Recent vulnerabilities

Recent vulnerabilities from
Select from 69 available sources using the dropdown above.
ID CVSS Description Vendor Product Published Updated
CVE-2026-0930
2.3 (4.0)
Potential wolfSSHd Buffer out-of-bounds Read on Window… wolfSSL
 wolfSSH
 2026-04-20T21:28:33.227Z 2026-04-20T21:28:33.227Z
CVE-2026-22051
2.3 (4.0)
StorageGRID (formerly StorageGRID Webscale) versi… NETAPP
 StorageGRID (formerly StorageGRID Webscale)
 2026-04-20T21:27:36.822Z 2026-04-20T21:28:04.859Z
CVE-2026-29643
N/A
XiangShan (Open-source high-performance RISC-V pr… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-20T21:18:39.405Z
CVE-2025-9900
8.8 (3.1)
Libtiff: libtiff write-what-where

2025-09-23T16:26:22.846Z 2026-04-20T21:15:59.323Z
CVE-2026-4046
7.5 (3.1)
iconv crash due to assertion failure with untrusted input The GNU C Library
 glibc
 2026-03-30T17:16:11.021Z 2026-04-20T21:02:31.443Z
CVE-2026-5450
N/A
scanf %mc off-by-one heap buffer overflow The GNU C Library
 glibc
 2026-04-20T20:55:41.170Z 2026-04-20T20:55:41.170Z
CVE-2026-29647
N/A
In OpenXiangShan NEMU, insufficient Smstateen per… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-20T20:49:54.460Z
CVE-2026-29646
N/A
In OpenXiangShan NEMU prior to 55295c4, when runn… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-20T20:39:23.730Z
CVE-2026-5928
N/A
Static buffer overflow in deprecated nis_local_principal The GNU C Library
 glibc
 2026-04-20T20:37:31.743Z 2026-04-20T20:37:31.743Z
CVE-2026-5358
N/A
Static buffer overflow in deprecated nis_local_principal The GNU C Library
 glibc
 2026-04-20T20:37:23.178Z 2026-04-20T20:37:23.178Z
CVE-2026-29642
N/A
A local attacker who can execute privileged CSR o… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-20T20:30:19.577Z
CVE-2026-33626
7.5 (3.1)
LMDeploy Vulnerable to Server-Side Request Forgery (SS… InternLM
 lmdeploy
 2026-04-20T20:29:19.558Z 2026-04-20T20:29:19.558Z
CVE-2026-4852
6.4 (3.1)
Image Source Control Lite – Show Image Credits and Cap… webzunft
 Image Source Control Lite – Show Image Credits and Captions
 2026-04-20T20:26:53.256Z 2026-04-20T20:26:53.256Z
CVE-2026-33432
7.7 (4.0)
Roxy-WI has Pre-Authentication LDAP Injection that Lea… roxy-wi
 roxy-wi
 2026-04-20T20:26:52.217Z 2026-04-20T20:26:52.217Z
CVE-2026-26149
9 (3.1)
Microsoft Power Apps Spoofing Vulnerability Microsoft
 Microsoft Power Apps
 2026-04-14T16:56:57.430Z 2026-04-20T20:26:12.470Z
CVE-2026-32077
7.8 (3.1)
Windows UPnP Device Host Elevation of Privilege Vulner… Microsoft
 Windows 10 Version 1607
 2026-04-14T16:58:20.124Z 2026-04-20T20:26:11.807Z
CVE-2026-33119
5.4 (3.1)
Microsoft Edge (Chromium-based) for Android Spoofing V… Microsoft
 Microsoft Edge for Android
 2026-04-10T21:20:37.767Z 2026-04-20T20:26:10.969Z
CVE-2026-33118
4.3 (3.1)
Microsoft Edge (Chromium-based) Spoofing Vulnerability Microsoft
 Microsoft Edge (Chromium-based)
 2026-04-10T21:20:44.423Z 2026-04-20T20:26:10.276Z
CVE-2026-32214
5.5 (3.1)
Universal Plug and Play (upnp.dll) Information Disclos… Microsoft
 Windows 10 Version 1607
 2026-04-14T16:58:47.099Z 2026-04-20T20:26:09.476Z
CVE-2026-33829
4.3 (3.1)
Windows Snipping Tool Spoofing Vulnerability Microsoft
 Windows 10 Version 1607
 2026-04-14T16:58:46.201Z 2026-04-20T20:26:08.918Z
CVE-2026-33824
9.8 (3.1)
Windows Internet Key Exchange (IKE) Service Extensions… Microsoft
 Windows 10 Version 1607
 2026-04-14T16:58:45.469Z 2026-04-20T20:26:08.264Z
CVE-2026-33827
8.1 (3.1)
Windows TCP/IP Remote Code Execution Vulnerability Microsoft
 Windows 10 Version 1607
 2026-04-14T16:58:44.677Z 2026-04-20T20:26:07.672Z
CVE-2026-33115
8.4 (3.1)
Microsoft Word Remote Code Execution Vulnerability Microsoft
 Microsoft 365 Apps for Enterprise
 2026-04-14T16:58:44.154Z 2026-04-20T20:26:07.122Z
CVE-2026-33114
8.4 (3.1)
Microsoft Word Remote Code Execution Vulnerability Microsoft
 Microsoft 365 Apps for Enterprise
 2026-04-14T16:58:43.560Z 2026-04-20T20:26:06.683Z
CVE-2026-33104
7 (3.1)
Win32k Elevation of Privilege Vulnerability Microsoft
 Windows 10 Version 1607
 2026-04-14T16:58:42.929Z 2026-04-20T20:26:06.234Z
CVE-2026-33103
5.5 (3.1)
Microsoft Dynamics 365 (On-Premises) Information Discl… Microsoft
 Microsoft Dynamics 365 (on-premises) version 9.0
 2026-04-14T16:58:41.818Z 2026-04-20T20:26:05.581Z
CVE-2026-33101
7.8 (3.1)
Windows Print Spooler Elevation of Privilege Vulnerability Microsoft
 Windows 11 Version 24H2
 2026-04-14T16:58:40.813Z 2026-04-20T20:26:04.761Z
CVE-2026-33100
7 (3.1)
Windows Ancillary Function Driver for WinSock Elevatio… Microsoft
 Windows 10 Version 1607
 2026-04-14T16:58:40.062Z 2026-04-20T20:26:04.211Z
CVE-2026-33099
7 (3.1)
Windows Ancillary Function Driver for WinSock Elevatio… Microsoft
 Windows 10 Version 1607
 2026-04-14T16:58:39.440Z 2026-04-20T20:26:03.130Z
CVE-2026-32225
8.8 (3.1)
Windows Shell Security Feature Bypass Vulnerability Microsoft
 Windows 10 Version 1607
 2026-04-14T16:58:38.879Z 2026-04-20T20:26:01.558Z
ID CVSS Description Vendor Product Published Updated
CVE-2025-9900
8.8 (3.1)
Libtiff: libtiff write-what-where

2025-09-23T16:26:22.846Z 2026-04-20T21:15:59.323Z
CVE-2025-9375
6.9 (4.0)
xmltodict 0.14.2 - XML Injection xmltodict
 xmltodict
 2025-09-01T16:43:18.220Z 2026-04-20T21:45:55.337Z
CVE-2025-32990
6.5 (3.1)
Gnutls: vulnerability in gnutls certtool template parsing

2025-07-10T09:41:46.211Z 2026-04-20T21:35:30.314Z
CVE-2025-32989
5.3 (3.1)
Gnutls: vulnerability in gnutls sct extension parsing

2025-07-10T08:05:26.307Z 2026-04-20T21:35:29.773Z
CVE-2025-32988
6.5 (3.1)
Gnutls: vulnerability in gnutls othername san export

2025-07-10T08:04:57.991Z 2026-04-20T21:35:28.412Z
CVE-2026-5928
N/A
Static buffer overflow in deprecated nis_local_principal The GNU C Library
 glibc
 2026-04-20T20:37:31.743Z 2026-04-20T20:37:31.743Z
CVE-2026-5450
N/A
scanf %mc off-by-one heap buffer overflow The GNU C Library
 glibc
 2026-04-20T20:55:41.170Z 2026-04-20T20:55:41.170Z
CVE-2026-5358
N/A
Static buffer overflow in deprecated nis_local_principal The GNU C Library
 glibc
 2026-04-20T20:37:23.178Z 2026-04-20T20:37:23.178Z
CVE-2026-4852
6.4 (3.1)
Image Source Control Lite – Show Image Credits and Cap… webzunft
 Image Source Control Lite – Show Image Credits and Captions
 2026-04-20T20:26:53.256Z 2026-04-20T20:26:53.256Z
CVE-2026-3219
4.6 (4.0)
pip doesn't reject concatenated ZIP and tar archives Python Packaging Authority
 pip
 2026-04-20T14:55:38.282Z 2026-04-20T20:15:23.710Z
CVE-2026-34403
5.5 (4.0)
Nginx-UI vulnerable to Cross-Site WebSocket Hijacking … 0xJacky
 nginx-ui
 2026-04-20T20:16:47.597Z 2026-04-20T20:16:47.597Z
CVE-2026-33626
7.5 (3.1)
LMDeploy Vulnerable to Server-Side Request Forgery (SS… InternLM
 lmdeploy
 2026-04-20T20:29:19.558Z 2026-04-20T20:29:19.558Z
CVE-2026-33432
7.7 (4.0)
Roxy-WI has Pre-Authentication LDAP Injection that Lea… roxy-wi
 roxy-wi
 2026-04-20T20:26:52.217Z 2026-04-20T20:26:52.217Z
CVE-2026-33431
5.7 (4.0)
Roxy-WI Vulnerable to Authenticated Arbitrary File Rea… roxy-wi
 roxy-wi
 2026-04-20T20:24:15.319Z 2026-04-20T20:24:15.319Z
CVE-2026-33031
8.6 (4.0)
Nginx-UI: Disabled users retain full API access throug… 0xJacky
 nginx-ui
 2026-04-20T20:12:07.905Z 2026-04-20T20:12:07.905Z
CVE-2026-32613
10 (3.1)
Spinnaker vulnerable to RCE via expression parsing due… spinnaker
 spinnaker
 2026-04-20T20:07:24.697Z 2026-04-20T20:08:54.702Z
CVE-2026-32604
10 (3.1)
Spinnaker vulnerable to RCE when using gitrepo artifac… spinnaker
 spinnaker
 2026-04-20T20:00:57.517Z 2026-04-20T20:07:31.157Z
CVE-2026-29648
N/A
In OpenXiangShan NEMU, when Smstateen is enabled,… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-20T20:07:13.590Z
CVE-2026-29647
N/A
In OpenXiangShan NEMU, insufficient Smstateen per… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-20T20:49:54.460Z
CVE-2026-29646
N/A
In OpenXiangShan NEMU prior to 55295c4, when runn… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-20T20:39:23.730Z
CVE-2026-29642
N/A
A local attacker who can execute privileged CSR o… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-20T20:30:19.577Z
CVE-2026-26149
9 (3.1)
Microsoft Power Apps Spoofing Vulnerability Microsoft
 Microsoft Power Apps
 2026-04-14T16:56:57.430Z 2026-04-20T20:26:12.470Z
CVE-2026-33631
8.7 (3.1)
ClearanceKit: opfilter policy bypass via non-open file… craigjbass
 clearancekit
 2026-03-26T19:30:30.379Z 2026-03-30T14:55:32.151Z
CVE-2026-33340
9.1 (3.1)
LoLLMs WEBUI has unauthenticated Server-Side Request F… ParisNeo
 lollms-webui
 2026-03-24T15:58:35.877Z 2026-03-24T17:30:06.413Z
CVE-2026-33849
8.8 (3.1)
Improper Restriction of Operations within the Bounds o… linkingvision
 rapidvms
 2026-03-24T05:52:12.272Z 2026-03-24T14:16:31.737Z
CVE-2026-33848
8.8 (3.1)
Improper Restriction of Operations within the Bounds o… linkingvision
 rapidvms
 2026-03-24T05:51:10.330Z 2026-03-24T14:17:00.767Z
CVE-2026-33847
7.8 (3.1)
Improper Restriction of Operations within the Bounds o… linkingvision
 rapidvms
 2026-03-24T05:55:14.556Z 2026-03-24T14:15:58.916Z
CVE-2026-33392
7.2 (3.1)
In JetBrains YouTrack before 2025.3.131383 high p… JetBrains
 YouTrack
 2026-04-17T07:46:11.710Z 2026-04-18T03:55:54.262Z
CVE-2026-40160
7.1 (4.0)
PraisonAIAgents has SSRF via unvalidated URL in `web_c… MervinPraison
 PraisonAIAgents
 2026-04-10T16:59:09.542Z 2026-04-13T15:36:41.165Z
CVE-2026-30624
8.6 (3.1)
Agent Zero 0.9.8 contains a remote code execution… n/a
 n/a
 2026-04-15T00:00:00.000Z 2026-04-15T18:02:40.808Z
ID Description Published Updated
fkie_cve-2026-34403 Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.5, all WebSocket en… 2026-04-20T21:16:36.267 2026-04-20T21:16:36.267
fkie_cve-2026-33626 LMDeploy is a toolkit for compressing, deploying, and serving large language models. Versions prior… 2026-04-20T21:16:35.097 2026-04-20T21:16:35.097
fkie_cve-2026-33432 Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions … 2026-04-20T21:16:34.970 2026-04-20T21:16:34.970
fkie_cve-2026-33431 Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to ver… 2026-04-20T21:16:34.823 2026-04-20T21:16:34.823
fkie_cve-2026-33031 Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.4, a user who was d… 2026-04-20T21:16:32.783 2026-04-20T21:16:32.783
fkie_cve-2026-32613 Spinnaker is an open source, multi-cloud continuous delivery platform. Echo like some other service… 2026-04-20T21:16:32.623 2026-04-20T21:16:32.623
fkie_cve-2026-32604 Spinnaker is an open source, multi-cloud continuous delivery platform. In versions prior to 2026.1.… 2026-04-20T21:16:32.457 2026-04-20T21:16:32.457
fkie_cve-2026-29648 In OpenXiangShan NEMU, when Smstateen is enabled, clearing mstateen0.ENVCFG does not correctly rest… 2026-04-20T21:16:19.733 2026-04-20T21:16:19.733
fkie_cve-2026-29647 In OpenXiangShan NEMU, insufficient Smstateen permission enforcement allows lower-privileged code t… 2026-04-20T21:16:19.637 2026-04-20T21:16:19.637
fkie_cve-2026-29646 In OpenXiangShan NEMU prior to 55295c4, when running with RVH (Hypervisor extension) enabled, a VS-… 2026-04-20T21:16:19.503 2026-04-20T21:16:19.503
fkie_cve-2026-29642 A local attacker who can execute privileged CSR operations (or can induce firmware to do so) perfor… 2026-04-20T21:16:19.393 2026-04-20T21:16:19.393
fkie_cve-2026-26149 Improper neutralization of escape, meta, or control sequences in Microsoft Power Apps allows an aut… 2026-04-14T18:16:45.790 2026-04-20T21:16:08.007
fkie_cve-2026-33631 ClearanceKit intercepts file-system access events on macOS and enforces per-process access policies… 2026-03-26T20:16:16.110 2026-04-20T20:22:55.200
fkie_cve-2026-33340 LoLLMs WEBUI provides the Web user interface for Lord of Large Language and Multi modal Systems. A … 2026-03-24T17:16:44.423 2026-04-20T20:22:05.330
fkie_cve-2026-33849 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in linkingvis… 2026-03-24T06:16:22.073 2026-04-20T20:20:21.683
fkie_cve-2026-33848 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in linkingvis… 2026-03-24T06:16:21.927 2026-04-20T20:20:12.130
fkie_cve-2026-33847 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in linkingvis… 2026-03-24T06:16:21.670 2026-04-20T20:19:54.100
fkie_cve-2026-33392 In JetBrains YouTrack before 2025.3.131383 high privileged user can achieve RCE via sandbox bypass 2026-04-17T08:16:17.877 2026-04-20T20:18:22.167
fkie_cve-2026-40160 PraisonAIAgents is a multi-agent teams system. Prior to 1.5.128, web_crawl's httpx fallback path pa… 2026-04-10T17:17:13.950 2026-04-20T20:17:49.560
fkie_cve-2026-30624 Agent Zero 0.9.8 contains a remote code execution vulnerability in its External MCP Servers configu… 2026-04-15T16:16:36.677 2026-04-20T20:17:28.843
fkie_cve-2026-6550 Cryptographic algorithm downgrade in the caching layer of Amazon AWS Encryption SDK for Python befo… 2026-04-20T20:16:49.283 2026-04-20T20:16:49.283
fkie_cve-2026-6257 Vvveb CMS v1.0.8 contains a remote code execution vulnerability in its media management functionali… 2026-04-20T20:16:49.107 2026-04-20T20:16:49.107
fkie_cve-2026-6249 Vvveb CMS 1.0.8 contains a remote code execution vulnerability in its media upload handler that all… 2026-04-20T20:16:48.943 2026-04-20T20:16:48.943
fkie_cve-2026-5478 The Everest Forms plugin for WordPress is vulnerable to Arbitrary File Read and Deletion in all ver… 2026-04-20T20:16:48.800 2026-04-20T20:16:48.800
fkie_cve-2026-32311 Flowsint is an open-source OSINT graph exploration tool designed for cybersecurity investigation, t… 2026-04-20T20:16:48.653 2026-04-20T20:16:48.653
fkie_cve-2026-32135 NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform. Versions prior to 0.24.11 hav… 2026-04-20T20:16:48.510 2026-04-20T20:16:48.510
fkie_cve-2026-29649 NEMU contains an implementation flaw in its RISC-V Hypervisor CSR handling where henvcfg[7:4] (CBIE… 2026-04-20T20:16:48.410 2026-04-20T20:16:48.410
fkie_cve-2026-29645 NEMU (OpenXiangShan/NEMU) before v2025.12.r2 contains an improper instruction-validation flaw in it… 2026-04-20T20:16:48.303 2026-04-20T20:16:48.303
fkie_cve-2026-20133 A vulnerability in Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to… 2026-02-25T17:25:30.983 2026-04-20T20:16:47.707
fkie_cve-2026-20128 A vulnerability in the Data Collection Agent (DCA) feature of Cisco Catalyst SD-WAN Manager could a… 2026-02-25T17:25:30.150 2026-04-20T20:16:46.753
ID Severity Description Published Updated
ghsa-2mm2-ghgp-p33q
7.5 (3.1)
SQL Injection vulnerability in Apartment Visitors Management System Apartment Visitors Management S… 2026-04-20T18:31:50Z 2026-04-20T18:31:50Z
ghsa-27jw-fcpv-p46x
5.4 (3.1)
5.1 (4.0)
GFI HelpDesk before 4.99.10 contains a stored cross-site scripting vulnerability in the Reports mod… 2026-04-20T18:31:49Z 2026-04-20T18:31:50Z
ghsa-xpr7-5899-f5vj
8.8 (3.1)
8.7 (4.0)
KissFFT before commit 8a8e66e contains an integer overflow vulnerability in the kiss_fftndr_alloc()… 2026-04-20T18:31:49Z 2026-04-20T18:31:49Z
ghsa-xj4v-3q69-qpxx
4.8 (3.1)
4.8 (4.0)
GFI HelpDesk before 4.99.9 contains a stored cross-site scripting vulnerability in the language man… 2026-04-20T18:31:49Z 2026-04-20T18:31:49Z
ghsa-wr75-mj46-c335
7.2 (3.1)
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2025 release version 8.3.1.0 throug… 2026-04-20T18:31:49Z 2026-04-20T18:31:49Z
ghsa-vxch-4r45-jhw9
A stack-use-after-return issue exists in the Arduino_Core_STM32 library prior to version 1.7.0. The… 2026-04-20T18:31:49Z 2026-04-20T18:31:49Z
ghsa-rf6c-2qc7-c945
6.4 (4.0)
GFI HelpDesk before 4.99.9 contains a stored cross-site scripting vulnerability in the ticket subje… 2026-04-20T18:31:49Z 2026-04-20T18:31:49Z
ghsa-p8f5-hqp5-3gq7
7.2 (3.1)
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2025 release version 8.3.1.0 throug… 2026-04-20T18:31:49Z 2026-04-20T18:31:49Z
ghsa-p3pj-xf59-54r5
6.3 (3.1)
Dell PowerProtect Data Domain appliances, versions 7.7.1.0 through 8.7.0.0, LTS2025 release version… 2026-04-20T18:31:49Z 2026-04-20T18:31:49Z
ghsa-gv64-vfgp-cgh5
4.7 (3.1)
2.0 (4.0)
A weakness has been identified in Pagekit CMS up to 1.0.18. This issue affects the function evaluat… 2026-04-20T18:31:48Z 2026-04-20T18:31:49Z
ghsa-g6r9-7cf4-gwv6
6.7 (3.1)
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2025 release version 8.3.1.0 throug… 2026-04-20T18:31:49Z 2026-04-20T18:31:49Z
ghsa-f22f-m2ph-vfcc
6.7 (3.1)
Dell PowerProtect Data Domain, versions 8.5 through 8.6 contain(s) an Improper Neutralization of Sp… 2026-04-20T18:31:49Z 2026-04-20T18:31:49Z
ghsa-c3x5-j788-wjpm
7.2 (3.1)
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2025 release version 8.3.1.0 throug… 2026-04-20T18:31:49Z 2026-04-20T18:31:49Z
ghsa-99wh-5v8j-65hf
5.4 (3.1)
5.1 (4.0)
GFI HelpDesk before 4.99.9 contains a stored cross-site scripting vulnerability in the Troubleshoot… 2026-04-20T18:31:49Z 2026-04-20T18:31:49Z
ghsa-6j2q-j3c7-4w55
7.3 (3.1)
5.5 (4.0)
A vulnerability was found in ericc-ch copilot-api up to 0.7.0. The impacted element is the function… 2026-04-20T18:31:49Z 2026-04-20T18:31:49Z
ghsa-6cc4-jwpj-2vp9
4.8 (3.1)
4.8 (4.0)
GFI HelpDesk before 4.99.9 contains a stored cross-site scripting vulnerability in the template gro… 2026-04-20T18:31:49Z 2026-04-20T18:31:49Z
ghsa-62jj-2mw3-wfp2
7.8 (3.1)
Insecure Permissions vulnerability in DeepCool DeepCreative v.1.2.7 and before allows a local attac… 2026-04-20T18:31:49Z 2026-04-20T18:31:49Z
ghsa-5f9j-32h2-hhg6
7.2 (3.1)
Dell PowerProtect Data Domain, versions 8.5 through 8.6 contain an improper input validation vulner… 2026-04-20T18:31:49Z 2026-04-20T18:31:49Z
ghsa-3gjh-jvm6-6pfg
6.5 (3.1)
A vulnerability exists in the Buffalo Link Station version 1.85-0.01 that allows unauthenticated or… 2026-04-20T18:31:48Z 2026-04-20T18:31:49Z
ghsa-p8w2-3jvp-85x5
6.7 (3.1)
Dell PowerProtect Data Domain, versions 8.5 through 8.6 contain a command injection vulnerability. … 2026-04-20T18:31:48Z 2026-04-20T18:31:48Z
ghsa-p7mp-86pp-wx7w
4.7 (3.1)
2.0 (4.0)
A vulnerability was identified in Z-BlogPHP 1.7.5. This affects the function App::UnPack of the fil… 2026-04-20T18:31:48Z 2026-04-20T18:31:48Z
ghsa-hmwv-mfjf-w46v
8.8 (3.1)
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2025 release version 8.3.1.0 throug… 2026-04-20T18:31:48Z 2026-04-20T18:31:48Z
ghsa-h2v9-xpqq-69hx
7.1 (3.1)
ConnectWise has released a security update for ConnectWise Automate™ that addresses a behavior in t… 2026-04-20T18:31:48Z 2026-04-20T18:31:48Z
ghsa-fxgc-2fpp-hx5w
8.8 (3.1)
8.7 (4.0)
Vvveb prior to 1.0.8.1 contains a privilege escalation vulnerability in the admin user profile save… 2026-04-20T18:31:48Z 2026-04-20T18:31:48Z
ghsa-fr6h-4rh3-wc9f
7.7 (3.1)
8.3 (4.0)
Vvveb prior to 1.0.8.1 contains a server-side request forgery vulnerability in the oEmbedProxy acti… 2026-04-20T18:31:48Z 2026-04-20T18:31:48Z
ghsa-chhv-69jq-q952
9.8 (3.1)
9.2 (4.0)
Vvveb prior to 1.0.8.1 contains a code injection vulnerability in the installation endpoint where t… 2026-04-20T18:31:48Z 2026-04-20T18:31:48Z
ghsa-82p8-693h-j5x5
2.4 (3.1)
1.9 (4.0)
A security flaw has been discovered in erponline.xyz ERP Online up to 4.0.0. This vulnerability aff… 2026-04-20T18:31:48Z 2026-04-20T18:31:48Z
ghsa-49mg-4v6p-32w2
5.4 (3.1)
5.1 (4.0)
Vvveb prior to 1.0.8.1 contains a stored cross-site scripting vulnerability that allows authenticat… 2026-04-20T18:31:48Z 2026-04-20T18:31:48Z
ghsa-wf66-mphr-4c4r
5.3 (3.1)
Information exposure vulnerability has been identified in Apache Kafka. The NetworkClient componen… 2026-04-20T15:31:52Z 2026-04-20T18:31:47Z
ghsa-gxrh-c9qf-pf88
7.2 (3.1)
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions… 2026-04-20T18:31:47Z 2026-04-20T18:31:47Z
ID Severity Description Package Published Updated
pysec-2025-36
9.8 (3.1)
Langflow versions prior to 1.3.0 are susceptible to code injection in the /api/v1/valida… langflow 2025-04-07T15:15:44+00:00 2025-05-07T19:22:44.993642+00:00
pysec-2024-246
5.3 (3.1)
Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. Starting in… vyper 2024-04-25T17:15:50+00:00 2025-05-05T19:21:20.899426+00:00
pysec-2024-111
9.1 (3.1)
A path traversal vulnerability exists in the `getFullPath` method of langchain-ai/langcha… langchain 2024-10-29T13:15:00Z 2025-05-02T18:39:47.588215Z
pysec-2024-245
Apache Airflow, versions before 2.8.2, has a vulnerability that allows authenticated user… apache-airflow 2024-02-29T11:15:08+00:00 2025-05-01T21:22:38.598048+00:00
pysec-2025-35
7.5 (3.1)
Weblate is a web based localization tool. Prior to version 5.11, when creating a new comp… weblate 2025-04-15T21:16:04+00:00 2025-04-30T17:22:51.467257+00:00
pysec-2025-34
The unsafe globals in Picklescan before 0.0.25 do not include ssl. Consequently, ssl.get_… picklescan 2025-04-24T01:15:49+00:00 2025-04-24T03:08:15.436691+00:00
pysec-2025-33
7.5 (3.1)
Vyper is a Pythonic Smart Contract Language for the EVM. When the Vyper Compiler uses the… vyper 2025-01-14T18:16:05+00:00 2025-04-23T21:23:01.322686+00:00
pysec-2025-32
9.8 (3.1)
BentoML is a Python library for building online serving systems optimized for AI apps and… bentoml 2025-04-09T16:15:25+00:00 2025-04-22T19:21:34.073355+00:00
pysec-2025-31
vyper is a Pythonic Smart Contract Language for the EVM. Vyper handles AugAssign statemen… vyper 2025-02-21T22:15:13+00:00 2025-04-09T17:27:28.116292+00:00
pysec-2025-30
vyper is a Pythonic Smart Contract Language for the EVM. Multiple evaluation of a single … vyper 2025-02-21T22:15:13+00:00 2025-04-09T17:27:28.064106+00:00
pysec-2025-29
vyper is a Pythonic Smart Contract Language for the EVM. Vyper `sqrt()` builtin uses the … vyper 2025-02-21T22:15:13+00:00 2025-04-09T17:27:28.005382+00:00
pysec-2025-28
The Snowflake Connector for Python provides an interface for developing Python applicatio… snowflake-connector-python 2025-01-29T21:15:21+00:00 2025-04-09T17:27:27.772920+00:00
pysec-2025-27
The Snowflake Connector for Python provides an interface for developing Python applicatio… snowflake-connector-python 2025-01-29T21:15:21+00:00 2025-04-09T17:27:27.711157+00:00
pysec-2025-26
The Snowflake Connector for Python provides an interface for developing Python applicatio… snowflake-connector-python 2025-01-29T21:15:21+00:00 2025-04-09T17:27:27.645758+00:00
pysec-2021-891
7.8 (3.1)
CWE - CWE-287: Improper Authentication vulnerability in SUSE Linux Enterprise Server 15 S… salt 2021-03-03T10:15:13+00:00 2025-04-09T17:27:27.582884+00:00
pysec-2025-25
6.5 (3.1)
Rembg is a tool to remove images background. In Rembg 2.0.57 and earlier, the CORS middle… rembg 2025-03-03T17:15:14+00:00 2025-04-09T17:27:27.532849+00:00
pysec-2025-24
7.5 (3.1)
Rembg is a tool to remove images background. In Rembg 2.0.57 and earlier, the /api/remove… rembg 2025-03-03T17:15:14+00:00 2025-04-09T17:27:27.486485+00:00
pysec-2025-23
Versions of the package ray before 2.43.0 are vulnerable to Insertion of Sensitive Inform… ray 2025-03-06T05:15:16+00:00 2025-04-09T17:27:27.434099+00:00
pysec-2022-43179
7.3 (3.1)
Poetry is a dependency manager for Python. To handle dependencies that come from a Git re… poetry 2022-09-07T19:15:08+00:00 2025-04-09T17:27:27.255151+00:00
pysec-2025-22
9.8 (3.1)
A vulnerability, that could result in Remote Code Execution (RCE), has been found in Plot… plotai 2025-03-10T14:15:24+00:00 2025-04-09T17:27:27.203714+00:00
pysec-2023-311
5.4 (3.1)
plone.namedfile allows users to handle `File` and `Image` fields targeting, but not depen… plone-namedfile 2023-09-21T15:15:10+00:00 2025-04-09T17:27:27.153848+00:00
pysec-2025-21
9.8 (3.1)
picklescan before 0.0.23 fails to detect malicious pickle files inside PyTorch model arch… picklescan 2025-03-10T12:15:12+00:00 2025-04-09T17:27:27.016747+00:00
pysec-2025-20
6.5 (3.1)
picklescan before 0.0.23 is vulnerable to a ZIP archive manipulation attack that causes i… picklescan 2025-03-10T12:15:10+00:00 2025-04-09T17:27:26.966215+00:00
pysec-2025-19
9.8 (3.1)
picklescan before 0.0.22 only considers standard pickle file extensions in the scope for … picklescan 2025-03-03T19:15:34+00:00 2025-04-09T17:27:26.916350+00:00
pysec-2025-18
picklescan before 0.0.21 does not treat 'pip' as an unsafe global. An attacker could craf… picklescan 2025-02-26T15:15:24+00:00 2025-04-09T17:27:26.867210+00:00
pysec-2023-310
7.5 (3.1)
Mobile Security Framework (MobSF) <=v3.7.8 Beta is vulnerable to Insecure Permissions. NO… mobsf 2023-09-21T22:15:11+00:00 2025-04-09T17:27:26.663665+00:00
pysec-2025-17
5.5 (3.1)
In mlflow/mlflow version 2.18, an admin is able to create a new user account without sett… mlflow 2025-03-20T10:15:54+00:00 2025-04-09T17:27:26.322333+00:00
pysec-2023-309
8.8 (3.1)
Path Traversal in GitHub repository mlflow/mlflow prior to 2.9.2. mlflow 2023-12-13T00:15:07+00:00 2025-04-09T17:27:26.271200+00:00
pysec-2023-308
10.0 (3.1)
Absolute Path Traversal in GitHub repository mlflow/mlflow prior to 2.5.0. mlflow 2023-07-19T01:15:10+00:00 2025-04-09T17:27:26.223213+00:00
pysec-2025-16
7.5 (3.1)
LNbits is a Lightning wallet and accounts system. A Server-Side Request Forgery (SSRF) vu… lnbits 2025-04-06T20:15:15+00:00 2025-04-09T17:27:25.872691+00:00
ID Description Updated
gsd-2024-33855 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.741239Z
gsd-2024-33851 phpecc, as used in paragonie/phpecc before 2.0.1, has a branch-based timing leak in Point… 2024-04-28T05:02:07.732559Z
gsd-2024-33879 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.727068Z
gsd-2024-4294 A vulnerability, which was classified as critical, has been found in PHPGurukul Doctor Ap… 2024-04-28T05:02:06.079201Z
gsd-2024-4292 A vulnerability classified as critical has been found in Contemporary Controls BASrouter … 2024-04-28T05:02:06.073286Z
gsd-2024-4295 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:06.068263Z
gsd-2024-4291 A vulnerability was found in Tenda A301 15.13.08.12_multi_TDE01. It has been rated as cri… 2024-04-28T05:02:06.058388Z
gsd-2024-4293 A vulnerability classified as problematic was found in PHPGurukul Doctor Appointment Mana… 2024-04-28T05:02:06.052534Z
gsd-2023-52722 An issue was discovered in Artifex Ghostscript through 10.01.0. psi/zmisc1.c, when SAFER … 2024-04-28T05:01:28.746814Z
gsd-2022-48685 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:00:27.870720Z
gsd-2022-48684 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:00:27.715598Z
gsd-2024-24777 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:24.547536Z
gsd-2024-28875 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:20.401696Z
gsd-2024-33786 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.606155Z
gsd-2024-33697 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… 2024-04-27T05:02:18.598872Z
gsd-2024-33722 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.598142Z
gsd-2024-33784 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.595808Z
gsd-2024-33788 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.591276Z
gsd-2024-33814 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.590797Z
gsd-2024-33701 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.589032Z
gsd-2024-33776 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.587852Z
gsd-2024-33712 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.587066Z
gsd-2024-33840 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.586722Z
gsd-2024-33838 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.585807Z
gsd-2024-33749 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.584613Z
gsd-2024-33839 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.579161Z
gsd-2024-33733 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.577869Z
gsd-2024-33845 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.569462Z
gsd-2024-33741 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.568527Z
gsd-2024-33738 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.562140Z
ID Description Published Updated
mal-2026-2510 Malicious code in @velora-dex/sdk (npm) 2026-04-07T19:23:02Z 2026-04-20T00:45:38Z
mal-2026-2491 Malicious code in @not-nemo/crypto-tracker (npm) 2026-04-05T13:50:03Z 2026-04-20T00:45:38Z
mal-2024-12332 Malicious code in pymatcha (PyPI) 2024-09-04T21:25:32Z 2026-04-19T20:16:03Z
mal-2024-12305 Malicious code in mennort (PyPI) 2024-09-23T17:03:45Z 2026-04-19T19:49:00Z
mal-2026-2921 Malicious code in chandan-module-test (npm) 2026-04-19T19:25:43Z 2026-04-19T19:25:43Z
mal-2026-2863 Malicious code in rblx-studio-api (PyPI) 2026-04-19T18:45:19Z 2026-04-19T18:45:19Z
mal-2026-2931 Malicious code in react-spa-shadcn (npm) 2026-04-19T18:36:09Z 2026-04-19T18:36:09Z
mal-2026-2861 Malicious code in vinext-monorepo (npm) 2026-04-19T09:55:46Z 2026-04-19T17:17:43Z
mal-2026-2862 Malicious code in rtms-manager (npm) 2026-04-19T10:44:08Z 2026-04-19T10:44:08Z
mal-2026-2932 Malicious code in sy-editor-v3 (npm) 2026-04-19T08:46:05Z 2026-04-19T08:46:05Z
mal-2026-2860 Malicious code in mylib-utils (PyPI) 2026-04-18T22:47:46Z 2026-04-18T22:47:46Z
mal-2026-2859 Malicious code in rblx-api (PyPI) 2026-04-18T18:07:19Z 2026-04-18T18:08:03Z
mal-2026-2857 Malicious code in @shoobx/types (npm) 2026-04-18T17:35:52Z 2026-04-18T17:35:52Z
mal-2026-2858 Malicious code in @source-row/source-container (npm) 2026-04-18T17:18:09Z 2026-04-18T17:18:09Z
mal-2026-2856 Malicious code in @ataslkit/profilecard (npm) 2026-04-18T11:55:46Z 2026-04-18T11:55:46Z
mal-2026-2855 Malicious code in react-resource-router-next (npm) 2026-04-18T11:17:25Z 2026-04-18T11:17:25Z
mal-2026-2817 Malicious code in lightweight-charts-4.1 (npm) 2026-04-16T17:35:59Z 2026-04-18T10:20:55Z
mal-2026-2854 Malicious code in stringhelp (PyPI) 2026-04-18T09:09:55Z 2026-04-18T09:10:50Z
mal-2026-2853 Malicious code in react-hook-form (npm) 2026-04-18T07:33:44Z 2026-04-18T07:33:45Z
mal-2026-2926 Malicious code in material-ui-plugin-cache-endpoint (npm) 2026-04-17T21:01:14Z 2026-04-17T21:01:14Z
mal-2026-2852 Malicious code in aet-test (PyPI) 2026-04-17T18:46:36Z 2026-04-17T18:46:36Z
mal-2026-2851 Malicious code in @indriver-poc/whisperwind (npm) 2026-04-17T18:36:01Z 2026-04-17T18:36:01Z
mal-2026-2850 Malicious code in value-slider (npm) 2026-04-17T14:21:04Z 2026-04-17T14:21:05Z
mal-2026-2848 Malicious code in @than-xs/libsignal-node (npm) 2026-04-17T14:11:43Z 2026-04-17T14:11:44Z
mal-2026-2849 Malicious code in @than1st/baileys (npm) 2026-04-17T14:08:17Z 2026-04-17T14:08:18Z
mal-2026-2847 Malicious code in shan-lib (PyPI) 2026-04-17T13:41:42Z 2026-04-17T13:41:42Z
mal-2026-2846 Malicious code in eslint-plugin-totara (npm) 2026-04-17T12:20:55Z 2026-04-17T12:20:55Z
mal-2026-2845 Malicious code in node-red-contrib-yolo-object-detection (npm) 2026-04-17T11:30:45Z 2026-04-17T11:30:45Z
mal-2026-2840 Malicious code in sher-server-tool (PyPI) 2026-04-17T10:48:02Z 2026-04-17T11:25:37Z
mal-2026-2843 Malicious code in shan-lib-poc (PyPI) 2026-04-17T10:56:55Z 2026-04-17T10:56:55Z
ID Description Published Updated
ID Description Published Updated
wid-sec-w-2026-0145 FreeRDP: Mehrere Schwachstellen ermöglichen DoS und Codeausführung 2026-01-19T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2025-1350 Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service 2025-06-17T22:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2025-0861 Linux Kernel: Mehrere Schwachstellen 2025-04-21T22:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2025-0844 Linux Kernel: Mehrere Schwachstellen 2025-04-16T22:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2025-0837 Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service 2025-04-15T22:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2025-0545 Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service 2025-03-11T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2025-0499 Linux Kernel: Mehrere Schwachstellen 2025-03-06T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2025-0453 Linux Kernel: Mehrere Schwachstellen 2025-02-26T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2024-3762 Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service 2024-12-29T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2024-3575 Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service 2024-12-02T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2024-3251 Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service 2024-10-21T22:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2024-3134 Linux Kernel: Mehrere Schwachstellen 2024-10-09T22:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2024-3050 Linux Kernel: Mehrere Schwachstellen 2024-09-29T22:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2024-2173 Linux Kernel: Mehrere Schwachstellen 2024-09-17T22:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2024-1721 Linux Kernel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff 2024-07-28T22:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2024-1451 Linux Kernel: Mehrere Schwachstellen 2024-06-25T22:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2024-1259 Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service und unspezifischen Angriff 2024-05-30T22:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2024-0585 Grafana: Schwachstelle ermöglicht Privilegieneskalation 2024-03-07T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2024-0219 libTIFF: Mehrere Schwachstellen ermöglichen Denial of Service 2024-01-25T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2023-3004 libTIFF: Mehrere Schwachstellen ermöglichen Denial of Service 2023-11-26T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2022-0463 NGINX: Schwachstelle ermöglicht Denial of Service 2021-05-25T22:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2026-0879 Linux Kernel: Mehrere Schwachstellen 2026-03-25T23:00:00.000+00:00 2026-04-08T22:00:00.000+00:00
wid-sec-w-2026-0982 OpenBSD: Schwachstelle ermöglicht nicht spezifizierten Angriff 2026-04-06T22:00:00.000+00:00 2026-04-07T22:00:00.000+00:00
wid-sec-w-2026-0937 Google Chrome und Microsoft Edge: Mehrere Schwachstellen 2026-03-31T22:00:00.000+00:00 2026-04-06T22:00:00.000+00:00
wid-sec-w-2025-2310 F5 BIG-IP und F5OS: Mehrere Schwachstellen 2025-10-15T22:00:00.000+00:00 2026-03-31T22:00:00.000+00:00
wid-sec-w-2026-0909 Tinyproxy: Schwachstelle ermöglicht Denial of Service 2026-03-29T22:00:00.000+00:00 2026-03-30T22:00:00.000+00:00
wid-sec-w-2026-0904 vim: Schwachstelle ermöglicht Codeausführung 2026-03-29T22:00:00.000+00:00 2026-03-30T22:00:00.000+00:00
wid-sec-w-2026-0892 WatchGuard Firebox: Mehrere Schwachstellen 2026-03-26T23:00:00.000+00:00 2026-03-30T22:00:00.000+00:00
wid-sec-w-2026-0891 Dovecot: Mehrere Schwachstellen 2026-03-26T23:00:00.000+00:00 2026-03-30T22:00:00.000+00:00
wid-sec-w-2026-0880 FreeRDP: Mehrere Schwachstellen 2026-03-25T23:00:00.000+00:00 2026-03-30T22:00:00.000+00:00
ID Description Published Updated
icsa-26-071-06 Inductive Automation Ignition Software 2026-03-12T06:00:00.000000Z 2026-03-13T06:00:00.000000Z
icsa-26-071-05 Siemens Heliox EV Chargers 2026-03-10T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-26-071-04 Siemens SIMATIC 2026-03-10T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-26-071-03 Siemens SIDIS Prime 2026-03-10T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-26-071-02 Siemens RUGGEDCOM APE1808 Devices 2026-03-10T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-26-071-01 Trane Tracer SC, Tracer SC+, and Tracer Concierge 2026-03-12T06:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-26-048-04 Honeywell HIB2PI CCTV Camera (Update B) 2026-02-17T07:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-26-043-08 Siemens NX 2026-02-10T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-26-043-03 Siemens COMOS 2025-12-09T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-25-345-05 Siemens Advanced Licensing (SALT) Toolkit 2025-12-09T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-25-345-04 Siemens IAM Client 2025-12-09T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-25-254-03 Siemens SINAMICS Drives 2025-09-09T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-25-231-02 Siemens Mendix SAML Module 2025-08-14T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-25-226-22 Siemens Web Installer 2025-08-12T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-25-162-05 Siemens SIMATIC S7-1500 CPU Family 2025-06-10T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-25-162-02 Siemens RUGGEDCOM APE1808 2025-06-10T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-25-044-06 Siemens RUGGEDCOM APE1808 2025-02-11T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-24-284-06 Siemens SINEC Security Monitor 2024-10-08T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-26-069-03 Honeywell IQ4x BMS Controller 2026-03-10T06:00:00.000000Z 2026-03-10T06:00:00.000000Z
icsa-26-069-02 Lantronix EDS3000PS and EDS5000 2026-03-10T06:00:00.000000Z 2026-03-10T06:00:00.000000Z
icsa-26-069-01 Apeman Cameras 2026-03-10T06:00:00.000000Z 2026-03-10T06:00:00.000000Z
icsa-26-069-04 Ceragon Siklu MultiHaul and EtherHaul Series 2026-03-10T05:00:00.000000Z 2026-03-10T05:00:00.000000Z
icsa-26-064-01 Delta Electronics CNCSoft-G2 2026-03-05T07:00:00.000000Z 2026-03-05T07:00:00.000000Z
icsa-25-350-02 Johnson Controls PowerG, IQPanel and IQHub (Update A) 2025-12-16T07:00:00.000000Z 2026-03-05T07:00:00.000000Z
icsa-25-343-01 Universal Boot Loader (U-Boot) (Update A) 2025-12-09T07:00:00.000000Z 2026-03-05T07:00:00.000000Z
icsa-22-020-01 Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electric HMI SCADA (Update B) 2022-01-20T07:00:00.000000Z 2026-03-05T07:00:00.000000Z
va-25-297-01 IBM DOORS Next Generation multiple vulnerabilities 2025-10-22T18:45:47Z 2026-03-04T00:00:00Z
icsa-26-062-05 Labkotec LID-3300IP 2026-03-03T07:00:00.000000Z 2026-03-03T07:00:00.000000Z
icsa-26-062-04 Portwell Engineering Toolkits 2026-03-03T07:00:00.000000Z 2026-03-03T07:00:00.000000Z
icsa-26-062-03 Hitachi Energy RTU500 Product 2026-02-24T00:00:00.000000Z 2026-03-03T07:00:00.000000Z
ID Description Published Updated
cisco-sa-ucsciv-wgytc78q Cisco FXOS and UCS Manager Software Command Injection Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-nxos-ether-dos-kv8ynwz4 Cisco Nexus 3600 and 9500-R Series Switching Platforms Layer 2 Loop Denial of Service Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-nxos-dsnmp-cnn39uh Cisco Nexus 9000 Series Fabric Switches in ACI Mode SNMP Denial of Service Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-nxos-cpdos-qlsv6pfd Cisco Nexus 9000 Series Fabric Switches in ACI Mode Denial of Service Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-n3kn9k_aci_lldp_dos-ndgrrra3 Cisco NX-OS Software Link Layer Discovery Protocol Denial of Service Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-apic-dos-rnus8efw Cisco Application Policy Infrastructure Controller Denial of Service Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-wsa-archive-bypass-scx2e8zf Cisco Secure Web Appliance Real-Time Scanning Archive File Bypass Vulnerability 2026-02-04T16:00:00+00:00 2026-02-20T21:08:47+00:00
cisco-sa-voice-rce-morhqy4b Cisco Unified Communications Products Remote Code Execution Vulnerability 2026-01-21T16:00:00+00:00 2026-02-13T15:21:01+00:00
cisco-sa-snort3-mime-vulns-ttl8pgvh Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerabilities 2025-10-15T16:00:00+00:00 2026-02-12T18:38:13+00:00
cisco-sa-tce-roomos-dos-9v9jrc2q Cisco TelePresence Collaboration Endpoint Software and RoomOS Software Denial of Service Vulnerability 2026-02-04T16:00:00+00:00 2026-02-12T17:37:39+00:00
cisco-sa-snort3-dcerpc-vulns-j9hnf4th Multiple Cisco Products Snort 3 Distributed Computing Environment/Remote Procedure Call Vulnerabilities 2026-01-07T16:00:00+00:00 2026-02-10T20:42:07+00:00
cisco-sa-pi-xss-byevkcd Cisco Prime Infrastructure Stored Cross-Site Scripting Vulnerability 2026-02-04T16:00:00+00:00 2026-02-04T16:00:00+00:00
cisco-sa-epnm-pi-redirect-6sx82dn Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Open Redirect Vulnerability 2026-02-04T16:00:00+00:00 2026-02-04T16:00:00+00:00
cisco-sa-cmm-file-up-ky47n8kk Cisco Meeting Management Arbitrary File Upload Vulnerability 2026-02-04T16:00:00+00:00 2026-02-04T16:00:00+00:00
cisco-sa-ucce-pcce-xss-2jvyg3ud Cisco Packaged Contact Center Enterprise and Cisco Unified Contact Center Enterprise Cross-Site Scripting Vulnerabilities 2026-01-21T16:00:00+00:00 2026-01-21T16:00:00+00:00
cisco-sa-intersight-privesc-p6tbm6jk Cisco Intersight Virtual Appliance Privilege Escalation Vulnerability 2026-01-21T16:00:00+00:00 2026-01-21T16:00:00+00:00
cisco-sa-iec6400-pem5uq7v Cisco IEC6400 Wireless Backhaul Edge Compute Software SSH Denial of Service Vulnerability 2026-01-21T16:00:00+00:00 2026-01-21T16:00:00+00:00
cisco-sa-sma-attack-n9bf4 Reports About Cyberattacks Against Cisco Secure Email Gateway And Cisco Secure Email and Web Manager 2025-12-17T16:00:00+00:00 2026-01-15T16:01:43+00:00
cisco-sa-ise-xss-9tdh2kx Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability 2026-01-15T16:00:00+00:00 2026-01-15T16:00:00+00:00
cisco-sa-ise-xss-964cdxw5 Cisco Identity Services Engine Cross-Site Scripting Vulnerability 2026-01-15T16:00:00+00:00 2026-01-15T16:00:00+00:00
cisco-sa-epnm-pi-stored-xss-gekx8ywk Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Stored Cross-Site Scripting Vulnerability 2026-01-15T16:00:00+00:00 2026-01-15T16:00:00+00:00
cisco-sa-ise-xxe-jwsbsdkt Cisco Identity Services Engine XML External Entity Processing Information Disclosure Vulnerability 2026-01-07T16:00:00+00:00 2026-01-07T16:00:00+00:00
cisco-sa-react-flight-tyw32ddb Remote Code Execution Vulnerability in React and Next.js Frameworks: December 2025 2025-12-04T16:00:00+00:00 2025-12-17T22:37:17+00:00
cisco-sa-ise-multiple-vulns-o9beswjh Cisco Identity Services Engine Reflected Cross-Site Scripting and Information Disclosure Vulnerabilities 2025-11-05T16:00:00+00:00 2025-12-04T14:23:54+00:00
cisco-sa-cc-mult-vuln-gk4tfxsn Multiple Cisco Contact Center Products Vulnerabilities 2025-11-05T16:00:00+00:00 2025-11-18T14:49:09+00:00
cisco-sa-privesc-catc-ryjreelu Cisco Catalyst Center Privilege Escalation Vulnerability 2025-11-13T16:00:00+00:00 2025-11-13T16:00:00+00:00
cisco-sa-dnac-xss-wextvz59 Cisco Catalyst Center Cross-Site Scripting Vulnerability 2025-11-13T16:00:00+00:00 2025-11-13T16:00:00+00:00
cisco-sa-dnac-ci-zwlqvswt Cisco Catalyst Center REST API Command Injection Vulnerability 2025-11-13T16:00:00+00:00 2025-11-13T16:00:00+00:00
cisco-sa-catc-priv-esc-vs8eecux Cisco Catalyst Center Virtual Appliance Privilege Escalation Vulnerability 2025-11-13T16:00:00+00:00 2025-11-13T16:00:00+00:00
cisco-sa-catc-open-redirect-3w5bk3je Cisco Catalyst Center Virtual Appliance HTTP Open Redirect Vulnerability 2025-11-13T16:00:00+00:00 2025-11-13T16:00:00+00:00
ID Description Published Updated
msrc_cve-2026-32282 TOCTOU permits root escape on Linux via Root.Chmod in os in internal/syscall/unix 2026-04-02T00:00:00.000Z 2026-04-15T01:48:20.000Z
msrc_cve-2026-27144 Miscompilation allows memory corruption via CONVNOP-wrapped array copy in cmd/compile 2026-04-02T00:00:00.000Z 2026-04-15T01:47:59.000Z
msrc_cve-2026-32280 Unexpected work during chain building in crypto/x509 2026-04-02T00:00:00.000Z 2026-04-15T01:47:43.000Z
msrc_cve-2026-32283 Unauthenticated TLS 1.3 KeyUpdate record can cause persistent connection retention and DoS in crypto/tls 2026-04-02T00:00:00.000Z 2026-04-15T01:47:16.000Z
msrc_cve-2026-32281 Inefficient policy validation in crypto/x509 2026-04-02T00:00:00.000Z 2026-04-15T01:46:32.000Z
msrc_cve-2026-32288 Unbounded allocation for old GNU sparse in archive/tar 2026-04-02T00:00:00.000Z 2026-04-15T01:46:07.000Z
msrc_cve-2026-28390 Possible NULL Dereference When Processing CMS KeyTransportRecipientInfo 2026-04-02T00:00:00.000Z 2026-04-15T01:45:23.000Z
msrc_cve-2026-31789 Heap Buffer Overflow in Hexadecimal Conversion 2026-04-02T00:00:00.000Z 2026-04-15T01:45:06.000Z
msrc_cve-2026-28389 Possible NULL Dereference When Processing CMS KeyAgreeRecipientInfo 2026-04-02T00:00:00.000Z 2026-04-15T01:44:54.000Z
msrc_cve-2026-28388 NULL Pointer Dereference When Processing a Delta CRL 2026-04-02T00:00:00.000Z 2026-04-15T01:44:38.000Z
msrc_cve-2026-28387 Potential Use-after-free in DANE Client Code 2026-04-02T00:00:00.000Z 2026-04-15T01:44:18.000Z
msrc_cve-2026-2646 Heap buffer overflow in session parsing with wolfSSL_d2i_SSL_SESSION() function 2026-03-02T00:00:00.000Z 2026-04-15T01:43:43.000Z
msrc_cve-2026-2645 Acceptance of CertificateVerify Message before ClientKeyExchange in TLS 1.2 2026-03-02T00:00:00.000Z 2026-04-15T01:43:37.000Z
msrc_cve-2026-3579 Non-constant time multiplication subroutine __muldi3 on RISC-V RV32I 2026-03-02T00:00:00.000Z 2026-04-15T01:43:31.000Z
msrc_cve-2026-3849 Buffer Overflow in HPKE via Oversized ECH Config 2026-03-02T00:00:00.000Z 2026-04-15T01:43:25.000Z
msrc_cve-2026-35611 Addressable has a Regular Expression Denial of Service in Addressable templates 2026-04-02T00:00:00.000Z 2026-04-15T01:43:25.000Z
msrc_cve-2026-35093 Libinput: libinput: unauthorized code execution and information disclosure through lua bytecode plugins 2026-04-02T00:00:00.000Z 2026-04-15T01:42:54.000Z
msrc_cve-2026-34743 XZ Utils: Buffer overflow in lzma_index_append() 2026-04-02T00:00:00.000Z 2026-04-15T01:42:40.000Z
msrc_cve-2026-3644 Incomplete control character validation in http.cookies 2026-03-02T00:00:00.000Z 2026-04-15T01:42:33.000Z
msrc_cve-2026-34601 xmldom: XML injection via unsafe CDATA serialization allows attacker-controlled markup insertion 2026-04-02T00:00:00.000Z 2026-04-15T01:42:18.000Z
msrc_cve-2026-32287 Infinite loop in github.com/antchfx/xpath 2026-03-02T00:00:00.000Z 2026-04-15T01:41:59.000Z
msrc_cve-2026-32777 CVE-2026-32777 2026-03-02T00:00:00.000Z 2026-04-15T01:41:54.000Z
msrc_cve-2026-4739 Integer overflow vulnerabilities in InsightSoftwareConsortium/ITK 2026-03-02T00:00:00.000Z 2026-04-15T01:41:38.000Z
msrc_cve-2026-32778 CVE-2026-32778 2026-03-02T00:00:00.000Z 2026-04-15T01:41:36.000Z
msrc_cve-2026-32776 CVE-2026-32776 2026-03-02T00:00:00.000Z 2026-04-15T01:41:18.000Z
msrc_cve-2026-4176 Perl versions from 5.9.4 before 5.40.4-RC1, from 5.41.0 before 5.42.2-RC1, from 5.43.0 before 5.43.9 contain a vulnerable version of Compress::Raw::Zlib 2026-03-02T00:00:00.000Z 2026-04-15T01:41:11.000Z
msrc_cve-2026-27171 zlib before 1.3.2 allows CPU consumption via crc32_combine64 and crc32_combine_gen64 because x2nmodp can do right shifts within a loop that has no termination condition. 2026-02-02T00:00:00.000Z 2026-04-15T01:40:55.000Z
msrc_cve-2026-27139 FileInfo can escape from a Root in os 2026-03-02T00:00:00.000Z 2026-04-15T01:40:46.000Z
msrc_cve-2025-14523 Libsoup: libsoup: duplicate host header handling causes host-parsing discrepancy (first- vs last-value wins) 2025-12-02T00:00:00.000Z 2026-04-15T01:39:52.000Z
msrc_cve-2026-33940 Handlebars.js has JavaScript Injection via AST Type Confusion when passing an object as dynamic partial 2026-03-02T00:00:00.000Z 2026-04-15T01:39:35.000Z
ID Description Published Updated
ncsc-2026-0043 Zeroday-kwetsbaarheden verholpen in Ivanti Endpoint Manager Mobile 2026-01-29T19:15:04.575371Z 2026-02-20T14:47:02.047999Z
ncsc-2026-0067 Kwetsbaarheden verholpen in GitHub Enterprise Server 2026-02-20T10:13:39.540778Z 2026-02-20T10:13:39.540778Z
ncsc-2026-0066 Kwetsbaarheid verholpen in Google Chrome 2026-02-19T08:29:30.712590Z 2026-02-19T08:29:30.712590Z
ncsc-2026-0065 Kwetsbaarheid verholpen in Dell RecoverPoint for Virtual Machines 2026-02-18T13:18:23.815384Z 2026-02-18T13:18:23.815384Z
ncsc-2026-0064 Kwetsbaarheden verholpen in Apple iOS en iPadOS 2026-02-13T13:35:03.870920Z 2026-02-13T13:35:03.870920Z
ncsc-2026-0063 Kwetsbaarheden verholpen in Apple macOS 2026-02-13T13:24:06.433550Z 2026-02-13T13:24:06.433550Z
ncsc-2026-0048 Kwetsbaarheid verholpen in BeyondTrust Remote Support 2026-02-09T10:27:57.867529Z 2026-02-13T12:54:32.614217Z
ncsc-2026-0062 Kwetsbaarheden verholpen in GitLab CE/EE 2026-02-11T11:45:05.986313Z 2026-02-11T11:45:05.986313Z
ncsc-2026-0061 Kwetsbaarheden verholpen in Fortinet FortiOS 2026-02-11T11:34:50.888067Z 2026-02-11T11:34:50.888067Z
ncsc-2026-0060 Kwetsbaarheden verholpen in Fortinet FortiSandbox, FortiAuthenticator en FortiClient 2026-02-11T11:34:36.684955Z 2026-02-11T11:34:36.684955Z
ncsc-2026-0058 Kwetsbaarheden verholpen in Microsoft Office 2026-02-10T19:11:42.825147Z 2026-02-10T19:11:42.825147Z
ncsc-2026-0057 Kwetsbaarheden verholpen in Microsoft Azure 2026-02-10T19:08:27.878305Z 2026-02-10T19:08:27.878305Z
ncsc-2026-0056 Kwetsbaarheden verholpen in Microsoft Developer Tools 2026-02-10T19:07:16.028511Z 2026-02-10T19:07:16.028511Z
ncsc-2026-0055 Kwetsbaarheid verholpen in Microsoft SQL Server 2026-02-10T19:05:45.729972Z 2026-02-10T19:05:45.729972Z
ncsc-2026-0054 Kwetsbaarheid verholpen in Microsoft Exchange 2026-02-10T19:04:51.366294Z 2026-02-10T19:04:51.366294Z
ncsc-2026-0053 Kwetsbaarheden verholpen in Microsoft Windows 2026-02-10T19:01:45.561771Z 2026-02-10T19:01:45.561771Z
ncsc-2026-0052 Kwetsbaarheden verholpen in SAP producten 2026-02-10T12:28:40.531069Z 2026-02-10T12:28:40.531069Z
ncsc-2026-0051 Kwetsbaarheden verholpen in Siemens producten 2026-02-10T12:27:40.637581Z 2026-02-10T12:27:40.637581Z
ncsc-2026-0050 Kwetsbaarheid verholpen in PEAR 2026-02-09T10:41:43.856342Z 2026-02-09T10:41:43.856342Z
ncsc-2026-0049 Kwetsbaarheden verholpen in n8n 2026-02-09T10:39:40.792744Z 2026-02-09T10:39:40.792744Z
ncsc-2026-0046 Kwetsbaarheden verholpen in Samsung mobile 2026-02-09T07:48:28.751473Z 2026-02-09T07:48:28.751473Z
ncsc-2026-0040 Kwetsbaarheid verholpen in SmarterTools SmarterMail 2026-01-27T10:51:39.476320Z 2026-02-06T09:25:57.008166Z
ncsc-2026-0045 Kwetsbaarheid verholpen in Cisco Meeting Management 2026-02-06T09:22:16.831778Z 2026-02-06T09:22:16.831778Z
ncsc-2026-0044 Kwetsbaarheid verholpen in Cisco TelePresence Collaboration Endpoint 2026-02-06T09:20:11.629058Z 2026-02-06T09:20:11.629058Z
ncsc-2026-0042 Kwetsbaarheden verholpen in SolarWinds Web Help Desk 2026-01-28T16:37:21.114054Z 2026-02-02T09:47:54.857445Z
ncsc-2025-0386 Kwetsbaarheden verholpen in Fortinet producten 2025-12-10T09:51:34.918202Z 2026-01-28T15:46:10.814803Z
ncsc-2026-0041 Kwetsbaarheid verholpen in Fortinet producten 2026-01-28T09:32:41.752905Z 2026-01-28T09:32:41.752905Z
ncsc-2026-0039 ZeroDay kwetsbaarheid verholpen in Microsoft Office 2026-01-27T07:27:52.867415Z 2026-01-27T07:27:52.867415Z
ncsc-2026-0038 Kwetsbaarheid verholpen in BIND 9 2026-01-23T08:54:43.506215Z 2026-01-23T08:54:43.506215Z
ncsc-2026-0037 Kwetsbaarheden verholpen in GitLab Community Edition en Enterprise Edition 2026-01-22T12:35:30.505659Z 2026-01-22T12:35:30.505659Z
ID Description Published Updated
ID Description Published Updated
opensuse-su-2026:10453-1 libpolkit-agent-1-0-127-3.1 on GA media 2026-03-28T00:00:00Z 2026-03-28T00:00:00Z
opensuse-su-2026:10452-1 libjavamapscript-8.6.1-1.1 on GA media 2026-03-28T00:00:00Z 2026-03-28T00:00:00Z
opensuse-su-2026:10451-1 libpng16-16-1.6.56-1.1 on GA media 2026-03-28T00:00:00Z 2026-03-28T00:00:00Z
opensuse-su-2026:10450-1 incus-6.23-1.1 on GA media 2026-03-28T00:00:00Z 2026-03-28T00:00:00Z
opensuse-su-2026:10449-1 gsl-2.8-5.1 on GA media 2026-03-28T00:00:00Z 2026-03-28T00:00:00Z
opensuse-su-2026:10448-1 bind-9.20.21-1.1 on GA media 2026-03-28T00:00:00Z 2026-03-28T00:00:00Z
opensuse-su-2026:10447-1 MozillaThunderbird-140.9.0-1.1 on GA media 2026-03-28T00:00:00Z 2026-03-28T00:00:00Z
opensuse-su-2026:10446-1 ImageMagick-7.1.2.18-1.1 on GA media 2026-03-28T00:00:00Z 2026-03-28T00:00:00Z
opensuse-su-2026:10441-1 strongswan-6.0.5-1.1 on GA media 2026-03-26T00:00:00Z 2026-03-26T00:00:00Z
opensuse-su-2026:10440-1 jupyter-nbclassic-1.3.3-1.1 on GA media 2026-03-26T00:00:00Z 2026-03-26T00:00:00Z
opensuse-su-2026:10439-1 plexus-utils-4.0.2-2.1 on GA media 2026-03-26T00:00:00Z 2026-03-26T00:00:00Z
opensuse-su-2026:10438-1 openbao-2.5.2-1.1 on GA media 2026-03-26T00:00:00Z 2026-03-26T00:00:00Z
opensuse-su-2026:10437-1 libnghttp2-14-1.68.1-1.1 on GA media 2026-03-26T00:00:00Z 2026-03-26T00:00:00Z
opensuse-su-2026:10436-1 freeipmi-1.6.17-1.1 on GA media 2026-03-26T00:00:00Z 2026-03-26T00:00:00Z
opensuse-su-2026:10435-1 cpp-httplib-devel-0.38.0-1.1 on GA media 2026-03-26T00:00:00Z 2026-03-26T00:00:00Z
opensuse-su-2026:10434-1 chromedriver-146.0.7680.164-1.1 on GA media 2026-03-26T00:00:00Z 2026-03-26T00:00:00Z
opensuse-su-2026:10433-1 LibVNCServer-devel-0.9.15-2.1 on GA media 2026-03-26T00:00:00Z 2026-03-26T00:00:00Z
opensuse-su-2026:10419-1 rclone-1.73.3-1.1 on GA media 2026-03-24T00:00:00Z 2026-03-24T00:00:00Z
opensuse-su-2026:10418-1 python311-jsonpath-ng-1.8.0-1.1 on GA media 2026-03-24T00:00:00Z 2026-03-24T00:00:00Z
opensuse-su-2026:10417-1 python311-deepdiff-8.6.2-1.1 on GA media 2026-03-24T00:00:00Z 2026-03-24T00:00:00Z
opensuse-su-2026:10416-1 python313-PyMuPDF-1.27.2.2-1.1 on GA media 2026-03-24T00:00:00Z 2026-03-24T00:00:00Z
opensuse-su-2026:10415-1 glances-common-4.5.2-1.1 on GA media 2026-03-24T00:00:00Z 2026-03-24T00:00:00Z
opensuse-su-2026:10414-1 perl-Crypt-URandom-0.550.0-1.1 on GA media 2026-03-24T00:00:00Z 2026-03-24T00:00:00Z
opensuse-su-2026:10413-1 firefox-esr-140.9.0-1.1 on GA media 2026-03-24T00:00:00Z 2026-03-24T00:00:00Z
opensuse-su-2026:10406-1 lemon-3.51.3-1.1 on GA media 2026-03-22T00:00:00Z 2026-03-22T00:00:00Z
opensuse-su-2026:10405-1 python314-3.14.3-3.1 on GA media 2026-03-22T00:00:00Z 2026-03-22T00:00:00Z
opensuse-su-2026:10404-1 python310-3.10.20-2.1 on GA media 2026-03-22T00:00:00Z 2026-03-22T00:00:00Z
opensuse-su-2026:10403-1 python311-pypdf-6.9.1-1.1 on GA media 2026-03-22T00:00:00Z 2026-03-22T00:00:00Z
opensuse-su-2026:10402-1 python311-PyPDF2-2.11.1-8.1 on GA media 2026-03-22T00:00:00Z 2026-03-22T00:00:00Z
opensuse-su-2026:10401-1 freeciv-3.2.4-1.1 on GA media 2026-03-22T00:00:00Z 2026-03-22T00:00:00Z
ID Description Published Updated
ID Description Published Updated
rhsa-2025:11673 Red Hat Security Advisory: OpenShift Container Platform 4.19.6 bug fix and security update 2025-07-29T07:05:14+00:00 2026-04-14T09:55:54+00:00
rhsa-2025:10699 Red Hat Security Advisory: libxml2 security update 2025-07-09T12:18:48+00:00 2026-04-14T09:55:54+00:00
rhsa-2025:11580 Red Hat Security Advisory: libxml2 security update 2025-07-23T05:06:37+00:00 2026-04-14T09:55:53+00:00
rhsa-2025:10698 Red Hat Security Advisory: libxml2 security update 2025-07-09T12:04:08+00:00 2026-04-14T09:55:51+00:00
rhsa-2025:10630 Red Hat Security Advisory: libxml2 security update 2025-07-08T21:17:21+00:00 2026-04-14T09:55:50+00:00
rhsa-2017:1201 Red Hat Security Advisory: thunderbird security update 2017-05-08T06:45:45+00:00 2026-04-14T09:55:49+00:00
rhsa-2017:1106 Red Hat Security Advisory: firefox security update 2017-04-21T00:49:25+00:00 2026-04-14T09:55:48+00:00
rhsa-2017:1104 Red Hat Security Advisory: firefox security update 2017-04-20T08:21:32+00:00 2026-04-14T09:55:48+00:00
rhsa-2026:5665 Red Hat Security Advisory: Red Hat Quay 3.10.19 2026-03-24T18:02:58+00:00 2026-04-14T09:52:41+00:00
rhsa-2026:7314 Red Hat Security Advisory: Red Hat Quay 3.14.7 2026-04-09T13:39:27+00:00 2026-04-14T09:52:37+00:00
rhsa-2026:4942 Red Hat Security Advisory: Red Hat Quay 3.12.15 2026-03-18T16:21:15+00:00 2026-04-14T09:52:36+00:00
rhsa-2026:7942 Red Hat Security Advisory: HawtIO 4.3.1 for Red Hat build of Apache Camel 4 Release and security update. 2026-04-13T21:59:31+00:00 2026-04-14T09:46:57+00:00
rhsa-2026:7854 Red Hat Security Advisory: podman security update 2026-04-13T12:51:03+00:00 2026-04-14T09:46:57+00:00
rhsa-2026:7052 Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.0.14 2026-04-08T12:26:52+00:00 2026-04-14T09:46:57+00:00
rhsa-2026:7676 Red Hat Security Advisory: rhc security update 2026-04-13T02:21:56+00:00 2026-04-14T09:46:56+00:00
rhsa-2026:6568 Red Hat Security Advisory: Red Hat Quay 3.15.4 2026-04-03T22:07:28+00:00 2026-04-14T09:46:56+00:00
rhsa-2026:5636 Red Hat Security Advisory: multicluster engine for Kubernetes v2.7.9 security update 2026-03-24T14:23:47+00:00 2026-04-14T09:46:56+00:00
rhsa-2026:6435 Red Hat Security Advisory: mariadb:10.11 security update 2026-04-02T10:59:43+00:00 2026-04-14T09:46:55+00:00
rhsa-2026:6428 Red Hat Security Advisory: Network Observability 1.11.1 for OpenShift 2026-04-02T07:50:38+00:00 2026-04-14T09:46:55+00:00
rhsa-2026:6226 Red Hat Security Advisory: Multicluster Global Hub 1.6.2 security update 2026-03-31T02:53:32+00:00 2026-04-14T09:46:55+00:00
rhsa-2026:6192 Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.27.0 Release. 2026-03-30T15:41:48+00:00 2026-04-14T09:46:55+00:00
rhsa-2026:6184 Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.19 security, enhancement & bug fix update 2026-03-30T13:41:49+00:00 2026-04-14T09:46:54+00:00
rhsa-2026:5968 Red Hat Security Advisory: Satellite 6.18.4 Async Update 2026-03-26T19:47:53+00:00 2026-04-14T09:46:53+00:00
rhsa-2026:5866 Red Hat Security Advisory: OpenShift Container Platform 4.17.52 packages and security update 2026-04-01T09:29:07+00:00 2026-04-14T09:46:53+00:00
rhsa-2026:5853 Red Hat Security Advisory: osbuild-composer security update 2026-03-26T01:05:19+00:00 2026-04-14T09:46:53+00:00
rhsa-2026:5852 Red Hat Security Advisory: osbuild-composer security update 2026-03-26T00:58:34+00:00 2026-04-14T09:46:53+00:00
rhsa-2026:5851 Red Hat Security Advisory: DevWorkspace Operator 0.40.0 release. 2026-03-25T23:56:41+00:00 2026-04-14T09:46:52+00:00
rhsa-2026:5807 Red Hat Security Advisory: RHOAI 2.16.4 - Red Hat OpenShift AI 2026-03-25T12:32:51+00:00 2026-04-14T09:46:52+00:00
rhsa-2026:5645 Red Hat Security Advisory: cert-manager Operator for Red Hat OpenShift 1.17.1 2026-03-24T15:38:55+00:00 2026-04-14T09:46:51+00:00
rhsa-2026:5544 Red Hat Security Advisory: osbuild-composer security update 2026-03-24T06:55:51+00:00 2026-04-14T09:46:51+00:00
ID Description Published Updated
sevd-2025-014-09 EcoStruxure™ Power Build Rapsody 2025-01-14T00:00:00.000Z 2025-05-13T04:00:00.000Z
sevd-2024-282-05 EcoStruxure™ Power Monitoring Expert (PME) 2024-10-08T04:00:00.000Z 2025-05-13T04:00:00.000Z
sevd-2025-098-02 Trio™ Q Licensed Data Radios 2025-04-08T04:00:00.000Z 2025-04-08T04:00:00.000Z
sevd-2025-014-01 Modicon M580 PLCs, BMENOR2200H and EVLink Pro AC 2025-01-14T05:00:00.000Z 2025-04-08T04:00:00.000Z
sevd-2025-070-03 WebHMI Component For EcoStruxure™ Power Automation System User Interface and EcoStruxure™ Microgrid Operation Large 2025-03-11T04:00:00.000Z 2025-03-11T04:00:00.000Z
sevd-2025-070-02 EPAS-UI & EcoSUI 2025-03-11T04:00:00.000Z 2025-03-11T04:00:00.000Z
sevd-2025-070-01 EcoStruxure™ Panel Server 2025-03-11T04:00:00.000Z 2025-03-11T04:00:00.000Z
sevd-2025-042-04 Enerlin'X IFE and eIFE 2025-02-11T06:00:00.000Z 2025-02-11T06:00:00.000Z
sevd-2025-042-03 EcoStruxure™ Process Expert, EcoStruxure™ Process Expert for AVEVA System Platform 2025-02-11T06:00:00.000Z 2025-02-11T06:00:00.000Z
sevd-2025-042-01 ASCO 5310 / 5350 Remote Annunciator 2025-02-11T06:00:00.000Z 2025-02-11T06:00:00.000Z
sevd-2025-014-08 Power Logic HDPM6000 High-Density Metering System 2025-01-14T00:00:00.000Z 2025-01-14T00:00:00.000Z
sevd-2025-014-04 Web Designer for Modicon Communication Modules 2025-01-14T00:00:00.000Z 2025-01-14T00:00:00.000Z
sevd-2024-345-02 Harmony HMI and Pro-face HMI products 2024-12-10T00:00:00.000Z 2024-12-10T00:00:00.000Z
sevd-2024-345-01 PowerChute Serial Shutdown 2024-12-10T00:00:00.000Z 2024-12-10T00:00:00.000Z
sevd-2024-317-04 EcoStruxure™ IT Gateway 2024-11-12T00:00:00.000Z 2024-11-12T00:00:00.000Z
sevd-2024-317-01 PowerLogic PM5300 Series 2024-11-12T00:00:00.000Z 2024-11-12T00:00:00.000Z
sevd-2021-159-02 PowerLogic PM5500 and PowerLogic PM8ECC 2021-06-08T00:00:00.000Z 2024-11-12T00:00:00.000Z
sevd-2024-282-08 EcoStruxure EV Charging Expert 2024-10-08T00:00:00.000Z 2024-10-08T00:00:00.000Z
sevd-2024-282-07 System Monitor Application in Harmony and Pro-face PS5000 Legacy Industrial PCs 2024-10-08T00:00:00.000Z 2024-10-08T00:00:00.000Z
sevd-2024-282-06 Zelio Soft 2 2024-10-08T00:00:00.000Z 2024-10-08T00:00:00.000Z
sevd-2024-282-04 EVlink Home Smart and Schneider Charge 2024-10-08T00:00:00.000Z 2024-10-08T00:00:00.000Z
sevd-2024-282-03 Easergy Studio 2024-10-08T00:00:00.000Z 2024-10-08T00:00:00.000Z
sevd-2024-282-02 Harmony iPC – HMIBSC IIoT Edge Box Core 2024-10-08T00:00:00.000Z 2024-10-08T00:00:00.000Z
sevd-2024-282-01 Data Center Expert 2024-10-08T00:00:00.000Z 2024-10-08T00:00:00.000Z
sevd-2022-102-02 Modicon M340 Controller and Communication Modules 2022-04-12T00:00:00.000Z 2024-10-08T00:00:00.000Z
sevd-2024-254-02 EcoStruxure™ Power Monitoring Expert and EcoStruxure™ Power Operation or EcoStruxure™ Power SCADA Operation with Advanced Reporting and Dashboards 2024-09-10T00:00:00.000Z 2024-09-10T00:00:00.000Z
sevd-2024-163-02 PowerLogic P5 2024-06-11T00:00:00.000Z 2024-09-10T00:00:00.000Z
sevd-2023-073-01 EcoStruxure™ Power Monitoring Expert 2023-03-14T00:00:00.000Z 2024-09-10T00:00:00.000Z
sevd-2023-192-02 ​​EcoStruxure™ OPC UA Server Expert​ 2023-07-11T07:01:56.000Z 2024-08-13T07:00:00.000Z
sevd-2024-226-02 EcoStruxure™ Machine SCADA Expert / BLUE Open Studio 2024-08-13T00:00:00.000Z 2024-08-13T00:00:00.000Z
ID Description Published Updated
sca-2020-0002 Vulnerabilities in SICK Package Analytics 2020-08-07T10:00:00.000Z 2020-07-28T10:00:00.000Z
sca-2020-0001 Security Information Regarding "Profile Programming" 2020-05-31T10:00:00.000Z 2020-05-31T10:00:00.000Z
sca-2019-0002 Vulnerability in SICK FX0-GENT00000 and SICK FX0-GPNT00000 2019-09-20T10:00:00.000Z 2019-09-20T10:00:00.000Z
sca-2019-0001 MSC800 affected by hard-coded credentials vulnerability 2019-06-21T10:00:00.000Z 2019-06-21T10:00:00.000Z
ID Description Published Updated
ssa-365200 SSA-365200: Google Chrome Type Confusion Vulnerability in Siemens Products 2025-10-14T00:00:00Z 2026-01-13T00:00:00Z
ssa-364175 SSA-364175: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 Devices Before V11.1.4-h1 2024-07-09T00:00:00Z 2026-01-13T00:00:00Z
ssa-192617 SSA-192617: Local Privilege Escalation Vulnerability in TeleControl Server Basic Before V3.1.2.4 2026-01-13T00:00:00Z 2026-01-13T00:00:00Z
ssa-014678 SSA-014678: Authorization Bypass Vulnerability in Industrial Edge Device Kit 2026-01-13T00:00:00Z 2026-01-13T00:00:00Z
ssa-001536 SSA-001536: Authorization Bypass Vulnerability in Siemens Industrial Edge Devices 2026-01-13T00:00:00Z 2026-01-13T00:00:00Z
ssa-512988 SSA-512988: File Parsing Vulnerability in Simcenter Femap Before V2512 2025-12-12T00:00:00Z 2025-12-12T00:00:00Z
ssa-915282 SSA-915282: Denial of service Vulnerability in Interniche IP-Stack based Industrial Devices 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-882673 SSA-882673: Multiple Vulnerabilities in SINEC Security Monitor before V4.10.0 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-800126 SSA-800126: Deserialization Vulnerability in Siemens Engineering Platforms before V20 2024-12-10T00:00:00Z 2025-12-09T00:00:00Z
ssa-763474 SSA-763474: Denial of Service Vulnerability in Ruggedcom ROS devices before V5.10.1 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-734261 SSA-734261: Authentication Bypass Vulnerability in Energy Services Using Elspec G5DFR 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-723487 SSA-723487: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SCALANCE, RUGGEDCOM and Related Products 2024-07-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-693808 SSA-693808: Deserialization Vulnerability in Siemens Engineering Platforms 2025-08-12T00:00:00Z 2025-12-09T00:00:00Z
ssa-673996 SSA-673996: Buffer Overflow Vulnerability in Third-Party Component in SICAM and SITIPE Products 2024-09-10T00:00:00Z 2025-12-09T00:00:00Z
ssa-626856 SSA-626856: Multiple Vulnerabilities in SINEMA Remote Connect Sever Before V3.2 SP4 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-493396 SSA-493396: Deserialization Vulnerability in Siemens Engineering Platforms 2025-08-12T00:00:00Z 2025-12-09T00:00:00Z
ssa-471761 SSA-471761: Multiple Vulnerabilities in SICAM T Before V3.0 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-420375 SSA-420375: Improper Integrity Check of Firmware Updates in Building X - Security Manager Edge Controller (ACC-AP) 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-416652 SSA-416652: Multiple Vulnerabilities in SIMATIC CN 4100 Before V4.0.1 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-392859 SSA-392859: Local Arbitrary Code Execution Vulnerability in Siemens Engineering Platforms before V20 2024-12-10T00:00:00Z 2025-12-09T00:00:00Z
ssa-356310 SSA-356310: Multiple Vulnerabilities in Gridscale X Prepay 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-202008 SSA-202008: Multiple Vulnerabilities in Ruggedcom Rox Before V2.17.0 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-241605 SSA-241605: Out of Bounds Read in PS/IGES Parasolid Translator Component Before V29.0.258 2025-11-17T00:00:00Z 2025-11-17T00:00:00Z
ssa-190588 SSA-190588: Cross-Site Scripting Vulnerability in Mendix Rich Text Widget 2025-11-17T00:00:00Z 2025-11-17T00:00:00Z
ssa-794185 SSA-794185: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SIPROTEC, SICAM and Related Products 2025-05-13T00:00:00Z 2025-11-11T00:00:00Z
ssa-750499 SSA-750499: Weak Encryption Vulnerability in SIPROTEC 5 Devices 2024-07-09T00:00:00Z 2025-11-11T00:00:00Z
ssa-711309 SSA-711309: Denial of Service Vulnerability in the OPC UA Implementations of SIMATIC Products 2023-09-12T00:00:00Z 2025-11-11T00:00:00Z
ssa-687955 SSA-687955: Accessible Development Shell via Physical Interface in SIPROTEC 5 2025-02-11T00:00:00Z 2025-11-11T00:00:00Z
ssa-682326 SSA-682326: Multiple Vulnerabilities in COMOS before V10.4.5 2025-11-11T00:00:00Z 2025-11-11T00:00:00Z
ssa-631336 SSA-631336: Multiple Web Server Vulnerabilities in SICAM GridEdge Before V2.6.6 2022-06-14T00:00:00Z 2025-11-11T00:00:00Z
ID Description Published Updated
suse-su-2026:1355-1 Security update for rubygem-bundler 2026-04-15T13:37:50Z 2026-04-15T13:37:50Z
suse-su-2026:1354-1 Security update for python313 2026-04-15T13:37:43Z 2026-04-15T13:37:43Z
suse-su-2026:1353-1 Security update for netty, netty-tcnative 2026-04-15T13:37:19Z 2026-04-15T13:37:19Z
suse-su-2026:1352-1 Security update for expat 2026-04-15T13:36:53Z 2026-04-15T13:36:53Z
suse-su-2026:1351-1 Security update for bind 2026-04-15T13:36:44Z 2026-04-15T13:36:44Z
suse-su-2026:1350-1 Security update for nghttp2 2026-04-15T13:36:21Z 2026-04-15T13:36:21Z
suse-su-2026:1349-1 Security update for python311 2026-04-15T13:35:56Z 2026-04-15T13:35:56Z
suse-su-2026:1347-1 Security update for vim 2026-04-15T12:26:44Z 2026-04-15T12:26:44Z
suse-su-2026:1345-1 Security update for python36 2026-04-15T12:04:26Z 2026-04-15T12:04:26Z
suse-su-2026:1344-1 Security update for libssh 2026-04-15T10:21:31Z 2026-04-15T10:21:31Z
suse-su-2026:1343-1 Security update for Mesa 2026-04-15T10:18:55Z 2026-04-15T10:18:55Z
suse-su-2026:1342-1 Security update for the Linux Kernel 2026-04-15T10:15:54Z 2026-04-15T10:15:54Z
suse-su-2026:1338-1 Security update for giflib 2026-04-15T07:33:53Z 2026-04-15T07:33:53Z
suse-su-2026:1337-1 Security update for rust1.92 2026-04-15T07:33:26Z 2026-04-15T07:33:26Z
suse-su-2026:1335-1 Security update for xorg-x11-server 2026-04-14T17:28:43Z 2026-04-14T17:28:43Z
suse-su-2026:1333-1 Security update for xorg-x11-server 2026-04-14T17:18:59Z 2026-04-14T17:18:59Z
suse-su-2026:1332-1 Security update for xorg-x11-server 2026-04-14T17:15:06Z 2026-04-14T17:15:06Z
suse-su-2026:1331-1 Security update for xorg-x11-server 2026-04-14T17:11:37Z 2026-04-14T17:11:37Z
suse-su-2026:1330-1 Security update for xorg-x11-server 2026-04-14T17:08:59Z 2026-04-14T17:08:59Z
suse-su-2026:1329-1 Security update for xwayland 2026-04-14T17:06:20Z 2026-04-14T17:06:20Z
suse-su-2026:1328-1 Security update for xwayland 2026-04-14T17:04:46Z 2026-04-14T17:04:46Z
suse-su-2026:21112-1 Security update for pam 2026-04-14T13:47:51Z 2026-04-14T13:47:51Z
suse-su-2026:1325-1 Security update for clamav 2026-04-14T13:15:45Z 2026-04-14T13:15:45Z
suse-su-2026:1324-1 Security update for clamav 2026-04-14T13:15:31Z 2026-04-14T13:15:31Z
suse-su-2026:1323-1 Security update for libpng16 2026-04-14T13:11:55Z 2026-04-14T13:11:55Z
suse-su-2026:1322-1 Security update for MozillaFirefox 2026-04-14T12:42:11Z 2026-04-14T12:42:11Z
suse-su-2026:1321-1 Security update for go1.25 2026-04-14T12:40:53Z 2026-04-14T12:40:53Z
suse-su-2026:1320-1 Security update for go1.26 2026-04-14T12:39:43Z 2026-04-14T12:39:43Z
suse-su-2026:21111-1 Security update for cockpit-subscriptions 2026-04-14T12:16:29Z 2026-04-14T12:16:29Z
suse-su-2026:1314-1 Security update for ignition 2026-04-14T11:07:12Z 2026-04-14T11:07:12Z
ID Description Published Updated
alsa-2025:3388 Important: python-jinja2 security update 2025-03-31T00:00:00Z 2026-04-09T18:19:12Z
alsa-2025:4048 Moderate: xmlrpc-c security update 2025-04-22T00:00:00Z 2026-04-09T18:11:53Z
alsa-2025:4049 Moderate: libtasn1 security update 2025-04-22T00:00:00Z 2026-04-09T18:00:49Z
alsa-2025:8254 Important: pcs security update 2025-05-28T00:00:00Z 2026-04-09T17:52:37Z
alsa-2025:4063 Moderate: ruby:3.1 security update 2025-04-22T00:00:00Z 2026-04-09T17:45:54Z
alsa-2025:11047 Moderate: pcs security update 2025-07-15T00:00:00Z 2026-04-09T15:41:47Z
alsa-2025:12527 Moderate: virt:rhel and virt-devel:rhel security update 2025-08-04T00:00:00Z 2026-04-09T15:30:58Z
alsa-2026:6750 Important: gstreamer1-plugins-bad-free, gstreamer1-plugins-base, and gstreamer1-plugins-good security update 2026-04-07T00:00:00Z 2026-04-09T12:29:46Z
alsa-2026:6949 Important: go-toolset:rhel8 security update 2026-04-08T00:00:00Z 2026-04-09T12:17:43Z
alsa-2026:6915 Important: vim security update 2026-04-07T00:00:00Z 2026-04-09T11:41:21Z
alsa-2026:6906 Important: nginx security update 2026-04-07T00:00:00Z 2026-04-09T11:12:05Z
alsa-2026:6918 Important: freerdp security update 2026-04-07T00:00:00Z 2026-04-09T10:20:55Z
alsa-2026:6391 Moderate: mysql:8.4 security update 2026-04-01T00:00:00Z 2026-04-09T10:00:41Z
alsa-2026:6435 Moderate: mariadb:10.11 security update 2026-04-02T00:00:00Z 2026-04-09T09:01:32Z
alsa-2026:6463 Important: openssh security update 2026-04-02T00:00:00Z 2026-04-09T08:50:06Z
alsa-2026:6462 Important: openssh security update 2026-04-02T00:00:00Z 2026-04-09T08:39:22Z
alsa-2026:6461 Important: openssh security update 2026-04-02T00:00:00Z 2026-04-09T08:28:49Z
alsa-2026:7080 Important: nodejs22 security update 2026-04-08T00:00:00Z 2026-04-09T02:15:49Z
alsa-2026:7081 Moderate: libtiff security update 2026-04-08T00:00:00Z 2026-04-09T02:00:14Z
alsa-2026:6628 Important: fontforge security update 2026-04-06T00:00:00Z 2026-04-08T23:11:48Z
alsa-2026:6631 Important: fontforge security update 2026-04-06T00:00:00Z 2026-04-08T20:50:37Z
alsa-2026:6572 Moderate: kernel-rt security update 2026-04-06T00:00:00Z 2026-04-06T09:38:16Z
alsa-2026:6571 Moderate: kernel security update 2026-04-06T00:00:00Z 2026-04-06T09:27:57Z
alsa-2026:6621 Moderate: crun security update 2026-04-06T00:00:00Z 2026-04-06T08:42:59Z
alsa-2026:6622 Moderate: crun security update 2026-04-06T00:00:00Z 2026-04-06T08:36:15Z
alsa-2026:6300 Important: gstreamer1-plugins-bad-free, gstreamer1-plugins-base, gstreamer1-plugins-good, and gstreamer1-plugins-ugly-free security update 2026-03-31T00:00:00Z 2026-04-03T17:13:38Z
alsa-2026:6436 Moderate: rsync security update 2026-04-02T00:00:00Z 2026-04-03T12:29:15Z
alsa-2026:6439 Important: libpng15 security update 2026-04-02T00:00:00Z 2026-04-03T12:19:53Z
alsa-2026:6445 Important: libpng12 security update 2026-04-02T00:00:00Z 2026-04-03T12:13:28Z
alsa-2026:6470 Important: perl-YAML-Syck security update 2026-04-02T00:00:00Z 2026-04-03T12:07:59Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
osv-2026-514 Heap-buffer-overflow in format_expand1 2026-04-03T00:09:42.155641Z 2026-04-03T00:09:42.155954Z
osv-2026-512 Heap-buffer-overflow in g_utf8_get_char 2026-04-03T00:07:59.707776Z 2026-04-03T00:07:59.708039Z
osv-2026-504 Heap-use-after-free in ObjectStream::getObject 2026-04-02T00:16:28.228723Z 2026-04-02T00:16:28.229037Z
osv-2022-937 Use-after-poison in rx_ip 2022-09-23T00:02:21.434097Z 2026-04-01T14:27:42.367988Z
osv-2022-1201 Stack-buffer-overflow in msc_zero_object 2022-11-24T13:00:10.344351Z 2026-03-31T14:04:55.969741Z
osv-2022-1188 Stack-buffer-overflow in authentic_get_tagged_data 2022-11-20T13:01:57.719130Z 2026-03-31T14:04:55.181202Z
osv-2023-395 Stack-buffer-overflow in sc_path_print 2023-05-14T14:00:57.078498Z 2026-03-31T14:04:53.759303Z
osv-2024-696 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr 2024-07-31T00:03:10.056663Z 2026-03-30T14:18:48.684167Z
osv-2024-400 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr 2024-05-02T00:03:16.309384Z 2026-03-30T14:18:22.305458Z
osv-2024-641 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr 2024-07-14T00:06:37.034414Z 2026-03-30T14:18:20.625772Z
osv-2024-278 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr 2024-04-19T00:12:11.684954Z 2026-03-30T14:17:53.191446Z
osv-2022-776 Heap-buffer-overflow in do_job 2022-08-24T00:00:48.440951Z 2026-03-28T14:13:55.545096Z
osv-2025-312 Heap-buffer-overflow in ZSTD_decompressMultiFrame 2025-05-02T00:14:14.459388Z 2026-03-27T14:26:26.446866Z
osv-2023-606 Heap-buffer-overflow in ZSTD_decompressMultiFrame 2023-07-23T14:01:02.159160Z 2026-03-27T14:21:24.837066Z
osv-2023-319 Heap-buffer-overflow in ZSTD_decompressSequencesLong_bmi2 2023-04-16T14:01:58.406534Z 2026-03-27T14:20:54.241339Z
osv-2022-675 Heap-buffer-overflow in void RDKit::ParseV3000AtomProps<std::__1::vector<std::__1::basic_string_view<cha 2022-08-06T00:00:51.363676Z 2026-03-27T14:20:04.040838Z
osv-2021-1672 Heap-buffer-overflow in blosc_d 2021-12-12T00:01:29.747137Z 2026-03-27T14:18:17.523662Z
osv-2022-1288 Stack-buffer-overflow in bool SmilesParseOps::parser::parse_atom_props<std::__1::__wrap_iter<char const*> 2024-11-04T00:16:22.516312Z 2026-03-27T14:17:53.064285Z
osv-2023-1350 Heap-buffer-overflow in inflate 2023-12-23T00:12:38.562149Z 2026-03-27T14:16:43.884162Z
osv-2022-1134 Heap-buffer-overflow in ndlz8_decompress 2022-11-04T00:02:11.463429Z 2026-03-27T14:15:56.573716Z
osv-2021-1070 Heap-buffer-overflow in ZSTD_decompressBlock_internal 2021-07-29T00:01:10.187569Z 2026-03-27T14:15:27.197578Z
osv-2026-461 UNKNOWN READ in XRef::constructObjectEntry 2026-03-26T00:17:47.551046Z 2026-03-26T00:17:47.551361Z
osv-2026-455 UNKNOWN READ in mkv::matroska_segment_c::TrackInit 2026-03-25T00:20:51.448743Z 2026-03-25T00:20:51.449185Z
osv-2023-216 Heap-buffer-overflow in H5G__node_cmp3 2023-03-23T13:00:48.081705Z 2026-03-24T16:17:49.377032Z
osv-2023-76 Heap-buffer-overflow in H5SM_delete 2023-02-18T13:00:50.471845Z 2026-03-24T15:56:21.323480Z
osv-2023-359 Heap-buffer-overflow in H5MM_memcpy 2023-05-01T14:02:33.841821Z 2026-03-24T15:52:15.056909Z
osv-2023-392 Negative-size-param in H5MM_memcpy 2023-05-13T14:00:26.093088Z 2026-03-24T15:13:27.688997Z
osv-2023-370 Heap-buffer-overflow in H5FS__sect_link 2023-05-06T14:01:04.165113Z 2026-03-24T15:11:55.539963Z
osv-2024-387 Heap-buffer-overflow in H5F_addr_encode 2024-04-30T00:13:39.184262Z 2026-03-24T15:11:37.246096Z
osv-2023-381 UNKNOWN READ in H5FL__blk_gc_list 2023-05-08T14:02:04.934252Z 2026-03-24T15:11:28.111319Z
ID Description Published Updated
rustsec-2026-0049 CRLs not considered authoritative by Distribution Point due to faulty matching logic 2026-03-20T12:00:00Z 2026-03-24T08:22:29Z
rustsec-2026-0072 Missing Check for All-Zero X25519 Shared Secret 2026-02-04T12:00:00Z 2026-03-24T08:16:07Z
rustsec-2026-0071 Nonce Reuse in HPKE Context 2026-02-05T12:00:00Z 2026-03-24T08:16:07Z
rustsec-2026-0070 Panic When Opening or Sealing on Export-Only Context 2026-02-11T12:00:00Z 2026-03-24T08:16:07Z
rustsec-2026-0069 Incorrect Length Encoding on KDF Export 2026-02-11T12:00:00Z 2026-03-24T08:16:07Z
rustsec-2026-0068 tar-rs incorrectly ignores PAX size headers if header size is nonzero 2026-03-19T12:00:00Z 2026-03-23T09:31:59Z
rustsec-2026-0067 `unpack_in` can chmod arbitrary directories by following symlinks 2026-03-19T12:00:00Z 2026-03-23T09:31:59Z
rustsec-2026-0066 Insufficient validation of PAX extensions during extraction 2026-03-17T12:00:00Z 2026-03-23T09:31:59Z
rustsec-2026-0047 PKCS7_verify Signature Validation Bypass in AWS-LC 2026-03-02T12:00:00Z 2026-03-21T06:45:35Z
rustsec-2026-0046 PKCS7_verify Certificate Chain Validation Bypass in AWS-LC 2026-03-02T12:00:00Z 2026-03-21T06:45:35Z
rustsec-2026-0045 Timing Side-Channel in AES-CCM Tag Verification in AWS-LC 2026-03-02T12:00:00Z 2026-03-21T06:45:35Z
rustsec-2026-0043 Timing Side-Channel in AES-CCM Tag Verification in AWS-LC 2026-03-02T12:00:00Z 2026-03-21T06:45:35Z
rustsec-2026-0065 `tokio-signal` is unmaintained 2026-03-20T12:00:00Z 2026-03-20T22:26:59Z
rustsec-2026-0064 `tokio-udp` is unmaintained 2026-03-20T12:00:00Z 2026-03-20T22:26:59Z
rustsec-2026-0063 `tokio-executor` is unmaintained 2026-03-20T12:00:00Z 2026-03-20T22:26:59Z
rustsec-2026-0062 `tokio-compat` is unmaintained 2026-03-20T12:00:00Z 2026-03-20T22:26:59Z
rustsec-2026-0061 `tokio-fs` is unmaintained 2026-03-20T12:00:00Z 2026-03-20T22:26:59Z
rustsec-2026-0060 `tokio-timer` is unmaintained 2026-03-20T12:00:00Z 2026-03-20T22:26:59Z
rustsec-2026-0059 `tokio-tcp` is unmaintained 2026-03-20T12:00:00Z 2026-03-20T22:26:59Z
rustsec-2026-0058 `tokio-io` is unmaintained 2026-03-20T12:00:00Z 2026-03-20T22:26:59Z
rustsec-2026-0057 `tokio-reactor` is unmaintained 2026-03-20T12:00:00Z 2026-03-20T22:26:59Z
rustsec-2026-0056 `tokio-codec` is unmaintained 2026-03-20T12:00:00Z 2026-03-20T22:26:59Z
rustsec-2026-0055 `tokio-process` is unmaintained 2026-03-20T12:00:00Z 2026-03-20T22:26:59Z
rustsec-2026-0054 `tokio-current-thread` is unmaintained 2026-03-20T12:00:00Z 2026-03-20T22:26:59Z
rustsec-2026-0053 `tokio-tls` is unmaintained 2026-03-20T12:00:00Z 2026-03-20T22:26:59Z
rustsec-2026-0052 `tokio-sync` is unmaintained 2026-03-20T12:00:00Z 2026-03-20T22:26:59Z
rustsec-2026-0051 `tokio-threadpool` is unmaintained 2026-03-20T12:00:00Z 2026-03-20T22:26:59Z
rustsec-2026-0050 `tokio-uds` is unmaintained 2026-03-20T12:00:00Z 2026-03-20T22:26:59Z
rustsec-2026-0048 CRL Distribution Point Scope Check Logic Error in AWS-LC 2026-03-19T12:00:00Z 2026-03-20T17:11:58Z
rustsec-2026-0044 AWS-LC X.509 Name Constraints Bypass via Wildcard/Unicode CN 2026-03-19T12:00:00Z 2026-03-20T17:11:58Z
ID Description Published Updated
bit-authentik-2025-29928 authentik's deletion of sessions did not revoke sessions when using database session storage 2026-04-16T23:36:25.530Z 2026-04-17T00:10:47.507Z
bit-authentik-2024-52307 authentik allows a timing attack due to missing constant time comparison for metrics view 2026-04-16T23:36:24.031Z 2026-04-17T00:10:47.507Z
bit-authentik-2024-52289 authentik has an insecure default configuration for OAuth2 Redirect URIs 2026-04-16T23:36:22.514Z 2026-04-17T00:10:47.507Z
bit-authentik-2024-52287 authentik performs insufficient validation of OAuth scopes 2026-04-16T23:36:20.916Z 2026-04-17T00:10:47.507Z
bit-authentik-2024-47077 authentik cross-provider token validation problems 2026-04-16T23:36:19.464Z 2026-04-17T00:10:47.507Z
bit-authentik-2024-47070 authentik vulnerable to password authentication bypass via X-Forwarded-For HTTP header 2026-04-16T23:36:17.967Z 2026-04-17T00:10:47.507Z
bit-authentik-2024-42490 authentik has Insufficient Authorization for several API endpoints 2026-04-16T23:36:16.647Z 2026-04-17T00:10:47.507Z
bit-authentik-2024-38371 Insufficient access control for OAuth2 Device Code flow in authentik 2026-04-16T23:36:15.228Z 2026-04-17T00:10:47.507Z
bit-authentik-2024-37905 Improper Access Control and Incorrect Authorization in github.com/goauthentik/authentik 2026-04-16T23:36:13.946Z 2026-04-17T00:10:47.507Z
bit-authentik-2024-23647 PKCE downgrade attack in Authentik 2026-04-16T23:36:12.438Z 2026-04-17T00:10:47.507Z
bit-authentik-2024-21637 XSS in Authentik via JavaScript-URI as Redirect URI and form_post Response Mode 2026-04-16T23:36:10.878Z 2026-04-17T00:10:47.507Z
bit-authentik-2024-11623 Stored XSS in authentik 2026-04-16T23:36:09.282Z 2026-04-17T00:10:47.507Z
bit-authentik-2023-48228 OAuth2: PKCE can be fully circumvented 2026-04-16T23:36:07.745Z 2026-04-17T00:10:47.507Z
bit-authentik-2023-46249 authentik potential installation takeover when default admin user is deleted 2026-04-16T23:36:06.215Z 2026-04-17T00:10:47.507Z
bit-authentik-2023-39522 Username enumeration attack in goauthentik 2026-04-16T23:36:04.816Z 2026-04-17T00:10:47.507Z
bit-authentik-2023-36456 Authentik lacks Proxy IP headers validation 2026-04-16T23:36:03.215Z 2026-04-17T00:10:47.507Z
bit-authentik-2023-26481 Insufficient user check in FlowTokens by Email stage 2026-04-16T23:36:01.864Z 2026-04-17T00:10:47.507Z
bit-authentik-2022-46172 authentik allows existing authenticated users to create arbitrary accounts 2026-04-16T23:36:00.542Z 2026-04-17T00:10:47.507Z
bit-authentik-2022-46145 authentik vulnerable to unauthorized user creation and potential account takeover 2026-04-16T23:35:59.036Z 2026-04-17T00:10:47.507Z
bit-authentik-2022-23555 authentik vulnerable to Improper Authentication via invitation URL token reuse 2026-04-16T23:35:57.484Z 2026-04-17T00:10:47.507Z
bit-apisix-2026-31924 Apache APISIX: Plugin tencent-cloud-cls log export uses plaintext HTTP 2026-04-16T23:36:06.924Z 2026-04-17T00:10:47.507Z
bit-apisix-2026-31923 Apache APISIX: Openid-connect `tls_verify` field is disabled by default 2026-04-16T23:36:05.480Z 2026-04-17T00:10:47.507Z
bit-airflow-2026-33858 Apache Airflow: Unsafe Deserialization via Legacy Serialization Keys (__type/__var) Bypass in XCom API 2026-04-16T23:38:09.491Z 2026-04-17T00:10:47.507Z
bit-airflow-2025-66236 Apache Airflow: Secrets from Airflow config file logged in plain text in DAG run logs UI 2026-04-16T23:37:55.116Z 2026-04-17T00:10:47.507Z
bit-activemq-2026-39304 Apache ActiveMQ Client, Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ: Incorrect handling of TLSv1.3 KeyUpdate can be exploited to cause DoS via OOM 2026-04-16T23:36:26.790Z 2026-04-17T00:10:47.507Z
bit-wiremock-2023-41329 Domain restrictions bypass via DNS Rebinding in WireMock and WireMock Studio 2026-04-13T16:00:00.480Z 2026-04-13T16:23:32.396Z
bit-wiremock-2023-41327 Controlled SSRF through URL in the WireMock 2026-04-13T15:59:58.176Z 2026-04-13T16:23:32.396Z
bit-tomcat-2026-29146 Apache Tomcat: EncryptInterceptor vulnerable to padding oracle attack by default 2026-04-13T16:01:34.700Z 2026-04-13T16:23:32.396Z
bit-nifi-2024-45477 Apache NiFi: Improper Neutralization of Input in Parameter Description 2026-04-13T14:17:18.796Z 2026-04-13T14:44:23.860Z
bit-wiremock-2023-50069 2026-04-13T11:50:15.583Z 2026-04-13T12:09:46.643Z
ID Description Published Updated
cleanstart-2026-ot38160 url 2026-04-09T00:55:38.018075Z 2026-04-08T07:36:24Z
cleanstart-2026-ba09462 OpenTelemetry-Go is the Go implementation of OpenTelemetry 2026-04-09T00:57:38.077873Z 2026-04-08T07:00:07Z
cleanstart-2026-mw52739 Security fixes for ghsa-72hv-8253-57qq, ghsa-qqpg-mvqg-649v applied in versions: 3.9.4-r0, 3.9.4-r6 2026-04-09T00:59:39.080550Z 2026-04-08T06:46:14Z
cleanstart-2026-ki25096 Security fixes for ghsa-72hv-8253-57qq applied in versions: 3.8.6-r0 2026-04-09T00:59:38.592849Z 2026-04-08T06:46:14Z
cleanstart-2026-ij23041 In libexpat before 2 2026-04-09T01:01:38.269615Z 2026-04-08T06:46:14Z
cleanstart-2026-gy86690 Security fixes for ghsa-72hv-8253-57qq applied in versions: 3.6.4-r4 2026-04-09T00:57:57.606656Z 2026-04-08T06:46:14Z
cleanstart-2026-pd43534 In libexpat before 2 2026-04-08T00:39:47.879615Z 2026-04-07T05:54:38Z
cleanstart-2026-mp09743 Security fixes for ghsa-72hv-8253-57qq applied in versions: 3.8.6-r0 2026-04-08T00:37:59.326932Z 2026-04-07T05:54:38Z
cleanstart-2026-bb02574 Security fixes for ghsa-72hv-8253-57qq applied in versions: 3.6.4-r4 2026-04-08T00:37:58.971684Z 2026-04-07T05:54:38Z
cleanstart-2026-af52025 In libexpat before 2 2026-04-08T00:39:48.013620Z 2026-04-07T05:54:38Z
cleanstart-2026-hx94762 attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing 2026-04-07T00:45:34.962189Z 2026-04-06T13:01:42Z
cleanstart-2026-gg94489 go-retryablehttp prior to 0 2026-04-07T00:41:33.578433Z 2026-04-06T13:01:42Z
cleanstart-2026-fu47971 protojson 2026-04-07T00:47:07.546790Z 2026-04-06T13:01:42Z
cleanstart-2026-ej93145 attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames 2026-04-07T00:44:04.086276Z 2026-04-06T13:01:42Z
cleanstart-2026-bk17545 attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing 2026-04-07T00:38:33.362093Z 2026-04-06T13:01:42Z
cleanstart-2026-aj47488 When using the RemoteIpFilter with requests received from a reverse proxy via HTTP that include the X-Forwarded-Proto header set to https, session cookies created by Apache Tomcat 11 2026-04-07T00:40:03.631106Z 2026-04-06T13:01:42Z
cleanstart-2026-fe32006 Security fixes for ghsa-72hv-8253-57qq applied in versions: 3.8.6-r0 2026-04-07T00:41:34.518345Z 2026-04-06T06:37:58Z
cleanstart-2026-dp59378 In libexpat before 2 2026-04-07T00:42:33.537935Z 2026-04-06T06:37:58Z
cleanstart-2026-ob18608 Security fixes for ghsa-72hv-8253-57qq, ghsa-qqpg-mvqg-649v applied in versions: 3.9.4-r0, 3.9.4-r6 2026-04-06T06:19:25.639311Z 2026-04-06T04:56:02Z
cleanstart-2026-kf75900 In libexpat before 2 2026-04-06T06:20:25.150640Z 2026-04-06T04:56:02Z
cleanstart-2026-jl41223 In libexpat before 2 2026-04-06T06:19:55.229801Z 2026-04-06T04:56:02Z
cleanstart-2026-jg79570 Security fixes for ghsa-72hv-8253-57qq applied in versions: 3.8.6-r0 2026-04-06T06:19:24.747052Z 2026-04-06T04:56:02Z
cleanstart-2026-dz75075 Security fixes for ghsa-72hv-8253-57qq applied in versions: 3.6.4-r4 2026-04-06T06:19:24.775093Z 2026-04-06T04:56:02Z
cleanstart-2026-nu19941 Security fixes for ghsa-72hv-8253-57qq applied in versions: 5.19.3-r1 2026-04-06T02:44:20.354882Z 2026-04-03T13:09:27Z
cleanstart-2026-kt07616 Security fixes for CVE-2026-22735, CVE-2026-22737 applied in versions: 6.2.3-r0 2026-04-06T02:44:27.120329Z 2026-04-03T13:09:27Z
cleanstart-2026-kt25851 Security fixes for CVE-2025-61727, CVE-2025-61729, CVE-2025-61732, CVE-2025-68121, ghsa-f6x5-jh6r-wrfv, ghsa-j5w8-q4qc-rx2x applied in versions: 0.87.0-r0, 0.87.0-r1, 0.88.0-r1 2026-04-06T02:44:54.790204Z 2026-04-03T08:04:33Z
cleanstart-2026-dq17669 Security fixes for CVE-2026-24051, CVE-2026-25934, CVE-2026-26958, CVE-2026-32287, CVE-2026-33186, CVE-2026-33762, CVE-2026-34165, ghsa-37cx-329c-33x3, ghsa-6g7g-w4f8-9c9x, ghsa-fw7p-63qq-7hpr applied in versions: 1.13.2-r0, 1.14.1-r0, 1.14.1-r1 2026-04-06T02:45:34.659600Z 2026-04-03T07:13:53Z
cleanstart-2026-ml41879 Security fixes for CVE-2026-1229, CVE-2026-24051, CVE-2026-25934, CVE-2026-26958, CVE-2026-32287, CVE-2026-33186, CVE-2026-33762, CVE-2026-34165, ghsa-37cx-329c-33x3, ghsa-6g7g-w4f8-9c9x, ghsa-fw7p-63qq-7hpr applied in versions: 1.13.2-r0, 1.14.0-r0, 1.14.0-r1, 1.14.1-r0 2026-04-06T02:45:36.057138Z 2026-04-03T07:11:16Z
cleanstart-2026-nd57973 Security fixes for ghsa-72hv-8253-57qq applied in versions: 3.8.6-r0 2026-04-06T02:45:57.693609Z 2026-04-03T07:10:19Z
cleanstart-2026-lr09759 Security fixes for ghsa-72hv-8253-57qq applied in versions: 3.6.4-r4 2026-04-06T02:46:06.138686Z 2026-04-03T07:10:19Z
ID Description Published Updated
drupal-contrib-2025-102 2025-08-27T17:20:11.000Z 2025-08-27T17:20:11.000Z
drupal-contrib-2025-099 2025-08-27T17:19:24.000Z 2025-08-27T17:19:24.000Z
drupal-contrib-2025-098 2025-08-27T17:19:14.000Z 2025-08-27T17:19:14.000Z
drupal-contrib-2025-096 2025-08-13T17:33:24.000Z 2025-08-13T20:10:05.000Z
drupal-contrib-2025-095 2025-08-06T16:50:43.000Z 2025-08-06T16:50:43.000Z
drupal-contrib-2025-094 2025-07-30T16:31:23.000Z 2025-07-30T16:31:23.000Z
drupal-contrib-2025-093 2025-07-30T16:30:44.000Z 2025-07-30T16:30:44.000Z
drupal-contrib-2025-092 2025-07-23T17:10:19.000Z 2025-07-23T17:10:19.000Z
drupal-contrib-2025-091 2025-07-16T16:46:49.000Z 2025-07-17T14:42:36.000Z
drupal-contrib-2025-090 2025-07-16T16:46:26.000Z 2025-07-16T16:46:26.000Z
drupal-contrib-2025-089 2025-07-16T16:46:08.000Z 2025-07-16T16:46:08.000Z
drupal-contrib-2025-087 2025-07-09T16:37:27.000Z 2025-07-09T16:37:27.000Z
drupal-contrib-2025-086 2025-07-02T17:37:13.000Z 2025-07-02T17:37:13.000Z
drupal-contrib-2025-085 2025-07-02T17:37:03.000Z 2025-07-02T17:37:03.000Z
drupal-contrib-2025-081 2025-06-25T18:42:06.000Z 2025-06-26T18:17:29.000Z
drupal-contrib-2025-084 2025-06-25T18:43:00.000Z 2025-06-25T18:43:00.000Z
drupal-contrib-2025-083 2025-06-25T18:42:38.000Z 2025-06-25T18:42:38.000Z
drupal-contrib-2025-082 2025-06-25T18:42:17.000Z 2025-06-25T18:42:17.000Z
drupal-contrib-2025-080 2025-06-25T18:41:56.000Z 2025-06-25T18:41:56.000Z
drupal-contrib-2025-079 2025-06-25T18:41:34.000Z 2025-06-25T18:41:34.000Z
drupal-contrib-2025-078 2025-06-25T18:41:20.000Z 2025-06-25T18:41:20.000Z
drupal-contrib-2025-077 2025-06-25T18:41:06.000Z 2025-06-25T18:41:06.000Z
drupal-contrib-2025-001 2025-01-08T17:22:11.000Z 2025-06-19T22:05:09.000Z
drupal-contrib-2025-004 2025-01-22T16:50:12.000Z 2025-05-29T18:26:44.000Z
drupal-contrib-2025-034 2025-04-16T16:24:49.000Z 2025-05-29T18:24:01.000Z
drupal-contrib-2025-041 2025-04-23T16:58:39.000Z 2025-05-29T18:23:44.000Z
drupal-contrib-2025-048 2025-05-07T17:06:26.000Z 2025-05-29T18:20:11.000Z
drupal-contrib-2025-049 2025-05-07T17:06:36.000Z 2025-05-29T18:20:00.000Z
drupal-contrib-2025-050 2025-05-07T17:06:52.000Z 2025-05-29T18:19:50.000Z
drupal-contrib-2025-051 2025-05-07T17:07:03.000Z 2025-05-29T18:19:36.000Z
ID Description Updated
ID Description Published Updated
certfr-2022-ale-001 [MaJ] Vulnérabilité dans Microsoft Windows 2022-01-12T00:00:00.000000 2022-05-04T00:00:00.000000
certfr-2021-ale-022 [MaJ] Vulnérabilité dans Apache Log4j 2021-12-10T00:00:00.000000 2022-05-04T00:00:00.000000
certfr-2021-ale-021 Vulnérabilité dans Microsoft Exchange 2021-11-10T00:00:00.000000 2022-05-04T00:00:00.000000
certfr-2021-ale-019 [MaJ] Vulnérabilité dans Microsoft Windows 2021-09-08T00:00:00.000000 2022-05-04T00:00:00.000000
certfr-2021-ale-017 Multiples vulnérabilités dans Microsoft Exchange 2021-08-27T00:00:00.000000 2022-05-04T00:00:00.000000
certfr-2021-ale-020 [Maj] Multiples vulnérabilités dans Microsoft Azure Open Management Infrastructure 2021-09-17T00:00:00.000000 2022-01-05T00:00:00.000000
certfr-2021-ale-018 Vulnérabilité dans Atlassian Confluence Server et Data Center 2021-09-06T00:00:00.000000 2022-01-05T00:00:00.000000
certfr-2021-ale-014 [MaJ] Multiples vulnérabilités dans Microsoft Windows 2021-07-02T00:00:00.000000 2022-01-05T00:00:00.000000
certfr-2021-ale-015 Multiples vulnérabilités dans SolarWinds Serv-U 2021-07-13T00:00:00.000000 2021-10-19T00:00:00.000000
certfr-2021-ale-012 Multiples vulnérabilités dans Microsoft Windows 2021-06-09T00:00:00.000000 2021-10-19T00:00:00.000000
certfr-2021-ale-011 Vulnérabilité dans VMware vCenter Server 2021-06-07T00:00:00.000000 2021-10-19T00:00:00.000000
certfr-2021-ale-016 Vulnérabilité dans SonicWall 2021-07-15T00:00:00.000000 2021-08-19T00:00:00.000000
certfr-2021-ale-004 [MàJ] Multiples vulnérabilités dans Microsoft Exchange Server 2021-03-03T00:00:00.000000 2021-07-16T00:00:00.000000
certfr-2021-ale-013 [MaJ] Vulnérabilité dans Microsoft Windows 2021-06-30T00:00:00.000000 2021-07-02T00:00:00.000000
certfr-2021-ale-010 Vulnérabilité dans Adobe Acrobat et Acrobat Reader 2021-05-12T00:00:00.000000 2021-06-29T00:00:00.000000
certfr-2021-ale-007 [MàJ] Vulnérabilité dans Pulse Connect Secure 2021-04-20T00:00:00.000000 2021-06-21T00:00:00.000000
certfr-2021-ale-009 [MàJ] Vulnérabilité dans Microsoft Windows 2021-05-12T00:00:00.000000 2021-06-10T00:00:00.000000
certfr-2021-ale-008 Multiples vulnérabilités dans Exim 2021-05-05T00:00:00.000000 2021-06-10T00:00:00.000000
certfr-2021-ale-005 Multiples vulnérabilités dans Microsoft DNS server 2021-03-12T00:00:00.000000 2021-05-12T00:00:00.000000
certfr-2021-ale-003 [MàJ] Vulnérabilité dans VMware vCenter Server 2021-02-25T00:00:00.000000 2021-05-12T00:00:00.000000
certfr-2021-ale-001 |MàJ] Vulnérabilité dans SonicWall SMA100 2021-02-02T00:00:00.000000 2021-05-12T00:00:00.000000
certfr-2021-ale-006 [MàJ] Vulnérabilité dans F5 BIG-IP 2021-03-22T00:00:00.000000 2021-04-15T00:00:00.000000
certfr-2020-ale-026 [MaJ] Présence de code malveillant dans SolarWinds Orion 2020-12-14T00:00:00.000000 2021-04-15T00:00:00.000000
certfr-2021-ale-002 [MàJ] Vulnérabilité dans Google Chrome et Microsoft Edge 2021-02-05T00:00:00.000000 2021-03-11T00:00:00.000000
certfr-2020-ale-021 Vulnérabilité dans Samba 2020-09-18T00:00:00.000000 2021-03-11T00:00:00.000000
certfr-2020-ale-020 [MàJ] Vulnérabilité dans Microsoft Netlogon 2020-09-15T00:00:00.000000 2021-03-11T00:00:00.000000
certfr-2020-ale-019 Recrudescence d'activité Emotet en France 2020-09-07T00:00:00.000000 2021-02-09T00:00:00.000000
certfr-2020-ale-025 Vulnérabilité dans Fortinet FortiOS SSL-VPN 2020-11-27T00:00:00.000000 2021-02-08T00:00:00.000000
certfr-2020-ale-024 [MaJ] Vulnérabilité dans les produits VMware 2020-11-24T00:00:00.000000 2020-12-17T00:00:00.000000
certfr-2020-ale-022 [MàJ] Vulnérabilité dans Oracle Weblogic 2020-10-30T00:00:00.000000 2020-12-17T00:00:00.000000
ID Description Published Updated
certfr-2026-avi-0405 Vulnérabilité dans les produits Moxa 2026-04-08T00:00:00.000000 2026-04-08T00:00:00.000000
certfr-2026-avi-0404 Multiples vulnérabilités dans les produits Mozilla 2026-04-08T00:00:00.000000 2026-04-08T00:00:00.000000
certfr-2026-avi-0403 Multiples vulnérabilités dans OpenSSL 2026-04-08T00:00:00.000000 2026-04-08T00:00:00.000000
certfr-2026-avi-0402 Vulnérabilité dans HPE Aruba Networking Private 5G Core 2026-04-08T00:00:00.000000 2026-04-08T00:00:00.000000
certfr-2026-avi-0373 Vulnérabilité dans Roundcube 2026-03-30T00:00:00.000000 2026-04-08T00:00:00.000000
certfr-2026-avi-0401 Multiples vulnérabilités dans GLPI 2026-04-07T00:00:00.000000 2026-04-07T00:00:00.000000
certfr-2026-avi-0400 Vulnérabilité dans Fortinet FortiClientEMS 2026-04-07T00:00:00.000000 2026-04-07T00:00:00.000000
certfr-2026-avi-0399 Multiples vulnérabilités dans Google Android 2026-04-07T00:00:00.000000 2026-04-07T00:00:00.000000
certfr-2026-avi-0398 Multiples vulnérabilités dans le noyau Linux de SUSE 2026-04-03T00:00:00.000000 2026-04-03T00:00:00.000000
certfr-2026-avi-0397 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2026-04-03T00:00:00.000000 2026-04-03T00:00:00.000000
certfr-2026-avi-0396 Multiples vulnérabilités dans le noyau Linux de Red Hat 2026-04-03T00:00:00.000000 2026-04-03T00:00:00.000000
certfr-2026-avi-0395 Multiples vulnérabilités dans les produits IBM 2026-04-03T00:00:00.000000 2026-04-03T00:00:00.000000
certfr-2026-avi-0394 Multiples vulnérabilités dans VMware Tanzu 2026-04-03T00:00:00.000000 2026-04-03T00:00:00.000000
certfr-2026-avi-0393 Vulnérabilité dans Synology Mail Station 2026-04-03T00:00:00.000000 2026-04-03T00:00:00.000000
certfr-2026-avi-0392 Multiples vulnérabilités dans Microsoft Edge 2026-04-03T00:00:00.000000 2026-04-03T00:00:00.000000
certfr-2026-avi-0391 Multiples vulnérabilités dans OpenSSH 2026-04-02T00:00:00.000000 2026-04-02T00:00:00.000000
certfr-2026-avi-0390 Multiples vulnérabilités dans Belden NetModule Router Software 2026-04-02T00:00:00.000000 2026-04-02T00:00:00.000000
certfr-2026-avi-0389 Vulnérabilité dans Microsoft Azure Linux 2026-04-02T00:00:00.000000 2026-04-02T00:00:00.000000
certfr-2026-avi-0388 Multiples vulnérabilités dans les produits Cisco 2026-04-02T00:00:00.000000 2026-04-02T00:00:00.000000
certfr-2026-avi-0387 Multiples vulnérabilités dans les produits Netgate 2026-04-02T00:00:00.000000 2026-04-02T00:00:00.000000
certfr-2026-avi-0386 Multiples vulnérabilités dans les produits Microsoft 2026-04-01T00:00:00.000000 2026-04-01T00:00:00.000000
certfr-2026-avi-0385 Multiples vulnérabilités dans Google Chrome 2026-04-01T00:00:00.000000 2026-04-01T00:00:00.000000
certfr-2026-avi-0384 Multiples vulnérabilités dans Joomla! 2026-04-01T00:00:00.000000 2026-04-01T00:00:00.000000
certfr-2026-avi-0383 Multiples vulnérabilités dans Sonicwall Email Security 2026-04-01T00:00:00.000000 2026-04-01T00:00:00.000000
certfr-2026-avi-0382 Multiples vulnérabilités dans les produits FoxIT 2026-03-31T00:00:00.000000 2026-03-31T00:00:00.000000
certfr-2026-avi-0381 Multiples vulnérabilités dans les produits Microsoft 2026-03-31T00:00:00.000000 2026-03-31T00:00:00.000000
certfr-2026-avi-0380 Multiples vulnérabilités dans Microsoft Edge 2026-03-31T00:00:00.000000 2026-03-31T00:00:00.000000
certfr-2026-avi-0379 Vulnérabilité dans Elastic OpenTelemetry Java 2026-03-31T00:00:00.000000 2026-03-31T00:00:00.000000
certfr-2026-avi-0378 Vulnérabilité dans Symantec Data Loss Prevention (DLP) 2026-03-31T00:00:00.000000 2026-03-31T00:00:00.000000
certfr-2026-avi-0377 Multiples vulnérabilités dans Papercut 2026-03-31T00:00:00.000000 2026-03-31T00:00:00.000000
ID Description Published Updated
jvndb-2026-003906 Multiple Vulnerabilities in Cosminexus 2026-02-17T20:46+09:00 2026-02-17T20:46+09:00
jvndb-2026-003905 Multiple Vulnerabilities in Cosminexus HTTP Server and Hitachi Web Server 2026-02-17T20:46+09:00 2026-02-17T20:46+09:00
jvndb-2026-000025 Joomla! CMS vulnerable to cross-site scripting 2026-02-17T12:46+09:00 2026-02-17T12:46+09:00
jvndb-2026-000023 FileZen vulnerable to OS command injection 2026-02-13T16:51+09:00 2026-02-13T17:08+09:00
jvndb-2026-000024 Installer of M-Audio M-Track Duo HD may insecurely load Dynamic Link Libraries 2026-02-12T13:32+09:00 2026-02-12T13:32+09:00
jvndb-2026-000022 Oki Electric Industry products and OEM products register Windows services with unquoted file paths 2026-02-09T15:21+09:00 2026-02-09T15:21+09:00
jvndb-2026-000021 web2py vulnerable to open redirect 2026-02-05T15:01+09:00 2026-02-05T15:01+09:00
jvndb-2026-000017 Improper file access permission settings in Mitsubishi Small-Capacity UPS Shutdown Software FREQSHIP-mini for Windows 2026-02-03T14:57+09:00 2026-02-05T14:41+09:00
jvndb-2026-000020 Multiple vulnerabilities in Movable Type 2026-02-04T16:15+09:00 2026-02-04T16:15+09:00
jvndb-2026-000016 Installer for Roland Cloud Manager may insecurely load Dynamic Link Libraries 2026-02-03T14:57+09:00 2026-02-04T12:39+09:00
jvndb-2024-002831 ELECOM wireless LAN routers vulnerable to OS command injection 2024-02-22T08:15+09:00 2026-02-04T12:02+09:00
jvndb-2025-000041 Multiple vulnerabilities in ELECOM wireless LAN routers 2025-06-24T14:50+09:00 2026-02-03T15:35+09:00
jvndb-2024-000078 Multiple vulnerabilities in ELECOM wireless LAN routers 2024-07-30T15:34+09:00 2026-02-03T15:35+09:00
jvndb-2026-000019 Multiple vulnerabilities in ELECOM wireless LAN products 2026-02-03T14:57+09:00 2026-02-03T14:57+09:00
jvndb-2026-000015 Sonatype Nexus Repository vulnerable to server-side request forgery 2026-02-02T15:18+09:00 2026-02-02T15:18+09:00
jvndb-2026-000014 OS command injection in raspap-webgui 2026-02-02T15:18+09:00 2026-02-02T15:18+09:00
jvndb-2026-000013 Multiple Microsoft Office products vulnerable to untrusted search path 2026-02-02T15:18+09:00 2026-02-02T15:18+09:00
jvndb-2026-000012 Multiple vulnerabilities in Cybozu Garoon 2026-02-02T15:18+09:00 2026-02-02T15:18+09:00
jvndb-2026-000018 Undocumented "TelnetEnable" functionality of End of Service NETGEAR products 2026-01-30T14:23+09:00 2026-01-30T14:23+09:00
jvndb-2026-002119 Multiple vulnerabilities in BROTHER MFPs (multifunction printers) 2026-01-30T11:26+09:00 2026-01-30T11:26+09:00
jvndb-2026-002030 Multiple Vulnerabilities in Cosminexus 2026-01-29T10:32+09:00 2026-01-29T10:32+09:00
jvndb-2026-001972 Archer MR600 vulnerable to OS command injection 2026-01-28T10:41+09:00 2026-01-28T10:41+09:00
jvndb-2026-000011 beat-access for Windows may insecurely load Dynamic Link Libraries 2026-01-27T18:22+09:00 2026-01-27T18:22+09:00
jvndb-2026-001732 Multiple Brother software installers may insecurely load Dynamic Link Libraries 2026-01-26T16:04+09:00 2026-01-26T16:04+09:00
jvndb-2026-000010 Command injection vulnerability in ASUS routers 2026-01-23T15:22+09:00 2026-01-23T15:22+09:00
jvndb-2026-001663 "iRMC S5/S6" implemented in PRIMERGY vulnerable to incorrect authorization 2026-01-23T11:29+09:00 2026-01-23T11:29+09:00
jvndb-2026-001662 Multiple vulnerabilities in Trend Micro Apex Central (January 2026) 2026-01-23T11:29+09:00 2026-01-23T11:29+09:00
jvndb-2026-000009 Installer of Fujitsu ServerView Agents for Windows may insecurely load Dynamic Link Libraries 2026-01-21T15:17+09:00 2026-01-21T15:17+09:00
jvndb-2026-000008 Ruijie Networks AP180 series vulnerable to OS command injection 2026-01-21T15:17+09:00 2026-01-21T15:17+09:00
jvndb-2026-001582 Security information for Hitachi Disk Array Systems 2026-01-21T12:11+09:00 2026-01-21T12:11+09:00
ID Description Published Updated
cnvd-2026-16678 TOTOLINK A3600R setNoticeCfg函数命令注入漏洞 2026-04-09 2026-04-09
cnvd-2026-16638 Oracle MySQL存在未明漏洞(CNVD-2026-16638) 2026-01-30 2026-04-09
cnvd-2026-16631 Oracle MySQL存在未明漏洞(CNVD-2026-16631) 2026-01-30 2026-04-09
cnvd-2026-16630 Oracle MySQL存在未明漏洞(CNVD-2026-16630) 2026-01-30 2026-04-09
cnvd-2026-16629 Oracle MySQL存在未明漏洞(CNVD-2026-16629) 2026-01-30 2026-04-09
cnvd-2026-16628 Oracle MySQL存在未明漏洞(CNVD-2026-16628) 2026-01-30 2026-04-09
cnvd-2026-16627 Oracle MySQL存在未明漏洞(CNVD-2026-16627) 2026-01-30 2026-04-09
cnvd-2026-16624 OpenClaw访问控制错误漏洞(CNVD-2026-16624) 2026-04-08 2026-04-09
cnvd-2026-16623 OpenClaw访问控制错误漏洞(CNVD-2026-16623) 2026-04-08 2026-04-09
cnvd-2026-16622 OpenClaw授权问题漏洞(CNVD-2026-16622) 2026-04-08 2026-04-09
cnvd-2026-16621 OpenClaw授权问题漏洞(CNVD-2026-16621) 2026-04-08 2026-04-09
cnvd-2026-16617 ImageMagick缓冲区溢出漏洞(CNVD-2026-16617) 2026-03-19 2026-04-09
cnvd-2026-16601 Mozilla Firefox安全绕过漏洞(CNVD-2026-16601) 2026-03-16 2026-04-09
cnvd-2026-16600 ImageMagick整数溢出漏洞(CNVD-2026-16600) 2026-03-16 2026-04-09
cnvd-2026-16599 Adobe Substance3D Painter越界读取漏洞(CNVD-2026-16599) 2026-03-16 2026-04-09
cnvd-2026-16598 Adobe Substance3D Painter越界读取漏洞(CNVD-2026-16598) 2026-03-16 2026-04-09
cnvd-2026-16597 OliveTin路径遍历漏洞 2026-03-16 2026-04-09
cnvd-2026-16596 iccDEV缓冲区溢出漏洞 2026-03-16 2026-04-09
cnvd-2026-16595 Adobe Commerce输入验证错误漏洞(CNVD-2026-16595) 2026-03-17 2026-04-09
cnvd-2026-16594 Adobe Commerce路径遍历漏洞(CNVD-2026-16594) 2026-03-17 2026-04-09
cnvd-2026-16593 Adobe Commerce开放重定向漏洞 2026-03-17 2026-04-09
cnvd-2026-16592 Adobe Commerce服务端请求伪造漏洞 2026-03-17 2026-04-09
cnvd-2026-16590 Totolink A3300R命令注入漏洞 2026-04-08 2026-04-09
cnvd-2026-16589 NVIDIA Delegated Licensing Service授权问题漏洞 2026-03-04 2026-04-09
cnvd-2026-16588 Adobe Commerce输入验证错误漏洞(CNVD-2026-16588) 2026-03-17 2026-04-09
cnvd-2026-16587 Adobe Commerce跨站脚本漏洞(CNVD-2026-16587) 2026-03-17 2026-04-09
cnvd-2026-16586 Adobe Commerce跨站脚本漏洞(CNVD-2026-16586) 2026-03-17 2026-04-09
cnvd-2026-16585 Adobe Commerce跨站脚本漏洞(CNVD-2026-16585) 2026-03-17 2026-04-09
cnvd-2026-16584 Adobe Commerce跨站脚本漏洞(CNVD-2026-16584) 2026-03-17 2026-04-09
cnvd-2026-16583 Adobe Commerce跨站脚本漏洞(CNVD-2026-16583) 2026-03-17 2026-04-09
ID Description Published Updated
bdu:2025-15829 Уязвимость системы управления базами данных MySQL и MariaDB, связанная с раскрытием инфор… 15.12.2025 16.02.2026
bdu:2025-15825 Уязвимость компонентов mm ядра операционной системы Linux, позволяющая нарушителю получит… 15.12.2025 16.02.2026
bdu:2025-15824 Уязвимость компонента hugetlb.c ядра операционной системы Linux, позволяющая нарушителю п… 15.12.2025 16.02.2026
bdu:2025-15822 Уязвимость ядра операционной системы Linux, связанная с неправильной проверкой возвращаем… 15.12.2025 16.02.2026
bdu:2025-15821 Уязвимость компонента drm/sched ядра операционной системы Linux, позволяющая нарушителю в… 15.12.2025 16.02.2026
bdu:2025-15820 Уязвимость компонента pinctrl-msm ядра операционной системы Linux, позволяющая нарушителю… 15.12.2025 16.02.2026
bdu:2025-15816 Уязвимость компонента smb ядра операционной системы Linux, позволяющая нарушителю нарушит… 15.12.2025 16.02.2026
bdu:2025-15815 Уязвимость ядра операционной системы Linux, связанная с чтением за допустимыми границами … 15.12.2025 16.02.2026
bdu:2025-15814 Уязвимость ядра операционной системы Linux, связанная с чтением за границами буфера данны… 15.12.2025 16.02.2026
bdu:2025-15811 Уязвимость компонента xusb ядра операционной системы Linux, позволяющая нарушителю вызват… 15.12.2025 16.02.2026
bdu:2025-15810 Уязвимость ядра операционной системы Linux, связанная с одновременным выполнением с испол… 15.12.2025 16.02.2026
bdu:2025-15809 Уязвимость компонента appletalk ядра операционной системы Linux, позволяющая нарушителю н… 15.12.2025 16.02.2026
bdu:2025-15808 Уязвимость компонента drm/tegra ядра операционной системы Linux, позволяющая нарушителю в… 15.12.2025 16.02.2026
bdu:2025-15806 Уязвимость компонента atm ядра операционной системы Linux, позволяющая нарушителю вызвать… 15.12.2025 16.02.2026
bdu:2025-15804 Уязвимость компонента mcast ядра операционной системы Linux, позволяющая нарушителю вызва… 15.12.2025 16.02.2026
bdu:2025-15803 Уязвимость компонентов tmptcp ядра операционной системы Linux, позволяющая нарушителю пол… 15.12.2025 16.02.2026
bdu:2025-15802 Уязвимость компонента perf/core ядра операционной системы Linux, позволяющая нарушителю в… 15.12.2025 16.02.2026
bdu:2025-15800 Уязвимость компонента mm/vmalloc.c ядра операционной системы Linux, позволяющая нарушител… 15.12.2025 16.02.2026
bdu:2025-15799 Уязвимость модуля powerpc/eeh ядра операционной системы Linux, позволяющая нарушителю выз… 15.12.2025 16.02.2026
bdu:2025-15798 Уязвимость компонента crypto ядра операционной системы Linux, позволяющая нарушителю вызв… 15.12.2025 16.02.2026
bdu:2025-15797 Уязвимость компонента xilinx ядра операционной системы Linux, позволяющая нарушителю вызв… 15.12.2025 16.02.2026
bdu:2025-15796 Уязвимость компонента iwlwifi ядра операционной системы Linux, позволяющая нарушителю выз… 15.12.2025 16.02.2026
bdu:2025-15795 Уязвимость ядра операционной системы Linux, связанная с ошибками разыменования указателя,… 15.12.2025 16.02.2026
bdu:2025-15794 Уязвимость компонента dtpm_cpu ядра операционной системы Linux, позволяющая нарушителю вы… 15.12.2025 16.02.2026
bdu:2025-15793 Уязвимость компонента fbtft ядра операционной системы Linux, позволяющая нарушителю вызва… 15.12.2025 16.02.2026
bdu:2025-15792 Уязвимость компонента net/tls ядра операционной системы Linux, позволяющая нарушителю выз… 15.12.2025 16.02.2026
bdu:2025-15791 Уязвимость компонента net/packet/af_packet.c ядра операционной системы Linux, позволяющая… 15.12.2025 16.02.2026
bdu:2025-15790 Уязвимость компонента net ядра операционной системы Linux, позволяющая нарушителю вызвать… 15.12.2025 16.02.2026
bdu:2025-15789 Уязвимость компонента pnv_php операционной системы Linux, позволяющая нарушителю вызвать … 15.12.2025 16.02.2026
bdu:2025-15788 Уязвимость компонента pnv_php ядра операционной системы Linux, позволяющая нарушителю выз… 15.12.2025 16.02.2026
ID Description Updated
var-202112-1782 Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not pro… 2026-04-10T23:35:45.033000Z
var-202003-1779 FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between seriali… 2026-04-10T23:35:44.701000Z
var-201007-0948 Use-after-free vulnerability in WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 thro… 2026-04-10T23:35:43.785000Z
var-202102-0068 Integer overflow in the firmware for some Intel(R) Graphics Drivers for Windows * before … 2026-04-10T23:35:43.590000Z
var-201903-0423 A memory corruption issue was addressed with improved memory handling. This issue is fixe… 2026-04-10T23:35:09.270000Z
var-201404-0592 The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly h… 2026-04-10T23:34:59.841000Z
var-201410-1418 The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeter… 2026-04-10T23:34:59.740000Z
var-200810-0141 Heap-based buffer overflow in the local IPC component in the EAPOLController plugin for c… 2026-04-10T23:34:59.011000Z
var-201006-1253 WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Apple Safari… 2026-04-10T23:34:53.625000Z
var-200809-0193 Time Machine in Apple Mac OS X 10.5 through 10.5.4 uses weak permissions for Time Machine… 2026-04-10T23:34:22.491000Z
var-201410-1217 Use-after-free vulnerability in the ProcessingInstruction::setXSLStyleSheet function in c… 2026-04-10T23:34:07.569000Z
var-201806-1470 An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS bef… 2026-04-10T23:34:04.094000Z
var-201912-1844 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2026-04-10T23:34:03.130000Z
var-201710-1433 Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a deni… 2026-04-10T23:34:02.101000Z
var-201908-0260 Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, poten… 2026-04-10T23:34:01.956000Z
var-202004-2199 In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containi… 2026-04-10T23:34:01.350000Z
var-202209-0773 The issue was addressed with improved memory handling. This issue is fixed in macOS Monte… 2026-04-10T23:33:59.696000Z
var-202105-1451 An issue was discovered in Linux: KVM through Improper handling of VM_IO|VM_PFNMAP vmas i… 2026-04-10T23:33:59.314000Z
var-201912-0597 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2026-04-10T23:33:58.659000Z
var-201806-1436 An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari be… 2026-04-10T23:33:58.495000Z
var-200810-0144 Heap-based buffer overflow in the read_rle16 function in imagetops in CUPS before 1.3.9 a… 2026-04-10T23:33:23.023000Z
var-201910-1646 By design, BIND is intended to limit the number of TCP clients that can be connected at a… 2026-04-10T23:32:51.564000Z
var-200809-0176 sys/netinet6/icmp6.c in the kernel in FreeBSD 6.3 through 7.1, NetBSD 3.0 through 4.0, an… 2026-04-10T23:32:51.513000Z
var-201711-0476 An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari be… 2026-04-10T23:32:44.188000Z
var-201506-0038 Heap-based buffer overflow in the PCNET controller in QEMU allows remote attackers to exe… 2026-04-10T23:32:30.204000Z
var-201912-0545 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2026-04-10T23:31:27.957000Z
var-202008-1238 In BIND 9.0.0 -> 9.11.21, 9.12.0 -> 9.16.5, 9.17.0 -> 9.17.3, also affects 9.9.3-S1 -> 9.… 2026-04-10T23:30:57.138000Z
var-201109-0200 Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers… 2026-04-10T23:30:56.602000Z
var-200704-0226 Apple File Protocol (AFP) Client in Apple Mac OS X 10.3.9 through 10.4.9 does not properl… 2026-04-10T23:30:53.630000Z
var-202404-0120 Faulty input validation in the core of Apache allows malicious or exploitable backend/con… 2026-04-10T23:30:53.560000Z
ID Description Published Updated
ID Description Published Updated
vde-2024-067 Phoenix Contact: Multiple Vulnerabilities in PLCnext Engineer 2024-10-08T12:00:00.000Z 2025-05-14T13:00:14.000Z
vde-2024-052 Phoenix Contact: Multiple mGuard devices are vulnerable to a drain of open file descriptors. 2024-09-10T10:00:00.000Z 2025-05-14T13:00:14.000Z
vde-2024-051 Phoenix Contact: Multiple mGuard devices are vulnerable to a remote code injection due to SSH 2024-09-10T10:00:00.000Z 2025-05-14T13:00:14.000Z
vde-2023-010 PHOENIX CONTACT: FL MGUARD affected by two vulnerabilities 2023-06-13T06:00:00.000Z 2025-05-14T13:00:14.000Z
vde-2022-001 PHOENIX CONTACT: FL SWITCH 2xxx series incorrect privilege assignment 2022-01-25T08:05:00.000Z 2025-05-14T13:00:14.000Z
vde-2021-019 PHOENIX CONTACT: Security Advisory for ILC1x1 Industrial controllers 2021-06-23T12:16:00.000Z 2025-05-14T13:00:14.000Z
vde-2019-003 PHOENIX CONTACT: Multiple Vulnerabilities in MEVIEW3 2019-03-05T10:35:00.000Z 2025-05-14T13:00:14.000Z
vde-2017-006 PHOENIX CONTACT: FL SWITCH 3xxx/4xxx/48xx series web-service authentication bypass 2018-01-10T09:36:00.000Z 2025-05-14T13:00:14.000Z
vde-2025-029 Phoenix Contact: Security Advisory for AXL F BK and IL BK bus couplers 2025-05-13T09:00:00.000Z 2025-05-14T12:28:19.000Z
vde-2021-036 PHOENIX CONTACT: Products utilizing WIBU SYSTEMS CodeMeter components in versions prior to V7.21a 2021-08-04T07:56:00.000Z 2025-05-14T12:28:19.000Z
vde-2021-029 PHOENIX CONTACT: DoS for PLCnext Control devices in versions <2021.0.5 LTS 2021-08-04T07:58:00.000Z 2025-05-14T12:28:19.000Z
vde-2021-025 PHOENIX CONTACT: Security Advisory for PLCNext, ILC 2050 BI, FL MGUARD DM UNLIMITED, TC ROUTER und CLOUD CLIENT products 2021-06-23T12:19:00.000Z 2025-05-14T12:28:19.000Z
vde-2021-024 PHOENIX CONTACT: Security Advisory for PLCNext, SMARTRTU AXC, CHARX control modular and EEM-SB37x 2021-05-04T08:17:00.000Z 2025-05-14T12:28:19.000Z
vde-2021-023 PHOENIX CONTACT: Security Advisory for FL SWITCH SMCS series 2021-06-23T12:17:00.000Z 2025-05-14T12:28:19.000Z
vde-2021-022 PHOENIX CONTACT: Security Advisory for FL COMSERVER UNI 2021-06-23T12:16:00.000Z 2025-05-14T12:28:19.000Z
vde-2021-021 PHOENIX CONTACT: Security Advisory for AXL F BK and IL BK products 2021-06-23T12:15:00.000Z 2025-05-14T12:28:19.000Z
vde-2021-020 PHOENIX CONTACT: Security Advisory for Automation Worx Software Suite 2021-06-23T11:10:00.000Z 2025-05-14T12:28:19.000Z
vde-2020-047 PHOENIX CONTACT: BTP Touch Panels uncontrolled resource consumption 2020-12-02T09:00:00.000Z 2025-05-14T12:28:19.000Z
vde-2020-046 PHOENIX CONTACT: mGuard <8.8.3 products missing initialization of resource 2020-12-17T09:01:00.000Z 2025-05-14T12:28:19.000Z
vde-2020-025 PHOENIX CONTACT: Improper path sanitation on import of project files in PLCnext Engineer 2020-07-21T09:38:00.000Z 2025-05-14T12:28:19.000Z
vde-2020-023 PHOENIX CONTACT: Two Vulnerabilities in Automation Worx Suite 2020-07-01T08:25:00.000Z 2025-05-14T12:28:19.000Z
vde-2020-003 PHOENIX CONTACT: TC Router and TC Cloud Client multiple vulnerabilities 2020-03-05T15:58:00.000Z 2025-05-14T12:28:19.000Z
vde-2019-016 PHOENIX CONTACT: Security Advisory for Automation Worx Software Suite 2019-10-15T06:17:00.000Z 2025-05-14T12:28:19.000Z
vde-2019-014 PHOENIX CONTACT: Multiple Vulnerabilities in Automation Worx Software Suite 2019-06-19T12:41:00.000Z 2025-05-14T12:28:19.000Z
vde-2019-007 PHOENIX CONTACT: command injection on RAD-80211-XD(/HP-BUS) 2019-03-25T11:45:00.000Z 2025-05-14T12:28:19.000Z
vde-2019-006 PHOENIX CONTACT: unauthorized access to WEB-UI on FL NAT SMx 2019-03-25T11:40:00.000Z 2025-05-14T12:28:19.000Z
vde-2018-004 Phoenix Contact: FL SWITCH 3xxx/4xxx/48xx series through 1.33 allows Command Injection 2018-05-16T05:35:00.000Z 2025-05-14T12:28:19.000Z
vde-2018-001 PHOENIX CONTACT: Advisory for mGuard products 2018-01-30T09:00:00.000Z 2025-05-14T12:28:19.000Z
vde-2017-004 PHOENIX CONTACT: FL COMSERVER cross-site scripting (XSS) vulnerability 2017-12-05T08:50:00.000Z 2025-05-14T12:28:19.000Z
vde-2017-003 PHOENIX CONTACT: WLAN enabled devices utilising WPA2 encryption 2017-11-09T16:20:00.000Z 2025-05-14T12:28:19.000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
vde-2023-015 WAGO: Improper privilege management in web-based management 2023-11-20T07:00:00.000Z 2023-11-20T07:00:00.000Z
vde-2022-040 WAGO: Multiple Vulnerabilities in Controller with WAGO I/O-Pro / CODESYS 2.3 Runtime 2022-10-17T08:00:00.000Z 2023-09-22T12:39:00.000Z
vde-2023-014 WAGO: Bluetooth LE vulnerability in WLAN-ETHERNET-Gateway 2023-07-31T07:00:00.000Z 2023-07-31T07:00:00.000Z
vde-2023-005 WAGO: Series 750-3x/-8x prone to MODBUS server DoS 2023-06-25T06:00:00.000Z 2023-06-25T06:00:00.000Z
vde-2022-060 WAGO: Multiple vulnerabilities in web-based management of multiple products 2023-02-27T11:00:00.000Z 2023-02-27T11:00:00.000Z
vde-2022-055 WAGO: Exposure of configuration interface in unmanaged switches 2023-02-16T13:43:00.000Z 2023-02-16T13:43:00.000Z
vde-2022-054 WAGO: Unauthenticated Configuration Export in web-based management in multiple devices 2023-01-12T07:52:00.000Z 2023-01-12T07:52:00.000Z
vde-2022-042 WAGO: Multiple products - Loss of MAC-Address-Filtering after reboot 2022-10-17T08:00:00.000Z 2022-10-17T08:00:00.000Z
vde-2022-047 WAGO: FTP-Server - Denial-of-Service 2022-10-12T08:00:00.000Z 2022-10-12T08:00:00.000Z
vde-2022-035 WAGO: Multiple product series affected by multiple CODESYS vulnerabilities 2022-08-17T08:00:00.000Z 2022-08-17T08:00:00.000Z
vde-2022-031 WAGO: Multiple Products Series affected by multiple CODESYS vulnerabilities 2022-08-17T08:00:00.000Z 2022-08-17T08:00:00.000Z
vde-2022-004 WAGO: Web-Based Management Cross-Site Scripting 2022-03-09T07:00:00.000Z 2022-03-09T07:00:00.000Z
vde-2021-050 WAGO: Multiple devices affected by Vulnerabilities in NUCLEUS TCP Stack. 2021-11-16T11:02:00.000Z 2021-11-16T11:02:00.000Z
vde-2020-048 M&M Software (WAGO): Deserialisation of untrusted data in fdtContainer 2021-01-14T14:57:00.000Z 2021-01-14T14:57:00.000Z
vde-2020-015 WAGO: Web Based Management - Code Execution Vulnerability 2020-06-10T08:00:00.000Z 2020-06-10T08:00:00.000Z
vde-2020-010 WAGO: Cloud Connectivity Remote Code Execution Vulnerability 2020-03-09T09:25:00.000Z 2020-03-09T09:25:00.000Z
vde-2020-007 WAGO: Web-Based Management Denial of Service 2020-03-09T09:10:00.000Z 2020-03-09T09:10:00.000Z
vde-2019-022 WAGO: Multiple Vulnerabilities in I/O-Check Service in Multiple Devices 2019-12-16T09:00:00.000Z 2019-12-16T09:00:00.000Z
vde-2019-013 WAGO: Multiple Vulnerabilities in industrial managed switches 2019-06-12T10:25:00.000Z 2019-06-12T10:25:00.000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated