Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2000-0202 |
N/A
|
Microsoft SQL Server 7.0 and Microsoft Data Engin… |
n/a |
n/a |
2000-04-10T04:00:00 | 2024-08-08T05:05:54.147Z |
| CVE-2000-0207 |
N/A
|
SGI InfoSearch CGI program infosrch.cgi allows re… |
n/a |
n/a |
2000-04-10T04:00:00 | 2024-08-08T05:05:54.274Z |
| CVE-2000-0208 |
N/A
|
The htdig (ht://Dig) CGI program htsearch allows … |
n/a |
n/a |
2000-04-10T04:00:00 | 2024-08-08T05:05:54.071Z |
| CVE-2000-0209 |
N/A
|
Buffer overflow in Lynx 2.x allows remote attacke… |
n/a |
n/a |
2000-04-10T04:00:00 | 2024-08-08T05:05:54.164Z |
| CVE-2000-0210 |
N/A
|
The lit program in Sun Flex License Manager (Flex… |
n/a |
n/a |
2000-04-10T04:00:00 | 2024-08-08T05:05:54.211Z |
| CVE-2000-0211 |
N/A
|
The Windows Media server allows remote attackers … |
n/a |
n/a |
2000-04-10T04:00:00 | 2024-08-08T05:05:54.110Z |
| CVE-2000-0212 |
N/A
|
InterAccess TelnetD Server 4.0 allows remote atta… |
n/a |
n/a |
2000-04-10T04:00:00 | 2024-08-08T05:05:54.165Z |
| CVE-2000-0215 |
N/A
|
Vulnerability in SCO cu program in UnixWare 7.x a… |
n/a |
n/a |
2000-04-10T04:00:00 | 2024-08-08T05:05:54.168Z |
| CVE-2000-0217 |
N/A
|
The default configuration of SSH allows X forward… |
n/a |
n/a |
2000-04-10T04:00:00 | 2024-08-08T05:05:54.163Z |
| CVE-2000-0218 |
N/A
|
Buffer overflow in Linux mount and umount allows … |
n/a |
n/a |
2000-04-10T04:00:00 | 2024-08-08T05:05:54.208Z |
| CVE-2000-0221 |
N/A
|
The Nautica Marlin bridge allows remote attackers… |
n/a |
n/a |
2000-04-10T04:00:00 | 2024-08-08T05:05:54.074Z |
| CVE-2000-0222 |
N/A
|
The installation for Windows 2000 does not activa… |
n/a |
n/a |
2000-04-10T04:00:00 | 2024-08-08T05:05:54.210Z |
| CVE-2000-0224 |
N/A
|
ARCserve agent in SCO UnixWare 7.x allows local a… |
n/a |
n/a |
2000-04-10T04:00:00 | 2024-08-08T05:05:54.219Z |
| CVE-2000-0227 |
N/A
|
The Linux 2.2.x kernel does not restrict the numb… |
n/a |
n/a |
2000-04-12T04:00:00 | 2024-08-08T05:05:54.166Z |
| CVE-2000-0239 |
N/A
|
Buffer overflow in the MERCUR WebView WebMail ser… |
n/a |
n/a |
2000-04-12T04:00:00 | 2024-08-08T05:14:20.443Z |
| CVE-2000-0241 |
N/A
|
vqSoft vqServer stores sensitive information such… |
n/a |
n/a |
2000-04-12T04:00:00 | 2024-08-08T05:14:20.691Z |
| CVE-2000-0242 |
N/A
|
WindMail allows remote attackers to read arbitrar… |
n/a |
n/a |
2000-04-12T04:00:00 | 2024-08-08T05:14:20.516Z |
| CVE-2000-0244 |
N/A
|
The Citrix ICA (Independent Computing Architectur… |
n/a |
n/a |
2000-04-12T04:00:00 | 2024-08-08T05:14:20.552Z |
| CVE-1999-0676 |
N/A
|
sdtcm_convert in Solaris 2.6 allows a local user … |
n/a |
n/a |
2000-04-18T04:00:00 | 2024-08-01T16:48:37.049Z |
| CVE-1999-0711 |
N/A
|
The oratclsh interpreter in Oracle 8.x Intelligen… |
n/a |
n/a |
2000-04-18T04:00:00 | 2024-08-01T16:48:37.597Z |
| CVE-1999-0720 |
N/A
|
The pt_chown command in Linux allows local users … |
n/a |
n/a |
2000-04-18T04:00:00 | 2024-08-01T16:48:37.948Z |
| CVE-1999-0747 |
N/A
|
Denial of service in BSDi Symmetric Multiprocessi… |
n/a |
n/a |
2000-04-18T04:00:00 | 2024-08-01T16:48:38.145Z |
| CVE-1999-0773 |
N/A
|
Buffer overflow in Solaris lpset program allows l… |
n/a |
n/a |
2000-04-18T04:00:00 | 2024-08-01T16:48:37.735Z |
| CVE-1999-0790 |
N/A
|
A remote attacker can read information from a Net… |
n/a |
n/a |
2000-04-18T04:00:00 | 2024-08-01T16:48:38.097Z |
| CVE-1999-0799 |
N/A
|
Buffer overflow in bootpd 2.4.3 and earlier via a… |
n/a |
n/a |
2000-04-18T04:00:00 | 2024-08-01T16:48:37.980Z |
| CVE-1999-0813 |
N/A
|
Cfingerd with ALLOW_EXECUTION enabled does not pr… |
n/a |
n/a |
2000-04-18T04:00:00 | 2024-08-01T16:48:38.080Z |
| CVE-1999-0888 |
N/A
|
dbsnmp in Oracle Intelligent Agent allows local u… |
n/a |
n/a |
2000-04-18T04:00:00 | 2024-08-01T16:55:29.139Z |
| CVE-1999-0903 |
N/A
|
genfilt in the AIX Packet Filtering Module does n… |
n/a |
n/a |
2000-04-18T04:00:00 | 2024-08-01T16:55:28.915Z |
| CVE-1999-0906 |
N/A
|
Buffer overflow in sccw allows local users to gai… |
n/a |
n/a |
2000-04-18T04:00:00 | 2024-08-01T16:55:29.323Z |
| CVE-1999-0958 |
N/A
|
sudo 1.5.x allows local users to execute arbitrar… |
n/a |
n/a |
2000-04-18T04:00:00 | 2024-08-01T16:55:29.316Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-1999-0475 |
N/A
|
A race condition in how procmail handles .procmai… |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:41:45.003Z |
| CVE-1999-1245 |
N/A
|
vacm ucd-snmp SNMP server, version 3.52, does not… |
n/a |
n/a |
2001-09-12T04:00:00 | 2024-08-01T17:02:53.918Z |
| CVE-1999-0472 |
N/A
|
The SNMP default community name "public" is not p… |
n/a |
n/a |
1999-09-29T04:00:00.000Z | 2025-03-17T15:03:17.703Z |
| CVE-1999-0473 |
N/A
|
The rsync command before rsync 2.3.1 may inadvert… |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:41:44.981Z |
| CVE-1999-1196 |
N/A
|
Hummingbird Exceed X version 5 allows remote atta… |
n/a |
n/a |
2001-09-12T04:00:00 | 2024-08-01T17:02:53.885Z |
| CVE-1999-0287 |
N/A
|
Vulnerability in the Wguest CGI program. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.837Z |
| CVE-1999-0468 |
8.2 (3.1)
|
Internet Explorer 5.0 allows a remote server to r… |
n/a |
n/a |
1999-09-29T04:00:00.000Z | 2025-08-25T18:51:48.046Z |
| CVE-1999-0470 |
N/A
|
A weak encryption algorithm is used for passwords… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:41:44.977Z |
| CVE-1999-0471 |
N/A
|
The remote proxy server in Winroute allows a remo… |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:41:45.031Z |
| CVE-1999-0801 |
N/A
|
BMC Patrol allows remote attackers to gain access… |
n/a |
n/a |
2002-03-09T05:00:00 | 2024-08-01T16:48:38.097Z |
| CVE-1999-1323 |
N/A
|
Norton AntiVirus for Internet Email Gateways (NAV… |
n/a |
n/a |
2001-09-12T04:00:00 | 2024-08-01T17:11:02.692Z |
| CVE-1999-0444 |
N/A
|
Remote attackers can perform a denial of service … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:44.701Z |
| CVE-1999-0446 |
N/A
|
Local users can perform a denial of service in Ne… |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:41:44.840Z |
| CVE-1999-1369 |
N/A
|
Real Media RealServer (rmserver) 6.0.3.353 stores… |
n/a |
n/a |
2001-09-12T04:00:00 | 2024-08-01T17:11:02.913Z |
| CVE-1999-1244 |
N/A
|
IPFilter 3.2.3 through 3.2.10 allows local users … |
n/a |
n/a |
2001-09-12T04:00:00 | 2024-08-01T17:02:53.813Z |
| CVE-1999-0684 |
N/A
|
Denial of service in Sendmail 8.8.6 in HPUX. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.040Z |
| CVE-1999-0491 |
N/A
|
The prompt parsing in bash allows a local user to… |
n/a |
n/a |
2000-06-02T04:00:00 | 2024-08-01T16:41:45.463Z |
| CVE-1999-0604 |
N/A
|
An incorrect configuration of the WebStore 1.0 sh… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.678Z |
| CVE-1999-0607 |
N/A
|
quikstore.cgi in QuikStore shopping cart stores q… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.677Z |
| CVE-1999-0466 |
N/A
|
The SVR4 /dev/wabi special device file in NetBSD … |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:41:45.248Z |
| CVE-1999-0488 |
N/A
|
Internet Explorer 4.0 and 5.0 allows a remote att… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.487Z |
| CVE-1999-0490 |
N/A
|
MSHTML.DLL in Internet Explorer 5.0 allows a remo… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.320Z |
| CVE-1999-0492 |
N/A
|
The ffingerd 1.19 allows remote attackers to iden… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.483Z |
| CVE-1999-0712 |
N/A
|
A vulnerability in Caldera Open Administration Sy… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.560Z |
| CVE-1999-0711 |
N/A
|
The oratclsh interpreter in Oracle 8.x Intelligen… |
n/a |
n/a |
2000-04-18T04:00:00 | 2024-08-01T16:48:37.597Z |
| CVE-1999-0194 |
N/A
|
Denial of service in in.comsat allows attackers t… |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:27:57.881Z |
| CVE-1999-0487 |
N/A
|
The DHTML Edit ActiveX control in Internet Explor… |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:41:45.569Z |
| CVE-1999-0763 |
N/A
|
NetBSD on a multi-homed host allows ARP packets o… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:48:38.061Z |
| CVE-1999-0764 |
N/A
|
NetBSD allows ARP packets to overwrite static ARP… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:48:37.936Z |
| CVE-1999-0807 |
N/A
|
The Netscape Directory Server installation proced… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:48:37.995Z |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-gfv6-cj92-g3hx |
6.5 (3.1)
7.1 (4.0)
|
PyKMIP Denial of service vulnerability | 2018-12-21T17:46:39Z | 2024-10-23T15:56:53Z |
| ghsa-h4x4-5qp2-wp46 |
6.5 (3.1)
|
Moderate severity vulnerability that affects com.fasterxml.jackson.datatype:jackson-datatype-jsr353 | 2018-12-21T17:46:54Z | 2021-09-13T15:14:09Z |
| ghsa-fvm3-cfvj-gxqq |
7.5 (3.1)
|
High severity vulnerability that affects commons-fileupload:commons-fileupload | 2018-12-21T17:47:47Z | 2021-07-19T15:57:47Z |
| ghsa-8p8g-f9vg-r7xr |
7.5 (3.1)
|
Directory Traversal vulnerability in Square Retrofit | 2018-12-21T17:48:19Z | 2022-09-14T22:25:15Z |
| ghsa-j379-9jr9-w5cq |
9.1 (3.1)
|
XML External Entity (XXE) vulnerability in Square Retrofit | 2018-12-21T17:48:26Z | 2022-09-14T22:25:34Z |
| ghsa-gf2j-7qwg-4f5x |
8.1 (3.1)
|
Improper Authentication in Keycloak | 2018-12-21T17:48:45Z | 2022-09-14T22:26:11Z |
| ghsa-9448-c9wq-jg9v |
8.8 (3.1)
|
Improper Privilege Management in Apache Karaf | 2018-12-21T17:49:33Z | 2022-09-14T22:28:00Z |
| ghsa-99qr-9cc9-fv2x |
7.8 (3.1)
|
Moderate severity vulnerability that affects org.apache.hadoop:hadoop-main | 2018-12-21T17:50:03Z | 2021-09-07T21:13:38Z |
| ghsa-3v44-382q-55f4 |
6.5 (3.1)
|
Moderate severity vulnerability that affects org.apache.hadoop:hadoop-main | 2018-12-21T17:50:13Z | 2021-08-31T21:30:36Z |
| ghsa-mq8p-h798-xcrp |
9.8 (3.1)
|
Exposure of Sensitive Information in Hadoop | 2018-12-21T17:50:20Z | 2022-09-14T22:26:37Z |
| ghsa-rqj9-cq6j-958r |
8.8 (3.1)
|
Arbitrary Command Execution in Hadoop | 2018-12-21T17:50:26Z | 2022-09-14T22:27:02Z |
| ghsa-6x48-j4x4-cqw3 |
8.8 (3.1)
|
Path Traversal in Hadoop | 2018-12-21T17:50:29Z | 2024-03-04T22:55:10Z |
| ghsa-xx68-jfcg-xmmf |
|
Commons FileUpload Denial of service vulnerability | 2018-12-21T17:51:42Z | 2024-03-05T19:13:45Z |
| ghsa-7x9j-7223-rg5m |
9.8 (3.1)
|
Improper Access Control in commons-fileupload | 2018-12-21T17:51:51Z | 2022-09-14T22:24:42Z |
| ghsa-3448-vfvv-xp9g |
6.5 (3.1)
|
Apache Tika Denial of Service due to Infinite Loop in Tika's SQLite3Parser | 2018-12-26T17:45:07Z | 2023-09-27T11:10:06Z |
| ghsa-v4x4-98cg-wr4g |
9.8 (3.1)
8.1 (4.0)
|
Code injection in Danijar Definitions | 2018-12-26T17:45:19Z | 2024-09-13T20:11:10Z |
| ghsa-cf66-xwfp-gvc4 |
7.5 (3.1)
|
Missing Origin Validation in webpack-dev-server | 2019-01-04T17:40:59Z | 2022-04-06T20:39:38Z |
| ghsa-29gp-92wp-94q8 |
|
react-dev-utils on Windows vulnerable to Remote Code Execution | 2019-01-04T17:41:20Z | 2022-08-03T19:36:45Z |
| ghsa-4q69-q4q7-x82c |
7.5 (3.1)
|
rendertron can remotely shut down Chrome instance | 2019-01-04T17:41:46Z | 2023-09-06T20:01:34Z |
| ghsa-j87c-cj65-vmh5 |
7.5 (3.1)
|
rendertron LFI vulnerability | 2019-01-04T17:41:51Z | 2023-09-06T20:06:31Z |
| ghsa-4rm3-4mq4-mfwr |
8.8 (3.1)
|
Cross-Site Request Forgery (CSRF) in hswebframework.web:hsweb-commons | 2019-01-04T17:43:22Z | 2022-09-14T22:29:42Z |
| ghsa-qqv6-5w6p-3pgr |
6.1 (3.1)
|
Moderate severity vulnerability that affects org.hswebframework.web:hsweb-commons | 2019-01-04T17:43:30Z | 2021-09-16T20:04:03Z |
| ghsa-45r8-3495-x6rm |
5.3 (3.1)
|
Jinjava calls getClass | 2019-01-04T17:43:36Z | 2022-09-17T00:06:13Z |
| ghsa-2x54-j4m3-r6wx |
7.8 (3.1)
8.7 (4.0)
|
sqla-yaml-fixtures is vulnerable to Code Injection | 2019-01-04T17:44:48Z | 2024-10-28T14:23:42Z |
| ghsa-rprw-h62v-c2w7 |
9.8 (3.1)
|
PyYAML insecurely deserializes YAML strings leading to arbitrary code execution | 2019-01-04T17:45:26Z | 2024-10-16T20:51:25Z |
| ghsa-42fp-4hm3-j8r7 |
6.1 (3.1)
5.1 (4.0)
|
Moderate severity vulnerability that affects moin | 2019-01-04T17:46:08Z | 2024-09-27T19:46:59Z |
| ghsa-m9mq-p2f9-cfqv |
9.8 (3.1)
9.3 (4.0)
|
Bleach URI Scheme Restriction Bypass | 2019-01-04T17:46:30Z | 2024-09-04T19:41:50Z |
| ghsa-xvwv-6wvx-px9x |
6.1 (3.1)
5.3 (4.0)
|
Plone Open Redirect | 2019-01-04T17:47:21Z | 2024-10-18T21:54:05Z |
| ghsa-98gj-wwxm-cj3h |
6.1 (3.1)
5.1 (4.0)
|
mistune Cross-site scripting (XSS) vulnerability | 2019-01-04T17:47:50Z | 2024-09-24T21:24:30Z |
| ghsa-38rv-5jqc-m2cv |
9.8 (3.1)
9.3 (4.0)
|
Recurly vulnerable to SSRF | 2019-01-04T17:48:09Z | 2024-10-26T18:40:02Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2020-216 |
|
The Beaker library through 1.11.0 for Python is affected by deserialization of untrusted … | beaker | 2020-06-26T20:15:00Z | 2021-07-25T23:34:27.636176Z |
| pysec-2020-39 |
|
Django Two-Factor Authentication before 1.12, stores the user's password in clear text in… | django-two-factor-auth | 2020-07-10T21:15:00Z | 2020-07-21T18:06:00Z |
| pysec-2020-232 |
|
In freewvs before 0.1.1, a user could create a large file that freewvs will try to read, … | freewvs | 2020-07-14T20:15:00Z | 2021-08-27T03:22:04.199703Z |
| pysec-2020-233 |
|
In freewvs before 0.1.1, a directory structure of more than 1000 nested directories can i… | freewvs | 2020-07-14T22:15:00Z | 2021-08-27T03:22:04.227798Z |
| pysec-2020-14 |
|
An issue was found in Apache Airflow versions 1.10.10 and below. A remote code/command in… | apache-airflow | 2020-07-17T00:15:00Z | 2020-07-22T17:15:00Z |
| pysec-2020-15 |
|
An issue was found in Apache Airflow versions 1.10.10 and below. When using CeleryExecuto… | apache-airflow | 2020-07-17T00:15:00Z | 2020-07-24T18:19:00Z |
| pysec-2020-16 |
|
An issue was found in Apache Airflow versions 1.10.10 and below. When using CeleryExecuto… | apache-airflow | 2020-07-17T00:15:00Z | 2020-07-24T18:22:00Z |
| pysec-2020-17 |
|
An issue was found in Apache Airflow versions 1.10.10 and below. It was discovered that m… | apache-airflow | 2020-07-17T00:15:00Z | 2020-07-21T18:45:00Z |
| pysec-2020-23 |
|
An issue was found in Apache Airflow versions 1.10.10 and below. A stored XSS vulnerabili… | apache-airflow | 2020-07-17T00:15:00Z | 2020-07-21T18:38:00Z |
| pysec-2020-51 |
|
In jupyterhub-kubespawner before 0.12, certain usernames will be able to craft particular… | jupyterhub-kubespawner | 2020-07-17T21:15:00Z | 2020-07-22T20:28:00Z |
| pysec-2020-154 |
|
In Wagtail before versions 2.7.4 and 2.9.3, when a form page type is made available to Wa… | wagtail | 2020-07-20T18:15:00Z | 2020-07-28T12:29:00Z |
| pysec-2020-30 |
|
A buffer overflow in the patching routine of bsdiff4 before 1.2.0 allows an attacker to w… | bsdiff4 | 2020-07-22T23:15:00Z | 2020-07-31T16:15:00Z |
| pysec-2020-150 |
|
This affects all versions of package uvicorn. The request logger provided by the package … | uvicorn | 2020-07-27T12:15:00Z | 2020-08-04T18:05:00Z |
| pysec-2020-151 |
|
Uvicorn before 0.11.7 is vulnerable to HTTP response splitting. CRLF sequences are not es… | uvicorn | 2020-07-27T12:15:00Z | 2020-07-29T19:15:00Z |
| pysec-2020-264 |
|
In "I hate money" before version 4.1.5, an authenticated member of one project can modify… | ihatemoney | 2020-07-27T18:15:00Z | 2021-11-16T03:58:44.236145Z |
| pysec-2020-44 |
|
This affects the package Gerapy from 0 and before 0.9.3. The input being passed to Popen,… | gerapy | 2020-07-29T13:15:00Z | 2020-07-31T14:59:00Z |
| pysec-2020-342 |
9.8 (3.1)
|
**Resolved** Only when using H2/MySQL/TiDB as Apache SkyWalking storage, there is a SQL i… | apache-skywalking | 2020-08-05T14:15:00+00:00 | 2023-11-07T20:24:23.946863+00:00 |
| pysec-2020-38 |
|
django-celery-results through 1.2.1 stores task results in the database. Among the data i… | django-celery-results | 2020-08-11T21:15:00Z | 2020-08-14T20:09:00Z |
| pysec-2020-24 |
|
asyncpg before 0.21.0 allows a malicious PostgreSQL server to trigger a crash or execute … | asyncpg | 2020-08-12T16:15:00Z | 2020-09-03T01:15:00Z |
| pysec-2020-70 |
|
In openapi-python-client before version 0.5.3, there is a path traversal vulnerability. I… | openapi-python-client | 2020-08-14T17:15:00Z | 2020-08-20T18:02:00Z |
| pysec-2020-71 |
|
In openapi-python-client before version 0.5.3, clients generated with a maliciously craft… | openapi-python-client | 2020-08-14T17:15:00Z | 2020-08-20T18:11:00Z |
| pysec-2020-265 |
|
In Red Discord Bot before version 3.3.11, a RCE exploit has been discovered in the Trivia… | red-discordbot | 2020-08-21T17:15:00Z | 2021-11-16T03:58:45.413825Z |
| pysec-2020-266 |
|
Red Discord Bot before versions 3.3.12 and 3.4 has a Remote Code Execution vulnerability … | red-discordbot | 2020-08-21T18:15:00Z | 2021-11-16T03:58:45.466484Z |
| pysec-2020-161 |
|
A flaw was found in the solaris_zone module from the Ansible Community modules. When sett… | ansible | 2020-08-26T03:15:00Z | 2021-01-28T18:00:00Z |
| pysec-2020-243 |
|
An issue was discovered in Guest.migrate in virt/libvirt/guest.py in OpenStack Nova befor… | nova | 2020-08-26T19:15:00Z | 2021-08-27T03:22:09.410263Z |
| pysec-2020-251 |
|
The Scalyr Agent before 2.1.10 has Missing SSL Certificate Validation because, in some ci… | scalyr-agent-2 | 2020-08-27T22:15:00Z | 2021-08-27T03:22:21.123825Z |
| pysec-2020-252 |
|
The Scalyr Agent before 2.1.10 has Missing SSL Certificate Validation because, in some ci… | scalyr-agent-2 | 2020-08-27T22:15:00Z | 2021-08-27T03:22:21.152325Z |
| pysec-2020-43 |
|
An issue was discovered in Flask-CORS (aka CORS Middleware for Flask) before 3.0.9. It al… | flask-cors | 2020-08-31T04:15:00Z | 2020-10-21T12:15:00Z |
| pysec-2020-33 |
|
An issue was discovered in Django 2.2 before 2.2.16, 3.0 before 3.0.10, and 3.1 before 3.… | django | 2020-09-01T13:15:00Z | 2021-01-20T15:15:00Z |
| pysec-2020-34 |
|
An issue was discovered in Django 2.2 before 2.2.16, 3.0 before 3.0.10, and 3.1 before 3.… | django | 2020-09-01T13:15:00Z | 2021-01-20T15:15:00Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2022-6172 | Malicious code in small_11931193 (npm) | 2022-06-20T20:09:38Z | 2022-06-20T20:09:38Z |
| mal-2022-6496 | Malicious code in test2_11931193 (npm) | 2022-06-20T20:09:38Z | 2022-06-20T20:09:39Z |
| mal-2022-4553 | Malicious code in meoconlonton-vhx-cricle (npm) | 2022-06-20T20:09:39Z | 2022-06-20T20:09:40Z |
| mal-2022-4816 | Malicious code in new-random-test (npm) | 2022-06-20T20:09:39Z | 2022-06-20T20:09:39Z |
| mal-2022-5581 | Malicious code in random-testing-npm (npm) | 2022-06-20T20:09:39Z | 2022-06-20T20:09:40Z |
| mal-2022-6520 | Malicious code in testing-npm-random (npm) | 2022-06-20T20:09:39Z | 2022-06-20T20:09:39Z |
| mal-2022-4552 | Malicious code in meoconlonton-vhx (npm) | 2022-06-20T20:09:40Z | 2022-06-20T20:09:40Z |
| mal-2022-4554 | Malicious code in meoconlonton-vhx-fresh (npm) | 2022-06-20T20:09:40Z | 2022-06-20T20:09:40Z |
| mal-2022-5722 | Malicious code in redocoem-bamm (npm) | 2022-06-20T20:09:40Z | 2022-06-20T20:09:41Z |
| mal-2022-7271 | Malicious code in xenolith (npm) | 2022-06-20T20:09:40Z | 2022-06-20T20:09:41Z |
| mal-2022-4681 | Malicious code in monday-ui-react-core-vibe (npm) | 2022-06-20T20:09:41Z | 2022-06-20T20:09:42Z |
| mal-2022-5022 | Malicious code in odesk.bpa-tsf-calc-bundle (npm) | 2022-06-20T20:09:41Z | 2022-06-20T20:09:42Z |
| mal-2022-5142 | Malicious code in ot-react-jed (npm) | 2022-06-20T20:09:41Z | 2022-06-20T20:09:41Z |
| mal-2022-5833 | Malicious code in roblox-es6-migration-helper (npm) | 2022-06-20T20:09:41Z | 2022-06-20T20:09:41Z |
| mal-2022-2594 | Malicious code in dropins-components (npm) | 2022-06-20T20:09:42Z | 2022-06-20T20:09:43Z |
| mal-2022-2990 | Malicious code in fe-fabric-react (npm) | 2022-06-20T20:09:42Z | 2022-06-20T20:09:43Z |
| mal-2022-3312 | Malicious code in gd-ldc (npm) | 2022-06-20T20:09:42Z | 2022-06-20T20:09:42Z |
| mal-2022-4455 | Malicious code in mailduli (npm) | 2022-06-20T20:09:42Z | 2022-06-20T20:09:42Z |
| mal-2022-1048 | Malicious code in apinitro (npm) | 2022-06-20T20:09:43Z | 2022-06-20T20:09:44Z |
| mal-2022-1500 | Malicious code in bender-event-definition-loader (npm) | 2022-06-20T20:09:43Z | 2022-06-20T20:09:44Z |
| mal-2022-2008 | Malicious code in colors-2.0.0 (npm) | 2022-06-20T20:09:43Z | 2022-06-20T20:09:44Z |
| mal-2022-2270 | Malicious code in ctct-helpers (npm) | 2022-06-20T20:09:43Z | 2022-06-20T20:09:43Z |
| mal-2022-856 | Malicious code in adiostcheusia (npm) | 2022-06-20T20:09:43Z | 2022-06-20T20:09:44Z |
| mal-2022-1000 | Malicious code in angieslist-styles (npm) | 2022-06-20T20:09:44Z | 2022-06-20T20:09:44Z |
| mal-2022-181 | Malicious code in @contrast-security-inc/design-system-foundations (npm) | 2022-06-20T20:09:44Z | 2022-06-20T20:09:45Z |
| mal-2022-2000 | Malicious code in color2.0.0 (npm) | 2022-06-20T20:09:44Z | 2022-06-20T20:09:44Z |
| mal-2022-373 | Malicious code in @jumpstart-ui/utils (npm) | 2022-06-20T20:09:44Z | 2022-06-20T20:09:45Z |
| mal-2022-5306 | Malicious code in perulema (npm) | 2022-06-20T20:09:45Z | 2022-06-20T20:09:46Z |
| mal-2022-563 | Malicious code in @rnps-ppr/gensen-gotham (npm) | 2022-06-20T20:09:45Z | 2022-06-20T20:09:45Z |
| mal-2022-564 | Malicious code in @rnps-ppr/ppr-gensenjs (npm) | 2022-06-20T20:09:45Z | 2022-06-20T20:09:46Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2022-1113 | GStreamer: Schwachstelle ermöglicht Denial of Service | 2021-06-09T22:00:00.000+00:00 | 2025-02-04T23:00:00.000+00:00 |
| wid-sec-w-2022-1595 | Eclipse Jetty: Schwachstelle ermöglicht Offenlegung von Informationen | 2021-06-09T22:00:00.000+00:00 | 2025-05-29T22:00:00.000+00:00 |
| wid-sec-w-2024-1049 | Rsync: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2021-06-09T22:00:00.000+00:00 | 2024-05-07T22:00:00.000+00:00 |
| wid-sec-w-2023-0619 | ImageMagick: Schwachstelle ermöglicht Denial of Service | 2021-06-10T22:00:00.000+00:00 | 2023-09-20T22:00:00.000+00:00 |
| wid-sec-w-2023-0765 | MongoDB: Schwachstelle ermöglicht Manipulation von Dateien | 2021-06-13T22:00:00.000+00:00 | 2024-01-21T23:00:00.000+00:00 |
| wid-sec-w-2023-2729 | Red Hat Ceph Storage: Mehrere Schwachstellen | 2021-06-15T22:00:00.000+00:00 | 2023-10-23T22:00:00.000+00:00 |
| wid-sec-w-2023-2219 | OTRS: Mehrere Schwachstellen | 2021-06-16T22:00:00.000+00:00 | 2023-08-30T22:00:00.000+00:00 |
| wid-sec-w-2022-1114 | QEMU: Mehrere Schwachstellen ermöglichen Denial of Service | 2021-06-17T22:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2023-0663 | PHPMailer: Mehrere Schwachstellen ermöglichen Codeausführung | 2021-06-17T22:00:00.000+00:00 | 2023-03-15T23:00:00.000+00:00 |
| wid-sec-w-2022-1115 | QEMU: Schwachstelle ermöglicht Denial of Service | 2021-06-20T22:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2023-1633 | ImageMagick: Schwachstelle ermöglicht Denial of Service | 2021-06-20T22:00:00.000+00:00 | 2024-08-05T22:00:00.000+00:00 |
| wid-sec-w-2022-1536 | Dovecot: Mehrere Schwachstellen | 2021-06-21T22:00:00.000+00:00 | 2025-02-02T23:00:00.000+00:00 |
| wid-sec-w-2022-1596 | Eclipse Jetty: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2021-06-22T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2022-1219 | QEMU: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen | 2021-06-23T22:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2022-1356 | Ansible: Schwachstelle ermöglicht Offenlegung von Informationen | 2021-06-24T22:00:00.000+00:00 | 2024-01-23T23:00:00.000+00:00 |
| wid-sec-w-2022-0243 | Linux Kernel: Schwachstelle ermöglicht Privilegieneskalation | 2021-06-27T22:00:00.000+00:00 | 2025-10-01T22:00:00.000+00:00 |
| wid-sec-w-2022-1646 | Red Hat OpenShift: Mehrere Schwachstellen ermöglichen Codeausführung | 2021-06-28T22:00:00.000+00:00 | 2022-12-19T23:00:00.000+00:00 |
| wid-sec-w-2022-2258 | RabbitMQ: Mehrere Schwachstellen ermöglichen Cross-Site Scripting | 2021-06-28T22:00:00.000+00:00 | 2024-12-09T23:00:00.000+00:00 |
| wid-sec-w-2022-0721 | Red Hat Enterprise Linux: Mehrere Schwachstellen | 2021-06-29T22:00:00.000+00:00 | 2024-12-19T23:00:00.000+00:00 |
| wid-sec-w-2022-1577 | PHP: Mehrere Schwachstellen | 2021-06-30T22:00:00.000+00:00 | 2023-09-13T22:00:00.000+00:00 |
| wid-sec-w-2022-1725 | libvirt: Schwachstelle ermöglicht Offenlegung von Informationen | 2021-06-30T22:00:00.000+00:00 | 2024-04-01T22:00:00.000+00:00 |
| wid-sec-w-2024-0042 | Node.js: Mehrere Schwachstellen | 2021-07-01T22:00:00.000+00:00 | 2024-05-09T22:00:00.000+00:00 |
| wid-sec-w-2024-3632 | Cacti RRDtool: Mehrere Schwachstellen | 2021-07-05T22:00:00.000+00:00 | 2024-12-08T23:00:00.000+00:00 |
| wid-sec-w-2022-0609 | Linux Kernel: Schwachstelle ermöglicht Erlangen von Systemrechten | 2021-07-07T22:00:00.000+00:00 | 2025-10-12T22:00:00.000+00:00 |
| wid-sec-w-2022-1305 | Ruby: Mehrere Schwachstellen | 2021-07-07T22:00:00.000+00:00 | 2025-04-22T22:00:00.000+00:00 |
| wid-sec-w-2023-2458 | Redis: Schwachstelle ermöglicht Codeausführung | 2021-07-11T22:00:00.000+00:00 | 2023-09-27T22:00:00.000+00:00 |
| wid-sec-w-2023-3218 | PuTTY: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2021-07-11T22:00:00.000+00:00 | 2024-04-25T22:00:00.000+00:00 |
| wid-sec-w-2022-1116 | Apache Tomcat: Mehrere Schwachstellen | 2021-07-12T22:00:00.000+00:00 | 2023-09-27T22:00:00.000+00:00 |
| wid-sec-w-2024-1897 | Microsoft Exchange Server: Mehrere Schwachstellen | 2021-07-13T22:00:00.000+00:00 | 2024-08-21T22:00:00.000+00:00 |
| wid-sec-w-2022-2138 | binutils: Schwachstelle ermöglicht Denial of Service | 2021-07-14T22:00:00.000+00:00 | 2022-11-29T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2007:0089 | Red Hat Security Advisory: php security update for Stronghold | 2007-02-26T09:49:00+00:00 | 2025-11-21T17:31:18+00:00 |
| rhsa-2007:0085 | Red Hat Security Advisory: kernel security update | 2007-02-27T07:41:00+00:00 | 2025-11-21T17:31:17+00:00 |
| rhsa-2007:0078 | Red Hat Security Advisory: thunderbird security update | 2007-03-02T18:27:00+00:00 | 2025-11-21T17:31:15+00:00 |
| rhsa-2007:0096 | Red Hat Security Advisory: mod_jk security update | 2007-03-02T18:30:00+00:00 | 2025-11-21T17:31:23+00:00 |
| rhsa-2007:0106 | Red Hat Security Advisory: gnupg security update | 2007-03-06T09:15:00+00:00 | 2025-11-21T17:31:20+00:00 |
| rhsa-2007:0075 | Red Hat Security Advisory: spamassassin security update | 2007-03-13T23:23:00+00:00 | 2025-11-21T17:31:18+00:00 |
| rhsa-2007:0107 | Red Hat Security Advisory: gnupg security update | 2007-03-14T00:18:00+00:00 | 2025-11-21T17:31:20+00:00 |
| rhsa-2007:0108 | Red Hat Security Advisory: thunderbird security update | 2007-03-14T00:24:00+00:00 | 2025-11-21T17:31:20+00:00 |
| rhsa-2007:0087 | Red Hat Security Advisory: ekiga security update | 2007-03-14T00:47:00+00:00 | 2025-11-21T17:31:18+00:00 |
| rhsa-2007:0082 | Red Hat Security Advisory: php security update | 2007-03-14T02:01:00+00:00 | 2025-11-21T17:31:17+00:00 |
| rhsa-2007:0057 | Red Hat Security Advisory: bind security update | 2007-03-14T04:51:00+00:00 | 2025-11-21T17:31:09+00:00 |
| rhsa-2007:0061 | Red Hat Security Advisory: samba security update | 2007-03-14T04:55:00+00:00 | 2025-11-21T17:31:09+00:00 |
| rhsa-2007:0097 | Red Hat Security Advisory: firefox security update | 2007-03-14T05:02:00+00:00 | 2025-11-21T17:31:20+00:00 |
| rhsa-2007:0114 | Red Hat Security Advisory: xen security update | 2007-03-14T05:06:00+00:00 | 2025-11-21T17:31:20+00:00 |
| rhsa-2007:0068 | Red Hat Security Advisory: postgresql security update | 2007-03-14T05:07:00+00:00 | 2025-11-21T17:31:12+00:00 |
| rhsa-2007:0099 | Red Hat Security Advisory: kernel security and bug fix update | 2007-03-14T05:22:00+00:00 | 2025-11-21T17:31:20+00:00 |
| rhsa-2007:0066 | Red Hat Security Advisory: wireshark security update | 2007-03-14T16:29:00+00:00 | 2025-11-21T17:31:10+00:00 |
| rhsa-2007:0055 | Red Hat Security Advisory: libwpd security update | 2007-03-16T14:18:00+00:00 | 2025-11-21T17:31:08+00:00 |
| rhsa-2007:0033 | Red Hat Security Advisory: openoffice.org security update | 2007-03-22T10:37:00+00:00 | 2025-11-21T17:31:07+00:00 |
| rhsa-2007:0069 | Red Hat Security Advisory: openoffice.org security update | 2007-03-22T13:40:00+00:00 | 2025-11-21T17:31:12+00:00 |
| rhsa-2007:0124 | Red Hat Security Advisory: file security update | 2007-03-23T10:08:00+00:00 | 2025-11-21T17:31:22+00:00 |
| rhsa-2007:0095 | Red Hat Security Advisory: krb5 security update | 2007-04-03T18:20:00+00:00 | 2025-11-21T17:31:19+00:00 |
| rhsa-2007:0132 | Red Hat Security Advisory: libXfont security update | 2007-04-03T18:30:00+00:00 | 2025-11-21T17:31:23+00:00 |
| rhsa-2007:0127 | Red Hat Security Advisory: xorg-x11-server security update | 2007-04-03T18:43:00+00:00 | 2025-11-21T17:31:22+00:00 |
| rhsa-2007:0126 | Red Hat Security Advisory: xorg-x11 security update | 2007-04-03T18:48:00+00:00 | 2025-11-21T17:31:22+00:00 |
| rhsa-2007:0131 | Red Hat Security Advisory: squid security update | 2007-04-03T18:53:00+00:00 | 2025-11-21T17:31:22+00:00 |
| rhsa-2007:0152 | Red Hat Security Advisory: mysql security update | 2007-04-03T18:58:00+00:00 | 2025-11-21T17:31:25+00:00 |
| rhsa-2007:0125 | Red Hat Security Advisory: XFree86 security update | 2007-04-03T19:10:00+00:00 | 2025-11-21T17:31:22+00:00 |
| rhsa-2007:0164 | Red Hat Security Advisory: mod_jk security update | 2007-04-12T23:31:00+00:00 | 2025-11-21T17:31:27+00:00 |
| rhsa-2007:0162 | Red Hat Security Advisory: php security update | 2007-04-16T11:24:00+00:00 | 2025-11-21T17:31:26+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-19-043-06 | ICSA-19-043-06 Siemens CP1604 and CP1616 (Update A) | 2019-01-08T00:00:00.000000Z | 2019-07-09T00:00:00.000000Z |
| icsa-19-010-01 | Emerson DeltaV | 2019-01-10T00:00:00.000000Z | 2019-01-10T00:00:00.000000Z |
| icsa-19-010-02 | Omron CX-One CX-Protocol | 2019-01-10T00:00:00.000000Z | 2019-01-10T00:00:00.000000Z |
| icsa-19-010-03 | Pilz PNOZmulti Configurator | 2019-01-10T00:00:00.000000Z | 2019-01-10T00:00:00.000000Z |
| icsa-19-015-01 | LCDS - Leão Consultoria e Desenvolvimento de Sistemas Ltda ME LAquis SCADA | 2019-01-15T00:00:00.000000Z | 2019-01-15T00:00:00.000000Z |
| icsa-19-017-01 | Omron CX-Supervisor (Update A) | 2019-01-17T00:00:00.000000Z | 2019-02-07T00:00:00.000000Z |
| icsa-19-017-02 | ABB CP400 Panel Builder TextEditor 2.0 | 2019-01-17T00:00:00.000000Z | 2019-01-17T00:00:00.000000Z |
| icsa-19-017-03 | ControlByWeb X-320M | 2019-01-17T00:00:00.000000Z | 2019-01-17T00:00:00.000000Z |
| icsa-19-022-01 | Johnson Controls Facility Explorer | 2019-01-22T00:00:00.000000Z | 2019-01-22T00:00:00.000000Z |
| icsma-19-022-01 | Dräger Infinity Delta | 2019-01-22T00:00:00.000000Z | 2019-01-22T00:00:00.000000Z |
| icsa-19-024-01 | Advantech WebAccess/SCADA | 2019-01-24T00:00:00.000000Z | 2019-01-24T00:00:00.000000Z |
| icsa-19-024-02 | PHOENIX CONTACT FL SWITCH | 2019-01-24T00:00:00.000000Z | 2019-01-24T00:00:00.000000Z |
| icsa-19-029-01 | Yokogawa License Manager Service | 2019-01-29T00:00:00.000000Z | 2019-01-29T00:00:00.000000Z |
| icsa-19-029-03 | AVEVA Wonderware System Platform | 2019-01-29T00:00:00.000000Z | 2019-01-29T00:00:00.000000Z |
| icsma-19-029-01 | Stryker Medical Beds | 2019-01-29T00:00:00.000000Z | 2019-01-29T00:00:00.000000Z |
| icsma-19-029-02 | BD FACSLyric (Update A) | 2019-01-29T00:00:00.000000Z | 2019-02-05T00:00:00.000000Z |
| icsa-19-029-02 | Mitsubishi Electric MELSEC-Q Series PLCs | 2019-01-29T07:00:00.000000Z | 2025-06-24T06:00:00.000000Z |
| icsa-19-031-01 | Schneider Electric EVLink Parking | 2019-01-31T00:00:00.000000Z | 2019-01-31T00:00:00.000000Z |
| icsa-19-031-02 | IDenticard PremiSys (Update A) | 2019-01-31T00:00:00.000000Z | 2019-04-04T00:00:00.000000Z |
| icsa-19-036-01 | AVEVA InduSoft Web Studio and InTouch Edge HMI | 2019-02-05T00:00:00.000000Z | 2019-02-05T00:00:00.000000Z |
| icsa-19-036-02 | Rockwell Automation EtherNet/IP Web Server Modules | 2019-02-05T00:00:00.000000Z | 2019-02-05T00:00:00.000000Z |
| icsa-19-036-03 | WECON LeviStudioU (Update A) | 2019-02-05T00:00:00.000000Z | 2019-09-19T00:00:00.000000Z |
| icsa-19-036-05 | Kunbus PR100088 Modbus Gateway (Update B) | 2019-02-05T00:00:00.000000Z | 2019-02-28T00:00:00.000000Z |
| icsa-19-043-01 | OSIsoft PI Vision | 2019-02-12T00:00:00.000000Z | 2019-02-12T00:00:00.000000Z |
| icsa-19-043-02 | ICSA-19-043-02 Siemens EN100 Ethernet Communication Module and SIPROTEC 5 Relays | 2019-02-12T00:00:00.000000Z | 2019-02-12T00:00:00.000000Z |
| icsa-19-043-03 | WIBU SYSTEMS AG WibuKey Digital Rights Management (Update D) | 2019-02-12T00:00:00.000000Z | 2019-05-14T00:00:00.000000Z |
| icsa-19-043-05 | Siemens Intel Active Management Technology of SIMATIC IPCs | 2019-02-12T00:00:00.000000Z | 2020-02-10T00:00:00.000000Z |
| icsa-19-045-01 | Pangea Communications Internet FAX ATA | 2019-02-14T00:00:00.000000Z | 2019-02-14T00:00:00.000000Z |
| icsa-19-050-01 | Intel Data Center Manager SDK | 2019-02-19T00:00:00.000000Z | 2019-02-19T00:00:00.000000Z |
| icsa-19-050-02 | Delta Industrial Automation CNCSoft | 2019-02-19T00:00:00.000000Z | 2019-02-19T00:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-20200108-anyconnect-hijack | Cisco AnyConnect Secure Mobility Client for Android Service Hijack Vulnerability | 2020-01-08T16:00:00+00:00 | 2020-01-08T16:00:00+00:00 |
| cisco-sa-20200108-cnca-xss | Cisco Crosswork Change Automation Cross-Site Scripting Vulnerability | 2020-01-08T16:00:00+00:00 | 2020-01-08T16:00:00+00:00 |
| cisco-sa-20200108-cvp-direct-obj-ref | Cisco Unified Customer Voice Portal Insecure Direct Object Reference Vulnerability | 2020-01-08T16:00:00+00:00 | 2020-01-08T16:00:00+00:00 |
| cisco-sa-20200108-dcaf-xss | Cisco Data Center Analytics Framework Cross-Site Scripting Vulnerability | 2020-01-08T16:00:00+00:00 | 2020-01-08T16:00:00+00:00 |
| cisco-sa-20200108-er-xss | Cisco Emergency Responder Stored Cross-Site Scripting Vulnerability | 2020-01-08T16:00:00+00:00 | 2020-01-08T16:00:00+00:00 |
| cisco-sa-20200108-finesse-xss | Cisco Finesse Cross-Site Scripting Vulnerability | 2020-01-08T16:00:00+00:00 | 2020-03-30T21:00:57+00:00 |
| cisco-sa-20200108-ios-csrf | Cisco IOS and Cisco IOS XE Software Web UI Cross-Site Request Forgery Vulnerability | 2020-01-08T16:00:00+00:00 | 2020-04-28T17:46:50+00:00 |
| cisco-sa-20200108-iphone-xss | Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware Cross-Site Scripting Vulnerability | 2020-01-08T16:00:00+00:00 | 2020-01-08T16:00:00+00:00 |
| cisco-sa-20200108-ise-auth-bypass | Cisco Identity Services Engine Authorization Bypass Vulnerability | 2020-01-08T16:00:00+00:00 | 2020-01-08T16:00:00+00:00 |
| cisco-sa-20200108-mme-dos | Cisco Mobility Management Entity Denial of Service Vulnerability | 2020-01-08T16:00:00+00:00 | 2020-01-08T16:00:00+00:00 |
| cisco-sa-20200108-ucs-dir-infodis | Cisco UCS Director Information Disclosure Vulnerability | 2020-01-08T16:00:00+00:00 | 2020-01-08T16:00:00+00:00 |
| cisco-sa-20200108-vdsd-auth-bypass | Cisco Vision Dynamic Signage Director Authentication Bypass Vulnerability | 2020-01-08T16:00:00+00:00 | 2020-01-08T16:00:00+00:00 |
| cisco-sa-20200108-webex-centers-dos | Cisco Webex Centers Denial of Service Vulnerability | 2020-01-08T16:00:00+00:00 | 2020-01-08T16:00:00+00:00 |
| cisco-sa-20200108-webex-video | Cisco Webex Video Mesh Node Command Injection Vulnerability | 2020-01-08T16:00:00+00:00 | 2020-01-08T16:00:00+00:00 |
| cisco-sa-20200122-cuc-info-disclosure | Cisco Unified Communications Manager Information Disclosure Vulnerability | 2020-01-22T16:00:00+00:00 | 2020-01-22T16:00:00+00:00 |
| cisco-sa-20200122-fmc-auth | Cisco Firepower Management Center Lightweight Directory Access Protocol Authentication Bypass Vulnerability | 2020-01-22T16:00:00+00:00 | 2020-01-22T16:00:00+00:00 |
| cisco-sa-20200122-hcm-f-csrf | Cisco Hosted Collaboration Mediation Fulfillment Cross-Site Request Forgery Vulnerability | 2020-01-22T16:00:00+00:00 | 2020-01-22T16:00:00+00:00 |
| cisco-sa-20200122-ios-xr-bgp-dos | Cisco IOS XR Software Border Gateway Protocol Attribute Denial of Service Vulnerability | 2020-01-22T16:00:00+00:00 | 2020-01-22T16:00:00+00:00 |
| cisco-sa-20200122-ios-xr-dos | Cisco IOS XR Software Intermediate System-to-Intermediate System Denial of Service Vulnerability | 2020-01-22T16:00:00+00:00 | 2020-02-19T18:42:41+00:00 |
| cisco-sa-20200122-ios-xr-evpn | Cisco IOS XR Software BGP EVPN Denial of Service Vulnerabilities | 2020-01-22T16:00:00+00:00 | 2020-02-07T16:48:01+00:00 |
| cisco-sa-20200122-ios-xr-routes | Cisco IOS XR Software BGP EVPN Operational Routes Denial of Service Vulnerability | 2020-01-22T16:00:00+00:00 | 2020-01-24T16:22:50+00:00 |
| cisco-sa-20200122-on-prem-dos | Cisco Smart Software Manager On-Prem Web Interface Denial of Service Vulnerability | 2020-01-22T16:00:00+00:00 | 2020-01-22T16:00:00+00:00 |
| cisco-sa-20200122-sbsms-xss | Cisco Small Business Smart and Managed Switches Cross-Site Scripting Vulnerability | 2020-01-22T16:00:00+00:00 | 2021-02-18T22:59:12+00:00 |
| cisco-sa-20200122-sdwan-cmd-inject | Cisco SD-WAN vManage Command Injection Vulnerability | 2020-01-22T16:00:00+00:00 | 2020-01-22T16:00:00+00:00 |
| cisco-sa-20200122-sdwan-priv-esc | Cisco SD-WAN Solution Local Privilege Escalation Vulnerability | 2020-01-22T16:00:00+00:00 | 2020-01-22T16:00:00+00:00 |
| cisco-sa-20200122-sdwan-sql-inject | Cisco SD-WAN Solution SQL Injection Vulnerability | 2020-01-22T16:00:00+00:00 | 2020-01-22T16:00:00+00:00 |
| cisco-sa-20200122-sdwan-sqlinj | Cisco SD-WAN Solution SQL Injection Vulnerability | 2020-01-22T16:00:00+00:00 | 2020-01-22T16:00:00+00:00 |
| cisco-sa-20200122-uc-xss | Cisco Unity Connection Stored Cross-Site Scripting Vulnerability | 2020-01-22T16:00:00+00:00 | 2020-01-22T16:00:00+00:00 |
| cisco-sa-20200122-umbrella-msi-install | Cisco Umbrella Roaming Client for Windows Install Vulnerability | 2020-01-22T16:00:00+00:00 | 2020-01-22T16:00:00+00:00 |
| cisco-sa-20200122-wsa-sma-header-inject | Cisco Web Security Appliance and Cisco Content Security Management Appliance HTTP Header Injection Vulnerability | 2020-01-22T16:00:00+00:00 | 2020-02-03T16:50:10+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2021-20233 | A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | 2021-03-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-20255 | A stack overflow via an infinite recursion vulnerability was found in the eepro100 i8255x device emulator of QEMU. This issue occurs while processing controller commands due to a DMA reentry issue. This flaw allows a guest user or process to consume CPU cycles or crash the QEMU process on the host resulting in a denial of service. The highest threat from this vulnerability is to system availability. | 2021-03-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2021-20268 | An out-of-bounds access flaw was found in the Linux kernel's implementation of the eBPF code verifier in the way a user running the eBPF script calls dev_map_init_map or sock_map_alloc. This flaw allows a local user to crash the system or possibly escalate their privileges. The highest threat from this vulnerability is to confidentiality integrity as well as system availability. | 2021-03-02T00:00:00.000Z | 2021-03-25T00:00:00.000Z |
| msrc_cve-2021-20270 | An infinite loop in SMLLexer in Pygments versions 1.5 to 2.7.3 may lead to denial of service when performing syntax highlighting of a Standard ML (SML) source file as demonstrated by input that only contains the "exception" keyword. | 2021-03-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2021-20271 | A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package whose signature header was modified to cause RPM database corruption and execute code. The highest threat from this vulnerability is to data integrity confidentiality and system availability. | 2021-03-02T00:00:00.000Z | 2021-04-01T00:00:00.000Z |
| msrc_cve-2021-20286 | A flaw was found in libnbd 1.7.3. An assertion failure in nbd_unlocked_opt_go in ilb/opt.c may lead to denial of service. | 2021-03-02T00:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2021-21334 | environment variable leak | 2021-03-02T00:00:00.000Z | 2021-07-16T00:00:00.000Z |
| msrc_cve-2021-22134 | A document disclosure flaw was found in Elasticsearch versions after 7.6.0 and before 7.11.0 when Document or Field Level Security is used. Get requests do not properly apply security permissions when executing a query against a recently updated document. This affects documents that have been updated and not yet refreshed in the index. This could result in the search disclosing the existence of documents and fields the attacker should not be able to view. | 2021-03-02T00:00:00.000Z | 2021-12-01T00:00:00.000Z |
| msrc_cve-2021-23358 | Arbitrary Code Injection | 2021-03-02T00:00:00.000Z | 2025-09-03T21:42:37.000Z |
| msrc_cve-2021-24032 | Beginning in v1.4.1 and prior to v1.4.9 due to an incomplete fix for CVE-2021-24031 the Zstandard command-line utility created output files with default permissions and restricted those permissions immediately afterwards. Output files could therefore momentarily be readable or writable to unintended parties. | 2021-03-02T00:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2021-27291 | In pygments 1.1+ fixed in 2.7.4 the lexers used to parse programming languages rely heavily on regular expressions. Some of the regular expressions have exponential or cubic worst-case complexity and are vulnerable to ReDoS. By crafting malicious input an attacker can cause a denial of service. | 2021-03-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2021-27363 | An issue was discovered in the Linux kernel through 5.11.3. A kernel pointer leak can be used to determine the address of the iscsi_transport structure. When an iSCSI transport is registered with the iSCSI subsystem the transport's handle is available to unprivileged users via the sysfs file system at /sys/class/iscsi_transport/$TRANSPORT_NAME/handle. When read the show_transport_handle function (in drivers/scsi/scsi_transport_iscsi.c) is called which leaks the handle. This handle is actually the pointer to an iscsi_transport struct in the kernel module's global variables. | 2021-03-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-27364 | An issue was discovered in the Linux kernel through 5.11.3. drivers/scsi/scsi_transport_iscsi.c is adversely affected by the ability of an unprivileged user to craft Netlink messages. | 2021-03-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-27365 | An issue was discovered in the Linux kernel through 5.11.3. Certain iSCSI data structures do not have appropriate length constraints or checks and can exceed the PAGE_SIZE value. An unprivileged user can send a Netlink message that is associated with iSCSI and has a length up to the maximum length of a Netlink message. | 2021-03-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-27506 | The ClamAV Engine (version 0.103.1 and below) component embedded in Storsmshield Network Security (SNS) is subject to DoS in case of parsing of malformed png files. This affect Netasq versions 9.1.0 to 9.1.11 and SNS versions 1.0.0 to 4.2.0. This issue is fixed in SNS 3.7.19 3.11.7 and 4.2.1. | 2021-03-02T00:00:00.000Z | 2021-03-25T00:00:00.000Z |
| msrc_cve-2021-27918 | encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a custom TokenReader (for xml.NewTokenDecoder) returns EOF in the middle of an element. This can occur in the Decode DecodeElement or Skip method. | 2021-03-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2021-27928 | A remote code execution issue was discovered in MariaDB 10.2 before 10.2.37 10.3 before 10.3.28 10.4 before 10.4.18 and 10.5 before 10.5.9; Percona Server through 2021-03-03; and the wsrep patch through 2021-03-03 for MySQL. An untrusted search path leads to eval injection in which a database SUPER user can execute OS commands after modifying wsrep_provider and wsrep_notify_cmd. NOTE: this does not affect an Oracle product. | 2021-03-02T00:00:00.000Z | 2021-03-27T00:00:00.000Z |
| msrc_cve-2021-28041 | ssh-agent in OpenSSH before 8.5 has a double free that may be relevant in a few less-common scenarios such as unconstrained agent-socket access on a legacy operating system or the forwarding of an agent to an attacker-controlled host. | 2021-03-02T00:00:00.000Z | 2021-03-10T00:00:00.000Z |
| msrc_cve-2021-28153 | An issue was discovered in GNOME GLib before 2.66.8. When g_file_replace() is used with G_FILE_CREATE_REPLACE_DESTINATION to replace a path that is a dangling symlink it incorrectly also creates the target of the symlink as an empty file which could conceivably have security relevance if the symlink is attacker-controlled. (If the path is a symlink to a file that already exists then the contents of that file correctly remain unchanged.) | 2021-03-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-28361 | An issue was discovered in Storage Performance Development Kit (SPDK) before 20.01.01. If a PDU is sent to the iSCSI target with a zero length (but data is expected) the iSCSI target can crash with a NULL pointer dereference. | 2021-03-02T00:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2021-28375 | An issue was discovered in the Linux kernel through 5.11.6. fastrpc_internal_invoke in drivers/misc/fastrpc.c does not prevent user applications from sending kernel RPC messages aka CID-20c40794eb85. This is a related issue to CVE-2019-2308. | 2021-03-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-28543 | Varnish varnish-modules before 0.17.1 allows remote attackers to cause a denial of service (daemon restart) in some configurations. This does not affect organizations that only install the Varnish Cache product; however, it is common to install both Varnish Cache and varnish-modules. Specifically, an assertion failure or NULL pointer dereference can be triggered in Varnish Cache through the varnish-modules header.append() and header.copy() functions. For some Varnish Configuration Language (VCL) files, this gives remote clients an opportunity to cause a Varnish Cache restart. A restart reduces overall availability and performance due to an increased number of cache misses, and may cause higher load on backend servers. | 2021-03-02T00:00:00.000Z | 2025-10-01T23:11:09.000Z |
| msrc_cve-2021-28660 | rtw_wx_set_scan in drivers/staging/rtl8188eu/os_dep/ioctl_linux.c in the Linux kernel through 5.11.6 allows writing beyond the end of the ->ssid[] array. NOTE: from the perspective of kernel.org releases CVE IDs are not normally used for drivers/staging/* (unfinished work); however system integrators may have situations in which a drivers/staging issue is relevant to their own customer base. | 2021-03-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-28831 | decompress_gunzip.c in BusyBox through 1.32.1 mishandles the error bit on the huft_build result pointer with a resultant invalid free or segmentation fault via malformed gzip data. | 2021-03-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-28950 | An issue was discovered in fs/fuse/fuse_i.h in the Linux kernel before 5.11.8. A "stall on CPU" can occur because a retry loop continually finds the same bad inode aka CID-775c5033a0d1. | 2021-03-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-28951 | An issue was discovered in fs/io_uring.c in the Linux kernel through 5.11.8. It allows attackers to cause a denial of service (deadlock) because exit may be waiting to park a SQPOLL thread but concurrently that SQPOLL thread is waiting for a signal to start aka CID-3ebba796fa25. | 2021-03-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-28952 | An issue was discovered in the Linux kernel through 5.11.8. The sound/soc/qcom/sdm845.c soundwire device driver has a buffer overflow when an unexpected port ID number is encountered aka CID-1c668e1c0a0f. (This has been fixed in 5.12-rc4.) | 2021-03-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-28957 | An XSS vulnerability was discovered in python-lxml's clean module versions before 4.6.3. When disabling the safe_attrs_only and forms arguments the Cleaner class does not remove the formaction attribute allowing for JS to bypass the sanitizer. A remote attacker could exploit this flaw to run arbitrary JS code on users who interact with incorrectly sanitized HTML. This issue is patched in lxml 4.6.3. | 2021-03-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-28964 | A race condition was discovered in get_old_root in fs/btrfs/ctree.c in the Linux kernel through 5.11.8. It allows attackers to cause a denial of service (BUG) because of a lack of locking on an extent buffer before a cloning operation aka CID-dbcc7d57bffc. | 2021-03-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-28971 | In intel_pmu_drain_pebs_nhm in arch/x86/events/intel/ds.c in the Linux kernel through 5.11.8 on some Haswell CPUs userspace applications (such as perf-fuzzer) can cause a system crash because the PEBS status in a PEBS record is mishandled aka CID-d88d05a9e0b6. | 2021-03-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202001-1252 | A vulnerability exists in the Aruba AirWave Management Platform 8.x prior to 8.2 in the m… | 2022-05-04T09:26:12.722000Z |
| var-200312-0225 | Zebra 0.93b and earlier, and quagga before 0.95, allows local users to cause a denial of … | 2022-05-04T09:27:10.210000Z |
| var-200312-0227 | The vty layer in Quagga before 0.96.4, and Zebra 0.93b and earlier, does not verify that … | 2022-05-04T09:27:10.240000Z |
| var-202112-2480 | Missing DLLs, if replaced by an insider, could allow an attacker to achieve local privile… | 2022-05-04T09:27:27.309000Z |
| var-202112-2350 | Certain NETGEAR devices are affected by command injection by an authenticated user. This … | 2022-05-04T09:27:27.423000Z |
| var-202112-1089 | The ioLogik E1242 series are daisy-chain Ethernet switches that support the most commonly… | 2022-05-04T09:27:31.098000Z |
| var-202108-2569 | 207W Network Camera is a network camera. AXIS 207W Network Camera has an unauthorized… | 2022-05-04T09:27:35.688000Z |
| var-202108-2548 | Hangzhou Hikvision System Technology Co., Ltd. is a smart IoT solution provider and opera… | 2022-05-04T09:27:35.702000Z |
| var-202108-2527 | Shenzhen Airspace Technology Co., Ltd. ("Airspace Technology" for short) is a network com… | 2022-05-04T09:27:35.713000Z |
| var-202108-2506 | Lexmark (NYSE: LXK) is an American company that is a developer and manufacturer of laser … | 2022-05-04T09:27:35.725000Z |
| var-202108-2485 | Axis is an IT company that specializes in providing network video solutions. AXIS P55… | 2022-05-04T09:27:35.736000Z |
| var-202108-2464 | SCX-8123 is a multifunction printer of Samsung (China) Investment Co., Ltd. Samsung (… | 2022-05-04T09:27:35.745000Z |
| var-202108-2443 | SCX-8025 is a multi-function printer of Samsung (China) Investment Co., Ltd. Samsung … | 2022-05-04T09:27:35.756000Z |
| var-202108-2422 | Cisco Systems (China) Network Technology Co., Ltd., business scope: research and developm… | 2022-05-04T09:27:35.768000Z |
| var-202108-2401 | Matsushita Electric (China) Co., Ltd. is a manufacturer mainly responsible for the sales … | 2022-05-04T09:27:35.781000Z |
| var-202108-2380 | Fuji Xerox (China) Co., Ltd. was established on January 3, 1995. It is a wholly-owned hol… | 2022-05-04T09:27:35.793000Z |
| var-202108-2359 | SL-M4075FR is a printer device of Samsung (China) Investment Co., Ltd. Samsung (China… | 2022-05-04T09:27:35.804000Z |
| var-202108-2338 | Sharp Trading (China) Co., Ltd. is a foreign-funded enterprise that distributes and whole… | 2022-05-04T09:27:35.816000Z |
| var-202108-2317 | PRTG Network Monitor is a computer network monitor that can monitor network computers, ro… | 2022-05-04T09:27:35.827000Z |
| var-202108-2296 | NR255G is a router of Shenzhen Leike Industrial Co., Ltd. Shenzhen Leike Industrial C… | 2022-05-04T09:27:35.838000Z |
| var-202107-1905 | Seiko Cloud MES is mainly aimed at on-site management of small and medium-sized manufactu… | 2022-05-04T09:27:40.408000Z |
| var-202107-1884 | Axis is an IT company that specializes in providing network video solutions. AXIS 241… | 2022-05-04T09:27:40.420000Z |
| var-202107-1863 | HP LaserJet Pro M706n is a printer of Hewlett-Packard Trading (Shanghai) Co., Ltd. Th… | 2022-05-04T09:27:40.433000Z |
| var-202107-1842 | TRENDnet is one of the world's major data network professional manufacturers, headquarter… | 2022-05-04T09:27:40.444000Z |
| var-202107-1821 | Razer Phone2 is a smart phone of the Razer brand series. Razer Phone2 has an informat… | 2022-05-04T09:27:40.455000Z |
| var-202107-1800 | Shenzhen Huashi Meida Information Technology Co., Ltd. is a smart hotel IT service provid… | 2022-05-04T09:27:40.470000Z |
| var-202107-1779 | FWB, FAC series is a router of Shenzhen Xunjie Communication Technology Co., Ltd., includ… | 2022-05-04T09:27:40.482000Z |
| var-202107-1758 | Hewlett-Packard Trading (Shanghai) Co., Ltd. is a company whose business scope includes c… | 2022-05-04T09:27:40.493000Z |
| var-202107-1737 | P1355 is a network camera of Axis Communications AB. Axis Communications AB P1355 has… | 2022-05-04T09:27:40.502000Z |
| var-202107-1716 | Huawei HG659 is a home gateway. Huawei HG659 has arbitrary file reading vulnerabiliti… | 2022-05-04T09:27:40.512000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2014-000004 | NeoFiler vulnerable to directory traversal | 2014-01-10T14:44+09:00 | 2014-01-15T12:32+09:00 |
| jvndb-2014-000005 | EC-CUBE vulnerable to information alteration | 2014-01-22T15:27+09:00 | 2014-01-27T09:51+09:00 |
| jvndb-2014-000006 | EC-CUBE vulnerable to authorization bypass | 2014-01-22T15:28+09:00 | 2024-05-15T14:59+09:00 |
| jvndb-2014-000007 | Information disclosure vulnerability in Sleipnir Mobile for Android | 2014-01-22T15:29+09:00 | 2014-01-27T09:47+09:00 |
| jvndb-2014-001203 | A Problem of CPU Consumption in Host Data Collector bundled with Hitachi Device Manager Software | 2014-01-22T18:06+09:00 | 2015-03-03T16:59+09:00 |
| jvndb-2014-000008 | SimZip (Simple Zip Viewer) vulnerable to directory traversal | 2014-01-24T12:34+09:00 | 2014-01-28T18:03+09:00 |
| jvndb-2014-000009 | OpenPNE vulnerable to PHP Object Injection | 2014-01-24T12:36+09:00 | 2014-01-28T18:02+09:00 |
| jvndb-2014-000010 | Multiple SQL injection vulnerabilities in Cybozu Garoon | 2014-01-28T14:40+09:00 | 2014-01-30T14:22+09:00 |
| jvndb-2014-000011 | Sanshiro Series vulnerable to arbitrary code execution | 2014-01-28T14:48+09:00 | 2014-01-30T14:24+09:00 |
| jvndb-2014-000013 | Joyful Note vulnerable to cross-site scripting | 2014-01-31T13:41+09:00 | 2014-02-04T17:38+09:00 |
| jvndb-2014-000014 | Opera browser for Android issue in handling intent scheme URL's | 2014-02-06T12:20+09:00 | 2014-02-10T19:09+09:00 |
| jvndb-2014-000015 | phpMyFAQ vulnerable to cross-site scripting | 2014-02-07T12:25+09:00 | 2014-02-20T14:00+09:00 |
| jvndb-2014-000016 | phpMyFAQ vulnerable to cross-site request forgery | 2014-02-07T12:26+09:00 | 2014-02-20T13:58+09:00 |
| jvndb-2014-000017 | Apache Commons FileUpload vulnerable to denial-of-service (DoS) | 2014-02-10T17:21+09:00 | 2016-12-27T11:49+09:00 |
| jvndb-2014-000012 | Blackboard Vista/CE vulnerable to cross-site scripting | 2014-02-21T14:12+09:00 | 2014-02-25T16:40+09:00 |
| jvndb-2014-000019 | AutoCAD vulnerable to arbitrary VBScript execution | 2014-02-21T14:16+09:00 | 2014-02-25T16:39+09:00 |
| jvndb-2014-000020 | AutoCAD may insecurely load dynamic libraries | 2014-02-21T14:19+09:00 | 2014-02-25T16:38+09:00 |
| jvndb-2014-000025 | XooNIps vulnerable to cross-site scripting | 2014-02-26T15:19+09:00 | 2014-03-03T18:50+09:00 |
| jvndb-2014-000026 | Norman Security Suite vulnerable to privilege escalation | 2014-02-26T15:20+09:00 | 2014-03-03T18:47+09:00 |
| jvndb-2014-000021 | Cybozu Garoon vulnerable to session management | 2014-02-26T15:21+09:00 | 2014-03-03T18:45+09:00 |
| jvndb-2014-000022 | Denny's App for Android. contains an issue where it fails to verify SSL server certificates | 2014-02-26T15:21+09:00 | 2014-03-03T18:49+09:00 |
| jvndb-2014-000023 | Cybozu Garoon vulnerable to directory traversal | 2014-02-26T15:22+09:00 | 2014-03-03T18:44+09:00 |
| jvndb-2014-000024 | Cybozu Garoon vulnerable to SQL injection | 2014-02-26T15:23+09:00 | 2014-03-03T18:42+09:00 |
| jvndb-2014-001593 | JP1/Integrated Management - Service Support vulnerable to cross-site scripting | 2014-03-11T15:54+09:00 | 2015-03-03T16:59+09:00 |
| jvndb-2014-001594 | JP1/File Transmission Server / FTP vulnerable to access control violation | 2014-03-11T16:33+09:00 | 2015-03-03T16:59+09:00 |
| jvndb-2014-000030 | Demaecan for Android. contains an issue where it fails to verify SSL server certificates | 2014-03-17T13:43+09:00 | 2014-03-19T15:14+09:00 |
| jvndb-2014-000031 | Unzipper vulnerable to directory traversal | 2014-03-17T13:45+09:00 | 2014-03-19T15:15+09:00 |
| jvndb-2014-000027 | sp mode mail issue when accessing attachments in incoming mail | 2014-03-18T14:07+09:00 | 2014-03-24T19:04+09:00 |
| jvndb-2014-000028 | sp mode mail issue where emails in the process of creation may be accessed | 2014-03-18T14:08+09:00 | 2014-03-25T19:24+09:00 |
| jvndb-2014-000029 | sp mode mail vulnerability where Java methods may be executed | 2014-03-18T14:09+09:00 | 2014-03-25T19:25+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2016:2079-1 | Security update for libidn | 2016-08-16T07:29:11Z | 2016-08-16T07:29:11Z |
| suse-su-2016:2089-1 | Security update for squid3 | 2016-08-16T12:56:03Z | 2016-08-16T12:56:03Z |
| suse-su-2016:2090-1 | Security update for apache2 | 2016-08-17T07:33:22Z | 2016-08-17T07:33:22Z |
| suse-su-2016:2093-1 | Security update for xen | 2016-08-17T12:22:27Z | 2016-08-17T12:22:27Z |
| suse-su-2016:2097-1 | Security update for ctags | 2016-08-18T09:52:38Z | 2016-08-18T09:52:38Z |
| suse-su-2016:2100-1 | Security update for xen | 2016-08-18T12:48:09Z | 2016-08-18T12:48:09Z |
| suse-su-2016:2106-1 | Security update for python | 2016-08-19T08:31:23Z | 2016-08-19T08:31:23Z |
| suse-su-2016:2105-1 | Security update for the Linux Kernel | 2016-08-19T08:48:37Z | 2016-08-19T08:48:37Z |
| suse-su-2016:2107-1 | Security update for cracklib | 2016-08-19T10:58:52Z | 2016-08-19T10:58:52Z |
| suse-su-2016:2131-1 | Security update for MozillaFirefox | 2016-08-22T14:37:43Z | 2016-08-22T14:37:43Z |
| suse-su-2016:2136-1 | Security update for krb5 | 2016-08-23T13:21:32Z | 2016-08-23T13:21:32Z |
| suse-su-2016:2143-1 | Security update for several openstack-components | 2016-08-23T15:49:42Z | 2016-08-23T15:49:42Z |
| suse-su-2016:2146-1 | Security update for dosfstools | 2016-08-24T11:55:12Z | 2016-08-24T11:55:12Z |
| suse-su-2016:2145-1 | Security update for dosfstools | 2016-08-24T11:55:45Z | 2016-08-24T11:55:45Z |
| suse-su-2016:2147-1 | Security update for squid | 2016-08-24T12:03:27Z | 2016-08-24T12:03:27Z |
| suse-su-2016:2151-1 | Security update for rsync | 2016-08-24T13:43:54Z | 2016-08-24T13:43:54Z |
| suse-su-2016:2154-1 | Security update for xerces-c | 2016-08-25T10:58:13Z | 2016-08-25T10:58:13Z |
| suse-su-2016:2156-1 | Security update for glibc | 2016-08-25T13:04:20Z | 2016-08-25T13:04:20Z |
| suse-su-2016:2155-1 | Security update for curl | 2016-08-25T13:04:29Z | 2016-08-25T13:04:29Z |
| suse-su-2016:2175-1 | Security update for Linux Kernel Live Patch 6 for SLE 12 SP1 | 2016-08-29T09:25:38Z | 2016-08-29T09:25:38Z |
| suse-su-2016:2177-1 | Security update for Linux Kernel Live Patch 5 for SLE 12 SP1 | 2016-08-29T09:25:46Z | 2016-08-29T09:25:46Z |
| suse-su-2016:2180-1 | Security update for Linux Kernel Live Patch 4 for SLE 12 SP1 | 2016-08-29T09:25:55Z | 2016-08-29T09:25:55Z |
| suse-su-2016:2178-1 | Security update for Linux Kernel Live Patch 3 for SLE 12 SP1 | 2016-08-29T09:26:04Z | 2016-08-29T09:26:04Z |
| suse-su-2016:2179-1 | Security update for Linux Kernel Live Patch 2 for SLE 12 SP1 | 2016-08-29T09:26:12Z | 2016-08-29T09:26:12Z |
| suse-su-2016:2174-1 | Security update for Linux Kernel Live Patch 0 for SLE 12 SP1 | 2016-08-29T09:26:24Z | 2016-08-29T09:26:24Z |
| suse-su-2016:2181-1 | Security update for Linux Kernel Live Patch 1 for SLE 12 SP1 | 2016-08-29T09:26:33Z | 2016-08-29T09:26:33Z |
| suse-su-2016:2186-1 | Security update for fontconfig | 2016-08-30T07:31:20Z | 2016-08-30T07:31:20Z |
| suse-su-2016:2189-1 | Security update for libstorage | 2016-08-30T07:48:38Z | 2016-08-30T07:48:38Z |
| suse-su-2016:2188-1 | Security update for tomcat | 2016-08-30T07:49:43Z | 2016-08-30T07:49:43Z |
| suse-su-2016:2190-1 | Security update for fontconfig | 2016-08-30T07:52:30Z | 2016-08-30T07:52:30Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2020:0160-1 | Security update for python-reportlab | 2020-02-04T09:13:30Z | 2020-02-04T09:13:30Z |
| opensuse-su-2020:0162-1 | Security update for ucl | 2020-02-04T09:13:42Z | 2020-02-04T09:13:42Z |
| opensuse-su-2020:0163-1 | Security update for upx | 2020-02-04T09:13:50Z | 2020-02-04T09:13:50Z |
| opensuse-su-2020:0165-1 | Security update for wicked | 2020-02-04T17:13:11Z | 2020-02-04T17:13:11Z |
| opensuse-su-2020:0166-1 | Security update for e2fsprogs | 2020-02-04T17:13:21Z | 2020-02-04T17:13:21Z |
| opensuse-su-2020:0170-1 | Security update for ImageMagick | 2020-02-05T11:13:10Z | 2020-02-05T11:13:10Z |
| opensuse-su-2020:0179-1 | Security update for ucl | 2020-02-06T14:42:15Z | 2020-02-06T14:42:15Z |
| opensuse-su-2020:0180-1 | Security update for upx | 2020-02-06T14:46:47Z | 2020-02-06T14:46:47Z |
| opensuse-su-2020:0187-1 | Security update for ceph | 2020-02-08T15:12:58Z | 2020-02-08T15:12:58Z |
| opensuse-su-2020:0189-1 | Security update for chromium | 2020-02-08T23:11:40Z | 2020-02-08T23:11:40Z |
| opensuse-su-2020:0204-1 | Security update for nginx | 2020-02-11T17:12:54Z | 2020-02-11T17:12:54Z |
| opensuse-su-2020:0207-1 | Security update for wicked | 2020-02-11T17:13:21Z | 2020-02-11T17:13:21Z |
| opensuse-su-2020:0208-1 | Security update for systemd | 2020-02-11T19:12:44Z | 2020-02-11T19:12:44Z |
| opensuse-su-2020:0209-1 | Security update for libqt5-qtbase | 2020-02-11T19:12:57Z | 2020-02-11T19:12:57Z |
| opensuse-su-2020:0210-1 | Security update for chromium | 2020-02-12T05:12:32Z | 2020-02-12T05:12:32Z |
| opensuse-su-2020:0213-1 | Security update for pcp | 2020-02-12T15:13:29Z | 2020-02-12T15:13:29Z |
| opensuse-su-2020:0214-1 | Security update for rubygem-rack | 2020-02-12T15:13:37Z | 2020-02-12T15:13:37Z |
| opensuse-su-2020:0219-1 | Security update for docker-runc | 2020-02-13T19:13:24Z | 2020-02-13T19:13:24Z |
| opensuse-su-2020:0220-1 | Security update for nextcloud | 2020-02-15T19:09:47Z | 2020-02-15T19:09:47Z |
| opensuse-su-2020:0222-1 | Security update for hostapd | 2020-02-15T19:10:10Z | 2020-02-15T19:10:10Z |
| opensuse-su-2020:0229-1 | Security update for nextcloud | 2020-02-17T12:31:04Z | 2020-02-17T12:31:04Z |
| opensuse-su-2020:0230-1 | Security update for MozillaFirefox | 2020-02-18T05:11:46Z | 2020-02-18T05:11:46Z |
| opensuse-su-2020:0231-1 | Security update for MozillaThunderbird | 2020-02-18T05:12:00Z | 2020-02-18T05:12:00Z |
| opensuse-su-2020:0233-1 | Security update for chromium, re2 | 2020-02-19T09:14:43Z | 2020-02-19T09:14:43Z |
| opensuse-su-2020:0234-1 | Security update for inn | 2020-02-19T19:13:36Z | 2020-02-19T19:13:36Z |
| opensuse-su-2020:0235-1 | Security update for rmt-server | 2020-02-19T19:13:45Z | 2020-02-19T19:13:45Z |
| opensuse-su-2020:0242-1 | Security update for inn | 2020-02-24T17:19:16Z | 2020-02-24T17:19:16Z |
| opensuse-su-2020:0244-1 | Security update for sudo | 2020-02-25T09:29:12Z | 2020-02-25T09:29:12Z |
| opensuse-su-2020:0245-1 | Security update for chromium | 2020-02-26T13:18:34Z | 2020-02-26T13:18:34Z |
| opensuse-su-2020:0247-1 | Security update for ipmitool | 2020-02-27T13:17:29Z | 2020-02-27T13:17:29Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2015-01110 | Adobe Reader Acrobat拒绝服务漏洞 | 2015-02-05 | 2015-02-12 |
| cnvd-2015-00941 | Adobe Flash Player存在未明空指针引用漏洞(CNVD-2015-00941) | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00942 | Adobe Flash Player存在未明堆缓冲区溢出漏洞(CNVD-2015-00942) | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00943 | Google Chrome for Android内存错误引用漏洞 | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00944 | Google Chrome for Android存在未明漏洞(CNVD-2015-00944) | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00945 | Google Chrome for Android跨域绕过漏洞 | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00946 | Google Chrome for Android特权提升漏洞 | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00947 | Apache ActiveMQ Apollo XML外部实体注入漏洞 | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00948 | Apache ActiveMQ XML外部实体注入漏洞 | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00949 | Adobe Flash Player存在未明空指针引用漏洞(CNVD-2015-00949) | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00950 | Adobe Flash Player存在未明缓冲区溢出漏洞(CNVD-2015-00950) | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00951 | Adobe Flash Player存在未明空指针引用漏洞 | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00952 | Adobe Flash Player存在未明堆缓冲区溢出漏洞(CNVD-2015-00952) | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00953 | Adobe Flash Player存在未明内存错误引用漏洞(CNVD-2015-00953) | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00954 | Adobe Flash Player存在未明内存破坏漏洞(CNVD-2015-00954) | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00955 | Adobe Flash Player存在未明内存错误引用漏洞(CNVD-2015-00955) | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00956 | Adobe Flash Player存在未明类型混淆漏洞(CNVD-2015-00956) | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00957 | Adobe Flash Player存在未明内存破坏漏洞(CNVD-2015-00957) | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00958 | Adobe Flash Player存在未明类型混淆漏洞 | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00959 | Microsoft Internet Explorer同源策略安全绕过漏洞 | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00960 | Cisco WebEx Meetings Server命令注入漏洞 | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00961 | Adobe Flash Player存在未明内存破坏漏洞(CNVD-2015-00961) | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00962 | Adobe Flash Player存在未明内存错误引用漏洞(CNVD-2015-00962) | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00963 | Adobe Flash Player存在未明内存破坏漏洞(CNVD-2015-00963) | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00964 | Adobe Flash Player存在未明内存破坏漏洞(CNVD-2015-00964) | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00965 | Ektron CMS 'ServerControlWS.asmx' XML外部实体注入漏洞 | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00966 | Ektron CMS XML外部实体注入漏洞 | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00967 | Topline Systems Opportunity Form信息泄露漏洞 | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00968 | file 'readelf.c'越界读取漏洞 | 2015-02-06 | 2015-02-09 |
| cnvd-2015-00969 | Libmspack CHM解压缩指针算术拒绝服务漏洞(CNVD-2015-00969) | 2015-02-06 | 2015-02-09 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2004-avi-228 | Vulnérabilités dans Ethereal | 2004-07-07T00:00:00.000000 | 2004-08-06T00:00:00.000000 |
| certa-2004-avi-229 | Vulnérabilité de nCipher netHSM | 2004-07-07T00:00:00.000000 | 2004-07-07T00:00:00.000000 |
| certa-2004-avi-230 | Vulnérabilité dans le module de sécurité BSM sur Solaris | 2004-07-07T00:00:00.000000 | 2004-07-07T00:00:00.000000 |
| certa-2004-avi-231 | Vulnérabilité de plusieurs navigateurs | 2004-07-08T00:00:00.000000 | 2004-07-26T00:00:00.000000 |
| certa-2004-avi-232 | Vulnérabilité de la suite Mozilla sous Windows XP | 2004-07-09T00:00:00.000000 | 2004-07-09T00:00:00.000000 |
| certa-2004-avi-233 | Vulnérabilité dans Shorewall | 2004-07-09T00:00:00.000000 | 2004-07-09T00:00:00.000000 |
| certa-2004-avi-234 | Faille dans le serveur SSLtelnet | 2004-07-09T00:00:00.000000 | 2004-07-19T00:00:00.000000 |
| certa-2004-avi-235 | Vulnérabilité d'Adobe Acrobat et d'Adobe Reader | 2004-07-13T00:00:00.000000 | 2004-07-13T00:00:00.000000 |
| certa-2004-avi-236 | Vulnérabilité dans Microsoft Outlook Express | 2004-07-15T00:00:00.000000 | 2004-07-15T00:00:00.000000 |
| certa-2004-avi-237 | Vulnérabilité dans Utility Manager sous Windows | 2004-07-15T00:00:00.000000 | 2004-07-15T00:00:00.000000 |
| certa-2004-avi-238 | Vulnérabilité du composant POSIX de Microsoft | 2004-07-15T00:00:00.000000 | 2004-07-15T00:00:00.000000 |
| certa-2004-avi-239 | Vulnérabilité dans Microsoft Internet Information Server (IIS) 4.0 | 2004-07-15T00:00:00.000000 | 2004-07-15T00:00:00.000000 |
| certa-2004-avi-240 | Vulnérabilité dans Microsoft Windows Task Scheduler | 2004-07-15T00:00:00.000000 | 2004-07-16T00:00:00.000000 |
| certa-2004-avi-241 | Vulnérabilités dans les fichiers d'aide HTML de Microsoft | 2004-07-15T00:00:00.000000 | 2004-07-15T00:00:00.000000 |
| certa-2004-avi-242 | Vulnérabilité dans l'interpréteur de commandes Windows | 2004-07-15T00:00:00.000000 | 2004-07-15T00:00:00.000000 |
| certa-2004-avi-243 | Vulnérabilité de la bibliothèque wv | 2004-07-15T00:00:00.000000 | 2004-07-30T00:00:00.000000 |
| certa-2004-avi-244 | Vulnérabilité de PHP | 2004-07-15T00:00:00.000000 | 2005-03-01T00:00:00.000000 |
| certa-2004-avi-245 | Vulnérabilité dans FreeS/Wan, Openswan, StrongSwan et Super FreeS/Wan | 2004-07-15T00:00:00.000000 | 2004-07-15T00:00:00.000000 |
| certa-2004-avi-246 | Vulnérabilité dans Novell BorderManager | 2004-07-16T00:00:00.000000 | 2004-07-16T00:00:00.000000 |
| certa-2004-avi-247 | Vulnérabilité du module Apache mod_ssl | 2004-07-16T00:00:00.000000 | 2005-01-20T00:00:00.000000 |
| certa-2004-avi-248 | Vulnérabilité de l2tpd | 2004-07-19T00:00:00.000000 | 2004-07-22T00:00:00.000000 |
| certa-2004-avi-249 | Vulnérabilité de Solaris Volume Manager | 2004-07-20T00:00:00.000000 | 2004-07-20T00:00:00.000000 |
| certa-2004-avi-250 | Vulnérabilités dans Cisco ONS 15000 | 2004-07-22T00:00:00.000000 | 2004-07-22T00:00:00.000000 |
| certa-2004-avi-251 | Vulnérabilité de Samba | 2004-07-23T00:00:00.000000 | 2004-07-30T00:00:00.000000 |
| certa-2004-avi-252 | Vulnérabilité de Courier MTA, Courier-IMAP et Courier SqWebMail | 2004-07-23T00:00:00.000000 | 2004-07-23T00:00:00.000000 |
| certa-2004-avi-253 | Vulnérabilité du service RPC DCE | 2004-07-23T00:00:00.000000 | 2004-07-23T00:00:00.000000 |
| certa-2004-avi-254 | Multiples vulnérabilités sous HP-UX | 2004-07-27T00:00:00.000000 | 2004-07-27T00:00:00.000000 |
| certa-2004-avi-255 | Vulnérabilité de Pavuk | 2004-07-28T00:00:00.000000 | 2005-01-17T00:00:00.000000 |
| certa-2004-avi-256 | Vulnérabilité de subversion | 2004-07-28T00:00:00.000000 | 2004-07-28T00:00:00.000000 |
| certa-2004-avi-257 | Vulnérabilité de SoX | 2004-07-29T00:00:00.000000 | 2005-02-22T00:00:00.000000 |