Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-53445 |
8.1 (3.1)
|
WordPress Catwalk theme <= 1.4 - Local File Inclusion … |
axiomthemes |
Catwalk |
2025-12-18T07:21:48.218Z | 2026-01-20T14:28:09.892Z |
| CVE-2025-54721 |
7.1 (3.1)
|
WordPress Resca theme <= 3.0.2 - Cross Site Scripting … |
ThimPress |
Resca |
2025-11-06T15:54:16.209Z | 2026-01-20T14:28:09.884Z |
| CVE-2025-53448 |
8.1 (3.1)
|
WordPress Rally theme <= 1.1 - Local File Inclusion vu… |
axiomthemes |
Rally |
2025-12-18T07:21:48.769Z | 2026-01-20T14:28:09.880Z |
| CVE-2025-53574 |
6.1 (3.1)
|
WordPress Doliconnect Plugin <= 9.3.2 - Cross Site Scr… |
ptibogxiv |
Doliconnect |
2025-11-06T15:54:11.607Z | 2026-01-20T14:28:09.876Z |
| CVE-2025-53573 |
7.1 (3.1)
|
WordPress Epic Review Plugin <= 1.0.2 - Cross Site Scr… |
jegtheme |
Epic Review |
2025-11-06T15:54:10.426Z | 2026-01-20T14:28:09.871Z |
| CVE-2025-53447 |
8.1 (3.1)
|
WordPress Assembly theme <= 1.1 - Local File Inclusion… |
axiomthemes |
Assembly |
2025-12-18T07:21:48.588Z | 2026-01-20T14:28:09.843Z |
| CVE-2025-53436 |
8.1 (3.1)
|
WordPress Monki theme <= 2.0.4 - Local File Inclusion … |
BZOTheme |
Monki |
2025-12-18T07:21:46.801Z | 2026-01-20T14:28:09.817Z |
| CVE-2025-53443 |
8.1 (3.1)
|
WordPress Smash theme <= 1.7 - Local File Inclusion vu… |
axiomthemes |
Smash |
2025-12-18T07:21:48.033Z | 2026-01-20T14:28:09.805Z |
| CVE-2025-53434 |
8.1 (3.1)
|
WordPress ChildHope theme <= 1.1.8 - Local File Inclus… |
AncoraThemes |
ChildHope |
2025-12-18T07:21:46.434Z | 2026-01-20T14:28:09.778Z |
| CVE-2025-53439 |
8.1 (3.1)
|
WordPress Harper theme <= 1.13 - Local File Inclusion … |
axiomthemes |
Harper |
2025-12-18T07:21:47.455Z | 2026-01-20T14:28:09.777Z |
| CVE-2025-53441 |
8.1 (3.1)
|
WordPress Greeny theme <= 2.6 - Local File Inclusion v… |
axiomthemes |
Greeny |
2025-12-18T07:21:47.651Z | 2026-01-20T14:28:09.749Z |
| CVE-2025-53442 |
8.1 (3.1)
|
WordPress Rentic theme <= 1.1 - Local File Inclusion v… |
axiomthemes |
Rentic |
2025-12-18T07:21:47.842Z | 2026-01-20T14:28:09.727Z |
| CVE-2025-53435 |
8.1 (3.1)
|
WordPress Plan My Day theme <= 1.1.13 - Local File Inc… |
axiomthemes |
Plan My Day |
2025-12-18T07:21:46.620Z | 2026-01-20T14:28:09.726Z |
| CVE-2025-53438 |
8.1 (3.1)
|
WordPress FitLine theme <= 1.6 - Local File Inclusion … |
axiomthemes |
FitLine |
2025-12-18T07:21:47.228Z | 2026-01-20T14:28:09.672Z |
| CVE-2025-53437 |
8.1 (3.1)
|
WordPress Greenorganic theme <= 2.45 - Local File Incl… |
ApusTheme |
Greenorganic |
2025-12-18T07:21:47.030Z | 2026-01-20T14:28:09.573Z |
| CVE-2025-53433 |
9.8 (3.1)
|
WordPress EasyEat theme <= 1.9.0 - Local File Inclusio… |
AncoraThemes |
EasyEat |
2025-12-18T07:21:46.182Z | 2026-01-20T14:28:09.496Z |
| CVE-2025-53428 |
8.8 (3.1)
|
WordPress Simple User Registration plugin <= 6.4 - Pri… |
N-Media |
Simple User Registration |
2025-10-22T14:32:34.204Z | 2026-01-20T14:28:09.496Z |
| CVE-2025-53431 |
8.1 (3.1)
|
WordPress Emberlyn theme <= 1.3.1 - Local File Inclusi… |
AncoraThemes |
Emberlyn |
2025-12-18T07:21:45.771Z | 2026-01-20T14:28:09.478Z |
| CVE-2025-53430 |
8.1 (3.1)
|
WordPress Etta theme <= 1.14.0 - Local File Inclusion … |
AncoraThemes |
Etta |
2025-12-18T07:21:45.581Z | 2026-01-20T14:28:09.469Z |
| CVE-2025-53429 |
8.1 (3.1)
|
WordPress Exit Game theme <= 1.4.3 - Local File Inclus… |
AncoraThemes |
Exit Game |
2025-12-18T07:21:45.401Z | 2026-01-20T14:28:09.431Z |
| CVE-2025-53432 |
8.1 (3.1)
|
WordPress Echo theme <= 1.15.0 - Local File Inclusion … |
AncoraThemes |
Echo |
2025-12-18T07:21:45.954Z | 2026-01-20T14:28:09.429Z |
| CVE-2025-53426 |
7.1 (3.1)
|
WordPress Likert Survey Master plugin <= 0.8.0.1 - Cro… |
Bob |
Likert Survey Master |
2025-10-22T14:32:33.768Z | 2026-01-20T14:28:09.406Z |
| CVE-2025-53423 |
7.1 (3.1)
|
WordPress Triss theme <= 2.6 - Cross Site Scripting (X… |
designthemes |
Triss |
2025-10-22T14:32:33.165Z | 2026-01-20T14:28:09.403Z |
| CVE-2025-53424 |
6.5 (3.1)
|
WordPress WooCommerce Orders & Customers Exporter plug… |
vanquish |
WooCommerce Orders & Customers Exporter |
2025-10-22T14:32:33.353Z | 2026-01-20T14:28:09.399Z |
| CVE-2025-53420 |
7.1 (3.1)
|
WordPress WPLMS plugin <= 1.9.9.8 - Cross Site Scripti… |
VibeThemes |
WPLMS |
2025-10-22T14:32:32.282Z | 2026-01-20T14:28:09.384Z |
| CVE-2025-53422 |
7.1 (3.1)
|
WordPress WhatsApp Chat for WordPress and WooCommerce … |
ThemeWarriors |
WhatsApp Chat for WordPress and WooCommerce |
2025-10-22T14:32:32.974Z | 2026-01-20T14:28:09.372Z |
| CVE-2025-53421 |
6.3 (3.1)
|
WordPress Accordion plugin <= 2.3.14 - Broken Access C… |
PickPlugins |
Accordion |
2025-10-22T14:32:32.545Z | 2026-01-20T14:28:09.372Z |
| CVE-2025-53425 |
7.6 (3.1)
|
WordPress Dokan plugin <= 4.1.2 - Privilege Escalation… |
Dokan, Inc. |
Dokan |
2025-10-22T14:32:33.573Z | 2026-01-20T14:28:09.366Z |
| CVE-2025-53344 |
4.3 (3.1)
|
WordPress Thim Core Plugin <= 2.3.3 - Cross Site Reque… |
ThimPress |
Thim Core |
2026-01-05T16:42:57.646Z | 2026-01-20T14:28:09.362Z |
| CVE-2025-53349 |
6.1 (3.1)
|
WordPress Kalium Theme <= 3.18.3 - Cross Site Scriptin… |
Laborator |
Kalium |
2025-11-06T15:54:06.581Z | 2026-01-20T14:28:09.341Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-62915 |
8.1 (3.1)
|
WordPress SMS Contact Form 7 Notifications by ClickSen… |
clicksend |
SMS Contact Form 7 Notifications by ClickSend |
2025-10-27T01:33:55.284Z | 2026-01-20T14:28:16.863Z |
| CVE-2025-62914 |
6.5 (3.1)
|
WordPress Effect Maker plugin <= 1.2.1 - Broken Access… |
anibalwainstein |
Effect Maker |
2025-11-06T15:56:02.281Z | 2026-01-20T14:28:17.036Z |
| CVE-2025-62913 |
5.4 (3.1)
|
WordPress Opal Service plugin <= 1.9.1 - Cross Site Sc… |
wpopal |
Opal Service |
2025-10-27T01:33:54.900Z | 2026-01-20T14:28:16.742Z |
| CVE-2025-62912 |
5.4 (3.1)
|
WordPress SiteGround Email Marketing plugin <= 1.7.1 -… |
SiteGround |
SiteGround Email Marketing |
2025-10-27T01:33:54.526Z | 2026-01-20T14:28:16.652Z |
| CVE-2025-62911 |
5.4 (3.1)
|
WordPress Rock Convert plugin <= 3.0.1 - Cross Site Sc… |
Rock Content |
Rock Convert |
2025-10-27T01:33:54.127Z | 2026-01-20T14:28:16.742Z |
| CVE-2025-62910 |
5.4 (3.1)
|
WordPress Video Gallery by Huzzaz plugin <= 10.5 - Cro… |
deshine |
Video Gallery by Huzzaz |
2025-10-27T01:33:53.748Z | 2026-01-20T14:28:16.670Z |
| CVE-2025-62909 |
8.1 (3.1)
|
WordPress Smart WeTransfer plugin <= 1.3 - Broken Acce… |
mrityunjay |
Smart WeTransfer |
2025-10-27T01:33:53.355Z | 2026-01-20T14:28:17.011Z |
| CVE-2025-62907 |
5.4 (3.1)
|
WordPress Custom Post Type Attachment plugin <= 3.4.6 … |
aviplugins.com |
Custom Post Type Attachment |
2025-10-27T01:33:52.564Z | 2026-01-20T14:28:16.710Z |
| CVE-2025-62906 |
9.8 (3.1)
|
WordPress Referral Link Tracker plugin <= 1.1.4 - Brok… |
epiphanyit321 |
Referral Link Tracker |
2025-10-27T01:33:52.110Z | 2026-01-20T14:28:16.664Z |
| CVE-2025-62905 |
5.4 (3.1)
|
WordPress Query Posts plugin <= 0.3.2 - Cross Site Scr… |
Justin Tadlock |
Query Posts |
2025-10-27T01:33:51.717Z | 2026-01-20T14:28:16.637Z |
| CVE-2025-62904 |
5.4 (3.1)
|
WordPress WP Geo plugin <= 3.5.1 - Cross Site Scriptin… |
Ben Huson |
WP Geo |
2025-10-27T01:33:51.339Z | 2026-01-20T14:28:16.653Z |
| CVE-2025-62903 |
5.4 (3.1)
|
WordPress WPC Smart Messages for WooCommerce plugin <=… |
WPClever |
WPC Smart Messages for WooCommerce |
2025-10-27T01:33:50.952Z | 2026-01-20T14:28:16.645Z |
| CVE-2025-62902 |
7.5 (3.1)
|
WordPress WP Popup Builder plugin <= 1.3.6 - Sensitive… |
ThemeHunk |
WP Popup Builder |
2025-10-27T01:33:50.531Z | 2026-01-20T14:28:16.982Z |
| CVE-2025-62901 |
6.5 (3.1)
|
WordPress WP Microdata plugin <= 1.0 - Cross Site Scri… |
Tormorten |
WP Microdata |
2025-12-21T21:11:56.857Z | 2026-01-20T14:28:16.660Z |
| CVE-2025-62900 |
5.4 (3.1)
|
WordPress Popular Posts by Webline plugin <= 1.1.1 - C… |
WeblineIndia |
Popular Posts by Webline |
2025-10-27T01:33:50.140Z | 2026-01-20T14:28:16.667Z |
| CVE-2025-62899 |
5.4 (3.1)
|
WordPress Photospace Responsive plugin <= 2.2.0 - Cros… |
THRIVE - Web Design Gold Coast |
Photospace Responsive |
2025-10-27T01:33:49.758Z | 2026-01-20T14:28:17.035Z |
| CVE-2025-62898 |
5.4 (3.1)
|
WordPress Links shortcode plugin <= 1.8.3 - Cross Site… |
Maarten |
Links shortcode |
2025-10-27T01:33:49.376Z | 2026-01-20T14:28:16.664Z |
| CVE-2025-62896 |
8.8 (3.1)
|
WordPress Multilang Contact Form plugin <= 1.5 - Cross… |
digitaldonkey |
Multilang Contact Form |
2025-10-27T01:33:48.644Z | 2026-01-20T14:28:16.638Z |
| CVE-2025-62895 |
7.5 (3.1)
|
WordPress Atarim plugin <= 4.2 - Sensitive Data Exposu… |
Vito Peleg |
Atarim |
2025-10-27T01:33:48.249Z | 2026-01-20T14:28:16.515Z |
| CVE-2025-62894 |
5.4 (3.1)
|
WordPress ACF Recent Posts Widget plugin <= 5.9.3 - Cr… |
magicoders |
ACF Recent Posts Widget |
2025-10-27T01:33:47.856Z | 2026-01-20T14:28:16.537Z |
| CVE-2025-62892 |
9.1 (3.1)
|
WordPress Sunshine Photo Cart plugin <= 3.5.3 - Broken… |
sunshinephotocart |
Sunshine Photo Cart |
2025-10-27T01:33:47.085Z | 2026-01-20T14:28:16.510Z |
| CVE-2025-62891 |
8.8 (3.1)
|
WordPress Off-Canvas Sidebars & Menus (Slidebars) plug… |
Jory Hogeveen |
Off-Canvas Sidebars & Menus (Slidebars) |
2025-10-27T01:33:46.691Z | 2026-01-20T14:28:16.451Z |
| CVE-2025-62890 |
8.8 (3.1)
|
WordPress Premmerce Brands for WooCommerce plugin <= 1… |
Premmerce |
Premmerce Brands for WooCommerce |
2025-10-27T01:33:46.308Z | 2026-01-20T14:28:16.461Z |
| CVE-2025-62889 |
8.8 (3.1)
|
WordPress King Addons for Elementor plugin <= 51.1.37 … |
KingAddons.com |
King Addons for Elementor |
2025-10-27T01:33:45.909Z | 2026-01-20T14:28:16.379Z |
| CVE-2025-62888 |
5.4 (3.1)
|
WordPress WP Attachments plugin <= 5.2 - Broken Access… |
Marco Milesi |
WP Attachments |
2025-12-31T14:17:55.113Z | 2026-01-20T14:28:16.341Z |
| CVE-2025-62887 |
5.4 (3.1)
|
WordPress King Addons for Elementor plugin <= 51.1.37 … |
KingAddons.com |
King Addons for Elementor |
2025-10-27T01:33:45.420Z | 2026-01-20T14:28:16.351Z |
| CVE-2025-62886 |
8.8 (3.1)
|
WordPress Pricing Table builder plugin <= 1.5.1 - Cros… |
wpdevart |
Pricing Table builder |
2025-10-27T01:33:44.741Z | 2026-01-20T14:28:16.371Z |
| CVE-2025-62885 |
6.5 (3.1)
|
WordPress WP VR plugin <= 8.5.42 - Cross Site Scriptin… |
RexTheme |
WP VR |
2025-10-27T01:33:44.357Z | 2026-01-20T14:28:16.346Z |
| CVE-2025-62884 |
5.3 (3.1)
|
WordPress Coupon Affiliates plugin <= 7.0.3 - Broken A… |
Elliot Sowersby / RelyWP |
Coupon Affiliates |
2025-10-27T01:33:43.969Z | 2026-01-20T14:28:16.310Z |
| CVE-2025-62883 |
4.3 (3.1)
|
WordPress Premmerce User Roles plugin <= 1.0.13 - Brok… |
Premmerce |
Premmerce User Roles |
2025-10-27T01:33:43.581Z | 2026-01-20T14:28:16.387Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-62869 | Missing Authorization vulnerability in Gravitec.net - Web Push Notifications Gravitec.net – W… | 2025-12-09T16:18:03.943 | 2026-01-20T15:17:59.637 |
| fkie_cve-2025-62868 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-10-24T08:15:34.430 | 2026-01-20T15:17:59.530 |
| fkie_cve-2025-62867 | Missing Authorization vulnerability in ergonet Ergonet Cache ergonet-varnish-cache allows Exploitin… | 2025-12-09T16:18:03.807 | 2026-01-20T15:17:59.407 |
| fkie_cve-2025-62866 | Cross-Site Request Forgery (CSRF) vulnerability in Valerio Monti Auto Alt Text auto-alt-text allows… | 2025-12-09T16:18:03.667 | 2026-01-20T15:17:59.283 |
| fkie_cve-2025-62865 | Missing Authorization vulnerability in Evan Herman Post Cloner post-cloner allows Exploiting Incorr… | 2025-12-09T16:18:03.523 | 2026-01-20T15:17:59.160 |
| fkie_cve-2025-62762 | Cross-Site Request Forgery (CSRF) vulnerability in photoboxone SMTP Mail smtp-mail allows Cross Sit… | 2025-12-09T16:18:03.027 | 2026-01-20T15:17:59.037 |
| fkie_cve-2025-62761 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-31T09:15:51.923 | 2026-01-20T15:17:58.940 |
| fkie_cve-2025-62760 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-31T09:15:51.770 | 2026-01-20T15:17:58.843 |
| fkie_cve-2025-62759 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-31T09:15:51.620 | 2026-01-20T15:17:58.753 |
| fkie_cve-2025-62758 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-31T09:15:51.473 | 2026-01-20T15:17:58.660 |
| fkie_cve-2025-62757 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-31T12:16:18.740 | 2026-01-20T15:17:58.567 |
| fkie_cve-2025-62756 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-31T12:16:18.593 | 2026-01-20T15:17:58.470 |
| fkie_cve-2025-62755 | Unauthenticated Broken Access Control in GS Portfolio for Envato <= 1.4.2 versions. | 2025-12-31T16:15:47.240 | 2026-01-20T15:17:58.377 |
| fkie_cve-2025-62753 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-30T23:15:50.920 | 2026-01-20T15:17:58.280 |
| fkie_cve-2025-62752 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-31T12:16:18.417 | 2026-01-20T15:17:58.180 |
| fkie_cve-2025-62751 | Missing Authorization vulnerability in Extend Themes Vireo allows Exploiting Incorrectly Configured… | 2025-12-31T16:15:47.040 | 2026-01-20T15:17:58.073 |
| fkie_cve-2025-62750 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-31T14:15:53.933 | 2026-01-20T15:17:57.970 |
| fkie_cve-2025-62749 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-31T12:16:18.243 | 2026-01-20T15:17:57.873 |
| fkie_cve-2025-62748 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-31T12:16:18.097 | 2026-01-20T15:17:57.770 |
| fkie_cve-2025-62747 | Missing Authorization vulnerability in Aum Watcharapon Featured Image Generator allows Exploiting I… | 2025-12-31T16:15:46.800 | 2026-01-20T15:17:57.673 |
| fkie_cve-2025-62746 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-30T16:15:45.473 | 2026-01-20T15:17:57.573 |
| fkie_cve-2025-62744 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-31T13:15:42.113 | 2026-01-20T15:17:57.477 |
| fkie_cve-2025-62743 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-31T13:15:41.960 | 2026-01-20T15:17:57.380 |
| fkie_cve-2025-62742 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-31T13:15:41.813 | 2026-01-20T15:17:57.283 |
| fkie_cve-2025-62740 | Missing Authorization vulnerability in Mario Peshev WP-CRM System wp-crm-system allows Exploiting I… | 2025-12-09T16:18:02.890 | 2026-01-20T15:17:57.153 |
| fkie_cve-2025-62739 | Cross-Site Request Forgery (CSRF) vulnerability in SaifuMak Add Custom Codes add-custom-codes allow… | 2025-12-09T16:18:02.753 | 2026-01-20T15:17:57.030 |
| fkie_cve-2025-62738 | Missing Authorization vulnerability in mmattax Formstack Online Forms formstack allows Exploiting I… | 2025-12-09T16:18:02.620 | 2026-01-20T15:17:56.897 |
| fkie_cve-2025-62737 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in opicron… | 2025-12-09T16:18:02.483 | 2026-01-20T15:17:56.773 |
| fkie_cve-2025-62736 | Missing Authorization vulnerability in opicron Image Cleanup image-cleanup allows Exploiting Incorr… | 2025-12-09T16:18:02.357 | 2026-01-20T15:17:56.643 |
| fkie_cve-2025-62735 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Joel Us… | 2025-12-09T16:18:02.223 | 2026-01-20T15:17:56.510 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-7g4v-c9v7-6647 |
8.8 (3.1)
|
An issue in Automai Director v.25.2.0 allows a remote attacker to execute arbitrary code via the up… | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-6phw-p8vc-q8gp |
7.5 (3.1)
|
NULL Pointer Dereference vulnerability in Apache Nimble. Missing validation of HCI connection comp… | 2026-01-10T12:30:16Z | 2026-01-12T18:30:30Z |
| ghsa-4rm3-56gv-9xv3 |
8.2 (3.1)
|
An issue in Automai Director v.25.2.0 allows a remote attacker to escalate privileges and obtain se… | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-44vp-c93r-6656 |
9.8 (3.1)
|
EDIMAX BR-6208AC V2_1.02 is vulnerable to Command Injection. This arises because the pppUserName fi… | 2026-01-09T18:31:37Z | 2026-01-12T18:30:30Z |
| ghsa-3hjw-x946-3rhg |
8.2 (3.1)
|
Errands before 46.2.10 does not verify TLS certificates for CalDAV servers. | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-qgg6-hj2r-3x43 |
7.5 (3.1)
|
fluidsynth-2.4.6 and earlier versions is vulnerable to Null pointer dereference in fluid_synth_mono… | 2026-01-09T18:31:36Z | 2026-01-12T18:30:29Z |
| ghsa-jxg2-gp53-m88h |
7.5 (3.1)
|
In Yonyou YonBIP v3 and before, the LoginWithV8 interface in the series data application service sy… | 2026-01-09T18:31:36Z | 2026-01-12T18:30:29Z |
| ghsa-9w9h-4qfh-f6m6 |
6.5 (3.1)
|
An Information Disclosure vulnerability in CouchCMS 2.4 allow an Admin user to read arbitrary files… | 2026-01-09T18:31:36Z | 2026-01-12T18:30:29Z |
| ghsa-75mq-3gf9-64wc |
9.8 (3.1)
|
A Command Injection Vulnerability has been discovered in the DHCP daemon service of D-Link DIR895LA… | 2026-01-09T18:31:37Z | 2026-01-12T18:30:29Z |
| ghsa-mmrr-c2j6-cqfp |
7.5 (3.1)
5.1 (4.0)
|
Panda3D versions up to and including 1.10.16 egg-mkfont contains an uncontrolled format string vuln… | 2026-01-07T21:31:56Z | 2026-01-12T18:30:25Z |
| ghsa-gwg6-62mc-7h63 |
9.8 (3.1)
6.9 (4.0)
|
Panda3D versions up to and including 1.10.16 egg-mkfont contains a stack-based buffer overflow vuln… | 2026-01-07T21:31:56Z | 2026-01-12T18:30:25Z |
| ghsa-xvxx-4fr3-55xv |
5.5 (3.1)
6.9 (4.0)
|
Panda3D versions up to and including 1.10.16 deploy-stub contains a denial of service vulnerability… | 2026-01-07T21:31:56Z | 2026-01-12T18:30:24Z |
| ghsa-6mw8-c4j3-m9rv |
8.1 (3.1)
5.1 (4.0)
|
A heap buffer over-read vulnerability exists in the wolfSSH_CleanPath() function in wolfSSH. An aut… | 2026-01-06T18:31:36Z | 2026-01-12T18:30:24Z |
| ghsa-5r65-89wp-6mxr |
9.8 (3.1)
9.4 (4.0)
|
wolfSSH’s key exchange state machine can be manipulated to leak the client’s password in the clear,… | 2026-01-06T18:31:36Z | 2026-01-12T18:30:24Z |
| ghsa-mhwg-hvw8-9w84 |
5.4 (3.1)
5.3 (4.0)
|
Microweber 2.0.15 contains a stored cross-site scripting vulnerability that allows authenticated at… | 2025-12-12T00:30:20Z | 2026-01-12T18:30:21Z |
| ghsa-9247-4234-vwrq |
7.8 (3.1)
8.8 (4.0)
|
A local privilege escalation vulnerability in Bitdefender Total Security 27.0.46.231 allows low-pri… | 2025-12-10T12:31:27Z | 2026-01-12T18:30:20Z |
| ghsa-wh65-53hg-mxpv |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: Revert "fs/ntfs3: Replace inod… | 2025-09-07T18:31:27Z | 2026-01-12T18:30:19Z |
| ghsa-jx3q-xcpc-36h3 |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: serial: 8250: fix panic due to… | 2025-09-05T18:31:27Z | 2026-01-12T18:30:19Z |
| ghsa-frvj-f982-mfmx |
7.8 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: NFS: Fix filehandle bounds che… | 2025-09-07T18:31:27Z | 2026-01-12T18:30:19Z |
| ghsa-cvwp-768v-w5r3 |
7.1 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: media: venus: Add a check for … | 2025-09-05T18:31:27Z | 2026-01-12T18:30:19Z |
| ghsa-45h6-97cw-2x6c |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: media: usbtv: Lock resolution … | 2025-09-05T18:31:27Z | 2026-01-12T18:30:19Z |
| ghsa-887v-xh2x-47cm |
6.1 (3.1)
|
Mattermost Server is vulnerable to XSS through display name field | 2022-05-24T17:21:05Z | 2026-01-12T18:30:08Z |
| ghsa-vrh2-rprg-rgc6 |
6.1 (3.1)
|
Mattermost Server does not safeguard against phishing via error page links | 2022-05-24T17:21:05Z | 2026-01-12T18:16:42Z |
| ghsa-h742-xx59-r9pq |
5.3 (3.1)
|
Mattermost Server exposes sensitive user status information via REST API version 4 endpoint | 2022-05-24T17:21:05Z | 2026-01-12T16:19:55Z |
| ghsa-wrg7-gj8f-p6mh |
8.7 (4.0)
|
Imaster's MEMS Events CRM contains an SQL injection vulnerability in‘keyword’ parameter in ‘/memsde… | 2026-01-12T15:30:42Z | 2026-01-12T15:30:42Z |
| ghsa-qc32-mjp2-qfv5 |
8.7 (4.0)
|
Imaster's Patient Records Management System is vulnerable to SQL Injection in the endpoint ‘/projec… | 2026-01-12T15:30:42Z | 2026-01-12T15:30:42Z |
| ghsa-4jj6-9r93-mpjw |
9.3 (4.0)
|
Imaster's MEMS Events CRM contains an SQL injection vulnerability in ‘phone’ parameter in ‘/memsdem… | 2026-01-12T15:30:42Z | 2026-01-12T15:30:42Z |
| ghsa-3gxp-j77p-vmqh |
5.1 (4.0)
|
Imaster's Patient Record Management System contains a stored Cross-Site Scripting (XSS) vulnerabili… | 2026-01-12T15:30:42Z | 2026-01-12T15:30:42Z |
| ghsa-5gw4-7cfm-h82q |
8.8 (3.1)
7.2 (4.0)
|
APTIOV contains a vulnerability in BIOS where a user may cause “Improper Handling of Insufficient P… | 2025-12-12T15:30:42Z | 2026-01-12T15:30:35Z |
| ghsa-prwh-7838-xf82 |
9.3 (4.0)
|
XWiki allows SQL injection in query endpoint of REST API with Oracle | 2025-06-12T21:52:50Z | 2026-01-12T14:43:59Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-27383 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.790716Z |
| gsd-2024-27442 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.788323Z |
| gsd-2024-27392 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.788042Z |
| gsd-2024-27444 | langchain_experimental (aka LangChain Experimental) in LangChain before 0.1.8 allows an a… | 2024-02-26T06:02:26.786726Z |
| gsd-2024-27445 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.784039Z |
| gsd-2024-27362 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.782071Z |
| gsd-2024-27430 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.771501Z |
| gsd-2024-27368 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.769763Z |
| gsd-2024-27360 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.768524Z |
| gsd-2024-27394 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.767400Z |
| gsd-2024-27440 | The Toyoko Inn official App for iOS versions prior to 1.13.0 and Toyoko Inn official App … | 2024-02-26T06:02:26.767042Z |
| gsd-2024-27413 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.764891Z |
| gsd-2024-27374 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.763660Z |
| gsd-2024-27363 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.763310Z |
| gsd-2024-27366 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.762310Z |
| gsd-2024-27351 | In Django 3.2 before 3.2.25, 4.2 before 4.2.11, and 5.0 before 5.0.3, the django.utils.te… | 2024-02-26T06:02:26.761532Z |
| gsd-2024-27370 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.760917Z |
| gsd-2024-27418 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.760633Z |
| gsd-2024-27408 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.760246Z |
| gsd-2024-27427 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.759972Z |
| gsd-2024-27432 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.759339Z |
| gsd-2024-27384 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.757752Z |
| gsd-2024-27429 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.757441Z |
| gsd-2024-27386 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.757155Z |
| gsd-2024-27397 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.755024Z |
| gsd-2024-27423 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.754339Z |
| gsd-2024-27381 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.753299Z |
| gsd-2024-27400 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.752945Z |
| gsd-2024-27372 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.750796Z |
| gsd-2024-27358 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-26T06:02:26.749010Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-186165 | Malicious code in cli-hermes-mesosphere-corvus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186164 | Malicious code in cli-eris-cors-jest (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186163 | Malicious code in cli-cordelia-chalk-redgiant (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186162 | Malicious code in cli-aldebaran-geodynamo-jabbah (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186161 | Malicious code in class-secure-function-transpile-authorize (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186160 | Malicious code in class-kernel-lambda-void-try (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186159 | Malicious code in class-eta-lambda-hash-root (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186158 | Malicious code in class-debug-private-decrypt-slow (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186157 | Malicious code in cladistics-virgo-transform-query (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186156 | Malicious code in cladistics-markdown-pdf-helmet-betelgeuse (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186155 | Malicious code in cladistics-geochemistry-vortex-panspermia (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186154 | Malicious code in cladistics-crust-blitz-delphinus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186153 | Malicious code in cladistics-charon-sagitta-protractor (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186152 | Malicious code in chromedriver-spica-repository-epigenetics (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186151 | Malicious code in chromedriver-non-blocking-chariklo-registry (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186150 | Malicious code in chromedriver-jwt-paleoclimatology-archaeoastronomy (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186149 | Malicious code in chromedriver-json-polaris-hyperion (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186148 | Malicious code in chromedriver-hyperion-isostasy-cz-conventional-changelog (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186147 | Malicious code in child-process-xenon-avior-perseus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186146 | Malicious code in child-process-stratigraphy-subduction-node-sass (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186145 | Malicious code in child-process-loglevel-elektra-eleventy (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186144 | Malicious code in child-process-eridanus-cypress-zephyr (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186143 | Malicious code in child-process-concurrently-chakra-ui-node-sass (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186142 | Malicious code in child-process-charon-mui-on (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186141 | Malicious code in child-process-blitz-spawn-wasat (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186140 | Malicious code in chi-short-export-assert-execute (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186139 | Malicious code in chi-route-good-integer-grep (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186138 | Malicious code in chi-omega-permission-analyze-warn (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186137 | Malicious code in chi-mu-socket-cold-small (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-186136 | Malicious code in chi-iota-decompress-sed-emulate (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-0753 | OpenSSL: Schwachstelle ermöglicht Denial of Service | 2023-03-26T22:00:00.000+00:00 | 2023-03-26T22:00:00.000+00:00 |
| wid-sec-w-2023-0749 | NetApp ActiveIQ Unified Manager: Schwachstelle ermöglicht Manipulation von Dateien | 2023-03-26T22:00:00.000+00:00 | 2023-03-26T22:00:00.000+00:00 |
| wid-sec-w-2022-1990 | LibreOffice: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2022-02-22T23:00:00.000+00:00 | 2023-03-26T22:00:00.000+00:00 |
| wid-sec-w-2022-1679 | LibreOffice: Schwachstelle ermöglicht Codeausführung | 2022-10-11T22:00:00.000+00:00 | 2023-03-26T22:00:00.000+00:00 |
| wid-sec-w-2023-0747 | WithSecure Produkte: Schwachstelle ermöglicht Denial of Service | 2023-03-23T23:00:00.000+00:00 | 2023-03-23T23:00:00.000+00:00 |
| wid-sec-w-2023-0746 | Red Hat OpenShift GitOps: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-03-23T23:00:00.000+00:00 | 2023-03-23T23:00:00.000+00:00 |
| wid-sec-w-2023-0744 | xpdf: Schwachstelle ermöglicht Denial of Service | 2023-03-23T23:00:00.000+00:00 | 2023-03-23T23:00:00.000+00:00 |
| wid-sec-w-2023-0743 | IBM Business Automation Workflow: Schwachstelle ermöglicht Cross-Site Scripting | 2023-03-23T23:00:00.000+00:00 | 2023-03-23T23:00:00.000+00:00 |
| wid-sec-w-2023-0741 | IBM Business Automation Workflow: Mehrere Schwachstellen | 2023-03-23T23:00:00.000+00:00 | 2023-03-23T23:00:00.000+00:00 |
| wid-sec-w-2023-0740 | IBM Spectrum Protect: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-03-23T23:00:00.000+00:00 | 2023-03-23T23:00:00.000+00:00 |
| wid-sec-w-2023-0709 | Veritas NetBackup: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-03-21T23:00:00.000+00:00 | 2023-03-23T23:00:00.000+00:00 |
| wid-sec-w-2023-0736 | IBM Spectrum Scale: Schwachstelle ermöglicht Denial of Service | 2023-03-22T23:00:00.000+00:00 | 2023-03-22T23:00:00.000+00:00 |
| wid-sec-w-2023-0733 | Cisco Wireless LAN Controllers: Mehrere Schwachstellen | 2023-03-22T23:00:00.000+00:00 | 2023-03-22T23:00:00.000+00:00 |
| wid-sec-w-2023-0725 | Cisco SD-WAN: Schwachstelle ermöglicht CSRF-Angriff | 2023-03-22T23:00:00.000+00:00 | 2023-03-22T23:00:00.000+00:00 |
| wid-sec-w-2023-0724 | Cisco IOS: Schwachstelle ermöglicht Denial of Service | 2023-03-22T23:00:00.000+00:00 | 2023-03-22T23:00:00.000+00:00 |
| wid-sec-w-2023-0723 | IBM Integration Bus: Mehrere Schwachstellen | 2023-03-22T23:00:00.000+00:00 | 2023-03-22T23:00:00.000+00:00 |
| wid-sec-w-2023-0722 | Cisco IOS XE: Mehrere Schwachstellen ermöglichen Denial of Service | 2023-03-22T23:00:00.000+00:00 | 2023-03-22T23:00:00.000+00:00 |
| wid-sec-w-2023-0720 | Red Hat JBoss: Mehrere Schwachstellen | 2017-11-02T23:00:00.000+00:00 | 2023-03-22T23:00:00.000+00:00 |
| wid-sec-w-2023-0718 | TYPO3 Extension "Fluid Components": Schwachstelle ermöglicht Cross-Site Scripting | 2023-03-21T23:00:00.000+00:00 | 2023-03-22T23:00:00.000+00:00 |
| wid-sec-w-2023-0674 | Veritas NetBackup: Schwachstelle ermöglicht Manipulation von Dateien | 2023-03-16T23:00:00.000+00:00 | 2023-03-22T23:00:00.000+00:00 |
| wid-sec-w-2023-0398 | Red Hat Advanced Cluster Management for Kubernetes: Schwachstelle ermöglicht Denial of Service | 2023-02-15T23:00:00.000+00:00 | 2023-03-22T23:00:00.000+00:00 |
| wid-sec-w-2023-0326 | Mattermost: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-02-09T23:00:00.000+00:00 | 2023-03-22T23:00:00.000+00:00 |
| wid-sec-w-2023-0168 | vim: Schwachstelle ermöglicht Codeausführung | 2023-01-22T23:00:00.000+00:00 | 2023-03-22T23:00:00.000+00:00 |
| wid-sec-w-2023-0096 | vim: Schwachstelle ermöglicht Codeausführung | 2023-01-15T23:00:00.000+00:00 | 2023-03-22T23:00:00.000+00:00 |
| wid-sec-w-2022-1395 | lighttpd: Schwachstelle ermöglicht Denial of Service | 2022-09-12T22:00:00.000+00:00 | 2023-03-22T23:00:00.000+00:00 |
| wid-sec-w-2023-0714 | McAfee Total Protection: Schwachstelle ermöglicht Manipulation von Dateien | 2023-03-21T23:00:00.000+00:00 | 2023-03-21T23:00:00.000+00:00 |
| wid-sec-w-2023-0713 | IBM Security Guardium Key Lifecycle Manager: Mehrere Schwachstellen | 2023-03-21T23:00:00.000+00:00 | 2023-03-21T23:00:00.000+00:00 |
| wid-sec-w-2023-0712 | Ghostscript: Schwachstelle ermöglicht Privilegieneskalation | 2019-05-07T22:00:00.000+00:00 | 2023-03-21T23:00:00.000+00:00 |
| wid-sec-w-2023-0710 | IBM QRadar SIEM: Schwachstelle ermöglicht Privilegieneskalation | 2023-03-21T23:00:00.000+00:00 | 2023-03-21T23:00:00.000+00:00 |
| wid-sec-w-2023-0708 | Aruba CX Switches: Schwachstelle ermöglicht Codeausführung | 2023-03-21T23:00:00.000+00:00 | 2023-03-21T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:8679 | Red Hat Security Advisory: grafana security update | 2025-06-09T14:03:19+00:00 | 2025-11-21T19:36:54+00:00 |
| rhsa-2025:8672 | Red Hat Security Advisory: Red Hat build of Keycloak 26.2.5 Images Security Update | 2025-06-09T12:40:44+00:00 | 2025-11-21T19:36:53+00:00 |
| rhsa-2025:8669 | Red Hat Security Advisory: kernel security update | 2025-06-09T13:02:14+00:00 | 2025-11-21T19:36:51+00:00 |
| rhsa-2025:8631 | Red Hat Security Advisory: thunderbird security update | 2025-06-09T03:20:53+00:00 | 2025-11-21T19:36:51+00:00 |
| rhsa-2025:8663 | Red Hat Security Advisory: libsoup security update | 2025-06-09T09:56:05+00:00 | 2025-11-21T19:36:49+00:00 |
| rhsa-2025:8645 | Red Hat Security Advisory: firefox security update | 2025-06-09T07:24:34+00:00 | 2025-11-21T19:36:49+00:00 |
| rhsa-2025:8643 | Red Hat Security Advisory: kernel security update | 2025-06-09T07:43:44+00:00 | 2025-11-21T19:36:48+00:00 |
| rhsa-2025:8642 | Red Hat Security Advisory: thunderbird security update | 2025-06-09T04:54:38+00:00 | 2025-11-21T19:36:48+00:00 |
| rhsa-2025:8640 | Red Hat Security Advisory: firefox security update | 2025-06-09T03:00:53+00:00 | 2025-11-21T19:36:48+00:00 |
| rhsa-2025:8639 | Red Hat Security Advisory: firefox security update | 2025-06-09T03:20:13+00:00 | 2025-11-21T19:36:48+00:00 |
| rhsa-2025:8630 | Red Hat Security Advisory: thunderbird security update | 2025-06-09T03:01:08+00:00 | 2025-11-21T19:36:46+00:00 |
| rhsa-2025:8629 | Red Hat Security Advisory: thunderbird security update | 2025-06-09T02:20:28+00:00 | 2025-11-21T19:36:46+00:00 |
| rhsa-2025:8628 | Red Hat Security Advisory: thunderbird security update | 2025-06-09T01:57:28+00:00 | 2025-11-21T19:36:46+00:00 |
| rhsa-2025:8627 | Red Hat Security Advisory: mod_security security update | 2025-06-09T01:45:48+00:00 | 2025-11-21T19:36:45+00:00 |
| rhsa-2025:8626 | Red Hat Security Advisory: mod_security security update | 2025-06-09T01:43:03+00:00 | 2025-11-21T19:36:45+00:00 |
| rhsa-2025:8608 | Red Hat Security Advisory: thunderbird security update | 2025-06-05T17:16:29+00:00 | 2025-11-21T19:36:44+00:00 |
| rhsa-2025:8607 | Red Hat Security Advisory: thunderbird security update | 2025-06-05T19:02:19+00:00 | 2025-11-21T19:36:43+00:00 |
| rhsa-2025:8605 | Red Hat Security Advisory: mod_security security update | 2025-06-05T16:09:49+00:00 | 2025-11-21T19:36:43+00:00 |
| rhsa-2025:8600 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-06-05T12:49:14+00:00 | 2025-11-21T19:36:42+00:00 |
| rhsa-2025:8599 | Red Hat Security Advisory: thunderbird security update | 2025-06-05T12:34:03+00:00 | 2025-11-21T19:36:42+00:00 |
| rhsa-2025:8598 | Red Hat Security Advisory: thunderbird security update | 2025-06-05T12:26:23+00:00 | 2025-11-21T19:36:42+00:00 |
| rhsa-2025:8550 | Red Hat Security Advisory: varnish security update | 2025-06-04T22:28:02+00:00 | 2025-11-21T19:36:40+00:00 |
| rhsa-2025:8541 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-06-04T19:44:32+00:00 | 2025-11-21T19:36:39+00:00 |
| rhsa-2025:8534 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-06-04T17:31:16+00:00 | 2025-11-21T19:36:38+00:00 |
| rhsa-2025:8533 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-06-04T17:29:11+00:00 | 2025-11-21T19:36:38+00:00 |
| rhsa-2025:8532 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-06-04T17:29:26+00:00 | 2025-11-21T19:36:38+00:00 |
| rhsa-2025:8530 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-06-04T16:56:31+00:00 | 2025-11-21T19:36:38+00:00 |
| rhsa-2025:8506 | Red Hat Security Advisory: nodejs:22 security update | 2025-06-04T11:35:46+00:00 | 2025-11-21T19:36:36+00:00 |
| rhsa-2025:8493 | Red Hat Security Advisory: nodejs22 security update | 2025-06-04T07:44:50+00:00 | 2025-11-21T19:36:36+00:00 |
| rhsa-2025:8482 | Red Hat Security Advisory: libsoup security update | 2025-06-04T03:49:50+00:00 | 2025-11-21T19:36:36+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2023-0461 | Use-after-free vulnerability in the Linux Kernel | 2023-02-01T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2022-1050 | A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to execute HW commands when shared buffers are not yet allocated potentially leading to a use-after-free condition. | 2022-03-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-4145 | A NULL pointer dereference issue was found in the block mirror layer of QEMU in versions prior to 6.2.0. The `self` pointer is dereferenced in mirror_wait_on_conflicts() without ensuring that it's not NULL. A malicious unprivileged user within the guest could use this flaw to crash the QEMU process on the host when writing data reaches the threshold of mirroring node. | 2022-01-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-3947 | A stack-buffer-overflow was found in QEMU in the NVME component. The flaw lies in nvme_changed_nslist() where a malicious guest controlling certain input can read out of bounds memory. A malicious user could use this flaw leading to disclosure of sensitive information. | 2022-02-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-3930 | An off-by-one error was found in the SCSI device emulation in QEMU. It could occur while processing MODE SELECT commands in mode_sense_page() if the 'page' argument was set to MODE_PAGE_ALLS (0x3f). A malicious guest could use this flaw to potentially crash QEMU resulting in a denial of service condition. | 2022-02-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-3748 | A use-after-free vulnerability was found in the virtio-net device of QEMU. It could occur when the descriptor's address belongs to the non direct access region due to num_buffers being set after the virtqueue elem has been unmapped. A malicious guest could use this flaw to crash QEMU resulting in a denial of service condition or potentially execute code on the host with the privileges of the QEMU process. | 2022-03-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-3713 | An out-of-bounds write flaw was found in the UAS (USB Attached SCSI) device emulation of QEMU in versions prior to 6.2.0-rc0. The device uses the guest supplied stream number unchecked which can lead to out-of-bounds access to the UASDevice->data3 and UASDevice->status3 fields. A malicious guest user could use this flaw to crash QEMU or potentially achieve code execution with the privileges of the QEMU process on the host. | 2021-08-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-3682 | A flaw was found in the USB redirector device emulation of QEMU in versions prior to 6.1.0-rc2. It occurs when dropping packets during a bulk transfer from a SPICE client due to the packet queue being full. A malicious SPICE client could use this flaw to make QEMU call free() with faked heap chunk metadata resulting in a crash of QEMU or potential code execution with the privileges of the QEMU process on the host. | 2021-08-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-3638 | An out-of-bounds memory access flaw was found in the ATI VGA device emulation of QEMU. This flaw occurs in the ati_2d_blt() routine while handling MMIO write operations when the guest provides invalid values for the destination display parameters. A malicious guest could use this flaw to crash the QEMU process on the host resulting in a denial of service. | 2022-03-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-3506 | An out-of-bounds (OOB) memory access flaw was found in fs/f2fs/node.c in the f2fs module in the Linux kernel in versions before 5.12.0-rc4. A bounds check failure allows a local attacker to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability. | 2021-04-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-3487 | Rejected reason: Non Security Issue. See the binutils security policy for more details https://sourceware.org/cgit/binutils-gdb/tree/binutils/SECURITY.txt | 2021-04-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-3470 | A heap overflow issue was found in Redis in versions before 5.0.10 before 6.0.9 and before 6.2.0 when using a heap allocator other than jemalloc or glibc's malloc leading to potential out of bound write or process crash. Effectively this flaw does not affect the vast majority of users who use jemalloc or glibc malloc. | 2021-03-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-3448 | A flaw was found in dnsmasq in versions before 2.85. When configured to use a specific server for a given network interface dnsmasq uses a fixed port while forwarding queries. An attacker on the network able to find the outgoing port used by dnsmasq only needs to guess the random transmission ID to forge a reply and get it accepted by dnsmasq. This flaw makes a DNS Cache Poisoning attack much easier. The highest threat from this vulnerability is to data integrity. | 2021-04-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-31162 | In the standard library in Rust before 1.52.0 a double free can occur in the Vec::from_iter function if freeing the element panics. | 2021-04-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-30178 | An issue was discovered in the Linux kernel through 5.11.11. synic_get in arch/x86/kvm/hyperv.c has a NULL pointer dereference for certain accesses to the SynIC Hyper-V context aka CID-919f4ebc5987. | 2021-04-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-30004 | In wpa_supplicant and hostapd 2.9 forging attacks may occur because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c. | 2021-04-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-30002 | An issue was discovered in the Linux kernel before 5.11.3 when a webcam device exists. video_usercopy in drivers/media/v4l2-core/v4l2-ioctl.c has a memory leak for large arguments aka CID-fb18802a338b. | 2021-04-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-29650 | An issue was discovered in the Linux kernel before 5.11.11. The netfilter subsystem allows attackers to cause a denial of service (panic) because net/netfilter/x_tables.c and include/linux/netfilter/x_tables.h lack a full memory barrier upon the assignment of a new table value aka CID-175e476b8cdf. | 2021-03-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-29649 | An issue was discovered in the Linux kernel before 5.11.11. The user mode driver (UMD) has a copy_process() memory leak related to a lack of cleanup steps in kernel/usermode_driver.c and kernel/bpf/preload/bpf_preload_kern.c aka CID-f60a85cad677. | 2021-03-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-29648 | An issue was discovered in the Linux kernel before 5.11.11. The BPF subsystem does not properly consider that resolved_ids and resolved_sizes are intentionally uninitialized in the vmlinux BPF Type Format (BTF) which can cause a system crash upon an unexpected access attempt (in map_create in kernel/bpf/syscall.c or check_btf_info in kernel/bpf/verifier.c) aka CID-350a5c4dd245. | 2021-03-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-29647 | An issue was discovered in the Linux kernel before 5.11.11. qrtr_recvmsg in net/qrtr/qrtr.c allows attackers to obtain sensitive information from kernel memory because of a partially uninitialized data structure aka CID-50535249f624. | 2021-03-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-29646 | An issue was discovered in the Linux kernel before 5.11.11. tipc_nl_retrieve_key in net/tipc/node.c does not properly validate certain data sizes aka CID-0217ed2848e8. | 2021-03-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-29155 | An issue was discovered in the Linux kernel through 5.11.x. kernel/bpf/verifier.c performs undesirable out-of-bounds speculation on pointer arithmetic leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory. Specifically for sequences of pointer arithmetic operations the pointer modification performed by the first operation is not correctly accounted for when restricting subsequent operations. | 2021-04-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-29154 | BPF JIT compilers in the Linux kernel through 5.11.12 have incorrect computation of branch displacements allowing them to execute arbitrary code within the kernel context. This affects arch/x86/net/bpf_jit_comp.c and arch/x86/net/bpf_jit_comp32.c. | 2021-04-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-28965 | The REXML gem before 3.2.5 in Ruby before 2.6.7 2.7.x before 2.7.3 and 3.x before 3.0.1 does not properly address XML round-trip issues. An incorrect document can be produced after parsing and serializing. | 2021-04-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-28879 | In the standard library in Rust before 1.52.0 the Zip implementation can report an incorrect size due to an integer overflow. This bug can lead to a buffer overflow when a consumed Zip iterator is used again. | 2021-04-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-28878 | In the standard library in Rust before 1.52.0 the Zip implementation calls __iterator_get_unchecked() more than once for the same index (under certain conditions) when next_back() and next() are used together. This bug could lead to a memory safety violation due to an unmet safety requirement for the TrustedRandomAccess trait. | 2021-04-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-28877 | In the standard library in Rust before 1.51.0 the Zip implementation calls __iterator_get_unchecked() for the same index more than once when nested. This bug can lead to a memory safety violation due to an unmet safety requirement for the TrustedRandomAccess trait. | 2021-04-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-28876 | In the standard library in Rust before 1.52.0 the Zip implementation has a panic safety issue. It calls __iterator_get_unchecked() more than once for the same index when the underlying iterator panics (in certain conditions). This bug could lead to a memory safety violation due to an unmet safety requirement for the TrustedRandomAccess trait. | 2021-04-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-28875 | In the standard library in Rust before 1.50.0 read_to_end() does not validate the return value from Read in an unsafe context. This bug could lead to a buffer overflow. | 2021-04-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201505-0130 | The session-manager service in Cisco StarOS 12.0, 12.2(300), 14.0, and 14.0(600) on ASR 5… | 2025-04-13T23:41:21.212000Z |
| var-201505-0172 | The web administration interface on Cisco Wireless LAN Controller (WLC) devices before 7.… | 2025-04-13T23:41:21.177000Z |
| var-201505-0193 | Cisco IP Phone 7861, when firmware from Cisco Unified Communications Manager 10.3(1) is u… | 2025-04-13T23:41:21.142000Z |
| var-201505-0365 | Cross-site scripting (XSS) vulnerability in Huawei SEQ Analyst before V200R002C03LG0001CP… | 2025-04-13T23:41:21.042000Z |
| var-201506-0191 | Cross-site scripting (XSS) vulnerability in the Alcatel-Lucent CellPipe 7130 router with … | 2025-04-13T23:41:20.931000Z |
| var-201506-0254 | Cisco NX-OS 5.2(5) on Nexus 7000 devices allows remote attackers to cause a denial of ser… | 2025-04-13T23:41:20.869000Z |
| var-201507-0042 | Juniper Junos OS 12.1X44 before 12.1X44-D50, 12.1X46 before 12.1X46-D35, 12.1X47 before 1… | 2025-04-13T23:41:20.744000Z |
| var-201507-0506 | Cisco WebEx Meetings Server 2.5MR1 allows remote authenticated users to execute arbitrary… | 2025-04-13T23:41:20.588000Z |
| var-201507-0548 | The web interface in Cisco Identity Services Engine (ISE) 1.1(4.1), 1.3(106.146), and 1.3… | 2025-04-13T23:41:20.556000Z |
| var-201508-0126 | Cross-site scripting (XSS) vulnerability in Cisco Unified Web and E-Mail Interaction Mana… | 2025-04-13T23:41:20.469000Z |
| var-201508-0254 | Belkin N300 Dual-Band Wi-Fi Range Extender with firmware before 1.04.10 allows remote aut… | 2025-04-13T23:41:20.314000Z |
| var-201508-0485 | The Mobile and Remote Access (MRA) endpoint-validation feature in Cisco TelePresence Vide… | 2025-04-13T23:41:20.247000Z |
| var-201508-0506 | Cisco Unified Web and E-Mail Interaction Manager 9.0(2) and 11.0(1) improperly performs a… | 2025-04-13T23:41:20.217000Z |
| var-201508-0611 | I-O DATA DEVICE WN-G54/R2 routers with firmware before 1.03 and NP-BBRS routers allow rem… | 2025-04-13T23:41:20.153000Z |
| var-201509-0008 | Cisco IOS XE 2.x and 3.x before 3.10.6S, 3.11.xS through 3.13.xS before 3.13.3S, and 3.14… | 2025-04-13T23:41:20.112000Z |
| var-201509-0323 | Siemens RUGGEDCOM ROS 3.8.0 through 4.1.x permanently enables the IP forwarding feature, … | 2025-04-13T23:41:19.913000Z |
| var-201511-0020 | The media scanning functionality in the face recognition library in android.media.process… | 2025-04-13T23:41:19.225000Z |
| var-201512-0383 | Cisco Emergency Responder 10.5(3.10000.9) allows remote attackers to upload files to arbi… | 2025-04-13T23:41:18.973000Z |
| var-201512-0404 | The kernel in Cisco NX-OS 5.2(9)N1(1) on Nexus 5000 devices allows local users to cause a… | 2025-04-13T23:41:18.938000Z |
| var-201512-0551 | The default configuration of SGOS in Blue Coat ProxySG before 6.2.16.5, 6.5 before 6.5.7.… | 2025-04-13T23:41:18.867000Z |
| var-201601-0056 | The Routing Engine in Juniper Junos OS 13.2R5 through 13.2R8, 13.3R1 before 13.3R8, 13.3R… | 2025-04-13T23:41:18.830000Z |
| var-201602-0048 | The Openfire server in Cisco Finesse Desktop 10.5(1) and 11.0(1) and Unified Contact Cent… | 2025-04-13T23:41:18.710000Z |
| var-201602-0069 | The device login page in Cisco FirePOWER Management Center 5.3 through 6.0.0.1 allows rem… | 2025-04-13T23:41:18.680000Z |
| var-201603-0104 | Cross-site request forgery (CSRF) vulnerability on Corega CG-WLBARGMH and CG-WLBARGNL dev… | 2025-04-13T23:41:18.551000Z |
| var-201603-0293 | The Smart Install client implementation in Cisco IOS 12.2, 15.0, and 15.2 and IOS XE 3.2 … | 2025-04-13T23:41:18.516000Z |
| var-201604-0053 | Race condition in the RPC functionality in Juniper Junos OS before 12.1X44-D55, 12.1X46 b… | 2025-04-13T23:41:18.439000Z |
| var-201604-0200 | Adobe Flash Player and Adobe AIR of TextField Use of freed memory for object implementati… | 2025-04-13T23:41:18.285000Z |
| var-201605-0333 | Cross-site scripting (XSS) vulnerability in the email APP in Huawei PLK smartphones with … | 2025-04-13T23:41:18.155000Z |
| var-201606-0056 | Huawei FusionInsight HD before V100R002C60SPC200 allows local users to gain root privileg… | 2025-04-13T23:41:17.895000Z |
| var-201606-0182 | The Wi-Fi Protected Setup (WPS) implementation on Corega CG-WLR300GNV and CG-WLR300GNV-W … | 2025-04-13T23:41:17.833000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2022:2010-1 | Security update for the Linux Kernel (Live Patch 44 for SLE 12 SP3) | 2022-06-07T16:08:36Z | 2022-06-07T16:08:36Z |
| suse-su-2022:2006-1 | Security update for the Linux Kernel (Live Patch 43 for SLE 12 SP3) | 2022-06-07T16:08:27Z | 2022-06-07T16:08:27Z |
| suse-su-2022:2005-1 | Security update for go1.18 | 2022-06-07T14:34:56Z | 2022-06-07T14:34:56Z |
| suse-su-2022:2004-1 | Security update for go1.17 | 2022-06-07T14:34:31Z | 2022-06-07T14:34:31Z |
| suse-su-2022:2003-1 | Security update for mariadb | 2022-06-07T14:34:06Z | 2022-06-07T14:34:06Z |
| suse-su-2022:2000-1 | Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP3) | 2022-06-06T17:05:01Z | 2022-06-06T17:05:01Z |
| suse-su-2022:1955-1 | Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP3) | 2022-06-06T12:03:52Z | 2022-06-06T12:03:52Z |
| suse-su-2022:1989-1 | Security update for the Linux Kernel (Live Patch 18 for SLE 15 SP3) | 2022-06-06T10:34:51Z | 2022-06-06T10:34:51Z |
| suse-su-2022:1988-1 | Security update for the Linux Kernel (Live Patch 17 for SLE 15 SP3) | 2022-06-06T10:34:44Z | 2022-06-06T10:34:44Z |
| suse-su-2022:1974-1 | Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP3) | 2022-06-06T10:34:37Z | 2022-06-06T10:34:37Z |
| suse-su-2022:1949-1 | Security update for the Linux Kernel (Live Patch 30 for SLE 15 SP1) | 2022-06-05T23:33:39Z | 2022-06-05T23:33:39Z |
| suse-su-2022:1948-1 | Security update for the Linux Kernel (Live Patch 16 for SLE 15 SP3) | 2022-06-05T21:33:28Z | 2022-06-05T21:33:28Z |
| suse-su-2022:1947-1 | Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP2) | 2022-06-05T13:04:13Z | 2022-06-05T13:04:13Z |
| suse-su-2022:1945-1 | Security update for the Linux Kernel (Live Patch 27 for SLE 15 SP1) | 2022-06-05T08:03:51Z | 2022-06-05T08:03:51Z |
| suse-su-2022:1942-1 | Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP5) | 2022-06-05T01:04:11Z | 2022-06-05T01:04:11Z |
| suse-su-2022:1940-1 | Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP4) | 2022-06-04T18:33:39Z | 2022-06-04T18:33:39Z |
| suse-su-2022:1939-1 | Security update for the Linux Kernel (Live Patch 24 for SLE 12 SP4) | 2022-06-04T18:04:01Z | 2022-06-04T18:04:01Z |
| suse-su-2022:1934-1 | Security update for openvpn | 2022-06-03T12:58:01Z | 2022-06-03T12:58:01Z |
| suse-su-2022:1933-1 | Security update for hdf5, suse-hpc | 2022-06-03T09:51:34Z | 2022-06-03T09:51:34Z |
| suse-su-2022:1932-1 | Security update for patch | 2022-06-03T08:26:34Z | 2022-06-03T08:26:34Z |
| suse-su-2022:1930-1 | Security update for libarchive | 2022-06-02T15:34:49Z | 2022-06-02T15:34:49Z |
| suse-su-2022:1929-1 | Security update for redis | 2022-06-02T15:34:25Z | 2022-06-02T15:34:25Z |
| suse-su-2022:1928-1 | Security update for php8 | 2022-06-02T15:34:12Z | 2022-06-02T15:34:12Z |
| suse-su-2022:1927-1 | Security update for MozillaFirefox | 2022-06-02T14:36:48Z | 2022-06-02T14:36:48Z |
| suse-su-2022:1925-1 | Security update for patch | 2022-06-02T12:35:31Z | 2022-06-02T12:35:31Z |
| suse-su-2022:1923-1 | Security update for kernel-firmware | 2022-06-02T12:04:09Z | 2022-06-02T12:04:09Z |
| suse-su-2022:1921-1 | Security update for MozillaFirefox | 2022-06-02T11:06:59Z | 2022-06-02T11:06:59Z |
| suse-su-2022:1920-1 | Security update for MozillaFirefox | 2022-06-02T11:05:12Z | 2022-06-02T11:05:12Z |
| suse-su-2022:1919-1 | Security update for udisks2 | 2022-06-02T10:04:18Z | 2022-06-02T10:04:18Z |
| suse-su-2022:1918-1 | Security update for rubygem-yajl-ruby | 2022-06-02T08:48:36Z | 2022-06-02T08:48:36Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2017:2833-1 | Security update for jq | 2017-10-23T07:58:55Z | 2017-10-23T07:58:55Z |
| opensuse-su-2017:2835-1 | Security update for irssi | 2017-10-23T07:58:14Z | 2017-10-23T07:58:14Z |
| opensuse-su-2017:2832-1 | Security update for irssi | 2017-10-23T07:58:14Z | 2017-10-23T07:58:14Z |
| opensuse-su-2017:2736-1 | Security update for mbedtls | 2017-10-16T18:55:23Z | 2017-10-16T18:55:23Z |
| opensuse-su-2017:2731-1 | Security update for mbedtls | 2017-10-16T18:55:23Z | 2017-10-16T18:55:23Z |
| opensuse-su-2017:2710-1 | Security update for MozillaThunderbird | 2017-10-11T17:57:43Z | 2017-10-11T17:57:43Z |
| opensuse-su-2017:2707-1 | Security update for MozillaThunderbird | 2017-10-11T17:57:43Z | 2017-10-11T17:57:43Z |
| opensuse-su-2017:2686-1 | Security update for openjpeg2 | 2017-10-10T07:16:40Z | 2017-10-10T07:16:40Z |
| opensuse-su-2017:2685-1 | Security update for openjpeg2 | 2017-10-10T07:16:40Z | 2017-10-10T07:16:40Z |
| opensuse-su-2017:2594-1 | Security update for fmpeg | 2017-09-28T21:13:29Z | 2017-09-28T21:13:29Z |
| opensuse-su-2017:2568-1 | Recommended update for openjpeg | 2017-09-25T21:35:07Z | 2017-09-25T21:35:07Z |
| opensuse-su-2017:2567-1 | Security update for openjpeg2 | 2017-09-25T21:34:20Z | 2017-09-25T21:34:20Z |
| opensuse-su-2017:2558-1 | Security update for Chromium | 2017-09-23T06:52:44Z | 2017-09-23T06:52:44Z |
| opensuse-su-2017:2557-1 | Security update for Chromium | 2017-09-23T06:52:44Z | 2017-09-23T06:52:44Z |
| opensuse-su-2017:2539-1 | Security update for freexl | 2017-09-21T06:52:21Z | 2017-09-21T06:52:21Z |
| opensuse-su-2017:2537-1 | Security update for freexl | 2017-09-21T06:52:21Z | 2017-09-21T06:52:21Z |
| opensuse-su-2017:2491-1 | Security update for chromium | 2017-09-15T05:01:20Z | 2017-09-15T05:01:20Z |
| opensuse-su-2017:2482-1 | Security update for chromium | 2017-09-15T05:01:20Z | 2017-09-15T05:01:20Z |
| opensuse-su-2017:2209-1 | Security update for MozillaThunderbird | 2017-08-18T09:46:47Z | 2017-08-18T09:46:47Z |
| opensuse-su-2017:1994-1 | Security update for chromium | 2017-07-28T12:59:09Z | 2017-07-28T12:59:09Z |
| opensuse-su-2017:1993-1 | Security update for chromium | 2017-07-28T12:59:09Z | 2017-07-28T12:59:09Z |
| opensuse-su-2017:1824-1 | Security update for irssi | 2017-07-07T23:03:39Z | 2017-07-07T23:03:39Z |
| opensuse-su-2017:1823-1 | Security update for irssi | 2017-07-07T23:03:39Z | 2017-07-07T23:03:39Z |
| opensuse-su-2017:1765-1 | Security update for ffmpeg | 2017-07-04T08:13:18Z | 2017-07-04T08:13:18Z |
| opensuse-su-2017:1756-1 | Security update for kdepim, messagelib | 2017-07-02T08:59:34Z | 2017-07-02T08:59:34Z |
| opensuse-su-2017:1748-1 | Security update for kdepim, messagelib | 2017-07-02T08:59:34Z | 2017-07-02T08:59:34Z |
| opensuse-su-2017:1650-1 | Security update for go | 2017-06-22T12:29:57Z | 2017-06-22T12:29:57Z |
| opensuse-su-2017:1649-1 | Security update for go | 2017-06-22T12:29:57Z | 2017-06-22T12:29:57Z |
| opensuse-su-2017:1593-1 | Security update for chromium | 2017-06-18T17:45:26Z | 2017-06-18T17:45:26Z |
| opensuse-su-2017:1591-1 | Security update for chromium | 2017-06-18T17:45:26Z | 2017-06-18T17:45:26Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-07241 | Adobe FrameMaker越界写入漏洞(CNVD-2025-07241) | 2025-04-14 | 2025-04-16 |
| cnvd-2025-08314 | SAP S/4HANA存在未明漏洞(CNVD-2025-08314) | 2025-03-27 | 2025-04-15 |
| cnvd-2025-07612 | SAP NetWeaver AS SQL注入漏洞(CNVD-2025-07612) | 2025-03-21 | 2025-04-15 |
| cnvd-2025-07611 | SAP BusinessObjects Business Intelligence Platform信息泄露漏洞(CNVD-2025-07611) | 2025-03-21 | 2025-04-15 |
| cnvd-2025-07610 | SAP Just In Time权限提升漏洞 | 2025-03-26 | 2025-04-15 |
| cnvd-2025-07609 | SAP NetWeaver Server ABAP信息泄露漏洞(CNVD-2025-07609) | 2025-03-27 | 2025-04-15 |
| cnvd-2025-07597 | SAP Web Dispatcher和SAP Internet Communication Manager日志信息泄露漏洞 | 2025-03-27 | 2025-04-15 |
| cnvd-2025-07595 | SAP CRM和SAP S/4HANA服务端请求伪造漏洞(CNVD-2025-07595) | 2025-03-27 | 2025-04-15 |
| cnvd-2025-07543 | SAP S4 HANA访问控制错误漏洞(CNVD-2025-07543) | 2025-03-27 | 2025-04-15 |
| cnvd-2025-07542 | SAP Business Objects Business Intelligence Platform信息泄露漏洞(CNVD-2025-07542) | 2025-03-27 | 2025-04-15 |
| cnvd-2025-07541 | SAP Business Objects Business Intelligence Platform跨站脚本漏洞(CNVD-2025-07541) | 2025-03-27 | 2025-04-15 |
| cnvd-2025-07505 | SAP Commerce Cloud信息泄露漏洞(CNVD-2025-07505) | 2025-04-14 | 2025-04-15 |
| cnvd-2025-07504 | SAP ERP BW Business Content代码注入漏洞 | 2025-04-14 | 2025-04-15 |
| cnvd-2025-07251 | Adobe ColdFusion访问控制不漏洞 | 2025-04-14 | 2025-04-15 |
| cnvd-2025-07250 | Adobe ColdFusion身份验证不当漏洞 | 2025-04-14 | 2025-04-15 |
| cnvd-2025-07249 | Adobe ColdFusion不可信数据反序列化漏洞(CNVD-2025-07249) | 2025-04-14 | 2025-04-15 |
| cnvd-2025-07248 | Adobe ColdFusion路径遍历漏洞(CNVD-2025-07248) | 2025-04-14 | 2025-04-15 |
| cnvd-2025-07247 | Adobe ColdFusion OS命令注入漏洞 | 2025-04-14 | 2025-04-15 |
| cnvd-2025-07246 | Adobe Animate堆缓冲区溢出漏洞(CNVD-2025-07246) | 2025-04-14 | 2025-04-15 |
| cnvd-2025-07245 | Adobe Animate内存错误引用漏洞(CNVD-2025-07245) | 2025-04-14 | 2025-04-15 |
| cnvd-2025-07244 | Adobe FrameMaker越界写入漏洞(CNVD-2025-07244) | 2025-04-14 | 2025-04-15 |
| cnvd-2025-07243 | Adobe FrameMaker堆缓冲区溢出漏洞(CNVD-2025-07243) | 2025-04-14 | 2025-04-15 |
| cnvd-2025-07242 | Adobe FrameMaker整数潜流漏洞 | 2025-04-14 | 2025-04-15 |
| cnvd-2025-07703 | 上海上讯信息技术股份有限公司运维管理审计系统存在命令执行漏洞 | 2025-02-28 | 2025-04-14 |
| cnvd-2025-07596 | Google Android缓存区溢出漏洞(CNVD-2025-07596) | 2025-04-07 | 2025-04-14 |
| cnvd-2025-07534 | Google gVisor权限提升漏洞(CNVD-2025-07534) | 2025-03-31 | 2025-04-14 |
| cnvd-2025-07531 | Google Android缓存区溢出漏洞(CNVD-2025-07531) | 2025-04-07 | 2025-04-14 |
| cnvd-2025-07530 | Google Android信息泄露漏洞(CNVD-2025-07530) | 2025-04-07 | 2025-04-14 |
| cnvd-2025-07529 | Google Android缓存区溢出漏洞(CNVD-2025-07529) | 2025-04-07 | 2025-04-14 |
| cnvd-2025-07523 | Google Android缓冲区溢出漏洞(CNVD-2025-07523) | 2025-04-07 | 2025-04-14 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2014-avi-155 | Multiples vulnérabilités dans Apple Safari | 2014-04-02T00:00:00.000000 | 2014-04-02T00:00:00.000000 |
| certfr-2014-avi-154 | Multiples vulnérabilités dans EMC VPLEX GeoSynchrony | 2014-04-01T00:00:00.000000 | 2014-04-01T00:00:00.000000 |
| certfr-2014-avi-153 | Vulnérabilité dans Cisco IOS | 2014-03-27T00:00:00.000000 | 2014-03-27T00:00:00.000000 |
| certfr-2014-avi-152 | Vulnérabilité dans Cisco IOS | 2014-03-27T00:00:00.000000 | 2014-03-27T00:00:00.000000 |
| certfr-2014-avi-151 | Vulnérabilité dans Cisco IOS | 2014-03-27T00:00:00.000000 | 2014-03-27T00:00:00.000000 |
| certfr-2014-avi-150 | Multiples vulnérabilités dans Cisco IOS | 2014-03-27T00:00:00.000000 | 2014-03-27T00:00:00.000000 |
| certfr-2014-avi-149 | Vulnérabilité dans Cisco IOS | 2014-03-27T00:00:00.000000 | 2014-03-27T00:00:00.000000 |
| certfr-2014-avi-148 | Multiples vulnérabilités dans IBM Lotus Protector for Mail Security | 2014-03-25T00:00:00.000000 | 2014-03-25T00:00:00.000000 |
| certfr-2014-avi-147 | Vulnérabilité dans Mozilla Firefox pour Android | 2014-03-25T00:00:00.000000 | 2014-03-25T00:00:00.000000 |
| certfr-2014-avi-146 | Vulnérabilité dans le noyau Linux | 2014-03-24T00:00:00.000000 | 2014-03-24T00:00:00.000000 |
| certfr-2014-avi-145 | Vulnérabilité dans le noyau Linux | 2014-03-24T00:00:00.000000 | 2014-03-24T00:00:00.000000 |
| certfr-2014-avi-144 | Vulnérabilité dans le noyau Linux | 2014-03-24T00:00:00.000000 | 2014-03-24T00:00:00.000000 |
| certfr-2014-avi-143 | Vulnérabilité dans IBM OS/400 | 2014-03-24T00:00:00.000000 | 2014-03-24T00:00:00.000000 |
| certfr-2014-avi-142 | Multiples vulnérabilités dans IBM InfoSphere BigInsights | 2014-03-24T00:00:00.000000 | 2014-03-24T00:00:00.000000 |
| certfr-2014-avi-141 | Multiples vulnérabilités dans IBM Cognos Express | 2014-03-24T00:00:00.000000 | 2014-03-24T00:00:00.000000 |
| certfr-2014-avi-140 | Vulnérabilité dans IBM Rational ClearCase | 2014-03-24T00:00:00.000000 | 2014-03-24T00:00:00.000000 |
| certfr-2014-avi-139 | Vulnérabilité dans OpenSSH | 2014-03-21T00:00:00.000000 | 2014-03-21T00:00:00.000000 |
| certfr-2014-avi-138 | Vulnérabilité dans Bluecoat Content Analysis System | 2014-03-20T00:00:00.000000 | 2014-03-20T00:00:00.000000 |
| certfr-2014-avi-137 | Multiples vulnérabilités dans le système SCADA Siemens SIMATIC | 2014-03-20T00:00:00.000000 | 2014-03-20T00:00:00.000000 |
| certfr-2014-avi-136 | Vulnérabilité dans nginx | 2014-03-20T00:00:00.000000 | 2014-03-20T00:00:00.000000 |
| certfr-2014-avi-135 | Vulnérabilité dans EMC Connectrix Manager | 2014-03-20T00:00:00.000000 | 2014-03-20T00:00:00.000000 |
| certfr-2014-avi-134 | Vulnérabilité dans Cisco AsyncOS | 2014-03-20T00:00:00.000000 | 2014-03-20T00:00:00.000000 |
| certfr-2014-avi-133 | Multiples vulnérabilités dans les produits Mozilla | 2014-03-19T00:00:00.000000 | 2014-03-19T00:00:00.000000 |
| certfr-2014-avi-132 | Multiples vulnérabilités dans PHP | 2014-03-19T00:00:00.000000 | 2014-03-19T00:00:00.000000 |
| certfr-2014-avi-131 | Multiples vulnérabilités dans Apache httpd | 2014-03-19T00:00:00.000000 | 2014-03-19T00:00:00.000000 |
| certfr-2014-avi-130 | Vulnérabilité dans les produits Huawei | 2014-03-18T00:00:00.000000 | 2014-03-18T00:00:00.000000 |
| certfr-2014-avi-129 | Multiples vulnérabilités dans Google Chrome | 2014-03-17T00:00:00.000000 | 2014-03-17T00:00:00.000000 |
| certfr-2014-avi-128 | Multiples vulnérabilités dans Moodle | 2014-03-17T00:00:00.000000 | 2014-03-17T00:00:00.000000 |
| certfr-2014-avi-127 | Multiples vulnérabilités dans Spip | 2014-03-14T00:00:00.000000 | 2014-03-14T00:00:00.000000 |
| certfr-2014-avi-126 | Multiples vulnérabilités dans le système SCADA Siemens SIMATIC | 2014-03-14T00:00:00.000000 | 2014-03-14T00:00:00.000000 |