Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2021-47847 |
8.5 (4.0)
7.8 (3.1)
|
Disk Sorter Server 13.6.12 - 'Disk Sorter Server' Unqu… |
Disksorter |
Disk Sorter Server |
2026-01-16T19:09:41.243Z | 2026-01-16T21:09:04.485Z |
| CVE-2012-10064 |
9.3 (4.0)
|
Omni Secure Files < 0.1.14 Unauthenticated Arbitrary F… |
Omnilogic |
Omni Secure Files |
2026-01-16T20:10:13.429Z | 2026-01-16T21:08:58.048Z |
| CVE-2019-25297 |
5.1 (4.0)
|
Poll, Survey & Quiz Maker Plugin by Opinion Stage < 19… |
Assaf Parag |
Poll, Survey & Quiz Maker Plugin by Opinion Stage |
2026-01-16T20:14:10.132Z | 2026-01-16T21:08:52.376Z |
| CVE-2026-23800 |
10 (3.1)
|
WordPress Modular DS plugin <= 2.5.2 - Privilege Escal… |
|
Modular DS |
2026-01-16T20:40:13.232Z | 2026-01-16T21:08:46.900Z |
| CVE-2026-23728 |
4.8 (4.0)
|
WeGIA has an Open Redirect Vulnerability in control.ph… |
LabRedesCefetRJ |
WeGIA |
2026-01-16T19:46:07.119Z | 2026-01-16T21:04:41.135Z |
| CVE-2026-23729 |
4.8 (4.0)
|
WeGIA has an Open Redirect Vulnerability in control.ph… |
LabRedesCefetRJ |
WeGIA |
2026-01-16T19:47:10.017Z | 2026-01-16T21:02:05.778Z |
| CVE-2021-47816 |
5.3 (4.0)
8.8 (3.1)
|
Thecus N4800Eco Nas Server Control Panel - Command Injection |
Thecus |
Thecus N4800Eco Nas Server Control Panel |
2026-01-16T19:09:26.929Z | 2026-01-16T20:43:27.338Z |
| CVE-2026-23730 |
4.8 (4.0)
|
WeGIA has an Open Redirect Vulnerability in control.ph… |
LabRedesCefetRJ |
WeGIA |
2026-01-16T19:48:23.636Z | 2026-01-16T20:34:21.127Z |
| CVE-2026-23731 |
4.3 (3.1)
|
WeGIA Clickjacking Vulnerability |
LabRedesCefetRJ |
WeGIA |
2026-01-16T19:50:16.344Z | 2026-01-16T20:31:29.007Z |
| CVE-2026-23735 |
8.7 (4.0)
|
Concurrent Execution using Shared Resource with Improp… |
graphql-hive |
graphql-modules |
2026-01-16T20:04:19.672Z | 2026-01-16T20:28:19.571Z |
| CVE-2026-23742 |
8.8 (3.1)
|
Skipper arbitrary code execution through lua filters |
zalando |
skipper |
2026-01-16T20:07:46.746Z | 2026-01-16T20:24:12.702Z |
| CVE-2025-13083 |
3.7 (3.1)
|
Drupal core - Moderately critical - Information disclo… |
Drupal |
Drupal core |
2025-11-18T16:55:37.269Z | 2026-01-16T20:14:00.799Z |
| CVE-2026-23727 |
4.8 (4.0)
|
WeGIA has an Open Redirect Vulnerability in control.ph… |
LabRedesCefetRJ |
WeGIA |
2026-01-16T19:41:46.940Z | 2026-01-16T19:49:16.754Z |
| CVE-2026-23535 |
8.1 (3.1)
|
wlc Path traversal: Unsanitized API slugs in download … |
WeblateOrg |
wlc |
2026-01-16T19:08:24.882Z | 2026-01-16T19:21:22.629Z |
| CVE-2025-62291 |
8.1 (3.1)
|
In the eap-mschapv2 plugin (client-side) in stron… |
strongSwan |
strongSwan |
2026-01-16T00:00:00.000Z | 2026-01-16T19:07:43.455Z |
| CVE-2025-68924 |
7.5 (3.1)
|
In Umbraco UmbracoForms through 8.13.16, an authe… |
Umbraco |
Forms |
2026-01-16T00:00:00.000Z | 2026-01-16T19:00:26.430Z |
| CVE-2024-58338 |
8.6 (4.0)
10 (3.1)
|
Anevia Flamingo XL 3.2.9 Remote Root Jailbreak via Tra… |
Ateme |
Flamingo XL |
2025-12-30T22:41:45.411Z | 2026-01-16T19:00:19.750Z |
| CVE-2024-58337 |
8.7 (4.0)
4.3 (3.1)
|
Akuvox Smart Intercom S539 Improper Access Control via… |
The Akuvox Company |
Akuvox Smart Doorphone |
2025-12-30T22:41:44.989Z | 2026-01-16T19:00:19.517Z |
| CVE-2024-58336 |
8.7 (4.0)
5.3 (3.1)
|
Akuvox Smart Intercom S539 Unauthenticated Video Strea… |
The Akuvox Company |
Akuvox Smart Doorphone |
2025-12-30T22:41:44.569Z | 2026-01-16T19:00:19.275Z |
| CVE-2024-58315 |
8.5 (4.0)
7.8 (3.1)
|
Tosibox Key Service 3.3.0 Local Privilege Escalation v… |
Tosibox Oy |
Tosibox Key Service |
2025-12-30T22:41:44.147Z | 2026-01-16T19:00:19.011Z |
| CVE-2023-54327 |
9.3 (4.0)
9.8 (3.1)
|
Tinycontrol LAN Controller 1.58a Authentication Bypass… |
Tinycontrol |
LAN Controller |
2025-12-30T22:41:43.728Z | 2026-01-16T19:00:18.796Z |
| CVE-2023-54163 |
8.8 (4.0)
7.5 (3.1)
|
NLB mKlik Macedonia 3.3.12 SQL Injection via Internati… |
NLB Banka AD Skopje |
NLB mKlik Makedonija |
2025-12-30T22:41:43.245Z | 2026-01-16T19:00:18.541Z |
| CVE-2023-53983 |
9.3 (4.0)
9.8 (3.1)
|
Anevia Flamingo XL/XS 3.6.20 Default Credentials Authe… |
Ateme |
Anevia Flamingo XL/XS |
2025-12-30T22:41:42.839Z | 2026-01-16T19:00:18.214Z |
| CVE-2023-53982 |
9.3 (4.0)
7.5 (3.1)
|
PMB 7.4.6 SQL Injection Vulnerability via Unsanitized … |
Sigb |
PMB |
2025-12-23T19:34:11.262Z | 2026-01-16T19:00:17.433Z |
| CVE-2023-53964 |
8.8 (4.0)
9.8 (3.1)
|
SOUND4 IMPACT/FIRST/PULSE/Eco v2.x Unauthenticated Fac… |
SOUND4 Ltd. |
Impact/Pulse/First |
2025-12-22T21:37:17.482Z | 2026-01-16T19:00:17.216Z |
| CVE-2023-53962 |
8.8 (4.0)
7.5 (3.1)
|
SOUND4 IMPACT/FIRST/PULSE/Eco v2.x Unauthenticated Dir… |
SOUND4 Ltd. |
Impact/Pulse/First |
2025-12-22T21:37:16.671Z | 2026-01-16T19:00:17.015Z |
| CVE-2023-53961 |
5.1 (4.0)
4.3 (3.1)
|
SOUND4 IMPACT/FIRST/PULSE/Eco v2.x Cross-Site Request … |
SOUND4 Ltd. |
Impact/Pulse/First |
2025-12-22T21:37:16.249Z | 2026-01-16T19:00:16.776Z |
| CVE-2023-53960 |
9.3 (4.0)
9.8 (3.1)
|
SOUND4 IMPACT/FIRST/PULSE/Eco v2.x SQL Injection via A… |
SOUND4 Ltd. |
Impact/Pulse/First |
2025-12-22T21:37:15.771Z | 2026-01-16T19:00:16.368Z |
| CVE-2023-53936 |
5.1 (4.0)
4.8 (3.1)
|
Cameleon CMS 2.7.4 Authenticated Persistent Cross-Site… |
tuzitio |
Cameleon CMS |
2025-12-18T19:53:33.354Z | 2026-01-16T19:00:15.747Z |
| CVE-2022-50916 |
8.7 (4.0)
7.2 (3.1)
|
e107 CMS v3.2.1 - Upload restriction bypass (Authentic… |
e107 |
e107 CMS |
2026-01-13T22:51:52.935Z | 2026-01-16T19:00:15.312Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-58925 |
8.1 (3.1)
|
WordPress Neptunus theme <= 1.0.11 - Local File Inclus… |
axiomthemes |
Neptunus |
2025-12-18T07:21:55.134Z | 2026-01-20T14:28:10.541Z |
| CVE-2025-58923 |
8.1 (3.1)
|
WordPress Critique theme <= 1.17 - Local File Inclusio… |
axiomthemes |
Critique |
2025-12-18T07:21:54.954Z | 2026-01-20T14:28:10.476Z |
| CVE-2025-58921 |
7.1 (3.1)
|
WordPress WP Tactical Popup plugin <= 1.1 - Reflected … |
Arevico |
WP Tactical Popup |
2025-10-22T14:32:34.600Z | 2026-01-20T14:28:10.520Z |
| CVE-2025-58918 |
4.3 (3.1)
|
WordPress Entrada theme <= 5.7.7 - Cross Site Request … |
Waituk |
Entrada |
2025-10-27T02:07:49.744Z | 2026-01-20T14:28:10.516Z |
| CVE-2025-58916 |
7.1 (3.1)
|
WordPress Author: Munzir plugin <= 0.9 - Reflected Cro… |
Munzir |
Author: Munzir |
2025-10-22T14:32:34.398Z | 2026-01-20T14:28:10.487Z |
| CVE-2025-58901 |
8.1 (3.1)
|
WordPress Takeout theme <= 1.3.0 - Local File Inclusio… |
AncoraThemes |
Takeout |
2025-12-18T07:21:54.755Z | 2026-01-20T14:28:10.564Z |
| CVE-2025-58900 |
8.1 (3.1)
|
WordPress UniTravel theme <= 1.4.2 - Local File Inclus… |
AncoraThemes |
UniTravel |
2025-12-18T07:21:54.574Z | 2026-01-20T14:28:10.443Z |
| CVE-2025-58899 |
8.1 (3.1)
|
WordPress Frame theme <= 2.4.0 - Local File Inclusion … |
AncoraThemes |
Frame |
2025-12-18T07:21:54.396Z | 2026-01-20T14:28:10.511Z |
| CVE-2025-58898 |
8.2 (3.1)
|
WordPress HealthHub theme <= 1.3.0 - Local File Inclus… |
AncoraThemes |
HealthHub |
2025-12-18T07:21:54.218Z | 2026-01-27T15:05:37.006Z |
| CVE-2025-58896 |
8.2 (3.1)
|
WordPress Otaku theme <= 1.8.0 - Local File Inclusion … |
AncoraThemes |
Otaku |
2025-12-18T07:21:54.037Z | 2026-01-29T15:27:06.766Z |
| CVE-2025-58895 |
8.2 (3.1)
|
WordPress Integro theme <= 1.8.0 - Local File Inclusio… |
AncoraThemes |
Integro |
2025-12-18T07:21:53.856Z | 2026-01-29T15:27:23.096Z |
| CVE-2025-58894 |
8.2 (3.1)
|
WordPress Good Mood theme <= 1.16 - Local File Inclusi… |
axiomthemes |
Good Mood |
2025-12-18T07:21:53.690Z | 2026-01-29T15:27:39.186Z |
| CVE-2025-58893 |
8.2 (3.1)
|
WordPress Alright theme <= 1.6.1 - Local File Inclusio… |
axiomthemes |
Alright |
2025-12-18T07:21:53.521Z | 2026-01-29T15:27:57.788Z |
| CVE-2025-58892 |
8.2 (3.1)
|
WordPress Tourimo theme <= 1.2.3 - Local File Inclusio… |
AncoraThemes |
Tourimo |
2025-12-18T07:21:53.352Z | 2026-01-29T15:28:18.262Z |
| CVE-2025-58891 |
8.2 (3.1)
|
WordPress Sanger theme <= 1.24.0 - Local File Inclusio… |
AncoraThemes |
Sanger |
2025-12-18T07:21:53.171Z | 2026-01-29T15:28:42.709Z |
| CVE-2025-58890 |
8.2 (3.1)
|
WordPress Playful theme <= 1.19.0 - Local File Inclusi… |
AncoraThemes |
Playful |
2025-12-18T07:21:52.992Z | 2026-01-29T15:29:09.850Z |
| CVE-2025-58889 |
8.2 (3.1)
|
WordPress Towny theme <= 1.16 - Local File Inclusion v… |
axiomthemes |
Towny |
2025-12-18T07:21:52.823Z | 2026-01-29T15:29:51.256Z |
| CVE-2025-58888 |
8.2 (3.1)
|
WordPress The Flash theme <= 1.15 - Local File Inclusi… |
AncoraThemes |
The Flash |
2025-12-18T07:21:52.632Z | 2026-01-29T15:30:11.560Z |
| CVE-2025-58885 |
8.2 (3.1)
|
WordPress Pathfinder theme <= 1.16 - Local File Inclus… |
AncoraThemes |
Pathfinder |
2025-12-18T07:21:52.434Z | 2026-01-29T15:30:26.798Z |
| CVE-2025-58879 |
8.2 (3.1)
|
WordPress Festy theme <= 1.13.0 - Local File Inclusion… |
AncoraThemes |
Festy |
2025-12-18T07:21:52.239Z | 2026-01-29T15:30:52.812Z |
| CVE-2025-58877 |
7.5 (3.1)
|
WordPress Javo Core plugin <= 3.0.0.529 - Arbitrary Co… |
javothemes |
Javo Core |
2025-12-18T07:21:52.039Z | 2026-01-29T15:31:15.865Z |
| CVE-2025-58803 |
8.2 (3.1)
|
WordPress Algenix theme <= 1.0 - Local File Inclusion … |
axiomthemes |
Algenix |
2025-12-18T07:21:51.851Z | 2026-01-29T15:32:06.794Z |
| CVE-2025-58711 |
5.3 (3.1)
|
WordPress Blog Designer PRO plugin <= 3.4.8 - Broken A… |
solwin |
Blog Designer PRO |
2025-10-29T08:38:01.894Z | 2026-02-18T15:43:35.640Z |
| CVE-2025-58710 |
8.6 (3.1)
|
WordPress Hotel Listing plugin <= 1.4.0 - Privilege Es… |
e-plugins |
Hotel Listing |
2025-12-18T07:21:51.662Z | 2026-01-29T15:32:42.696Z |
| CVE-2025-58709 |
8.1 (3.1)
|
WordPress Legacy theme <= 1.9 - Local File Inclusion v… |
axiomthemes |
Legacy |
2025-12-18T07:21:51.475Z | 2026-01-20T14:28:10.386Z |
| CVE-2025-58708 |
8.1 (3.1)
|
WordPress 777 theme <= 1.3 - Local File Inclusion vuln… |
axiomthemes |
777 |
2025-12-18T07:21:51.283Z | 2026-01-20T14:28:10.343Z |
| CVE-2025-58706 |
8.1 (3.1)
|
WordPress Woo Hoo theme <= 1.25 - Local File Inclusion… |
axiomthemes |
Woo Hoo |
2025-12-18T07:21:51.092Z | 2026-01-20T14:28:10.245Z |
| CVE-2025-58638 |
7.1 (3.1)
|
WordPress Institutions Directory Plugin <= 1.3.3 - Cro… |
e-plugins |
Institutions Directory |
2025-11-06T15:54:28.161Z | 2026-01-20T14:28:10.256Z |
| CVE-2025-58636 |
9.8 (3.1)
|
WordPress WP Gravity Forms Keap/Infusionsoft Plugin <=… |
CRM Perks |
WP Gravity Forms Keap/Infusionsoft |
2025-11-06T15:54:26.970Z | 2026-01-20T14:28:10.255Z |
| CVE-2025-58629 |
7.5 (3.1)
|
WordPress Miraculous theme < 2.0.9 - Arbitrary Content… |
kamleshyadav |
Miraculous |
2025-11-06T15:54:25.101Z | 2026-01-20T14:28:10.228Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-58925 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:59.737 | 2026-01-20T15:17:10.667 |
| fkie_cve-2025-58923 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:59.607 | 2026-01-20T15:17:10.520 |
| fkie_cve-2025-58921 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:52.153 | 2026-01-20T15:17:10.380 |
| fkie_cve-2025-58918 | Cross-Site Request Forgery (CSRF) vulnerability in Waituk Entrada theme allows Cross Site Request F… | 2025-10-27T03:15:50.900 | 2026-01-20T15:17:10.280 |
| fkie_cve-2025-58916 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:15:52.003 | 2026-01-20T15:17:10.143 |
| fkie_cve-2025-58901 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:59.477 | 2026-01-20T15:17:09.993 |
| fkie_cve-2025-58900 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:59.343 | 2026-01-20T15:17:09.857 |
| fkie_cve-2025-58899 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:59.210 | 2026-01-20T15:17:09.717 |
| fkie_cve-2025-58898 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:59.083 | 2026-01-20T15:17:09.583 |
| fkie_cve-2025-58896 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:58.950 | 2026-01-20T15:17:09.447 |
| fkie_cve-2025-58895 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:58.823 | 2026-01-20T15:17:09.310 |
| fkie_cve-2025-58894 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:58.687 | 2026-01-20T15:17:09.170 |
| fkie_cve-2025-58893 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:58.553 | 2026-01-20T15:17:09.023 |
| fkie_cve-2025-58892 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:58.423 | 2026-01-20T15:17:08.880 |
| fkie_cve-2025-58891 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:58.290 | 2026-01-20T15:17:08.743 |
| fkie_cve-2025-58890 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:58.167 | 2026-01-20T15:17:08.597 |
| fkie_cve-2025-58889 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:58.033 | 2026-01-20T15:17:08.460 |
| fkie_cve-2025-58888 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:57.910 | 2026-01-20T15:17:08.310 |
| fkie_cve-2025-58885 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:57.777 | 2026-01-20T15:17:08.160 |
| fkie_cve-2025-58879 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:57.650 | 2026-01-20T15:17:07.990 |
| fkie_cve-2025-58877 | Missing Authorization vulnerability in javothemes Javo Core javo-core allows Exploiting Incorrectly… | 2025-12-18T08:15:57.510 | 2026-01-20T15:17:07.683 |
| fkie_cve-2025-58803 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:57.380 | 2026-01-20T15:17:07.540 |
| fkie_cve-2025-58711 | Missing Authorization vulnerability in solwin Blog Designer PRO blog-designer-pro allows Accessing … | 2025-10-29T09:15:37.343 | 2026-01-20T15:17:07.403 |
| fkie_cve-2025-58710 | Incorrect Privilege Assignment vulnerability in e-plugins Hotel Listing hotel-listing allows Privil… | 2025-12-18T08:15:57.247 | 2026-01-20T15:17:07.273 |
| fkie_cve-2025-58709 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:57.117 | 2026-01-20T15:17:07.133 |
| fkie_cve-2025-58708 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:56.980 | 2026-01-20T15:17:06.993 |
| fkie_cve-2025-58706 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-18T08:15:56.840 | 2026-01-20T15:17:06.847 |
| fkie_cve-2025-58638 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-11-06T16:16:00.003 | 2026-01-20T15:17:06.710 |
| fkie_cve-2025-58636 | Deserialization of Untrusted Data vulnerability in CRM Perks WP Gravity Forms Keap/Infusionsoft gf-… | 2025-11-06T16:15:59.860 | 2026-01-20T15:17:06.583 |
| fkie_cve-2025-58629 | Missing Authorization vulnerability in kamleshyadav Miraculous miraculous allows Exploiting Incorre… | 2025-11-06T16:15:59.717 | 2026-01-20T15:17:06.453 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-m92x-4jg5-v4px |
8.8 (3.1)
|
A malicious actor in Wi-Fi range of the affected product could leverage a vulnerability in the airM… | 2026-01-08T18:30:50Z | 2026-01-08T18:30:50Z |
| ghsa-fqvg-3mcf-p6g9 |
5.3 (3.1)
|
Missing Authorization vulnerability in IdeaBox Creations Dashboard Welcome for Beaver Builder allow… | 2026-01-08T18:30:50Z | 2026-01-08T18:30:50Z |
| ghsa-9vw7-2gjw-jc6x |
5.4 (3.1)
|
A malicious actor in Wi-Fi range of the affected product could leverage a vulnerability in the airM… | 2026-01-08T18:30:50Z | 2026-01-08T18:30:50Z |
| ghsa-9rqg-238c-x4mh |
4.3 (3.1)
|
Missing Authorization vulnerability in Nawawi Jamili Docket Cache allows Exploiting Incorrectly Con… | 2026-01-08T18:30:50Z | 2026-01-08T18:30:50Z |
| ghsa-8mm8-wv67-v583 |
4.3 (3.1)
|
Missing Authorization vulnerability in baqend Speed Kit allows Exploiting Incorrectly Configured Ac… | 2026-01-08T18:30:50Z | 2026-01-08T18:30:50Z |
| ghsa-859g-62gq-28q4 |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-01-08T18:30:50Z | 2026-01-08T18:30:50Z |
| ghsa-7cgr-2c4h-cvgf |
5.5 (3.1)
4.8 (4.0)
|
OPEXUS eCASE Audit allows an authenticated attacker to save JavaScript as a comment within the Docu… | 2026-01-08T18:30:50Z | 2026-01-08T18:30:50Z |
| ghsa-65cr-c32f-9764 |
5.3 (3.1)
|
Missing Authorization vulnerability in Hakob Re Gallery & Responsive Photo Gallery Plugin allows Ex… | 2026-01-08T18:30:50Z | 2026-01-08T18:30:50Z |
| ghsa-466m-2qm3-2495 |
5.5 (3.1)
4.8 (4.0)
|
Ideagen DevonWay contains a stored cross site scripting vulnerability. A remote, authenticated atta… | 2026-01-08T18:30:50Z | 2026-01-08T18:30:50Z |
| ghsa-x2cc-cqcm-pm2j |
6.5 (3.1)
|
An issue in GL Inet GL.Inet AX1800 Version 4.6.4 & 4.6.8 are vulnerable. GL.Inet AX1800 Version 4.6… | 2026-01-08T18:30:49Z | 2026-01-08T18:30:49Z |
| ghsa-wxm8-fmqv-9x7q |
8.1 (3.1)
|
A command injection vulnerability exists in the GL-iNet GL-AXT1800 router firmware v4.6.8. The vuln… | 2026-01-08T18:30:49Z | 2026-01-08T18:30:49Z |
| ghsa-jjmx-7vpw-fcc5 |
5.1 (3.1)
|
The LuCI web interface on Gl Inet GL.Inet AX1800 Version 4.6.4 & 4.6.8 are vulnerable. Fix availabl… | 2026-01-08T18:30:49Z | 2026-01-08T18:30:49Z |
| ghsa-hjvr-2r84-cx23 |
7.0 (4.0)
|
A Improper Neutralization of Argument Delimiters vulnerability in Foomuuri can lead to integrity lo… | 2026-01-08T18:30:49Z | 2026-01-08T18:30:49Z |
| ghsa-9cr2-xp3m-5wqw |
7.8 (3.1)
|
This vulnerability allows a Backup or Tape Operator to perform remote code execution (RCE) as root … | 2026-01-08T18:30:49Z | 2026-01-08T18:30:49Z |
| ghsa-87pc-4c9h-ggc4 |
9.0 (3.1)
|
This vulnerability allows a Backup Operator to perform remote code execution (RCE) as the postgres … | 2026-01-08T18:30:49Z | 2026-01-08T18:30:49Z |
| ghsa-48mv-p55r-f874 |
9.0 (3.1)
|
This vulnerability allows a Backup Administrator to perform remote code execution (RCE) as the post… | 2026-01-08T18:30:49Z | 2026-01-08T18:30:49Z |
| ghsa-3xgw-97m8-xp2p |
8.7 (3.1)
|
Cross-Site Scripting in phpgurukul Hostel Management System v2.1 user-provided complaint fields (Ex… | 2026-01-08T18:30:49Z | 2026-01-08T18:30:49Z |
| ghsa-388c-fp3f-fvcv |
9.0 (3.1)
|
This vulnerability allows a Backup or Tape Operator to write files as root. | 2026-01-08T18:30:49Z | 2026-01-08T18:30:49Z |
| ghsa-gcc9-wqf3-69qj |
7.0 (4.0)
|
OpenLDAP Lightning Memory-Mapped Database (LMDB) mdb_load contains a heap buffer underflow vulnerab… | 2026-01-07T21:31:56Z | 2026-01-08T18:30:43Z |
| ghsa-vmr4-xxx4-79m3 |
9.8 (3.1)
|
Missing Authentication for Critical Function vulnerability in Centreon Infra Monitoring centreon-aw… | 2026-01-05T15:32:15Z | 2026-01-08T18:30:33Z |
| ghsa-v9p2-66r4-9qhr |
9.3 (4.0)
|
Multiple D-Link DSL gateway devices contain a command injection vulnerability in the dnscfg.cgi end… | 2026-01-06T00:30:23Z | 2026-01-08T18:30:33Z |
| ghsa-p4qh-f4fg-63x2 |
6.8 (3.1)
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-01-05T15:32:14Z | 2026-01-08T18:30:33Z |
| ghsa-m5h4-58hj-mjp9 |
5.3 (3.1)
|
Missing Authorization vulnerability in Centreon Infra Monitoring (Administration parameters API end… | 2026-01-05T12:30:30Z | 2026-01-08T18:30:33Z |
| ghsa-cq25-r5x7-j455 |
9.8 (3.1)
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2026-01-05T15:32:15Z | 2026-01-08T18:30:33Z |
| ghsa-85gx-xr6w-3xw9 |
6.8 (3.1)
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-01-05T12:30:30Z | 2026-01-08T18:30:33Z |
| ghsa-6cq2-43jx-jjqp |
6.8 (3.1)
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-01-05T15:32:14Z | 2026-01-08T18:30:33Z |
| ghsa-4vv3-prpf-hx46 |
7.2 (3.1)
|
In the backup parameters, a user with high privilege is able to concatenate custom instructions to … | 2026-01-05T12:30:28Z | 2026-01-08T18:30:33Z |
| ghsa-xfjg-jx94-93h4 |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: x86/cpu/hygon: Add missing res… | 2025-09-05T18:31:26Z | 2026-01-08T18:30:27Z |
| ghsa-mrpr-4fwm-hj99 |
7.3 (3.1)
5.5 (4.0)
|
A security vulnerability has been detected in UTT 进取 750W up to 3.2.2-191225. Affected by this vuln… | 2025-11-20T15:30:23Z | 2026-01-08T18:30:27Z |
| ghsa-jvqc-385v-69q8 |
7.1 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: tracing: Limit access to parse… | 2025-09-05T18:31:26Z | 2026-01-08T18:30:27Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-27170 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.602942Z |
| gsd-2024-27125 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.601659Z |
| gsd-2024-27129 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.601270Z |
| gsd-2024-27136 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.600824Z |
| gsd-2024-27134 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.599085Z |
| gsd-2024-27187 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.598619Z |
| gsd-2024-27163 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.597147Z |
| gsd-2024-27172 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.595179Z |
| gsd-2024-27173 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.594675Z |
| gsd-2024-27151 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.592642Z |
| gsd-2024-27176 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.591399Z |
| gsd-2024-27141 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.590907Z |
| gsd-2024-27153 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.589630Z |
| gsd-2024-27126 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.588764Z |
| gsd-2024-27142 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.585650Z |
| gsd-2024-27150 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.585326Z |
| gsd-2024-27167 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.584070Z |
| gsd-2024-27180 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.583479Z |
| gsd-2024-27124 | An OS command injection vulnerability has been reported to affect several QNAP operating … | 2024-02-21T06:02:38.582804Z |
| gsd-2024-27145 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.582532Z |
| gsd-2024-27154 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.581818Z |
| gsd-2024-27135 | Improper input validation in the Pulsar Function Worker allows a malicious authenticated … | 2024-02-21T06:02:38.581497Z |
| gsd-2024-27122 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.580893Z |
| gsd-2024-27156 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.580626Z |
| gsd-2024-27128 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.579755Z |
| gsd-2024-27132 | Insufficient sanitization in MLflow leads to XSS when running an untrusted recipe. This … | 2024-02-21T06:02:38.579431Z |
| gsd-2024-27162 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.578505Z |
| gsd-2024-27185 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.577645Z |
| gsd-2024-27138 | ** UNSUPPPORTED WHEN ASSIGNED ** ** UNSUPPORTED WHEN ASSIGNED ** Incorrect Authorization … | 2024-02-21T06:02:38.577097Z |
| gsd-2024-27166 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-21T06:02:38.576772Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-185686 | Malicious code in avior-gulp-sagitta-ganymede (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185685 | Malicious code in avior-ganymede-backend-hexo (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185684 | Malicious code in avior-biotechnology-supernova-bootes (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185683 | Malicious code in avior-backend-technocracy-indus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185682 | Malicious code in avior-atlas-draco-websockets (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185681 | Malicious code in authorize-signal-report-omicron-decode (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185680 | Malicious code in authorize-sigma-stub-sun-mock (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185679 | Malicious code in authorize-route-signal-grid-cache (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185678 | Malicious code in authorize-omega-earth-abstract-assert (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185677 | Malicious code in authorize-node-slow-stub-daemon (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185676 | Malicious code in authorize-interface-psi-orchestrate-visualize (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185675 | Malicious code in authorize-interface-good-xi-sanitize (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185674 | Malicious code in authorize-grid-table-cat-fast (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185673 | Malicious code in authorize-float-signal-string-table (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185672 | Malicious code in authorize-code-bash-encrypt-abstract (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185671 | Malicious code in authenticate-scale-analyze-book-scale (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185670 | Malicious code in authenticate-function-scale-cloud-socket (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185669 | Malicious code in authenticate-array-cluster-mock-import (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185668 | Malicious code in auth0-stratigraphy-ursa-cordelia (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185667 | Malicious code in auth0-sociobiology-apollo-umbra (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185666 | Malicious code in auth0-scripts-slides-build (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185665 | Malicious code in auth0-iota-gridsome-meteor (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185664 | Malicious code in auth0-corvus-webdriver-mocha-chromedriver (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185663 | Malicious code in auth0-astrometry-build-decoherence (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185662 | Malicious code in auth0-andromeda-heka-cross-env (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185661 | Malicious code in auth-pm2-xo-google (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185660 | Malicious code in australis-wolf-archaeogenetics-virgo (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185659 | Malicious code in australis-prosthetics-cygnus-xerxes (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185658 | Malicious code in australis-geomorphology-adonis-babel (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-185657 | Malicious code in aurora-transform-protoplanetarydisk-iota (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-0030 | IBM Maximo Asset Management: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-01-05T23:00:00.000+00:00 | 2023-01-05T23:00:00.000+00:00 |
| wid-sec-w-2023-0023 | WordPress: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-01-04T23:00:00.000+00:00 | 2023-01-05T23:00:00.000+00:00 |
| wid-sec-w-2022-0779 | Red Hat OpenStack: Mehrere Schwachstellen | 2022-07-20T22:00:00.000+00:00 | 2023-01-05T23:00:00.000+00:00 |
| wid-sec-w-2023-0029 | vim: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Benutzerrechten | 2017-02-12T23:00:00.000+00:00 | 2023-01-04T23:00:00.000+00:00 |
| wid-sec-w-2023-0028 | Foxit Phantom PDF Suite: Mehrere Schwachstellen | 2023-01-04T23:00:00.000+00:00 | 2023-01-04T23:00:00.000+00:00 |
| wid-sec-w-2023-0022 | Red Hat Enterprise Linux (webkit2gtk3): Schwachstelle ermöglicht Codeausführung | 2023-01-03T23:00:00.000+00:00 | 2023-01-04T23:00:00.000+00:00 |
| wid-sec-w-2023-0020 | GNU libc: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2019-01-21T23:00:00.000+00:00 | 2023-01-03T23:00:00.000+00:00 |
| wid-sec-w-2023-0019 | Kubernetes: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2021-07-14T22:00:00.000+00:00 | 2023-01-03T23:00:00.000+00:00 |
| wid-sec-w-2023-0018 | Android Patchday Januar 2023 | 2023-01-03T23:00:00.000+00:00 | 2023-01-03T23:00:00.000+00:00 |
| wid-sec-w-2023-0016 | IBM Tivoli Monitoring: Mehrere Schwachstellen | 2023-01-03T23:00:00.000+00:00 | 2023-01-03T23:00:00.000+00:00 |
| wid-sec-w-2023-0014 | Fortinet FortiWeb: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-01-03T23:00:00.000+00:00 | 2023-01-03T23:00:00.000+00:00 |
| wid-sec-w-2023-0013 | Fortinet FortiManager: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-01-03T23:00:00.000+00:00 | 2023-01-03T23:00:00.000+00:00 |
| wid-sec-w-2023-0010 | ffmpeg: Schwachstelle ermöglicht Offenlegung von Informationen | 2021-08-05T22:00:00.000+00:00 | 2023-01-02T23:00:00.000+00:00 |
| wid-sec-w-2022-2414 | MatrixSSL: Schwachstelle ermöglicht Codeausführung | 2022-12-28T23:00:00.000+00:00 | 2023-01-02T23:00:00.000+00:00 |
| wid-sec-w-2022-0206 | ffmpeg: Schwachstellen ermöglichen Codeausführung | 2021-01-03T23:00:00.000+00:00 | 2023-01-02T23:00:00.000+00:00 |
| wid-sec-w-2023-0008 | IBM FileNet Content Manager: Mehrere Schwachstellen ermöglichen Denial of Service | 2023-01-01T23:00:00.000+00:00 | 2023-01-01T23:00:00.000+00:00 |
| wid-sec-w-2023-0007 | Linux Kernel: Schwachstelle ermöglicht Denial of Service und Privilegien-Erweiterung | 2023-01-01T23:00:00.000+00:00 | 2023-01-01T23:00:00.000+00:00 |
| wid-sec-w-2023-0006 | Cacti RRDtool: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2020-02-23T23:00:00.000+00:00 | 2023-01-01T23:00:00.000+00:00 |
| wid-sec-w-2023-0005 | Cacti RRDtool: Schwachstelle ermöglicht Cross-Site Scripting | 2020-11-23T23:00:00.000+00:00 | 2023-01-01T23:00:00.000+00:00 |
| wid-sec-w-2023-0004 | Cacti: Mehrere Schwachstellen ermöglichen Cross-Site Scripting | 2021-08-31T22:00:00.000+00:00 | 2023-01-01T23:00:00.000+00:00 |
| wid-sec-w-2023-0003 | D-LINK Router: Schwachstelle ermöglicht Codeausführung | 2023-01-01T23:00:00.000+00:00 | 2023-01-01T23:00:00.000+00:00 |
| wid-sec-w-2022-1034 | Mozilla Firefox und Thunderbird: Mehrere Schwachstellen | 2022-03-08T23:00:00.000+00:00 | 2023-01-01T23:00:00.000+00:00 |
| wid-sec-w-2022-0812 | IBM Java: Mehrere Schwachstellen ermöglichen Denial of Service | 2022-02-22T23:00:00.000+00:00 | 2023-01-01T23:00:00.000+00:00 |
| wid-sec-w-2022-2412 | ESRI ArcGIS: Schwachstelle ermöglicht Offenlegung von Informationen | 2022-12-28T23:00:00.000+00:00 | 2022-12-28T23:00:00.000+00:00 |
| wid-sec-w-2022-2380 | D-LINK DIR-825: Mehrere Schwachstellen ermöglichen Command Injection | 2022-12-20T23:00:00.000+00:00 | 2022-12-28T23:00:00.000+00:00 |
| wid-sec-w-2022-1962 | libTIFF: Schwachstelle ermöglicht Denial of Service | 2022-03-28T22:00:00.000+00:00 | 2022-12-28T23:00:00.000+00:00 |
| wid-sec-w-2022-1744 | GnuPGP: Schwachstelle ermöglicht Codeausführung | 2022-10-16T22:00:00.000+00:00 | 2022-12-28T23:00:00.000+00:00 |
| wid-sec-w-2022-0161 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2022-03-31T22:00:00.000+00:00 | 2022-12-28T23:00:00.000+00:00 |
| wid-sec-w-2022-2303 | Microsoft Windows und Microsoft Windows Server: Mehrere Schwachstellen | 2022-12-13T23:00:00.000+00:00 | 2022-12-27T23:00:00.000+00:00 |
| wid-sec-w-2022-1950 | Splunk Enterprise: Mehrere Schwachstellen | 2022-11-02T23:00:00.000+00:00 | 2022-12-27T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:1726 | Red Hat Security Advisory: postgresql security update | 2025-02-20T15:48:09+00:00 | 2025-11-21T19:28:04+00:00 |
| rhsa-2025:1725 | Red Hat Security Advisory: libpq security update | 2025-02-20T14:55:29+00:00 | 2025-11-21T19:28:04+00:00 |
| rhsa-2025:1724 | Red Hat Security Advisory: postgresql:13 security update | 2025-02-20T15:09:24+00:00 | 2025-11-21T19:28:02+00:00 |
| rhsa-2025:1723 | Red Hat Security Advisory: postgresql:13 security update | 2025-02-20T15:09:54+00:00 | 2025-11-21T19:28:01+00:00 |
| rhsa-2025:1722 | Red Hat Security Advisory: postgresql:15 security update | 2025-02-20T15:02:59+00:00 | 2025-11-21T19:28:01+00:00 |
| rhsa-2025:1721 | Red Hat Security Advisory: postgresql:15 security update | 2025-02-20T15:06:54+00:00 | 2025-11-21T19:28:01+00:00 |
| rhsa-2025:1720 | Red Hat Security Advisory: libpq security update | 2025-02-20T14:49:14+00:00 | 2025-11-21T19:28:00+00:00 |
| rhsa-2025:1718 | Red Hat Security Advisory: bind security update | 2025-02-20T09:42:24+00:00 | 2025-11-21T19:27:58+00:00 |
| rhsa-2025:17163 | Red Hat Security Advisory: perl-JSON-XS security update | 2025-10-01T17:44:11+00:00 | 2025-11-21T19:27:56+00:00 |
| rhsa-2025:17162 | Red Hat Security Advisory: perl-JSON-XS security update | 2025-10-01T16:59:04+00:00 | 2025-11-21T19:27:56+00:00 |
| rhsa-2025:1713 | Red Hat Security Advisory: OpenShift Container Platform 4.15.46 packages and security update | 2025-02-27T04:45:31+00:00 | 2025-11-21T19:27:56+00:00 |
| rhsa-2025:17129 | Red Hat Security Advisory: idm:DL1 security update | 2025-10-01T06:35:38+00:00 | 2025-11-21T19:27:51+00:00 |
| rhsa-2025:17119 | Red Hat Security Advisory: perl-JSON-XS security update | 2025-09-30T21:36:52+00:00 | 2025-11-21T19:27:49+00:00 |
| rhsa-2025:17088 | Red Hat Security Advisory: ipa security update | 2025-09-30T17:00:56+00:00 | 2025-11-21T19:27:46+00:00 |
| rhsa-2025:17087 | Red Hat Security Advisory: ipa security update | 2025-09-30T16:43:11+00:00 | 2025-11-21T19:27:46+00:00 |
| rhsa-2025:17086 | Red Hat Security Advisory: ipa security update | 2025-09-30T16:28:08+00:00 | 2025-11-21T19:27:45+00:00 |
| rhsa-2025:17085 | Red Hat Security Advisory: ipa security update | 2025-09-30T16:53:31+00:00 | 2025-11-21T19:27:44+00:00 |
| rhsa-2025:17084 | Red Hat Security Advisory: ipa security update | 2025-09-30T17:33:12+00:00 | 2025-11-21T19:27:43+00:00 |
| rhsa-2025:1707 | Red Hat Security Advisory: OpenShift Container Platform 4.16.36 bug fix and security update | 2025-02-27T00:46:46+00:00 | 2025-11-21T19:27:43+00:00 |
| rhsa-2025:1691 | Red Hat Security Advisory: bind security update | 2025-02-19T18:37:42+00:00 | 2025-11-21T19:27:35+00:00 |
| rhsa-2025:1687 | Red Hat Security Advisory: bind security update | 2025-02-19T17:59:12+00:00 | 2025-11-21T19:27:33+00:00 |
| rhsa-2025:1685 | Red Hat Security Advisory: bind security update | 2025-02-19T17:31:57+00:00 | 2025-11-21T19:27:32+00:00 |
| rhsa-2025:1684 | Red Hat Security Advisory: bind security update | 2025-02-19T16:03:26+00:00 | 2025-11-21T19:27:31+00:00 |
| rhsa-2025:1680 | Red Hat Security Advisory: kpatch-patch-4_18_0-477_43_1, kpatch-patch-4_18_0-477_67_1, and kpatch-patch-4_18_0-477_81_1 security update | 2025-02-19T14:31:51+00:00 | 2025-11-21T19:27:30+00:00 |
| rhsa-2025:1679 | Red Hat Security Advisory: bind9.16 security update | 2025-02-19T14:24:51+00:00 | 2025-11-21T19:27:30+00:00 |
| rhsa-2025:1678 | Red Hat Security Advisory: bind9.16 security update | 2025-02-19T14:26:21+00:00 | 2025-11-21T19:27:29+00:00 |
| rhsa-2025:1676 | Red Hat Security Advisory: bind9.16 security update | 2025-02-19T13:31:07+00:00 | 2025-11-21T19:27:27+00:00 |
| rhsa-2025:1674 | Red Hat Security Advisory: bind security update | 2025-02-19T13:31:36+00:00 | 2025-11-21T19:27:25+00:00 |
| rhsa-2025:1670 | Red Hat Security Advisory: bind9.18 security update | 2025-02-19T08:42:20+00:00 | 2025-11-21T19:27:22+00:00 |
| rhsa-2025:1663 | Red Hat Security Advisory: kpatch-patch-4_18_0-305_120_1, kpatch-patch-4_18_0-305_138_1, and kpatch-patch-4_18_0-305_145_1 security update | 2025-02-19T02:23:30+00:00 | 2025-11-21T19:27:20+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2022-45887 | An issue was discovered in the Linux kernel through 6.0.9. drivers/media/usb/ttusb-dec/ttusb_dec.c has a memory leak because of the lack of a dvb_frontend_detach call. | 2022-11-02T00:00:00.000Z | 2022-11-30T00:00:00.000Z |
| msrc_cve-2022-45886 | An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvb_net.c has a .disconnect versus dvb_device_open race condition that leads to a use-after-free. | 2022-11-02T00:00:00.000Z | 2022-11-30T00:00:00.000Z |
| msrc_cve-2022-45884 | An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvbdev.c has a use-after-free related to dvb_register_device dynamically allocating fops. | 2022-11-02T00:00:00.000Z | 2022-11-30T00:00:00.000Z |
| msrc_cve-2022-37454 | The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties. This occurs in the sponge function interface. | 2022-10-02T00:00:00.000Z | 2022-11-29T08:00:00.000Z |
| msrc_cve-2022-45919 | An issue was discovered in the Linux kernel through 6.0.10. In drivers/media/dvb-core/dvb_ca_en50221.c a use-after-free can occur is there is a disconnect after an open because of the lack of a wait_event. | 2022-11-02T00:00:00.000Z | 2022-11-29T00:00:00.000Z |
| msrc_cve-2022-40303 | An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option enabled several integer counters can overflow. This results in an attempt to access an array at a negative 2GB offset typically leading to a segmentation fault. | 2022-11-02T00:00:00.000Z | 2022-11-29T00:00:00.000Z |
| msrc_cve-2022-36227 | In libarchive before 3.6.2 the software does not check for an error after calling calloc function that can return with a NULL pointer if the function fails which leads to a resultant NULL pointer dereference. NOTE: the discoverer cites this CWE-476 remark but third parties dispute the code-execution impact: "In rare circumstances when NULL is equivalent to the 0x0 memory address and privileged code can access it then writing or reading memory is possible which may lead to code execution." | 2022-11-02T00:00:00.000Z | 2022-11-29T00:00:00.000Z |
| msrc_cve-2022-3910 | Use after free in io_uring in the Linux Kernel | 2022-11-02T00:00:00.000Z | 2022-11-24T00:00:00.000Z |
| msrc_cve-2022-38045 | Windows Server Service Elevation of Privilege Vulnerability | 2022-10-11T07:00:00.000Z | 2022-11-18T08:00:00.000Z |
| msrc_cve-2022-3970 | LibTIFF tif_getimage.c TIFFReadRGBATileExt integer overflow | 2022-11-02T00:00:00.000Z | 2022-11-18T00:00:00.000Z |
| msrc_cve-2022-37966 | Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability | 2022-11-08T08:00:00.000Z | 2022-11-17T08:00:00.000Z |
| msrc_cve-2022-45061 | An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA (RFC 3490) decoder such that a crafted unreasonably long name being presented to the decoder could lead to a CPU denial of service. Hostnames are often supplied by remote servers that could be controlled by a malicious actor; in such a scenario they could trigger excessive CPU consumption on the client attempting to make use of an attacker-supplied supposed hostname. For example the attack payload could be placed in the Location header of an HTTP response with status code 302. A fix is planned in 3.11.1 3.10.9 3.9.16 3.8.16 and 3.7.16. | 2022-11-02T00:00:00.000Z | 2022-11-17T00:00:00.000Z |
| msrc_cve-2022-45063 | xterm before 375 allows code execution via font ops e.g. because an OSC 50 response may have Ctrl-g and therefore lead to command execution within the vi line-editing mode of Zsh. NOTE: font ops are not allowed in the xterm default configurations of some Linux distributions. | 2022-11-02T00:00:00.000Z | 2022-11-16T00:00:00.000Z |
| msrc_cve-2022-41107 | Microsoft Office Graphics Remote Code Execution Vulnerability | 2022-11-08T08:00:00.000Z | 2022-11-15T08:00:00.000Z |
| msrc_cve-2022-41061 | Microsoft Word Remote Code Execution Vulnerability | 2022-11-08T08:00:00.000Z | 2022-11-15T08:00:00.000Z |
| msrc_cve-2022-41049 | Windows Mark of the Web Security Feature Bypass Vulnerability | 2022-11-08T08:00:00.000Z | 2022-11-11T08:00:00.000Z |
| msrc_cve-2022-41066 | Microsoft Business Central Information Disclosure Vulnerability | 2022-11-08T08:00:00.000Z | 2022-11-10T08:00:00.000Z |
| msrc_cve-2022-44793 | handle_ipv6IpForwarding in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.4.3 through 5.9.3 has a NULL Pointer Exception bug that can be used by a remote attacker to cause the instance to crash via a crafted UDP packet resulting in Denial of Service. | 2022-11-02T00:00:00.000Z | 2022-11-09T00:00:00.000Z |
| msrc_cve-2022-44792 | handle_ipDefaultTTL in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.8 through 5.9.3 has a NULL Pointer Exception bug that can be used by a remote attacker (who has write access) to cause the instance to crash via a crafted UDP packet resulting in Denial of Service. | 2022-11-02T00:00:00.000Z | 2022-11-09T00:00:00.000Z |
| msrc_cve-2022-44638 | In libpixman in Pixman before 0.42.2 there is an out-of-bounds write (aka heap-based buffer overflow) in rasterize_edges_8 due to an integer overflow in pixman_sample_floor_y. | 2022-11-02T00:00:00.000Z | 2022-11-09T00:00:00.000Z |
| msrc_cve-2022-44034 | An issue was discovered in the Linux kernel through 6.0.6. drivers/char/pcmcia/scr24x_cs.c has a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling open() aka a race condition between scr24x_open() and scr24x_remove(). | 2022-10-02T00:00:00.000Z | 2022-11-09T00:00:00.000Z |
| msrc_cve-2022-44033 | An issue was discovered in the Linux kernel through 6.0.6. drivers/char/pcmcia/cm4040_cs.c has a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling open() aka a race condition between cm4040_open() and reader_detach(). | 2022-10-02T00:00:00.000Z | 2022-11-09T00:00:00.000Z |
| msrc_cve-2022-44032 | An issue was discovered in the Linux kernel through 6.0.6. drivers/char/pcmcia/cm4000_cs.c has a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling open() aka a race condition between cmm_open() and cm4000_detach(). | 2022-10-02T00:00:00.000Z | 2022-11-09T00:00:00.000Z |
| msrc_cve-2022-43995 | Sudo 1.8.0 through 1.9.12 with the crypt() password backend contains a plugins/sudoers/auth/passwd.c array-out-of-bounds error that can result in a heap-based buffer over-read. This can be triggered by arbitrary local users with access to Sudo by entering a password of seven characters or fewer. The impact could vary depending on the system libraries compiler and processor architecture. | 2022-11-02T00:00:00.000Z | 2022-11-09T00:00:00.000Z |
| msrc_cve-2022-43945 | The Linux kernel NFSD implementation prior to versions 5.19.17 and 6.0.2 are vulnerable to buffer overflow. NFSD tracks the number of pages held by each NFSD thread by combining the receive and send buffers of a remote procedure call (RPC) into a single array of pages. A client can force the send buffer to shrink by sending an RPC message over TCP with garbage data added at the end of the message. The RPC message with garbage data is still correctly formed according to the specification and is passed forward to handlers. Vulnerable code in NFSD is not expecting the oversized request and writes beyond the allocated buffer space. CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H | 2022-11-02T00:00:00.000Z | 2022-11-09T00:00:00.000Z |
| msrc_cve-2022-41974 | multipath-tools 0.7.0 through 0.9.x before 0.9.2 allows local users to obtain root access as exploited alone or in conjunction with CVE-2022-41973. Local users able to write to UNIX domain sockets can bypass access controls and manipulate the multipath setup. This can lead to local privilege escalation to root. This occurs because an attacker can repeat a keyword which is mishandled because arithmetic ADD is used instead of bitwise OR. | 2022-10-02T00:00:00.000Z | 2022-11-09T00:00:00.000Z |
| msrc_cve-2022-41973 | multipath-tools 0.7.7 through 0.9.x before 0.9.2 allows local users to obtain root access as exploited in conjunction with CVE-2022-41974. Local users able to access /dev/shm can change symlinks in multipathd due to incorrect symlink handling which could lead to controlled file writes outside of the /dev/shm directory. This could be used indirectly for local privilege escalation to root. | 2022-10-02T00:00:00.000Z | 2022-11-09T00:00:00.000Z |
| msrc_cve-2022-40617 | strongSwan before 5.9.8 allows remote attackers to cause a denial of service in the revocation plugin by sending a crafted end-entity (and intermediate CA) certificate that contains a CRL/OCSP URL that points to a server (under the attacker's control) that doesn't properly respond but (for example) just does nothing after the initial TCP handshake or sends an excessive amount of application data. | 2022-10-02T00:00:00.000Z | 2022-11-09T00:00:00.000Z |
| msrc_cve-2022-40284 | A buffer overflow was discovered in NTFS-3G before 2022.10.3. Crafted metadata in an NTFS image can cause code execution. A local attacker can exploit this if the ntfs-3g binary is setuid root. A physically proximate attacker can exploit this if NTFS-3G software is configured to execute upon attachment of an external storage device. | 2022-11-02T00:00:00.000Z | 2022-11-09T00:00:00.000Z |
| msrc_cve-2022-39379 | Fluentd vulnerable to remote code execution due to insecure deserialization (in non-default configuration) | 2022-11-02T00:00:00.000Z | 2022-11-09T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201404-0683 | EMC RSA BSAFE Micro Edition Suite (MES) 3.2.x before 3.2.6 and 4.0.x before 4.0.5 does no… | 2025-04-13T23:32:50.127000Z |
| var-201405-0214 | Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X … | 2025-04-13T23:32:50.007000Z |
| var-201406-0114 | Symantec PGP Desktop 10.x, and Encryption Desktop Professional 10.3.x before 10.3.2 MP2, … | 2025-04-13T23:32:49.614000Z |
| var-201406-0156 | Multiple cross-site request forgery (CSRF) vulnerabilities in the Zyxel P-660HW-T1 (v3) w… | 2025-04-13T23:32:49.579000Z |
| var-201408-0160 | The SIP implementation in Cisco Unified Communications Manager (CM) 8.6(.2) and earlier a… | 2025-04-13T23:32:49.021000Z |
| var-201408-0162 | Multiple SQL injection vulnerabilities in the administrative web interface in Cisco Unifi… | 2025-04-13T23:32:48.991000Z |
| var-201408-0328 | IBM WebSphere DataPower SOA appliances through 4.0.2.15, 5.x through 5.0.0.17, 6.0.0.x th… | 2025-04-13T23:32:48.791000Z |
| var-201408-0330 | The FortiManager protocol service in Fortinet FortiOS before 4.3.16 and 5.0.0 before 5.0.… | 2025-04-13T23:32:48.759000Z |
| var-201409-0388 | The FortiManager protocol service in Fortinet FortiOS before 4.3.16 and 5.x before 5.0.8 … | 2025-04-13T23:32:48.725000Z |
| var-201409-0054 | Cross-site request forgery (CSRF) vulnerability in apply.cgi in Belkin N300 (F7D7301v1) r… | 2025-04-13T23:32:48.617000Z |
| var-201409-0768 | Double free vulnerability in SAP Crystal Reports allows remote attackers to execute arbit… | 2025-04-13T23:32:47.977000Z |
| var-201410-0074 | The SunRPC inspection engine in Cisco ASA Software 7.2 before 7.2(5.14), 8.2 before 8.2(5… | 2025-04-13T23:32:47.912000Z |
| var-201410-0076 | The VPN implementation in Cisco ASA Software 7.2 before 7.2(5.15), 8.2 before 8.2(5.51), … | 2025-04-13T23:32:47.883000Z |
| var-201410-1000 | The ZIP inspection engine in Cisco AsyncOS 8.5 and earlier on the Cisco Email Security Ap… | 2025-04-13T23:32:47.665000Z |
| var-201410-1357 | The login page on the ZyXEL SBG-3300 Security Gateway with firmware 1.00(AADY.4)C0 and ea… | 2025-04-13T23:32:47.517000Z |
| var-201412-0176 | The hx170dec device driver in Huawei P2-6011 before V100R001C00B043 allows local users to… | 2025-04-13T23:32:47.061000Z |
| var-201501-0066 | Multiple cross-site scripting (XSS) vulnerabilities in the Staff client in Koha before 3.… | 2025-04-13T23:32:46.794000Z |
| var-201502-0139 | The uuencode inspection engine in Cisco AsyncOS on Cisco Email Security Appliance (ESA) d… | 2025-04-13T23:32:46.470000Z |
| var-201502-0454 | ASUS JAPAN RT-AC87U routers with firmware 3.0.0.4.378.3754 and earlier, RT-AC68U routers … | 2025-04-13T23:32:46.303000Z |
| var-201504-0286 | Cross-site scripting (XSS) vulnerability in Cisco FireSIGHT System Software 5.3.1.1 and 6… | 2025-04-13T23:32:46.023000Z |
| var-201505-0075 | Barracuda Web Filter 7.x and 8.x before 8.1.0.005, when SSL Inspection is enabled, uses t… | 2025-04-13T23:32:45.826000Z |
| var-201505-0074 | Barracuda Web Filter before 8.1.0.005, when SSL Inspection is enabled, does not verify X.… | 2025-04-13T23:32:45.789000Z |
| var-201506-0008 | The Buffalo WHR-1166DHP 1.60 and earlier, WSR-600DHP 1.60 and earlier, WHR-600D 1.60 and … | 2025-04-13T23:32:45.529000Z |
| var-201506-0179 | The SwiftKey language-pack update implementation on Samsung Galaxy S4, S4 Mini, S5, and S… | 2025-04-13T23:32:45.465000Z |
| var-201506-0180 | Directory traversal vulnerability in the SwiftKey language-pack update implementation on … | 2025-04-13T23:32:45.428000Z |
| var-201506-0155 | Cisco Unified MeetingPlace 8.6(1.2) does not properly validate session IDs in http URLs, … | 2025-04-13T23:32:45.367000Z |
| var-201506-0302 | Cisco Unified MeetingPlace 8.6(1.2) and 8.6(1.9) allows remote authenticated users to dis… | 2025-04-13T23:32:45.277000Z |
| var-201507-0508 | The Manager component in Cisco Unified Computing System (UCS) 2.2(3b) on B Blade Server d… | 2025-04-13T23:32:45.046000Z |
| var-201507-0510 | Cross-site request forgery (CSRF) vulnerability in Cisco WebEx Meetings Server 2.5 MR1 al… | 2025-04-13T23:32:45.010000Z |
| var-201508-0342 | Buffer overflow in the HTTP administrative interface in TIBCO Rendezvous before 8.4.4, Re… | 2025-04-13T23:32:44.472000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2022:0816-1 | Security update for java-11-openjdk | 2022-03-14T09:22:07Z | 2022-03-14T09:22:07Z |
| suse-su-2022:0815-1 | Security update for flac | 2022-03-14T09:21:38Z | 2022-03-14T09:21:38Z |
| suse-su-2022:0814-1 | Security update for flac | 2022-03-14T09:21:35Z | 2022-03-14T09:21:35Z |
| suse-su-2022:0811-1 | Security update for webkit2gtk3 | 2022-03-11T15:13:18Z | 2022-03-11T15:13:18Z |
| suse-su-2022:0810-1 | Security update for tomcat | 2022-03-11T13:35:24Z | 2022-03-11T13:35:24Z |
| suse-su-2022:14906-1 | Security update for MozillaFirefox | 2022-03-11T13:22:42Z | 2022-03-11T13:22:42Z |
| suse-su-2022:0805-1 | Security update for openssh | 2022-03-10T17:05:58Z | 2022-03-10T17:05:58Z |
| suse-su-2022:0804-1 | Security update for MozillaThunderbird | 2022-03-10T16:53:01Z | 2022-03-10T16:53:01Z |
| suse-su-2022:0803-1 | Security update for python-lxml | 2022-03-10T16:36:47Z | 2022-03-10T16:36:47Z |
| suse-su-2022:0802-1 | Security update for python-libxml2-python | 2022-03-10T16:34:07Z | 2022-03-10T16:34:07Z |
| suse-su-2022:0798-1 | Security update for SUSE Manager Server 4.1 | 2022-03-10T11:17:08Z | 2022-03-10T11:17:08Z |
| suse-su-2022:0784-1 | Security update for tomcat | 2022-03-09T14:45:42Z | 2022-03-09T14:45:42Z |
| suse-su-2022:0783-1 | Security update for MozillaFirefox | 2022-03-09T14:17:26Z | 2022-03-09T14:17:26Z |
| suse-su-2022:0782-1 | Security update for mariadb | 2022-03-09T14:04:28Z | 2022-03-09T14:04:28Z |
| suse-su-2022:0779-1 | Security update for tomcat | 2022-03-09T13:45:53Z | 2022-03-09T13:45:53Z |
| suse-su-2022:0763-1 | Security update for the Linux Kernel | 2022-03-09T13:37:57Z | 2022-03-09T13:37:57Z |
| suse-su-2022:0764-1 | Security update for the Linux Kernel | 2022-03-09T13:32:59Z | 2022-03-09T13:32:59Z |
| suse-su-2022:0761-1 | Security update for the Linux Kernel | 2022-03-09T13:27:14Z | 2022-03-09T13:27:14Z |
| suse-su-2022:0778-1 | Security update for MozillaFirefox | 2022-03-09T12:19:02Z | 2022-03-09T12:19:02Z |
| suse-su-2022:0777-1 | Security update for MozillaFirefox | 2022-03-09T12:16:55Z | 2022-03-09T12:16:55Z |
| suse-su-2022:0766-1 | Security update for the Linux Kernel | 2022-03-09T10:36:15Z | 2022-03-09T10:36:15Z |
| suse-su-2022:0767-1 | Security update for the Linux Kernel | 2022-03-09T10:21:52Z | 2022-03-09T10:21:52Z |
| suse-su-2022:0774-1 | Security update for tcpdump | 2022-03-09T09:53:21Z | 2022-03-09T09:53:21Z |
| suse-su-2022:0768-1 | Security update for the Linux Kernel | 2022-03-09T09:10:04Z | 2022-03-09T09:10:04Z |
| suse-su-2022:0770-1 | Security update for buildah | 2022-03-09T08:24:57Z | 2022-03-09T08:24:57Z |
| suse-su-2022:0769-1 | Security update for libcaca | 2022-03-09T08:24:47Z | 2022-03-09T08:24:47Z |
| suse-su-2022:0762-1 | Security update for the Linux Kernel | 2022-03-08T18:07:43Z | 2022-03-08T18:07:43Z |
| suse-su-2022:0760-1 | Security update for the Linux Kernel | 2022-03-08T18:07:32Z | 2022-03-08T18:07:32Z |
| suse-su-2022:0759-1 | Security update for the Linux Kernel | 2022-03-08T18:06:15Z | 2022-03-08T18:06:15Z |
| suse-su-2022:14905-1 | Security update for the Linux Kernel | 2022-03-08T18:05:10Z | 2022-03-08T18:05:10Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-04485 | LunaSVG存在未明漏洞(CNVD-2025-04485) | 2025-02-06 | 2025-03-07 |
| cnvd-2025-04484 | LunaSVG存在未明漏洞(CNVD-2025-04484) | 2025-02-06 | 2025-03-07 |
| cnvd-2025-04483 | LunaSVG存在未明漏洞(CNVD-2025-04483) | 2025-02-06 | 2025-03-07 |
| cnvd-2025-04482 | LunaSVG存在未明漏洞(CNVD-2025-04482) | 2025-02-06 | 2025-03-07 |
| cnvd-2025-04481 | LunaSVG存在未明漏洞 | 2025-02-18 | 2025-03-07 |
| cnvd-2025-04492 | Tale Blog跨站脚本漏洞 | 2025-02-28 | 2025-03-06 |
| cnvd-2025-04491 | Mautic任意文件上传漏洞 | 2025-02-28 | 2025-03-06 |
| cnvd-2025-04208 | iocharger命令注入漏洞 | 2025-01-16 | 2025-03-06 |
| cnvd-2025-04207 | Adobe Substance 3D Stager空指针解引用漏洞 | 2025-02-17 | 2025-03-06 |
| cnvd-2025-04206 | Adobe Substance 3D Designer越界写入漏洞(CNVD-2025-04206) | 2025-02-17 | 2025-03-06 |
| cnvd-2025-04205 | Adobe Commerce不当授权漏洞(CNVD-2025-04205) | 2025-02-17 | 2025-03-06 |
| cnvd-2025-04204 | Adobe Commerce信息泄露漏洞(CNVD-2025-04204) | 2025-02-17 | 2025-03-06 |
| cnvd-2025-04203 | Adobe Illustrator内存错误引用漏洞(CNVD-2025-04203) | 2025-02-17 | 2025-03-06 |
| cnvd-2025-04202 | Adobe Illustrator整数潜流漏洞 | 2025-02-17 | 2025-03-06 |
| cnvd-2025-04201 | Adobe Commerce跨站脚本漏洞(CNVD-2025-04201) | 2025-02-17 | 2025-03-06 |
| cnvd-2025-04200 | Adobe Commerce权限提升漏洞(CNVD-2025-04200) | 2025-02-17 | 2025-03-06 |
| cnvd-2025-04199 | Adobe Commerce不当访问控制漏洞(CNVD-2025-04199) | 2025-02-17 | 2025-03-06 |
| cnvd-2025-04198 | Microsoft Office代码执行漏洞(CNVD-2025-04198) | 2025-02-13 | 2025-03-05 |
| cnvd-2025-04197 | Microsoft Access代码执行漏洞 | 2025-02-14 | 2025-03-05 |
| cnvd-2025-04196 | Microsoft Office安全功能绕过漏洞(CNVD-2025-04196) | 2025-02-14 | 2025-03-05 |
| cnvd-2025-04195 | Microsoft Office OneNote代码执行漏洞(CNVD-2025-04195) | 2025-02-25 | 2025-03-05 |
| cnvd-2025-04194 | Microsoft Excel代码执行漏洞(CNVD-2025-04194) | 2025-02-13 | 2025-03-05 |
| cnvd-2025-04193 | Microsoft Excel代码执行漏洞(CNVD-2025-04193) | 2025-02-13 | 2025-03-05 |
| cnvd-2025-04192 | Microsoft Excel代码执行漏洞(CNVD-2025-04192) | 2025-02-13 | 2025-03-05 |
| cnvd-2025-04191 | Microsoft Excel代码执行漏洞(CNVD-2025-04191) | 2025-02-13 | 2025-03-05 |
| cnvd-2025-04190 | Microsoft Excel信息泄露漏洞(CNVD-2025-04190) | 2025-02-13 | 2025-03-05 |
| cnvd-2025-04189 | Microsoft Excel代码执行漏洞(CNVD-2025-04189) | 2025-02-14 | 2025-03-05 |
| cnvd-2025-03894 | 北京火绒网络科技有限公司火绒安全软件存在权限提升漏洞 | 2024-12-31 | 2025-03-05 |
| cnvd-2025-04188 | IrfanView越界写入漏洞(CNVD-2025-04188) | 2024-11-27 | 2025-03-04 |
| cnvd-2025-04187 | TOTOLINK X18命令注入漏洞 | 2025-02-19 | 2025-03-04 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2013-avi-362 | Multiples vulnérabilités dans Oracle Solaris | 2013-06-19T00:00:00.000000 | 2013-06-19T00:00:00.000000 |
| certa-2013-avi-361 | Multiples vulnérabilités dans Oracle Java | 2013-06-19T00:00:00.000000 | 2013-06-19T00:00:00.000000 |
| certa-2013-avi-360 | Multiples vulnérabilités dans Siemens WinCC Web Navigator | 2013-06-18T00:00:00.000000 | 2013-06-18T00:00:00.000000 |
| certa-2013-avi-359 | Multiples vulnérabilités dans Novell ZENworks | 2013-06-18T00:00:00.000000 | 2013-06-18T00:00:00.000000 |
| certa-2013-avi-358 | Vulnérabilité dans Parallels Plesk Panel | 2013-06-17T00:00:00.000000 | 2013-06-17T00:00:00.000000 |
| certa-2013-avi-357 | Multiples vulnérabilités dans IBM Notes | 2013-06-14T00:00:00.000000 | 2013-06-14T00:00:00.000000 |
| certa-2013-avi-356 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2013-06-14T00:00:00.000000 | 2013-06-14T00:00:00.000000 |
| certa-2013-avi-355 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2013-06-12T00:00:00.000000 | 2013-06-12T00:00:00.000000 |
| certa-2013-avi-354 | Vulnérabilité dans Microsoft Office | 2013-06-12T00:00:00.000000 | 2013-06-12T00:00:00.000000 |
| certa-2013-avi-353 | Vulnérabilité dans le spouleur d'impression Microsoft Windows | 2013-06-12T00:00:00.000000 | 2013-06-12T00:00:00.000000 |
| certa-2013-avi-352 | Vulnérabilité dans le système TCP/IP de Microsoft Windows | 2013-06-12T00:00:00.000000 | 2013-06-12T00:00:00.000000 |
| certa-2013-avi-351 | Vulnérabilité dans le noyau Microsoft Windows | 2013-06-12T00:00:00.000000 | 2013-06-12T00:00:00.000000 |
| certa-2013-avi-350 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2013-06-12T00:00:00.000000 | 2013-06-12T00:00:00.000000 |
| certa-2013-avi-349 | Vulnérabilité dans VMware vCenter Chargeback Manager | 2013-06-12T00:00:00.000000 | 2013-06-12T00:00:00.000000 |
| certa-2013-avi-348 | Vulnérabilité dans Adobe Flash Player | 2013-06-12T00:00:00.000000 | 2013-06-12T00:00:00.000000 |
| certa-2013-avi-347 | Multiples vulnérabilités dans Wireshark | 2013-06-11T00:00:00.000000 | 2013-06-11T00:00:00.000000 |
| certa-2013-avi-346 | Multiples vulnérabilités dans PHP | 2013-06-07T00:00:00.000000 | 2013-06-07T00:00:00.000000 |
| certa-2013-avi-345 | Vulnérabilité dans Drupal | 2013-06-07T00:00:00.000000 | 2013-06-07T00:00:00.000000 |
| certa-2013-avi-344 | Vulnérabilité dans ISC BIND | 2013-06-06T00:00:00.000000 | 2013-06-06T00:00:00.000000 |
| certa-2013-avi-343 | Multiples vulnérabilités dans Google Chrome | 2013-06-05T00:00:00.000000 | 2013-06-05T00:00:00.000000 |
| certa-2013-avi-342 | Multiples vulnérabilités dans XEN | 2013-06-05T00:00:00.000000 | 2013-06-05T00:00:00.000000 |
| certa-2013-avi-341 | Multiples vulnérabilités dans Apple Safari | 2013-06-05T00:00:00.000000 | 2013-06-05T00:00:00.000000 |
| certa-2013-avi-340 | Multiples vulnérabilités dans Apple OS X | 2013-06-05T00:00:00.000000 | 2013-06-05T00:00:00.000000 |
| certa-2013-avi-339 | Multiples vulnérabilités dans IBM DB2 | 2013-06-04T00:00:00.000000 | 2013-06-04T00:00:00.000000 |
| certa-2013-avi-338 | Multiples vulnérabilités dans IBM Tivoli Directory Integrator | 2013-06-03T00:00:00.000000 | 2013-06-03T00:00:00.000000 |
| certa-2013-avi-337 | Multiples vulnérabilités dans VMware | 2013-05-31T00:00:00.000000 | 2013-05-31T00:00:00.000000 |
| certa-2013-avi-336 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2013-05-31T00:00:00.000000 | 2013-05-31T00:00:00.000000 |
| certa-2013-avi-335 | Vulnérabilité dans Horde | 2013-05-31T00:00:00.000000 | 2013-05-31T00:00:00.000000 |
| certa-2013-avi-334 | Multiples vulnérabilités dans Apache Tomcat | 2013-05-30T00:00:00.000000 | 2013-05-30T00:00:00.000000 |
| certa-2013-avi-333 | Vulnérabilité dans IBM WebSphere | 2013-05-30T00:00:00.000000 | 2013-05-30T00:00:00.000000 |