.3-4.1 on GA media 2026-04-01T00:00:00Z 2026-04-01T00:00:00Z
opensuse-su-2026:10480-1 python313-3.13.12-3.1 on GA media 2026-04-01T00:00:00Z 2026-04-01T00:00:00Z
opensuse-su-2026:10479-1 python312-3.12.13-4.1 on GA media 2026-04-01T00:00:00Z 2026-04-01T00:00:00Z
opensuse-su-2026:10478-1 python311-3.11.15-4.1 on GA media 2026-04-01T00:00:00Z 2026-04-01T00:00:00Z
opensuse-su-2026:10477-1 python310-3.10.20-3.1 on GA media 2026-04-01T00:00:00Z 2026-04-01T00:00:00Z
opensuse-su-2026:10476-1 python311-Pygments-2.20.0-2.1 on GA media 2026-04-01T00:00:00Z 2026-04-01T00:00:00Z
opensuse-su-2026:10475-1 opensc-0.27.1-1.1 on GA media 2026-04-01T00:00:00Z 2026-04-01T00:00:00Z
opensuse-su-2026:10474-1 ignition-2.26.0-3.1 on GA media 2026-04-01T00:00:00Z 2026-04-01T00:00:00Z
opensuse-su-2026:10473-1 dnsdist-2.0.3-1.1 on GA media 2026-04-01T00:00:00Z 2026-04-01T00:00:00Z
opensuse-su-2026:10472-1 conftest-0.67.1-2.1 on GA media 2026-04-01T00:00:00Z 2026-04-01T00:00:00Z
opensuse-su-2026:10464-1 python311-pypdf-6.9.2-1.1 on GA media 2026-03-30T00:00:00Z 2026-03-30T00:00:00Z
opensuse-su-2026:10463-1 netty-4.1.132-1.1 on GA media 2026-03-30T00:00:00Z 2026-03-30T00:00:00Z
opensuse-su-2026:10462-1 heroic-games-launcher-2.20.1-4.1 on GA media 2026-03-30T00:00:00Z 2026-03-30T00:00:00Z
opensuse-su-2026:10457-1 xen-4.21.1_02-1.1 on GA media 2026-03-28T00:00:00Z 2026-03-28T00:00:00Z
opensuse-su-2026:10456-1 tailscale-1.96.4-1.1 on GA media 2026-03-28T00:00:00Z 2026-03-28T00:00:00Z
opensuse-su-2026:10455-1 python311-requests-2.33.0-1.1 on GA media 2026-03-28T00:00:00Z 2026-03-28T00:00:00Z
opensuse-su-2026:10454-1 python311-cryptography-46.0.6-1.1 on GA media 2026-03-28T00:00:00Z 2026-03-28T00:00:00Z
opensuse-su-2026:10453-1 libpolkit-agent-1-0-127-3.1 on GA media 2026-03-28T00:00:00Z 2026-03-28T00:00:00Z
opensuse-su-2026:10452-1 libjavamapscript-8.6.1-1.1 on GA media 2026-03-28T00:00:00Z 2026-03-28T00:00:00Z
opensuse-su-2026:10451-1 libpng16-16-1.6.56-1.1 on GA media 2026-03-28T00:00:00Z 2026-03-28T00:00:00Z
opensuse-su-2026:10450-1 incus-6.23-1.1 on GA media 2026-03-28T00:00:00Z 2026-03-28T00:00:00Z
opensuse-su-2026:10449-1 gsl-2.8-5.1 on GA media 2026-03-28T00:00:00Z 2026-03-28T00:00:00Z
opensuse-su-2026:10448-1 bind-9.20.21-1.1 on GA media 2026-03-28T00:00:00Z 2026-03-28T00:00:00Z
opensuse-su-2026:10447-1 MozillaThunderbird-140.9.0-1.1 on GA media 2026-03-28T00:00:00Z 2026-03-28T00:00:00Z
opensuse-su-2026:10446-1 ImageMagick-7.1.2.18-1.1 on GA media 2026-03-28T00:00:00Z 2026-03-28T00:00:00Z
opensuse-su-2026:10441-1 strongswan-6.0.5-1.1 on GA media 2026-03-26T00:00:00Z 2026-03-26T00:00:00Z
opensuse-su-2026:10440-1 jupyter-nbclassic-1.3.3-1.1 on GA media 2026-03-26T00:00:00Z 2026-03-26T00:00:00Z
opensuse-su-2026:10439-1 plexus-utils-4.0.2-2.1 on GA media 2026-03-26T00:00:00Z 2026-03-26T00:00:00Z
opensuse-su-2026:10438-1 openbao-2.5.2-1.1 on GA media 2026-03-26T00:00:00Z 2026-03-26T00:00:00Z
ID Description Published Updated
ID Description Published Updated
rhsa-2025:13429 Red Hat Security Advisory: libxml2 security update 2025-08-07T13:27:50+00:00 2026-04-14T10:01:36+00:00
rhsa-2025:13428 Red Hat Security Advisory: libxml2 security update 2025-08-07T13:37:10+00:00 2026-04-14T10:01:36+00:00
rhsa-2025:13335 Red Hat Security Advisory: Insights proxy Container Image 2025-08-07T07:50:20+00:00 2026-04-14T10:01:36+00:00
rhsa-2025:13314 Red Hat Security Advisory: libxml2 security update 2025-08-07T05:31:09+00:00 2026-04-14T10:01:35+00:00
rhsa-2025:13313 Red Hat Security Advisory: libxml2 security update 2025-08-07T05:24:59+00:00 2026-04-14T10:01:35+00:00
rhsa-2025:13312 Red Hat Security Advisory: libxml2 security update 2025-08-07T05:32:29+00:00 2026-04-14T10:01:34+00:00
rhsa-2025:13311 Red Hat Security Advisory: libxml2 security update 2025-08-07T05:26:59+00:00 2026-04-14T10:01:34+00:00
rhsa-2025:13310 Red Hat Security Advisory: libxml2 security update 2025-08-07T04:47:29+00:00 2026-04-14T10:01:34+00:00
rhsa-2025:13309 Red Hat Security Advisory: libxml2 security update 2025-08-07T04:44:19+00:00 2026-04-14T10:01:34+00:00
rhsa-2025:13308 Red Hat Security Advisory: libxml2 security update 2025-08-07T04:45:04+00:00 2026-04-14T10:01:33+00:00
rhsa-2025:13267 Red Hat Security Advisory: A Subscription Management tool for finding and reporting Red Hat product usage 2025-08-06T15:26:03+00:00 2026-04-14T10:01:32+00:00
rhsa-2025:13203 Red Hat Security Advisory: libxml2 security update 2025-08-06T11:45:18+00:00 2026-04-14T10:01:32+00:00
rhsa-2025:12450 Red Hat Security Advisory: libxml2 security update 2025-07-31T16:31:31+00:00 2026-04-14T10:01:32+00:00
rhsa-2025:12447 Red Hat Security Advisory: libxml2 security update 2025-07-31T16:14:50+00:00 2026-04-14T10:01:32+00:00
rhsa-2025:12241 Red Hat Security Advisory: libxml2 security update 2025-07-30T07:10:57+00:00 2026-04-14T10:01:30+00:00
rhsa-2025:12240 Red Hat Security Advisory: libxml2 security update 2025-07-30T07:16:46+00:00 2026-04-14T10:01:30+00:00
rhsa-2025:12239 Red Hat Security Advisory: libxml2 security update 2025-07-30T07:14:41+00:00 2026-04-14T10:01:29+00:00
rhsa-2025:12237 Red Hat Security Advisory: libxml2 security update 2025-07-30T05:36:37+00:00 2026-04-14T10:01:28+00:00
rhsa-2025:12098 Red Hat Security Advisory: libxml2 security update 2025-07-29T13:52:26+00:00 2026-04-14T10:01:27+00:00
rhsa-2025:18240 Red Hat Security Advisory: OpenShift Container Platform 4.13.61 bug fix and security update 2025-10-23T17:46:13+00:00 2026-04-14T09:56:11+00:00
rhsa-2025:19894 Red Hat Security Advisory: OpenShift Container Platform 4.12.82 bug fix and security update 2025-11-13T09:46:03+00:00 2026-04-14T09:56:09+00:00
rhsa-2025:19046 Red Hat Security Advisory: OpenShift Container Platform 4.18.27 bug fix and security update 2025-10-29T09:26:54+00:00 2026-04-14T09:56:08+00:00
rhsa-2025:19041 Red Hat Security Advisory: OpenShift Container Platform 4.14.58 bug fix and security update 2025-10-30T05:41:47+00:00 2026-04-14T09:56:07+00:00
rhsa-2025:19020 Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.62 SP2 security update 2025-10-27T17:46:24+00:00 2026-04-14T09:56:07+00:00
rhsa-2025:18218 Red Hat Security Advisory: OpenShift Container Platform 4.17.42 bug fix and security update 2025-10-22T05:09:35+00:00 2026-04-14T09:56:05+00:00
rhsa-2025:18217 Red Hat Security Advisory: OpenShift Container Platform 4.19.17 bug fix and security update 2025-10-22T06:20:41+00:00 2026-04-14T09:56:05+00:00
rhsa-2025:15397 Red Hat Security Advisory: OpenShift Container Platform 4.20.0 bug fix and security update 2025-10-21T14:50:28+00:00 2026-04-14T09:56:03+00:00
rhsa-2025:13289 Red Hat Security Advisory: OpenShift Container Platform 4.14.55 bug fix and security update 2025-08-14T04:08:11+00:00 2026-04-14T09:55:59+00:00
rhsa-2025:12199 Red Hat Security Advisory: libxml2 security update 2025-07-29T16:02:55+00:00 2026-04-14T09:55:56+00:00
rhsa-2025:12099 Red Hat Security Advisory: libxml2 security update 2025-07-29T13:04:04+00:00 2026-04-14T09:55:55+00:00
ID Description Published Updated
sevd-2023-192-04 CODESYS Runtime Vulnerabilities 2023-07-11T07:15:18.000Z 2025-12-09T08:00:00.000Z
sevd-2021-159-04 ISaGRAF Vulnerabilities in IEC 61131-3 Programming and Engineering Tools 2021-06-08T04:36:25.000Z 2025-11-15T00:00:00.000Z
sevd-2022-284-03 ISaGRAF Workbench for SAGE RTU 2022-10-10T22:13:16.000Z 2025-11-14T06:30:00.000Z
sevd-2025-315-02 EcoStruxure™ Machine SCADA Expert & Pro-face BLUE Open Studio 2025-11-11T08:00:00.000Z 2025-11-11T08:00:00.000Z
sevd-2025-315-01 PowerChute™ Serial Shutdown 2025-11-11T08:00:00.000Z 2025-11-11T08:00:00.000Z
sevd-2025-224-02 EcoStruxure™ Power Monitoring Expert Software & EcoStruxure™ Power Operation (EPO) and EcoStruxure™ Power SCADA Operation (PSO) 2025-08-12T04:00:00.000Z 2025-11-11T08:00:00.000Z
sevd-2025-224-01 Saitel DR & Saitel DP Remote Terminal Unit 2025-08-12T04:00:00.000Z 2025-11-11T08:00:00.000Z
sevd-2025-287-01 EcoStruxure™ OPC UA Server Expert and EcoStruxure™ Modicon Communication Server 2025-10-14T07:00:00.000Z 2025-10-14T07:00:00.000Z
sevd-2025-133-01 Modicon Controllers M241/M251/M258/LMC058 2025-05-13T04:00:00.000Z 2025-10-14T07:00:00.000Z
sevd-2024-345-03 Modicon M241 / M251 / M258 / LMC058 2024-12-10T05:00:00.000Z 2025-10-14T07:00:00.000Z
sevd-2024-191-04 Modicon Controllers M241/ M251, M258 / LMC058 and M262 2024-07-09T00:00:00.000Z 2025-10-14T07:00:00.000Z
sevd-2025-133-05 Galaxy VS, Galaxy VL, Galaxy VXL 2025-05-13T04:00:00.000Z 2025-09-24T04:00:00.000Z
sevd-2025-252-02 Saitel DR & Saitel DP Remote Terminal Unit 2025-09-09T04:00:00.000Z 2025-09-09T04:00:00.000Z
sevd-2025-224-04 EcoStruxure™ Building Operation Enterprise Server, EcoStruxure™ Building Operation Enterprise Central, and EcoStruxure™ Workstation 2025-08-12T04:00:00.000Z 2025-09-09T04:00:00.000Z
sevd-2025-224-03 Schneider Electric Software Update 2025-08-12T04:00:00.000Z 2025-09-09T04:00:00.000Z
sevd-2025-014-02 Pro-face GP-Pro EX and Remote HMI 2025-01-14T00:00:00.000Z 2025-09-09T04:00:00.000Z
sevd-2021-313-05 BadAlloc Vulnerabilities 2021-11-09T05:00:00.000Z 2025-09-09T04:00:00.000Z
sevd-2025-014-03 Wind River VxWorks DHCP Server Vulnerability 2025-01-14T05:00:00.000Z 2025-08-12T04:00:00.000Z
sevd-2025-189-04 EcoStruxure™ Power Monitoring Expert (PME) and EcoStruxure™ Power Operation (EPO) with Advanced Reporting and Dashboards 2025-07-08T04:00:00.000Z 2025-07-08T04:00:00.000Z
sevd-2025-189-02 System Monitor Application in Harmony and Pro-face PS5000 Legacy Industrial PCs 2025-07-08T04:00:00.000Z 2025-07-08T04:00:00.000Z
sevd-2025-189-01 EcoStruxure™ IT Data Center Expert 2025-07-08T04:00:00.000Z 2025-07-08T04:00:00.000Z
sevd-2025-161-03 EVLink WallBox 2025-06-10T04:00:00.000Z 2025-07-08T04:00:00.000Z
sevd-2025-161-02 Modicon Controllers M241/M251/M258/LMC058/M262 2025-06-10T04:00:00.000Z 2025-07-08T04:00:00.000Z
sevd-2024-254-01 Vijeo Designer 2024-09-10T00:00:00.000Z 2025-07-08T04:00:00.000Z
sevd-2025-161-01 Insight Home and Insight Facility 2025-06-10T04:00:00.000Z 2025-06-10T04:00:00.000Z
sevd-2020-287-01 Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules 2020-10-13T00:00:00.000Z 2025-06-10T04:00:00.000Z
sevd-2025-133-04 Schneider Electric PrismaSeT Active - Wireless Panel Server 2025-05-13T04:00:00.000Z 2025-05-13T04:00:00.000Z
sevd-2025-133-03 EcoStruxure Power Build Rapsody 2025-05-13T04:00:00.000Z 2025-05-13T04:00:00.000Z
sevd-2025-133-02 Wiser Home Automation 2025-05-13T04:00:00.000Z 2025-05-13T04:00:00.000Z
sevd-2025-098-01 ConneXium Network Manager Software 2025-04-08T04:00:00.000Z 2025-05-13T04:00:00.000Z
ID Description Published Updated
sca-2023-0009 Vulnerability in Wibu-Systems CodeMeter Runtime affects multiple SICK products 2023-09-29T10:00:00.000Z 2023-09-29T10:00:00.000Z
sca-2023-0007 Vulnerabilities in SICK LMS5xx 2023-08-25T11:00:00.000Z 2023-08-25T11:00:00.000Z
sca-2023-0006 Vulnerabilities in SICK ICR890-4 2023-07-10T13:00:00.000Z 2023-07-10T13:00:00.000Z
sca-2023-0005 Vulnerabilities in SICK EventCam App 2023-06-19T11:00:00.000Z 2023-06-19T11:00:00.000Z
sca-2023-0004 Vulnerabilities in SICK FTMg 2023-05-11T13:00:00.000Z 2023-05-11T13:00:00.000Z
sca-2023-0003 Vulnerability in SICK Flexi Soft and Flexi Classic Gateways 2023-05-03T13:00:00.000Z 2023-05-03T13:00:00.000Z
sca-2023-0002 Use of Telnet in multiple SICK Flexi Soft and Flexi Classic Gateways 2023-04-11T10:00:00.000Z 2023-04-11T10:00:00.000Z
sca-2023-0001 Bootloader mode vulnerability in Flexi Soft Gateways v3 2023-02-20T14:00:00.000Z 2023-02-20T14:00:00.000Z
sca-2022-0015 Use of a Broken or Risky Cryptographic Algorithm in SICK RFU6xx RADIO FREQUEN. SENSOR 2022-12-08T16:00:00.000Z 2022-12-08T16:00:00.000Z
sca-2022-0013 Password recovery vulnerability affects multiple SICK SIMs 2022-10-21T13:00:00.000Z 2022-11-04T14:00:00.000Z
sca-2022-0014 SICK FlexiCompact affected by Denial of Service vulnerability 2022-10-31T11:00:00.000Z 2022-10-31T11:00:00.000Z
sca-2022-0012 OpenSSL vulnerability affects multiple SICK SIMs 2022-08-08T13:00:00.000Z 2022-08-03T13:00:00.000Z
sca-2022-0010 Vulnerability in SICK Flexi Soft Designer & Safety Designer 2022-05-16T10:00:00.000Z 2022-07-19T10:00:00.000Z
sca-2022-0011 Vulnerabilities in SICK Package Analytics 2022-06-08T15:00:00.000Z 2022-06-08T15:00:00.000Z
sca-2022-0009 Vulnerability in SICK Flexi Soft PROFINET IO Gateway FX0-GPNT and SICK microScan3 PROFINET 2022-04-29T15:00:00.000Z 2022-04-29T15:00:00.000Z
sca-2022-0008 Vulnerability in SICK Gateways for Flexi Soft, Flexi Compact, SICK EFI Gateway UE4740, SICK microScan3 and outdoorScan3 2022-04-29T15:00:00.000Z 2022-04-29T15:00:00.000Z
sca-2022-0007 Vulnerabilities in SICK MARSIC300 2022-04-21T15:00:00.000Z 2022-04-21T15:00:00.000Z
sca-2022-0006 Vulnerability in SICK MSC800 2022-04-11T15:00:00.000Z 2022-04-11T15:00:00.000Z
sca-2022-0005 Vulnerability in SICK Overall Equipment Effectiveness (OEE) 2022-04-11T15:00:00.000Z 2022-04-11T15:00:00.000Z
sca-2022-0004 Microsoft vulnerability affects multiple SICK IPCs with SICK MEAC 2022-04-11T15:00:00.000Z 2022-03-31T15:00:00.000Z
sca-2022-0003 Vulnerabilities in SICK FTMg 2022-03-31T15:00:00.000Z 2022-03-31T15:00:00.000Z
sca-2022-0002 PwnKit vulnerability affects multiple SICK IPCs 2022-02-23T16:00:00.000Z 2022-02-23T16:00:00.000Z
sca-2022-0001 Vulnerability in SICK FieldEcho 2022-02-17T16:00:00.000Z 2022-02-17T16:00:00.000Z
sca-2021-0003 SICK Security Advisory for Apache Log4j (CVE-2021-44228) 2021-12-14T17:00:00.000Z 2021-12-17T12:00:00.000Z
sca-2021-0004 Vulnerabilities in SICK SOPAS ET 2021-12-16T08:00:00.000Z 2021-12-17T08:00:00.000Z
sca-2021-0002 MEAC affected by Windows SMBv1 vulnerability 2021-08-04T10:00:00.000Z 2021-08-04T10:00:00.000Z
sca-2021-0001 Inadequate SSH configuration in SICK Visionary-S CX 2021-06-25T10:00:00.000Z 2021-06-25T10:00:00.000Z
sca-2020-0005 Package Analytics affected by Windows TCP/IP vulnerability 2020-10-29T11:00:00.000Z 2020-10-29T11:00:00.000Z
sca-2020-0004 Vulnerability in Platform Mechanism AutoIP 2020-08-31T10:00:00.000Z 2020-08-31T10:00:00.000Z
sca-2020-0003 MEAC affected by Windows SMBv3 vulnerability 2020-08-07T10:00:00.000Z 2020-08-07T10:00:00.000Z
ID Description Published Updated
ssa-485750 SSA-485750: Multiple Vulnerabilities in SIDIS Prime Before V4.0.800 2026-03-10T00:00:00.000Z 2026-03-10T00:00:00.000Z
ssa-430425 SSA-430425: Multiple Vulnerabilities in SINEC Security Monitor before V4.9.0 2024-10-08T00:00:00.000Z 2026-03-10T00:00:00.000Z
ssa-282044 SSA-282044: DLL Hijacking Vulnerability in Siemens Web Installer used by the Online Software Delivery 2025-08-12T00:00:00.000Z 2026-03-10T00:00:00.000Z
ssa-212953 SSA-212953: Multiple Vulnerabilities in COMOS 2025-12-09T00:00:00.000Z 2026-03-10T00:00:00.000Z
ssa-201595 SSA-201595: Privilege Escalation Vulnerability in WIBU CodeMeter Runtime Affecting the Desigo CC Product Family and SENTRON Powermanager 2025-08-14T00:00:00.000Z 2026-03-10T00:00:00.000Z
ssa-126399 SSA-126399: Improper Access Control Vulnerability in Heliox EV Chargers 2026-03-10T00:00:00.000Z 2026-03-10T00:00:00.000Z
ssa-082556 SSA-082556: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1.5 2025-06-10T00:00:00.000Z 2026-03-10T00:00:00.000Z
ssa-027652 SSA-027652: Privilege Escalation Vulnerability in SINAMICS Drives 2025-09-09T00:00:00.000Z 2026-03-10T00:00:00.000Z
ssa-613116 SSA-613116: Multiple Vulnerabilities in Third-Party Components in SINEC OS before V3.1 2025-08-12T00:00:00Z 2026-02-24T00:00:00Z
ssa-355557 SSA-355557: Multiple Vulnerabilities in Third-Party Components in SINEC OS before V3.2 2025-08-12T00:00:00Z 2026-02-24T00:00:00Z
ssa-089022 SSA-089022: Multiple Vulnerabilities in Third-Party Components in SINEC OS before V3.3 2026-01-28T00:00:00Z 2026-02-24T00:00:00Z
ssa-965753 SSA-965753: Multiple File Parsing Vulnerabilities in Simcenter Femap and Nastran Before V2512 2026-02-10T00:00:00Z 2026-02-10T00:00:00Z
ssa-864900 SSA-864900: Multiple Vulnerabilities in Fortigate NGFW on RUGGEDCOM APE1808 Devices 2025-05-13T00:00:00Z 2026-02-10T00:00:00Z
ssa-783261 SSA-783261: Denial of Service Vulnerability in Automation License Manager (ALM) Before V5.2 2012-12-12T00:00:00Z 2026-02-10T00:00:00Z
ssa-674753 SSA-674753: Denial-of-Service Vulnerability in ET 200 Devices 2026-01-13T00:00:00Z 2026-02-10T00:00:00Z
ssa-625934 SSA-625934: Improper Access Control Vulnerability in the Webhooks Implementation of Siveillance Video Management Servers 2026-02-10T00:00:00Z 2026-02-10T00:00:00Z
ssa-599451 SSA-599451: Multiple Vulnerabilities in SiPass integrated 2025-10-14T00:00:00Z 2026-02-10T00:00:00Z
ssa-507364 SSA-507364: Heap Based Buffer Overflow Vulnerability in WIBU CodeMeter Runtime Affecting the Desigo CC Product Family and SENTRON Powermanager 2026-02-10T00:00:00Z 2026-02-10T00:00:00Z
ssa-445819 SSA-445819: Out of Bounds Read in PS/IGES Parasolid Translator Component in Solid Edge 2026-02-10T00:00:00Z 2026-02-10T00:00:00Z
ssa-265688 SSA-265688: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 TM MFP V1.1 2024-04-09T00:00:00Z 2026-02-10T00:00:00Z
ssa-130874 SSA-130874: Buffer Overflow Vulnerability in SCALANCE X Switches 2012-04-05T00:00:00Z 2026-02-10T00:00:00Z
ssa-035571 SSA-035571: Cross Site Scripting Vulnerability in Polarion Before V2506 2026-02-10T00:00:00Z 2026-02-10T00:00:00Z
ssa-978177 SSA-978177: Vulnerability in Nozomi Guardian/CMC Before 25.4.0 on RUGGEDCOM APE1808 Devices 2025-08-12T00:00:00Z 2026-01-13T00:00:00Z
ssa-928984 SSA-928984: Heap-based Buffer Overflow Vulnerability in User Management Component (UMC) 2024-12-16T00:00:00Z 2026-01-13T00:00:00Z
ssa-912274 SSA-912274: Multiple Vulnerabilities in RUGGEDCOM ROX Before V2.17 2025-12-09T00:00:00Z 2026-01-13T00:00:00Z
ssa-858251 SSA-858251: Authentication Bypass Vulnerabilities in OPC UA 2025-03-11T00:00:00Z 2026-01-13T00:00:00Z
ssa-832273 SSA-832273: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.3 on RUGGEDCOM APE1808 Devices 2024-03-12T00:00:00Z 2026-01-13T00:00:00Z
ssa-698820 SSA-698820: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.4 on RUGGEDCOM APE1808 Devices 2024-07-09T00:00:00Z 2026-01-13T00:00:00Z
ssa-693776 SSA-693776: Multiple Vulnerabilities in Industrial Communication Devices based on SINEC OS before V3.2 2025-06-10T00:00:00Z 2026-01-13T00:00:00Z
ssa-366067 SSA-366067: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.1 on RUGGEDCOM APE1808 Devices 2024-03-12T00:00:00Z 2026-01-13T00:00:00Z
ID Description Published Updated
suse-su-2026:1287-1 Security update for the Linux Kernel (Live Patch 70 for SUSE Linux Enterprise 12 SP5) 2026-04-12T23:15:16Z 2026-04-12T23:15:16Z
suse-su-2026:1285-1 Security update for the Linux Kernel (Live Patch 68 for SUSE Linux Enterprise 12 SP5) 2026-04-12T19:04:23Z 2026-04-12T19:04:23Z
suse-su-2026:1284-1 Security update for the Linux Kernel (Live Patch 7 for SUSE Linux Enterprise 15 SP7) 2026-04-12T10:34:11Z 2026-04-12T10:34:11Z
suse-su-2026:1283-1 Security update for the Linux Kernel (Live Patch 0 for SUSE Linux Enterprise 15 SP7) 2026-04-12T10:34:05Z 2026-04-12T10:34:05Z
suse-su-2026:1281-1 Security update for the Linux Kernel (Live Patch 42 for SUSE Linux Enterprise 15 SP4) 2026-04-12T08:35:33Z 2026-04-12T08:35:33Z
suse-su-2026:1280-1 Security update for the Linux Kernel (Live Patch 41 for SUSE Linux Enterprise 15 SP4) 2026-04-12T02:04:36Z 2026-04-12T02:04:36Z
suse-su-2026:1279-1 Security update for the Linux Kernel (Live Patch 8 for SUSE Linux Enterprise 15 SP7) 2026-04-12T00:08:13Z 2026-04-12T00:08:13Z
suse-su-2026:1278-1 Security update for the Linux Kernel (Live Patch 5 for SUSE Linux Enterprise 15 SP7) 2026-04-12T00:08:07Z 2026-04-12T00:08:07Z
suse-su-2026:1274-1 Security update for the Linux Kernel (Live Patch 19 for SUSE Linux Enterprise 15 SP6) 2026-04-11T20:04:33Z 2026-04-11T20:04:33Z
suse-su-2026:1273-1 Security update for MozillaFirefox 2026-04-11T19:04:46Z 2026-04-11T19:04:46Z
suse-su-2026:1272-1 Security update for the Linux Kernel (Live Patch 18 for SUSE Linux Enterprise 15 SP6) 2026-04-11T18:04:50Z 2026-04-11T18:04:50Z
suse-su-2026:1271-1 Security update for the Linux Kernel (Live Patch 14 for SUSE Linux Enterprise 15 SP6) 2026-04-11T18:04:43Z 2026-04-11T18:04:43Z
suse-su-2026:1270-1 Security update for the Linux Kernel (Live Patch 33 for SUSE Linux Enterprise 15 SP5) 2026-04-11T16:34:14Z 2026-04-11T16:34:14Z
suse-su-2026:1269-1 Security update for the Linux Kernel (Live Patch 37 for SUSE Linux Enterprise 15 SP4) 2026-04-11T16:04:45Z 2026-04-11T16:04:45Z
suse-su-2026:1268-1 Security update for the Linux Kernel (Live Patch 38 for SUSE Linux Enterprise 15 SP4) 2026-04-11T14:04:40Z 2026-04-11T14:04:40Z
suse-su-2026:1266-1 Security update for the Linux Kernel (Live Patch 20 for SUSE Linux Enterprise 15 SP6) 2026-04-11T11:04:41Z 2026-04-11T11:04:41Z
suse-su-2026:1265-1 Security update for the Linux Kernel (Live Patch 46 for SUSE Linux Enterprise 15 SP4) 2026-04-11T04:34:33Z 2026-04-11T04:34:33Z
suse-su-2026:1263-1 Security update for the Linux Kernel (Live Patch 26 for SUSE Linux Enterprise 15 SP5) 2026-04-10T22:35:17Z 2026-04-10T22:35:17Z
suse-su-2026:1262-1 Security update for the Linux Kernel (Live Patch 9 for SUSE Linux Enterprise 15 SP7) 2026-04-10T21:43:55Z 2026-04-10T21:43:55Z
suse-su-2026:1261-1 Security update for the Linux Kernel (Live Patch 6 for SUSE Linux Enterprise 15 SP7) 2026-04-10T19:34:46Z 2026-04-10T19:34:46Z
suse-su-2026:1259-1 Security update for the Linux Kernel (Live Patch 9 for SUSE Linux Enterprise 15 SP6) 2026-04-10T17:35:15Z 2026-04-10T17:35:15Z
suse-su-2026:1258-1 Security update for the Linux Kernel (Live Patch 35 for SUSE Linux Enterprise 15 SP5) 2026-04-10T17:35:09Z 2026-04-10T17:35:09Z
suse-su-2026:1257-1 Security update for openssl-1_1 2026-04-10T15:06:36Z 2026-04-10T15:06:36Z
suse-su-2026:1256-1 Security update for openssl-1_0_0 2026-04-10T14:57:18Z 2026-04-10T14:57:18Z
suse-su-2026:1255-1 Security update for openssl-1_1 2026-04-10T14:56:12Z 2026-04-10T14:56:12Z
suse-su-2026:1254-1 Security update for the Linux Kernel (Live Patch 34 for SUSE Linux Enterprise 15 SP5) 2026-04-10T14:04:42Z 2026-04-10T14:04:42Z
suse-su-2026:21023-1 Security update for cockpit-podman 2026-04-10T11:54:16Z 2026-04-10T11:54:16Z
suse-su-2026:21024-1 Security update for cockpit-machines 2026-04-10T11:53:13Z 2026-04-10T11:53:13Z
suse-su-2026:21022-1 Security update for cockpit 2026-04-10T11:42:11Z 2026-04-10T11:42:11Z
suse-su-2026:1252-1 Security update for tigervnc 2026-04-10T11:36:58Z 2026-04-10T11:36:58Z
ID Description Published Updated
alsa-2026:5930 Important: firefox security update 2026-03-26T00:00:00Z 2026-03-30T11:00:48Z
alsa-2026:6037 Moderate: kernel security update 2026-03-30T00:00:00Z 2026-03-30T10:55:07Z
alsa-2026:6036 Moderate: kernel-rt security update 2026-03-30T00:00:00Z 2026-03-30T10:51:16Z
alsa-2026:5932 Important: firefox security update 2026-03-26T00:00:00Z 2026-03-30T10:46:04Z
alsa-2026:5931 Important: firefox security update 2026-03-26T00:00:00Z 2026-03-30T10:43:43Z
alsa-2026:5913 Moderate: ncurses security update 2026-03-26T00:00:00Z 2026-03-27T10:30:59Z
alsa-2026:5939 Important: freerdp security update 2026-03-26T00:00:00Z 2026-03-27T10:28:32Z
alsa-2026:5941 Important: golang security update 2026-03-26T00:00:00Z 2026-03-27T10:26:32Z
alsa-2026:5942 Important: golang security update 2026-03-26T00:00:00Z 2026-03-27T10:17:44Z
alsa-2026:5599 Moderate: nginx security update 2026-03-24T00:00:00Z 2026-03-26T13:22:57Z
alsa-2026:5581 Moderate: nginx:1.24 security update 2026-03-24T00:00:00Z 2026-03-26T13:17:49Z
alsa-2026:5578 Moderate: virt:rhel and virt-devel:rhel security update 2026-03-24T00:00:00Z 2026-03-26T13:09:57Z
alsa-2026:5640 Moderate: mysql:8.4 security update 2026-03-24T00:00:00Z 2026-03-26T11:56:07Z
alsa-2026:5513 Moderate: 389-ds:1.4 security update 2026-03-24T00:00:00Z 2026-03-26T11:22:25Z
alsa-2026:5580 Moderate: mysql:8.0 security update 2026-03-24T00:00:00Z 2026-03-26T11:12:21Z
alsa-2026:5585 Moderate: gnutls security update 2026-03-24T00:00:00Z 2026-03-26T11:01:10Z
alsa-2026:5587 Moderate: opencryptoki security update 2026-03-24T00:00:00Z 2026-03-26T10:48:17Z
alsa-2026:5588 Moderate: python3 security update 2026-03-24T00:00:00Z 2026-03-26T10:36:35Z
alsa-2026:5602 Moderate: vim security update 2026-03-24T00:00:00Z 2026-03-26T10:18:47Z
alsa-2026:5603 Moderate: opencryptoki security update 2026-03-24T00:00:00Z 2026-03-26T10:00:53Z
alsa-2026:5113 Important: gimp:2.8 security update 2026-03-19T00:00:00Z 2026-03-20T13:31:59Z
alsa-2026:5145 Important: yggdrasil-worker-package-manager security update 2026-03-19T00:00:00Z 2026-03-20T07:40:23Z
alsa-2026:5146 Important: yggdrasil security update 2026-03-19T00:00:00Z 2026-03-20T07:36:24Z
alsa-2026:4759 Moderate: kernel security update 2026-03-17T00:00:00Z 2026-03-20T07:32:09Z
alsa-2026:5063 Important: libarchive security update 2026-03-19T00:00:00Z 2026-03-20T07:26:23Z
alsa-2026:5080 Important: libarchive security update 2026-03-19T00:00:00Z 2026-03-20T07:21:56Z
alsa-2026:4715 Moderate: vim security update 2026-03-17T00:00:00Z 2026-03-20T07:17:19Z
alsa-2026:4898 Important: capstone security update 2026-03-18T00:00:00Z 2026-03-19T15:08:06Z
alsa-2026:4828 Moderate: mysql security update 2026-03-17T00:00:00Z 2026-03-19T15:05:35Z
alsa-2026:4717 Moderate: opencryptoki security update 2026-03-17T00:00:00Z 2026-03-19T15:03:25Z
ID Description Published Updated
hsec-2023-0003 code injection in xmonad-contrib 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2023-0002 Improper Verification of Cryptographic Signature 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2023-0001 Hash flooding vulnerability in aeson 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
ID Description Published Updated
ID Description Published Updated
osv-2022-1018 Index-out-of-bounds in LibRaw::kodak_radc_load_raw 2022-10-06T00:02:27.511658Z 2026-04-10T14:06:59.896524Z
osv-2021-525 Use-of-uninitialized-value in void edge_filtering_chroma_internal<unsigned char> 2021-03-16T00:00:19.176877Z 2026-04-10T14:06:54.074771Z
osv-2021-972 UNKNOWN READ in void mc_chroma<unsigned short> 2021-07-13T00:00:16.631711Z 2026-04-10T14:06:51.235370Z
osv-2021-948 Use-of-uninitialized-value in residual_coding 2021-07-10T00:01:12.890029Z 2026-04-10T14:06:45.638294Z
osv-2021-735 Use-of-uninitialized-value in decode_CABAC_FL_bypass 2021-05-08T00:00:14.355747Z 2026-04-10T14:06:44.826192Z
osv-2021-586 Use-of-uninitialized-value in void intra_prediction_angular<unsigned short> 2021-03-31T00:01:03.787831Z 2026-04-10T14:06:19.649878Z
osv-2020-868 Use-of-uninitialized-value in fetchARGB32ToRGBA64PM_avx2 2020-07-14T22:13:50.828646Z 2026-04-10T14:06:12.468231Z
osv-2022-1198 Heap-buffer-overflow in dwg_json_LTYPE 2022-11-23T13:02:06.623044Z 2026-04-10T14:05:46.801956Z
osv-2022-842 Stack-buffer-overflow in wc_Shake256_Final 2022-09-05T00:00:28.251072Z 2026-04-09T14:36:35.503150Z
osv-2023-107 Heap-buffer-overflow in DecodeBasicOcspResponse 2023-02-25T13:00:07.390537Z 2026-04-09T14:34:49.566404Z
osv-2024-269 Security exception in java.base/java.util.stream.AbstractPipeline.evaluate 2024-04-18T00:04:02.456948Z 2026-04-09T14:31:24.951720Z
osv-2022-312 Heap-buffer-overflow in dhcp_reply 2022-04-07T00:00:40.457052Z 2026-04-07T14:18:25.731015Z
osv-2021-1135 Heap-use-after-free in prvTidyInsertedToken 2021-08-16T00:01:09.422775Z 2026-04-05T14:14:03.564509Z
osv-2026-532 Heap-buffer-overflow in regsub 2026-04-05T00:06:36.291055Z 2026-04-05T00:06:36.291504Z
osv-2022-394 Incorrect-function-pointer-type in cv::split 2022-05-04T00:00:27.326853Z 2026-04-04T14:23:39.520277Z
osv-2024-451 Use-of-uninitialized-value in XpackDynamicTable::_make_space 2024-05-08T00:14:48.544622Z 2026-04-03T14:17:40.819969Z
osv-2026-518 Use-of-uninitialized-value in ne_read_block 2026-04-03T00:21:06.950773Z 2026-04-03T00:21:06.951035Z
osv-2026-514 Heap-buffer-overflow in format_expand1 2026-04-03T00:09:42.155641Z 2026-04-03T00:09:42.155954Z
osv-2026-512 Heap-buffer-overflow in g_utf8_get_char 2026-04-03T00:07:59.707776Z 2026-04-03T00:07:59.708039Z
osv-2026-504 Heap-use-after-free in ObjectStream::getObject 2026-04-02T00:16:28.228723Z 2026-04-02T00:16:28.229037Z
osv-2022-937 Use-after-poison in rx_ip 2022-09-23T00:02:21.434097Z 2026-04-01T14:27:42.367988Z
osv-2022-1201 Stack-buffer-overflow in msc_zero_object 2022-11-24T13:00:10.344351Z 2026-03-31T14:04:55.969741Z
osv-2022-1188 Stack-buffer-overflow in authentic_get_tagged_data 2022-11-20T13:01:57.719130Z 2026-03-31T14:04:55.181202Z
osv-2023-395 Stack-buffer-overflow in sc_path_print 2023-05-14T14:00:57.078498Z 2026-03-31T14:04:53.759303Z
osv-2024-696 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr 2024-07-31T00:03:10.056663Z 2026-03-30T14:18:48.684167Z
osv-2024-400 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr 2024-05-02T00:03:16.309384Z 2026-03-30T14:18:22.305458Z
osv-2024-641 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr 2024-07-14T00:06:37.034414Z 2026-03-30T14:18:20.625772Z
osv-2024-278 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr 2024-04-19T00:12:11.684954Z 2026-03-30T14:17:53.191446Z
osv-2022-776 Heap-buffer-overflow in do_job 2022-08-24T00:00:48.440951Z 2026-03-28T14:13:55.545096Z
osv-2025-312 Heap-buffer-overflow in ZSTD_decompressMultiFrame 2025-05-02T00:14:14.459388Z 2026-03-27T14:26:26.446866Z
ID Description Published Updated
rustsec-2026-0076 Panic in Signature Hint Decoding During Verification 2026-03-04T12:00:00Z 2026-03-27T05:55:06Z
rustsec-2026-0075 All-Zero Key Generation on Catastrophic RNG Failure 2026-03-04T12:00:00Z 2026-03-27T05:55:06Z
rustsec-2026-0074 Incorrect Output of Incremental Portable SHAKE API 2026-03-04T12:00:00Z 2026-03-27T05:55:06Z
rustsec-2026-0073 Panic in Standalone MAC Operations 2026-03-04T12:00:00Z 2026-03-27T05:55:06Z
rustsec-2025-0155 `rands` was removed from crates.io for malicious code 2025-02-10T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2023-0124 `bit-flags` was removed from crates.io for malicious code 2023-12-22T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2023-0123 `hann-rs-service` was removed from crates.io for malicious code 2023-11-18T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2023-0122 `winx-rs` was removed from crates.io for malicious code 2023-11-15T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2023-0121 `libusb1-main` was removed from crates.io for malicious code 2023-11-15T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2023-0120 `windows-service-rs` was removed from crates.io for malicious code 2023-11-15T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2023-0119 `openvpn-plugin-rs` was removed from crates.io for malicious code 2023-11-18T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2023-0118 `win_run_rs` was removed from crates.io for malicious code 2023-11-15T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2023-0117 `tauri-winrt-notifications` was removed from crates.io for malicious code 2023-11-20T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2023-0116 `registry-win` was removed from crates.io for malicious code 2023-11-15T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2023-0115 `acceptxmr-rs` was removed from crates.io for malicious code 2023-11-15T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2023-0114 `tiny-server` was removed from crates.io for malicious code 2023-11-06T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2023-0113 `win-base64-rs` was removed from crates.io for malicious code 2023-11-15T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2023-0112 `monero-rpc-rs` was removed from crates.io for malicious code 2023-11-15T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2023-0111 `monero-api` was removed from crates.io for malicious code 2023-11-15T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2023-0110 `postgresderive` was removed from crates.io for malicious code 2023-08-18T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2023-0109 `win-crypto` was removed from crates.io for malicious code 2023-11-15T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2023-0108 `tauri-win-rt-notification` was removed from crates.io for malicious code 2023-11-20T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2023-0107 `lasso-rs` was removed from crates.io for malicious code 2023-11-15T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2023-0106 `lfest-main` was removed from crates.io for malicious code 2023-11-15T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2023-0105 `windowsservice` was removed from crates.io for malicious code 2023-11-18T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2023-0104 `littest` was removed from crates.io for malicious code 2023-11-06T12:00:00Z 2026-03-26T06:26:31Z
rustsec-2025-0154 `replit_ruspty` was removed from crates.io for malicious code 2025-11-04T12:00:00Z 2026-03-25T08:37:19Z
rustsec-2026-0049 CRLs not considered authoritative by Distribution Point due to faulty matching logic 2026-03-20T12:00:00Z 2026-03-24T08:22:29Z
rustsec-2026-0072 Missing Check for All-Zero X25519 Shared Secret 2026-02-04T12:00:00Z 2026-03-24T08:16:07Z
rustsec-2026-0071 Nonce Reuse in HPKE Context 2026-02-05T12:00:00Z 2026-03-24T08:16:07Z
ID Description Published Updated
bit-kibana-2026-33458 Server-Side Request Forgery (SSRF) in Kibana One Workflow Leading to Information Disclosure 2026-04-13T05:41:58.634Z 2026-04-13T06:11:47.324Z
bit-helm-2026-35206 Helm Chart extraction output directory collapse via `Chart.yaml` name dot-segment 2026-04-13T05:40:36.770Z 2026-04-13T06:11:47.324Z
bit-helm-2026-35205 Helm's plugin verification fails open when .prov is missing, allowing unsigned plugin install 2026-04-13T05:40:35.063Z 2026-04-13T06:11:47.324Z
bit-helm-2026-35204 Helm has a path traversal in plugin metadata version enables arbitrary file write outside Helm plugin directory 2026-04-13T05:40:33.104Z 2026-04-13T06:11:47.324Z
bit-golang-2026-33810 Case-sensitive excludedSubtrees name constraints cause Auth Bypass in crypto/x509 2026-04-13T05:43:50.259Z 2026-04-13T06:11:47.324Z
bit-golang-2026-32289 JsBraceDepth Context Tracking Bugs (XSS) in html/template 2026-04-13T05:43:48.183Z 2026-04-13T06:11:47.324Z
bit-golang-2026-32288 Unbounded allocation for old GNU sparse in archive/tar 2026-04-13T05:43:46.362Z 2026-04-13T06:11:47.324Z
bit-golang-2026-32283 Unauthenticated TLS 1.3 KeyUpdate record can cause persistent connection retention and DoS in crypto/tls 2026-04-13T05:43:44.464Z 2026-04-13T06:11:47.324Z
bit-golang-2026-32282 TOCTOU permits root escape on Linux via Root.Chmod in os in internal/syscall/unix 2026-04-13T05:43:42.625Z 2026-04-13T06:11:47.324Z
bit-golang-2026-32281 Inefficient policy validation in crypto/x509 2026-04-13T05:43:40.495Z 2026-04-13T06:11:47.324Z
bit-golang-2026-32280 Unexpected work during chain building in crypto/x509 2026-04-13T05:43:38.849Z 2026-04-13T06:11:47.324Z
bit-golang-2026-27140 Code execution vulnerability in SWIG code generation in cmd/go 2026-04-13T05:43:35.566Z 2026-04-13T06:11:47.324Z
bit-gitlab-2026-4916 Missing Authorization in GitLab 2026-04-13T06:10:14.681Z 2026-04-13T06:11:47.324Z
bit-gitlab-2026-4332 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab 2026-04-13T06:10:11.039Z 2026-04-13T06:11:47.324Z
bit-gitlab-2026-2619 Incorrect Authorization in GitLab 2026-04-13T06:09:54.420Z 2026-04-13T06:11:47.324Z
bit-gitlab-2026-2104 Authorization Bypass Through User-Controlled Key in GitLab 2026-04-13T06:09:50.678Z 2026-04-13T06:11:47.324Z
bit-gitlab-2026-1516 Improper Control of Generation of Code ('Code Injection') in GitLab 2026-04-13T06:09:35.915Z 2026-04-13T06:11:47.324Z
bit-gitlab-2026-1101 Improper Validation of Specified Quantity in Input in GitLab 2026-04-13T06:09:20.803Z 2026-04-13T06:11:47.324Z
bit-gitlab-2025-9484 Missing Authorization in GitLab 2026-04-13T06:08:58.190Z 2026-04-13T06:11:47.324Z
bit-gitlab-2025-12664 Improper Validation of Specified Quantity in Input in GitLab 2026-04-13T06:05:51.788Z 2026-04-13T06:11:47.324Z
bit-elk-2026-4498 Execution with Unnecessary Privileges in Kibana Leading to reading index data beyond their direct Elasticsearch RBAC scope 2026-04-13T05:38:40.214Z 2026-04-13T06:11:47.324Z
bit-elk-2026-33461 Incorrect Authorization in Kibana Fleet Leading to Information Disclosure 2026-04-13T05:38:38.805Z 2026-04-13T06:11:47.324Z
bit-elk-2026-33460 Incorrect Authorization in Kibana Fleet Leading to Information Disclosure 2026-04-13T05:38:37.022Z 2026-04-13T06:11:47.324Z
bit-elk-2026-33459 Uncontrolled Resource Consumption in Kibana Leading to Denial of Service 2026-04-13T05:38:35.203Z 2026-04-13T06:11:47.324Z
bit-elk-2026-33458 Server-Side Request Forgery (SSRF) in Kibana One Workflow Leading to Information Disclosure 2026-04-13T05:38:33.681Z 2026-04-13T06:11:47.324Z
bit-airflow-2026-34538 Apache Airflow: Authorization bypass in DagRun wait endpoint (XCom exposure) 2026-04-13T05:38:18.100Z 2026-04-13T06:11:47.324Z
bit-airflow-2025-57735 Apache Airflow: Airflow Logout Not Invalidating JWT 2026-04-13T05:37:57.108Z 2026-04-13T06:11:47.324Z
bit-activemq-2026-40046 Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ MQTT: Missing fix for CVE-2025-66168: MQTT control packet remaining length field is not properly validated 2026-04-13T05:36:23.428Z 2026-04-13T06:11:47.324Z
bit-activemq-2025-66168 Apache ActiveMQ, Apache ActiveMQ All Module, Apache ActiveMQ MQTT Module: MQTT control packet remaining length field is not properly validated 2026-03-06T08:36:37.326Z 2026-04-13T06:11:47.324Z
bit-python-2026-1299 email BytesGenerator header injection due to unquoted newlines 2026-02-03T08:53:00.053Z 2026-04-10T09:26:18.172Z
ID Description Published Updated
cleanstart-2026-in87004 In libexpat before 2 2026-04-10T00:52:28.484967Z 2026-04-09T11:45:48Z
cleanstart-2026-ag20129 Security fixes for ghsa-72hv-8253-57qq applied in versions: 3.8.6-r0 2026-04-10T00:51:29.221302Z 2026-04-09T11:45:48Z
cleanstart-2026-mu81308 gRPC-Go is the Go language implementation of gRPC 2026-04-10T00:56:28.601214Z 2026-04-09T11:29:32Z
cleanstart-2026-nx54250 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions 2026-04-10T01:03:29.003448Z 2026-04-09T09:59:33Z
cleanstart-2026-ac01087 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions 2026-04-10T01:03:59.042951Z 2026-04-09T09:55:12Z
cleanstart-2026-nz97711 gRPC-Go is the Go language implementation of gRPC 2026-04-10T01:00:58.666965Z 2026-04-09T09:33:10Z
cleanstart-2026-hm40094 filippo 2026-04-10T01:03:28.912174Z 2026-04-09T09:27:45Z
cleanstart-2026-dm93480 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions 2026-04-10T01:06:00.088585Z 2026-04-09T09:11:04Z
cleanstart-2026-kl76732 attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing 2026-04-10T01:03:58.949308Z 2026-04-09T09:05:28Z
cleanstart-2026-dp55969 Security fixes for ghsa-389x-839f-4rhx, ghsa-3p8m-j85q-pgmj, ghsa-4cx2-fc23-5wg6, ghsa-4g8c-wm8x-jfhw, ghsa-735f-pc8j-v9w8, ghsa-fghv-69vj-qj49, ghsa-prj3-ccx8-p6x4, ghsa-xq3w-v528-46rv applied in versions: 0.12.0-r16 2026-04-10T01:04:00.139766Z 2026-04-09T09:00:58Z
cleanstart-2026-aa51484 Security fixes for ghsa-389x-839f-4rhx, ghsa-3p8m-j85q-pgmj, ghsa-4cx2-fc23-5wg6, ghsa-4g8c-wm8x-jfhw, ghsa-735f-pc8j-v9w8, ghsa-fghv-69vj-qj49, ghsa-prj3-ccx8-p6x4, ghsa-xq3w-v528-46rv applied in versions: 0.12.0-r16 2026-04-10T01:04:01.115500Z 2026-04-09T08:58:26Z
cleanstart-2026-jm69747 Security fixes for ghsa-f6x5-jh6r-wrfv, ghsa-j5w8-q4qc-rx2x applied in versions: 25.10.0-r1 2026-04-10T01:04:01.248430Z 2026-04-09T08:55:52Z
cleanstart-2026-av56399 Security fixes for ghsa-f6x5-jh6r-wrfv, ghsa-j5w8-q4qc-rx2x applied in versions: 25.10.0-r1 2026-04-10T01:04:01.910374Z 2026-04-09T08:54:48Z
cleanstart-2026-oc72960 attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing 2026-04-10T01:04:28.955253Z 2026-04-09T08:54:07Z
cleanstart-2026-iw23933 gRPC-Go is the Go language implementation of gRPC 2026-04-09T00:42:07.594705Z 2026-04-08T10:12:34Z
cleanstart-2026-hz73294 Validating certificate chains which use policies is unexpectedly inefficient when certificates in the chain contain a very large number of policy mappings, possibly causing denial of service 2026-04-09T00:45:08.400884Z 2026-04-08T10:12:22Z
cleanstart-2026-fz55932 SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process 2026-04-09T00:41:07.286953Z 2026-04-08T10:10:33Z
cleanstart-2026-ku98579 gRPC-Go is the Go language implementation of gRPC 2026-04-09T00:42:07.643397Z 2026-04-08T10:07:21Z
cleanstart-2026-ly88807 Docker CLI for Windows searches for plugin binaries in C:\\\\\\\\ProgramData\\\\\\\\Docker\\\\\\\\cli-plugins, a directory that does not exist by default 2026-04-09T00:43:37.430373Z 2026-04-08T10:02:31Z
cleanstart-2026-nv37937 Docker CLI for Windows searches for plugin binaries in C:\\\\\\\\ProgramData\\\\\\\\Docker\\\\\\\\cli-plugins, a directory that does not exist by default 2026-04-09T00:44:07.747698Z 2026-04-08T09:58:55Z
cleanstart-2026-bd18029 Docker CLI for Windows searches for plugin binaries in C:\\\\\\\\ProgramData\\\\\\\\Docker\\\\\\\\cli-plugins, a directory that does not exist by default 2026-04-09T00:45:07.480117Z 2026-04-08T09:49:10Z
cleanstart-2026-mo53190 gRPC-Go is the Go language implementation of gRPC 2026-04-09T00:49:37.904336Z 2026-04-08T09:47:14Z
cleanstart-2026-co68219 Docker CLI for Windows searches for plugin binaries in C:\\\\\\\\ProgramData\\\\\\\\Docker\\\\\\\\cli-plugins, a directory that does not exist by default 2026-04-09T00:47:37.444297Z 2026-04-08T09:44:10Z
cleanstart-2026-by59711 gRPC-Go is the Go language implementation of gRPC 2026-04-09T00:47:37.687304Z 2026-04-08T09:36:51Z
cleanstart-2026-mi26424 net/url package does not set a limit on the number of query parameters in a query 2026-04-09T00:48:07.244191Z 2026-04-08T09:30:12Z
cleanstart-2026-iw08736 Uncontrolled Recursion vulnerability in Apache Commons Lang 2026-04-09T00:53:08.467045Z 2026-04-08T09:19:34Z
cleanstart-2026-bg72514 Uncontrolled Recursion vulnerability in Apache Commons Lang 2026-04-09T00:49:38.775284Z 2026-04-08T09:13:42Z
cleanstart-2026-oq84658 Netty is an asynchronous, event-driven network application framework 2026-04-09T00:52:07.697782Z 2026-04-08T08:14:27Z
cleanstart-2026-cq39708 Netty is an asynchronous, event-driven network application framework 2026-04-09T00:53:38.262441Z 2026-04-08T08:11:56Z
cleanstart-2026-ge08280 Ruby JSON is a JSON implementation for Ruby 2026-04-09T01:01:38.909372Z 2026-04-08T08:04:46Z
ID Description Published Updated
drupal-contrib-2026-002 2026-01-14T17:54:33.000Z 2026-01-14T17:54:33.000Z
drupal-contrib-2026-001 2026-01-14T17:53:33.000Z 2026-01-14T17:53:33.000Z
drupal-contrib-2025-126 2025-12-17T17:47:13.000Z 2025-12-17T17:47:13.000Z
drupal-contrib-2025-125 2025-12-10T17:53:01.000Z 2025-12-10T19:09:57.000Z
drupal-contrib-2025-119 2025-12-03T18:48:23.000Z 2025-12-03T19:05:53.000Z
drupal-contrib-2025-124 2025-12-03T18:49:57.000Z 2025-12-03T18:49:57.000Z
drupal-contrib-2025-123 2025-12-03T18:49:40.000Z 2025-12-03T18:49:40.000Z
drupal-contrib-2025-122 2025-12-03T18:49:18.000Z 2025-12-03T18:49:18.000Z
drupal-contrib-2025-121 2025-12-03T18:48:57.000Z 2025-12-03T18:48:57.000Z
drupal-contrib-2025-120 2025-12-03T18:48:37.000Z 2025-12-03T18:48:37.000Z
drupal-contrib-2025-118 2025-12-03T18:48:10.000Z 2025-12-03T18:48:10.000Z
drupal-contrib-2025-117 2025-12-03T18:47:37.000Z 2025-12-03T18:47:37.000Z
drupal-contrib-2025-088 2025-07-09T16:37:40.000Z 2025-11-22T09:22:47.000Z
drupal-contrib-2025-116 2025-11-05T18:09:13.000Z 2025-11-05T18:09:13.000Z
drupal-contrib-2025-115 2025-11-05T18:08:01.000Z 2025-11-05T18:08:01.000Z
drupal-contrib-2025-114 2025-10-29T16:44:39.000Z 2025-10-29T20:15:52.000Z
drupal-contrib-2025-113 2025-10-22T16:35:12.000Z 2025-10-22T16:35:12.000Z
drupal-contrib-2025-112 2025-10-22T16:34:46.000Z 2025-10-22T16:34:46.000Z
drupal-contrib-2025-111 2025-09-24T17:28:05.000Z 2025-09-24T17:28:05.000Z
drupal-contrib-2025-110 2025-09-24T17:27:41.000Z 2025-09-24T17:27:41.000Z
drupal-contrib-2025-109 2025-09-24T17:27:33.000Z 2025-09-24T17:27:33.000Z
drupal-contrib-2025-108 2025-09-24T17:27:20.000Z 2025-09-24T17:27:20.000Z
drupal-contrib-2025-107 2025-09-24T17:18:08.000Z 2025-09-24T17:18:08.000Z
drupal-contrib-2025-106 2025-09-24T17:16:20.000Z 2025-09-24T17:16:20.000Z
drupal-contrib-2025-101 2025-08-27T17:19:59.000Z 2025-09-03T18:55:46.000Z
drupal-contrib-2025-097 2025-08-13T17:33:34.000Z 2025-09-03T18:53:10.000Z
drupal-contrib-2025-105 2025-09-03T16:15:48.000Z 2025-09-03T16:15:48.000Z
drupal-contrib-2025-100 2025-08-27T17:19:45.000Z 2025-08-27T17:23:11.000Z
drupal-contrib-2025-104 2025-08-27T17:20:41.000Z 2025-08-27T17:20:41.000Z
drupal-contrib-2025-103 2025-08-27T17:20:16.000Z 2025-08-27T17:20:16.000Z
ID Description Updated
ts-2023-001 TS-2023-001 2023-01-17T00:00
ts-2022-005 TS-2022-005 2022-11-21T00:00
ts-2022-004 TS-2022-004 2022-11-21T00:00
ts-2022-003 TS-2022-003 2022-06-14T00:00
ts-2022-002 TS-2022-002 2022-05-11T00:00
ts-2022-001 TS-2022-001 2022-02-07T00:00
ID Description Published Updated
certfr-2024-ale-003 [MàJ] Incident affectant les solutions AnyDesk 2024-02-05T00:00:00.000000 2024-04-15T00:00:00.000000
certfr-2024-ale-001 [MàJ] Multiples vulnérabilités dans Ivanti Connect Secure et Policy Secure Gateways 2024-01-11T00:00:00.000000 2024-04-15T00:00:00.000000
certfr-2024-ale-002 [MàJ] Multiples Vulnérabilités dans GitLab 2024-01-12T00:00:00.000000 2024-02-22T00:00:00.000000
certfr-2023-ale-013 Vulnérabilité dans Apache Struts 2 2023-12-13T00:00:00.000000 2024-02-16T00:00:00.000000
certfr-2023-ale-012 [MàJ] Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway 2023-10-23T00:00:00.000000 2024-02-16T00:00:00.000000
certfr-2023-ale-011 [MàJ] Multiples vulnérabilités dans Cisco IOS XE 2023-10-17T00:00:00.000000 2024-02-16T00:00:00.000000
certfr-2023-ale-010 Multiples vulnérabilités dans Exim 2023-10-02T00:00:00.000000 2024-02-16T00:00:00.000000
certfr-2023-ale-008 [MàJ] Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway 2023-07-19T00:00:00.000000 2024-01-02T00:00:00.000000
certfr-2023-ale-007 [MàJ] Vulnérabilité dans Zimbra Collaboration Suite 2023-07-17T00:00:00.000000 2024-01-02T00:00:00.000000
certfr-2023-ale-006 Vulnérabilité dans les produits Microsoft 2023-12-12T00:00:00.000000 2023-07-12T00:00:00.000000
certfr-2023-ale-009 [MàJ] Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile 2023-07-26T00:00:00.000000 2023-09-15T00:00:00.000000
certfr-2023-ale-005 Synthèse sur l'exploitation d'une vulnérabilité dans MOVEit Transfer 2023-07-05T00:00:00.000000 2023-09-11T00:00:00.000000
certfr-2023-ale-004 Vulnérabilité dans les produits Fortinet 2023-06-13T00:00:00.000000 2023-09-11T00:00:00.000000
certfr-2022-ale-014 Multiples vulnérabilités dans AMI MegaRAC 2022-12-16T00:00:00.000000 2023-09-11T00:00:00.000000
certfr-2023-ale-002 [MàJ] Vulnérabilité dans Microsoft Outlook 2023-03-15T00:00:00.000000 2023-05-11T00:00:00.000000
certfr-2023-ale-003 [MàJ] Compromission de l'application 3CX Desktop App 2023-03-31T00:00:00.000000 2023-04-12T00:00:00.000000
certfr-2023-ale-015 [MàJ] Campagne d'exploitation d'une vulnérabilité affectant VMware ESXi 2023-02-03T00:00:00.000000 2023-03-14T00:00:00.000000
certfr-2023-ale-001 Vulnérabilité dans Fortinet FortiOS 2023-03-14T00:00:00.000000 2023-03-14T00:00:00.000000
certfr-2022-ale-013 [MàJ] Vulnérabilité dans Citrix ADC et Gateway 2022-12-13T00:00:00.000000 2023-03-14T00:00:00.000000
certfr-2022-ale-010 Multiples vulnérabilités dans GLPI 2022-10-07T00:00:00.000000 2023-03-14T00:00:00.000000
certfr-2022-ale-009 [MaJ] Vulnérabilité dans Zimbra Collaboration 2022-10-07T00:00:00.000000 2023-03-14T00:00:00.000000
certfr-2022-ale-008 [MaJ] Multiples vulnérabilités dans Microsoft Exchange 2022-09-30T00:00:00.000000 2023-03-14T00:00:00.000000
certfr-2022-ale-007 Multiples vulnérabilités dans Microsoft Windows 2022-09-16T00:00:00.000000 2023-03-14T00:00:00.000000
certfr-2022-ale-012 [MàJ] Vulnérabilité dans FortiOS SSL-VPN 2022-12-13T00:00:00.000000 2022-12-20T00:00:00.000000
certfr-2022-ale-011 Vulnérabilité dans les produits Fortinet 2022-10-14T00:00:00.000000 2022-10-14T00:00:00.000000
certfr-2022-ale-006 [MàJ] Vulnérabilité dans Atlassian Confluence 2022-06-03T00:00:00.000000 2022-10-07T00:00:00.000000
certfr-2022-ale-002 Vulnérabilité dans VMware Spring Cloud Gateway 2022-03-03T00:00:00.000000 2022-10-07T00:00:00.000000
certfr-2022-ale-005 [MàJ] Vulnérabilité dans Microsoft Windows 2022-05-31T00:00:00.000000 2022-09-16T00:00:00.000000
certfr-2022-ale-004 Vulnérabilité dans F5 BIG-IP 2022-05-11T00:00:00.000000 2022-09-16T00:00:00.000000
certfr-2022-ale-003 [MàJ] Vulnérabilité dans l'implémentation du protocole RPC par Microsoft 2022-04-13T00:00:00.000000 2022-05-04T00:00:00.000000
ID Description Published Updated
certfr-2026-avi-0416 Vulnérabilité dans les produits Juniper Networks 2026-04-10T00:00:00.000000 2026-04-10T00:00:00.000000
certfr-2026-avi-0415 Multiples vulnérabilités dans Tenable Security Center 2026-04-10T00:00:00.000000 2026-04-10T00:00:00.000000
certfr-2026-avi-0414 Multiples vulnérabilités dans les produits Microsoft 2026-04-09T00:00:00.000000 2026-04-09T00:00:00.000000
certfr-2026-avi-0413 Multiples vulnérabilités dans les produits Elastic 2026-04-09T00:00:00.000000 2026-04-09T00:00:00.000000
certfr-2026-avi-0412 Multiples vulnérabilités dans les produits Palo Alto Networks 2026-04-09T00:00:00.000000 2026-04-09T00:00:00.000000
certfr-2026-avi-0411 Multiples vulnérabilités dans Mitel MiCollab 2026-04-09T00:00:00.000000 2026-04-09T00:00:00.000000
certfr-2026-avi-0410 Multiples vulnérabilités dans GitLab 2026-04-09T00:00:00.000000 2026-04-09T00:00:00.000000
certfr-2026-avi-0409 Multiples vulnérabilités dans Sonicwall Secure Mobile Access 2026-04-09T00:00:00.000000 2026-04-09T00:00:00.000000
certfr-2026-avi-0408 Multiples vulnérabilités dans les produits Juniper Networks 2026-04-09T00:00:00.000000 2026-04-09T00:00:00.000000
certfr-2026-avi-0407 Multiples vulnérabilités dans Google Chrome 2026-04-09T00:00:00.000000 2026-04-09T00:00:00.000000
certfr-2026-avi-0406 Multiples vulnérabilités dans les produits Microsoft 2026-04-08T00:00:00.000000 2026-04-08T00:00:00.000000
certfr-2026-avi-0405 Vulnérabilité dans les produits Moxa 2026-04-08T00:00:00.000000 2026-04-08T00:00:00.000000
certfr-2026-avi-0404 Multiples vulnérabilités dans les produits Mozilla 2026-04-08T00:00:00.000000 2026-04-08T00:00:00.000000
certfr-2026-avi-0403 Multiples vulnérabilités dans OpenSSL 2026-04-08T00:00:00.000000 2026-04-08T00:00:00.000000
certfr-2026-avi-0402 Vulnérabilité dans HPE Aruba Networking Private 5G Core 2026-04-08T00:00:00.000000 2026-04-08T00:00:00.000000
certfr-2026-avi-0373 Vulnérabilité dans Roundcube 2026-03-30T00:00:00.000000 2026-04-08T00:00:00.000000
certfr-2026-avi-0401 Multiples vulnérabilités dans GLPI 2026-04-07T00:00:00.000000 2026-04-07T00:00:00.000000
certfr-2026-avi-0400 Vulnérabilité dans Fortinet FortiClientEMS 2026-04-07T00:00:00.000000 2026-04-07T00:00:00.000000
certfr-2026-avi-0399 Multiples vulnérabilités dans Google Android 2026-04-07T00:00:00.000000 2026-04-07T00:00:00.000000
certfr-2026-avi-0398 Multiples vulnérabilités dans le noyau Linux de SUSE 2026-04-03T00:00:00.000000 2026-04-03T00:00:00.000000
certfr-2026-avi-0397 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2026-04-03T00:00:00.000000 2026-04-03T00:00:00.000000
certfr-2026-avi-0396 Multiples vulnérabilités dans le noyau Linux de Red Hat 2026-04-03T00:00:00.000000 2026-04-03T00:00:00.000000
certfr-2026-avi-0395 Multiples vulnérabilités dans les produits IBM 2026-04-03T00:00:00.000000 2026-04-03T00:00:00.000000
certfr-2026-avi-0394 Multiples vulnérabilités dans VMware Tanzu 2026-04-03T00:00:00.000000 2026-04-03T00:00:00.000000
certfr-2026-avi-0393 Vulnérabilité dans Synology Mail Station 2026-04-03T00:00:00.000000 2026-04-03T00:00:00.000000
certfr-2026-avi-0392 Multiples vulnérabilités dans Microsoft Edge 2026-04-03T00:00:00.000000 2026-04-03T00:00:00.000000
certfr-2026-avi-0391 Multiples vulnérabilités dans OpenSSH 2026-04-02T00:00:00.000000 2026-04-02T00:00:00.000000
certfr-2026-avi-0390 Multiples vulnérabilités dans Belden NetModule Router Software 2026-04-02T00:00:00.000000 2026-04-02T00:00:00.000000
certfr-2026-avi-0389 Vulnérabilité dans Microsoft Azure Linux 2026-04-02T00:00:00.000000 2026-04-02T00:00:00.000000
certfr-2026-avi-0388 Multiples vulnérabilités dans les produits Cisco 2026-04-02T00:00:00.000000 2026-04-02T00:00:00.000000
ID Description Published Updated
jvndb-2026-006887 Multiple vulnerabilities in Micro Research MR-GM5L-S1 and MR-GM5A-L1 2026-03-12T17:22+09:00 2026-03-12T17:22+09:00
jvndb-2026-000036 Improper file access permission settings in multiple Digital Arts products 2026-03-09T14:57+09:00 2026-03-09T16:23+09:00
jvndb-2026-000035 Installer for Qsee Client may insecurely load Dynamic Link Libraries 2026-03-09T14:57+09:00 2026-03-09T14:57+09:00
jvndb-2026-006102 Security issues in ESC/POS 2026-03-06T10:31+09:00 2026-03-06T10:31+09:00
jvndb-2026-000034 django-allauth vulnerable to open redirect 2026-03-05T12:36+09:00 2026-03-05T12:36+09:00
jvndb-2026-000033 EC-CUBE vulnerable to multi-factor authentication bypass 2026-03-05T12:36+09:00 2026-03-05T12:36+09:00
jvndb-2026-000032 Multiple vulnerabilities in Dell UPS Multi-UPS Management Console (MUMC) 2026-03-04T12:20+09:00 2026-03-04T12:20+09:00
jvndb-2026-005746 Multiple vulnerabilities in Trend Micro Endpoint security products for enterprises (February 2026) 2026-03-04T10:40+09:00 2026-03-04T10:40+09:00
jvndb-2026-005744 Canon IJ Scan Utility registers Windows services with unquoted file paths 2026-03-04T10:40+09:00 2026-03-04T10:40+09:00
jvndb-2026-000030 IM-LogicDesigner module of intra-mart Accel Platform vulnerable to untrusted data deserialization 2026-02-27T15:41+09:00 2026-03-03T10:06+09:00
jvndb-2026-005259 Out-of-bounds write vulnerability in Fujitsu BIOS Driver (fbiosdrv.sys) 2026-03-02T11:46+09:00 2026-03-02T11:46+09:00
jvndb-2026-000031 Improper file access permission settings in the installers for multiple Soliton Systems products 2026-02-27T15:41+09:00 2026-02-27T15:41+09:00
jvndb-2026-000029 Multiple vulnerabilities in the installer of FinalCode Client 2026-02-26T14:24+09:00 2026-02-26T14:24+09:00
jvndb-2026-004811 Vulnerability in Hitachi Configuration Manager and Hitachi Ops Center API Configuration Manager 2026-02-26T11:02+09:00 2026-02-26T11:02+09:00
jvndb-2026-004810 Vulnerability in Hitachi Configuration Manager and Hitachi Ops Center API Configuration Manager 2026-02-26T11:02+09:00 2026-02-26T11:02+09:00
jvndb-2026-000026 Lanscope Endpoint Manager (On-Premises) vulnerable to path traversal 2026-02-25T15:14+09:00 2026-02-25T15:14+09:00
jvndb-2026-004359 Security information for Hitachi Disk Array Systems 2026-02-20T18:35+09:00 2026-02-20T18:35+09:00
jvndb-2026-000027 WordPress Plugin "Survey Maker" vulnerable to cross-site scripting 2026-02-20T12:32+09:00 2026-02-20T12:32+09:00
jvndb-2026-000028 Installer for Job log aggregation/analysis software RICOH Job Log Aggregation Tool may insecurely load Dynamic Link Libraries 2026-02-20T12:31+09:00 2026-02-20T12:31+09:00
jvndb-2026-003912 Vulnerability in Cosminexus HTTP Server and Hitachi Web Server 2026-02-17T20:46+09:00 2026-02-17T20:46+09:00
jvndb-2026-003911 Vulnerability in Cosminexus HTTP Server 2026-02-17T20:46+09:00 2026-02-17T20:46+09:00
jvndb-2026-003910 Multiple Vulnerabilities in Cosminexus HTTP Server 2026-02-17T20:46+09:00 2026-02-17T20:46+09:00
jvndb-2026-003909 Multiple Vulnerabilities in Hitachi Command Suite products 2026-02-17T20:46+09:00 2026-02-17T20:46+09:00
jvndb-2026-003908 Multiple Vulnerabilities in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center 2026-02-17T20:46+09:00 2026-02-17T20:46+09:00
jvndb-2026-003907 Multiple Vulnerabilities in JP1 2026-02-17T20:46+09:00 2026-02-17T20:46+09:00
jvndb-2026-003906 Multiple Vulnerabilities in Cosminexus 2026-02-17T20:46+09:00 2026-02-17T20:46+09:00
jvndb-2026-003905 Multiple Vulnerabilities in Cosminexus HTTP Server and Hitachi Web Server 2026-02-17T20:46+09:00 2026-02-17T20:46+09:00
jvndb-2026-000025 Joomla! CMS vulnerable to cross-site scripting 2026-02-17T12:46+09:00 2026-02-17T12:46+09:00
jvndb-2026-000023 FileZen vulnerable to OS command injection 2026-02-13T16:51+09:00 2026-02-13T17:08+09:00
jvndb-2026-000024 Installer of M-Audio M-Track Duo HD may insecurely load Dynamic Link Libraries 2026-02-12T13:32+09:00 2026-02-12T13:32+09:00
ID Description Published Updated
cnvd-2026-16049 OpenClaw存在未明漏洞(CNVD-2026-16049) 2026-03-26 2026-04-03
cnvd-2026-16048 OpenClaw存在未明漏洞(CNVD-2026-16048) 2026-03-26 2026-04-03
cnvd-2026-16047 OpenClaw代码执行漏洞(CNVD-2026-16047) 2026-03-26 2026-04-03
cnvd-2026-16046 OpenClaw命令执行漏洞(CNVD-2026-16046) 2026-03-26 2026-04-03
cnvd-2026-16045 OpenClaw安全绕过漏洞(CNVD-2026-16045) 2026-03-26 2026-04-03
cnvd-2026-16044 OpenClaw操作系统命令注入漏洞(CNVD-2026-16044) 2026-03-26 2026-04-03
cnvd-2026-16043 OpenClaw操作系统命令注入漏洞(CNVD-2026-16043) 2026-03-26 2026-04-03
cnvd-2026-16042 OpenClaw路径遍历漏洞(CNVD-2026-16042) 2026-03-26 2026-04-03
cnvd-2026-16041 OpenClaw访问控制错误漏洞(CNVD-2026-16041) 2026-03-26 2026-04-03
cnvd-2026-16040 OpenClaw路径遍历漏洞(CNVD-2026-16040) 2026-03-31 2026-04-03
cnvd-2026-16039 WordPress插件Addon Jobsearch Chat跨站脚本漏洞 2026-03-31 2026-04-03
cnvd-2026-16038 Linux kernel内存错误引用漏洞(CNVD-2026-16038) 2026-03-31 2026-04-03
cnvd-2026-16037 FreeBSD缓冲区溢出漏洞(CNVD-2026-16037) 2026-03-31 2026-04-03
cnvd-2026-16036 Linux kernel双重释放漏洞(CNVD-2026-16036) 2026-04-02 2026-04-03
cnvd-2026-16035 FreeRDP拒绝服务漏洞(CNVD-2026-16035) 2026-04-02 2026-04-03
cnvd-2026-16034 FreeRDP越界读取漏洞(CNVD-2026-16034) 2026-04-02 2026-04-03
cnvd-2026-16033 FreeRDP堆缓冲区溢出漏洞(CNVD-2026-16033) 2026-04-02 2026-04-03
cnvd-2026-16032 FreeRDP双重释放漏洞(CNVD-2026-16032) 2026-04-02 2026-04-03
cnvd-2026-16031 OpenBao授权问题漏洞 2026-04-02 2026-04-03
cnvd-2026-15865 Delta Electronics COMMGR2堆栈缓冲区溢出漏洞 2026-03-16 2026-04-02
cnvd-2026-15864 Delta Electronics COMMGR2拒绝服务漏洞 2026-03-16 2026-04-02
cnvd-2026-15863 Advantech WISE-6610操作系统命令注入漏洞 2026-02-25 2026-04-02
cnvd-2026-15862 ZTE ZXCDN Struts远程代码执行漏洞 2025-10-17 2026-04-02
cnvd-2026-15861 ZTE ElasticNet UME R32 on Linux权限管理不当漏洞 2025-11-28 2026-04-02
cnvd-2026-15860 Canva Affinity越界读取漏洞(CNVD-2026-15860) 2026-03-26 2026-04-02
cnvd-2026-15859 Canva Affinity越界读取漏洞(CNVD-2026-15859) 2026-03-26 2026-04-02
cnvd-2026-15858 Canva Affinity越界读取漏洞(CNVD-2026-15858) 2026-03-26 2026-04-02
cnvd-2026-15857 Canva Affinity类型混淆漏洞 2026-03-26 2026-04-02
cnvd-2026-15856 Canva Affinity越界读取漏洞(CNVD-2026-15856) 2026-03-26 2026-04-02
cnvd-2026-15855 Canva Affinity越界读取漏洞(CNVD-2026-15855) 2026-03-26 2026-04-02
ID Description Published Updated
bdu:2026-01814 Уязвимость программного обеспечения Microsoft ACI Confidential Containers, связанная с хр… 16.02.2026 16.02.2026
bdu:2026-01813 Уязвимость программного обеспечения Azure IoT Explorer, связанная с привязкой к открытым … 16.02.2026 16.02.2026
bdu:2026-01812 Уязвимость почтового сервера Microsoft Exchange Server, связанная с ошибками представлени… 16.02.2026 16.02.2026
bdu:2026-01811 Уязвимость службы аналитики данных Azure HDInsights, связанная с непринятием мер по защит… 16.02.2026 16.02.2026
bdu:2026-01810 Уязвимость редактора электронных таблиц Microsoft Excel пакетов программ Microsoft Office… 16.02.2026 16.02.2026
bdu:2026-01809 Уязвимость службы хранилища данных Windows Storage Services операционных систем Windows, … 16.02.2026 16.02.2026
bdu:2026-01808 Уязвимость реализации протокола NTLM операционных систем Windows, позволяющая нарушителю … 16.02.2026 16.02.2026
bdu:2026-01807 Уязвимость системы аппаратной виртуализации Hyper-V операционной системы Windows, позволя… 16.02.2026 16.02.2026
bdu:2026-01806 Уязвимость механизма CCF (Cluster Client Failover) операционных систем Windows, позволяющ… 16.02.2026 16.02.2026
bdu:2026-01805 Уязвимость драйвера HTTP.sys операционных систем Windows, позволяющая нарушителю повысить… 16.02.2026 16.02.2026
bdu:2026-01804 Уязвимость ядра операционных систем Windows, позволяющая нарушителю повысить свои привилегии 16.02.2026 16.02.2026
bdu:2026-01803 Уязвимость драйвера WinSock операционных систем Windows, позволяющая нарушителю повысить … 16.02.2026 16.02.2026
bdu:2026-01802 Уязвимость ядра операционных систем Windows, позволяющая нарушителю повысить свои привилегии 16.02.2026 16.02.2026
bdu:2026-01801 Уязвимость драйвера HTTP.sys операционных систем Windows, позволяющая нарушителю повысить… 16.02.2026 16.02.2026
bdu:2026-01800 Уязвимость ядра операционных систем Windows, позволяющая нарушителю повысить свои привилегии 16.02.2026 16.02.2026
bdu:2026-01799 Уязвимость ядра операционных систем Windows, позволяющая нарушителю раскрыть защищаемую и… 16.02.2026 16.02.2026
bdu:2026-01798 Уязвимость программы для шифрования информации и создания электронных цифровых подписей G… 16.02.2026 16.02.2026
bdu:2026-01797 Уязвимость функции _bfd_elf_slurp_version_tables() компонента bfd/elf.c программного сред… 16.02.2026 16.02.2026
bdu:2026-01796 Уязвимость компонента libbfd.c программного средства разработки GNU Binutils, позволяющая… 16.02.2026 16.02.2026
bdu:2026-01795 Уязвимость программного средства управления конечными точками Ivanti Endpoint Manager, св… 16.02.2026 16.02.2026
bdu:2026-01794 Уязвимость функции usbg_make_tpg() модуля drivers/usb/gadget/function/f_tcm.c драйвера га… 16.02.2026 16.02.2026
bdu:2026-01792 Уязвимость программного средства локальной инфраструктуры Azure Local, связанная с ошибка… 13.02.2026 16.02.2026
bdu:2026-01727 Уязвимость функции оценки избирательности расширения Intarray системы управления базами д… 11.02.2026 16.02.2026
bdu:2026-01726 Уязвимость функции обработки типов данных oidvector системы управления базами данных Post… 11.02.2026 16.02.2026
bdu:2026-01724 Уязвимость компонента pg_trgm системы управления базами данных PostgreSQL, позволяющая на… 11.02.2026 16.02.2026
bdu:2026-01723 Уязвимость системы управления базами данных PostgreSQL, связанная с неверным индексирован… 11.02.2026 16.02.2026
bdu:2026-01722 Уязвимость компонента pgcrypto системы управления базами данных PostgreSQL, позволяющая н… 11.02.2026 16.02.2026
bdu:2026-01017 Уязвимость ядра операционной системы Linux, позволяющая нарушителю выполнить произвольный код 30.01.2026 16.02.2026
bdu:2025-15831 Уязвимость программного обеспечения для настройки безопасности astra-safepolicy, связанна… 15.12.2025 16.02.2026
bdu:2025-15830 Уязвимость компонента net ядра операционной системы Linux, позволяющая нарушителю вызвать… 15.12.2025 16.02.2026
ID Description Updated
var-202604-0974 A security vulnerability has been detected in Tenda G103 1.0.0.5. The affected element is… 2026-04-10T23:50:37.355000Z
var-200702-0378 Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 … 2026-04-10T23:50:14.187000Z
var-201805-1147 WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length heap buffe… 2026-04-10T23:48:01.556000Z
var-201109-0081 Buffer overflow in the gopherToHTML function in gopher.cc in the Gopher reply parser in S… 2026-04-10T23:46:00.609000Z
var-201112-0097 Stack-based buffer overflow in the CmpWebServer component in 3S CoDeSys 3.4 SP4 Patch 2 a… 2026-04-10T23:46:00.136000Z
var-201601-0038 Multiple stack-based buffer overflows in Advantech WebAccess before 8.1 allow remote atta… 2026-04-10T23:45:45.755000Z
var-201801-0151 A Stack-based Buffer Overflow issue was discovered in Advantech WebAccess versions prior … 2026-04-10T23:45:40.671000Z
var-201801-0152 An Untrusted Pointer Dereference issue was discovered in Advantech WebAccess versions pri… 2026-04-10T23:45:36.615000Z
var-201805-1143 In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and pr… 2026-04-10T23:45:35.471000Z
var-201805-1144 In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and pr… 2026-04-10T23:45:35.332000Z
var-200107-0035 slapd in OpenLDAP 1.x before 1.2.12, and 2.x before 2.0.8, allows remote attackers to cau… 2026-04-10T23:43:14.623000Z
var-200512-0294 Buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitr… 2026-04-10T23:42:35.752000Z
var-200512-0611 Multiple heap-based buffer overflows in QuickTime.qts in Apple QuickTime Player 7.0.3 and… 2026-04-10T23:42:35.677000Z
var-200512-0643 Heap-based buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to exe… 2026-04-10T23:42:35.610000Z
var-200512-0300 Heap-based buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to exe… 2026-04-10T23:42:35.534000Z
var-200512-0297 Integer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbit… 2026-04-10T23:42:35.468000Z
var-201407-0233 Multiple stack-based buffer overflows in Advantech WebAccess before 7.2 allow remote atta… 2026-04-10T23:39:25.669000Z
var-201801-0394 TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbi… 2026-04-10T23:38:47.573000Z
var-201902-0647 LCDS Laquis SCADA prior to version 4.1.0.4150 allows execution of script code by opening … 2026-04-10T23:38:41.598000Z
var-201906-1029 In WebAccess/SCADA Versions 8.3.5 and prior, multiple untrusted pointer dereference vulne… 2026-04-10T23:38:39.157000Z
var-202004-0077 There are multiple ways an unauthenticated attacker could perform SQL injection on WebAcc… 2026-04-10T23:38:34.550000Z
var-201304-0385 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2026-04-10T23:38:07.421000Z
var-201801-1712 Systems with microprocessors utilizing speculative execution and branch prediction may al… 2026-04-10T23:37:25.913000Z
var-202203-0145 A buffer overflow issue was addressed with improved memory handling. This issue is fixed … 2026-04-10T23:37:20.905000Z
var-201205-0246 sapi/cgi/cgi_main.c in PHP before 5.3.13 and 5.4.x before 5.4.3, when configured as a CGI… 2026-04-10T23:37:20.576000Z
var-200703-0010 Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows remote user-assisted at… 2026-04-10T23:37:20.491000Z
var-202006-1807 Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)]… 2026-04-10T23:37:19.624000Z
var-200807-0062 JavaScriptCore in WebKit on Apple iPhone before 2.0 and iPod touch before 2.0 does not pr… 2026-04-10T23:37:13.791000Z
var-200807-0283 Integer signedness error in Safari on Apple iPhone before 2.0 and iPod touch before 2.0 a… 2026-04-10T23:36:43.164000Z
var-201006-0051 Cross-site request forgery (CSRF) vulnerability in the web interface in CUPS before 1.4.4… 2026-04-10T23:36:13.997000Z
ID Description Published Updated
ID Description Published Updated
vde-2022-046 PHOENIX CONTACT: Multiple Linux component vulnerabilities in PLCnext Firmware 2022-11-10T07:00:00.000Z 2025-05-22T13:03:10.000Z
vde-2022-026 PHOENIX CONTACT: Vulnerability in ProConOS/ProConOS eCLR SDK and MULTIPROG Engineering tool 2022-06-21T05:16:00.000Z 2025-05-22T13:03:10.000Z
vde-2022-025 PHOENIX CONTACT: Vulnerability in classic line industrial controllers 2022-06-21T05:15:00.000Z 2025-05-22T13:03:10.000Z
vde-2022-014 PHOENIX CONTACT: mGuard Device Manager affected by HTTP Request Smuggling of Apache Webserver 2022-04-12T06:00:00.000Z 2025-05-22T13:03:10.000Z
vde-2022-010 PHOENIX CONTACT: Multiple Linux component vulnerabilities fixed in latest AXC F x152 LTS release 2022-04-12T06:00:00.000Z 2025-05-22T13:03:10.000Z
vde-2022-007 PHOENIX CONTACT: Path Traversal in Library of PLCnext Technology Toolchain and FL Network Manager 2022-03-22T07:43:00.000Z 2025-05-22T13:03:10.000Z
vde-2022-005 PHOENIX CONTACT: Vulnerabilities in XML parser library Expat (libexpat) 2022-03-30T07:30:00.000Z 2025-05-22T13:03:10.000Z
vde-2021-059 PHOENIX CONTACT: BLUEMARK X1 / LED / CLED printers utilizing the Siemens Nucleus RTOS TCP/IP Stack 2022-01-11T07:00:00.000Z 2025-05-22T13:03:10.000Z
vde-2021-056 WAGO: Multiple Vulnerabilities in CODESYS Runtime 2.3 and WebVisualisation 2021-11-16T14:11:00.000Z 2025-05-22T13:03:10.000Z
vde-2021-052 PHOENIX CONTACT: PC Worx/-Express prone to improper input validation vulnerability 2021-11-03T09:45:00.000Z 2025-05-22T13:03:10.000Z
vde-2021-035 PHOENIX CONTACT: FL MGUARD DM version 1.12.0 and 1.13.0 Improper Privilege Management 2021-08-11T07:59:00.000Z 2025-05-22T13:03:10.000Z
vde-2021-032 PHOENIX CONTACT: Niche Ethernet Stack for ILC1x0, ILC1x1 and AXC 1050 Industrial controllers and CHARX control DC 2021-08-04T07:57:00.000Z 2025-05-22T13:03:10.000Z
vde-2020-026 PHOENIX CONTACT: Denial-of-Service vulnerabilty in Emalytics, ILC 2050 BI and ILC 2050 BI-L 2020-08-20T07:11:00.000Z 2025-05-22T13:03:10.000Z
vde-2020-012 PHOENIX CONTACT: Local Privilege Escalation in PC WORX SRT 2020-03-27T09:47:00.000Z 2025-05-22T13:03:10.000Z
vde-2020-001 PHOENIX CONTACT: Emalytics Controller ILC 2050 BI(L) allows unauthorised read and write access to the configuration file 2020-02-17T08:10:00.000Z 2025-05-22T13:03:10.000Z
vde-2019-020 PHOENIX CONTACT: improper access control exists on FL NAT devices when using MAC-based port security 2019-10-29T10:56:00.000Z 2025-05-22T13:03:10.000Z
vde-2019-009 PHOENIX CONTACT: Multiple Vulnerabilities in AXC F 2152 2019-06-04T10:22:00.000Z 2025-05-22T13:03:10.000Z
vde-2018-007 Phoenix Contact: FL SWITCH 3xxx/4xxx/48xx series - Stack-based Buffer Overflow in shared object file 2018-05-16T10:00:00.000Z 2025-05-22T13:03:10.000Z
vde-2017-002 PHOENIX CONTACT: mGuard device manager (mdm) multiple vulnerabilities in Java SE 2017-09-07T07:00:00.000Z 2025-05-22T13:03:10.000Z
vde-2017-001 PHOENIX CONTACT: mGuard IKE daemon remote denial of service 2017-03-07T11:05:00.000Z 2025-05-22T13:03:10.000Z
vde-2023-003 PHOENIX CONTACT: Multiple vulnerabilities in ENERGY AXC PU 2023-03-14T09:14:00.000Z 2025-05-14T13:00:15.000Z
vde-2022-058 PHOENIX CONTACT: Profinet SDK libexpat vulnerabilities 2022-12-13T07:00:00.000Z 2025-05-14T13:00:15.000Z
vde-2022-053 PHOENIX CONTACT: Advisory for TC ROUTER and CLOUD CLIENT 2023-03-07T07:00:00.000Z 2025-05-14T13:00:15.000Z
vde-2022-048 PHOENIX CONTACT: Automationworx BCP File Parsing Vulnerabilities 2022-11-15T09:25:00.000Z 2025-05-14T13:00:15.000Z
vde-2022-028 PHOENIX CONTACT: Missing Authentication in ProConOS/ProConOS eCLR SDK and MULTIPROG Engineering tool 2022-06-21T05:18:00.000Z 2025-05-14T13:00:15.000Z
vde-2022-013 PHOENIX CONTACT: Multiple products affected by possible infinite loop within OpenSSL library 2022-04-12T06:00:00.000Z 2025-05-14T13:00:15.000Z
vde-2019-001 PHOENIX CONTACT: Multiple Vulnerabilities in FL SWITCH 3xxx, 4xxx and 48xx 2019-01-23T12:02:00.000Z 2025-05-14T13:00:15.000Z
vde-2018-006 Phoenix Contact: FL SWITCH 3xxx/4xxx/48xx series through 1.33 has a Stack-based Buffer Overflow 2018-05-16T10:00:00.000Z 2025-05-14T13:00:15.000Z
vde-2025-005 Phoenix Contact: Security Advisory for ESL Stick USB-A 2025-01-14T11:00:00.000Z 2025-05-14T13:00:14.000Z
vde-2024-070 Phoenix Contact: Security Advisory for CHARX-SEC3xxx Charge controllers 2025-01-14T11:00:00.000Z 2025-05-14T13:00:14.000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
vde-2018-009 Pepperl+Fuchs: Security advisory for MELTDOWN and SPECTRE attacks in ecom mobile Devices 2018-07-06T14:47:00.000Z 2018-10-23T10:00:00.000Z
vde-2017-005 Pepperl+Fuchs / ecom instruments: WLAN enabled products utilizing WPA2 encryption 2017-12-11T13:26:00.000Z 2018-10-23T10:00:00.000Z
vde-2018-008 Pepperl+Fuchs: Remote Code Execution Vulnerability in HMI Devices 2018-07-06T13:37:00.000Z 2018-07-06T13:37:00.000Z
ID Description Published Updated
ID Description Published Updated
vde-2020-036 WAGO: Multiple Vulnerabilities in I/O-Check Service 2021-06-29T10:00:00.000Z 2025-05-14T13:00:15.000Z
vde-2020-044 WAGO: Web-Based Management Authentication Vulnerability in WAGO 750-36X and WAGO 750-8XX 2021-08-31T07:01:00.000Z 2025-05-14T13:00:14.000Z
vde-2020-042 WAGO: PLC families 750-88x and 750-352 prone to DoS attack, versions < FW10 (Update A) 2020-10-27T10:28:00.000Z 2025-05-14T13:00:14.000Z
vde-2020-029 WAGO: XSS vulnerability in Web-UI in WAGO 750-88X and WAGO 750-89X 2020-09-30T11:11:00.000Z 2025-05-14T13:00:14.000Z
vde-2020-028 WAGO: Authentication Bypass Vulnerability in WAGO 750-36X and WAGO 750-8XX Version <= FW03 2020-09-30T11:08:00.000Z 2025-05-14T13:00:14.000Z
vde-2020-004 WAGO: e!Cockpit cleartext communication and hardcoded key 2020-03-09T09:00:00.000Z 2025-05-14T13:00:14.000Z
vde-2021-038 WAGO: OpenSSL DoS Vulnerability in PLCs 2021-08-31T07:00:00.000Z 2025-05-14T12:53:43.000Z
vde-2020-045 WAGO: Command Injection Vulnerability in I/O-Check Service of multiple products 2020-12-17T09:02:00.000Z 2025-05-14T12:53:43.000Z
vde-2020-008 WAGO: Cloud Connectivity Multiple Vulnerabilities 2020-03-09T09:15:00.000Z 2025-05-14T12:53:43.000Z
vde-2025-009 WAGO: Vulnerabilities in CODESYS Control V3 - OPC UA Stack 2025-02-04T11:00:00.000Z 2025-05-14T12:28:19.000Z
vde-2021-043 WAGO: Vulnerable WIBU-SYSTEMS Codemeter installed through e!COCKPIT and WAGO-I/O-Pro 2021-08-31T07:02:00.000Z 2025-05-14T12:28:19.000Z
vde-2021-013 WAGO: Multiple Vulnerabilities in the Web-Based Management Interface 2021-05-05T08:54:00.000Z 2025-05-14T12:28:19.000Z
vde-2020-032 WAGO: Vulnerable WIBU-SYSTEMS Codemeter installed through e!COCKPIT 2020-09-09T06:23:00.000Z 2025-05-14T12:28:19.000Z
vde-2020-027 WAGO: Vulnerability in web-based authentication in WAGO 750-8XX Version <= FW07 2020-09-30T11:06:00.000Z 2025-05-14T12:28:19.000Z
vde-2020-020 WAGO: PPPD in PFC100 and PFC200 Series is vulnerable to CVE-2020-8597 2020-06-10T10:00:00.000Z 2025-05-14T12:28:19.000Z
vde-2020-006 WAGO: Web-Based Management Authentication Vulnerabilities 2020-03-09T11:00:00.000Z 2025-05-14T12:28:19.000Z
vde-2019-017 WAGO: Series PFC100/PFC200 Information Disclosure 2019-09-18T11:25:00.000Z 2025-05-14T12:28:19.000Z
vde-2023-046 WAGO: Multiple products vulnerable to local file inclusion 2023-10-23T10:00:00.000Z 2025-04-28T10:00:00.000Z
vde-2025-007 WAGO: Year 2038 problem 2025-04-15T10:00:00.000Z 2025-04-15T10:00:00.000Z
vde-2025-004 Wago: Vulnerability in libwagosnmp 2025-03-05T11:00:00.000Z 2025-04-10T13:00:00.000Z
vde-2024-072 WAGO: Vulnerabilities in CODESYS Control 2024-12-03T11:00:00.000Z 2024-12-03T11:00:00.000Z
vde-2023-042 Wago: Vulnerable WIBU-SYSTEMS Codemeter installed through e!COCKPIT and WAGO-I/O-Pro (UPDATE B) 2023-09-25T10:00:00.000Z 2024-11-20T11:00:00.000Z
vde-2023-006 WAGO: Controller with CODESYS 2.3 Runtime Denial-of-Service 2023-06-25T06:00:00.000Z 2024-07-08T10:00:00.000Z
vde-2024-021 WAGO: Vulnerability in WAGO Navigator 2024-05-21T06:00:00.000Z 2024-05-21T06:00:00.000Z
vde-2023-068 WAGO: Multiple Vulnerabilities in e!Cockpit and e!Runtime / CODESYS Runtime 2024-05-21T06:00:00.000Z 2024-05-21T06:00:00.000Z
vde-2023-039 Wago: Multiple vulnerabilities in web-based management of multiple products 2024-03-13T08:30:00.000Z 2024-03-13T08:30:00.000Z
vde-2024-007 WAGO: WIBU-SYSTEMS CodeMeter Runtime vulnerabilities in multiple products 2024-01-22T07:00:00.000Z 2024-01-22T07:00:00.000Z
vde-2023-045 Wago: Vulnerability in Smart Designer Web-Application 2023-12-05T07:00:00.000Z 2023-12-05T07:00:00.000Z
vde-2023-044 Wago: Vulnerabilities in IEC61850 Server / Telecontrol 2023-12-05T07:00:00.000Z 2023-12-05T07:00:00.000Z
vde-2023-037 WAGO: Remote Code execution vulnerability in managed Switches 2023-11-21T07:00:00.000Z 2023-11-21T07:00:00.000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
GCVE-1-2025-0038
5 (4.0)
Reflected XSS in MISP Template Tag Removal and MISP Ad… misp
 misp
 2025-12-10T14:10:00.000Z 2025-12-10T14:16:55.918270Z
GCVE-1-2025-0037
7 (4.0)
Reflected XSS in MISP Dashboard Widgets via Unescaped … misp
 misp
 2025-12-10T14:01:03.200804Z 2025-12-10T14:01:03.200804Z
GCVE-1-2025-0036
8.3 (4.0)
A reflected cross-site scripting (XSS) vulnerability w… misp
 misp
 2025-12-10T13:46:07.170083Z 2025-12-10T13:46:07.170083Z
GCVE-1-2025-0035
8.3 (4.0)
Insufficient sanitization of bundle metadata (availabl… CIRCL
 vulnerability-lookup
 2025-12-08T10:25:00.000Z 2025-12-08T12:14:06.307298Z
GCVE-1-2025-0034
7 (4.0)
Missing CSRF protection on state-changing endpoints in… CIRCL
 vulnerability-lookup
 2025-12-08T10:19:00.000Z 2025-12-08T12:13:24.197294Z
GCVE-1-2025-0033
8.1 (4.0)
Vulnerability-lookup did not track or limit failed One… CIRCL
 vulnerability-lookup
 2025-12-08T10:11:00.000Z 2025-12-08T12:12:53.235996Z
GCVE-1-2025-0030
6.2 (4.0)
A cross-site scripting (XSS) vulnerability in the MISP… misp
 misp
 2025-12-03T10:53:00.000Z 2025-12-03T10:58:55.845341Z
GCVE-1-2025-0028
8.5 (4.0)
Information leakage vulnerability in the MISP Feed con… misp
 misp
 2025-11-27T07:23:00.000Z 2025-12-02T08:51:35.429494Z
GCVE-1-2025-0027
9.4 (4.0)
Reflected cross-site scripting (XSS) vulnerability in … misp
 misp
 2025-11-27T07:17:00.000Z 2025-12-02T08:51:04.323899Z
GCVE-1-2025-0026
9.4 (4.0)
Reflected cross-site scripting (XSS) vulnerability in … misp
 misp
 2025-11-26T16:35:00.000Z 2025-12-02T08:50:46.381572Z
GCVE-1-2025-0025
9.4 (4.0)
Reflected cross-site scripting (XSS) vulnerability in … misp
 misp
 2025-11-26T16:27:00.000Z 2025-12-02T08:50:18.897756Z
GCVE-1-2025-0024
9.4 (4.0)
cross-site scripting (XSS) vulnerability in the MISP s… misp
 misp
 2025-11-26T16:14:00.000Z 2025-12-02T08:50:01.482327Z
GCVE-1-2025-0023
9.4 (4.0)
XSS in MISP server comparison tool misp
 misp
 2025-11-26T16:10:00.000Z 2025-12-02T08:49:24.626168Z
GCVE-1-2025-0022
9.4 (4.0)
Clarified setting's impact on download_attachments_on_load misp
 misp
 2025-11-26T16:04:00.000Z 2025-12-02T08:49:04.510294Z
GCVE-1-2025-0021
9.4 (4.0)
XSS in MISP ReST client in HTML view misp
 misp
 2025-11-26T15:55:00.000Z 2025-12-02T08:48:41.869838Z
GCVE-1-2025-0020
9.4 (4.0)
cross-site scripting (XSS) in Galaxy element JSON view misp
 misp
 2025-11-26T15:49:00.000Z 2025-12-02T08:47:41.151429Z
GCVE-1-2025-0019
4 (4.0)
Path traversal vulnerability in EventReport for site-admin misp
 misp
 2025-11-26T14:47:00.000Z 2025-11-28T07:27:42.721350Z
GCVE-1-2025-0017
9.4 (4.0)
Privilege escalation in Cerebrate allows an authentica… cerebrate
 cerebrate
 2025-11-12T08:15:00.000Z 2025-11-28T07:22:08.205835Z
GCVE-1-2025-0029
6.3 (4.0)
Reflected cross-site scripting (XSS) vulnerabilities i… misp
 misp
 2025-11-27T12:41:00.000Z 2025-11-27T12:48:51.085860Z
GCVE-1-2025-0018
9.4 (4.0)
HTML injection issue was identified in Lookyloo’s web … lookyloo
 lookyloo
 2025-11-18T15:33:00.000Z 2025-11-18T20:39:45.579295Z
GCVE-1-2025-0016
6 (4.0)
Local file inclusion in [ImportFromUrl() URL hand… misp
 misp
 2025-11-04T09:20:00.000Z 2025-11-04T09:56:38.383646Z
ID CVSS Description Vendor Product Published Updated