Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-53424 |
6.5 (3.1)
|
WordPress WooCommerce Orders & Customers Exporter plug… |
vanquish |
WooCommerce Orders & Customers Exporter |
2025-10-22T14:32:33.353Z | 2026-01-20T14:28:09.399Z |
| CVE-2025-53420 |
7.1 (3.1)
|
WordPress WPLMS plugin <= 1.9.9.8 - Cross Site Scripti… |
VibeThemes |
WPLMS |
2025-10-22T14:32:32.282Z | 2026-01-20T14:28:09.384Z |
| CVE-2025-53422 |
7.1 (3.1)
|
WordPress WhatsApp Chat for WordPress and WooCommerce … |
ThemeWarriors |
WhatsApp Chat for WordPress and WooCommerce |
2025-10-22T14:32:32.974Z | 2026-01-20T14:28:09.372Z |
| CVE-2025-53421 |
6.3 (3.1)
|
WordPress Accordion plugin <= 2.3.14 - Broken Access C… |
PickPlugins |
Accordion |
2025-10-22T14:32:32.545Z | 2026-01-20T14:28:09.372Z |
| CVE-2025-53425 |
7.6 (3.1)
|
WordPress Dokan plugin <= 4.1.2 - Privilege Escalation… |
Dokan, Inc. |
Dokan |
2025-10-22T14:32:33.573Z | 2026-01-20T14:28:09.366Z |
| CVE-2025-53344 |
4.3 (3.1)
|
WordPress Thim Core Plugin <= 2.3.3 - Cross Site Reque… |
ThimPress |
Thim Core |
2026-01-05T16:42:57.646Z | 2026-01-20T14:28:09.362Z |
| CVE-2025-53349 |
6.1 (3.1)
|
WordPress Kalium Theme <= 3.18.3 - Cross Site Scriptin… |
Laborator |
Kalium |
2025-11-06T15:54:06.581Z | 2026-01-20T14:28:09.341Z |
| CVE-2025-53351 |
7.1 (3.1)
|
WordPress Fidelo Snippet plugin <= 1.12 - Cross Site S… |
Fidelo Software GmbH |
Fidelo Snippet |
2025-10-22T14:32:31.652Z | 2026-01-20T14:28:09.337Z |
| CVE-2025-53352 |
7.1 (3.1)
|
WordPress Grid Plus plugin <= 3.3 - Cross Site Scripti… |
G5Theme |
Grid Plus |
2025-10-22T14:32:31.986Z | 2026-01-20T14:28:09.308Z |
| CVE-2025-53283 |
10 (3.1)
|
WordPress Drop Uploader for CF7 - Drag&Drop File Uploa… |
borisolhor |
Drop Uploader for CF7 - Drag&Drop File Uploader Addon |
2025-11-06T15:54:03.506Z | 2026-01-20T14:28:09.297Z |
| CVE-2025-53350 |
7.1 (3.1)
|
WordPress Calendar Plus plugin <= 1.2.4 - Cross Site S… |
webjunk |
Calendar Plus |
2025-10-22T14:32:31.360Z | 2026-01-20T14:28:09.295Z |
| CVE-2025-53316 |
8.8 (3.1)
|
WordPress WP GDPR Cookie Consent plugin <= 1.0.0 - Cro… |
Shahjahan Jewel |
WP GDPR Cookie Consent |
2025-11-06T15:54:04.995Z | 2026-01-20T14:28:09.287Z |
| CVE-2025-53324 |
5.4 (3.1)
|
WordPress Gutenify Plugin <= 1.5.7 - Cross Site Script… |
CodeYatri |
Gutenify |
2025-11-06T15:54:05.737Z | 2026-01-20T14:28:09.259Z |
| CVE-2025-53242 |
9.8 (3.1)
|
WordPress Seil Theme <= 1.7.1 - Deserialization of unt… |
VictorThemes |
Seil |
2025-11-06T15:53:58.962Z | 2026-01-20T14:28:09.204Z |
| CVE-2025-53235 |
7.1 (3.1)
|
WordPress Easy Social plugin <= 1.3 - Cross Site Scrip… |
osuthorpe |
Easy Social |
2025-12-31T20:11:25.669Z | 2026-01-20T14:28:09.199Z |
| CVE-2025-53297 |
7.1 (3.1)
|
WordPress Woocommerce Envato Affiliates plugin <= 1.2.… |
AA-Team |
Woocommerce Envato Affiliates |
2025-10-22T14:32:31.023Z | 2026-01-20T14:28:09.198Z |
| CVE-2025-53245 |
5.4 (3.1)
|
WordPress WP Logo Changer Plugin <= 1.2 - Cross Site S… |
Afzal Multani |
WP Logo Changer |
2025-11-06T15:53:59.391Z | 2026-01-20T14:28:09.187Z |
| CVE-2025-53238 |
7.1 (3.1)
|
WordPress Toast Mobile Menu plugin <= 1.0.7 - Cross Si… |
Toast Plugins |
Toast Mobile Menu |
2025-10-22T14:32:30.376Z | 2026-01-20T14:28:09.178Z |
| CVE-2025-53246 |
8.8 (3.1)
|
WordPress Backup and Move Plugin <= 0.1 - Broken Acces… |
Gaurav Aggarwal |
Backup and Move |
2025-11-06T15:53:59.915Z | 2026-01-20T14:28:09.176Z |
| CVE-2025-53286 |
6.1 (3.1)
|
WordPress Dropify Plugin <= 4.6.9 - Cross Site Scripti… |
Jhainey Milevis |
Dropify |
2025-11-06T15:54:04.283Z | 2026-01-20T14:28:09.165Z |
| CVE-2025-53214 |
9.1 (3.1)
|
WordPress Sertifier Certificate & Badge Maker plugin <… |
sertifier |
Sertifier Certificate & Badge Maker |
2025-11-06T15:53:58.037Z | 2026-01-20T14:28:09.163Z |
| CVE-2025-53252 |
9.8 (3.1)
|
WordPress Zegen Theme <= 1.1.9 - Local File Inclusion … |
zozothemes |
Zegen |
2025-11-06T15:54:02.680Z | 2026-01-20T14:28:09.155Z |
| CVE-2025-52753 |
7.1 (3.1)
|
WordPress Contact Form by Supsystic plugin <= 1.7.35 -… |
supsystic |
Contact Form by Supsystic |
2025-10-22T14:32:25.219Z | 2026-01-20T14:28:09.147Z |
| CVE-2025-53236 |
6.3 (3.1)
|
WordPress UDesign Core plugin <= 4.14.0 - Broken Acces… |
AndonDesign |
UDesign Core |
2025-10-22T14:32:29.996Z | 2026-01-20T14:28:09.128Z |
| CVE-2025-52764 |
6.1 (3.1)
|
WordPress flexoslider plugin <= 1.0004 - Cross Site Sc… |
marielav |
flexoslider |
2025-11-06T15:53:56.937Z | 2026-01-20T14:28:09.106Z |
| CVE-2025-53239 |
6.1 (3.1)
|
WordPress User Registration Aide Plugin <= 1.5.3.8 - C… |
bnovotny |
User Registration Aide |
2025-11-06T15:53:58.555Z | 2026-01-20T14:28:09.103Z |
| CVE-2025-53234 |
7.1 (3.1)
|
WordPress UDesign Core plugin <= 4.14.0 - Cross Site S… |
AndonDesign |
UDesign Core |
2025-10-22T14:32:29.678Z | 2026-01-20T14:28:09.019Z |
| CVE-2025-53232 |
5.8 (3.1)
|
WordPress WP Gmail SMTP plugin <= 1.0.7 - Sensitive Da… |
inkthemes |
WP Gmail SMTP |
2025-10-22T14:32:29.356Z | 2026-01-20T14:28:09.018Z |
| CVE-2025-53218 |
5.8 (3.1)
|
WordPress AppExperts plugin <= 1.4.5 - Sensitive Data … |
Saad Iqbal |
AppExperts |
2025-10-22T14:32:28.882Z | 2026-01-20T14:28:09.009Z |
| CVE-2025-52835 |
9.6 (3.1)
|
WordPress WING WordPress Migrator plugin <= 1.1.9 - Cr… |
ConoHa by GMO |
WING WordPress Migrator |
2025-12-30T16:48:13.719Z | 2026-01-20T14:28:08.992Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-62006 |
5.4 (3.1)
|
WordPress WP SMS plugin <= 7.0.1 - Broken Access Contr… |
VeronaLabs |
WP SMS |
2025-10-22T14:32:47.684Z | 2026-01-20T14:28:13.040Z |
| CVE-2025-62005 |
7.1 (3.1)
|
WordPress SUMO Memberships for WooCommerce plugin < 7.… |
FantasticPlugins |
SUMO Memberships for WooCommerce |
2025-10-22T14:32:47.453Z | 2026-01-20T14:28:13.038Z |
| CVE-2025-60248 |
7.5 (3.1)
|
WordPress WPC Product Options for WooCommerce plugin <… |
WPClever |
WPC Product Options for WooCommerce |
2025-11-06T15:55:21.142Z | 2026-01-20T14:28:13.000Z |
| CVE-2025-60247 |
6.5 (3.1)
|
WordPress Bux Woocommerce plugin <= 1.2.3 - Broken Acc… |
Bux |
Bux Woocommerce |
2025-11-06T15:55:20.539Z | 2026-01-20T14:28:12.911Z |
| CVE-2025-60246 |
7.1 (3.1)
|
WordPress Simple Finance Calculator plugin <= 1.0 - Re… |
weissmike |
Simple Finance Calculator |
2025-10-22T14:32:47.237Z | 2026-01-20T14:28:12.981Z |
| CVE-2025-60245 |
9.8 (3.1)
|
WordPress WP User Manager plugin <= 2.9.12 - PHP Objec… |
WP User Manager |
WP User Manager |
2025-11-06T15:55:19.859Z | 2026-01-20T14:28:13.047Z |
| CVE-2025-60244 |
7.1 (3.1)
|
WordPress TableOn plugin <= 1.0.4.2 - Content Injectio… |
RealMag777 |
TableOn |
2025-11-06T15:55:18.193Z | 2026-01-20T14:28:12.860Z |
| CVE-2025-60243 |
9.8 (3.1)
|
WordPress Selling Commander for WooCommerce plugin <= … |
Holest Engineering |
Selling Commander for WooCommerce |
2025-11-06T15:55:15.782Z | 2026-01-20T14:28:12.895Z |
| CVE-2025-60242 |
7.5 (3.1)
|
WordPress Download Counter plugin <= 1.4 - Arbitrary F… |
Anatoly |
Download Counter |
2025-11-06T15:55:14.917Z | 2026-01-20T14:28:12.776Z |
| CVE-2025-60241 |
7.5 (3.1)
|
WordPress Premmerce plugin <= 1.3.19 - Local File Incl… |
Premmerce |
Premmerce |
2025-11-06T15:55:13.362Z | 2026-01-20T14:28:12.936Z |
| CVE-2025-60240 |
7.5 (3.1)
|
WordPress AnyComment plugin <= 0.3.6 - Local File Incl… |
Alexander |
AnyComment |
2025-11-06T15:55:10.324Z | 2026-01-20T14:28:12.866Z |
| CVE-2025-60239 |
8.5 (3.1)
|
WordPress CoSchool LMS plugin <= 1.4.3 - SQL Injection… |
Codexpert, Inc |
CoSchool LMS |
2025-11-06T15:55:09.493Z | 2026-01-20T14:28:12.963Z |
| CVE-2025-60238 |
9.8 (3.1)
|
WordPress UNIVERSAM plugin <= 8.72.34 - PHP Object Inj… |
universam |
UNIVERSAM |
2025-10-22T14:32:47.058Z | 2026-01-20T14:28:12.553Z |
| CVE-2025-60235 |
10 (3.1)
|
WordPress Helpdesk Support Ticket System for WooCommer… |
Plugify |
Helpdesk Support Ticket System for WooCommerce |
2025-11-06T15:55:07.928Z | 2026-01-20T14:28:12.539Z |
| CVE-2025-60234 |
8.8 (3.1)
|
WordPress Single Property theme <= 2.8 - PHP Object In… |
designthemes |
Single Property |
2025-10-22T14:32:46.860Z | 2026-01-20T14:28:12.552Z |
| CVE-2025-60232 |
9.8 (3.1)
|
WordPress KBx Pro Ultimate plugin <= 8.0.5 - PHP Objec… |
quantumcloud |
KBx Pro Ultimate |
2025-10-22T14:32:46.670Z | 2026-01-20T14:28:12.559Z |
| CVE-2025-60228 |
8.8 (3.1)
|
WordPress Knowledge Base theme <= 2.9 - PHP Object Inj… |
designthemes |
Knowledge Base |
2025-10-22T14:32:46.487Z | 2026-01-20T14:28:12.451Z |
| CVE-2025-60227 |
8.6 (3.1)
|
WordPress WP Pipes plugin <= 1.4.3 - Arbitrary File De… |
ThimPress |
WP Pipes |
2025-10-22T14:32:46.277Z | 2026-01-20T14:28:12.468Z |
| CVE-2025-60226 |
9.8 (3.1)
|
WordPress White Rabbit theme <= 1.5.2 - PHP Object Inj… |
axiomthemes |
White Rabbit |
2025-10-22T14:32:46.090Z | 2026-01-20T14:28:12.467Z |
| CVE-2025-60225 |
9.8 (3.1)
|
WordPress BugsPatrol theme <= 1.5.0 - PHP Object Injec… |
AncoraThemes |
BugsPatrol |
2025-10-22T14:32:45.876Z | 2026-01-20T14:28:12.508Z |
| CVE-2025-60224 |
9.8 (3.1)
|
WordPress Subscribe to Download plugin <= 2.0.9 - PHP … |
wpshuffle |
Subscribe to Download |
2025-10-22T14:32:45.675Z | 2026-01-20T14:28:12.485Z |
| CVE-2025-60222 |
8.8 (3.1)
|
WordPress SUMO Memberships for WooCommerce plugin <= 7… |
FantasticPlugins |
SUMO Memberships for WooCommerce |
2025-10-22T14:32:45.465Z | 2026-01-20T14:28:12.484Z |
| CVE-2025-60221 |
9.8 (3.1)
|
WordPress Captivate Sync Plugin <= 3.0.3 - PHP Object … |
captivateaudio |
Captivate Sync |
2025-10-22T14:32:45.187Z | 2026-01-20T14:28:12.492Z |
| CVE-2025-60220 |
9.8 (3.1)
|
WordPress CouponXxL theme <= 3.0.0 - Privilege Escalat… |
pebas |
CouponXxL |
2025-10-22T14:32:44.897Z | 2026-01-20T14:28:12.413Z |
| CVE-2025-60217 |
7.7 (3.1)
|
WordPress PT Luxa Addons Plugin <= 1.2.2 - Arbitrary F… |
ypromo |
PT Luxa Addons |
2025-10-22T14:32:44.691Z | 2026-01-20T14:28:12.511Z |
| CVE-2025-60216 |
9.8 (3.1)
|
WordPress Addison theme <= 1.4.2 - PHP Object Injectio… |
BoldThemes |
Addison |
2025-10-22T14:32:44.405Z | 2026-01-20T14:28:12.460Z |
| CVE-2025-60215 |
8.8 (3.1)
|
WordPress Kriya theme <= 3.4 - PHP Object Injection Vu… |
designthemes |
Kriya |
2025-10-22T14:32:44.186Z | 2026-01-20T14:28:12.435Z |
| CVE-2025-60214 |
9.8 (3.1)
|
WordPress Goldenblatt theme <= 1.2.1 - PHP Object Inje… |
BoldThemes |
Goldenblatt |
2025-10-22T14:32:44.013Z | 2026-01-20T14:28:12.452Z |
| CVE-2025-60213 |
9.8 (3.1)
|
WordPress Scape theme <= 1.5.13 - PHP Object Injection… |
Whitebox-Studio |
Scape |
2025-10-22T14:32:43.800Z | 2026-01-20T14:28:12.440Z |
| CVE-2025-60212 |
8.8 (3.1)
|
WordPress VEDA Theme <= 4.2 - PHP Object Injection Vul… |
designthemes |
VEDA |
2025-10-22T14:32:43.582Z | 2026-01-20T14:28:12.478Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-60243 | Incorrect Privilege Assignment vulnerability in Holest Engineering Selling Commander for WooCommerc… | 2025-11-06T16:16:07.070 | 2026-01-20T15:17:37.027 |
| fkie_cve-2025-60242 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Ana… | 2025-11-06T16:16:06.917 | 2026-01-20T15:17:36.877 |
| fkie_cve-2025-60241 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:06.767 | 2026-01-20T15:17:36.727 |
| fkie_cve-2025-60240 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:06.613 | 2026-01-20T15:17:36.593 |
| fkie_cve-2025-60239 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-11-06T16:16:06.463 | 2026-01-20T15:17:36.447 |
| fkie_cve-2025-60238 | Deserialization of Untrusted Data vulnerability in universam UNIVERSAM universam-demo allows Object… | 2025-10-22T15:16:00.377 | 2026-01-20T15:17:36.303 |
| fkie_cve-2025-60235 | Unrestricted Upload of File with Dangerous Type vulnerability in Plugify Helpdesk Support Ticket Sy… | 2025-11-06T16:16:06.310 | 2026-01-20T15:17:36.170 |
| fkie_cve-2025-60234 | Deserialization of Untrusted Data vulnerability in designthemes Single Property single-property all… | 2025-10-22T15:16:00.260 | 2026-01-20T15:17:36.033 |
| fkie_cve-2025-60232 | Deserialization of Untrusted Data vulnerability in quantumcloud KBx Pro Ultimate knowledgebase-help… | 2025-10-22T15:16:00.130 | 2026-01-20T15:17:35.890 |
| fkie_cve-2025-60228 | Deserialization of Untrusted Data vulnerability in designthemes Knowledge Base kbase allows Object … | 2025-10-22T15:16:00.003 | 2026-01-20T15:17:35.747 |
| fkie_cve-2025-60227 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Thi… | 2025-10-22T15:15:59.877 | 2026-01-20T15:17:35.540 |
| fkie_cve-2025-60226 | Deserialization of Untrusted Data vulnerability in axiomthemes White Rabbit whiterabbit allows Obje… | 2025-10-22T15:15:59.757 | 2026-01-20T15:17:35.367 |
| fkie_cve-2025-60225 | Deserialization of Untrusted Data vulnerability in AncoraThemes BugsPatrol bugspatrol allows Object… | 2025-10-22T15:15:59.620 | 2026-01-20T15:17:35.197 |
| fkie_cve-2025-60224 | Deserialization of Untrusted Data vulnerability in wpshuffle Subscribe to Download subscribe-to-dow… | 2025-10-22T15:15:59.497 | 2026-01-20T15:17:35.007 |
| fkie_cve-2025-60222 | Incorrect Privilege Assignment vulnerability in FantasticPlugins SUMO Memberships for WooCommerce s… | 2025-10-22T15:15:59.377 | 2026-01-20T15:17:34.830 |
| fkie_cve-2025-60221 | Deserialization of Untrusted Data vulnerability in captivateaudio Captivate Sync captivatesync-trad… | 2025-10-22T15:15:59.257 | 2026-01-20T15:17:34.663 |
| fkie_cve-2025-60220 | Incorrect Privilege Assignment vulnerability in pebas CouponXxL couponxxl allows Privilege Escalati… | 2025-10-22T15:15:59.107 | 2026-01-20T15:17:34.483 |
| fkie_cve-2025-60217 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ypr… | 2025-10-22T15:15:58.967 | 2026-01-20T15:17:34.307 |
| fkie_cve-2025-60216 | Deserialization of Untrusted Data vulnerability in BoldThemes Addison addison allows Object Injecti… | 2025-10-22T15:15:58.843 | 2026-01-20T15:17:33.840 |
| fkie_cve-2025-60215 | Deserialization of Untrusted Data vulnerability in designthemes Kriya kriya allows Object Injection… | 2025-10-22T15:15:58.720 | 2026-01-20T15:17:33.070 |
| fkie_cve-2025-60214 | Deserialization of Untrusted Data vulnerability in BoldThemes Goldenblatt goldenblatt allows Object… | 2025-10-22T15:15:58.607 | 2026-01-20T15:17:32.903 |
| fkie_cve-2025-60213 | Deserialization of Untrusted Data vulnerability in Whitebox-Studio Scape scape allows Object Inject… | 2025-10-22T15:15:58.487 | 2026-01-20T15:17:32.760 |
| fkie_cve-2025-60212 | Deserialization of Untrusted Data vulnerability in designthemes VEDA veda allows Object Injection.T… | 2025-10-22T15:15:58.370 | 2026-01-20T15:17:32.570 |
| fkie_cve-2025-60211 | Incorrect Privilege Assignment vulnerability in extendons WooCommerce Registration Fields Plugin - … | 2025-10-22T15:15:58.250 | 2026-01-20T15:17:32.403 |
| fkie_cve-2025-60210 | Deserialization of Untrusted Data vulnerability in wpeverest Everest Forms - Frontend Listing evere… | 2025-10-22T15:15:58.123 | 2026-01-20T15:17:32.247 |
| fkie_cve-2025-60209 | Deserialization of Untrusted Data vulnerability in CRM Perks Connector for Gravity Forms and Google… | 2025-10-22T15:15:57.983 | 2026-01-20T15:17:32.080 |
| fkie_cve-2025-60208 | Cross-Site Request Forgery (CSRF) vulnerability in Tusko Trush Advanced Custom Fields : CPT Options… | 2025-10-22T15:15:57.843 | 2026-01-20T15:17:31.940 |
| fkie_cve-2025-60207 | Unrestricted Upload of File with Dangerous Type vulnerability in Addify Custom User Registration Fi… | 2025-11-06T16:16:06.153 | 2026-01-20T15:17:31.803 |
| fkie_cve-2025-60206 | Improper Control of Generation of Code ('Code Injection') vulnerability in Bearsthemes Alone alone … | 2025-10-22T15:15:57.720 | 2026-01-20T15:17:31.670 |
| fkie_cve-2025-60204 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-11-06T16:16:06.010 | 2026-01-20T15:17:31.540 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-m3m3-pp28-9hrp |
4.8 (3.1)
|
The Quiz Maker WordPress plugin before 6.7.0.89 does not sanitise and escape some of its settings, … | 2026-01-12T06:30:14Z | 2026-01-12T18:30:30Z |
| ghsa-f3vq-4x38-vg3x |
5.5 (3.1)
|
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe … | 2026-01-10T00:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-f2cj-whwv-wjfw |
6.5 (3.1)
|
The issue was addressed with improved memory handling. This issue is fixed in tvOS 26.2, Safari 26.… | 2026-01-10T00:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-c87m-hx3f-42wq |
5.3 (3.1)
|
Quest KACE Desktop Authority through 11.3.1 has Insecure Permissions on the Named Pipes used for in… | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-8mfp-xmv3-hv35 |
8.1 (3.1)
|
Authentication Bypass by Spoofing vulnerability in Apache NimBLE. Receiving specially crafted Secu… | 2026-01-10T12:30:15Z | 2026-01-12T18:30:30Z |
| ghsa-7g4v-c9v7-6647 |
8.8 (3.1)
|
An issue in Automai Director v.25.2.0 allows a remote attacker to execute arbitrary code via the up… | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-6phw-p8vc-q8gp |
7.5 (3.1)
|
NULL Pointer Dereference vulnerability in Apache Nimble. Missing validation of HCI connection comp… | 2026-01-10T12:30:16Z | 2026-01-12T18:30:30Z |
| ghsa-4rm3-56gv-9xv3 |
8.2 (3.1)
|
An issue in Automai Director v.25.2.0 allows a remote attacker to escalate privileges and obtain se… | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-44vp-c93r-6656 |
9.8 (3.1)
|
EDIMAX BR-6208AC V2_1.02 is vulnerable to Command Injection. This arises because the pppUserName fi… | 2026-01-09T18:31:37Z | 2026-01-12T18:30:30Z |
| ghsa-3hjw-x946-3rhg |
8.2 (3.1)
|
Errands before 46.2.10 does not verify TLS certificates for CalDAV servers. | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-qgg6-hj2r-3x43 |
7.5 (3.1)
|
fluidsynth-2.4.6 and earlier versions is vulnerable to Null pointer dereference in fluid_synth_mono… | 2026-01-09T18:31:36Z | 2026-01-12T18:30:29Z |
| ghsa-jxg2-gp53-m88h |
7.5 (3.1)
|
In Yonyou YonBIP v3 and before, the LoginWithV8 interface in the series data application service sy… | 2026-01-09T18:31:36Z | 2026-01-12T18:30:29Z |
| ghsa-9w9h-4qfh-f6m6 |
6.5 (3.1)
|
An Information Disclosure vulnerability in CouchCMS 2.4 allow an Admin user to read arbitrary files… | 2026-01-09T18:31:36Z | 2026-01-12T18:30:29Z |
| ghsa-75mq-3gf9-64wc |
9.8 (3.1)
|
A Command Injection Vulnerability has been discovered in the DHCP daemon service of D-Link DIR895LA… | 2026-01-09T18:31:37Z | 2026-01-12T18:30:29Z |
| ghsa-mmrr-c2j6-cqfp |
7.5 (3.1)
5.1 (4.0)
|
Panda3D versions up to and including 1.10.16 egg-mkfont contains an uncontrolled format string vuln… | 2026-01-07T21:31:56Z | 2026-01-12T18:30:25Z |
| ghsa-gwg6-62mc-7h63 |
9.8 (3.1)
6.9 (4.0)
|
Panda3D versions up to and including 1.10.16 egg-mkfont contains a stack-based buffer overflow vuln… | 2026-01-07T21:31:56Z | 2026-01-12T18:30:25Z |
| ghsa-xvxx-4fr3-55xv |
5.5 (3.1)
6.9 (4.0)
|
Panda3D versions up to and including 1.10.16 deploy-stub contains a denial of service vulnerability… | 2026-01-07T21:31:56Z | 2026-01-12T18:30:24Z |
| ghsa-6mw8-c4j3-m9rv |
8.1 (3.1)
5.1 (4.0)
|
A heap buffer over-read vulnerability exists in the wolfSSH_CleanPath() function in wolfSSH. An aut… | 2026-01-06T18:31:36Z | 2026-01-12T18:30:24Z |
| ghsa-5r65-89wp-6mxr |
9.8 (3.1)
9.4 (4.0)
|
wolfSSH’s key exchange state machine can be manipulated to leak the client’s password in the clear,… | 2026-01-06T18:31:36Z | 2026-01-12T18:30:24Z |
| ghsa-mhwg-hvw8-9w84 |
5.4 (3.1)
5.3 (4.0)
|
Microweber 2.0.15 contains a stored cross-site scripting vulnerability that allows authenticated at… | 2025-12-12T00:30:20Z | 2026-01-12T18:30:21Z |
| ghsa-9247-4234-vwrq |
7.8 (3.1)
8.8 (4.0)
|
A local privilege escalation vulnerability in Bitdefender Total Security 27.0.46.231 allows low-pri… | 2025-12-10T12:31:27Z | 2026-01-12T18:30:20Z |
| ghsa-wh65-53hg-mxpv |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: Revert "fs/ntfs3: Replace inod… | 2025-09-07T18:31:27Z | 2026-01-12T18:30:19Z |
| ghsa-jx3q-xcpc-36h3 |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: serial: 8250: fix panic due to… | 2025-09-05T18:31:27Z | 2026-01-12T18:30:19Z |
| ghsa-frvj-f982-mfmx |
7.8 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: NFS: Fix filehandle bounds che… | 2025-09-07T18:31:27Z | 2026-01-12T18:30:19Z |
| ghsa-cvwp-768v-w5r3 |
7.1 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: media: venus: Add a check for … | 2025-09-05T18:31:27Z | 2026-01-12T18:30:19Z |
| ghsa-45h6-97cw-2x6c |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: media: usbtv: Lock resolution … | 2025-09-05T18:31:27Z | 2026-01-12T18:30:19Z |
| ghsa-887v-xh2x-47cm |
6.1 (3.1)
|
Mattermost Server is vulnerable to XSS through display name field | 2022-05-24T17:21:05Z | 2026-01-12T18:30:08Z |
| ghsa-vrh2-rprg-rgc6 |
6.1 (3.1)
|
Mattermost Server does not safeguard against phishing via error page links | 2022-05-24T17:21:05Z | 2026-01-12T18:16:42Z |
| ghsa-h742-xx59-r9pq |
5.3 (3.1)
|
Mattermost Server exposes sensitive user status information via REST API version 4 endpoint | 2022-05-24T17:21:05Z | 2026-01-12T16:19:55Z |
| ghsa-wrg7-gj8f-p6mh |
8.7 (4.0)
|
Imaster's MEMS Events CRM contains an SQL injection vulnerability in‘keyword’ parameter in ‘/memsde… | 2026-01-12T15:30:42Z | 2026-01-12T15:30:42Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-27512 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.430283Z |
| gsd-2024-27852 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.428930Z |
| gsd-2024-27203 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.428486Z |
| gsd-2024-27717 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.428232Z |
| gsd-2024-27447 | pretix before 2024.1.1 mishandles file validation. | 2024-02-27T06:02:31.427853Z |
| gsd-2024-27507 | libLAS 1.8.1 contains a memory leak vulnerability in /libLAS/apps/ts2las.cpp. | 2024-02-27T06:02:31.427593Z |
| gsd-2024-27448 | MailDev 2 through 2.1.0 allows Remote Code Execution via a crafted Content-ID header for … | 2024-02-27T06:02:31.427394Z |
| gsd-2024-27538 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.427201Z |
| gsd-2024-27574 | SQL Injection vulnerability in Trainme Academy version Ichin v.1.3.2 allows a remote atta… | 2024-02-27T06:02:31.427006Z |
| gsd-2024-27477 | In Leantime 3.0.6, a Cross-Site Scripting vulnerability exists within the ticket creation… | 2024-02-27T06:02:31.426312Z |
| gsd-2024-27483 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.426117Z |
| gsd-2024-27462 | ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate w… | 2024-02-27T06:02:31.425911Z |
| gsd-2024-27800 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.425651Z |
| gsd-2024-27696 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.425120Z |
| gsd-2024-27831 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.424892Z |
| gsd-2024-27733 | File Upload vulnerability in Byzro Network Smart s42 Management Platform v.S42 allows a l… | 2024-02-27T06:02:31.424451Z |
| gsd-2024-27728 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.422553Z |
| gsd-2024-27664 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.422088Z |
| gsd-2024-27825 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.421620Z |
| gsd-2024-27469 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.421158Z |
| gsd-2024-27692 | ** REJECT ** * REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-22939. Re… | 2024-02-27T06:02:31.420971Z |
| gsd-2024-27805 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.420774Z |
| gsd-2024-27866 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.420584Z |
| gsd-2024-27792 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.420390Z |
| gsd-2024-27580 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.419858Z |
| gsd-2024-27629 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.419654Z |
| gsd-2024-27744 | Cross Site Scripting vulnerability in Petrol Pump Mangement Software v.1.0 allows an atta… | 2024-02-27T06:02:31.419448Z |
| gsd-2024-27820 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-27T06:02:31.418841Z |
| gsd-2024-27456 | rack-cors (aka Rack CORS Middleware) 2.0.1 has 0666 permissions for the .rb files. | 2024-02-27T06:02:31.418145Z |
| gsd-2024-27771 | Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-22: 'Path Traversal' m… | 2024-02-27T06:02:31.417877Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-186498 | Malicious code in debug-user-pipe-sun-simple (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186497 | Malicious code in debug-tau-wind-gamma-sun (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186496 | Malicious code in debug-container-zeta-load-log (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186495 | Malicious code in debug-char-code-double-encode (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186494 | Malicious code in debug-cache-report-cache-index (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186493 | Malicious code in data-virtualize-cluster-view-phi (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186492 | Malicious code in data-omicron-static-quick-serialize (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186491 | Malicious code in data-node-sanitize-balance-optimize (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186490 | Malicious code in data-grep-string-transpile-link (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186489 | Malicious code in darkmatter-pegasus-optimize-css-assets-webpack-plugin-andromeda (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186488 | Malicious code in darkmatter-halley-farout-archaeometry (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186487 | Malicious code in darkmatter-gravitationalwave-less-websockets (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186486 | Malicious code in darkmatter-exosphere-exoplanetology-yakutsk (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186485 | Malicious code in darkmatter-build-kuiperbelt-xanthus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186484 | Malicious code in darkenergy-style-loader-style-loader-node-config (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186483 | Malicious code in darkenergy-regulus-hadron-elektra (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186482 | Malicious code in darkenergy-palynology-publish-terraforming (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186481 | Malicious code in darkenergy-janus-firebase-chalk (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186480 | Malicious code in darkenergy-helmet-epigenetics-leda (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186479 | Malicious code in darkenergy-google-paleoanthropology-thuban (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186478 | Malicious code in darkenergy-config-pulsar-development (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186477 | Malicious code in dagda-tectonophysics-materialize-astrometry (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186476 | Malicious code in dagda-technocracy-commitlint-gacrux (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186475 | Malicious code in dagda-spawn-selenium-vega (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186474 | Malicious code in dagda-pulsar-redshift-remark (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186473 | Malicious code in dagda-polaris-entanglement-meteor (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186472 | Malicious code in dagda-ophiuchus-koa-solarnebula (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186471 | Malicious code in dagda-non-blocking-html-webpack-plugin-astrophysics (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186470 | Malicious code in dagda-geckodriver-perturbation-geodynamo (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186469 | Malicious code in dagda-ganymede-fornax-ursa (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-1264 | Redis: Schwachstelle ermöglicht Denial of Service | 2023-05-21T22:00:00.000+00:00 | 2023-05-21T22:00:00.000+00:00 |
| wid-sec-w-2023-1261 | Internet Systems Consortium DHCP: Schwachstelle ermöglicht Denial of Service | 2021-05-26T22:00:00.000+00:00 | 2023-05-21T22:00:00.000+00:00 |
| wid-sec-w-2023-1260 | MediaWiki: Mehrere Schwachstellen | 2021-09-30T22:00:00.000+00:00 | 2023-05-21T22:00:00.000+00:00 |
| wid-sec-w-2023-1259 | MediaWiki: Mehrere Schwachstellen | 2021-12-15T23:00:00.000+00:00 | 2023-05-21T22:00:00.000+00:00 |
| wid-sec-w-2023-1257 | Hazelcast IMDG: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-05-21T22:00:00.000+00:00 | 2023-05-21T22:00:00.000+00:00 |
| wid-sec-w-2023-1239 | Cisco Small Business Switches: Mehrere Schwachstellen | 2023-05-18T22:00:00.000+00:00 | 2023-05-21T22:00:00.000+00:00 |
| wid-sec-w-2023-1117 | Samsung Android und Samsung Exynos: Mehrere Schwachstellen | 2023-05-01T22:00:00.000+00:00 | 2023-05-21T22:00:00.000+00:00 |
| wid-sec-w-2022-1604 | MediaWiki: Mehrere Schwachstellen | 2022-10-03T22:00:00.000+00:00 | 2023-05-21T22:00:00.000+00:00 |
| wid-sec-w-2022-1512 | MediaWiki: Mehrere Schwachstellen | 2022-01-13T23:00:00.000+00:00 | 2023-05-21T22:00:00.000+00:00 |
| wid-sec-w-2022-0557 | MediaWiki: Mehrere Schwachstellen ermöglichen Cross-Site Scripting | 2022-07-04T22:00:00.000+00:00 | 2023-05-21T22:00:00.000+00:00 |
| wid-sec-w-2023-1256 | WithSecure Produkte: Schwachstelle ermöglicht Denial of Service | 2023-05-18T22:00:00.000+00:00 | 2023-05-18T22:00:00.000+00:00 |
| wid-sec-w-2023-1253 | Synology DiskStation Manager und Router Manager: Mehrere Schwachstellen ermöglichen Ausführen von beliebigem Programmcode | 2023-05-18T22:00:00.000+00:00 | 2023-05-18T22:00:00.000+00:00 |
| wid-sec-w-2023-1248 | Drupal "File Chooser Field": Schwachstelle ermöglicht Offenlegung von Informationen | 2023-05-18T22:00:00.000+00:00 | 2023-05-18T22:00:00.000+00:00 |
| wid-sec-w-2023-1246 | Apple Safari: Mehrere Schwachstellen | 2023-05-18T22:00:00.000+00:00 | 2023-05-18T22:00:00.000+00:00 |
| wid-sec-w-2023-1243 | Cisco Identity Services Engine (ISE): Mehrere Schwachstellen | 2023-05-18T22:00:00.000+00:00 | 2023-05-18T22:00:00.000+00:00 |
| wid-sec-w-2023-1242 | Cisco Digital Network Architecture Center: Mehrere Schwachstellen | 2023-05-18T22:00:00.000+00:00 | 2023-05-18T22:00:00.000+00:00 |
| wid-sec-w-2023-1241 | Cisco Wireless Access Point: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-05-18T22:00:00.000+00:00 | 2023-05-18T22:00:00.000+00:00 |
| wid-sec-w-2023-1240 | Cisco Smart Software Manager On-Prem: Schwachstelle ermöglicht Manipulation von Dateien | 2023-05-18T22:00:00.000+00:00 | 2023-05-18T22:00:00.000+00:00 |
| wid-sec-w-2023-1224 | Moodle: Schwachstelle ermöglicht Cross-Site Scripting | 2023-05-16T22:00:00.000+00:00 | 2023-05-18T22:00:00.000+00:00 |
| wid-sec-w-2023-1035 | Foxit PDF Editor: Mehrere Schwachstellen | 2023-04-18T22:00:00.000+00:00 | 2023-05-18T22:00:00.000+00:00 |
| wid-sec-w-2023-0864 | Red Hat JBoss A-MQ: Mehrere Schwachstellen | 2023-04-05T22:00:00.000+00:00 | 2023-05-18T22:00:00.000+00:00 |
| wid-sec-w-2023-0862 | Red Hat OpenShift: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-04-04T22:00:00.000+00:00 | 2023-05-18T22:00:00.000+00:00 |
| wid-sec-w-2023-0647 | Red Hat JBoss A-MQ: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-03-14T23:00:00.000+00:00 | 2023-05-18T22:00:00.000+00:00 |
| wid-sec-w-2023-0561 | Xerox FreeFlow Print Server: Mehrere Schwachstellen | 2023-03-02T23:00:00.000+00:00 | 2023-05-18T22:00:00.000+00:00 |
| wid-sec-w-2022-2323 | Red Hat OpenShift: Schwachstelle ermöglicht MITM | 2022-12-13T23:00:00.000+00:00 | 2023-05-18T22:00:00.000+00:00 |
| wid-sec-w-2022-0918 | Hashicorp Vault: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2021-11-18T23:00:00.000+00:00 | 2023-05-18T22:00:00.000+00:00 |
| wid-sec-w-2022-0239 | Linux Kernel: Mehrere Schwachstellen | 2022-04-07T22:00:00.000+00:00 | 2023-05-18T22:00:00.000+00:00 |
| wid-sec-w-2023-1235 | tribe29 checkmk: Schwachstelle ermöglicht Kommando-Injektion | 2023-05-16T22:00:00.000+00:00 | 2023-05-16T22:00:00.000+00:00 |
| wid-sec-w-2023-1233 | Red Hat OpenStack: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-05-16T22:00:00.000+00:00 | 2023-05-16T22:00:00.000+00:00 |
| wid-sec-w-2023-1227 | Octopus Deploy: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-05-16T22:00:00.000+00:00 | 2023-05-16T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:7423 | Red Hat Security Advisory: kernel security update | 2025-05-13T14:12:11+00:00 | 2025-12-04T22:49:26+00:00 |
| rhsa-2025:3931 | Red Hat Security Advisory: kernel security update | 2025-04-15T20:47:09+00:00 | 2025-12-04T22:49:25+00:00 |
| rhsa-2025:3901 | Red Hat Security Advisory: kernel-rt security update | 2025-04-15T11:41:33+00:00 | 2025-12-04T22:49:24+00:00 |
| rhsa-2025:3937 | Red Hat Security Advisory: kernel security update | 2025-04-16T07:12:05+00:00 | 2025-12-04T22:49:19+00:00 |
| rhsa-2025:3887 | Red Hat Security Advisory: kernel security update | 2025-04-15T08:21:07+00:00 | 2025-12-04T22:49:19+00:00 |
| rhsa-2025:3871 | Red Hat Security Advisory: kernel security update | 2025-04-15T01:38:57+00:00 | 2025-12-04T22:49:17+00:00 |
| rhsa-2025:3827 | Red Hat Security Advisory: kernel security update | 2025-04-14T01:26:43+00:00 | 2025-12-04T22:49:14+00:00 |
| rhsa-2025:3838 | Red Hat Security Advisory: kernel security update | 2025-04-14T10:53:04+00:00 | 2025-12-04T22:49:09+00:00 |
| rhsa-2025:3506 | Red Hat Security Advisory: kernel security update | 2025-04-02T12:41:12+00:00 | 2025-12-04T22:49:09+00:00 |
| rhsa-2025:3894 | Red Hat Security Advisory: kernel-rt security update | 2025-04-15T09:50:32+00:00 | 2025-12-04T22:49:07+00:00 |
| rhsa-2025:3260 | Red Hat Security Advisory: kernel security update | 2025-03-26T14:11:44+00:00 | 2025-12-04T22:49:05+00:00 |
| rhsa-2025:7395 | Red Hat Security Advisory: 389-ds-base security update | 2025-05-13T13:31:37+00:00 | 2025-12-04T22:49:01+00:00 |
| rhsa-2025:2265 | Red Hat Security Advisory: kernel security update | 2025-03-05T00:32:28+00:00 | 2025-12-04T22:48:38+00:00 |
| rhsa-2025:1264 | Red Hat Security Advisory: kernel security update | 2025-02-11T01:40:16+00:00 | 2025-12-04T22:48:32+00:00 |
| rhsa-2025:1291 | Red Hat Security Advisory: kernel security update | 2025-02-11T11:22:53+00:00 | 2025-12-04T22:48:28+00:00 |
| rhsa-2016:1292 | Red Hat Security Advisory: libxml2 security update | 2016-06-23T10:32:13+00:00 | 2025-12-04T18:08:48+00:00 |
| rhsa-2016:1485 | Red Hat Security Advisory: chromium-browser security update | 2016-07-26T05:18:37+00:00 | 2025-12-04T17:12:28+00:00 |
| rhsa-2025:15472 | Red Hat Security Advisory: kernel-rt security update | 2025-09-08T15:06:33+00:00 | 2025-12-04T16:48:27+00:00 |
| rhsa-2025:14420 | Red Hat Security Advisory: kernel security update | 2025-08-25T03:44:06+00:00 | 2025-12-04T16:48:17+00:00 |
| rhsa-2025:14439 | Red Hat Security Advisory: kernel-rt security update | 2025-08-25T07:56:32+00:00 | 2025-12-04T16:48:14+00:00 |
| rhsa-2020:1176 | Red Hat Security Advisory: avahi security update | 2020-03-31T20:12:46+00:00 | 2025-12-03T23:03:05+00:00 |
| rhsa-2017:2997 | Red Hat Security Advisory: chromium-browser security update | 2017-10-20T08:39:11+00:00 | 2025-12-03T23:03:05+00:00 |
| rhba-2020:1310 | Red Hat Bug Fix Advisory: Red Hat Virtualization Host (redhat-virtualization-host) 4.3.9 async | 2020-04-02T17:10:33+00:00 | 2025-12-03T22:05:02+00:00 |
| rhsa-2020:4547 | Red Hat Security Advisory: libpcap security, bug fix, and enhancement update | 2020-11-04T00:59:33+00:00 | 2025-12-03T20:07:13+00:00 |
| rhsa-2024:9158 | Red Hat Security Advisory: lldpd security update | 2024-11-12T09:05:21+00:00 | 2025-12-03T19:31:27+00:00 |
| rhsa-2021:2456 | Red Hat Security Advisory: Red Hat OpenStack Platform 13.0 (openvswitch2.11) security update | 2021-06-16T10:59:58+00:00 | 2025-12-03T19:31:25+00:00 |
| rhsa-2021:2239 | Red Hat Security Advisory: Red Hat Virtualization Host security update [ovirt-4.4.6] | 2021-06-03T10:26:34+00:00 | 2025-12-03T19:31:25+00:00 |
| rhsa-2021:2077 | Red Hat Security Advisory: openvswitch security update | 2021-05-20T19:33:01+00:00 | 2025-12-03T19:31:25+00:00 |
| rhsa-2021:1593 | Red Hat Security Advisory: krb5 security update | 2021-05-18T14:23:41+00:00 | 2025-12-03T19:31:25+00:00 |
| rhsa-2021:1050 | Red Hat Security Advisory: openvswitch2.11 security update | 2021-03-31T12:59:00+00:00 | 2025-12-03T19:31:24+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2023-30612 | Malicious HTTP requests could close arbitrary opening file descriptors in cloud-hypervisor | 2023-04-01T00:00:00.000Z | 2023-06-03T00:00:00.000Z |
| msrc_cve-2023-29195 | Vitess VTAdmin users that can create shards can deny access to other functions | 2023-05-01T00:00:00.000Z | 2023-06-03T00:00:00.000Z |
| msrc_cve-2023-29194 | vitess allows users to create keyspaces that can deny access to already existing keyspaces | 2023-04-01T00:00:00.000Z | 2023-06-03T00:00:00.000Z |
| msrc_cve-2023-2731 | A NULL pointer dereference flaw was found in Libtiff's LZWDecode() function in the libtiff/tif_lzw.c file. This flaw allows a local attacker to craft specific input data that can cause the program to dereference a NULL pointer when decompressing a TIFF format file resulting in a program crash or denial of service. | 2023-05-01T00:00:00.000Z | 2023-06-03T00:00:00.000Z |
| msrc_cve-2022-44370 | NASM v2.16 was discovered to contain a heap buffer overflow in the component quote_for_pmake() asm/nasm.c:856 | 2023-03-10T00:00:00.000Z | 2023-06-03T00:00:00.000Z |
| msrc_cve-2023-33143 | Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability | 2023-06-13T07:00:00.000Z | 2023-06-02T07:00:00.000Z |
| msrc_cve-2023-0459 | Copy_from_user Spectre-V1 Gadget in Linux Kernel | 2023-05-01T00:00:00.000Z | 2023-06-02T00:00:00.000Z |
| msrc_cve-2023-33285 | An issue was discovered in Qt 5.x before 5.15.14 6.x before 6.2.9 and 6.3.x through 6.5.x before 6.5.1. QDnsLookup has a buffer over-read via a crafted reply from a DNS server. | 2023-05-01T00:00:00.000Z | 2023-05-31T00:00:00.000Z |
| msrc_cve-2023-33199 | malformed proposed intoto v0.0.2 entries can cause a panic in Rekor | 2023-05-01T00:00:00.000Z | 2023-05-31T00:00:00.000Z |
| msrc_cve-2023-28625 | mod_auth_openidc core dump when OIDCStripCookies is set and an empty Cookie header is supplied | 2023-04-01T00:00:00.000Z | 2023-05-26T00:00:00.000Z |
| msrc_cve-2023-2124 | An out-of-bounds memory access flaw was found in the Linux kernel’s XFS file system in how a user restores an XFS image after failure (with a dirty log journal). This flaw allows a local user to crash or potentially escalate their privileges on the system. | 2023-05-01T00:00:00.000Z | 2023-05-26T00:00:00.000Z |
| msrc_cve-2023-29491 | ncurses before 6.4 20230408 when used by a setuid application allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/.terminfo or reached via the TERMINFO or TERM environment variable. | 2023-04-01T00:00:00.000Z | 2023-05-25T00:00:00.000Z |
| msrc_cve-2023-28856 | `HINCRBYFLOAT` can be used to crash a redis-server process | 2023-04-01T00:00:00.000Z | 2023-05-25T00:00:00.000Z |
| msrc_cve-2023-28328 | A NULL pointer dereference flaw was found in the az6027 driver in drivers/media/usb/dev-usb/az6027.c in the Linux Kernel. The message from user space is not checked properly before transferring into the device. This flaw allows a local user to crash the system or potentially cause a denial of service. | 2023-04-01T00:00:00.000Z | 2023-05-25T00:00:00.000Z |
| msrc_cve-2023-28327 | A NULL pointer dereference flaw was found in the UNIX protocol in net/unix/diag.c In unix_diag_get_exact in the Linux Kernel. The newly allocated skb does not have sk leading to a NULL pointer. This flaw allows a local user to crash or potentially cause a denial of service. | 2023-04-01T00:00:00.000Z | 2023-05-25T00:00:00.000Z |
| msrc_cve-2023-27477 | wasmtime is a fast and secure runtime for WebAssembly. Wasmtime's code generation backend Cranelift has a bug on x86_64 platforms for the WebAssembly `i8x16.select` instruction which will produce the wrong results when the same operand is provided to the instruction and some of the selected indices are greater than 16. There is an off-by-one error in the calculation of the mask to the `pshufb` instruction which causes incorrect results to be returned if lanes are selected from the second vector. This codegen bug has been fixed in Wasmtiem 6.0.1 5.0.1 and 4.0.1. Users are recommended to upgrade to these updated versions. If upgrading is not an option for you at this time you can avoid this miscompilation by disabling the Wasm simd proposal. Additionally the bug is only present on x86_64 hosts. Other platforms such as AArch64 and s390x are not affected. | 2023-03-10T00:00:00.000Z | 2023-05-25T00:00:00.000Z |
| msrc_cve-2023-26463 | strongSwan 5.9.8 and 5.9.9 potentially allows remote code execution because it uses a variable named "public" for two different purposes within the same function. There is initially incorrect access control later followed by an expired pointer dereference. One attack vector is sending an untrusted client certificate during EAP-TLS. A server is affected only if it loads plugins that implement TLS-based EAP methods (EAP-TLS EAP-TTLS EAP-PEAP or EAP-TNC). This is fixed in 5.9.10. | 2023-04-01T00:00:00.000Z | 2023-05-25T00:00:00.000Z |
| msrc_cve-2023-23000 | In the Linux kernel before 5.17 drivers/phy/tegra/xusb.c mishandles the tegra_xusb_find_port_node return value. Callers expect NULL in the error case but an error pointer is used. | 2023-03-10T00:00:00.000Z | 2023-05-25T00:00:00.000Z |
| msrc_cve-2023-22795 | A regular expression based DoS vulnerability in Action Dispatch <6.1.7.1 and <7.0.4.1 related to the If-None-Match header. A specially crafted HTTP If-None-Match header can cause the regular expression engine to enter a state of catastrophic backtracking when on a version of Ruby below 3.2.0. This can cause the process to use large amounts of CPU and memory leading to a possible DoS vulnerability All users running an affected release should either upgrade or use one of the workarounds immediately. | 2023-02-01T00:00:00.000Z | 2023-05-25T00:00:00.000Z |
| msrc_cve-2023-2194 | An out-of-bounds write vulnerability was found in the Linux kernel's SLIMpro I2C device driver. The userspace "data->block[0]" variable was not capped to a number between 0-255 and was used as the size of a memcpy possibly writing beyond the end of dma_buffer. This flaw could allow a local privileged user to crash the system or potentially achieve code execution. | 2023-04-01T00:00:00.000Z | 2023-05-25T00:00:00.000Z |
| msrc_cve-2023-2177 | A null pointer dereference issue was found in the sctp network protocol in net/sctp/stream_sched.c in Linux Kernel. If stream_in allocation is failed stream_out is freed which would further be accessed. A local user could use this flaw to crash the system or potentially cause a denial of service. | 2023-04-01T00:00:00.000Z | 2023-05-25T00:00:00.000Z |
| msrc_cve-2023-2166 | A null pointer dereference issue was found in can protocol in net/can/af_can.c in the Linux before Linux. ml_priv may not be initialized in the receive path of CAN frames. A local user could use this flaw to crash the system or potentially cause a denial of service. | 2023-04-01T00:00:00.000Z | 2023-05-25T00:00:00.000Z |
| msrc_cve-2023-2162 | A use-after-free vulnerability was found in iscsi_sw_tcp_session_create in drivers/scsi/iscsi_tcp.c in SCSI sub-component in the Linux Kernel. In this flaw an attacker could leak kernel internal information. | 2023-04-01T00:00:00.000Z | 2023-05-25T00:00:00.000Z |
| msrc_cve-2023-2008 | A flaw was found in the Linux kernel's udmabuf device driver. The specific flaw exists within a fault handler. The issue results from the lack of proper validation of user-supplied data which can result in a memory access past the end of an array. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the kernel. | 2023-04-01T00:00:00.000Z | 2023-05-25T00:00:00.000Z |
| msrc_cve-2023-2004 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. | 2023-04-01T00:00:00.000Z | 2023-05-25T00:00:00.000Z |
| msrc_cve-2023-1382 | A data race flaw was found in the Linux kernel between where con is allocated and con->sock is set. This issue leads to a NULL pointer dereference when accessing con->sock->sk in net/tipc/topsrv.c in the tipc protocol in the Linux kernel. | 2023-04-01T00:00:00.000Z | 2023-05-25T00:00:00.000Z |
| msrc_cve-2021-46879 | An issue was discovered in Treasure Data Fluent Bit 1.7.1 a wrong variable is used to get the msgpack data resulting in a heap overflow in flb_msgpack_gelf_value_ext. An attacker can craft a malicious file and tick the victim to open the file with the software triggering a heap overflow and execute arbitrary code on the target system. | 2023-04-01T00:00:00.000Z | 2023-05-25T00:00:00.000Z |
| msrc_cve-2021-46878 | An issue was discovered in Treasure Data Fluent Bit 1.7.1 erroneous parsing in flb_pack_msgpack_to_json_format leads to type confusion bug that interprets whatever is on the stack as msgpack maps and arrays leading to use-after-free. This can be used by an attacker to craft a specially craft file and trick the victim opening it using the affect software triggering use-after-free and execute arbitrary code on the target system. | 2023-04-01T00:00:00.000Z | 2023-05-25T00:00:00.000Z |
| msrc_cve-2019-9210 | In AdvanceCOMP 2.1 png_compress in pngex.cc in advpng has an integer overflow upon encountering an invalid PNG size which results in an attempted memcpy to write into a buffer that is too small. (There is also a heap-based buffer over-read.) | 2019-02-02T00:00:00.000Z | 2023-05-25T00:00:00.000Z |
| msrc_cve-2023-28302 | Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability | 2023-04-11T07:00:00.000Z | 2023-05-23T07:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201702-0338 | An issue was discovered in certain Apple products. iOS before 10.1 is affected. tvOS befo… | 2025-04-20T20:11:51.313000Z |
| var-201704-0714 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. The iss… | 2025-04-20T20:11:48.628000Z |
| var-201710-1357 | An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before… | 2025-04-20T20:11:48.196000Z |
| var-201712-0267 | An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS bef… | 2025-04-20T20:11:44.574000Z |
| var-201706-0533 | An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x… | 2025-04-20T20:10:58.079000Z |
| var-201704-1322 | On Wireless IP Camera (P2P) WIFICAM devices, access to .ini files (containing credentials… | 2025-04-20T20:10:25.023000Z |
| var-201705-3371 | A reflected cross site scripting vulnerability in the administrative interface of Juniper… | 2025-04-20T20:10:24.522000Z |
| var-201704-0727 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. The issue… | 2025-04-20T20:09:48.436000Z |
| var-201702-0342 | An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The … | 2025-04-20T20:09:36.414000Z |
| var-201704-0812 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS bef… | 2025-04-20T20:09:28.959000Z |
| var-201706-0496 | An exploitable command injection vulnerability exists in the web management interface use… | 2025-04-20T20:09:26.100000Z |
| var-201704-0710 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari be… | 2025-04-20T20:08:47.512000Z |
| var-201702-0188 | An issue was discovered in certain Apple products. iOS before 10 is affected. The issue i… | 2025-04-20T20:08:33.388000Z |
| var-201702-0350 | An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS bef… | 2025-04-20T20:08:32.826000Z |
| var-201703-1146 | Multiple buffer overflows in the ctl_put* functions in NTP before 4.2.8p10 and 4.3.x befo… | 2025-04-20T20:08:01.475000Z |
| var-201709-0970 | On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56 and other chips, an attacker can craf… | 2025-04-20T20:07:53.488000Z |
| var-201705-3235 | An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari … | 2025-04-20T20:07:22.080000Z |
| var-201702-0874 | An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. macOS b… | 2025-04-20T20:06:35.408000Z |
| var-201704-0767 | An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The … | 2025-04-20T20:06:34.065000Z |
| var-201704-0732 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS bef… | 2025-04-20T20:06:33.113000Z |
| var-201707-1162 | An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari … | 2025-04-20T20:06:33.073000Z |
| var-201705-3999 | An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. tvOS be… | 2025-04-20T20:06:00.467000Z |
| var-201707-1167 | An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The … | 2025-04-20T20:05:55.950000Z |
| var-201702-0333 | An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The … | 2025-04-20T20:05:55.514000Z |
| var-201710-0214 | Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Tunneled Direct-Link S… | 2025-04-20T20:05:54.015000Z |
| var-201702-0322 | An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The … | 2025-04-20T20:05:53.851000Z |
| var-201704-0822 | An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS bef… | 2025-04-20T20:04:54.055000Z |
| var-201705-3995 | An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS b… | 2025-04-20T20:04:52.670000Z |
| var-201702-0327 | An issue was discovered in certain Apple products. iOS before 10.1 is affected. Safari be… | 2025-04-20T20:04:52.611000Z |
| var-201704-0892 | An elevation of privilege vulnerability in libnl could enable a local malicious applicati… | 2025-04-20T20:04:51.935000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2022:2658-1 | Security update for keylime | 2022-08-03T19:05:06Z | 2022-08-03T19:05:06Z |
| suse-su-2022:2657-1 | Security update for oracleasm | 2022-08-03T19:04:46Z | 2022-08-03T19:04:46Z |
| suse-su-2022:2656-1 | Security update for drbd | 2022-08-03T17:04:32Z | 2022-08-03T17:04:32Z |
| suse-su-2022:2655-1 | Security update for postgresql-jdbc | 2022-08-03T13:48:03Z | 2022-08-03T13:48:03Z |
| suse-su-2022:2654-1 | Security update for u-boot | 2022-08-03T13:37:04Z | 2022-08-03T13:37:04Z |
| suse-su-2022:2653-1 | Security update for u-boot | 2022-08-03T13:33:54Z | 2022-08-03T13:33:54Z |
| suse-su-2022:2651-1 | Security update for samba | 2022-08-03T13:11:25Z | 2022-08-03T13:11:25Z |
| suse-su-2022:2650-1 | Security update for java-1_8_0-ibm | 2022-08-03T13:09:46Z | 2022-08-03T13:09:46Z |
| suse-su-2022:2649-1 | Security update for pcre2 | 2022-08-03T13:06:38Z | 2022-08-03T13:06:38Z |
| suse-su-2022:2648-1 | Security update for tiff | 2022-08-03T11:45:27Z | 2022-08-03T11:45:27Z |
| suse-su-2022:2647-2 | Security update for tiff | 2022-08-03T11:44:49Z | 2022-08-03T11:44:49Z |
| suse-su-2022:2647-1 | Security update for tiff | 2022-08-03T11:44:42Z | 2022-08-03T11:44:42Z |
| suse-su-2022:2646-1 | Security update for python-numpy | 2022-08-03T10:41:45Z | 2022-08-03T10:41:45Z |
| suse-su-2022:2645-1 | Security update for python-numpy | 2022-08-03T10:41:20Z | 2022-08-03T10:41:20Z |
| suse-su-2022:2642-1 | Security update for xscreensaver | 2022-08-03T09:38:05Z | 2022-08-03T09:38:05Z |
| suse-su-2022:2641-1 | Security update for xscreensaver | 2022-08-03T09:37:47Z | 2022-08-03T09:37:47Z |
| suse-su-2022:2638-1 | Security update for mokutil | 2022-08-03T08:35:20Z | 2022-08-03T08:35:20Z |
| suse-su-2022:2637-1 | Security update for mokutil | 2022-08-03T08:34:53Z | 2022-08-03T08:34:53Z |
| suse-su-2022:2636-1 | Security update for mokutil | 2022-08-03T08:34:41Z | 2022-08-03T08:34:41Z |
| suse-su-2022:2635-1 | Security update for mokutil | 2022-08-03T08:34:22Z | 2022-08-03T08:34:22Z |
| suse-su-2022:2633-1 | Security update for mokutil | 2022-08-03T08:33:55Z | 2022-08-03T08:33:55Z |
| suse-su-2022:2632-1 | Security update for permissions | 2022-08-03T07:51:07Z | 2022-08-03T07:51:07Z |
| suse-su-2022:2629-1 | Security update for the Linux Kernel | 2022-08-02T13:58:57Z | 2022-08-02T13:58:57Z |
| suse-su-2022:2622-1 | Security update for drbd | 2022-08-02T09:16:28Z | 2022-08-02T09:16:28Z |
| suse-su-2022:2621-1 | Security update for samba | 2022-08-02T09:05:05Z | 2022-08-02T09:05:05Z |
| suse-su-2022:2620-1 | Security update for gimp | 2022-08-01T14:52:41Z | 2022-08-01T14:52:41Z |
| suse-su-2022:2619-1 | Security update for gimp | 2022-08-01T14:01:42Z | 2022-08-01T14:01:42Z |
| suse-su-2022:2618-1 | Security update for dovecot22 | 2022-08-01T09:57:29Z | 2022-08-01T09:57:29Z |
| suse-su-2022:2617-1 | Security update for oracleasm | 2022-08-01T08:48:13Z | 2022-08-01T08:48:13Z |
| suse-su-2022:2615-1 | Security update for the Linux Kernel | 2022-08-01T08:42:02Z | 2022-08-01T08:42:02Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2019:1590-1 | Security update for elfutils | 2019-06-19T20:18:43Z | 2019-06-19T20:18:43Z |
| opensuse-su-2019:1589-1 | Security update for sssd | 2019-06-19T12:19:50Z | 2019-06-19T12:19:50Z |
| opensuse-su-2019:1583-1 | Security update for MozillaThunderbird | 2019-06-18T15:41:01Z | 2019-06-18T15:41:01Z |
| opensuse-su-2019:1582-1 | Security update for gnome-shell | 2019-06-18T15:39:26Z | 2019-06-18T15:39:26Z |
| opensuse-su-2019:1579-1 | Security update for the Linux Kernel | 2019-06-18T14:54:20Z | 2019-06-18T14:54:20Z |
| opensuse-su-2019:1573-1 | Security update for php7 | 2019-06-18T11:38:13Z | 2019-06-18T11:38:13Z |
| opensuse-su-2019:1572-1 | Security update for php7 | 2019-06-18T11:37:53Z | 2019-06-18T11:37:53Z |
| opensuse-su-2019:1571-1 | Security update for the Linux Kernel | 2019-06-18T11:29:22Z | 2019-06-18T11:29:22Z |
| opensuse-su-2019:1561-1 | Security update for vim | 2019-06-17T11:18:14Z | 2019-06-17T11:18:14Z |
| opensuse-su-2019:1558-1 | Security update for chromium | 2019-06-15T16:35:31Z | 2019-06-15T16:35:31Z |
| opensuse-su-2019:1557-1 | Security update for chromium | 2019-06-15T16:34:44Z | 2019-06-15T16:34:44Z |
| opensuse-su-2019:1551-1 | Security update for neovim | 2019-06-13T13:20:55Z | 2019-06-13T13:20:55Z |
| opensuse-su-2019:1547-1 | Security update for virtualbox | 2019-06-11T15:34:36Z | 2019-06-11T15:34:36Z |
| opensuse-su-2019:1535-1 | Security update for bubblewrap | 2019-06-10T09:32:43Z | 2019-06-10T09:32:43Z |
| opensuse-su-2019:1534-1 | Security update for MozillaFirefox | 2019-06-10T09:32:29Z | 2019-06-10T09:32:29Z |
| opensuse-su-2019:1533-1 | Security update for bind | 2019-06-10T09:32:04Z | 2019-06-10T09:32:04Z |
| opensuse-su-2019:1530-1 | Security update for libpng16 | 2019-06-07T15:14:56Z | 2019-06-07T15:14:56Z |
| opensuse-su-2019:1527-1 | Security update for rmt-server | 2019-06-07T15:13:07Z | 2019-06-07T15:13:07Z |
| opensuse-su-2019:1524-1 | Security update exim | 2019-06-07T05:44:58Z | 2019-06-07T05:44:58Z |
| opensuse-su-2019:1520-1 | Security update for cronie | 2019-06-05T15:50:29Z | 2019-06-05T15:50:29Z |
| opensuse-su-2019:1508-1 | Security update for curl | 2019-06-04T12:35:02Z | 2019-06-04T12:35:02Z |
| opensuse-su-2019:1507-1 | Recommended update for GraphicsMagick | 2019-06-04T06:54:12Z | 2019-06-04T06:54:12Z |
| opensuse-su-2019:1506-1 | Security update for containerd, docker, docker-runc, go, go1.11, go1.12, golang-github-docker-libnetwork | 2019-06-03T11:22:06Z | 2019-06-03T11:22:06Z |
| opensuse-su-2019:1505-1 | Security update for libvirt | 2019-06-03T09:28:09Z | 2019-06-03T09:28:09Z |
| opensuse-su-2019:1499-1 | Security update for containerd, docker, docker-runc, go, go1.11, go1.12, golang-github-docker-libnetwork | 2019-06-03T08:21:16Z | 2019-06-03T08:21:16Z |
| opensuse-su-2019:1498-1 | Security update for libtasn1 | 2019-06-03T05:50:40Z | 2019-06-03T05:50:40Z |
| opensuse-su-2019:1497-1 | Security update for axis | 2019-06-03T05:49:35Z | 2019-06-03T05:49:35Z |
| opensuse-su-2019:1495-1 | Recommended update for sles12sp3-docker-image, sles12sp4-image, system-user-root | 2019-06-03T05:47:44Z | 2019-06-03T05:47:44Z |
| opensuse-su-2019:1494-1 | Security update for NetworkManager | 2019-06-03T05:47:24Z | 2019-06-03T05:47:24Z |
| opensuse-su-2019:1491-1 | Recommended update for GraphicsMagick | 2019-06-03T05:46:42Z | 2019-06-03T05:46:42Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-09235 | Moodle跨站脚本漏洞(CNVD-2025-09235) | 2025-05-07 | 2025-05-08 |
| cnvd-2025-09234 | FreeBSD存在未明漏洞(CNVD-2025-09234) | 2024-11-20 | 2025-05-08 |
| cnvd-2025-09233 | FreeBSD存在未明漏洞(CNVD-2025-09233) | 2024-11-20 | 2025-05-08 |
| cnvd-2025-09232 | FreeBSD信息泄露漏洞(CNVD-2025-09232) | 2024-11-20 | 2025-05-08 |
| cnvd-2025-09231 | FreeBSD缓冲区溢出漏洞(CNVD-2025-09231) | 2025-02-17 | 2025-05-08 |
| cnvd-2025-09230 | FreeBSD信息泄露漏洞(CNVD-2025-09230) | 2025-02-17 | 2025-05-08 |
| cnvd-2025-09229 | FreeBSD ktrace信息泄露漏洞 | 2025-02-17 | 2025-05-08 |
| cnvd-2025-09228 | Edimax BR-6478AC formDiskCreateGroup函数命令执行漏洞 | 2025-04-25 | 2025-05-08 |
| cnvd-2025-09227 | Docassemble跨站脚本漏洞 | 2024-03-26 | 2025-05-08 |
| cnvd-2025-09226 | Docassemble开放重定向漏洞 | 2024-03-26 | 2025-05-08 |
| cnvd-2025-09225 | Docassemble信息泄露漏洞 | 2024-03-26 | 2025-05-08 |
| cnvd-2025-09392 | IBM Aspera Console加密问题漏洞 | 2025-04-25 | 2025-05-07 |
| cnvd-2025-09274 | Adobe After Effects缓冲区溢出漏洞(CNVD-2025-09274) | 2025-04-18 | 2025-05-07 |
| cnvd-2025-09272 | Adobe ColdFusion授权问题漏洞(CNVD-2025-09272) | 2025-04-11 | 2025-05-07 |
| cnvd-2025-09271 | Adobe Framemaker堆缓冲区溢出(CNVD-2025-09271) | 2025-04-11 | 2025-05-07 |
| cnvd-2025-09270 | Adobe Framemaker代码问题漏洞 | 2025-04-16 | 2025-05-07 |
| cnvd-2025-09269 | Adobe Framemaker缓冲区溢出漏洞(CNVD-2025-09269) | 2025-04-16 | 2025-05-07 |
| cnvd-2025-09268 | Adobe Framemaker缓冲区溢出漏洞(CNVD-2025-09268) | 2025-04-16 | 2025-05-07 |
| cnvd-2025-09267 | Adobe Framemaker缓冲区溢出漏洞 | 2025-04-16 | 2025-05-07 |
| cnvd-2025-09266 | Adobe Bridge缓冲区溢出漏洞 | 2025-04-18 | 2025-05-07 |
| cnvd-2025-09265 | Adobe XMP Toolkit缓冲区溢出漏洞 | 2025-04-18 | 2025-05-07 |
| cnvd-2025-09241 | Apache Seata代码问题漏洞 | 2025-04-08 | 2025-05-07 |
| cnvd-2025-09239 | FoxCMS Field.php文件SQL注入漏洞 | 2025-04-25 | 2025-05-07 |
| cnvd-2025-09217 | Google Pixel本地权限提升漏洞 | 2025-04-18 | 2025-05-07 |
| cnvd-2025-09216 | Google Pixel越界写入漏洞(CNVD-2025-09216) | 2025-04-18 | 2025-05-07 |
| cnvd-2025-09170 | Dell PowerScale OneFS拒绝服务漏洞 | 2022-09-06 | 2025-05-07 |
| cnvd-2025-09157 | Google Pixel越界读取漏洞(CNVD-2025-09157) | 2025-04-18 | 2025-05-07 |
| cnvd-2025-09156 | Google Chrome堆缓冲区溢出漏洞(CNVD-2025-09156) | 2025-04-21 | 2025-05-07 |
| cnvd-2025-09155 | Google Chrome资源管理错误漏洞(CNVD-2025-09155) | 2025-04-21 | 2025-05-07 |
| cnvd-2025-09154 | Google Chrome OS越界写入漏洞(CNVD-2025-09154) | 2025-04-25 | 2025-05-07 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2014-avi-509 | Multiples vulnérabilités dans les produits IBM | 2014-12-08T00:00:00.000000 | 2014-12-08T00:00:00.000000 |
| certfr-2014-avi-508 | Multiples vulnérabilités dans MediaWiki | 2014-12-08T00:00:00.000000 | 2014-12-08T00:00:00.000000 |
| certfr-2014-avi-507 | Multiples vulnérabilités dans VMware | 2014-12-08T00:00:00.000000 | 2014-12-08T00:00:00.000000 |
| certfr-2014-avi-506 | Multiples vulnérabilités dans phpMyAdmin | 2014-12-05T00:00:00.000000 | 2014-12-05T00:00:00.000000 |
| certfr-2014-avi-505 | Multiples vulnérabilités dans Apple Safari | 2014-12-05T00:00:00.000000 | 2014-12-05T00:00:00.000000 |
| certfr-2014-avi-504 | Multiples vulnérabilités dans Citrix XenServer | 2014-12-05T00:00:00.000000 | 2014-12-05T00:00:00.000000 |
| certfr-2014-avi-503 | Multiples vulnérabilités dans les produits Mozilla | 2014-12-02T00:00:00.000000 | 2014-12-02T00:00:00.000000 |
| certfr-2014-avi-502 | Multiples vulnérabilités dans les produits F5 | 2014-11-28T00:00:00.000000 | 2014-11-28T00:00:00.000000 |
| certfr-2014-avi-501 | Multiples vulnérabilités dans Wordpress | 2014-11-28T00:00:00.000000 | 2014-11-28T00:00:00.000000 |
| certfr-2014-avi-500 | Multiples vulnérabilités dans les systèmes SCADA Siemens | 2014-11-27T00:00:00.000000 | 2014-11-27T00:00:00.000000 |
| certfr-2014-avi-499 | Multiples vulnérabilités dans les produits F5 | 2014-11-27T00:00:00.000000 | 2014-11-27T00:00:00.000000 |
| certfr-2014-avi-498 | Multiples vulnérabilités dans Docker | 2014-11-26T00:00:00.000000 | 2014-11-26T00:00:00.000000 |
| certfr-2014-avi-497 | Vulnérabilité dans Google Chrome | 2014-11-26T00:00:00.000000 | 2014-11-26T00:00:00.000000 |
| certfr-2014-avi-496 | Vulnérabilité dans Adobe Flash Player | 2014-11-26T00:00:00.000000 | 2014-11-26T00:00:00.000000 |
| certfr-2014-avi-495 | Multiples vulnérabilités dans le noyau linux Ubuntu | 2014-11-25T00:00:00.000000 | 2014-11-25T00:00:00.000000 |
| certfr-2014-avi-494 | Multiples vulnérabilités dans phpMyAdmin | 2014-11-24T00:00:00.000000 | 2014-11-24T00:00:00.000000 |
| certfr-2014-avi-493 | Multiples vulnérabilités dans Asterisk | 2014-11-24T00:00:00.000000 | 2014-11-24T00:00:00.000000 |
| certfr-2014-avi-492 | Vulnérabilité dans Xen | 2014-11-21T00:00:00.000000 | 2014-11-21T00:00:00.000000 |
| certfr-2014-avi-491 | Vulnérabilité dans le smartphone P7 Huawei | 2014-11-20T00:00:00.000000 | 2014-11-20T00:00:00.000000 |
| certfr-2014-avi-490 | Multiples vulnérabilités dans Drupal | 2014-11-20T00:00:00.000000 | 2014-11-20T00:00:00.000000 |
| certfr-2014-avi-489 | Vulnérabilité de l'implémentation Kerberos dans Microsoft Windows | 2014-11-19T00:00:00.000000 | 2014-11-19T00:00:00.000000 |
| certfr-2014-avi-488 | Multiples vulnérabilités dans Google Chrome | 2014-11-19T00:00:00.000000 | 2014-11-19T00:00:00.000000 |
| certfr-2014-avi-487 | Multiples vulnérabilités dans les produits Apple | 2014-11-18T00:00:00.000000 | 2014-11-18T00:00:00.000000 |
| certfr-2014-avi-486 | Multiples vulnérabilités dans Xen | 2014-11-18T00:00:00.000000 | 2014-11-18T00:00:00.000000 |
| certfr-2014-avi-485 | Multiples vulnérabilités dans Moodle | 2014-11-17T00:00:00.000000 | 2014-11-17T00:00:00.000000 |
| certfr-2014-avi-484 | Multiples vulnérabilités dans les produits Huawei | 2014-11-17T00:00:00.000000 | 2014-11-17T00:00:00.000000 |
| certfr-2014-avi-483 | Multiples vulnérabilités dans PHP | 2014-11-14T00:00:00.000000 | 2014-11-14T00:00:00.000000 |
| certfr-2014-avi-482 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2014-11-13T00:00:00.000000 | 2014-11-13T00:00:00.000000 |
| certfr-2014-avi-481 | Multiples vulnérabilités dans Wireshark | 2014-11-13T00:00:00.000000 | 2014-11-13T00:00:00.000000 |
| certfr-2014-avi-480 | Multiples vulnérabilités dans les produits Juniper | 2014-11-13T00:00:00.000000 | 2014-11-13T00:00:00.000000 |