Vulnerability-Lookup

Recent vulnerabilities from

Select from 69 available sources using the dropdown above.

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-40497	8.1 (3.1)	FreeScout Vulnerable to CSS Injection via Stored Style…	freescout-help-desk	freescout	2026-04-21T01:45:55.492Z	2026-04-21T13:25:21.103Z
CVE-2026-6058	4.5 (3.1)	UNSUPPORTED WHEN ASSIGNED An improper encod…	Zyxel	WRE6505 v2 firmware	2026-04-21T01:42:07.433Z	2026-04-21T13:26:29.283Z
CVE-2026-40496	8.8 (4.0)	FreeScout has Predictable Attachment Token that Allows…	freescout-help-desk	freescout	2026-04-21T01:38:50.117Z	2026-04-21T13:50:39.454Z
CVE-2026-39973	7.1 (3.1)	Apktool: Path Traversal to Arbitrary File Write	iBotPeaches	Apktool	2026-04-21T01:35:22.396Z	2026-04-23T03:56:04.482Z
CVE-2026-40250	8.4 (4.0)	OpenEXR has integer overflow in DWA decoder outBufferE…	AcademySoftwareFoundation	openexr	2026-04-21T01:33:00.212Z	2026-04-23T03:55:57.543Z
CVE-2026-40244	8.4 (4.0)	OpenEXR has integer overflow in DWA setupChannelData p…	AcademySoftwareFoundation	openexr	2026-04-21T01:30:55.061Z	2026-04-23T03:55:56.354Z
CVE-2026-39886	5.3 (3.1)	OpenEXR has HTJ2K Signed Integer Overflow in ht_undo_impl()	AcademySoftwareFoundation	openexr	2026-04-21T01:27:01.371Z	2026-04-21T13:49:21.573Z
CVE-2026-39866	7.4 (4.0)	Lawnchair vulnerable to Command Injection via unquoted…	LawnchairLauncher	lawnchair	2026-04-21T01:19:47.510Z	2026-04-23T03:55:58.650Z
CVE-2026-39861	7.7 (4.0)	Claude Code: Sandbox Escape via Symlink Following Allo…	anthropics	claude-code	2026-04-21T00:56:39.062Z	2026-04-21T13:44:49.618Z
CVE-2026-39386	8.8 (3.1)	Neko has Self-service Privilege Escalation for Authent…	m1k1o	neko	2026-04-21T00:50:34.656Z	2026-04-22T03:56:19.795Z
CVE-2026-40264	2 (4.0)	OpenBao's Token Store Allows Cross-Namespace Renewal, …	openbao	openbao	2026-04-21T00:47:38.156Z	2026-04-21T19:30:51.975Z
CVE-2026-39396	3.1 (3.1)	OpenBao has Decompression Bomb via Unbounded Copy in O…	openbao	openbao	2026-04-21T00:44:53.943Z	2026-04-21T19:49:18.821Z
CVE-2026-39388	2 (4.0)	OpenBao's Certificate Authentication Allows Token Rene…	openbao	openbao	2026-04-21T00:43:22.920Z	2026-04-21T19:36:07.865Z
CVE-2026-39946	4.6 (4.0)	OpenBao allows SQL Injection in PostgreSQL database se…	openbao	openbao	2026-04-21T00:19:39.578Z	2026-04-21T13:34:21.088Z
CVE-2026-39378	6.5 (3.1)	nbconvert has an Arbitrary File Read via Path Traversa…	jupyter	nbconvert	2026-04-21T00:17:00.684Z	2026-04-21T13:43:29.081Z
CVE-2026-39377	6.5 (3.1)	nbconvert has an Arbitrary File Write via Path Travers…	jupyter	nbconvert	2026-04-21T00:14:59.937Z	2026-04-21T19:49:24.475Z
CVE-2026-39320	7.5 (3.1)	Signal K Server has an Unauthenticated Regular Express…	SignalK	signalk-server	2026-04-21T00:07:10.371Z	2026-04-21T19:36:54.787Z
CVE-2026-41527	6.9 (3.1)	KDE Kleopatra before 26.08.0 on Windows allows lo…	KDE	Kleopatra	2026-04-21T00:00:00.000Z	2026-04-22T15:35:24.571Z
CVE-2026-40706	8.4 (3.1)	In NTFS-3G 2022.10.3 before 2026.2.25, a heap buf…	Tuxera	NTFS-3G	2026-04-21T00:00:00.000Z	2026-04-22T15:35:30.245Z
CVE-2026-38835	9.8 (3.1)	Tenda W30E V2.0 V16.01.0.21 was found to contain …	n/a	n/a	2026-04-21T00:00:00.000Z	2026-04-22T15:35:41.189Z
CVE-2026-38834	7.3 (3.1)	Tenda W30E V2.0 V16.01.0.21 was found to contain …	n/a	n/a	2026-04-21T00:00:00.000Z	2026-04-21T19:23:17.157Z
CVE-2026-37748	7.2 (3.1)	Visitor Management System 1.0 by sanjay1313 is vu…	n/a	n/a	2026-04-21T00:00:00.000Z	2026-04-21T18:25:24.762Z
CVE-2026-31019	8.8 (3.1)	In the Website module of Dolibarr ERP & CRM 22.0.…	n/a	n/a	2026-04-21T00:00:00.000Z	2026-04-21T18:23:33.693Z
CVE-2026-31018	8.8 (3.1)	In Dolibarr ERP & CRM <= 22.0.4, PHP code detecti…	n/a	n/a	2026-04-21T00:00:00.000Z	2026-04-21T15:31:23.441Z
CVE-2026-31014	6.3 (3.1)	Dovestones Softwares AD Self Update <4.0.0.5 is v…	n/a	n/a	2026-04-21T00:00:00.000Z	2026-04-21T18:21:08.828Z
CVE-2026-31013	6.1 (3.1)	Dovestones Softwares ADPhonebook <4.0.1.1 has a r…	n/a	n/a	2026-04-21T00:00:00.000Z	2026-04-21T18:19:12.306Z
CVE-2026-30452	6.5 (3.1)	Textpattern CMS 4.9.0 contains a Broken Access Co…	n/a	n/a	2026-04-21T00:00:00.000Z	2026-04-22T15:35:46.859Z
CVE-2026-29644	5.3 (3.1)	XiangShan (open-source high-performance RISC-V pr…	n/a	n/a	2026-04-21T00:00:00.000Z	2026-04-21T17:59:06.506Z
CVE-2025-70420	8.8 (3.1)	A SQL injection vulnerability exists in Genesys L…	n/a	n/a	2026-04-21T00:00:00.000Z	2026-04-22T15:35:35.730Z
CVE-2026-35570	8.4 (3.1)	OpenClaude has Sandbox Bypass via Early-Exit Logic Fla…	Gitlawb	openclaude	2026-04-20T23:24:08.324Z	2026-04-21T19:49:30.148Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-6754	7.5 (3.1)	Use-after-free in the JavaScript Engine component	Mozilla	Firefox	2026-04-21T12:40:50.577Z	2026-04-22T15:06:53.853Z
CVE-2026-6753	7.3 (3.1)	Incorrect boundary conditions in the WebRTC component	Mozilla	Firefox	2026-04-21T12:40:49.893Z	2026-04-22T15:35:18.745Z
CVE-2026-6752	7.3 (3.1)	Incorrect boundary conditions in the WebRTC component	Mozilla	Firefox	2026-04-21T12:40:49.079Z	2026-04-21T23:34:44.029Z
CVE-2026-6751	7.3 (3.1)	Uninitialized memory in the Audio/Video: Web Codecs co…	Mozilla	Firefox	2026-04-21T12:40:48.315Z	2026-04-21T23:34:42.935Z
CVE-2026-6750	9.8 (3.1)	Privilege escalation in the Graphics: WebRender component	Mozilla	Firefox	2026-04-21T12:40:47.476Z	2026-04-23T03:55:59.793Z
CVE-2026-6749	7.5 (3.1)	Information disclosure due to uninitialized memory in …	Mozilla	Firefox	2026-04-21T12:40:46.800Z	2026-04-22T15:07:52.051Z
CVE-2026-6748	9.8 (3.1)	Uninitialized memory in the Audio/Video: Web Codecs co…	Mozilla	Firefox	2026-04-21T12:40:45.923Z	2026-04-21T23:34:39.302Z
CVE-2026-6747	7.5 (3.1)	Use-after-free in the WebRTC component	Mozilla	Firefox	2026-04-21T12:40:45.203Z	2026-04-22T15:08:13.152Z
CVE-2026-6746	7.5 (3.1)	Use-after-free in the DOM: Core & HTML component	Mozilla	Firefox	2026-04-21T12:40:44.148Z	2026-04-22T15:08:34.207Z
CVE-2026-40520	8.6 (4.0) 7.2 (3.1)	FreePBX api module Command Injection via GraphQL	FreePBX	api	2026-04-21T12:41:05.281Z	2026-04-21T13:32:06.116Z
CVE-2026-32147	5.3 (4.0)	SFTP chroot bypass via path traversal in SSH_FXP_FSETSTAT	Erlang	OTP	2026-04-21T12:01:20.350Z	2026-04-22T04:13:25.005Z
CVE-2026-41039	8.7 (4.0)	Information Disclosure Vulnerability in Quantum Networ…	Quantum Networks	Router QN-I-470	2026-04-21T10:28:24.521Z	2026-04-21T13:13:59.843Z
CVE-2026-41038	7.6 (4.0)	Weak Password Policy Vulnerability in Quantum Networks…	Quantum Networks	Router QN-I-470	2026-04-21T10:22:09.254Z	2026-04-21T13:14:55.975Z
CVE-2026-6553	7.3 (4.0)	TYPO3 CMS Stores Cleartext Password in User Settings Module	TYPO3	TYPO3 CMS	2026-04-21T10:04:02.525Z	2026-04-21T13:20:23.515Z
CVE-2026-41037	8.7 (4.0)	Missing Rate Limiting Vulnerability in Quantum Network…	Quantum Networks	Router QN-I-470	2026-04-21T10:04:56.462Z	2026-04-21T13:19:09.396Z
CVE-2026-41036	8.7 (4.0)	Command Injection Vulnerability in Quantum Networks Ro…	Quantum Networks	Router QN-I-470	2026-04-21T10:07:47.488Z	2026-04-21T13:17:54.592Z
CVE-2026-3317	5.1 (4.0)	Reflected Cross-Site Scripting in Navigate CMS application	Navigate	Navigate CMS	2026-04-21T09:03:59.773Z	2026-04-21T13:22:03.438Z
CVE-2026-39467	7.2 (3.1)	WordPress Responsive Slider by MetaSlider plugin <= 3.…	MetaSlider	Responsive Slider by MetaSlider	2026-04-21T09:35:29.246Z	2026-04-21T09:35:29.246Z
CVE-2025-13826	8.2 (4.0)	Incorrect input validation on the Zervit portable HTTP…	Zervit	portable HTTP/Web server	2026-04-21T08:19:57.983Z	2026-04-21T13:23:30.712Z
CVE-2026-6712	4.4 (3.1)	Website LLMs.txt <= 8.2.6 - Authenticated (Admin+) Sto…	ryhowa	Website LLMs.txt	2026-04-21T06:43:59.539Z	2026-04-21T13:47:53.867Z
CVE-2026-6711	6.1 (3.1)	Website LLMs.txt <= 8.2.6 - Reflected Cross-Site Scripting	ryhowa	Website LLMs.txt	2026-04-21T06:43:59.951Z	2026-04-21T13:51:33.148Z
CVE-2026-6703	4.3 (3.1)	Responsive Blocks <= 2.2.1 - Missing Authorization to …	cyberchimps	Responsive Blocks – Page Builder for Blocks & Patterns	2026-04-21T06:43:58.955Z	2026-04-21T16:36:19.694Z
CVE-2026-31370	6.3 (3.1)	Information Leak Vulnerability in Honor E	Honor	Honor E	2026-04-21T06:30:53.883Z	2026-04-21T13:25:53.570Z
CVE-2026-31369	3.2 (3.1)	Privilege Bypass in PcManager	Honor	PcManager	2026-04-21T06:26:52.403Z	2026-04-21T13:18:27.938Z
CVE-2026-31368	7.8 (3.1)	Privilege Bypass in AiAssistant	Honor	AIAssistant	2026-04-21T06:40:08.446Z	2026-04-21T13:23:57.396Z
CVE-2026-5965	9.3 (4.0) 9.8 (3.1)	NewSoft｜NewSoftOA - OS Command Injection	NewSoft	NewSoftOA	2026-04-21T03:32:55.138Z	2026-04-21T13:20:58.795Z
CVE-2026-6675	5.3 (3.1)	Responsive Blocks <= 2.2.0 - Unauthenticated Open Emai…	cyberchimps	Responsive Blocks – Page Builder for Blocks & Patterns	2026-04-21T02:25:39.847Z	2026-04-21T13:22:00.182Z
CVE-2026-6674	6.5 (3.1)	Plugin: CMS für Motorrad Werkstätten <= 1.0.0 - Authen…	tholstkabelbwde	Plugin: CMS für Motorrad Werkstätten	2026-04-21T02:25:40.676Z	2026-04-21T12:58:21.763Z
CVE-2026-40497	8.1 (3.1)	FreeScout Vulnerable to CSS Injection via Stored Style…	freescout-help-desk	freescout	2026-04-21T01:45:55.492Z	2026-04-21T13:25:21.103Z
CVE-2026-6058	4.5 (3.1)	UNSUPPORTED WHEN ASSIGNED An improper encod…	Zyxel	WRE6505 v2 firmware	2026-04-21T01:42:07.433Z	2026-04-21T13:26:29.283Z

ID	Description	Published	Updated

ID	Severity	Description	Published	Updated
ghsa-h2v9-xpqq-69hx	7.1 (3.1)	ConnectWise has released a security update for ConnectWise Automate™ that addresses a behavior in t…	2026-04-20T18:31:48Z	2026-04-20T18:31:48Z
ghsa-gv64-vfgp-cgh5	4.7 (3.1) 2.0 (4.0)	A weakness has been identified in Pagekit CMS up to 1.0.18. This issue affects the function evaluat…	2026-04-20T18:31:48Z	2026-04-20T18:31:49Z
ghsa-fxgc-2fpp-hx5w	8.8 (3.1) 8.7 (4.0)	Vvveb prior to 1.0.8.1 contains a privilege escalation vulnerability in the admin user profile save…	2026-04-20T18:31:48Z	2026-04-20T18:31:48Z
ghsa-fr6h-4rh3-wc9f	7.7 (3.1) 8.3 (4.0)	Vvveb prior to 1.0.8.1 contains a server-side request forgery vulnerability in the oEmbedProxy acti…	2026-04-20T18:31:48Z	2026-04-20T18:31:48Z
ghsa-chhv-69jq-q952	9.8 (3.1) 9.2 (4.0)	Vvveb prior to 1.0.8.1 contains a code injection vulnerability in the installation endpoint where t…	2026-04-20T18:31:48Z	2026-04-20T18:31:48Z
ghsa-82p8-693h-j5x5	2.4 (3.1) 1.9 (4.0)	A security flaw has been discovered in erponline.xyz ERP Online up to 4.0.0. This vulnerability aff…	2026-04-20T18:31:48Z	2026-04-20T18:31:48Z
ghsa-58qw-9mgm-455v	4.6 (4.0)	pip handles concatenated tar and ZIP files as ZIP files regardless of filename or whether a file is…	2026-04-20T18:31:48Z	2026-04-20T21:31:43Z
ghsa-49mg-4v6p-32w2	5.4 (3.1) 5.1 (4.0)	Vvveb prior to 1.0.8.1 contains a stored cross-site scripting vulnerability that allows authenticat…	2026-04-20T18:31:48Z	2026-04-20T18:31:48Z
ghsa-3gjh-jvm6-6pfg	6.5 (3.1)	A vulnerability exists in the Buffalo Link Station version 1.85-0.01 that allows unauthenticated or…	2026-04-20T18:31:48Z	2026-04-20T18:31:49Z
ghsa-gxrh-c9qf-pf88	7.2 (3.1)	Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions…	2026-04-20T18:31:47Z	2026-04-20T18:31:47Z
ghsa-x2wv-w39c-7c55	6.3 (3.1) 2.1 (4.0)	A vulnerability was determined in Qibo CMS 1.0. Affected by this issue is some unknown functionalit…	2026-04-20T15:31:52Z	2026-04-20T15:31:52Z
ghsa-wvwg-7g9q-g3v4	8.4 (3.1)	OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an …	2026-04-20T15:31:52Z	2026-04-20T15:31:52Z
ghsa-wf66-mphr-4c4r	5.3 (3.1)	Information exposure vulnerability has been identified in Apache Kafka. The NetworkClient componen…	2026-04-20T15:31:52Z	2026-04-20T18:31:47Z
ghsa-rw4j-jhfh-fr2h	8.4 (3.1)	OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an …	2026-04-20T15:31:52Z	2026-04-20T15:31:52Z
ghsa-qhfq-gvvc-5q6q	5.3 (3.1)	Apache Doris MCP Server versions earlier than 0.6.1 are affected by an improper neutralization flaw…	2026-04-20T15:31:52Z	2026-04-20T18:31:46Z
ghsa-pwx9-99jm-fx95	8.4 (3.1)	OS Command Injection Remote Code Execution Vulnerability in UI in Progress ADC Products allows an a…	2026-04-20T15:31:52Z	2026-04-20T15:31:52Z
ghsa-g4q4-3mm2-2w69	8.4 (3.1)	OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an …	2026-04-20T15:31:52Z	2026-04-20T15:31:52Z
ghsa-c8hq-8vfh-x23r	5.7 (4.0)	An improper access control vulnerability in the canonical-livepatch snap client prior to version 10…	2026-04-20T15:31:52Z	2026-04-20T15:31:52Z
ghsa-7hc9-pw4r-x45r	3.5 (3.1) 2.0 (4.0)	A vulnerability was found in Qibo CMS 1.0. Affected by this vulnerability is an unknown functionali…	2026-04-20T15:31:52Z	2026-04-20T15:31:52Z
ghsa-2wm4-697g-pfq8	9.8 (3.1)	SGLang's reranking endpoint (/v1/rerank) achieves Remote Code Execution (RCE) when a model file con…	2026-04-20T15:31:52Z	2026-04-20T18:31:47Z
ghsa-28jg-cgg7-j4wc	9.1 (3.1)	A possible security vulnerability has been identified in Apache Kafka. By default, the broker prop…	2026-04-20T15:31:52Z	2026-04-20T18:31:46Z
ghsa-xx6p-3747-7pwp	2.4 (3.1) 1.9 (4.0)	A weakness has been identified in BichitroGan ISP Billing Software 2025.3.20. Affected is an unknow…	2026-04-20T12:32:01Z	2026-04-20T12:32:01Z
ghsa-x42f-vq92-fh92	2.4 (3.1) 1.9 (4.0)	A vulnerability was identified in BichitroGan ISP Billing Software 2025.3.20. This affects an unkno…	2026-04-20T12:32:01Z	2026-04-20T12:32:01Z
ghsa-wj32-w776-h6m2	8.8 (3.1) 7.4 (4.0)	A vulnerability was found in Tenda F451 1.0.0.7_cn_svn7958. This issue affects the function fromGst…	2026-04-20T12:32:01Z	2026-04-20T12:32:01Z
ghsa-rgcc-vxwc-jxf9	7.3 (3.1) 5.5 (4.0)	A security vulnerability has been detected in moxi624 Mogu Blog v2 up to 5.2. Affected by this vuln…	2026-04-20T12:32:01Z	2026-04-20T12:32:01Z
ghsa-q6vj-q94p-g3rc	8.8 (3.1) 7.4 (4.0)	A vulnerability was identified in Tenda F451 1.0.0.7_cn_svn7958. The affected element is the functi…	2026-04-20T12:32:01Z	2026-04-20T12:32:01Z
ghsa-gqp3-hfc3-8q54	6.3 (3.1) 2.1 (4.0)	A weakness has been identified in usememos memos up to 0.22.1. This affects the function memos_acce…	2026-04-20T12:32:01Z	2026-04-20T12:32:01Z
ghsa-9r7w-j29g-xqx8	2.1 (4.0)	When sed is invoked with both -i (in-place edit) and --follow-symlinks, the function open_next_file…	2026-04-20T12:32:01Z	2026-04-20T12:32:01Z
ghsa-9qc9-mh55-7xp5	6.3 (3.1) 2.1 (4.0)	A flaw has been found in phili67 Ecclesia CRM up to 8.0.0. This affects the function ValidateInput …	2026-04-20T12:32:01Z	2026-04-20T12:32:01Z
ghsa-7gjf-f5f3-qqxw	3.5 (3.1) 2.0 (4.0)	A security flaw has been discovered in Yifang CMS up to 2.0.5. The impacted element is the function…	2026-04-20T12:32:01Z	2026-04-20T12:32:01Z

ID	Severity	Description	Package	Published	Updated
pysec-2022-249		The GitHub Security Lab discovered sixteen ways to exploit a cross-site scripting vulnera…	nbconvert	2022-08-18T19:15:00Z	2022-08-20T05:32:49.275202Z
pysec-2022-43146	6.5 (3.1)	py-cord is a an API wrapper for Discord written in Python. Bots creating using py-cord ve…	py-cord	2022-08-18T15:15:00Z	2024-11-25T18:35:18.357593Z
pysec-2022-245		An issue was discovered in the HTTP FileResponse class in Django 3.2 before 3.2.15 and 4.…	django	2022-08-03T14:15:00Z	2022-08-03T16:55:03.165433Z
pysec-2022-248		Streamlit is a data oriented application development framework for python. Users hosting …	streamlit	2022-08-01T22:15:00Z	2022-08-10T17:01:37.061546Z
pysec-2022-247		Flask-AppBuilder is an application development framework built on top of Flask python fra…	flask-appbuilder	2022-08-01T19:15:00Z	2022-08-08T16:56:55.240734Z
pysec-2022-246		Cross-site Scripting (XSS) - Reflected in GitHub repository beancount/fava prior to 1.22.3.	fava	2022-08-01T15:15:00Z	2022-08-05T03:26:17.915953Z
pysec-2022-43072	7.5 (3.1)	An inflation issue was discovered in Chia Network CAT1 Standard 1.0.0. Previously minted …	chia-blockchain	2022-07-29T21:15:00Z	2024-11-25T18:33:04.123836Z
pysec-2022-43174	9.8 (3.1)	WMAgent v1.3.3rc2 and 1.3.3rc1, reqmgr 2 1.4.1rc5 and 1.4.0rc2, reqmon 1.4.1rc5, and glob…	wmagent	2022-07-28T23:15:00Z	2024-11-25T22:09:33.909779Z
pysec-2022-43163	9.8 (3.1)	WMAgent v1.3.3rc2 and 1.3.3rc1, reqmgr 2 1.4.1rc5 and 1.4.0rc2, reqmon 1.4.1rc5, and glob…	reqmon	2022-07-28T23:15:00Z	2024-11-25T22:09:33.909779Z
pysec-2022-43136	9.8 (3.1)	WMAgent v1.3.3rc2 and 1.3.3rc1, reqmgr 2 1.4.1rc5 and 1.4.0rc2, reqmon 1.4.1rc5, and glob…	global-workqueue	2022-07-28T23:15:00Z	2024-11-25T22:09:33.909779Z
pysec-2022-43057	5.5 (3.1)	WASM3 v0.5.0 was discovered to contain a segmentation fault via the component Compile_Mem…	pywasm3	2022-07-27T14:15:00+00:00	2023-08-17T03:22:33.522615+00:00
pysec-2022-244		untangle is a python library to convert XML data to python objects. untangle versions 1.2…	untangle	2022-07-26T06:15:00Z	2022-08-01T20:42:29.787320Z
pysec-2022-243		untangle is a python library to convert XML data to python objects. untangle versions 1.2…	untangle	2022-07-26T06:15:00Z	2022-08-01T18:50:11.676911Z
pysec-2022-237		In mistune through 2.0.2, support of inline markup is implemented by using regular expres…	mistune	2022-07-25T23:15:00Z	2022-07-26T03:40:40.758214Z
pysec-2022-240		Cross-site Scripting (XSS) - Reflected in GitHub repository beancount/fava prior to 1.22.2.	fava	2022-07-25T14:15:00Z	2022-07-27T20:32:05.236760Z
pysec-2022-239		The time and filter parameters in Fava prior to v1.22 are vulnerable to reflected XSS due…	fava	2022-07-25T14:15:00Z	2022-07-27T20:32:05.196440Z
pysec-2022-43173	9.8 (3.1)	The wikifaces package in PyPI v1.0 included a code execution backdoor inserted by a third…	wikifaces	2022-07-22T15:15:00Z	2024-11-21T14:23:03.244154Z
pysec-2022-43166	9.8 (3.1)	The scu-captcha package in PyPI v0.0.1 to v0.0.4 included a code execution backdoor inser…	scu-captcha	2022-07-22T15:15:00+00:00	2022-07-29T12:45:00+00:00
pysec-2022-242		The PyCrowdTangle package in PyPI before v0.0.1 included a code execution backdoor insert…	pycrowdtangle	2022-07-22T15:15:00Z	2022-07-29T05:45:36.692082Z
pysec-2022-241		The eziod package in PyPI before v0.0.1 included a code execution backdoor inserted by a …	eziod	2022-07-22T15:15:00Z	2022-07-29T05:45:35.868408Z
pysec-2022-236		The Apache Spark UI offers the possibility to enable ACLs via the configuration option sp…	pyspark	2022-07-18T07:15:00Z	2022-07-25T14:38:46.692270Z
pysec-2022-235		WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles uploa…	octobot	2022-07-16T17:15:00Z	2022-07-21T08:44:55.990435Z
pysec-2022-43143	6.5 (3.1)	OpenZeppelin Contracts for Cairo is a library for contract development written in Cairo f…	openzeppelin-cairo-contracts-test	2022-07-15T18:15:00Z	2024-11-21T14:22:57.304802Z
pysec-2022-238		This affects the package codecov before 2.0.16. The vulnerability occurs due to not sanit…	codecov	2022-07-13T12:15:00Z	2022-07-26T13:13:30.178958Z
pysec-2022-226		The package whoogle-search before 0.7.2 are vulnerable to Cross-site Scripting (XSS) via …	whoogle-search	2022-07-12T15:15:00Z	2022-07-14T05:11:54.875994Z
pysec-2022-225		The ganga-devs/ganga repository before 8.5.10 on GitHub allows absolute path traversal be…	ganga	2022-07-11T01:15:00Z	2022-07-14T05:11:52.325698Z
pysec-2022-223		mat2 (aka metadata anonymisation toolkit) before 0.13.0 allows ../ directory traversal du…	mat2	2022-07-08T18:15:00Z	2022-07-14T05:11:52.948988Z
pysec-2022-233		openssh_key_parser is an open source Python package providing utilities to parse and pack…	openssh-key-parser	2022-07-06T18:15:00Z	2023-05-25T05:07:00Z
pysec-2022-230		NULL Pointer Dereference allows attackers to cause a denial of service (or application cr…	lxml	2022-07-05T10:15:00Z	2023-05-25T05:07:00Z
pysec-2022-213		An issue was discovered in Django 3.2 before 3.2.14 and 4.0 before 4.0.6. The Trunc() and…	django	2022-07-04T16:15:00Z	2022-07-04T18:45:03.823587Z

ID	Description	Updated

ID	Description	Published	Updated
mal-2026-2201	Malicious code in privaton-beacon-img-8f3603448690bdde-png (PyPI)	2026-03-24T14:02:57Z	2026-03-24T14:02:57Z
mal-2026-2137	Malicious code in @one-site/europcar (npm)	2026-03-24T13:40:41Z	2026-03-31T03:12:00Z
mal-2026-2129	Malicious code in express-session-validator (npm)	2026-03-24T13:31:41Z	2026-03-31T03:12:01Z
mal-2026-2128	Malicious code in express-session-vailidator (npm)	2026-03-24T13:31:41Z	2026-03-31T03:12:01Z
mal-2026-2132	Malicious code in sbx-mask (npm)	2026-03-24T13:09:03Z	2026-03-31T03:12:04Z
mal-2026-2136	Malicious code in yelp-react-component-rating (npm)	2026-03-24T12:48:28Z	2026-03-31T03:12:05Z
mal-2026-2130	Malicious code in fancode-web-app (npm)	2026-03-24T12:48:28Z	2026-04-16T15:42:08Z
mal-2026-2127	Malicious code in agoda-test-poc (npm)	2026-03-24T12:48:28Z	2026-03-31T03:12:00Z
mal-2026-2126	Malicious code in agoda-dep-confusion (npm)	2026-03-24T12:48:28Z	2026-03-31T03:12:00Z
mal-2026-2135	Malicious code in yelp-react-component-photo-upload (npm)	2026-03-24T12:48:27Z	2026-03-31T03:12:05Z
mal-2026-2134	Malicious code in yelp-biz-action-constants-js-generated (npm)	2026-03-24T12:48:27Z	2026-03-31T03:12:05Z
mal-2026-2133	Malicious code in server-fpti (npm)	2026-03-24T12:43:13Z	2026-03-31T03:12:04Z
mal-2026-2131	Malicious code in nemo-fpti (npm)	2026-03-24T12:43:13Z	2026-03-31T03:12:03Z
mal-2026-2144	Malicious code in litellm (PyPI)	2026-03-24T11:15:14Z	2026-03-26T09:53:17Z
mal-2026-2125	Malicious code in customerdigital-ui-components-lib (npm)	2026-03-24T09:49:28Z	2026-03-31T03:12:01Z
mal-2026-2412	Malicious code in @wame/ngx-frf-utilities (npm)	2026-03-24T09:08:41Z	2026-04-07T14:41:20Z
mal-2026-2411	Malicious code in @wame/ngx-adfs (npm)	2026-03-24T09:08:34Z	2026-04-07T14:41:20Z
mal-2026-2418	Malicious code in tombac-chronos (npm)	2026-03-24T09:08:22Z	2026-04-07T14:41:25Z
mal-2026-2410	Malicious code in @the-coca-cola-company/ngps-global-common-utils (npm)	2026-03-24T09:07:58Z	2026-04-16T15:42:07Z
mal-2026-2409	Malicious code in @phonos/types (npm)	2026-03-24T09:07:37Z	2026-04-07T14:41:20Z
mal-2026-2417	Malicious code in oc-navbar-module-client (npm)	2026-03-24T09:07:11Z	2026-04-07T14:41:23Z
mal-2026-2416	Malicious code in oc-ccp-module-client (npm)	2026-03-24T09:06:39Z	2026-04-07T14:41:23Z
mal-2026-2415	Malicious code in oc-aa-module-client (npm)	2026-03-24T09:06:03Z	2026-04-07T14:41:23Z
mal-2026-2414	Malicious code in ftapi-core (npm)	2026-03-24T09:05:38Z	2026-04-07T14:41:22Z
mal-2026-2223	Malicious code in cr-static-shared-components (npm)	2026-03-24T09:05:26Z	2026-04-16T15:42:08Z
mal-2026-2408	Malicious code in @cloudsop/hmoment (npm)	2026-03-24T09:03:56Z	2026-04-07T14:41:19Z
mal-2026-2407	Malicious code in @ceeferenderer/itg-renderer-sdk (npm)	2026-03-24T09:03:48Z	2026-04-07T14:41:19Z
mal-2026-2406	Malicious code in @ceeferenderer/fe-renderer-sdk (npm)	2026-03-24T09:03:41Z	2026-04-07T14:41:19Z
mal-2026-2413	Malicious code in cclr-component-resources (npm)	2026-03-24T09:03:35Z	2026-04-07T14:41:20Z
mal-2026-2124	Malicious code in mgrcfg (PyPI)	2026-03-24T04:31:48Z	2026-03-24T05:53:36Z

ID	Description	Published	Updated

ID	Description	Published	Updated
wid-sec-w-2025-2467	Samsung Exynos: Mehrere Schwachstellen	2025-11-02T23:00:00.000+00:00	2025-11-05T23:00:00.000+00:00
wid-sec-w-2025-2466	QEMU e1000 Network Devices: Schwachstelle ermöglicht Denial of Service	2025-11-02T23:00:00.000+00:00	2026-03-04T23:00:00.000+00:00
wid-sec-w-2025-2465	IBM InfoSphere Information Server (Axios): Schwachstelle ermöglicht Denial of Service	2025-11-02T23:00:00.000+00:00	2025-11-02T23:00:00.000+00:00
wid-sec-w-2025-2464	OpenSMTP: Schwachstelle ermöglicht Denial of Service	2025-11-02T23:00:00.000+00:00	2025-11-20T23:00:00.000+00:00
wid-sec-w-2025-2463	Mattermost Server: Mehrere Schwachstellen	2025-11-02T23:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2462	Microsoft Edge: Schwachstelle ermöglicht Codeausführung	2025-11-02T23:00:00.000+00:00	2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2461	Mehrere ESET Produkte: Schwachstelle ermöglicht Denial of Service	2025-11-02T23:00:00.000+00:00	2025-11-02T23:00:00.000+00:00
wid-sec-w-2025-2460	SonicWall SMA: Schwachstelle ermöglicht Offenlegung von Informationen	2025-10-30T23:00:00.000+00:00	2025-11-02T23:00:00.000+00:00
wid-sec-w-2025-2459	Nagios Enterprises Nagios XI: Mehrere Schwachstellen	2025-10-30T23:00:00.000+00:00	2025-10-30T23:00:00.000+00:00
wid-sec-w-2025-2458	IBM Tivoli Monitoring: Mehrere Schwachstellen	2025-10-30T23:00:00.000+00:00	2025-10-30T23:00:00.000+00:00
wid-sec-w-2025-2457	Dell EMC Unity: Mehrere Schwachstellen	2025-10-30T23:00:00.000+00:00	2025-10-30T23:00:00.000+00:00
wid-sec-w-2025-2456	Jabra Direct: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-10-30T23:00:00.000+00:00	2025-10-30T23:00:00.000+00:00
wid-sec-w-2025-2455	Liferay Portal: Mehrere Schwachstellen	2025-10-30T23:00:00.000+00:00	2025-10-30T23:00:00.000+00:00
wid-sec-w-2025-2454	Netgate pfSense (Suricata und Snort): Schwachstelle ermöglicht Codeausführung.	2025-10-30T23:00:00.000+00:00	2025-11-06T23:00:00.000+00:00
wid-sec-w-2025-2453	Chromium-basierte Browser: Schwachstelle ermöglicht Denial of Service	2025-10-30T23:00:00.000+00:00	2025-10-30T23:00:00.000+00:00
wid-sec-w-2025-2452	IBM InfoSphere Information Server: Schwachstelle ermöglicht Privilegieneskalation	2025-10-30T23:00:00.000+00:00	2025-11-02T23:00:00.000+00:00
wid-sec-w-2025-2451	IBM Sterling Connect:Direct: Schwachstelle ermöglicht Privilegieneskalation	2025-10-30T23:00:00.000+00:00	2025-10-30T23:00:00.000+00:00
wid-sec-w-2025-2450	Linux Kernel: Mehrere Schwachstellen	2025-10-29T23:00:00.000+00:00	2026-03-30T22:00:00.000+00:00
wid-sec-w-2025-2449	GIMP: Schwachstelle ermöglicht Codeausführung	2025-10-29T23:00:00.000+00:00	2026-03-04T23:00:00.000+00:00
wid-sec-w-2025-2448	NetApp ActiveIQ Unified Manager: Schwachstelle ermöglicht Manipulation von Dateien und Offenlegung von Informationen	2025-10-29T23:00:00.000+00:00	2025-10-29T23:00:00.000+00:00
wid-sec-w-2025-2447	Drupal: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-10-29T23:00:00.000+00:00	2025-10-29T23:00:00.000+00:00
wid-sec-w-2025-2446	Liferay Portal und DXP: Schwachstelle ermöglicht Offenlegung von Informationen	2025-10-29T23:00:00.000+00:00	2025-10-29T23:00:00.000+00:00
wid-sec-w-2025-2445	Google Chrome/Microsoft Edge: Mehrere Schwachstellen	2025-10-29T23:00:00.000+00:00	2025-11-18T23:00:00.000+00:00
wid-sec-w-2025-2444	Dell Secure Connect Gateway: Mehrere Schwachstellen	2025-10-29T23:00:00.000+00:00	2025-10-30T23:00:00.000+00:00
wid-sec-w-2025-2443	Jenkins Plugins: Mehrere Schwachstellen	2025-10-29T23:00:00.000+00:00	2025-10-29T23:00:00.000+00:00
wid-sec-w-2025-2442	Progress Software MOVEit: Schwachstelle ermöglicht Denial of Service	2025-10-29T23:00:00.000+00:00	2025-10-29T23:00:00.000+00:00
wid-sec-w-2025-2441	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-10-29T23:00:00.000+00:00	2026-03-05T23:00:00.000+00:00
wid-sec-w-2025-2439	Dovecot IMAP Server: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen und Offenlegung von Informationen	2025-10-28T23:00:00.000+00:00	2025-12-10T23:00:00.000+00:00
wid-sec-w-2025-2438	Keycloak: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-10-28T23:00:00.000+00:00	2025-11-13T23:00:00.000+00:00
wid-sec-w-2025-2437	Mozilla Firefox: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-10-28T23:00:00.000+00:00	2025-10-28T23:00:00.000+00:00

ID	Description	Published	Updated
icsa-24-205-02	Hitachi Energy AFS/AFR Series Products	2024-07-23T06:00:00.000000Z	2024-07-23T06:00:00.000000Z
icsa-24-205-01	National Instruments IO Trace	2024-07-23T06:00:00.000000Z	2024-07-23T06:00:00.000000Z
icsa-24-207-01	Siemens SICAM Products	2024-07-22T00:00:00.000000Z	2024-07-22T00:00:00.000000Z
va-24-201-01	Adminer and AdminerEvo Multiple Vulnerabilities	2024-07-19T16:00:00Z	2024-11-14T17:00:00Z
icsma-24-200-01	Philips Vue PACS (Update A)	2024-07-18T06:00:00.000000Z	2024-11-21T07:00:00.000000Z
icsa-24-200-02	Subnet Solutions PowerSYSTEM Center	2024-07-18T06:00:00.000000Z	2024-07-18T06:00:00.000000Z
icsa-24-200-01	Mitsubishi Electric MELSOFT MaiLab and MELSOFT VIXIO (Update A)	2024-07-18T06:00:00.000000Z	2025-05-15T06:00:00.000000Z
icsa-24-198-01	Rockwell Automation Pavilion 8	2024-07-16T06:00:00.000000Z	2024-07-16T06:00:00.000000Z
icsa-24-193-20	HMS Industrial Networks Anybus-CompactCom 30	2024-07-11T06:00:00.000000Z	2024-07-11T06:00:00.000000Z
icsa-24-193-19	Rockwell Automation FactoryTalk System Services and Policy Manager	2024-07-11T06:00:00.000000Z	2024-07-11T06:00:00.000000Z
icsa-24-193-18	Rockwell Automation ThinManager ThinServer	2024-07-11T06:00:00.000000Z	2024-07-11T06:00:00.000000Z
icsa-24-191-05	Johnson Controls Inc. Software House C●CURE 9000 (Update B)	2024-07-09T06:00:00.000000Z	2025-07-17T06:00:00.000000Z
icsa-24-191-04	Johnson Controls Inc. Software House C●CURE 9000	2024-07-09T06:00:00.000000Z	2024-07-09T06:00:00.000000Z
icsa-24-191-03	Johnson Controls Illustra Pro Gen 4	2024-07-09T06:00:00.000000Z	2024-07-09T06:00:00.000000Z
icsa-24-191-02	Mitsubishi Electric MELIPC Series MI5122-VW	2024-07-09T06:00:00.000000Z	2024-07-09T06:00:00.000000Z
icsa-24-191-01	Delta Electronics CNCSoft-G2 (Update A)	2024-07-09T06:00:00.000000Z	2025-02-18T07:00:00.000000Z
icsa-25-112-03	Schneider Electric Wiser Home Controller WHC-5918A	2024-07-09T00:00:00.000000Z	2026-01-30T07:00:00.000000Z
icsa-24-345-03	Schneider Electric FoxRTU Station	2024-07-09T00:00:00.000000Z	2024-07-09T00:00:00.000000Z
icsa-24-345-02	Schneider Electric EcoStruxure Foxboro DCS Core Control Services	2024-07-09T00:00:00.000000Z	2024-07-09T00:00:00.000000Z
icsa-24-193-17	Siemens SIMATIC STEP 7 (TIA Portal)	2024-07-09T00:00:00.000000Z	2024-07-09T00:00:00.000000Z
icsa-24-193-16	Siemens SIMATIC WinCC	2024-07-09T00:00:00.000000Z	2024-11-12T00:00:00.000000Z
icsa-24-193-15	Siemens SINEMA Remote Connect Server	2024-07-09T00:00:00.000000Z	2024-07-09T00:00:00.000000Z
icsa-24-193-14	Siemens SIPROTEC	2024-07-09T00:00:00.000000Z	2025-11-11T00:00:00.000000Z
icsa-24-193-13	Siemens TIA Portal, SIMATIC, and SIRIUS	2024-07-09T00:00:00.000000Z	2024-07-09T00:00:00.000000Z
icsa-24-193-12	Siemens TIA Portal and SIMATIC STEP 7	2024-07-09T00:00:00.000000Z	2024-07-09T00:00:00.000000Z
icsa-24-193-11	Siemens RUGGEDCOM APE 1808	2024-07-09T00:00:00.000000Z	2026-01-14T22:00:09.701376Z
icsa-24-193-10	Siemens JT Open and PLM XML SDK	2024-07-09T00:00:00.000000Z	2024-07-09T00:00:00.000000Z
icsa-24-193-09	Siemens SINEMA Remote Connect Server	2024-07-09T00:00:00.000000Z	2024-07-09T00:00:00.000000Z
icsa-24-193-08	Siemens Mendix Encryption Module	2024-07-09T00:00:00.000000Z	2024-07-09T00:00:00.000000Z
icsa-24-193-07	Siemens SIMATIC and SIMIT	2024-07-09T00:00:00.000000Z	2025-05-06T06:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-snort-dos-9d3hjluj	Multiple Cisco Products Snort Modbus Denial of Service Vulnerability	2022-01-19T16:00:00+00:00	2022-04-26T19:41:55+00:00
cisco-sa-rcm-vuls-7cs3nuq	Cisco Redundancy Configuration Manager for Cisco StarOS Software Multiple Vulnerabilities	2022-01-19T16:00:00+00:00	2022-01-19T16:00:00+00:00
cisco-sa-confdcli-cmdinj-wybqdssh	ConfD CLI Command Injection Vulnerability	2022-01-19T16:00:00+00:00	2022-01-19T16:00:00+00:00
cisco-sa-cli-cmdinj-4mttwzpb	Multiple Cisco Products CLI Command Injection Vulnerability	2022-01-19T16:00:00+00:00	2022-01-19T16:00:00+00:00
cisco-sa-tetr-cmd-injc-skrwgo	Cisco Tetration Command Injection Vulnerability	2022-01-12T16:00:00+00:00	2022-01-31T17:21:31+00:00
cisco-sa-sna-xss-nxoxdhrq	Cisco Secure Network Analytics Cross-Site Scripting Vulnerability	2022-01-12T16:00:00+00:00	2022-01-12T16:00:00+00:00
cisco-sa-prime-reg-xss-zloz8pfb	Cisco Prime Access Registrar Appliance Cross-Site Scripting Vulnerability	2022-01-12T16:00:00+00:00	2022-01-12T16:00:00+00:00
cisco-sa-pi-epnm-path-trav-zws324yn	Cisco Prime Infrastructure and Evolved Programmable Network Manager Vulnerabilities	2022-01-12T16:00:00+00:00	2022-01-12T16:00:00+00:00
cisco-sa-ip-phone-info-disc-frdjfoxa	Cisco IP Phones Information Disclosure Vulnerability	2022-01-12T16:00:00+00:00	2022-01-12T16:00:00+00:00
cisco-sa-ece-multivulns-kbk2yvhr	Cisco Enterprise Chat and Email Vulnerabilities	2022-01-12T16:00:00+00:00	2022-01-12T16:00:00+00:00
cisco-sa-csm-mult-xss-7hmokqtt	Cisco Security Manager Cross-Site Scripting Vulnerabilities	2022-01-12T16:00:00+00:00	2022-01-12T16:00:00+00:00
cisco-sa-ccmp-priv-esc-jzhtflm4	Cisco Unified Contact Center Management Portal and Unified Contact Center Domain Manager Privilege Escalation Vulnerability	2022-01-12T16:00:00+00:00	2022-01-12T16:00:00+00:00
cisco-sa-asdm-logging-jnloy422	Cisco Adaptive Security Device Manager Information Disclosure Vulnerability	2022-01-12T16:00:00+00:00	2022-06-29T21:50:47+00:00
cisco-sa-apache-log4j-qruknebd	Vulnerabilities in Apache Log4j Library Affecting Cisco Products: December 2021	2021-12-10T18:45:00+00:00	2022-01-31T21:16:10+00:00
cisco-sa-cspc-xss-kjrnbm3p	Cisco Common Services Platform Collector Stored Cross-Site Scripting Vulnerability	2021-11-17T16:00:00+00:00	2021-11-18T22:48:14+00:00
cisco-sa-cspc-sqli-unvptn5	Cisco Common Services Platform Collector SQL Injection Vulnerability	2021-11-17T16:00:00+00:00	2021-11-18T22:48:13+00:00
cisco-sa-cspc-ilr-8qmw8y8x	Cisco Common Services Platform Collector Improper Logging Restriction Vulnerability	2021-11-17T16:00:00+00:00	2021-11-18T22:48:15+00:00
cisco-sa-webex-activation-3sdnfxcy	Cisco Webex Meetings Email Content Injection Vulnerability	2021-11-03T16:00:00+00:00	2021-11-03T16:00:00+00:00
cisco-sa-vmesh-openred-agnrmf5	Cisco Webex Video Mesh Arbitrary Site Redirection Vulnerability	2021-11-03T16:00:00+00:00	2021-11-03T16:00:00+00:00
cisco-sa-videomesh-xss-qjm2bdqf	Cisco Webex Video Mesh Cross-Site Scripting Vulnerability	2021-11-03T16:00:00+00:00	2021-11-03T16:00:00+00:00
cisco-sa-umbrella-user-enum-s7xfjwde	Cisco Umbrella Email Enumeration Vulnerability	2021-11-03T16:00:00+00:00	2021-11-03T16:00:00+00:00
cisco-sa-ucm-csrf-xrtkdu3h	Cisco Unified Communications Products Cross-Site Request Forgery Vulnerability	2021-11-03T16:00:00+00:00	2021-11-03T16:00:00+00:00
cisco-sa-smb-switches-web-dos-xmyffkt8	Cisco Small Business 200, 300, and 500 Series Switches Web-Based Management Interface Denial of Service Vulnerability	2021-11-03T16:00:00+00:00	2021-11-03T16:00:00+00:00
cisco-sa-smb-switches-tokens-uzwpr4e5	Cisco Small Business Series Switches Session Credentials Replay Vulnerability	2021-11-03T16:00:00+00:00	2021-11-03T16:00:00+00:00
cisco-sa-sbrv-cmdinjection-z5cwfdk	Cisco Small Business RV Series Routers Command Injection Vulnerability	2021-11-03T16:00:00+00:00	2021-11-03T16:00:00+00:00
cisco-sa-pi-epnm-xss-u2jk537j	Cisco Prime Infrastructure and Evolved Programmable Network Manager Stored Cross-Site Scripting Vulnerability	2021-11-03T16:00:00+00:00	2021-11-03T16:00:00+00:00
cisco-sa-esa-dos-jom9etfo	Cisco Email Security Appliance Denial of Service Vulnerability	2021-11-03T16:00:00+00:00	2021-11-03T16:00:00+00:00
cisco-sa-cucm-path-trav-dkcvktvo	Cisco Unified Communications Products Path Traversal Vulnerability	2021-11-03T16:00:00+00:00	2021-11-03T16:00:00+00:00
cisco-sa-cspc-info-disc-km3bgvl	Cisco Common Services Platform Collector Information Disclosure Vulnerability	2021-11-03T16:00:00+00:00	2022-01-06T17:54:37+00:00
cisco-sa-cps-static-key-jms92hnv	Cisco Policy Suite Static SSH Keys Vulnerability	2021-11-03T16:00:00+00:00	2021-11-04T17:32:39+00:00

ID	Description	Published	Updated
msrc_cve-2026-27969	Vitess users with backup storage access can write to arbitrary file paths on restore	2026-02-02T00:00:00.000Z	2026-03-11T14:35:56.000Z
msrc_cve-2026-27965	Vitess users with backup storage access can gain unauthorized access to production deployment environments	2026-02-02T00:00:00.000Z	2026-03-11T14:36:03.000Z
msrc_cve-2026-27623	Valkey has Pre-Authentication DOS from malformed RESP request	2026-02-02T00:00:00.000Z	2026-03-25T01:05:42.000Z
msrc_cve-2026-27571	nats-server websockets are vulnerable to pre-auth memory DoS	2026-02-02T00:00:00.000Z	2026-02-28T01:39:54.000Z
msrc_cve-2026-2739	This affects versions of the package bn.js before 5.2.3. Calling maskn(0) on any BN instance corrupts the internal state, causing toString(), divmod(), and other methods to enter an infinite loop, hanging the process indefinitely.	2026-02-02T00:00:00.000Z	2026-04-02T01:37:20.000Z
msrc_cve-2026-27211	Cloud Hypervisor: Host File Exfiltration via QCOW Backing File Abuse	2026-02-02T00:00:00.000Z	2026-02-26T14:36:00.000Z
msrc_cve-2026-27199	Werkzeug safe_join() allows Windows special device names	2026-02-02T00:00:00.000Z	2026-03-03T01:38:05.000Z
msrc_cve-2026-27171	zlib before 1.3.2 allows CPU consumption via crc32_combine64 and crc32_combine_gen64 because x2nmodp can do right shifts within a loop that has no termination condition.	2026-02-02T00:00:00.000Z	2026-04-15T01:40:55.000Z
msrc_cve-2026-27141	Sending certain HTTP/2 frames can cause a server to panic in golang.org/x/net	2026-02-02T00:00:00.000Z	2026-03-14T01:36:22.000Z
msrc_cve-2026-26960	node-tar has Arbitrary File Read/Write via Hardlink Target Escape Through Symlink Chain in Extraction	2026-02-02T00:00:00.000Z	2026-02-25T01:38:11.000Z
msrc_cve-2026-25541	Bytes is vulnerable to integer overflow in BytesMut::reserve	2026-02-02T00:00:00.000Z	2026-03-31T14:40:06.000Z
msrc_cve-2026-2492	TensorFlow HDF5 Library Uncontrolled Search Path Element Local Privilege Escalation Vulnerability	2026-02-02T00:00:00.000Z	2026-02-27T14:37:50.000Z
msrc_cve-2026-24834	Kata Container to Guest micro VM privilege escalation	2026-02-02T00:00:00.000Z	2026-02-24T14:04:20.000Z
msrc_cve-2026-2443	Libsoup: out-of-bounds read in libsoup handle_partial_get() leading to heap information disclosure	2026-02-02T00:00:00.000Z	2026-03-31T15:14:17.000Z
msrc_cve-2026-23230	smb: client: split cached_fid bitfields to avoid shared-byte RMW races	2026-02-02T00:00:00.000Z	2026-02-21T04:28:20.000Z
msrc_cve-2026-23229	crypto: virtio - Add spinlock protection with virtqueue notification	2026-02-02T00:00:00.000Z	2026-03-31T01:40:25.000Z
msrc_cve-2026-23228	smb: server: fix leak of active_num_conn in ksmbd_tcp_new_connection()	2026-02-02T00:00:00.000Z	2026-03-31T01:40:18.000Z
msrc_cve-2026-23227	drm/exynos: vidi: use ctx->lock to protect struct vidi_context member variables related to memory alloc/free	2026-02-02T00:00:00.000Z	2026-03-27T01:41:30.000Z
msrc_cve-2026-23226	ksmbd: add chann_lock to protect ksmbd_chann_list xarray	2026-02-02T00:00:00.000Z	2026-02-21T04:29:02.000Z
msrc_cve-2026-23225	sched/mmcid: Don't assume CID is CPU owned on mode switch	2026-02-02T00:00:00.000Z	2026-02-26T01:37:47.000Z
msrc_cve-2026-23224	erofs: fix UAF issue for file-backed mounts w/ directio option	2026-02-02T00:00:00.000Z	2026-03-03T01:37:50.000Z
msrc_cve-2026-23223	xfs: fix UAF in xchk_btree_check_block_owner	2026-02-02T00:00:00.000Z	2026-02-26T01:37:34.000Z
msrc_cve-2026-23222	crypto: omap - Allocate OMAP_CRYPTO_FORCE_COPY scatterlists correctly	2026-02-02T00:00:00.000Z	2026-03-31T01:40:12.000Z
msrc_cve-2026-23221	bus: fsl-mc: fix use-after-free in driver_override_show()	2026-02-02T00:00:00.000Z	2026-03-31T01:37:29.000Z
msrc_cve-2026-23220	ksmbd: fix infinite loop caused by next_smb2_rcv_hdr_off reset in error paths	2026-02-02T00:00:00.000Z	2026-03-31T15:03:51.000Z
msrc_cve-2026-23217	riscv: trace: fix snapshot deadlock with sbi ecall	2026-02-02T00:00:00.000Z	2026-03-03T01:37:01.000Z
msrc_cve-2026-23216	scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count()	2026-02-02T00:00:00.000Z	2026-02-28T01:38:18.000Z
msrc_cve-2026-23215	x86/vmware: Fix hypercall clobbers	2026-02-02T00:00:00.000Z	2026-02-21T04:27:00.000Z
msrc_cve-2026-23214	btrfs: reject new transactions if the fs is fully read-only	2026-02-02T00:00:00.000Z	2026-03-31T15:13:10.000Z
msrc_cve-2026-23213	drm/amd/pm: Disable MMIO access during SMU Mode 1 reset	2026-02-02T00:00:00.000Z	2026-03-31T15:12:00.000Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
opensuse-su-2025:15748-1	python314-3.14.0-3.1 on GA media	2025-11-19T00:00:00Z	2025-11-19T00:00:00Z
opensuse-su-2025:15747-1	libeverest-3.6.5-1.1 on GA media	2025-11-19T00:00:00Z	2025-11-19T00:00:00Z
opensuse-su-2025:15746-1	libvirt-11.9.0-2.1 on GA media	2025-11-19T00:00:00Z	2025-11-19T00:00:00Z
opensuse-su-2025:15745-1	chromedriver-142.0.7444.175-1.1 on GA media	2025-11-19T00:00:00Z	2025-11-19T00:00:00Z
opensuse-su-2025:15744-1	amazon-ssm-agent-3.3.3270.0-2.1 on GA media	2025-11-19T00:00:00Z	2025-11-19T00:00:00Z
opensuse-su-2025:20048-1	Security update for samba	2025-11-18T23:14:26Z	2025-11-18T23:14:26Z
opensuse-su-2025:15743-1	sbctl-0.18-2.1 on GA media	2025-11-18T00:00:00Z	2025-11-18T00:00:00Z
opensuse-su-2025:15742-1	python312-3.12.12-2.1 on GA media	2025-11-18T00:00:00Z	2025-11-18T00:00:00Z
opensuse-su-2025:15741-1	libIex-3_4-33-3.4.3-1.1 on GA media	2025-11-18T00:00:00Z	2025-11-18T00:00:00Z
opensuse-su-2025:15740-1	erlang27-27.1.3-1.1 on GA media	2025-11-18T00:00:00Z	2025-11-18T00:00:00Z
opensuse-su-2025:15739-1	itextpdf-5.5.13.4-1.1 on GA media	2025-11-17T00:00:00Z	2025-11-17T00:00:00Z
opensuse-su-2025:15738-1	MozillaThunderbird-140.5.0-1.1 on GA media	2025-11-17T00:00:00Z	2025-11-17T00:00:00Z
opensuse-su-2025:15737-1	teleport-17.7.10-1.1 on GA media	2025-11-14T00:00:00Z	2025-11-14T00:00:00Z
opensuse-su-2025:15736-1	chromedriver-142.0.7444.162-1.1 on GA media	2025-11-14T00:00:00Z	2025-11-14T00:00:00Z
opensuse-su-2025:15735-1	MozillaFirefox-145.0-1.1 on GA media	2025-11-14T00:00:00Z	2025-11-14T00:00:00Z
opensuse-su-2025:15734-1	starboard-0.15.28-1.1 on GA media	2025-11-13T00:00:00Z	2025-11-13T00:00:00Z
opensuse-su-2025:15733-1	weblate-5.14.3-1.1 on GA media	2025-11-12T00:00:00Z	2025-11-12T00:00:00Z
opensuse-su-2025:15732-1	python-Scrapy-doc-2.13.3-2.1 on GA media	2025-11-12T00:00:00Z	2025-11-12T00:00:00Z
opensuse-su-2025:15731-1	python311-Brotli-1.2.0-1.1 on GA media	2025-11-12T00:00:00Z	2025-11-12T00:00:00Z
opensuse-su-2025:15730-1	helm-3.19.1-1.1 on GA media	2025-11-12T00:00:00Z	2025-11-12T00:00:00Z
opensuse-su-2025:15729-1	go-sendxmpp-0.15.1-1.1 on GA media	2025-11-12T00:00:00Z	2025-11-12T00:00:00Z
opensuse-su-2025:15728-1	tcpreplay-4.5.2-1.1 on GA media	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
opensuse-su-2025:15727-1	python311-pdfminer.six-20251107-1.1 on GA media	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
opensuse-su-2025:15726-1	containerd-1.7.29-1.1 on GA media	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
opensuse-su-2025:15725-1	binutils-2.45-2.1 on GA media	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
opensuse-su-2025:20037-1	Security update for chromium	2025-11-10T17:22:06Z	2025-11-10T17:22:06Z
opensuse-su-2025:20035-1	Security update for micropython	2025-11-10T15:52:16Z	2025-11-10T15:52:16Z
opensuse-su-2025:15724-1	trivy-0.67.2-1.1 on GA media	2025-11-10T00:00:00Z	2025-11-10T00:00:00Z
opensuse-su-2025:15723-1	regclient-0.10.0-1.1 on GA media	2025-11-10T00:00:00Z	2025-11-10T00:00:00Z
opensuse-su-2025:15722-1	hauler-1.3.1-1.1 on GA media	2025-11-10T00:00:00Z	2025-11-10T00:00:00Z

ID	Description	Published	Updated

ID	Description	Published	Updated
rhsa-2026:2671	Red Hat Security Advisory: OpenShift Container Platform 4.17.49 bug fix and security update	2026-02-18T21:21:57+00:00	2026-04-13T20:14:24+00:00
rhsa-2026:2633	Red Hat Security Advisory: OpenShift Container Platform 4.19.24 bug fix and security update	2026-02-18T21:01:52+00:00	2026-04-13T20:14:22+00:00
rhsa-2026:2969	Red Hat Security Advisory: gimp security update	2026-02-18T18:35:12+00:00	2026-03-18T03:18:37+00:00
rhsa-2026:2954	Red Hat Security Advisory: munge security update	2026-02-18T15:07:41+00:00	2026-03-18T03:18:41+00:00
rhsa-2026:2953	Red Hat Security Advisory: gimp security update	2026-02-18T14:58:26+00:00	2026-03-18T03:18:36+00:00
rhsa-2026:2952	Red Hat Security Advisory: freerdp security update	2026-02-18T14:36:31+00:00	2026-03-18T03:18:42+00:00
rhsa-2026:2950	Red Hat Security Advisory: gimp security update	2026-02-18T14:36:01+00:00	2026-03-18T03:18:36+00:00
rhsa-2026:2949	Red Hat Security Advisory: munge security update	2026-02-18T14:25:01+00:00	2026-03-18T03:18:40+00:00
rhsa-2026:2951	Red Hat Security Advisory: Red Hat OpenShift API for Data Protection	2026-02-18T14:15:26+00:00	2026-04-14T09:46:21+00:00
rhsa-2026:2930	Red Hat Security Advisory: gimp security update	2026-02-18T13:40:01+00:00	2026-03-18T03:18:36+00:00
rhsa-2026:2934	Red Hat Security Advisory: munge security update	2026-02-18T13:25:41+00:00	2026-03-18T03:18:45+00:00
rhsa-2026:2659	Red Hat Security Advisory: OpenShift Container Platform 4.16.57 bug fix and security update	2026-02-18T13:07:30+00:00	2026-04-13T20:14:23+00:00
rhsa-2026:2923	Red Hat Security Advisory: munge security update	2026-02-18T13:05:25+00:00	2026-03-18T03:18:41+00:00
rhsa-2026:2920	Red Hat Security Advisory: grafana security update	2026-02-18T12:55:46+00:00	2026-04-14T09:46:20+00:00
rhsa-2026:2927	Red Hat Security Advisory: RHTAS 1.2.2 - Red Hat Trusted Artifact Signer Release	2026-02-18T12:52:55+00:00	2026-04-14T09:46:21+00:00
rhsa-2026:2926	Red Hat Security Advisory: RHTAS 1.2.2 - Red Hat Trusted Artifact Signer Release	2026-02-18T12:44:41+00:00	2026-04-14T09:46:20+00:00
rhsa-2026:2925	Red Hat Security Advisory: RHTAS 1.2.2 - Red Hat Trusted Artifact Signer Release	2026-02-18T12:44:08+00:00	2026-04-14T02:03:47+00:00
rhsa-2026:2924	Red Hat Security Advisory: RHTAS 1.2.2 - Red Hat Trusted Artifact Signer Release	2026-02-18T12:35:32+00:00	2026-04-14T07:58:24+00:00
rhsa-2026:2922	Red Hat Security Advisory: RHTAS 1.2.2 - Red Hat Trusted Artifact Signer Release	2026-02-18T12:26:00+00:00	2026-04-14T09:46:20+00:00
rhsa-2026:2921	Red Hat Security Advisory: RHTAS 1.2.2 - Red Hat Trusted Artifact Signer Release	2026-02-18T12:19:05+00:00	2026-04-14T09:46:20+00:00
rhsa-2026:2919	Red Hat Security Advisory: RHTAS 1.2.2 - Red Hat Trusted Artifact Signer Release	2026-02-18T12:11:20+00:00	2026-04-12T14:07:44+00:00
rhsa-2026:2918	Red Hat Security Advisory: munge security update	2026-02-18T12:09:45+00:00	2026-03-18T03:18:40+00:00
rhsa-2026:2914	Red Hat Security Advisory: grafana security update	2026-02-18T11:31:17+00:00	2026-04-14T09:46:19+00:00
rhsa-2026:2658	Red Hat Security Advisory: OpenShift Container Platform 4.16.57 packages and security update	2026-02-18T10:30:25+00:00	2026-04-10T21:19:23+00:00
rhsa-2026:2911	Red Hat Security Advisory: python-s3transfer security update	2026-02-18T09:55:05+00:00	2026-04-12T14:07:43+00:00
rhsa-2026:2661	Red Hat Security Advisory: OpenShift Container Platform 4.16.57 bug fix and security update	2026-02-18T09:27:53+00:00	2026-04-13T16:00:06+00:00
rhsa-2026:2662	Red Hat Security Advisory: OpenShift Container Platform 4.16.57 security and extras update	2026-02-18T08:54:32+00:00	2026-04-10T21:19:25+00:00
rhsa-2026:2672	Red Hat Security Advisory: OpenShift Container Platform 4.17.49 bug fix and security update	2026-02-18T08:43:43+00:00	2026-04-14T09:16:54+00:00
rhsa-2026:2899	Red Hat Security Advisory: nodejs22 security update	2026-02-18T08:42:09+00:00	2026-04-13T20:02:47+00:00
rhsa-2026:2651	Red Hat Security Advisory: OpenShift Container Platform 4.19.24 bug fix and security update	2026-02-18T08:42:08+00:00	2026-04-13T16:00:06+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
suse-su-2026:20629-1	Security update for go1.24-openssl	2026-03-03T17:51:15Z	2026-03-03T17:51:15Z
suse-su-2026:20642-1	Security update for expat	2026-03-03T16:04:58Z	2026-03-03T16:04:58Z
suse-su-2026:20641-1	Security update for podman	2026-03-03T16:04:58Z	2026-03-03T16:04:58Z
suse-su-2026:20627-1	Security update for expat	2026-03-03T16:04:58Z	2026-03-03T16:04:58Z
suse-su-2026:20626-1	Security update for podman	2026-03-03T16:04:58Z	2026-03-03T16:04:58Z
suse-su-2026:0790-1	Security update for go1.25-openssl	2026-03-03T15:52:22Z	2026-03-03T15:52:22Z
suse-su-2026:0789-1	Security update for go1.24-openssl	2026-03-03T15:51:34Z	2026-03-03T15:51:34Z
suse-su-2026:0788-1	Security update for libsoup	2026-03-03T15:15:16Z	2026-03-03T15:15:16Z
suse-su-2026:20650-1	Security update for cockpit-machines	2026-03-03T15:11:38Z	2026-03-03T15:11:38Z
suse-su-2026:20649-1	Security update for libsoup	2026-03-03T15:01:12Z	2026-03-03T15:01:12Z
suse-su-2026:0787-1	Security update for postgresql17	2026-03-03T14:48:34Z	2026-03-03T14:48:34Z
suse-su-2026:0786-1	Security update for postgresql14	2026-03-03T14:47:10Z	2026-03-03T14:47:10Z
suse-su-2026:0785-1	Security update for postgresql18	2026-03-03T14:01:35Z	2026-03-03T14:01:35Z
suse-su-2026:0784-1	Security update for postgresql16	2026-03-03T13:42:32Z	2026-03-03T13:42:32Z
suse-su-2026:0783-1	Security update for zlib	2026-03-03T13:36:20Z	2026-03-03T13:36:20Z
suse-su-2026:0782-1	Security update for libxml2	2026-03-03T13:35:15Z	2026-03-03T13:35:15Z
suse-su-2026:0781-1	Security update for patch	2026-03-03T13:28:08Z	2026-03-03T13:28:08Z
suse-su-2026:0780-1	Security update for tracker-miners	2026-03-03T13:25:57Z	2026-03-03T13:25:57Z
suse-su-2026:0779-1	Security update for libssh	2026-03-03T13:25:08Z	2026-03-03T13:25:08Z
suse-su-2026:0778-1	Security update for libssh	2026-03-03T13:24:29Z	2026-03-03T13:24:29Z
suse-su-2026:0777-1	Security update for cosign	2026-03-03T13:22:27Z	2026-03-03T13:22:27Z
suse-su-2026:0776-1	Security update for evolution-data-server	2026-03-03T13:20:26Z	2026-03-03T13:20:26Z
suse-su-2026:0775-1	Security update for evolution-data-server	2026-03-03T13:19:14Z	2026-03-03T13:19:14Z
suse-su-2026:0774-1	Security update for python	2026-03-03T13:18:14Z	2026-03-03T13:18:14Z
suse-su-2026:0772-1	Security update for docker	2026-03-03T13:14:59Z	2026-03-03T13:14:59Z
suse-su-2026:0771-1	Security update for postgresql15	2026-03-03T13:13:43Z	2026-03-03T13:13:43Z
suse-su-2026:0770-1	Security update for postgresql15	2026-03-03T13:12:48Z	2026-03-03T13:12:48Z
suse-su-2026:0769-1	Security update for postgresql18	2026-03-03T13:11:44Z	2026-03-03T13:11:44Z
suse-su-2026:0768-1	Security update for postgresql14	2026-03-03T13:10:00Z	2026-03-03T13:10:00Z
suse-su-2026:0767-1	Security update for python311	2026-03-03T13:05:43Z	2026-03-03T13:05:43Z

ID	Description	Published	Updated
alsa-2025:10848	Important: cloud-init security update	2025-07-14T00:00:00Z	2025-07-22T13:36:59Z
alsa-2025:10844	Important: cloud-init security update	2025-07-14T00:00:00Z	2025-07-18T06:52:34Z
alsa-2025:10837	Moderate: kernel security update	2025-07-14T00:00:00Z	2025-07-17T08:21:12Z
alsa-2025:10742	Moderate: gnome-remote-desktop security update	2025-07-09T00:00:00Z	2025-07-10T12:50:30Z
alsa-2025:10699	Important: libxml2 security update	2025-07-09T00:00:00Z	2025-07-10T12:52:51Z
alsa-2025:10698	Important: libxml2 security update	2025-07-09T00:00:00Z	2025-07-10T12:55:10Z
alsa-2025:10677	Moderate: golang security update	2025-07-09T00:00:00Z	2025-07-10T21:56:32Z
alsa-2025:10676	Moderate: golang security update	2025-07-09T00:00:00Z	2025-07-10T22:02:04Z
alsa-2025:10672	Moderate: go-toolset:rhel8 security update	2025-07-09T00:00:00Z	2025-07-11T09:05:26Z
alsa-2025:10670	Important: kernel-rt security update	2025-07-09T00:00:00Z	2025-07-10T12:58:15Z
alsa-2025:10669	Important: kernel security update	2025-07-09T00:00:00Z	2025-07-10T13:00:26Z
alsa-2025:10635	Moderate: gnome-remote-desktop security update	2025-07-08T00:00:00Z	2025-07-10T13:02:28Z
alsa-2025:10631	Moderate: gnome-remote-desktop security update	2025-07-08T00:00:00Z	2025-07-10T13:03:23Z
alsa-2025:10630	Important: libxml2 security update	2025-07-08T00:00:00Z	2025-07-10T13:05:05Z
alsa-2025:10618	Moderate: jq security update	2025-07-08T00:00:00Z	2025-07-09T08:08:05Z
alsa-2025:10585	Moderate: jq security update	2025-07-08T00:00:00Z	2025-07-10T13:06:12Z
alsa-2025:10551	Important: container-tools:rhel8 security update	2025-07-08T00:00:00Z	2025-07-09T08:13:25Z
alsa-2025:10550	Important: podman security update	2025-07-08T00:00:00Z	2025-07-09T08:15:09Z
alsa-2025:10549	Important: podman security update	2025-07-08T00:00:00Z	2025-07-09T08:17:13Z
alsa-2025:10407	Moderate: python-setuptools security update	2025-07-07T00:00:00Z	2025-07-08T07:57:20Z
alsa-2025:10379	Important: kernel security update	2025-07-07T00:00:00Z	2025-07-10T13:35:08Z
alsa-2025:10371	Important: kernel security update	2025-07-07T00:00:00Z	2025-07-10T13:39:27Z
alsa-2025:10353	Moderate: socat security update	2025-07-07T00:00:00Z	2025-07-09T08:18:18Z
alsa-2025:10246	Important: thunderbird security update	2025-07-02T00:00:00Z	2025-07-07T07:31:37Z
alsa-2025:10217	Moderate: ruby:3.3 security update	2025-07-02T00:00:00Z	2025-07-03T12:04:43Z
alsa-2025:10196	Important: thunderbird security update	2025-07-02T00:00:00Z	2025-07-03T07:55:59Z
alsa-2025:10195	Important: thunderbird security update	2025-07-02T00:00:00Z	2025-07-03T07:55:03Z
alsa-2025:10189	Important: python3.12 security update	2025-07-02T00:00:00Z	2025-07-02T13:57:56Z
alsa-2025:10148	Important: python3.11 security update	2025-07-01T00:00:00Z	2025-07-02T13:55:59Z
alsa-2025:10140	Important: python3.12 security update	2025-07-01T00:00:00Z	2025-07-03T07:53:50Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
osv-2023-800	Heap-buffer-overflow in XCFImageFormat::loadTileRLE	2023-09-07T14:00:27.693270Z	2026-04-10T14:12:33.285572Z
osv-2023-797	Stack-buffer-overflow in QBuffer::readData	2023-09-06T14:02:36.541753Z	2023-09-10T14:16:24.674920Z
osv-2023-795	Security exception in org.apache.poi.hwpf.converter.AbstractWordConverter.processNoteAnchor	2023-09-06T14:00:41.687301Z	2023-09-06T14:00:41.687553Z
osv-2023-793	Security exception in org.apache.lucene.util.BytesRefBuilder.<init>	2023-09-06T14:00:17.692567Z	2023-09-06T14:00:17.692814Z
osv-2023-779	Use-of-uninitialized-value in dev_io_capture	2023-09-01T14:02:31.084726Z	2023-09-01T14:02:31.085002Z
osv-2023-777	Heap-buffer-overflow in dxf_fixup_string	2023-08-31T14:02:40.465168Z	2023-08-31T14:02:40.465446Z
osv-2023-776	Heap-buffer-overflow in ndpi_domain_classify_contains	2023-08-31T14:01:17.285452Z	2023-08-31T14:01:17.285839Z
osv-2023-775	Security exception in com.github.javaparser.CommentsInserter.insertComments	2023-08-31T14:00:51.228804Z	2023-08-31T14:00:51.229055Z
osv-2023-769	Index-out-of-bounds in derive_spatial_luma_vector_prediction	2023-08-30T14:01:19.139702Z	2023-08-30T14:01:19.139963Z
osv-2023-764	Heap-buffer-overflow in pim_pim_packet	2023-08-30T14:00:10.025963Z	2023-08-30T14:00:10.026257Z
osv-2023-761	Heap-buffer-overflow in ICMPinfo::dissectICMP	2023-08-29T14:02:10.894349Z	2023-08-29T14:02:10.894589Z
osv-2023-758	Heap-double-free in bit_TV_to_utf8	2023-08-29T14:00:10.585462Z	2023-08-29T14:00:10.585716Z
osv-2023-756	Heap-buffer-overflow in rawspeed::DngDecoder::decodeMetaDataInternal	2023-08-28T14:02:10.741602Z	2023-12-23T14:16:41.470280Z
osv-2023-754	Heap-buffer-overflow in H5O__chunk_protect	2023-08-28T14:00:10.026707Z	2025-03-18T00:43:25.726885Z
osv-2023-753	Stack-buffer-overflow in iasecc_crt_parse	2023-08-28T14:00:08.788843Z	2023-08-28T14:00:08.789089Z
osv-2023-750	Security exception in org.antlr.v4.runtime.atn.PredictionContext.fromRuleContext	2023-08-27T14:01:22.181636Z	2023-08-27T14:01:22.181891Z
osv-2023-748	Segv on unknown address in dwg_encode	2023-08-27T14:01:00.633988Z	2023-08-27T14:01:00.634262Z
osv-2023-745	Heap-buffer-overflow in pcpp::SomeIpSdLayer::isDataValid	2023-08-27T14:00:31.929598Z	2023-08-27T14:00:31.929865Z
osv-2023-744	Stack-buffer-overflow in sc_color_fprintf_va	2023-08-26T14:02:46.114617Z	2023-08-26T14:02:46.114892Z
osv-2023-743	Out-of-memory in QueryParserFuzzer	2023-08-26T14:02:30.998218Z	2023-08-27T14:28:54.259585Z
osv-2023-741	Heap-buffer-overflow in Flow::dissectBittorrent	2023-08-26T14:00:30.188688Z	2023-08-26T14:00:30.188967Z
osv-2023-739	UNKNOWN READ in OT::glyph_variations_t::create_from_glyphs_var_data	2023-08-25T14:02:18.323225Z	2023-08-25T14:02:18.323527Z
osv-2023-738	Use-of-uninitialized-value in _PyFunction_FromConstructor	2023-08-25T14:00:42.118304Z	2023-08-25T14:00:42.118579Z
osv-2023-736	Heap-buffer-overflow in HeifContext::interpret_heif_file	2023-08-25T14:00:14.487219Z	2023-12-20T14:12:01.243209Z
osv-2023-734	Container-overflow in libbrotlidec.so.1	2023-08-24T14:02:58.433195Z	2023-08-24T14:02:58.433472Z
osv-2023-728	Use-of-uninitialized-value in aesEncryptBlock	2023-08-24T14:00:27.838220Z	2024-04-29T14:13:55.378729Z
osv-2023-726	Heap-buffer-overflow in Flow::dissectNetBIOS	2023-08-23T14:02:47.143481Z	2023-08-23T14:02:47.143744Z
osv-2023-723	Heap-buffer-overflow in H5MM_memcpy	2023-08-22T14:03:07.334340Z	2023-08-22T14:03:07.334606Z
osv-2023-722	Heap-buffer-overflow in H5MM_memcpy	2023-08-22T14:03:04.118428Z	2025-03-18T00:42:21.984142Z
osv-2023-721	Stack-buffer-overflow in crc24q_check	2023-08-21T14:02:51.271773Z	2023-08-21T14:02:51.272060Z

ID	Description	Published	Updated
rustsec-2020-0145	Use-after-free when cloning a partially consumed `Vec` iterator	2020-11-02T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0081	`mio` invalidly assumes the memory layout of std::net::SocketAddr	2020-11-02T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0076	crate has been renamed to `sn_routing`	2020-11-02T12:00:00Z	2020-12-02T17:59:27Z
rustsec-2020-0067	crate has been renamed to `qp2p`	2020-11-02T12:00:00Z	2020-11-02T14:50:19Z
rustsec-2020-0066	crate has been renamed to `sn_bindgen`	2020-11-02T12:00:00Z	2020-11-02T14:48:54Z
rustsec-2020-0065	crate has been renamed to `sn_fake_clock`	2020-11-02T12:00:00Z	2020-11-02T14:46:33Z
rustsec-2020-0064	crate has been renamed to `sn_ffi_utils`	2020-11-02T12:00:00Z	2020-11-02T14:45:15Z
rustsec-2020-0063	crate has been renamed to `safe-nd`	2020-11-02T12:00:00Z	2020-11-02T14:43:36Z
rustsec-2020-0113	AtomicOption should have Send + Sync bound on its type argument.	2020-10-31T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0072	GenericMutexGuard allows data races of non-Sync types across threads	2020-10-31T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0122	beef::Cow lacks a Sync bound on its Send trait allowing for data races	2020-10-28T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0059	MutexGuard::map can cause a data race in safe code	2020-10-22T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0055	Please see RUSTSEC-2018-0020	2020-10-21T12:00:00Z	2022-08-16T02:38:08Z
rustsec-2020-0054	directories is unmaintained, use directories-next instead	2020-10-16T12:00:00Z	2022-08-16T02:38:08Z
rustsec-2020-0053	dirs is unmaintained, use dirs-next instead	2020-10-16T12:00:00Z	2022-08-16T02:38:08Z
rustsec-2020-0058	crate has been renamed to `cipher`	2020-10-15T12:00:00Z	2020-10-25T19:14:03Z
rustsec-2020-0057	crate has been renamed to `cipher`	2020-10-15T12:00:00Z	2020-10-25T19:05:32Z
rustsec-2020-0051	Obsolete versions of the `rustsec` crate do not support the new V3 advisory format	2020-10-01T12:00:00Z	2020-10-02T01:29:11Z
rustsec-2020-0050	VecCopy allows misaligned access to elements	2020-09-27T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0047	array_queue pop_back() may cause a use-after-free	2020-09-26T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0043	Insufficient size checks in outgoing buffer in ws allows remote attacker to run the process out of memory	2020-09-25T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0042	Missing check in ArrayVec leads to out-of-bounds write.	2020-09-24T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0044	Unsafe Send implementation in Atom allows data races	2020-09-21T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0041	Multiple soundness issues in Chunk and InlineArray	2020-09-06T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0166	personnummer Input validation error	2020-09-04T12:00:00Z	2023-02-02T10:57:52Z
rustsec-2020-0060	futures_task::waker may cause a use-after-free if used on a type that isn't 'static	2020-09-04T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0040	Obstack generates unaligned references	2020-09-03T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0039	`index()` allows out-of-bound read and `remove()` has off-by-one error	2020-09-03T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0038	Memory safety issues in `compact::Vec`	2020-09-03T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2020-0037	Misbehaving `HandleLike` implementation can lead to memory safety violation	2020-08-31T12:00:00Z	2023-06-13T13:10:24Z

ID	Description	Published	Updated
bit-kibana-2025-25009	Kibana Cross-Site Scripting (XSS)	2025-10-09T08:43:15.178Z	2025-11-06T13:25:46.476Z
bit-elk-2025-37728	Kibana Insufficiently Protected Credentials in the CrowdStrike Connector	2025-10-09T08:40:04.041Z	2025-10-09T09:08:03.236Z
bit-elk-2025-25009	Kibana Cross-Site Scripting (XSS)	2025-10-09T08:39:52.493Z	2025-11-06T13:25:46.476Z
bit-valkey-2025-46819	Redis is vulnerable to DoS via specially crafted LUA scripts	2025-10-08T08:52:39.220Z	2025-11-06T13:25:46.476Z
bit-valkey-2025-46818	Redis: Authenticated users can execute LUA scripts as a different user	2025-10-08T08:52:37.720Z	2025-11-06T13:25:46.476Z
bit-valkey-2025-46817	Lua library commands may lead to integer overflow and potential RCE	2025-10-08T08:52:36.400Z	2025-11-13T11:23:28.166Z
bit-redis-2025-46819	Redis is vulnerable to DoS via specially crafted LUA scripts	2025-10-08T08:51:28.594Z	2025-11-06T13:25:46.476Z
bit-redis-2025-46818	Redis: Authenticated users can execute LUA scripts as a different user	2025-10-08T08:51:27.125Z	2025-10-11T09:07:57.990Z
bit-redis-2025-46817	Lua library commands may lead to integer overflow and potential RCE	2025-10-08T08:51:25.578Z	2025-11-13T11:23:28.166Z
bit-keydb-2025-46819	Redis is vulnerable to DoS via specially crafted LUA scripts	2025-10-08T08:43:23.522Z	2025-11-06T13:25:46.476Z
bit-keydb-2025-46818	Redis: Authenticated users can execute LUA scripts as a different user	2025-10-08T08:43:21.875Z	2025-10-11T09:07:57.990Z
bit-keydb-2025-46817	Lua library commands may lead to integer overflow and potential RCE	2025-10-08T08:43:20.393Z	2025-11-13T11:23:28.166Z
bit-django-2025-59681		2025-10-08T08:40:24.312Z	2025-11-06T13:25:46.476Z
bit-tensorflow-2025-55559		2025-10-05T23:59:43.523Z	2025-10-06T00:06:00.502Z
bit-tensorflow-2025-55556		2025-10-05T23:59:42.019Z	2025-10-06T00:06:00.502Z
bit-pytorch-2025-55558		2025-10-05T23:47:59.108Z	2025-10-06T00:06:00.502Z
bit-pytorch-2025-55557		2025-10-05T23:47:57.792Z	2025-10-06T00:06:00.502Z
bit-pytorch-2025-55554		2025-10-05T23:47:56.493Z	2025-10-16T00:08:58.048Z
bit-pytorch-2025-55553		2025-10-05T23:47:55.078Z	2025-10-06T00:06:00.502Z
bit-pytorch-2025-55552		2025-10-05T23:47:53.725Z	2025-10-16T00:08:58.048Z
bit-pytorch-2025-55551		2025-10-05T23:47:52.236Z	2025-10-16T00:08:58.048Z
bit-pytorch-2025-46153		2025-10-05T23:47:50.900Z	2025-10-06T00:06:00.502Z
bit-pytorch-2025-46152		2025-10-05T23:47:49.619Z	2025-10-06T00:06:00.502Z
bit-pytorch-2025-46150		2025-10-05T23:47:48.186Z	2025-10-06T00:06:00.502Z
bit-pytorch-2025-46149		2025-10-05T23:47:46.869Z	2025-10-06T00:06:00.502Z
bit-pytorch-2025-46148		2025-10-05T23:47:45.481Z	2025-10-06T00:06:00.502Z
bit-mongodb-2025-7259	Certain Queries with Duplicate _id Fields May Cause MongoDB Server to Crash	2025-10-05T23:44:19.761Z	2025-10-06T00:06:00.502Z
bit-mongodb-2025-6714	Incorrect Handling of incomplete data may prevent mongoS from Accepting New Connections	2025-10-05T23:44:18.162Z	2025-10-06T00:06:00.502Z
bit-mongodb-2025-6713	MongoDB Server may be susceptible to privilege escalation due to $mergeCursors stage	2025-10-05T23:44:16.574Z	2025-10-06T00:06:00.502Z
bit-mongodb-2025-6712	MongoDB Server may be susceptible to DoS due to Accumulated Memory Allocation	2025-10-05T23:44:14.958Z	2025-10-06T00:06:00.502Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
certfr-2025-avi-0759	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-09-05T00:00:00.000000	2025-09-05T00:00:00.000000
certfr-2025-avi-0758	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2025-09-05T00:00:00.000000	2025-09-05T00:00:00.000000
certfr-2025-avi-0757	Multiples vulnérabilités dans le noyau Linux de Red Hat	2025-09-05T00:00:00.000000	2025-09-05T00:00:00.000000
certfr-2025-avi-0756	Multiples vulnérabilités dans les produits VMware	2025-09-05T00:00:00.000000	2025-09-05T00:00:00.000000
certfr-2025-avi-0755	Vulnérabilité dans les produits Synology	2025-09-05T00:00:00.000000	2025-09-05T00:00:00.000000
certfr-2025-avi-0754	Multiples vulnérabilités dans les produits VMware	2025-09-04T00:00:00.000000	2025-09-04T00:00:00.000000
certfr-2025-avi-0753	Vulnérabilité dans Shibboleth Service Provider	2025-09-04T00:00:00.000000	2025-09-04T00:00:00.000000
certfr-2025-avi-0752	Multiples vulnérabilités dans Google Pixel	2025-09-04T00:00:00.000000	2025-09-04T00:00:00.000000
certfr-2025-avi-0751	Multiples vulnérabilités dans les produits VMware	2025-09-03T00:00:00.000000	2025-09-03T00:00:00.000000
certfr-2025-avi-0750	Multiples vulnérabilités dans Google Android	2025-09-03T00:00:00.000000	2025-09-03T00:00:00.000000
certfr-2025-avi-0749	Multiples vulnérabilités dans Google Chrome	2025-09-03T00:00:00.000000	2025-09-03T00:00:00.000000
certfr-2025-avi-0748	Vulnérabilité dans les produits Liferay	2025-09-02T00:00:00.000000	2025-09-02T00:00:00.000000
certfr-2025-avi-0747	Multiples vulnérabilités dans les produits Qnap	2025-09-01T00:00:00.000000	2025-09-01T00:00:00.000000
certfr-2025-avi-0746	Multiples vulnérabilités dans les produits IBM	2025-08-29T00:00:00.000000	2025-08-29T00:00:00.000000
certfr-2025-avi-0745	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-08-29T00:00:00.000000	2025-08-29T00:00:00.000000
certfr-2025-avi-0744	Multiples vulnérabilités dans le noyau Linux de Red Hat	2025-08-29T00:00:00.000000	2025-08-29T00:00:00.000000
certfr-2025-avi-0743	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2025-08-29T00:00:00.000000	2025-08-29T00:00:00.000000
certfr-2025-avi-0742	Vulnérabilité dans Microsoft Edge	2025-08-29T00:00:00.000000	2025-08-29T00:00:00.000000
certfr-2025-avi-0741	Vulnérabilité dans Wireshark	2025-08-29T00:00:00.000000	2025-08-29T00:00:00.000000
certfr-2025-avi-0740	Multiples vulnérabilités dans Tenable Security Center	2025-08-29T00:00:00.000000	2025-08-29T00:00:00.000000
certfr-2025-avi-0739	Multiples vulnérabilités dans Asterisk	2025-08-29T00:00:00.000000	2025-08-29T00:00:00.000000
certfr-2025-avi-0738	Multiples vulnérabilités dans les produits Elastic	2025-08-29T00:00:00.000000	2025-08-29T00:00:00.000000
certfr-2025-avi-0737	Multiples vulnérabilités dans les produits Cisco	2025-08-28T00:00:00.000000	2025-08-28T00:00:00.000000
certfr-2025-avi-0736	Multiples vulnérabilités dans GitLab	2025-08-28T00:00:00.000000	2025-08-28T00:00:00.000000
certfr-2025-avi-0735	Vulnérabilité dans GLPI	2025-08-28T00:00:00.000000	2025-08-28T00:00:00.000000
certfr-2025-avi-0734	Vulnérabilité dans ISC Kea DHCP	2025-08-28T00:00:00.000000	2025-08-28T00:00:00.000000
certfr-2025-avi-0733	Vulnérabilité dans Nagios XI	2025-08-28T00:00:00.000000	2025-08-28T00:00:00.000000
certfr-2025-avi-0732	Vulnérabilité dans Google Chrome	2025-08-27T00:00:00.000000	2025-08-27T00:00:00.000000
certfr-2025-avi-0731	Vulnérabilité dans Shibboleth Identity Provider	2025-08-27T00:00:00.000000	2025-08-27T00:00:00.000000
certfr-2025-avi-0730	Multiples vulnérabilités dans Citrix NetScaler ADC et NetScaler Gateway	2025-08-26T00:00:00.000000	2025-08-26T00:00:00.000000

ID	Description	Published	Updated
jvndb-2021-000102	rwtxt vulnerable to cross-site scripting	2021-11-16T13:38+09:00	2021-11-16T13:38+09:00
jvndb-2021-000101	Unlimited Sitemap Generator vulnerable to cross-site request forgery	2021-11-12T15:07+09:00	2021-11-12T15:07+09:00
jvndb-2021-003840	Cross-site Scripting Vulnerability in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer	2021-11-12T11:41+09:00	2021-11-12T11:41+09:00
jvndb-2021-000100	Multiple vulnerabilities in EC-CUBE 2 series	2021-11-11T15:09+09:00	2021-11-11T15:09+09:00
jvndb-2021-000094	WordPress Plugin "Booking Package - Appointment Booking Calendar System" vulnerable to cross-site scripting	2021-11-10T14:26+09:00	2021-11-10T14:26+09:00
jvndb-2021-003811	File Permission Vulnerability in Hitachi Automation Director, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center	2021-11-05T15:04+09:00	2021-11-05T15:04+09:00
jvndb-2021-003660	Authentication Bypass Vulnerability in Hitachi Device Manager	2021-11-01T15:56+09:00	2021-11-01T15:56+09:00
jvndb-2021-000097	Multiple vulnerabilities in CLUSTERPRO X and EXPRESSCLUSTER X	2021-10-29T15:22+09:00	2022-04-20T14:03+09:00
jvndb-2021-000096	Android App "Mercari (Merpay) - Marketplace and Mobile Payments App" (Japan version) vulnerable to improper handling of Intent	2021-10-29T15:11+09:00	2021-10-29T15:11+09:00
jvndb-2021-000098	ESET Cyber Security and ESET Endpoint series vulnerable to denial-of-service (DoS)	2021-10-29T14:58+09:00	2021-10-29T14:58+09:00
jvndb-2021-000095	Multiple improper restriction of XML external entity reference (XXE) vulnerabilities in Office Server Document Converter	2021-10-28T15:03+09:00	2021-10-28T15:03+09:00
jvndb-2021-003385	Trend Micro Endpoint security products for enterprises vulnerable to privilege escalation	2021-10-26T12:35+09:00	2021-10-26T12:35+09:00
jvndb-2021-000093	Movable Type XMLRPC API vulnerable to OS command injection	2021-10-20T17:38+09:00	2021-12-17T17:36+09:00
jvndb-2021-003080	OMRON CX-Supervisor vulnerable to out-of-bounds read	2021-10-18T15:26+09:00	2021-11-01T15:37+09:00
jvndb-2021-000091	128 Technology Session Smart Router vulnerable to authentication bypass	2021-10-18T14:58+09:00	2021-10-18T14:58+09:00
jvndb-2021-000090	Apache HTTP Server vulnerable to directory traversal	2021-10-11T18:07+09:00	2021-10-11T18:07+09:00
jvndb-2021-000089	Nike App fails to restrict custom URL schemes properly	2021-10-08T14:32+09:00	2021-10-08T14:32+09:00
jvndb-2021-002810	Information Disclosure Vulnerability in Hitachi Tuning Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer	2021-10-05T15:37+09:00	2021-10-05T15:37+09:00
jvndb-2021-002774	Trend Micro ServerProtect family vulnerable to authentication bypass	2021-10-01T14:42+09:00	2021-10-01T14:42+09:00
jvndb-2021-000088	Multiple vulnerabilities in Cybozu Remote Service	2021-09-30T16:03+09:00	2024-04-08T18:09+09:00
jvndb-2021-002752	Trend Micro HouseCall for Home Networks vulnerable to privilege escalation	2021-09-30T13:56+09:00	2021-09-30T13:56+09:00
jvndb-2021-000085	SNKRDUNK Market Place App for iOS vulnerable to improper server certificate verification	2021-09-28T15:18+09:00	2021-09-28T15:18+09:00
jvndb-2021-000086	WordPress Plugin "OG Tags" vulnerable to cross-site request forgery	2021-09-28T15:11+09:00	2021-09-28T15:11+09:00
jvndb-2021-000084	InBody App vulnerable to information disclosure	2021-09-28T14:27+09:00	2021-09-28T14:27+09:00
jvndb-2021-000081	Multiple vulnerabilities in Sharp NEC Display Solutions' public displays	2021-09-17T15:13+09:00	2025-12-10T10:24+09:00
jvndb-2021-000083	EC-CUBE plugin "Order Status Batch Change Plug-in" vulnerable to cross-site scripting	2021-09-16T14:33+09:00	2021-09-16T14:33+09:00
jvndb-2021-000082	EC-CUBE plugin "List (order management) item change plug-in" vulnerable to cross-site scripting	2021-09-13T14:24+09:00	2021-09-13T14:24+09:00
jvndb-2021-000074	Multiple vulnerabilities in RevoWorks Browser	2021-09-10T15:44+09:00	2021-09-10T15:44+09:00
jvndb-2021-002342	Trend Micro Security family vulnerable to improper handling of Directory Junction	2021-09-03T16:10+09:00	2021-09-03T16:10+09:00
jvndb-2021-000080	baserCMS vulnerable to cross-site scripting	2021-08-27T13:29+09:00	2021-08-27T13:29+09:00

ID	Description	Published	Updated
cnvd-2026-10850	Rockwell Automation ArmorStart LT拒绝服务漏洞（CNVD-2026-10850）	2026-01-30	2026-02-10
cnvd-2026-10849	Rockwell Automation ArmorStart LT拒绝服务漏洞（CNVD-2026-10849）	2026-01-30	2026-02-10
cnvd-2026-10848	Rockwell Automation ArmorStart LT拒绝服务漏洞	2026-01-30	2026-02-10
cnvd-2026-10666	MedDream PACS Premium任意文件读取漏洞	2026-01-30	2026-02-11
cnvd-2026-10665	MedDream PACS Premium跨站脚本漏洞	2026-01-30	2026-02-11
cnvd-2026-10664	IBM Aspera Console日志信息泄露漏洞	2026-01-30	2026-02-10
cnvd-2026-10663	IBM Concert代码问题漏洞	2026-01-30	2026-02-10
cnvd-2026-10662	IBM Concert信息泄露漏洞（CNVD-2026-10662）	2026-01-30	2026-02-10
cnvd-2026-10661	IBM Concert信息泄露漏洞（CNVD-2026-10661）	2026-01-30	2026-02-10
cnvd-2026-10656	IBM ApplinX跨站请求伪造漏洞（CNVD-2026-10656）	2026-01-30	2026-02-10
cnvd-2026-10655	IBM ApplinX跨站脚本漏洞	2026-01-30	2026-02-10
cnvd-2026-10654	IBM ApplinX未授权访问漏洞	2026-01-30	2026-02-10
cnvd-2026-10653	IBM ApplinX信息泄露漏洞（CNVD-2026-10653）	2026-01-30	2026-02-10
cnvd-2026-10638	Tenda AX1803缓冲区溢出漏洞（CNVD-2026-10638）	2026-01-30	2026-02-09
cnvd-2026-10318	Tenda AX1806 fromSetSysTime函数堆栈溢出漏洞	2026-01-30	2026-02-05
cnvd-2026-10317	Oracle MySQL Server存在未明漏洞（CNVD-2026-10317）	2026-01-30	2026-02-05
cnvd-2026-10316	Tenda AX1806 deviceList参数堆栈溢出漏洞	2026-01-30	2026-02-05
cnvd-2026-10313	Oracle MySQL Server存在未明漏洞（CNVD-2026-10313）	2026-01-30	2026-02-05
cnvd-2026-10312	Oracle MySQL Server存在未明漏洞（CNVD-2026-10312）	2026-01-30	2026-02-05
cnvd-2026-09811	OpenEMR未授权访问漏洞	2026-01-30	2026-01-30
cnvd-2026-09793	Apache Solr输入验证错误漏洞	2026-01-30	2026-01-30
cnvd-2026-09792	Apache Linkis信息泄露漏洞（CNVD-2026-09792）	2026-01-30	2026-01-30
cnvd-2026-09791	Apache Linkis授权问题漏洞	2026-01-30	2026-01-30
cnvd-2026-09790	Apache Airflow信息泄露漏洞	2026-01-30	2026-01-30
cnvd-2026-09789	Apache Hadoop HDFS越界写入漏洞	2026-01-30	2026-01-30
cnvd-2026-09634	MedDream PACS Premium notifynewstudy功能跨站脚本漏洞	2026-01-30	2026-02-04
cnvd-2026-09633	MedDream PACS Premium modifyTranscript功能跨站脚本漏洞	2026-01-30	2026-02-04
cnvd-2026-09632	MedDream PACS Premium modifyRoute功能跨站脚本漏洞	2026-01-30	2026-02-04
cnvd-2026-09631	MedDream PACS Premium modifyHL7Route功能跨站脚本漏洞	2026-01-30	2026-02-04
cnvd-2026-09630	MedDream PACS Premium modifyHL7App功能跨站脚本漏洞	2026-01-30	2026-02-03

ID	Description	Published	Updated
bdu:2026-00784	Уязвимость платформы для автоматизации рабочих процессов N8n, связанная с ошибками разгра…	23.01.2026	23.01.2026
bdu:2026-00783	Уязвимость агента для разработки программного обеспечения на основе искусственного интелл…	23.01.2026	23.01.2026
bdu:2026-00782	Уязвимость функций verify() и decrypt() npm библиотеки OpenPGP, позволяющая нарушителю по…	23.01.2026	23.01.2026
bdu:2026-00781	Уязвимость централизованной системы управления Multi-Stack Controller (MSC), связанная с …	23.01.2026	23.01.2026
bdu:2026-00780	Уязвимость централизованной системы управления Multi-Stack Controller (MSC), связанная с …	23.01.2026	23.01.2026
bdu:2026-00779	Уязвимость централизованной системы управления Multi-Stack Controller (MSC), связанная с …	23.01.2026	23.01.2026
bdu:2026-00778	Уязвимость централизованной системы управления батареей Battery Management System (BMS), …	23.01.2026	23.01.2026
bdu:2026-00777	Уязвимость централизованной системы управления Multi-Stack Controller (MSC), связанная с …	23.01.2026	23.01.2026
bdu:2026-00776	Уязвимость репозитория Android Frameworks Base операционной системы Android, позволяющая …	23.01.2026	23.01.2026
bdu:2026-00775	Уязвимость компонента Settings операционных систем Android, позволяющая нарушителю повыси…	23.01.2026	23.01.2026
bdu:2026-00774	Уязвимость компонента IntentResolver операционной системы Android, позволяющая нарушителю…	23.01.2026	23.01.2026
bdu:2026-00773	Уязвимость службы NFC операционной системы Android, позволяющая нарушителю повысить свои …	23.01.2026	23.01.2026
bdu:2026-00772	Уязвимость файла NotificationStation.java операционной системы Android, позволяющая наруш…	23.01.2026	23.01.2026
bdu:2026-00771	Уязвимость файла WifiScanModeActivity.java операционной системы Android, позволяющая нару…	23.01.2026	23.01.2026
bdu:2026-00770	Уязвимость модульной системы охранной сигнализации Bosch MAP 5000, связанная с использова…	23.01.2026	23.01.2026
bdu:2026-00769	Уязвимость модульной системы охранной сигнализации Bosch MAP 5000, связанная с недостаточ…	23.01.2026	23.01.2026
bdu:2026-00768	Уязвимость сервиса для распределённого выполнения SQL-запросов Apache Kyuubi, связанная с…	23.01.2026	23.01.2026
bdu:2026-00767	Уязвимость приложения для автоматизации закупки услуг SAP Supplier Relationship Managemen…	23.01.2026	23.01.2026
bdu:2026-00766	Уязвимость приложения Business Server Pages Application, связанная с отсутствием авториза…	23.01.2026	23.01.2026
bdu:2026-00765	Уязвимость веб-приложения SAP Fiori App, связанная с раскрытием системных данных неавтори…	23.01.2026	23.01.2026
bdu:2026-00764	Уязвимость веб-приложения SAP Fiori App, связанная с подделкой межсайтовых запросов, позв…	23.01.2026	23.01.2026
bdu:2026-00763	Уязвимость программной интеграционной платформы SAP NetWeaver Enterprise Portal, связанна…	23.01.2026	23.01.2026
bdu:2026-00762	Уязвимость приложения для блокировки рекламы Pi-hole, связанная с непринятием мер по нейт…	23.01.2026	23.01.2026
bdu:2026-00761	Уязвимость приложение для блокировки рекламы и интернет-трекеров Pi-hole, связанная с неп…	23.01.2026	23.01.2026
bdu:2026-00760	Уязвимость промышленных систем удаленного доступа mymbCONNECT24 и mbCONNECT24, VPN-портал…	23.01.2026	23.01.2026
bdu:2026-00759	Уязвимость промышленных систем удаленного доступа mymbCONNECT24 и mbCONNECT24, VPN-портал…	23.01.2026	23.01.2026
bdu:2026-00758	Уязвимость промышленных систем удаленного доступа mymbCONNECT24 и mbCONNECT24, VPN-портал…	23.01.2026	23.01.2026
bdu:2026-00757	Уязвимость программного обеспечения централизованного сбора, анализа и хранения логов Gra…	23.01.2026	23.01.2026
bdu:2026-00756	Уязвимость платформы хранения данных Dell ECS, связанная с хранением информации в открыто…	23.01.2026	23.01.2026
bdu:2026-00755	Уязвимость платформы хранения данных Dell ECS, связанная с недостаточной защитой служебны…	23.01.2026	23.01.2026

ID	Description	Updated
var-200703-0009	Integer overflow in Apple QuickTime before 7.1.5, when installed on Windows operating sys…	2026-03-09T22:38:01.862000Z
var-201504-0479	The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properly handle …	2026-03-09T22:37:53.832000Z
var-201108-0146	Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before …	2026-03-09T22:37:49.732000Z
var-201912-1863	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2026-03-09T22:37:48.791000Z
var-201108-0285	Double free vulnerability in libxml2, as used in Google Chrome before 13.0.782.215, allow…	2026-03-09T22:37:47.044000Z
var-200803-0013	Heap-based buffer overflow in the cgiCompileSearch function in CUPS 1.3.5, and other vers…	2026-03-09T22:37:11.844000Z
var-201110-0392	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK…	2026-03-09T22:36:41.290000Z
var-202205-2059	Out-of-bounds Write in GitHub repository vim/vim prior to 8.2. Vim is a cross-platform te…	2026-03-09T22:36:40.818000Z
var-202010-1296	A use after free issue was addressed with improved memory management. This issue is fixed…	2026-03-09T22:36:01.746000Z
var-202202-0081	In Expat (aka libexpat) before 2.4.5, there is an integer overflow in storeRawNames. ----…	2026-03-09T22:35:30.057000Z
var-201912-0617	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2026-03-09T22:34:38.139000Z
var-201203-0194	Use-after-free vulnerability in Google Chrome before 17.0.963.65 allows remote attackers …	2026-03-09T22:34:31.672000Z
var-200810-0392	Integer signedness error in (1) QuickLook in Apple Mac OS X 10.5.5 and (2) Office Viewer …	2026-03-09T22:34:20.426000Z
var-201412-0614	util/ntp-keygen.c in ntp-keygen in NTP before 4.2.7p230 uses a weak RNG seed, which makes…	2026-03-09T22:34:20.218000Z
var-202006-1636	An input validation issue was addressed with improved input validation. This issue is fix…	2026-03-09T22:34:12.704000Z
var-200803-0016	CFNetwork in Apple Mac OS X 10.4.11 allows remote HTTPS proxy servers to spoof secure web…	2026-03-09T22:34:12.559000Z
var-200107-0045	Internet Explorer 5.5 and earlier allows remote attackers to obtain the physical location…	2026-03-09T22:33:41.483000Z
var-201210-0343	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2026-03-09T22:33:40.999000Z
var-202009-1442	A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker …	2026-03-09T22:33:28.877000Z
var-201102-0095	Google Chrome before 9.0.597.94 does not properly perform event handling for animations, …	2026-03-09T22:32:03.829000Z
var-202104-0334	curl 7.1.1 to and including 7.75.0 is vulnerable to an "Exposure of Private Personal Info…	2026-03-09T22:32:03.190000Z
var-202207-0588	The llhttp parser <v14.20.1, <v16.17.1 and <v18.9.1 in the http module in Node.js does no…	2026-03-09T22:32:01.908000Z
var-202102-1092	An issue was discovered in GNOME GLib before 2.66.7 and 2.67.x before 2.67.4. If g_byte_a…	2026-03-09T22:31:31.307000Z
var-201708-0212	The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 all…	2026-03-09T22:31:06.390000Z
var-200503-0010	Windows Server 2003 and XP SP2, with Windows Firewall turned off, allows remote attackers…	2026-03-09T22:31:01.611000Z
var-202012-1547	A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel thr…	2026-03-09T22:31:00.956000Z
var-202109-1790	A user can tell curl >= 7.20.0 and <= 7.78.0 to require a successful upgrade to TLS when …	2026-03-09T22:30:44.639000Z
var-202104-0160	An out-of-bounds write issue was addressed with improved bounds checking. This issue is f…	2026-03-09T22:30:44.119000Z
var-201503-0389	The build_tablename function in pgsql.c in the PostgreSQL (aka pgsql) extension in PHP th…	2026-03-09T22:30:41.363000Z
var-201111-0222	FreeType in CoreGraphics in Apple iOS before 5.0.1 allows remote attackers to execute arb…	2026-03-09T22:30:40.273000Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated