Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-0501	9.9 (3.1)	SQL Injection Vulnerability in SAP S/4HANA Private Clo…	SAP_SE	SAP S/4HANA Private Cloud and On-Premise (Financials � General Ledger)	2026-01-13T01:14:05.294Z	2026-01-14T04:57:08.509Z
CVE-2026-0500	9.6 (3.1)	Remote code execution in SAP Wily Introscope Enterpris…	SAP_SE	SAP Wily Introscope Enterprise Manager (WorkStation)	2026-01-13T01:13:57.659Z	2026-01-13T14:45:07.723Z
CVE-2026-0499	6.1 (3.1)	Cross-Site Scripting (XSS) vulnerability in SAP NetWea…	SAP_SE	SAP NetWeaver Enterprise Portal	2026-01-13T01:13:47.482Z	2026-01-13T14:47:20.849Z
CVE-2026-0498	9.1 (3.1)	Code Injection vulnerability in SAP S/4HANA (Private C…	SAP_SE	SAP S/4HANA (Private Cloud and On-Premise)	2026-01-13T01:13:41.371Z	2026-01-14T04:57:09.527Z
CVE-2026-0497	4.3 (3.1)	Missing Authorization check in Business Server Pages A…	SAP_SE	Business Server Pages Application (Product Designer Web UI)	2026-01-13T01:13:35.718Z	2026-01-13T15:15:00.816Z
CVE-2026-0496	6.6 (3.1)	Multiple vulnerabilities in SAP Fiori App (Intercompan…	SAP_SE	SAP Fiori App (Intercompany Balance Reconciliation)	2026-01-13T01:13:28.818Z	2026-01-13T15:15:21.939Z
CVE-2026-0495	5.1 (3.1)	Multiple vulnerabilities in SAP Fiori App (Intercompan…	SAP_SE	SAP Fiori App (Intercompany Balance Reconciliation)	2026-01-13T01:13:20.999Z	2026-01-13T15:15:41.236Z
CVE-2026-0494	4.3 (3.1)	Information Disclosure vulnerability in SAP Fiori App …	SAP_SE	SAP Fiori App (Intercompany Balance Reconciliation)	2026-01-13T01:13:14.370Z	2026-01-13T16:19:32.833Z
CVE-2026-0493	4.3 (3.1)	Cross-Site Request Forgery (CSRF) vulnerability in SAP…	SAP_SE	SAP Fiori App (Intercompany Balance Reconciliation)	2026-01-13T01:13:06.863Z	2026-01-13T19:07:00.934Z
CVE-2026-0492	8.8 (3.1)	Privilege escalation vulnerability in SAP HANA database	SAP_SE	SAP HANA database	2026-01-13T01:13:00.391Z	2026-01-14T04:57:11.532Z
CVE-2026-0491	9.1 (3.1)	Code Injection vulnerability in SAP Landscape Transformation	SAP_SE	SAP Landscape Transformation	2026-01-13T01:12:53.331Z	2026-01-14T04:57:10.551Z
CVE-2025-71027	7.5 (3.1)	Tenda AX-3 v16.03.12.10_CN was discovered to cont…	n/a	n/a	2026-01-13T00:00:00.000Z	2026-01-16T15:33:13.870Z
CVE-2025-71026	7.5 (3.1)	Tenda AX-3 v16.03.12.10_CN was discovered to cont…	n/a	n/a	2026-01-13T00:00:00.000Z	2026-01-16T15:34:39.045Z
CVE-2025-71025	7.5 (3.1)	Tenda AX-3 v16.03.12.10_CN was discovered to cont…	n/a	n/a	2026-01-13T00:00:00.000Z	2026-01-16T15:35:26.308Z
CVE-2025-71024	7.5 (3.1)	Tenda AX-3 v16.03.12.10_CN was discovered to cont…	n/a	n/a	2026-01-13T00:00:00.000Z	2026-01-16T15:36:46.523Z
CVE-2025-71023	7.5 (3.1)	Tenda AX-3 v16.03.12.10_CN was discovered to cont…	n/a	n/a	2026-01-13T00:00:00.000Z	2026-01-13T18:17:44.971Z
CVE-2025-70753	7.5 (3.1)	Tenda AX-1806 v1.0.0.1 was discovered to contain …	n/a	n/a	2026-01-13T00:00:00.000Z	2026-01-16T15:17:17.445Z
CVE-2025-69992	9.8 (3.1)	phpgurukul News Portal Project V4.1 has File Uplo…	n/a	n/a	2026-01-13T00:00:00.000Z	2026-01-14T14:47:29.156Z
CVE-2025-69991	9.8 (3.1)	phpgurukul News Portal Project V4.1 is vulnerable…	n/a	n/a	2026-01-13T00:00:00.000Z	2026-01-14T14:49:09.164Z
CVE-2025-69990	9.1 (3.1)	phpgurukul News Portal Project V4.1 has an Arbitr…	n/a	n/a	2026-01-13T00:00:00.000Z	2026-01-14T14:30:04.693Z
CVE-2025-68707	8.8 (3.1)	An authentication bypass vulnerability in the Ton…	n/a	n/a	2026-01-13T00:00:00.000Z	2026-01-16T14:36:10.227Z
CVE-2025-66698	8.6 (3.1)	An issue in Semantic machines v5.4.8 allows attac…	n/a	n/a	2026-01-13T00:00:00.000Z	2026-01-13T16:35:46.768Z
CVE-2025-65784	6.5 (3.1)	Insecure permissions in Hubert Imoveis e Administ…	n/a	n/a	2026-01-13T00:00:00.000Z	2026-01-14T14:44:30.102Z
CVE-2025-65783	9.8 (3.1)	An arbitrary file upload vulnerability in the /ut…	n/a	n/a	2026-01-13T00:00:00.000Z	2026-01-14T14:46:29.464Z
CVE-2025-55462	6.5 (3.1)	A CORS misconfiguration in Eramba Community and E…	n/a	n/a	2026-01-13T00:00:00.000Z	2026-01-14T21:30:01.077Z
CVE-2025-25652	7.5 (3.1)	In Eptura Archibus 2024.03.01.109, the "Run scrip…	n/a	n/a	2026-01-13T00:00:00.000Z	2026-01-14T14:40:37.786Z
CVE-2024-54855	6.4 (3.1)	fabricators Ltd Vanilla OS 2 Core image v1.1.0 wa…	n/a	n/a	2026-01-13T00:00:00.000Z	2026-01-13T15:56:52.691Z
CVE-2024-58340	8.7 (4.0)	LangChain <= 0.3.1 MRKLOutputParser ReDoS	LangChain AI	LangChain	2026-01-12T23:05:00.801Z	2026-01-13T16:21:35.172Z
CVE-2024-14021	8.4 (4.0)	LlamaIndex <= 0.11.6 BGEM3Index Unsafe Deserialization	run-llama	llama_index	2026-01-12T23:04:43.095Z	2026-01-13T16:23:36.237Z
CVE-2024-58339	8.7 (4.0)	LlamaIndex <= 0.12.2 VannaQueryEngine SQL Execution Al…	run-llama	llama_index	2026-01-12T23:04:25.256Z	2026-01-13T17:18:28.994Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-0877	8.1 (3.1)	Mitigation bypass in the DOM: Security component	Mozilla	Firefox	2026-01-13T13:30:52.979Z	2026-01-15T09:31:08.828Z
CVE-2026-0684	4.3 (3.1)	CP Image Store with Slideshow <= 1.1.9 - Missing Autho…	codepeople	CP Image Store with Slideshow	2026-01-13T13:49:12.628Z	2026-01-13T14:13:53.871Z
CVE-2025-9435	5.5 (3.1)	Path Traversal	Zohocorp	ManageEngine ADManager Plus	2026-01-13T13:14:03.879Z	2026-01-13T14:01:24.898Z
CVE-2025-9427	8.4 (4.0)	Admin reflected XSS	Lemonsoft	WordPress add-on	2026-01-13T13:39:02.370Z	2026-01-13T14:16:45.654Z
CVE-2025-14507	5.3 (3.1)	EventPrime - Events Calendar, Bookings and Tickets <= …	metagauss	EventPrime – Events Calendar, Bookings and Tickets	2026-01-13T13:49:13.254Z	2026-01-13T14:11:27.075Z
CVE-2025-11669	8.1 (3.1)	Broken Access Control	Zohocorp	ManageEngine PAM360	2026-01-13T14:10:55.954Z	2026-01-14T04:57:26.818Z
CVE-2025-11250	9.1 (3.1)	Authentication Bypass	Zohocorp	ManageEngine ADSelfService Plus	2026-01-13T13:35:18.509Z	2026-01-13T14:19:27.437Z
CVE-2025-13774	8.8 (3.1)	SQL injection leading to privilege escalation in Progr…	Progress Software	Flowmon ADS	2026-01-13T12:59:51.775Z	2026-01-14T04:57:12.494Z
CVE-2026-0859	5.2 (4.0)	TYPO3 CMS Allows Insecure Deserialization via Mailer F…	TYPO3	TYPO3 CMS	2026-01-13T11:54:11.494Z	2026-01-13T14:12:12.132Z
CVE-2025-59022	7.1 (4.0)	TYPO3 CMS Allows Broken Access Control in Recycler Module	TYPO3	TYPO3 CMS	2026-01-13T11:53:45.184Z	2026-01-13T14:21:59.794Z
CVE-2025-59021	5.3 (4.0)	TYPO3 CMS Allows Broken Access Control in Redirects Module	TYPO3	TYPO3 CMS	2026-01-13T11:53:25.879Z	2026-01-13T14:44:44.540Z
CVE-2025-59020	5.3 (4.0)	TYPO3 CMS Allows Broken Access Control in Edit Documen…	TYPO3	TYPO3 CMS	2026-01-13T11:53:02.274Z	2026-01-13T16:43:00.776Z
CVE-2025-14001	5.4 (3.1)	WP Duplicate Page <= 1.8 - Missing Authorization to Au…	ninjateam	WP Duplicate Page	2026-01-13T11:21:19.781Z	2026-01-13T17:18:48.237Z
CVE-2025-40944	7.5 (3.1) 8.7 (4.0)	A vulnerability has been identified in SIMATIC ET…	Siemens	SIMATIC ET 200AL IM 157-1 PN	2026-01-13T09:44:05.792Z	2026-01-13T17:21:36.848Z
CVE-2025-40942	8.8 (3.1) 7.3 (4.0)	A vulnerability has been identified in TeleContro…	Siemens	TeleControl Server Basic	2026-01-13T09:44:04.669Z	2026-01-13T17:36:00.499Z
CVE-2025-40805	10 (3.1) 10 (4.0)	Affected devices do not properly enforce user aut…	Siemens	Industrial Edge Cloud Device (IECD)	2026-01-13T09:44:03.338Z	2026-01-13T17:37:40.414Z
CVE-2025-41717	8.8 (3.1)	Config-Upload Code Injection	Phoenix Contact	TC ROUTER 3002T-3G	2026-01-13T07:48:19.811Z	2026-01-13T14:22:59.709Z
CVE-2025-14829	9.1 (3.1)	e-xact-hosted-payment <= 2.0 - Unauthenticated Arbitra…	Unknown	E-xact \| Hosted Payment \|	2026-01-13T06:00:07.538Z	2026-01-13T14:40:18.145Z
CVE-2025-10915	9.8 (3.1)	Dreamer Blog <= 1.2 - Subscriber+ Arbitrary Plugin Ins…	Unknown	Dreamer Blog	2026-01-13T06:00:05.943Z	2026-01-13T14:39:04.188Z
CVE-2026-22837	N/A	Not used	N/A	N/A		2026-01-13T03:55:05.278Z
CVE-2026-22836	N/A	Not used	N/A	N/A		2026-01-13T03:55:05.822Z
CVE-2026-22835	N/A	Not used	N/A	N/A		2026-01-13T03:55:06.270Z
CVE-2026-22834	N/A	Not used	N/A	N/A		2026-01-13T03:55:06.723Z
CVE-2026-22833	N/A	Not used	N/A	N/A		2026-01-13T03:55:07.183Z
CVE-2026-22832	N/A	Not used	N/A	N/A		2026-01-13T03:55:07.668Z
CVE-2026-22831	N/A	Not used	N/A	N/A		2026-01-13T03:55:08.123Z
CVE-2026-22830	N/A	Not used	N/A	N/A		2026-01-13T03:55:08.567Z
CVE-2026-22829	N/A	Not used	N/A	N/A		2026-01-13T03:55:09.018Z
CVE-2025-66177	8.8 (3.1)	There is a Stack overflow Vulnerability in the de…	Hikvision	DS-96xxxNI-Hx	2026-01-13T01:47:54.031Z	2026-01-13T17:27:13.199Z
CVE-2025-66176	8.8 (3.1)	There is a Stack overflow Vulnerability in the de…	Hikvision	DS-K1T331	2026-01-13T01:47:27.191Z	2026-01-15T01:56:32.572Z

ID	Description	Published	Updated

ID	Severity	Description	Published	Updated
ghsa-94r2-4g95-pg9m	5.3 (3.1)	Information disclosure in the XML component. This vulnerability affects Firefox < 147.	2026-01-13T15:37:04Z	2026-01-15T12:30:26Z
ghsa-85xf-m3mr-6pq2	5.5 (3.1)	Zohocorp ManageEngine ADManager Plus versions below 7230 are vulnerable to Path Traversal in the Us…	2026-01-13T15:37:04Z	2026-01-13T15:37:04Z
ghsa-7328-g372-24vf	5.3 (3.1)	Incorrect boundary conditions in the Graphics component. This vulnerability affects Firefox < 147, …	2026-01-13T15:37:04Z	2026-01-15T12:30:26Z
ghsa-6ffq-xrg2-pp92	8.1 (3.1)	Zohocorp ManageEngine PAM360 versions before 8202; Password Manager Pro versions before 13221; Acce…	2026-01-13T15:37:04Z	2026-01-13T15:37:04Z
ghsa-4m35-v3c2-29x8	7.5 (3.1)	Denial-of-service in the DOM: Service Workers component. This vulnerability affects Firefox < 147.	2026-01-13T15:37:04Z	2026-01-15T12:30:26Z
ghsa-484x-228c-ffm5	6.5 (3.1)	Spoofing issue in the DOM: Copy & Paste and Drag & Drop component. This vulnerability affects Firef…	2026-01-13T15:37:04Z	2026-01-15T12:30:26Z
ghsa-3m78-88vj-q2rf	9.8 (3.1)	Memory safety bugs present in Firefox 146 and Thunderbird 146. Some of these bugs showed evidence o…	2026-01-13T15:37:04Z	2026-01-15T12:30:26Z
ghsa-524m-q5m7-79mm	6.5 (3.1)	Mailpit is vulnerable to Cross-Site WebSocket Hijacking (CSWSH) allowing unauthenticated access to emails	2026-01-13T15:11:42Z	2026-01-13T15:11:42Z
ghsa-hcp2-x6j4-29j7	6.4 (3.1)	RustCrypto: Signatures has timing side-channel in ML-DSA decomposition	2026-01-13T15:10:03Z	2026-01-13T15:10:03Z
ghsa-3fm2-xfq7-7778	8.0 (3.1)	HAXcms Has Stored XSS Vulnerability that May Lead to Account Takeover	2026-01-13T15:07:57Z	2026-01-13T15:09:35Z
ghsa-j9xq-69pf-pcm8	7.5 (3.1)	RustCrypto Has Insufficient Length Validation in decrypt() in SM2-PKE	2026-01-13T15:02:23Z	2026-01-13T15:02:23Z
ghsa-whqx-f9j3-ch6m	5.5 (3.1)	Cosign verification accepts any valid Rekor entry under certain conditions	2026-01-13T14:58:50Z	2026-01-13T14:58:50Z
ghsa-w96v-gf22-crwp	5.3 (3.1)	n8n: Webhook Node IP Whitelist Bypass via Partial String Matching	2026-01-13T14:57:12Z	2026-01-13T21:40:42Z
ghsa-gxp5-mv27-vjcj	8.7 (4.0)	Jervis's AES CBC Mode is Without Authentication	2026-01-13T14:56:49Z	2026-01-13T21:41:25Z
ghsa-5pq9-5mpr-jj85	6.9 (4.0)	Jervis Has a JWT Algorithm Confusion Vulnerability	2026-01-13T14:56:04Z	2026-01-13T21:41:19Z
ghsa-c9q6-g3hr-8gww	8.2 (4.0)	Jervis Has Weak Random for Timing Attack Mitigation	2026-01-13T14:55:35Z	2026-01-13T21:41:11Z
ghsa-36h5-vrq6-pp34	8.7 (4.0)	Jervis's Salt for PBKDF2 derived from password	2026-01-13T14:53:50Z	2026-01-13T21:41:07Z
ghsa-67rj-pjg6-pq59	8.7 (4.0)	Jervis Has a SHA-256 Hex String Padding Bug	2026-01-13T14:52:31Z	2026-01-13T21:41:00Z
ghsa-crxp-chh4-9ghp	8.7 (4.0)	Jervis has Deterministic AES IV Derivation from Passphrase	2026-01-13T14:51:58Z	2026-01-13T21:40:55Z
ghsa-mqw7-c5gg-xq97	8.7 (4.0)	Jervis Has a RSA PKCS#1 Padding Vulnerability	2026-01-13T14:28:57Z	2026-01-13T21:40:47Z
ghsa-vqmm-3555-wq2q	7.5 (3.1) 8.7 (4.0)	A vulnerability has been identified in SIMATIC ET 200AL IM 157-1 PN (6ES7157-1AB00-0AB0) (All versi…	2026-01-13T12:31:13Z	2026-01-13T12:31:13Z
ghsa-crjh-4642-9w67	5.4 (3.1)	The WP Duplicate Page plugin for WordPress is vulnerable to unauthorized modification of data due t…	2026-01-13T12:31:13Z	2026-01-13T12:31:13Z
ghsa-c835-vvh2-8x99	8.8 (3.1) 7.3 (4.0)	A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.4). Affected…	2026-01-13T12:31:13Z	2026-01-13T12:31:13Z
ghsa-8gqp-3rhh-936h	10.0 (3.1) 10.0 (4.0)	Affected devices do not properly enforce user authentication on specific API endpoints. This could …	2026-01-13T12:31:13Z	2026-01-13T12:31:13Z
ghsa-2448-826c-4v5m	8.8 (3.1)	An unauthenticated remote attacker can trick a high privileged user into uploading a malicious payl…	2026-01-13T09:31:30Z	2026-01-13T09:31:30Z
ghsa-7h35-mm5q-hf4v	9.8 (3.1)	The Dreamer Blog WordPress theme through 1.2 is vulnerable to arbitrary installations due to a mis…	2026-01-13T06:30:20Z	2026-01-13T15:37:04Z
ghsa-w8gc-rcgw-q936		Rejected reason: Not used	2026-01-13T06:30:19Z	2026-01-13T06:30:19Z
ghsa-vhvh-c33p-2mp6		Rejected reason: Not used	2026-01-13T06:30:19Z	2026-01-13T06:30:19Z
ghsa-v5w9-33w2-wjhw		Rejected reason: Not used	2026-01-13T06:30:19Z	2026-01-13T06:30:19Z
ghsa-q25w-gj9h-7rj6	9.1 (3.1)	The E-xact \| Hosted Payment \| WordPress plugin through 2.0 is vulnerable to arbitrary file deletion…	2026-01-13T06:30:19Z	2026-01-13T15:37:04Z

ID	Severity	Description	Package	Published	Updated
pysec-2022-222		The Security Team noticed that the termination condition of the for loop in the readExter…	systemds	2022-06-27T18:15:00Z	2022-07-14T05:11:54.728743Z
pysec-2022-43176	9.8 (3.1)	The Zibal package in PyPI v1.0.0 was discovered to contain a code execution backdoor. Thi…	zibal	2022-06-24T21:15:00Z	2024-11-21T14:23:03.404044Z
pysec-2022-43172	9.8 (3.1)	The Watertools package in PyPI v0.0.0 was discovered to contain a code execution backdoor…	watertools	2022-06-24T21:15:00Z	2024-11-21T14:23:03.143453Z
pysec-2022-43169	9.8 (3.1)	The Togglee package in PyPI version v0.0.8 was discovered to contain a code execution bac…	togglee	2022-06-24T21:15:00Z	2024-11-21T14:23:01.740031Z
pysec-2022-43168	9.8 (3.1)	The Sixfab-Tool in PyPI v0.0.2 to v0.0.3 was discovered to contain a code execution backd…	sixfab-tool	2022-06-24T21:15:00Z	2022-07-06T19:30:00Z
pysec-2022-43165	9.8 (3.1)	The Scoptrial package in PyPI version v0.0.5 was discovered to contain a code execution b…	scoptrial	2022-06-24T21:15:00Z	2024-11-21T14:23:01.181819Z
pysec-2022-43164	9.8 (3.1)	The Rondolu-YT-Concate package in PyPI v0.1.0 was discovered to contain a code execution …	rondolu-yt-concate	2022-06-24T21:15:00Z	2024-11-21T14:23:00.996865Z
pysec-2022-43133	9.8 (3.1)	The drxhello package in PyPI v0.0.1 was discovered to contain a code execution backdoor v…	drxhello	2022-06-24T21:15:00Z	2024-11-21T14:22:45.663614Z
pysec-2022-43132	9.8 (3.1)	The DR-Web-Engine package in PyPI v0.2.0b0 was discovered to contain a code execution bac…	dr-web-engine	2022-06-24T21:15:00Z	2024-11-21T14:22:45.610409Z
pysec-2022-43073	9.8 (3.1)	The cloudlabeling package in PyPI v0.0.1 was discovered to contain a code execution backd…	cloudlabeling	2022-06-24T21:15:00Z	2024-11-21T14:22:42.118573Z
pysec-2022-43066	9.8 (3.1)	The AAmiles package in PyPI v0.1.0 was discovered to contain a code execution backdoor vi…	aamiles	2022-06-24T21:15:00Z	2024-11-21T14:22:40.256677Z
pysec-2022-221		The Catly-Translate package in PyPI v0.0.3 to v0.0.5 was discovered to contain a code exe…	catly-translate	2022-06-24T21:15:00Z	2022-07-06T20:32:04.087337Z
pysec-2022-220		Reserved The pyesasky for python, as distributed on PyPI, included a code-execution…	pyesasky	2022-06-24T21:15:00Z	2022-07-06T18:41:16.470294Z
pysec-2022-219		The RootInteractive package in PyPI v0.0.5 to v0.0.19b0 was discovered to contain a code …	rootinteractive	2022-06-24T21:15:00Z	2022-07-05T20:48:00Z
pysec-2022-218		The django-navbar-client package of v0.9.50 to v1.0.1 was discovered to contain a code ex…	django-navbar-client	2022-06-24T21:15:00Z	2022-07-05T20:48:00Z
pysec-2022-217		The cryptoasset-data-downloader package in PyPI v1.0.0 to v1.0.1 was discovered to contai…	cryptoasset-data-downloader	2022-06-24T21:15:00Z	2022-07-05T22:30:15.999007Z
pysec-2022-216		The Perdido package in PyPI v0.0.1 to v0.0.2 was discovered to contain a code execution b…	perdido	2022-06-24T21:15:00Z	2022-07-05T19:16:00Z
pysec-2022-215		The ML-Scanner package in PyPI v0.1.0 to v0.1.5 was discovered to contain a code executio…	ml-scanner	2022-06-24T21:15:00Z	2022-07-05T20:33:43.190558Z
pysec-2022-214		The Beginner package in PyPI v0.0.2 to v0.0.4 was discovered to contain a code execution …	beginner	2022-06-24T21:15:00Z	2022-07-05T20:33:42.390810Z
pysec-2022-43162	7.5 (3.1)	Redis v7.0 was discovered to contain a memory leak via the component streamGetEdgeID.	redis	2022-06-23T17:15:00Z	2024-12-23T11:33:23.546447Z
pysec-2022-43059	5.5 (3.1)	AIOHTTP 3.8.1 can report a "ValueError: Invalid IPv6 URL" outcome, which can lead to a De…	aiohttp	2022-06-23T17:15:00Z	2024-02-16T13:47:54.655573Z
pysec-2022-210		An issue was discovered in SaltStack Salt in versions before 3002.9, 3003.5, 3004.2. PAM …	salt	2022-06-23T17:15:00Z	2022-06-23T18:47:26.936484Z
pysec-2022-211		Jupyter Server provides the backend (i.e. the core services, APIs, and REST endpoints) fo…	jupyter-server	2022-06-14T21:15:00Z	2022-06-24T18:46:20.115761Z
pysec-2022-212		Jupyter Notebook is a web-based notebook environment for interactive computing. Prior to …	notebook	2022-06-14T18:15:00Z	2022-08-24T20:50:33.251121Z
pysec-2022-209		Command Injection in GitHub repository nuitka/nuitka prior to 0.9.	nuitka	2022-06-12T14:15:00Z	2022-06-23T11:27:14.332916Z
pysec-2022-207		An issue was discovered in Couchbase Sync Gateway 3.x before 3.0.2. Admin credentials are…	couchbase	2022-06-10T12:15:00Z	2022-06-17T16:54:24.107616Z
pysec-2022-206		OAuthenticator is an OAuth token library for the JupyerHub login handler. CILogonOAuthent…	oauthenticator	2022-06-09T13:15:00Z	2022-06-16T05:33:11.901142Z
pysec-2022-43053	7.5 (3.1)	Vyper is a Pythonic Smart Contract Language for the ethereum virtual machine. In versions…	vyper	2022-06-09T09:15:00+00:00	2023-08-02T18:28:00.437362+00:00
pysec-2022-208		django-s3file is a lightweight file upload input for Django and Amazon S3 . In versions p…	django-s3file	2022-06-09T04:15:00Z	2022-06-17T16:54:24.425121Z
pysec-2022-43147	9.8 (3.1)	pyanxdns package in PyPI version 0.2 is vulnerable to code execution backdoor. The impact…	pyanxdns	2022-06-08T20:15:00Z	2024-11-21T14:22:59.309018Z

ID	Description	Type

ID	Description	Updated

ID	Description	Published	Updated
mal-2025-192431	Malicious code in ctosec-appsec-wb-xray-adapters (PyPI)	2025-12-10T08:58:53Z	2025-12-11T09:27:52Z
mal-2025-192432	Malicious code in kzip (PyPI)	2025-12-10T08:56:08Z	2025-12-11T17:12:53Z
mal-2025-192430	Malicious code in bigpyx (PyPI)	2025-12-10T08:44:43Z	2025-12-31T02:45:15Z
mal-2025-192423	Malicious code in vue2-amis-custom-widget-pro (npm)	2025-12-10T04:05:56Z	2025-12-23T17:25:04Z
mal-2025-192429	Malicious code in yunxohang3 (npm)	2025-12-10T04:03:49Z	2025-12-23T18:26:18Z
mal-2025-192428	Malicious code in yunxoahng2 (npm)	2025-12-10T03:55:40Z	2025-12-23T18:26:18Z
mal-2025-192422	Malicious code in real-time-tweet-streamer (npm)	2025-12-10T03:13:39Z	2025-12-10T21:09:39Z
mal-2025-192420	Malicious code in near-fast-auth-signer (npm)	2025-12-10T03:05:03Z	2025-12-10T21:09:38Z
mal-2025-192421	Malicious code in vue2-amis-custom-widget123 (npm)	2025-12-10T02:40:38Z	2025-12-10T21:09:40Z
mal-2025-192414	Malicious code in mongo-decimal (npm)	2025-12-10T01:58:41Z	2025-12-10T21:09:38Z
mal-2025-192413	Malicious code in modules-runtime (npm)	2025-12-10T01:58:41Z	2025-12-10T21:09:38Z
mal-2025-192412	Malicious code in meteor-developer-oauth (npm)	2025-12-10T01:58:41Z	2025-12-10T21:09:38Z
mal-2025-192410	Malicious code in facts-base (npm)	2025-12-10T01:58:41Z	2025-12-10T21:09:37Z
mal-2025-192409	Malicious code in ecmascript-runtime-client (npm)	2025-12-10T01:58:41Z	2025-12-10T21:09:37Z
mal-2025-192408	Malicious code in ddp-common (npm)	2025-12-10T01:58:41Z	2025-12-10T21:09:36Z
mal-2025-192404	Malicious code in callback-hook (npm)	2025-12-10T01:58:41Z	2025-12-10T21:09:36Z
mal-2025-192403	Malicious code in allow-deny (npm)	2025-12-10T01:58:41Z	2025-12-10T21:09:35Z
mal-2025-192419	Malicious code in wasm-bindgen (npm)	2025-12-10T01:57:45Z	2025-12-10T21:09:41Z
mal-2025-192418	Malicious code in sfdc-abstract-legend (npm)	2025-12-10T01:57:45Z	2025-12-10T21:09:40Z
mal-2025-192417	Malicious code in rum-events-format (npm)	2025-12-10T01:57:45Z	2025-12-24T10:09:30Z
mal-2025-192416	Malicious code in pymongo (npm)	2025-12-10T01:57:45Z	2025-12-10T21:09:39Z
mal-2025-192411	Malicious code in fastavro (npm)	2025-12-10T01:57:45Z	2025-12-10T21:09:37Z
mal-2025-192407	Malicious code in datadog-checks-downloader (npm)	2025-12-10T01:57:45Z	2025-12-10T21:09:36Z
mal-2025-192406	Malicious code in datadog-checks-dependency-provider (npm)	2025-12-10T01:57:45Z	2025-12-10T21:09:36Z
mal-2025-192405	Malicious code in confluent-kafka (npm)	2025-12-10T01:57:45Z	2025-12-10T21:09:36Z
mal-2025-192415	Malicious code in portal-lim (npm)	2025-12-10T01:57:26Z	2025-12-10T21:09:39Z
mal-2025-192398	Malicious code in database-mongoose-kit (npm)	2025-12-10T01:47:17Z	2025-12-23T16:45:00Z
mal-2025-192397	Malicious code in @onlytoodles/crypto-jsa (npm)	2025-12-10T01:45:43Z	2025-12-10T21:09:35Z
mal-2025-192402	Malicious code in wartsila-text-csv (npm)	2025-12-10T01:44:48Z	2025-12-24T10:09:31Z
mal-2025-192401	Malicious code in serval-integrations-common-frontend (npm)	2025-12-10T01:43:51Z	2025-12-24T10:09:30Z

ID	Description	Published	Updated
wid-sec-w-2025-2023	cURL: Mehrere Schwachstellen ermöglichen Manipulation von Dateien	2025-09-09T22:00:00.000+00:00	2026-01-04T23:00:00.000+00:00
wid-sec-w-2025-2022	Adobe ColdFusion: Schwachstelle ermöglicht Manipulation von Daten	2025-09-09T22:00:00.000+00:00	2025-09-09T22:00:00.000+00:00
wid-sec-w-2025-2021	Adobe Dreamweaver: Schwachstelle ermöglicht Codeausführung	2025-09-09T22:00:00.000+00:00	2025-09-09T22:00:00.000+00:00
wid-sec-w-2025-2020	Adobe Acrobat und Reader: Mehrere Schwachstellen	2025-09-09T22:00:00.000+00:00	2025-09-09T22:00:00.000+00:00
wid-sec-w-2025-2019	Dell BIOS: Schwachstelle ermöglicht Offenlegung und Manipulation	2025-09-09T22:00:00.000+00:00	2025-09-09T22:00:00.000+00:00
wid-sec-w-2025-2018	Fortinet FortiWeb: Schwachstelle ermöglicht Offenlegung von Informationen	2025-09-09T22:00:00.000+00:00	2025-09-09T22:00:00.000+00:00
wid-sec-w-2025-2017	Ivanti Endpoint Manager: Mehrere Schwachstellen ermöglichen Codeausführung	2025-09-09T22:00:00.000+00:00	2025-09-09T22:00:00.000+00:00
wid-sec-w-2025-2016	Netgate pfSense: Mehrere Schwachstellen	2025-09-09T22:00:00.000+00:00	2025-09-09T22:00:00.000+00:00
wid-sec-w-2025-2015	Google Chrome und Microsoft Edge: Mehrere Schwachstellen	2025-09-09T22:00:00.000+00:00	2025-10-21T22:00:00.000+00:00
wid-sec-w-2025-2014	CoreDNS: Schwachstelle ermöglicht Denial of Service	2025-09-09T22:00:00.000+00:00	2025-10-19T22:00:00.000+00:00
wid-sec-w-2025-2013	Lenovo XClarity Orchestrator: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-09-09T22:00:00.000+00:00	2025-09-11T22:00:00.000+00:00
wid-sec-w-2025-2012	cPanel cPanel/WHM: Schwachstelle ermöglicht Manipulation von Dateien	2025-09-09T22:00:00.000+00:00	2025-12-01T23:00:00.000+00:00
wid-sec-w-2025-2011	Adobe Experience Manager: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen	2025-09-09T22:00:00.000+00:00	2025-09-09T22:00:00.000+00:00
wid-sec-w-2025-2010	Ivanti Connect Secure und Policy Secure: Mehrere Schwachstellen	2025-09-09T22:00:00.000+00:00	2025-09-09T22:00:00.000+00:00
wid-sec-w-2025-2009	Adobe Creative Cloud Applikationen: Mehrere Schwachstellen	2025-09-09T22:00:00.000+00:00	2025-09-09T22:00:00.000+00:00
wid-sec-w-2025-2008	Liferay Portal: Schwachstelle ermöglicht Cross-Site Scripting	2025-09-09T22:00:00.000+00:00	2025-09-09T22:00:00.000+00:00
wid-sec-w-2025-2007	Xen: Mehrere Schwachstellen	2025-09-09T22:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2006	Microsoft SQL Server: Mehrere Schwachstellen	2025-09-09T22:00:00.000+00:00	2025-09-09T22:00:00.000+00:00
wid-sec-w-2025-2005	Microsoft Windows und Windows Server: Mehrere Schwachstellen	2025-09-09T22:00:00.000+00:00	2025-11-11T23:00:00.000+00:00
wid-sec-w-2025-2004	Microsoft Azure und Microsoft Entra: Mehrere Schwachstellen	2025-09-09T22:00:00.000+00:00	2025-09-11T22:00:00.000+00:00
wid-sec-w-2025-2003	Microsoft Office Produkte: Mehrere Schwachstellen	2025-09-09T22:00:00.000+00:00	2025-09-09T22:00:00.000+00:00
wid-sec-w-2025-2002	libssh: Schwachstelle ermöglicht Denial of Service	2025-09-09T22:00:00.000+00:00	2025-11-04T23:00:00.000+00:00
wid-sec-w-2025-2001	TYPO3 Core: Mehrere Schwachstellen	2025-09-08T22:00:00.000+00:00	2025-09-09T22:00:00.000+00:00
wid-sec-w-2025-2000	Rockwell Automation ControlLogix: Schwachstelle ermöglicht Denial of Service	2025-09-08T22:00:00.000+00:00	2025-09-09T22:00:00.000+00:00
wid-sec-w-2025-1999	Adobe Magento SessionReaper: Schwachstelle ermöglicht Umgehung von Sicherheitsmaßnahmen	2025-09-08T22:00:00.000+00:00	2025-10-22T22:00:00.000+00:00
wid-sec-w-2025-1998	ffmpeg: Schwachstelle ermöglicht Codeausführung und potenziell Denial of Service	2025-09-08T22:00:00.000+00:00	2025-10-21T22:00:00.000+00:00
wid-sec-w-2025-1997	Rockwell Automation FactoryTalk: Mehrere Schwachstellen	2025-09-08T22:00:00.000+00:00	2025-09-09T22:00:00.000+00:00
wid-sec-w-2025-1996	VMware Tanzu Spring Cloud: Schwachstelle ermöglicht Manipulation von Daten	2025-09-08T22:00:00.000+00:00	2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-1995	IBM Power Hardware Management Console: Schwachstelle ermöglicht Cross-Site Scripting	2025-09-08T22:00:00.000+00:00	2025-09-09T22:00:00.000+00:00
wid-sec-w-2025-1994	D-LINK Router DIR-852: Schwachstelle ermöglicht Offenlegung von Informationen	2025-09-08T22:00:00.000+00:00	2025-09-08T22:00:00.000+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
rhsa-2025:9562	Red Hat Security Advisory: OpenShift Container Platform 4.20.0 bug fix and security update	2025-10-21T04:13:27+00:00	2026-01-08T03:40:40+00:00
rhsa-2025:18684	Red Hat Security Advisory: ghostscript security update from RHEL	2025-10-21T04:08:16+00:00	2025-11-21T19:29:32+00:00
rhsa-2025:18688	Red Hat Security Advisory: mod_auth_openidc security update from RHEL	2025-10-21T04:06:40+00:00	2025-11-21T19:29:32+00:00
rhsa-2025:18673	Red Hat Security Advisory: libxslt security update from RHEL	2025-10-21T04:06:25+00:00	2025-11-21T19:29:30+00:00
rhsa-2025:18680	Red Hat Security Advisory: 389-ds-base security update from RHEL	2025-10-21T04:05:55+00:00	2025-11-21T19:29:31+00:00
rhsa-2025:18675	Red Hat Security Advisory: webkit2gtk3 security update from RHEL	2025-10-21T04:05:27+00:00	2025-11-21T19:29:30+00:00
rhsa-2025:18674	Red Hat Security Advisory: opentelemetry-collector security update from RHEL	2025-10-21T04:04:50+00:00	2025-11-21T19:29:30+00:00
rhsa-2025:18677	Red Hat Security Advisory: gimp security update from RHEL	2025-10-21T04:04:31+00:00	2025-11-21T19:29:31+00:00
rhsa-2025:18672	Red Hat Security Advisory: expat security update from RHEL	2025-10-21T04:03:56+00:00	2025-11-21T19:29:29+00:00
rhsa-2025:18657	Red Hat Security Advisory: grub2 security update from RHEL	2025-10-21T04:03:55+00:00	2025-11-21T19:29:26+00:00
rhsa-2025:18669	Red Hat Security Advisory: grafana security update from RHEL	2025-10-21T03:51:25+00:00	2025-11-21T19:29:28+00:00
rhsa-2025:18635	Red Hat Security Advisory: python3.12 security update from RHEL	2025-10-21T03:51:20+00:00	2025-11-21T19:29:31+00:00
rhsa-2025:18625	Red Hat Security Advisory: bootc security update from RHEL	2025-10-21T03:51:01+00:00	2025-11-21T19:29:25+00:00
rhsa-2025:18665	Red Hat Security Advisory: vim security update from RHEL	2025-10-21T03:50:31+00:00	2025-11-21T19:29:28+00:00
rhsa-2025:18658	Red Hat Security Advisory: corosync security update from RHEL	2025-10-21T03:49:01+00:00	2025-11-21T19:29:28+00:00
rhsa-2025:18645	Red Hat Security Advisory: aardvark-dns security update from RHEL	2025-10-21T03:48:36+00:00	2025-11-21T19:29:26+00:00
rhsa-2025:18608	Red Hat Security Advisory: protobuf security update from RHEL	2025-10-21T03:48:00+00:00	2025-11-21T19:29:24+00:00
rhsa-2025:18639	Red Hat Security Advisory: perl-Module-ScanDeps security update from RHEL	2025-10-21T03:46:45+00:00	2025-11-21T19:29:26+00:00
rhsa-2025:18612	Red Hat Security Advisory: python3.12-cryptography security update from RHEL	2025-10-21T03:45:25+00:00	2025-11-21T19:29:26+00:00
rhsa-2025:18416	Red Hat Security Advisory: Automotive bug fix and enhancement update	2025-10-21T03:29:45+00:00	2025-11-21T19:29:18+00:00
rhsa-2025:9563	Red Hat Security Advisory: OpenShift Container Platform 4.20.0 security and extras update	2025-10-21T03:27:40+00:00	2025-12-08T16:10:56+00:00
rhsa-2025:18525	Red Hat Security Advisory: rust-bootupd security update from RHEL	2025-10-21T03:13:35+00:00	2025-11-21T19:29:24+00:00
rhsa-2025:18510	Red Hat Security Advisory: python3.11 security update from RHEL	2025-10-21T03:13:27+00:00	2025-11-21T19:29:23+00:00
rhsa-2025:18505	Red Hat Security Advisory: rhc security update from RHEL	2025-10-21T03:12:20+00:00	2025-11-21T19:29:23+00:00
rhsa-2025:18408	Red Hat Security Advisory: krb5 security update from RHEL	2025-10-21T03:09:48+00:00	2025-11-21T19:29:17+00:00
rhsa-2025:18407	Red Hat Security Advisory: iptraf-ng security update from RHEL	2025-10-21T03:05:35+00:00	2025-11-21T19:29:18+00:00
rhsa-2025:18433	Red Hat Security Advisory: keylime-agent-rust security update from RHEL	2025-10-21T02:52:05+00:00	2025-11-21T19:29:18+00:00
rhsa-2025:18442	Red Hat Security Advisory: openssh security update from RHEL	2025-10-21T02:51:30+00:00	2025-11-21T19:29:21+00:00
rhsa-2025:18450	Red Hat Security Advisory: rsync security update from RHEL	2025-10-21T02:50:15+00:00	2025-11-21T19:29:22+00:00
rhsa-2025:18446	Red Hat Security Advisory: xorg-x11-server-Xwayland security update from RHEL	2025-10-21T02:50:10+00:00	2025-11-21T19:29:22+00:00

ID	Description	Published	Updated
icsa-24-058-01	Mitsubishi Electric Multiple Factory Automation Products (Update A)	2024-02-27T07:00:00.000000Z	2025-01-16T07:00:00.000000Z
icsa-24-053-01	Delta Electronics CNCSoft-B DOPSoft	2024-02-22T07:00:00.000000Z	2024-02-22T07:00:00.000000Z
icsa-24-051-03	Mitsubishi Electric Electrical discharge machines	2024-02-20T07:00:00.000000Z	2024-04-23T06:00:00.000000Z
icsa-24-051-02	ICSNPP - Ethercat Zeek Plugin	2024-02-20T07:00:00.000000Z	2024-02-20T07:00:00.000000Z
icsa-24-051-01	Commend WS203VICM	2024-02-20T07:00:00.000000Z	2024-02-20T07:00:00.000000Z
icsa-24-046-16	Rockwell Automation FactoryTalk Service Platform	2024-02-15T07:00:00.000000Z	2024-02-15T07:00:00.000000Z
icsa-24-331-03	Schneider Electric EcoStruxure Control Expert, EcoStruxure Process Expert, and Modicon M340, M580 and M580 Safety PLCs	2024-02-13T12:41:43.000000Z	2024-07-09T00:00:00.000000Z
icsa-24-044-01	Mitsubishi Electric MELSEC iQ-R Series Safety CPU and SIL2 Process CPU (Update A)	2024-02-13T07:00:00.000000Z	2024-05-16T06:00:00.000000Z
icsa-24-046-15	Siemens SINEC NMS	2024-02-13T00:00:00.000000Z	2024-03-12T00:00:00.000000Z
icsa-24-046-14	Siemens Polarion ALM	2024-02-13T00:00:00.000000Z	2024-05-14T00:00:00.000000Z
icsa-24-046-13	Siemens Parasolid	2024-02-13T00:00:00.000000Z	2024-02-13T00:00:00.000000Z
icsa-24-046-12	Siemens SIMATIC WinCC, OpenPCS	2024-02-13T00:00:00.000000Z	2024-09-10T00:00:00.000000Z
icsa-24-046-11	Siemens SCALANCE XCM-/XRM-300	2024-02-13T00:00:00.000000Z	2024-02-13T00:00:00.000000Z
icsa-24-046-10	Siemens Simcenter Femap	2024-02-13T00:00:00.000000Z	2024-03-12T00:00:00.000000Z
icsa-24-046-09	Siemens SCALANCE SC-600 Family	2024-02-13T00:00:00.000000Z	2024-02-13T00:00:00.000000Z
icsa-24-046-08	Siemens RUGGEDCOM APE1808	2024-02-13T00:00:00.000000Z	2024-05-14T00:00:00.000000Z
icsa-24-046-07	Siemens Tecnomatix Plant Simulation	2024-02-13T00:00:00.000000Z	2024-02-13T00:00:00.000000Z
icsa-24-046-06	Siemens Unicam FX	2024-02-13T00:00:00.000000Z	2024-02-13T00:00:00.000000Z
icsa-24-046-05	Siemens Location Intelligence	2024-02-13T00:00:00.000000Z	2024-02-13T00:00:00.000000Z
icsa-24-046-04	Siemens CP343-1 Devices	2024-02-13T00:00:00.000000Z	2024-02-13T00:00:00.000000Z
icsa-24-046-03	Siemens SIMATIC RTLS Gateways	2024-02-13T00:00:00.000000Z	2024-02-13T00:00:00.000000Z
icsa-24-046-02	Siemens SIDIS Prime	2024-02-13T00:00:00.000000Z	2024-02-13T00:00:00.000000Z
icsa-24-046-01	Siemens SCALANCE W1750D	2024-02-13T00:00:00.000000Z	2024-04-09T00:00:00.000000Z
icsa-24-039-01	Qolsys IQ Panel 4, IQ4 HUB	2024-02-08T07:00:00.000000Z	2024-02-08T07:00:00.000000Z
icsa-24-037-02	HID Global Reader Configuration Cards	2024-02-06T07:00:00.000000Z	2024-02-06T07:00:00.000000Z
icsa-24-037-01	HID Global Encoders	2024-02-06T07:00:00.000000Z	2024-02-06T07:00:00.000000Z
icsa-24-032-03	AVEVA Edge products (formerly known as InduSoft Web Studio)	2024-02-01T07:00:00.000000Z	2024-02-01T07:00:00.000000Z
icsa-24-032-01	Gessler GmbH WEB-MASTER	2024-02-01T07:00:00.000000Z	2025-08-07T06:00:00.000000Z
icsa-24-030-07	Rockwell Automation LP30/40/50 and BM40 Operator Interface	2024-01-30T07:00:00.000000Z	2024-01-30T07:00:00.000000Z
icsa-24-030-06	Rockwell Automation FactoryTalk Service Platform	2024-01-30T07:00:00.000000Z	2024-01-30T07:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-cbr8-cops-vc2zsjsx	Cisco IOS XE Software for Cisco cBR-8 Converged Broadband Routers Common Open Policy Service Denial of Service Vulnerability	2021-09-22T16:00:00+00:00	2021-09-22T16:00:00+00:00
cisco-sa-asr900acl-ueeycxkv	Cisco ASR 900 and ASR 920 Series Aggregation Services Routers Access Control List Bypass Vulnerability	2021-09-22T16:00:00+00:00	2021-09-22T16:00:00+00:00
cisco-sa-airo-wpa-pktleak-dos-ustygrl	Cisco Aironet Access Points WLAN Control Protocol Packet Buffer Leak Denial of Service Vulnerability	2021-09-22T16:00:00+00:00	2021-09-22T16:00:00+00:00
cisco-sa-aaa-yx47zt8q	Cisco IOS XE Software NETCONF and RESTCONF Authentication Bypass Vulnerability	2021-09-22T16:00:00+00:00	2021-09-22T16:00:00+00:00
cisco-sa-xrbgp-rpki-dos-gvmjqxbk	Cisco IOS XR Software Border Gateway Protocol Resource Public Key Infrastructure Denial of Service Vulnerability	2021-09-08T16:00:00+00:00	2021-09-08T16:00:00+00:00
cisco-sa-npspin-qypwdhfd	Cisco IOS XR Software for ASR 9000 Series Routers Denial of Service Vulnerability	2021-09-08T16:00:00+00:00	2021-10-08T12:18:21+00:00
cisco-sa-lnt-qn9mczwn	Cisco IOS XR Software for Cisco 8000 and Network Convergence System 540 Series Routers Image Verification Vulnerabilities	2021-09-08T16:00:00+00:00	2021-09-08T16:00:00+00:00
cisco-sa-ipsla-za3srrpp	Cisco IOS XR Software IP Service Level Agreements and Two-Way Active Measurement Protocol Denial of Service Vulnerability	2021-09-08T16:00:00+00:00	2021-10-08T12:49:15+00:00
cisco-sa-iosxr-scp-inject-qwzocv2	Cisco IOS XR Software Arbitrary File Read and Write Vulnerability	2021-09-08T16:00:00+00:00	2022-02-18T14:38:20+00:00
cisco-sa-iosxr-privescal-dzymrkf	Cisco IOS XR Software Authenticated User Privilege Escalation Vulnerabilities	2021-09-08T16:00:00+00:00	2021-09-08T16:00:00+00:00
cisco-sa-iosxr-infodisc-cjldgmc5	Cisco IOS XR Software Unauthorized Information Disclosure Vulnerability	2021-09-08T16:00:00+00:00	2021-09-08T16:00:00+00:00
cisco-sa-iosxr-dhcp-dos-pjpvrelu	Cisco IOS XR Software DHCP Version 4 Server Denial of Service Vulnerability	2021-09-08T16:00:00+00:00	2021-10-20T17:55:23+00:00
cisco-sa-iosxr-cmd-inj-wbzkvpxc	Cisco IOS XR Software Command Injection Vulnerabilities	2021-09-08T16:00:00+00:00	2021-09-17T17:22:42+00:00
cisco-sa-broadworks-dj9jt67n	Cisco BroadWorks CommPilot Application Software Vulnerabilities	2021-09-08T16:00:00+00:00	2021-09-08T16:00:00+00:00
cisco-sa-prime-info-disc-ntu9fj2	Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager Information Disclosure Vulnerability	2021-09-01T16:00:00+00:00	2021-09-01T16:00:00+00:00
cisco-sa-prime-collab-xss-fqmde5go	Cisco Prime Collaboration Provisioning Cross-Site Scripting Vulnerability	2021-09-01T16:00:00+00:00	2021-09-01T16:00:00+00:00
cisco-sa-nfvis-g2dmvvh	Cisco Enterprise NFV Infrastructure Software Authentication Bypass Vulnerability	2021-09-01T16:00:00+00:00	2021-09-01T16:00:00+00:00
cisco-sa-ise-xss-4hnzfewr	Cisco Identity Services Engine Cross-Site Scripting Vulnerability	2021-09-01T16:00:00+00:00	2021-09-01T16:00:00+00:00
cisco-sa-insight-infodis-2by2zpbb	Cisco Nexus Insights Authenticated Information Disclosure Vulnerability	2021-09-01T16:00:00+00:00	2021-09-01T16:00:00+00:00
cisco-sa-ucs-ssh-dos-mgvmyrqy	Cisco UCS Manager Software SSH Sessions Denial of Service Vulnerability	2021-08-25T16:00:00+00:00	2021-08-25T16:00:00+00:00
cisco-sa-nxos-ngoam-dos-ltdb9hv	Cisco NX-OS Software VXLAN OAM (NGOAM) Denial of Service Vulnerability	2021-08-25T16:00:00+00:00	2021-08-25T16:00:00+00:00
cisco-sa-nxos-mpls-oam-dos-sgo9x5gm	Cisco NX-OS Software MPLS OAM Denial of Service Vulnerability	2021-08-25T16:00:00+00:00	2022-09-02T17:41:51+00:00
cisco-sa-nxos-login-blockfor-rwjgvecu	Cisco NX-OS Software system login block-for Denial of Service Vulnerability	2021-08-25T16:00:00+00:00	2021-08-25T16:00:00+00:00
cisco-sa-nexus-acl-vrvqypve	Cisco Nexus 9500 Series Switches Access Control List Bypass Vulnerability	2021-08-25T16:00:00+00:00	2021-08-25T16:00:00+00:00
cisco-sa-naci-mdvul-vrkvgnu	Cisco Nexus 9000 Series Fabric Switches ACI Mode Privilege Escalation Vulnerability	2021-08-25T16:00:00+00:00	2021-08-25T16:00:00+00:00
cisco-sa-naci-afr-utjfo2d7	Cisco Nexus 9000 Series Fabric Switches ACI Mode Arbitrary File Read Vulnerability	2021-08-25T16:00:00+00:00	2021-08-25T16:00:00+00:00
cisco-sa-n9kaci-tcp-dos-yxukt6gm	Cisco Nexus 9000 Series Fabric Switches ACI Mode Multi-Pod and Multi-Site TCP Denial of Service Vulnerability	2021-08-25T16:00:00+00:00	2022-02-23T15:56:25+00:00
cisco-sa-n9kaci-queue-wedge-clddefkf	Cisco Nexus 9000 Series Fabric Switches ACI Mode Queue Wedge Denial of Service Vulnerability	2021-08-25T16:00:00+00:00	2021-08-25T16:00:00+00:00
cisco-sa-capic-scss-bft75yrm	Cisco Application Policy Infrastructure Controller Stored Cross-Site Scripting Vulnerability	2021-08-25T16:00:00+00:00	2021-08-25T16:00:00+00:00
cisco-sa-capic-pesc-pkmgk4j	Cisco Application Policy Infrastructure Controller Privilege Escalation Vulnerability	2021-08-25T16:00:00+00:00	2021-08-25T16:00:00+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2025-40029	bus: fsl-mc: Check return value of platform_get_resource()	2025-10-02T00:00:00.000Z	2025-10-29T01:02:00.000Z
msrc_cve-2025-40027	net/9p: fix double req put in p9_fd_cancelled	2025-10-02T00:00:00.000Z	2025-10-29T01:04:34.000Z
msrc_cve-2025-40026	KVM: x86: Don't (re)check L1 intercepts when completing userspace I/O	2025-10-02T00:00:00.000Z	2025-10-29T01:03:10.000Z
msrc_cve-2025-40025	f2fs: fix to do sanity check on node footer for non inode dnode	2025-10-02T00:00:00.000Z	2025-10-29T01:02:43.000Z
msrc_cve-2025-40024	vhost: Take a reference on the task in struct vhost_task.	2025-10-02T00:00:00.000Z	2025-10-26T01:01:14.000Z
msrc_cve-2025-40021	tracing: dynevent: Add a missing lockdown check on dynevent	2025-10-02T00:00:00.000Z	2025-10-26T01:01:36.000Z
msrc_cve-2025-40020	can: peak_usb: fix shift-out-of-bounds issue	2025-10-02T00:00:00.000Z	2025-10-26T01:01:30.000Z
msrc_cve-2025-40019	crypto: essiv - Check ssize for decryption and in-place encryption	2025-10-02T00:00:00.000Z	2025-12-07T01:39:24.000Z
msrc_cve-2025-40018	ipvs: Defer ip_vs_ftp unregister during netns cleanup	2025-10-02T00:00:00.000Z	2025-10-25T14:01:29.000Z
msrc_cve-2025-40016	media: uvcvideo: Mark invalid entities with id UVC_INVALID_ENTITY_ID	2025-10-02T00:00:00.000Z	2025-10-22T01:01:25.000Z
msrc_cve-2025-40013	ASoC: qcom: audioreach: fix potential null pointer dereference	2025-10-02T00:00:00.000Z	2025-10-22T01:01:20.000Z
msrc_cve-2025-40011	drm/gma500: Fix null dereference in hdmi teardown	2025-10-02T00:00:00.000Z	2025-10-22T01:01:36.000Z
msrc_cve-2025-40010	afs: Fix potential null pointer dereference in afs_put_server	2025-10-02T00:00:00.000Z	2025-10-22T01:01:41.000Z
msrc_cve-2025-40005	spi: cadence-quadspi: Implement refcount to handle unbind during busy	2025-10-02T00:00:00.000Z	2026-01-08T14:49:45.000Z
msrc_cve-2025-40003	net: mscc: ocelot: Fix use-after-free caused by cyclic delayed work	2025-10-02T00:00:00.000Z	2026-01-08T14:49:37.000Z
msrc_cve-2025-40001	scsi: mvsas: Fix use-after-free bugs in mvs_work_queue	2025-10-02T00:00:00.000Z	2025-12-07T01:38:50.000Z
msrc_cve-2025-40000	wifi: rtw89: fix use-after-free in rtw89_core_tx_kick_off_and_wait()	2025-10-02T00:00:00.000Z	2025-10-16T01:02:49.000Z
msrc_cve-2025-39998	scsi: target: target_core_configfs: Add length check to avoid buffer overflow	2025-10-02T00:00:00.000Z	2025-10-16T01:02:33.000Z
msrc_cve-2025-39996	media: b2c2: Fix use-after-free causing by irq_check_work in flexcop_pci_remove	2025-10-02T00:00:00.000Z	2025-10-16T01:03:22.000Z
msrc_cve-2025-39995	media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe	2025-10-02T00:00:00.000Z	2025-10-16T01:02:10.000Z
msrc_cve-2025-39994	media: tuner: xc5000: Fix use-after-free in xc5000_release	2025-10-02T00:00:00.000Z	2025-10-16T01:02:44.000Z
msrc_cve-2025-39993	media: rc: fix races with imon_disconnect()	2025-10-02T00:00:00.000Z	2025-10-16T01:02:22.000Z
msrc_cve-2025-39990	bpf: Check the helper function is valid in get_helper_proto	2025-10-02T00:00:00.000Z	2026-01-08T14:49:29.000Z
msrc_cve-2025-39988	can: etas_es58x: populate ndo_change_mtu() to prevent buffer overflow	2025-10-02T00:00:00.000Z	2025-10-16T01:01:43.000Z
msrc_cve-2025-39987	can: hi311x: populate ndo_change_mtu() to prevent buffer overflow	2025-10-02T00:00:00.000Z	2025-10-16T01:02:55.000Z
msrc_cve-2025-39986	can: sun4i_can: populate ndo_change_mtu() to prevent buffer overflow	2025-10-02T00:00:00.000Z	2025-10-16T01:03:16.000Z
msrc_cve-2025-39985	can: mcba_usb: populate ndo_change_mtu() to prevent buffer overflow	2025-10-02T00:00:00.000Z	2025-10-16T01:01:37.000Z
msrc_cve-2025-39982	Bluetooth: hci_event: Fix UAF in hci_acl_create_conn_sync	2025-10-02T00:00:00.000Z	2025-10-16T01:03:06.000Z
msrc_cve-2025-39981	Bluetooth: MGMT: Fix possible UAFs	2025-10-02T00:00:00.000Z	2026-01-08T14:49:20.000Z
msrc_cve-2025-39980	nexthop: Forbid FDB status change while nexthop is in a group	2025-10-02T00:00:00.000Z	2025-10-16T01:02:38.000Z

ID	Description	Published	Updated

ID	Description	Updated
var-202105-1432	The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired…	2025-12-22T21:18:51.121000Z
var-201007-0318	WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before…	2025-12-22T21:18:19.682000Z
var-201109-0208	Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers…	2025-12-22T21:17:42.803000Z
var-201007-0949	WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before…	2025-12-22T21:17:41.965000Z
var-201904-1323	A memory corruption issue was addressed with improved memory handling. This issue affecte…	2025-12-22T21:17:35.017000Z
var-200703-0020	Stack-based buffer overflow in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remot…	2025-12-22T21:17:32.527000Z
var-201806-1441	An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS bef…	2025-12-22T21:16:51.534000Z
var-200107-0175	GoAhead webserver 2.1 allows remote attackers to cause a denial of service via an HTTP re…	2025-12-22T21:16:51.415000Z
var-201302-0307	Buffer overflow in Adobe Flash Player before 10.3.183.63 and 11.x before 11.6.602.168 on …	2025-12-22T21:16:18.894000Z
var-201912-0644	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2025-12-22T21:15:15.939000Z
var-202103-1243	In intel_pmu_drain_pebs_nhm in arch/x86/events/intel/ds.c in the Linux kernel through 5.1…	2025-12-22T21:15:06.640000Z
var-201511-0101	The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x through 4.6.x, allows …	2025-12-22T21:15:06.458000Z
var-201705-3790	In Open vSwitch (OvS) v2.7.0, there is a buffer over-read while parsing the group mod Ope…	2025-12-22T21:15:06.304000Z
var-202110-1684	This issue was addressed with improved checks. This issue is fixed in watchOS 8, macOS Bi…	2025-12-22T21:15:05.389000Z
var-201403-0275	sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd…	2025-12-22T21:15:04.870000Z
var-201710-1433	Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a deni…	2025-12-22T21:15:03.957000Z
var-201905-0710	Microarchitectural Load Port Data Sampling (MLPDS): Load ports on some microprocessors ut…	2025-12-22T21:14:57.404000Z
var-201304-0352	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2025-12-22T21:14:56.818000Z
var-200901-0700	WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod to…	2025-12-22T21:14:52.083000Z
var-200904-0821	The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products…	2025-12-22T21:14:20.803000Z
var-202006-1651	A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.5 a…	2025-12-22T21:13:48.157000Z
var-201912-0122	A logic issue was addressed with improved state management. This issue is fixed in iOS 13…	2025-12-22T21:13:16.820000Z
var-201108-0130	The gif_read_lzw function in filter/image-gif.c in CUPS 1.4.8 and earlier does not proper…	2025-12-22T21:13:15.228000Z
var-200112-0223	Alcatel ADSL modems allow remote attackers to access the Trivial File Transfer Protocol (…	2025-12-22T21:13:15.069000Z
var-201112-0047	The Cascading Style Sheets (CSS) implementation in Google Chrome before 16.0.912.63 on 64…	2025-12-22T21:13:14.664000Z
var-200908-0708	Multiple integer overflows in the Apache Portable Runtime (APR) library and the Apache Po…	2025-12-22T21:13:13.679000Z
var-201908-0263	Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a de…	2025-12-22T21:13:12.668000Z
var-200608-0039	Integer overflow in AFP Server for Apple Mac OS X 10.3.9 and 10.4.7 allows remote attacke…	2025-12-22T21:13:11.937000Z
var-201908-0422	Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denia…	2025-12-22T21:12:40.420000Z
var-201203-0171	Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google…	2025-12-22T21:12:32.176000Z

ID	Description	Published	Updated
jvndb-2021-000007	OS command injection vulnerability in multiple Infoscience Corporation log management tools	2021-01-27T18:31+09:00	2022-07-26T15:53+09:00
jvndb-2021-000009	Android App "ELECOM File Manager" vulnerable to directory traversal	2021-01-27T17:38+09:00	2021-01-27T17:38+09:00
jvndb-2021-000008	Multiple vulnerabilities in multiple ELECOM products	2021-01-26T16:33+09:00	2021-01-26T16:33+09:00
jvndb-2021-000010	Multiple vulnerabilities in multiple LOGITEC products	2021-01-26T16:26+09:00	2021-01-26T16:26+09:00
jvndb-2021-001010	TP-Link TL-WR841N V13 (JP) vulnerable to OS command injection	2021-01-25T16:21+09:00	2021-01-25T16:21+09:00
jvndb-2021-000006	Multiple vulnerabilities in Aterm WF800HP, Aterm WG2600HP, and Aterm WG2600HP2	2021-01-22T17:55+09:00	2021-02-03T12:05+09:00
jvndb-2021-000005	GROWI vulnerable to cross-site scripting	2021-01-19T14:05+09:00	2021-01-19T14:05+09:00
jvndb-2021-000004	Multiple vulnerabilities in acmailer	2021-01-14T16:22+09:00	2021-01-14T16:22+09:00
jvndb-2021-000003	The installer of SKYSEA Client View may insecurely load Dynamic Link Libraries	2021-01-12T15:53+09:00	2021-01-12T15:53+09:00
jvndb-2021-000002	Multiple NEC Products vulnerable to authentication bypass	2021-01-04T17:24+09:00	2021-01-08T12:22+09:00
jvndb-2021-000001	Multiple vulnerabilities in UNIVERGE SV9500/SV8500 series	2021-01-04T14:37+09:00	2021-01-04T14:37+09:00
jvndb-2020-009965	Cleartext Transmission of Sensitive Information Vulnerability in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer	2020-12-21T17:48+09:00	2020-12-21T17:48+09:00
jvndb-2020-009964	Improper certificate validation vulnerability in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer	2020-12-21T17:48+09:00	2020-12-21T17:48+09:00
jvndb-2020-010072	Cross-site Scripting Vulnerability in Hitachi Command Suite	2020-12-21T14:20+09:00	2020-12-21T14:20+09:00
jvndb-2020-000087	Management software for NEC Storage disk array system vulnerable to improper server certificate verification	2020-12-18T17:00+09:00	2021-07-21T16:21+09:00
jvndb-2020-000086	Self-Extracting files created by multiple SEIKO EPSON products may insecurely load Dynamic Link Libraries	2020-12-18T16:47+09:00	2020-12-18T16:47+09:00
jvndb-2020-000085	Multiple vulnerabilities in GROWI	2020-12-15T15:41+09:00	2021-08-30T16:29+09:00
jvndb-2020-000083	Multiple vulnerabilities in Aterm SA3500G	2020-12-11T16:59+09:00	2020-12-11T16:59+09:00
jvndb-2020-000084	Apache Struts 2 vulnerable to remote code execution (S2-061)	2020-12-11T15:09+09:00	2022-08-09T13:55+09:00
jvndb-2020-000082	FileZen vulnerable to directory traversal	2020-12-10T15:21+09:00	2020-12-10T15:21+09:00
jvndb-2020-009771	ServerProtect for Linux vulnerable to heap-based buffer overflow	2020-12-08T12:34+09:00	2020-12-08T12:34+09:00
jvndb-2020-000081	Apache Cordova Plugin camera vulnerable to information exposure	2020-12-07T16:34+09:00	2020-12-07T16:34+09:00
jvndb-2020-000080	Multiple vulnerabilities in EC-CUBE	2020-12-03T18:15+09:00	2020-12-03T18:15+09:00
jvndb-2020-000079	desknet's NEO vulnerable to cross-site scripting	2020-12-03T17:54+09:00	2023-03-08T17:02+09:00
jvndb-2020-000077	Multiple vulnerabilities in GROWI	2020-11-25T14:54+09:00	2020-11-25T14:54+09:00
jvndb-2020-000076	NETGEAR GS108Ev3 vulnerable to cross-site request forgery	2020-11-24T14:32+09:00	2020-11-24T14:32+09:00
jvndb-2020-000075	The installers of multiple SEIKO EPSON products may insecurely load Dynamic Link Libraries	2020-11-20T15:39+09:00	2020-11-20T15:39+09:00
jvndb-2020-009590	Trend Micro Security 2020 (Consumer) is vulnerable to arbitrary file deletion	2020-11-19T18:03+09:00	2020-11-19T18:03+09:00
jvndb-2020-000074	Hibernate ORM vulnerable to SQL injection	2020-11-19T14:33+09:00	2020-11-19T14:33+09:00
jvndb-2020-009584	Multiple vulnerabilities in KonaWiki3	2020-11-18T18:13+09:00	2020-11-18T18:13+09:00

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2025:03464-1	Security update for openssl-1_0_0	2025-10-07T07:49:26Z	2025-10-07T07:49:26Z
suse-su-2025:03463-1	Security update for openssl-1_1	2025-10-07T07:48:32Z	2025-10-07T07:48:32Z
suse-su-2025:03462-1	Security update for MozillaFirefox	2025-10-07T07:46:27Z	2025-10-07T07:46:27Z
suse-su-2025:03461-1	Security update for ghostscript	2025-10-07T07:37:02Z	2025-10-07T07:37:02Z
suse-su-2025:03460-1	Security update for ghostscript	2025-10-07T07:35:51Z	2025-10-07T07:35:51Z
suse-su-2025:03459-1	Security update for gstreamer-plugins-rs	2025-10-07T07:35:31Z	2025-10-07T07:35:31Z
suse-su-2025:03457-1	Security update for python-xmltodict	2025-10-07T07:15:54Z	2025-10-07T07:15:54Z
suse-su-2025:03456-1	Security update for logback	2025-10-07T07:08:23Z	2025-10-07T07:08:23Z
suse-su-2025:03453-1	Security update for frr	2025-10-03T10:41:01Z	2025-10-03T10:41:01Z
suse-su-2025:03450-1	Security update for cairo	2025-10-02T07:15:39Z	2025-10-02T07:15:39Z
suse-su-2025:03449-1	Security update for cairo	2025-10-02T07:15:18Z	2025-10-02T07:15:18Z
suse-su-2025:03448-1	Security update for warewulf4	2025-10-02T07:14:58Z	2025-10-02T07:14:58Z
suse-su-2025:03447-1	Security update for MozillaFirefox	2025-10-02T07:14:09Z	2025-10-02T07:14:09Z
suse-su-2025:03446-1	Security update for python-Django	2025-10-02T07:13:00Z	2025-10-02T07:13:00Z
suse-su-2025:20805-1	Security update for podman	2025-10-01T13:49:25Z	2025-10-01T13:49:25Z
suse-su-2025:20804-1	Security update for bluez	2025-10-01T13:47:55Z	2025-10-01T13:47:55Z
suse-su-2025:03445-1	Security update for snpguest	2025-10-01T13:09:59Z	2025-10-01T13:09:59Z
suse-su-2025:03443-1	Security update for openssl-1_1	2025-09-30T14:54:55Z	2025-09-30T14:54:55Z
suse-su-2025:03442-1	Security update for openssl-3	2025-09-30T14:54:06Z	2025-09-30T14:54:06Z
suse-su-2025:03441-1	Security update for openssl-3	2025-09-30T14:53:31Z	2025-09-30T14:53:31Z
suse-su-2025:03440-1	Security update for openssl-1_1	2025-09-30T14:52:02Z	2025-09-30T14:52:02Z
suse-su-2025:03439-1	Security update for openssl-3	2025-09-30T14:50:34Z	2025-09-30T14:50:34Z
suse-su-2025:03438-1	Security update for openssl-1_1	2025-09-30T14:37:52Z	2025-09-30T14:37:52Z
suse-su-2025:03437-1	Security update for openssl-1_1	2025-09-30T14:37:06Z	2025-09-30T14:37:06Z
suse-su-2025:03436-1	Security update for open-vm-tools	2025-09-30T14:10:11Z	2025-09-30T14:10:11Z
suse-su-2025:03435-1	Security update for open-vm-tools	2025-09-30T14:09:51Z	2025-09-30T14:09:51Z
suse-su-2025:03434-1	Security update for open-vm-tools	2025-09-30T14:08:15Z	2025-09-30T14:08:15Z
suse-su-2025:03424-1	Security update for nvidia-open-driver-G06-signed	2025-09-29T09:02:00Z	2025-09-29T09:02:00Z
suse-su-2025:03423-1	Security update for apache2-mod_security2	2025-09-29T08:50:52Z	2025-09-29T08:50:52Z
suse-su-2025:03422-1	Security update for apache2-mod_security2	2025-09-29T08:50:32Z	2025-09-29T08:50:32Z

ID	Description	Published	Updated
opensuse-su-2025:15059-1	govulncheck-vulndb-0.0.20250506T153719-1.1 on GA media	2025-05-07T00:00:00Z	2025-05-07T00:00:00Z
opensuse-su-2025:15058-1	go1.24-1.24.3-1.1 on GA media	2025-05-07T00:00:00Z	2025-05-07T00:00:00Z
opensuse-su-2025:15057-1	cargo-c-0.10.3~git0.ee7d7ef-3.1 on GA media	2025-05-07T00:00:00Z	2025-05-07T00:00:00Z
opensuse-su-2025:15056-1	389-ds-3.1.2~git90.2bc7250be-1.1 on GA media	2025-05-07T00:00:00Z	2025-05-07T00:00:00Z
opensuse-su-2025:15055-1	weblate-5.11.3-1.1 on GA media	2025-05-06T00:00:00Z	2025-05-06T00:00:00Z
opensuse-su-2025:15054-1	rclone-1.69.2-1.1 on GA media	2025-05-05T00:00:00Z	2025-05-05T00:00:00Z
opensuse-su-2025:15053-1	java-1_8_0-openjdk-1.8.0.452-1.1 on GA media	2025-05-05T00:00:00Z	2025-05-05T00:00:00Z
opensuse-su-2025:15052-1	grafana-11.5.4-1.1 on GA media	2025-05-05T00:00:00Z	2025-05-05T00:00:00Z
opensuse-su-2025:15051-1	chromedriver-136.0.7103.59-1.1 on GA media	2025-05-04T00:00:00Z	2025-05-04T00:00:00Z
opensuse-su-2025:15050-1	audiofile-0.3.6-15.1 on GA media	2025-05-03T00:00:00Z	2025-05-03T00:00:00Z
opensuse-su-2025:15049-1	tomcat10-10.1.40-1.1 on GA media	2025-05-02T00:00:00Z	2025-05-02T00:00:00Z
opensuse-su-2025:15048-1	tomcat-9.0.104-1.1 on GA media	2025-05-02T00:00:00Z	2025-05-02T00:00:00Z
opensuse-su-2025:15047-1	hauler-1.2.4-1.1 on GA media	2025-05-02T00:00:00Z	2025-05-02T00:00:00Z
opensuse-su-2025:15046-1	docker-28.1.1_ce-16.1 on GA media	2025-05-02T00:00:00Z	2025-05-02T00:00:00Z
opensuse-su-2025:15045-1	MozillaFirefox-138.0-1.1 on GA media	2025-05-02T00:00:00Z	2025-05-02T00:00:00Z
opensuse-su-2025:15044-1	libsoup-2_4-1-2.74.3-9.1 on GA media	2025-05-01T00:00:00Z	2025-05-01T00:00:00Z
opensuse-su-2025:15043-1	libsoup-3_0-0-3.6.5-3.1 on GA media	2025-05-01T00:00:00Z	2025-05-01T00:00:00Z
opensuse-su-2025:15042-1	MozillaThunderbird-128.10.0-1.1 on GA media	2025-05-01T00:00:00Z	2025-05-01T00:00:00Z
opensuse-su-2025:0139-1	Security update for libjxl	2025-04-30T12:01:35Z	2025-04-30T12:01:35Z
opensuse-su-2025:15041-1	golang-github-prometheus-node_exporter-1.9.1-2.1 on GA media	2025-04-30T00:00:00Z	2025-04-30T00:00:00Z
opensuse-su-2025:15040-1	firefox-esr-128.10.0-1.1 on GA media	2025-04-30T00:00:00Z	2025-04-30T00:00:00Z
opensuse-su-2025:15039-1	cmctl-2.2.0-1.1 on GA media	2025-04-30T00:00:00Z	2025-04-30T00:00:00Z
opensuse-su-2025:15038-1	cyradm-3.8.4-2.1 on GA media	2025-04-29T00:00:00Z	2025-04-29T00:00:00Z
opensuse-su-2025:15037-1	amber-cli-1.13.1+git20250329.c2e3bb8-1.1 on GA media	2025-04-29T00:00:00Z	2025-04-29T00:00:00Z
opensuse-su-2025:15036-1	glow-2.1.0-2.1 on GA media	2025-04-27T00:00:00Z	2025-04-27T00:00:00Z
opensuse-su-2025:15035-1	valkey-8.0.3-1.1 on GA media	2025-04-26T00:00:00Z	2025-04-26T00:00:00Z
opensuse-su-2025:15034-1	subfinder-2.7.0-3.1 on GA media	2025-04-26T00:00:00Z	2025-04-26T00:00:00Z
opensuse-su-2025:15033-1	govulncheck-vulndb-0.0.20250424T181457-1.1 on GA media	2025-04-26T00:00:00Z	2025-04-26T00:00:00Z
opensuse-su-2025:15032-1	python311-h11-0.16.0-1.1 on GA media	2025-04-25T00:00:00Z	2025-04-25T00:00:00Z
opensuse-su-2025:15031-1	python311-grpcio-1.69.0-2.1 on GA media	2025-04-25T00:00:00Z	2025-04-25T00:00:00Z

ID	Description	Published	Updated
cnvd-2025-26916	WordPress插件Auto Featured Image服务端请求伪造漏洞	2025-10-31	2025-11-07
cnvd-2025-26886	Mozilla Firefox代码执行漏洞（CNVD-2025-26886）	2025-10-31	2025-11-05
cnvd-2025-26877	Tenda O3缓冲区溢出漏洞（CNVD-2025-26877）	2025-10-31	2025-11-05
cnvd-2025-26876	Tenda O3缓冲区溢出漏洞（CNVD-2025-26876）	2025-10-31	2025-11-05
cnvd-2025-26787	Dell Storage Manager关键功能缺失身份验证漏洞	2025-10-31	2025-11-04
cnvd-2025-26786	Curfew e-Pass Management System edit-category-detail.php文件跨站脚本漏洞	2025-10-31	2025-11-03
cnvd-2025-26785	Curfew e-Pass Management System admin-profile.php文件跨站脚本漏洞	2025-10-31	2025-11-03
cnvd-2025-26784	IBM Concert Software服务端请求伪造漏洞	2025-10-31	2025-11-03
cnvd-2025-26783	IBM Concert Software日志输入中和不当漏洞	2025-10-31	2025-11-03
cnvd-2025-26170	Online Event Judging System edit_judge.php文件SQL注入漏洞	2025-10-31	2025-10-31
cnvd-2025-26169	Online Event Judging System edit_criteria.php文件SQL注入漏洞	2025-10-31	2025-10-31
cnvd-2025-26168	Online Event Judging System edit_contestant.php文件SQL注入漏洞	2025-10-31	2025-10-31
cnvd-2025-26167	Online Event Judging System add_judge.php文件SQL注入漏洞	2025-10-31	2025-10-31
cnvd-2025-26166	Online Event Judging System add_contestant.php文件SQL注入漏洞	2025-10-31	2025-10-31
cnvd-2025-26165	Online Event Judging System action.php文件SQL注入漏洞	2025-10-31	2025-10-31
cnvd-2025-26164	Tenda CH22 fromNatStaticSetting函数缓冲区溢出漏洞	2025-10-31	2025-10-31
cnvd-2025-26163	Tenda CH22 formSetIpBind函数缓冲区溢出漏洞	2025-10-31	2025-10-31
cnvd-2025-26162	Tenda CH22 formRouteStatic函数缓冲区溢出漏洞	2025-10-31	2025-10-31
cnvd-2025-26161	Tenda CH22 formaddressNat函数缓冲区溢出漏洞	2025-10-31	2025-10-31
cnvd-2025-26160	Tenda AC6缓冲区溢出漏洞（CNVD-2025-26160）	2025-10-31	2025-10-31
cnvd-2025-26159	Open5GS存在未明漏洞（CNVD-2025-26159）	2025-10-31	2025-10-31
cnvd-2025-26158	ZTE MC889A Pro拒绝服务漏洞	2025-10-31	2025-10-31
cnvd-2025-26157	D-Link DIR-823G缓冲区溢出漏洞（CNVD-2025-26157）	2025-10-31	2025-10-31
cnvd-2025-26107	Simple Food Ordering System editproduct.php文件上传漏洞	2025-10-31	2025-10-31
cnvd-2025-26106	Simple Food Ordering System editproduct.php文件跨站脚本漏洞	2025-10-31	2025-10-31
cnvd-2025-26105	Simple Food Ordering System editcategory.php文件跨站脚本漏洞	2025-10-31	2025-10-31
cnvd-2025-26104	Simple Food Ordering System addproduct.php文件跨站脚本漏洞	2025-10-31	2025-10-31
cnvd-2025-26103	Simple Food Ordering System addcategory.php文件跨站脚本漏洞	2025-10-31	2025-10-31
cnvd-2025-26102	Simple Food Ordering System addproduct.php文件上传漏洞	2025-10-31	2025-10-31
cnvd-2025-26100	Nero Social Networking Site friendprofile.php文件SQL注入漏洞	2025-10-31	2025-10-31

ID	Description	Published	Updated
certfr-2025-avi-0303	Multiples vulnérabilités dans les produits Splunk	2025-04-10T00:00:00.000000	2025-04-10T00:00:00.000000
certfr-2025-avi-0302	Multiples vulnérabilités dans Sonicwall NetExtender	2025-04-10T00:00:00.000000	2025-04-10T00:00:00.000000
certfr-2025-avi-0301	Multiples vulnérabilités dans les produits Palo Alto Networks	2025-04-10T00:00:00.000000	2025-04-10T00:00:00.000000
certfr-2025-avi-0300	Multiples vulnérabilités dans GitLab	2025-04-10T00:00:00.000000	2025-04-10T00:00:00.000000
certfr-2025-avi-0299	Multiples vulnérabilités dans les produits Bitdefender	2025-04-10T00:00:00.000000	2025-04-10T00:00:00.000000
certfr-2025-avi-0298	Multiples vulnérabilités dans les produits Elastic	2025-04-09T00:00:00.000000	2025-04-09T00:00:00.000000
certfr-2025-avi-0297	Vulnérabilité dans Spring Cloud Config	2025-04-09T00:00:00.000000	2025-04-09T00:00:00.000000
certfr-2025-avi-0296	Multiples vulnérabilités dans Joomla!	2025-04-09T00:00:00.000000	2025-04-09T00:00:00.000000
certfr-2025-avi-0295	Multiples vulnérabilités dans Ivanti Endpoint Manager (EPM)	2025-04-09T00:00:00.000000	2025-04-09T00:00:00.000000
certfr-2025-avi-0294	Multiples vulnérabilités dans les produits HPE Aruba Networking	2025-04-09T00:00:00.000000	2025-04-11T00:00:00.000000
certfr-2025-avi-0293	Multiples vulnérabilités dans les produits Fortinet	2025-04-09T00:00:00.000000	2025-04-09T00:00:00.000000
certfr-2025-avi-0292	Multiples vulnérabilités dans les produits Adobe	2025-04-09T00:00:00.000000	2025-04-09T00:00:00.000000
certfr-2025-avi-0291	Multiples vulnérabilités dans les produits Microsoft	2025-04-09T00:00:00.000000	2025-04-09T00:00:00.000000
certfr-2025-avi-0290	Multiples vulnérabilités dans Microsoft Azure	2025-04-09T00:00:00.000000	2025-04-09T00:00:00.000000
certfr-2025-avi-0289	Vulnérabilité dans Microsoft .Net	2025-04-09T00:00:00.000000	2025-04-09T00:00:00.000000
certfr-2025-avi-0288	Multiples vulnérabilités dans Microsoft Windows	2025-04-09T00:00:00.000000	2025-04-09T00:00:00.000000
certfr-2025-avi-0287	Multiples vulnérabilités dans Microsoft Office	2025-04-09T00:00:00.000000	2025-04-09T00:00:00.000000
certfr-2025-avi-0286	Vulnérabilité dans Google Chrome	2025-04-09T00:00:00.000000	2025-04-09T00:00:00.000000
certfr-2025-avi-0285	Multiples vulnérabilités dans les produits SAP	2025-04-08T00:00:00.000000	2025-04-25T00:00:00.000000
certfr-2025-avi-0284	Multiples vulnérabilités dans les produits Siemens	2025-04-08T00:00:00.000000	2025-04-08T00:00:00.000000
certfr-2025-avi-0283	Multiples vulnérabilités dans VMware Tanzu Greenplum	2025-04-08T00:00:00.000000	2025-04-10T00:00:00.000000
certfr-2025-avi-0282	Multiples vulnérabilités dans Schneider Electric ConneXium Network Manager	2025-04-08T00:00:00.000000	2025-04-08T00:00:00.000000
certfr-2025-avi-0281	Multiples vulnérabilités dans Google Android	2025-04-08T00:00:00.000000	2025-04-08T00:00:00.000000
certfr-2025-avi-0280	Vulnérabilité dans les produits ESET	2025-04-07T00:00:00.000000	2025-04-07T00:00:00.000000
certfr-2025-avi-0279	Multiples vulnérabilités dans les produits IBM	2025-04-04T00:00:00.000000	2025-04-04T00:00:00.000000
certfr-2025-avi-0278	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-04-04T00:00:00.000000	2025-04-04T00:00:00.000000
certfr-2025-avi-0277	Multiples vulnérabilités dans le noyau Linux de Debian LTS	2025-04-04T00:00:00.000000	2025-04-04T00:00:00.000000
certfr-2025-avi-0276	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2025-04-04T00:00:00.000000	2025-04-04T00:00:00.000000
certfr-2025-avi-0275	Multiples vulnérabilités dans Microsoft Edge	2025-04-04T00:00:00.000000	2025-04-04T00:00:00.000000
certfr-2025-avi-0274	Multiples vulnérabilités dans MISP	2025-04-04T00:00:00.000000	2025-04-04T00:00:00.000000

ID	Description	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated