Recent vulnerabilities

Recent vulnerabilities from
Select from 69 available sources using the dropdown above.
ID CVSS Description Vendor Product Published Updated
CVE-2026-6729
5.3 (4.0)
6.3 (3.1)
HKUDS OpenHarness Session Key Collision Privilege Escalation HKUDS
 OpenHarness
 2026-04-20T22:01:38.766Z 2026-04-21T17:39:32.967Z
CVE-2026-0930
2.3 (4.0)
Potential wolfSSHd Buffer out-of-bounds Read on Window… wolfSSL
 wolfSSH
 2026-04-20T21:28:33.227Z 2026-04-21T13:37:15.647Z
CVE-2026-22051
2.3 (4.0)
StorageGRID (formerly StorageGRID Webscale) versi… NETAPP
 StorageGRID (formerly StorageGRID Webscale)
 2026-04-20T21:27:36.822Z 2026-04-21T13:40:46.948Z
CVE-2026-5450
9.8 (3.1)
scanf %mc off-by-one heap buffer overflow The GNU C Library
 glibc
 2026-04-20T20:55:41.170Z 2026-04-21T19:49:53.221Z
CVE-2026-5928
7.5 (3.1)
Static buffer overflow in deprecated nis_local_principal The GNU C Library
 glibc
 2026-04-20T20:37:31.743Z 2026-04-21T19:49:59.071Z
CVE-2026-5358
N/A
REJECTED: CVE-2026-5358 is rejected for two reasons. Firstly it has been discovered that no NIS+ client or server was ever released for any Linux-based OS distributions and as such this makes the API provisional and unused. Secondly it has been discovered that the NIS+ cold start cache (/var/nis/NIS_COLD_START) cannot be bypassed and as such the API can only be called with a trusted server from the pre-populated cache. The use of a trusted server means no trust boundary is crossed and this is therefore considered a normal bug. N/A N/A 2026-04-20T20:37:23.178Z 2026-04-22T13:04:20.656Z
CVE-2026-33626
7.5 (3.1)
LMDeploy Vulnerable to Server-Side Request Forgery (SS… InternLM
 lmdeploy
 2026-04-20T20:29:19.558Z 2026-04-21T19:50:13.326Z
CVE-2026-4852
6.4 (3.1)
Image Source Control Lite – Show Image Credits and Cap… webzunft
 Image Source Control Lite – Show Image Credits and Captions
 2026-04-20T20:26:53.256Z 2026-04-21T13:53:14.507Z
CVE-2026-33432
7.7 (4.0)
Roxy-WI has Pre-Authentication LDAP Injection that Lea… roxy-wi
 roxy-wi
 2026-04-20T20:26:52.217Z 2026-04-21T17:38:09.523Z
CVE-2026-33431
5.7 (4.0)
Roxy-WI Vulnerable to Authenticated Arbitrary File Rea… roxy-wi
 roxy-wi
 2026-04-20T20:24:15.319Z 2026-04-21T13:42:19.802Z
CVE-2026-34403
5.5 (4.0)
Nginx-UI vulnerable to Cross-Site WebSocket Hijacking … 0xJacky
 nginx-ui
 2026-04-20T20:16:47.597Z 2026-04-21T13:36:46.510Z
CVE-2026-33031
8.6 (4.0)
Nginx-UI: Disabled users retain full API access throug… 0xJacky
 nginx-ui
 2026-04-20T20:12:07.905Z 2026-04-21T13:35:20.144Z
CVE-2026-32613
10 (3.1)
Spinnaker vulnerable to RCE via expression parsing due… spinnaker
 spinnaker
 2026-04-20T20:07:24.697Z 2026-04-23T16:30:05.001Z
CVE-2026-32604
10 (3.1)
Spinnaker vulnerable to RCE when using gitrepo artifac… spinnaker
 spinnaker
 2026-04-20T20:00:57.517Z 2026-04-23T16:28:39.326Z
CVE-2026-6249
8.7 (4.0)
8.8 (3.1)
Vvveb CMS 1.0.8 Remote Code Execution via Media Upload Vvveb
 Vvveb CMS
 2026-04-20T19:57:37.655Z 2026-04-21T13:43:17.635Z
CVE-2026-32311
9.3 (4.0)
Command Injection and Docker container escape allows r… reconurge
 flowsint
 2026-04-20T19:56:32.521Z 2026-04-21T13:44:08.776Z
CVE-2026-5478
8.1 (3.1)
Everest Forms <= 3.4.4 - Unauthenticated Arbitrary Fil… wpeverest
 Everest Forms – Contact Form, Payment Form, Quiz, Survey & Custom Form Builder
 2026-04-20T19:27:08.159Z 2026-04-21T13:33:57.569Z
CVE-2026-32135
7.7 (4.0)
NanoMQ has Heap Buffer Overflow in URI Parameter Parsing nanomq
 nanomq
 2026-04-20T19:23:09.704Z 2026-04-21T13:33:14.607Z
CVE-2026-6550
4.7 (3.1)
5.7 (4.0)
Key commitment policy bypass via shared key cache in A… AWS
 AWS Encryption SDK for Python
 2026-04-20T19:20:23.383Z 2026-04-20T19:44:11.685Z
CVE-2026-6257
9.2 (4.0)
9.1 (3.1)
Vvveb CMS v1.0.8 Remote Code Execution via Media Management Vvveb
 Vvveb CMS
 2026-04-20T19:09:45.927Z 2026-04-21T19:50:26.897Z
CVE-2026-6248
8.1 (3.1)
wpForo Forum <= 3.0.5 - Authenticated (Subscriber+) Ar… tomdever
 wpForo Forum
 2026-04-20T18:31:33.290Z 2026-04-21T17:35:30.317Z
CVE-2026-6060
4.5 (3.1)
Possible DoS via SQL Box OTRS AG
 OTRS
 2026-04-20T18:20:01.664Z 2026-04-20T18:48:48.185Z
CVE-2026-41389
6.3 (4.0)
5.8 (3.1)
OpenClaw 2026.4.7 < 2026.4.15 - Arbitrary File Read vi… OpenClaw
 OpenClaw
 2026-04-20T17:48:43.704Z 2026-04-20T18:05:03.103Z
CVE-2026-23753
4.8 (4.0)
4.8 (3.1)
GFI HelpDesk < 4.99.9 Stored XSS via charset Parameter GFI Software
 HelpDesk
 2026-04-20T17:33:59.134Z 2026-04-21T13:31:13.580Z
CVE-2026-23752
4.8 (4.0)
4.8 (3.1)
GFI HelpDesk < 4.99.9 Stored XSS via companyname Parameter GFI Software
 HelpDesk
 2026-04-20T17:33:23.424Z 2026-04-20T18:09:59.603Z
CVE-2026-23756
5.1 (4.0)
5.4 (3.1)
GFI HelpDesk < 4.99.9 Stored XSS via Troubleshooter St… GFI Software
 HelpDesk
 2026-04-20T17:30:51.162Z 2026-04-20T18:08:49.925Z
CVE-2026-23758
5.1 (4.0)
6.4 (4.0)
GFI HelpDesk < 4.99.9 Stored XSS via editsubject Parameter GFI Software
 HelpDesk
 2026-04-20T17:30:06.853Z 2026-04-20T17:45:55.788Z
CVE-2026-23757
5.1 (4.0)
5.4 (3.1)
GFI HelpDesk < 4.99.10 Stored XSS via Reports Module GFI Software
 HelpDesk
 2026-04-20T17:27:56.067Z 2026-04-20T18:07:01.630Z
CVE-2026-6662
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
ericc-ch copilot-api Token Endpoint server.ts cors cro… ericc-ch
 copilot-api
 2026-04-20T17:00:17.800Z 2026-04-20T18:09:27.691Z
CVE-2026-35154
6.3 (3.1)
Dell PowerProtect Data Domain appliances, version… Dell
 PowerProtect Data Domain appliances
 2026-04-20T16:50:56.856Z 2026-04-22T03:56:08.697Z
ID CVSS Description Vendor Product Published Updated
CVE-2026-41329
9 (4.0)
9.9 (3.1)
OpenClaw < 2026.3.31 - Sandbox Bypass via Heartbeat Co… OpenClaw
 OpenClaw
 2026-04-20T23:08:16.222Z 2026-04-21T19:38:16.140Z
CVE-2026-41303
8.7 (4.0)
8.8 (3.1)
OpenClaw < 2026.3.28 - Authorization Bypass in Discord… OpenClaw
 OpenClaw
 2026-04-20T23:08:15.511Z 2026-04-21T13:35:55.924Z
CVE-2026-41302
4.8 (4.0)
7.6 (3.1)
OpenClaw < 2026.3.31 - Server-Side Request Forgery via… OpenClaw
 OpenClaw
 2026-04-20T23:08:14.782Z 2026-04-21T19:49:35.930Z
CVE-2026-41301
6.9 (4.0)
5.3 (3.1)
OpenClaw 2026.3.22 < 2026.3.31 - Forged Nostr DM Pairi… OpenClaw
 OpenClaw
 2026-04-20T23:08:14.023Z 2026-04-21T13:33:53.554Z
CVE-2026-41300
6.9 (4.0)
6.5 (3.1)
OpenClaw < 2026.3.31 - Attacker-Discovered Endpoint Pr… OpenClaw
 OpenClaw
 2026-04-20T23:08:13.304Z 2026-04-21T13:03:24.309Z
CVE-2026-41299
7.1 (4.0)
7.1 (3.1)
OpenClaw < 2026.3.28 - Client Identity Spoofing in cha… OpenClaw
 OpenClaw
 2026-04-20T23:08:12.586Z 2026-04-21T13:38:25.512Z
CVE-2026-41298
5.3 (4.0)
5.4 (3.1)
OpenClaw < 2026.4.2 - Authorization Bypass in Session … OpenClaw
 OpenClaw
 2026-04-20T23:08:11.787Z 2026-04-21T17:34:23.419Z
CVE-2026-41297
4.8 (4.0)
7.6 (3.1)
OpenClaw < 2026.3.31 - Server-Side Request Forgery via… OpenClaw
 OpenClaw
 2026-04-20T23:08:10.955Z 2026-04-21T13:41:34.057Z
CVE-2026-41296
8.8 (4.0)
8.2 (3.1)
OpenClaw < 2026.3.31 - Sandbox Escape via TOCTOU Race … OpenClaw
 OpenClaw
 2026-04-20T23:08:10.194Z 2026-04-21T19:49:41.570Z
CVE-2026-41295
8.5 (4.0)
7.8 (3.1)
OpenClaw < 2026.4.2 - Untrusted Workspace Channel Shad… OpenClaw
 OpenClaw
 2026-04-20T23:08:09.503Z 2026-04-21T13:35:47.883Z
CVE-2026-41294
8.5 (4.0)
8.6 (3.1)
OpenClaw < 2026.3.28 - Environment Variable Injection … OpenClaw
 OpenClaw
 2026-04-20T23:08:08.795Z 2026-04-21T13:04:36.188Z
CVE-2026-41285
4.3 (3.1)
In OpenBSD through 7.8, the slaacd and rad daemon… OpenBSD
 OpenBSD
 2026-04-20T00:00:00.000Z 2026-04-21T13:27:42.310Z
CVE-2026-40045
5.9 (4.0)
5.7 (3.1)
OpenClaw < 2026.4.2 - Cleartext Credential Transmissio… OpenClaw
 OpenClaw
 2026-04-20T23:08:07.952Z 2026-04-21T13:37:43.951Z
CVE-2026-35588
6.3 (3.1)
Glances has CQL Injection in its Cassandra Export Modu… nicolargo
 glances
 2026-04-20T23:20:34.998Z 2026-04-21T13:35:04.526Z
CVE-2026-35587
7.3 (4.0)
Glances IP Plugin has SSRF via public_api that leads t… nicolargo
 glances
 2026-04-20T23:19:02.908Z 2026-04-22T14:01:47.583Z
CVE-2026-35570
8.4 (3.1)
OpenClaude has Sandbox Bypass via Early-Exit Logic Fla… Gitlawb
 openclaude
 2026-04-20T23:24:08.324Z 2026-04-21T19:49:30.148Z
CVE-2026-34839
7.7 (4.0)
Glances Vulnerable to Cross-Origin Information Disclos… nicolargo
 glances
 2026-04-20T23:09:02.551Z 2026-04-21T19:37:42.399Z
CVE-2026-5721
4.7 (3.1)
wpDataTables – WordPress Data Table, Dynamic Tables & … wpdatatables
 wpDataTables – WordPress Data Table, Dynamic Tables & Table Charts Plugin
 2026-04-20T22:25:26.695Z 2026-04-21T19:49:47.411Z
CVE-2026-34082
5.3 (4.0)
Dify has IDOR in deleting someone else's chat conversation langgenius
 dify
 2026-04-20T23:03:18.158Z 2026-04-21T13:36:45.614Z
CVE-2026-6729
5.3 (4.0)
6.3 (3.1)
HKUDS OpenHarness Session Key Collision Privilege Escalation HKUDS
 OpenHarness
 2026-04-20T22:01:38.766Z 2026-04-21T17:39:32.967Z
CVE-2026-29643
7.1 (3.1)
XiangShan (Open-source high-performance RISC-V pr… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:50:32.463Z
CVE-2026-22051
2.3 (4.0)
StorageGRID (formerly StorageGRID Webscale) versi… NETAPP
 StorageGRID (formerly StorageGRID Webscale)
 2026-04-20T21:27:36.822Z 2026-04-21T13:40:46.948Z
CVE-2026-0930
2.3 (4.0)
Potential wolfSSHd Buffer out-of-bounds Read on Window… wolfSSL
 wolfSSH
 2026-04-20T21:28:33.227Z 2026-04-21T13:37:15.647Z
CVE-2026-5928
7.5 (3.1)
Static buffer overflow in deprecated nis_local_principal The GNU C Library
 glibc
 2026-04-20T20:37:31.743Z 2026-04-21T19:49:59.071Z
CVE-2026-5450
9.8 (3.1)
scanf %mc off-by-one heap buffer overflow The GNU C Library
 glibc
 2026-04-20T20:55:41.170Z 2026-04-21T19:49:53.221Z
CVE-2026-5358
N/A
REJECTED: CVE-2026-5358 is rejected for two reasons. Firstly it has been discovered that no NIS+ client or server was ever released for any Linux-based OS distributions and as such this makes the API provisional and unused. Secondly it has been discovered that the NIS+ cold start cache (/var/nis/NIS_COLD_START) cannot be bypassed and as such the API can only be called with a trusted server from the pre-populated cache. The use of a trusted server means no trust boundary is crossed and this is therefore considered a normal bug. N/A N/A 2026-04-20T20:37:23.178Z 2026-04-22T13:04:20.656Z
CVE-2026-4852
6.4 (3.1)
Image Source Control Lite – Show Image Credits and Cap… webzunft
 Image Source Control Lite – Show Image Credits and Captions
 2026-04-20T20:26:53.256Z 2026-04-21T13:53:14.507Z
CVE-2026-34403
5.5 (4.0)
Nginx-UI vulnerable to Cross-Site WebSocket Hijacking … 0xJacky
 nginx-ui
 2026-04-20T20:16:47.597Z 2026-04-21T13:36:46.510Z
CVE-2026-33626
7.5 (3.1)
LMDeploy Vulnerable to Server-Side Request Forgery (SS… InternLM
 lmdeploy
 2026-04-20T20:29:19.558Z 2026-04-21T19:50:13.326Z
CVE-2026-33432
7.7 (4.0)
Roxy-WI has Pre-Authentication LDAP Injection that Lea… roxy-wi
 roxy-wi
 2026-04-20T20:26:52.217Z 2026-04-21T17:38:09.523Z
ID Description Published Updated
ID Severity Description Published Updated
ghsa-9782-qgv6-6p8g
7.3 (3.1)
6.9 (4.0)
A vulnerability was identified in kodcloud KodExplorer up to 4.52. This impacts the function fileGe… 2026-04-19T12:31:16Z 2026-04-19T12:31:16Z
ghsa-vqmj-h423-xx64
4.3 (3.1)
2.1 (4.0)
A vulnerability was found in EMQ EMQX Enterprise up to 6.1.0. The impacted element is an unknown fu… 2026-04-19T12:31:15Z 2026-04-19T12:31:15Z
ghsa-rgfh-mp7v-25f9
7.3 (3.1)
5.5 (4.0)
A vulnerability was determined in kodcloud KodExplorer up to 4.52. This affects the function share.… 2026-04-19T12:31:15Z 2026-04-19T12:31:15Z
ghsa-m9r6-cg89-ghg2
8.8 (3.1)
7.4 (4.0)
A security vulnerability has been detected in H3C Magic B0 up to 100R002. This vulnerability affect… 2026-04-19T09:30:13Z 2026-04-19T09:30:13Z
ghsa-fjp8-jqj5-cwp2
4.7 (3.1)
2.0 (4.0)
A vulnerability was detected in EyouCMS up to 1.7.1. This issue affects the function edit_adminlogo… 2026-04-19T09:30:13Z 2026-04-19T09:30:13Z
ghsa-8q43-5p52-h357
8.8 (3.1)
7.4 (4.0)
A vulnerability has been found in H3C Magic B1 up to 100R004. The affected element is the function … 2026-04-19T09:30:13Z 2026-04-19T09:30:13Z
ghsa-7786-mqff-chgr
7.3 (3.1)
5.5 (4.0)
A flaw has been found in dameng100 muucmf 1.9.5.20260309. Impacted is the function getListByPage of… 2026-04-19T09:30:13Z 2026-04-19T09:30:13Z
ghsa-x8cm-r99c-gv26
4.3 (3.1)
5.3 (4.0)
A weakness has been identified in Wavlink WL-WN579A3 220323. This affects the function sub_401F80 o… 2026-04-19T06:31:22Z 2026-04-19T06:31:22Z
ghsa-w3fc-f758-c6x7
6.4 (3.1)
The EMC – Easily Embed Calendly Scheduling Features plugin for WordPress is vulnerable to Stored Cr… 2026-04-19T06:31:22Z 2026-04-19T06:31:22Z
ghsa-gwjg-rpxc-39ph
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. 2026-04-19T00:31:23Z 2026-04-19T00:31:23Z
ghsa-5w6h-pjw6-wvc6
5.4 (3.1)
apache-airflow-providers-keycloak: Missing OAuth 2.0 State and PKCE Enables Login CSRF and Session … 2026-04-18T15:34:15Z 2026-04-22T17:36:41Z
ghsa-vpmc-9q98-4qjf
6.4 (3.1)
The Contextual Related Posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via … 2026-04-18T12:30:17Z 2026-04-18T12:30:17Z
ghsa-jx47-j339-6qpw
5.4 (3.1)
The Categories Images plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions… 2026-04-18T12:30:17Z 2026-04-18T12:30:17Z
ghsa-23v6-h45q-rxch
6.4 (3.1)
The Content Blocks (Custom Post Widget) plugin for WordPress is vulnerable to Stored Cross-Site Scr… 2026-04-18T12:30:17Z 2026-04-18T12:30:17Z
ghsa-w9r4-94fj-xp69
3.7 (3.1)
Apache Airflow Exposes Secrets in Variables Saved as JSON Dictionaries 2026-04-18T09:30:20Z 2026-04-22T17:25:55Z
ghsa-w7cf-2pmc-5m4c
5.3 (3.1)
Apache Airflow exposes SQL stack trace despite "api/expose_stack_traces" set to false 2026-04-18T09:30:20Z 2026-04-22T17:17:28Z
ghsa-hc77-37fq-x324
4.0 (3.1)
Little CMS (lcms2) through 2.18 has an integer overflow in CubeSize in cmslut.c because the overflo… 2026-04-18T09:30:20Z 2026-04-18T09:30:20Z
ghsa-h97w-pm3w-mwmc
7.5 (3.1)
Apache Airflow allows users with asset materialize permissions to trigger DAGs outside of their per… 2026-04-18T09:30:20Z 2026-04-22T17:25:30Z
ghsa-6ffj-2wg2-w45j
9.8 (3.1)
Apache Airflow allows code execution through crafted XCom payloads 2026-04-18T09:30:20Z 2026-04-21T22:50:35Z
ghsa-6337-2587-f2jq
8.8 (3.1)
An example of BashOperator in Airflow documentation suggested a way of passing dag_run.conf in the … 2026-04-18T09:30:20Z 2026-04-20T18:31:45Z
ghsa-vf7g-wm62-vfxh
6.4 (3.1)
The Flipbox Addon for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting v… 2026-04-18T06:30:14Z 2026-04-18T06:30:14Z
ghsa-cwq2-35x4-44pq
8.8 (3.1)
The CMP – Coming Soon & Maintenance Plugin by NiteoThemes plugin for WordPress is vulnerable to arb… 2026-04-18T06:30:14Z 2026-04-18T06:30:14Z
ghsa-7m2j-268v-rc6r
6.4 (3.1)
The Page Builder Gutenberg Blocks – CoBlocks plugin for WordPress is vulnerable to Stored Cross-Sit… 2026-04-18T06:30:14Z 2026-04-18T06:30:14Z
ghsa-5pgv-4jf4-9r43
6.9 (3.1)
In iTerm2 through 3.6.9, displaying a .txt file can cause code execution via DCS 2000p and OSC 135 … 2026-04-18T06:30:14Z 2026-04-18T06:30:14Z
ghsa-jxx9-cx33-fcm4
6.1 (3.1)
The Hostel plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'shortcode_… 2026-04-18T03:31:06Z 2026-04-18T03:31:06Z
ghsa-5v87-p3g9-j392
6.4 (3.1)
The Youzify plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'checkin_plac… 2026-04-18T03:31:06Z 2026-04-18T03:31:06Z
ghsa-8m29-fpq5-89jj
9.3 (4.0)
Zebra Vulnerable to Consensus Divergence in Transparent Sighash Hash-Type Handling 2026-04-18T01:15:24Z 2026-04-18T01:15:24Z
ghsa-29x4-r6jv-ff4w
6.9 (4.0)
Zebra Vulnerable to Denial of Service via Interrupted JSON-RPC Requests from Authenticated Clients 2026-04-18T01:15:10Z 2026-04-18T01:15:10Z
ghsa-452v-w3gx-72wg
9.2 (4.0)
Zebra has rk Identity Point Panic in Transaction Verification 2026-04-18T01:14:57Z 2026-04-18T01:14:57Z
ghsa-9j88-vvj5-vhgr
6.5 (3.1)
MailKit has STARTTLS Response Injection via unflushed stream buffer that enables SASL mechanism downgrade 2026-04-18T01:13:46Z 2026-04-18T01:13:46Z
ID Severity Description Package Published Updated
pysec-2021-856
Null Pointer Dereference vulnerability exists in numpy.sort in NumPy &lt and 1.19 in the … numpy 2021-12-17T20:15:00Z 2021-12-22T21:28:25.939120Z
pysec-2021-855
Incomplete string comparison in the numpy.core component in NumPy1.9.x, which allows atta… numpy 2021-12-17T19:15:00Z 2021-12-22T21:28:25.894913Z
pysec-2021-854
A Buffer Overflow vulnerability exists in NumPy 1.9.x in the PyArray_NewFromDescr_int fun… numpy 2021-12-17T19:15:00Z 2021-12-22T21:28:25.850575Z
pysec-2021-853
vault-cli is a configurable command-line interface tool (and python library) to interact … vault-cli 2021-12-16T19:15:00Z 2021-12-16T21:30:16.499668Z
pysec-2021-873
Gradio is an open source framework for building interactive machine learning models and d… gradio 2021-12-15T20:15:00Z 2023-05-25T05:07:00Z
pysec-2021-852
lxml is a library for processing XML and HTML in the Python language. Prior to version 4.… lxml 2021-12-13T18:15:00Z 2021-12-16T19:24:01.272993Z
pysec-2021-851
Flask-AppBuilder is a development framework built on top of Flask. Verions prior to 3.3.4… flask-appbuilder 2021-12-09T17:15:00Z 2021-12-15T19:23:46.849981Z
pysec-2021-848
Sockeye is an open-source sequence-to-sequence framework for Neural Machine Translation b… sockeye 2021-12-08T23:15:00Z 2021-12-13T21:28:21.588606Z
pysec-2021-439
In Django 2.2 before 2.2.25, 3.1 before 3.1.14, and 3.2 before 3.2.10, HTTP requests for … django 2021-12-08T00:15:00Z 2021-12-08T02:30:49.294438Z
pysec-2021-838
Invenio-Drafts-Resources is a submission/deposit module for Invenio, a software framework… invenio-rdm-records 2021-12-06T18:15:00Z 2021-12-10T06:37:24.899021Z
pysec-2021-837
Invenio-Drafts-Resources is a submission/deposit module for Invenio, a software framework… invenio-app-rdm 2021-12-06T18:15:00Z 2021-12-10T06:37:24.185813Z
pysec-2021-836
Invenio-Drafts-Resources is a submission/deposit module for Invenio, a software framework… invenio-drafts-resources 2021-12-06T18:15:00Z 2021-12-09T07:29:22.280279Z
pysec-2021-841
In CKAN, versions 2.9.0 to 2.9.3 are affected by a stored XSS vulnerability via SVG file … ckan 2021-12-01T14:15:00Z 2021-12-13T06:35:10.687046Z
pysec-2021-438
django-helpdesk is vulnerable to Improper Neutralization of Input During Web Page Generat… django-helpdesk 2021-12-01T11:15:00Z 2021-12-02T21:26:01.187346Z
pysec-2021-433
S3Scanner before 2.0.2 allows Directory Traversal via a crafted bucket, as demonstrated b… s3scanner 2021-11-29T03:15:00Z 2021-11-29T21:27:52.731426Z
pysec-2021-866
This affects all versions of package html-to-csv. When there is a formula embedded in a H… html-to-csv 2021-11-26T20:15:00Z 2022-01-05T02:16:24.626882Z
pysec-2021-839
Aim is an open-source, self-hosted machine learning experiment tracking tool. Versions of… aim 2021-11-23T21:15:00Z 2021-12-13T06:35:02.857370Z
pysec-2021-850
In Django-wiki, versions 0.0.20 to 0.7.8 are vulnerable to Stored Cross-Site Scripting (X… wiki 2021-11-23T20:15:00Z 2021-12-14T08:21:59.357980Z
pysec-2021-436
Synapse is a package for Matrix homeservers written in Python 3/Twisted. Prior to version… matrix-synapse 2021-11-23T20:15:00Z 2021-11-29T23:11:29.870597Z
pysec-2021-864
The AWS IoT Device SDK v2 for Java, Python, C++ and Node.js appends a user supplied Certi… awsiotsdk 2021-11-23T00:15:00Z 2022-01-05T02:16:12.554921Z
pysec-2021-863
The AWS IoT Device SDK v2 for Java, Python, C++ and Node.js appends a user supplied Certi… awsiotsdk 2021-11-23T00:15:00Z 2022-01-05T02:16:12.489658Z
pysec-2021-862
Connections initialized by the AWS IoT Device SDK v2 for Java (versions prior to 1.4.2), … awsiotsdk 2021-11-23T00:15:00Z 2022-01-05T02:16:12.435653Z
pysec-2021-861
Connections initialized by the AWS IoT Device SDK v2 for Java (versions prior to 1.3.3), … awsiotsdk 2021-11-23T00:15:00Z 2022-01-05T02:16:12.381648Z
pysec-2021-860
Croatia Control Asterix 2.8.1 (python_v0.7.2) has a heap-based buffer over-read, with add… asterix-decoder 2021-11-22T21:15:00Z 2022-01-05T02:16:11.881162Z
pysec-2021-431
django-helpdesk is vulnerable to Improper Neutralization of Input During Web Page Generat… django-helpdesk 2021-11-19T12:15:00Z 2021-11-23T19:22:08.078180Z
pysec-2021-435
Improper output neutralization for Logs. A specific Apache Superset HTTP endpoint allowed… apache-superset 2021-11-17T15:15:00Z 2021-11-29T23:10:59.097625Z
pysec-2021-430
django-helpdesk is vulnerable to Improper Neutralization of Input During Web Page Generat… django-helpdesk 2021-11-13T09:15:00Z 2021-11-19T07:28:03.664110Z
pysec-2021-840
A dependency confusion vulnerability was reported in the Antilles open-source software pr… antilles-tools 2021-11-12T22:15:00Z 2021-12-13T06:35:07.662600Z
pysec-2021-434
Apache Superset up to and including 1.3.1 allowed for database connections password leak … apache-superset 2021-11-12T19:15:00Z 2021-11-29T23:10:59.053614Z
pysec-2021-437
A flaw was found in python-pip in the way it handled Unicode separators in git references… pip 2021-11-10T18:15:00Z 2021-11-29T23:42:09.374676Z
ID Description Updated
ID Description Published Updated
mal-2026-1827 Malicious code in proleis-web-gallery (npm) 2026-03-18T13:04:58Z 2026-03-23T05:16:30Z
mal-2026-1826 Malicious code in proleis-web-file-input (npm) 2026-03-18T13:04:57Z 2026-03-23T05:16:30Z
mal-2026-1825 Malicious code in proleis-web-app (npm) 2026-03-18T13:04:55Z 2026-03-23T05:16:30Z
mal-2026-1824 Malicious code in proleis-web-animations (npm) 2026-03-18T13:04:55Z 2026-03-23T05:16:30Z
mal-2026-1823 Malicious code in proleis-rest-client (npm) 2026-03-18T13:04:54Z 2026-03-23T05:16:30Z
mal-2026-1822 Malicious code in postcss-hotfix (npm) 2026-03-18T13:04:22Z 2026-03-23T05:16:29Z
mal-2026-1821 Malicious code in portal-lime (npm) 2026-03-18T13:04:20Z 2026-03-23T05:16:29Z
mal-2026-1820 Malicious code in player-common-controls (npm) 2026-03-18T13:04:06Z 2026-03-23T05:16:29Z
mal-2026-1819 Malicious code in player-common-composites (npm) 2026-03-18T13:04:05Z 2026-03-23T05:16:29Z
mal-2026-1818 Malicious code in player-button (npm) 2026-03-18T13:03:57Z 2026-03-23T05:16:29Z
mal-2026-1817 Malicious code in plate-playground-template (npm) 2026-03-18T13:03:55Z 2026-03-23T05:16:29Z
mal-2026-1816 Malicious code in pkgnewfefame1 (npm) 2026-03-18T13:03:54Z 2026-04-16T15:42:09Z
mal-2026-1815 Malicious code in pkg1511222 (npm) 2026-03-18T13:03:53Z 2026-03-23T05:16:29Z
mal-2026-1814 Malicious code in phx-core5 (npm) 2026-03-18T13:03:40Z 2026-03-23T05:16:29Z
mal-2026-1813 Malicious code in phx-core4 (npm) 2026-03-18T13:03:39Z 2026-03-23T05:16:29Z
mal-2026-1812 Malicious code in phx-core3 (npm) 2026-03-18T13:03:38Z 2026-03-23T05:16:29Z
mal-2026-1811 Malicious code in phx-core2 (npm) 2026-03-18T13:03:37Z 2026-03-23T05:16:29Z
mal-2026-1810 Malicious code in phx-core1 (npm) 2026-03-18T13:03:36Z 2026-03-23T05:16:29Z
mal-2026-1809 Malicious code in ph-common (npm) 2026-03-18T13:03:27Z 2026-03-23T05:16:29Z
mal-2026-1808 Malicious code in path-to-regexp-updated (npm) 2026-03-18T13:03:10Z 2026-03-23T05:16:29Z
mal-2026-1807 Malicious code in paramount-cmp-html5 (npm) 2026-03-18T13:02:57Z 2026-03-23T05:16:29Z
mal-2026-1806 Malicious code in ok-jest-config (npm) 2026-03-18T13:02:09Z 2026-03-23T05:16:29Z
mal-2026-1805 Malicious code in notification-settings-layout (npm) 2026-03-18T13:01:36Z 2026-03-23T05:16:29Z
mal-2026-1804 Malicious code in not-remix (npm) 2026-03-18T13:01:35Z 2026-03-23T05:16:29Z
mal-2026-1803 Malicious code in node-intend (npm) 2026-03-18T13:01:22Z 2026-03-23T05:16:29Z
mal-2026-1802 Malicious code in node-cli-dotenv (npm) 2026-03-18T13:01:13Z 2026-03-23T05:16:29Z
mal-2026-1801 Malicious code in no6gg (npm) 2026-03-18T13:01:10Z 2026-03-23T05:16:29Z
mal-2026-1800 Malicious code in nicfv (npm) 2026-03-18T13:01:07Z 2026-03-23T05:16:29Z
mal-2026-1799 Malicious code in nf-cl-logger-test2 (npm) 2026-03-18T13:00:56Z 2026-03-23T05:16:29Z
mal-2026-1798 Malicious code in nf-cl-logger-test (npm) 2026-03-18T13:00:55Z 2026-03-23T05:16:29Z
ID Description Published Updated
ID Description Published Updated
wid-sec-w-2025-2148 Notepad++: Schwachstelle ermöglicht Codeausführung 2025-09-28T22:00:00.000+00:00 2025-09-28T22:00:00.000+00:00
wid-sec-w-2025-2147 Foxit PDF Reader und PDF Editor: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen 2025-09-28T22:00:00.000+00:00 2025-12-11T23:00:00.000+00:00
wid-sec-w-2025-2146 Docker Desktop: Schwachstelle ermöglicht Privilegieneskalation 2025-09-28T22:00:00.000+00:00 2025-09-28T22:00:00.000+00:00
wid-sec-w-2025-2145 D-LINK Router: Mehrere Schwachstellen ermöglichen Codeausführung 2025-09-28T22:00:00.000+00:00 2025-09-28T22:00:00.000+00:00
wid-sec-w-2025-2144 binutils: Mehrere Schwachstellen 2025-09-28T22:00:00.000+00:00 2026-02-12T23:00:00.000+00:00
wid-sec-w-2025-2143 Squid: Schwachstelle ermöglicht nicht spezifizierten Angriff 2025-09-28T22:00:00.000+00:00 2025-11-11T23:00:00.000+00:00
wid-sec-w-2025-2142 Cisco ASA, FTD, IOS, IOS XE, IOS XR: Mehrere Schwachstellen 2025-09-25T22:00:00.000+00:00 2026-04-23T22:00:00.000+00:00
wid-sec-w-2025-2141 Rancher: Mehrere Schwachstellen 2025-09-25T22:00:00.000+00:00 2025-09-28T22:00:00.000+00:00
wid-sec-w-2025-2140 GitLab: Mehrere Schwachstellen 2025-09-25T22:00:00.000+00:00 2025-10-27T23:00:00.000+00:00
wid-sec-w-2025-2139 PyTorch: Mehrere Schwachstellen 2025-09-25T22:00:00.000+00:00 2025-09-25T22:00:00.000+00:00
wid-sec-w-2025-2138 Dell PowerScale: Schwachstelle ermöglicht Offenlegung von Informationen 2025-09-25T22:00:00.000+00:00 2025-09-25T22:00:00.000+00:00
wid-sec-w-2025-2137 Liferay Portal: Schwachstelle ermöglicht Denial of Service 2025-09-25T22:00:00.000+00:00 2025-09-25T22:00:00.000+00:00
wid-sec-w-2025-2136 cPanel cPanel/WHM: Schwachstelle ermöglicht nicht spezifizierten Angriff 2025-09-25T22:00:00.000+00:00 2025-09-25T22:00:00.000+00:00
wid-sec-w-2025-2134 Red Hat Enterprise Linux (Developer Hub): Schwachstelle ermöglicht Denial of Service 2025-09-25T22:00:00.000+00:00 2026-03-30T22:00:00.000+00:00
wid-sec-w-2025-2133 Nagios Enterprises Nagios XI: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode 2025-09-25T22:00:00.000+00:00 2025-09-25T22:00:00.000+00:00
wid-sec-w-2025-2132 Linux Kernel: Mehrere Schwachstellen 2025-09-24T22:00:00.000+00:00 2026-03-30T22:00:00.000+00:00
wid-sec-w-2025-2131 Puppet: Schwachstelle ermöglicht Offenlegung von Informationen 2025-09-24T22:00:00.000+00:00 2025-09-24T22:00:00.000+00:00
wid-sec-w-2025-2130 ffmpeg: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff 2025-09-24T22:00:00.000+00:00 2026-01-27T23:00:00.000+00:00
wid-sec-w-2025-2129 GIMP: Mehrere Schwachstellen ermöglichen Codeausführung 2025-09-24T22:00:00.000+00:00 2026-02-23T23:00:00.000+00:00
wid-sec-w-2025-2128 Cisco IOS XE: Mehrere Schwachstellen 2025-09-24T22:00:00.000+00:00 2025-09-24T22:00:00.000+00:00
wid-sec-w-2025-2127 Microsoft Edge: Schwachstelle ermöglicht Codeausführung 2025-09-24T22:00:00.000+00:00 2025-09-24T22:00:00.000+00:00
wid-sec-w-2025-2126 Drupal Module: Mehrere Schwachstellen 2025-09-24T22:00:00.000+00:00 2025-10-29T23:00:00.000+00:00
wid-sec-w-2025-2125 SugarCRM Sugar Enterprise: Mehrere Schwachstellen 2025-09-24T22:00:00.000+00:00 2025-09-24T22:00:00.000+00:00
wid-sec-w-2025-2124 Cisco IOS und IOS XE: Mehrere Schwachstellen 2025-09-24T22:00:00.000+00:00 2025-09-24T22:00:00.000+00:00
wid-sec-w-2025-2122 Cisco Aironet Access Point: Schwachstelle ermöglicht Darstellen falscher Informationen 2025-09-24T22:00:00.000+00:00 2025-09-24T22:00:00.000+00:00
wid-sec-w-2025-2121 Cisco Aironet Access Point: Schwachstelle ermöglicht Manipulation 2025-09-24T22:00:00.000+00:00 2025-09-24T22:00:00.000+00:00
wid-sec-w-2025-2120 Cisco SD-WAN: Schwachstelle ermöglicht Umgehung von Sicherheitsmaßnahmen 2025-09-24T22:00:00.000+00:00 2025-09-24T22:00:00.000+00:00
wid-sec-w-2025-2119 Cisco Industrial Ethernet Switches: Schwachstelle ermöglicht Denial of Service 2025-09-24T22:00:00.000+00:00 2025-09-24T22:00:00.000+00:00
wid-sec-w-2025-2118 Liferay Portal: Mehrere Schwachstellen 2025-09-23T22:00:00.000+00:00 2025-09-23T22:00:00.000+00:00
wid-sec-w-2025-2117 Google Chrome / Microsoft Edge: Mehrere Schwachstellen 2025-09-23T22:00:00.000+00:00 2025-11-11T23:00:00.000+00:00
ID Description Published Updated
icsa-23-306-03 Mitsubishi Electric FA products (Update A) 2023-11-02T06:00:00.000000Z 2024-11-12T07:00:00.000000Z
icsa-23-306-02 Mitsubishi Electric MELSEC iQ-F/iQ-R Series CPU Module (Update A) 2023-11-02T06:00:00.000000Z 2024-02-15T07:00:00.000000Z
icsa-23-306-01 Red Lion Crimson 2023-11-02T06:00:00.000000Z 2023-11-02T06:00:00.000000Z
icsa-23-304-03 Zavio IP Camera 2023-10-31T06:00:00.000000Z 2023-10-31T06:00:00.000000Z
icsa-23-304-02 INEA ME RTU 2023-10-31T06:00:00.000000Z 2023-10-31T06:00:00.000000Z
icsa-23-299-08 Sielco Radio Link and Analog FM Transmitters 2023-10-26T06:00:00.000000Z 2023-10-26T06:00:00.000000Z
icsa-23-299-07 Sielco PolyEco FM Transmitter 2023-10-26T06:00:00.000000Z 2023-10-26T06:00:00.000000Z
icsa-23-299-06 Rockwell Automation FactoryTalk Services Platform 2023-10-26T06:00:00.000000Z 2023-10-26T06:00:00.000000Z
icsa-23-299-05 Rockwell Automation FactoryTalk View Site Edition 2023-10-26T06:00:00.000000Z 2023-10-26T06:00:00.000000Z
icsa-23-299-04 Rockwell Automation Arena 2023-10-26T06:00:00.000000Z 2023-10-26T06:00:00.000000Z
icsa-23-299-02 Centralite Pearl Thermostat 2023-10-26T06:00:00.000000Z 2023-10-26T06:00:00.000000Z
icsa-23-299-01 Dingtian DT-R002 2023-10-26T06:00:00.000000Z 2023-10-26T06:00:00.000000Z
icsa-23-299-03 Ashlar-Vellum Cobalt, Graphite, Xenon, Argon, Lithium (Update A) 2023-10-24T06:00:00.000000Z 2025-02-04T07:00:00.000000Z
icsa-23-297-01 Rockwell Automation Stratix 5800 and Stratix 5200 (UPDATE A) 2023-10-24T06:00:00.000000Z 2023-11-21T07:00:00.000000Z
icsa-25-324-05 Festo Didactic products 2023-10-17T06:00:00.000000Z 2025-10-01T06:00:00.000000Z
icsa-23-290-02 Rockwell Automation FactoryTalk Linx 2023-10-17T06:00:00.000000Z 2023-10-17T06:00:00.000000Z
icsa-23-290-01 Schneider Electric EcoStruxure Power Monitoring Expert and Power Operation Products 2023-10-17T06:00:00.000000Z 2023-10-17T06:00:00.000000Z
icsma-23-285-02 Santesoft Sante FFT Imaging 2023-10-12T06:00:00.000000Z 2023-10-12T06:00:00.000000Z
icsma-23-285-01 Santesoft Sante DICOM Viewer Pro 2023-10-12T06:00:00.000000Z 2023-10-12T06:00:00.000000Z
icsa-23-285-15 Advantech WebAccess 2023-10-12T06:00:00.000000Z 2023-10-12T06:00:00.000000Z
icsa-23-285-14 Hikvision Access Control and Intercom Products 2023-10-12T06:00:00.000000Z 2023-10-12T06:00:00.000000Z
icsa-23-285-13 Mitsubishi Electric MELSEC-F Series 2023-10-12T06:00:00.000000Z 2023-10-12T06:00:00.000000Z
icsa-23-285-12 Weintek cMT3000 HMI Web CGI 2023-10-12T06:00:00.000000Z 2023-10-12T06:00:00.000000Z
icsa-23-285-11 Siemens Mendix Forgot Password Module 2023-10-10T00:00:00.000000Z 2023-10-10T00:00:00.000000Z
icsa-23-285-10 Siemens Tecnomatix Plant Simulation 2023-10-10T00:00:00.000000Z 2023-10-10T00:00:00.000000Z
icsa-23-285-09 Siemens CPCI85 Firmware of SICAM A8000 Devices 2023-10-10T00:00:00.000000Z 2023-10-10T00:00:00.000000Z
icsa-23-285-08 Siemens SINEC NMS 2023-10-10T00:00:00.000000Z 2024-07-09T00:00:00.000000Z
icsa-23-285-07 Siemens RUGGEDCOM APE180 2023-10-10T00:00:00.000000Z 2024-05-14T00:00:00.000000Z
icsa-23-285-06 Siemens SICAM PAS/PQS 2023-10-10T00:00:00.000000Z 2024-06-11T00:00:00.000000Z
icsa-23-285-05 Siemens Simcenter Amesim 2023-10-10T00:00:00.000000Z 2023-10-10T00:00:00.000000Z
ID Description Published Updated
cisco-sa-staros-ipsecmgr-dos-3gkhxwvs Cisco ASR 5000 Series Software (StarOS) ipsecmgr Process Denial of Service Vulnerability 2021-03-03T16:00:00+00:00 2021-03-03T16:00:00+00:00
cisco-sa-snort-ethernet-dos-hgxgjh8n Multiple Cisco Products Snort Ethernet Frame Decoder Denial of Service Vulnerability 2021-03-03T16:00:00+00:00 2021-03-03T16:00:00+00:00
cisco-sa-sdwanvman-infodis1-yuqschb Cisco SD-WAN vManage Information Disclosure Vulnerability 2021-03-03T16:00:00+00:00 2021-03-03T16:00:00+00:00
cisco-sa-sdwan-vdaemon-bo-ruzzea2 Cisco SD-WAN vDaemon Buffer Overflow Vulnerability 2021-03-03T16:00:00+00:00 2021-03-03T16:00:00+00:00
cisco-sa-sdwan-sigverbypass-gpyxd6mk Cisco SD-WAN Software Signature Verification Bypass Vulnerability 2021-03-03T16:00:00+00:00 2021-03-03T16:00:00+00:00
cisco-sa-sdwan-privesc-vman-kth3c82b Cisco SD-WAN vManage Software Privilege Escalation Vulnerability 2021-03-03T16:00:00+00:00 2021-03-03T16:00:00+00:00
cisco-sa-sdw-sqlinj-hdjueeax Cisco SD-WAN vManage SQL Injection Vulnerability 2021-03-03T16:00:00+00:00 2021-03-03T16:00:00+00:00
cisco-sa-nso-path-trvsl-dzrqe8lc Cisco Network Services Orchestrator Path Traversal Vulnerability 2021-03-03T16:00:00+00:00 2021-03-03T16:00:00+00:00
cisco-sa-ipphone-rce-dos-u2psskz3 Cisco IP Phones Buffer Overflow and Denial of Service Vulnerabilities 2021-03-03T16:00:00+00:00 2021-03-03T16:00:00+00:00
cisco-sa-esa-sma-info-disclo-vou2ghbz Cisco Content Security Management Appliance Information Disclosure Vulnerability 2021-03-03T16:00:00+00:00 2021-04-12T12:54:51+00:00
cisco-sa-nxos-udld-rce-xeth6w35 Cisco FXOS and NX-OS Software Unidirectional Link Detection Denial of Service and Arbitrary Code Execution Vulnerability 2021-02-24T16:00:00+00:00 2021-02-24T16:00:00+00:00
cisco-sa-nxos-pim-dos-y8sjmz4 Cisco NX-OS Software Protocol Independent Multicast Denial of Service Vulnerability 2021-02-24T16:00:00+00:00 2021-02-24T16:00:00+00:00
cisco-sa-nxos-nxapi-csrf-wrmzwl9z Cisco NX-OS Software NX-API Cross-Site Request Forgery Vulnerability 2021-02-24T16:00:00+00:00 2021-02-24T16:00:00+00:00
cisco-sa-nxos-ipv6-netstack-edxpgv7k Cisco NX-OS Software IPv6 Netstack Denial of Service Vulnerability 2021-02-24T16:00:00+00:00 2021-02-24T16:00:00+00:00
cisco-sa-n9kaci-unauth-access-5pwzdx2w Cisco Nexus 9000 Series Fabric Switches ACI Mode Fabric Infrastructure VLAN Unauthorized Access Vulnerability 2021-02-24T16:00:00+00:00 2021-02-25T14:44:59+00:00
cisco-sa-n9kaci-bgp-de9dpksk Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability 2021-02-24T16:00:00+00:00 2021-02-24T16:00:00+00:00
cisco-sa-mso-authbyp-bb5gmbqv Cisco ACI Multi-Site Orchestrator Application Services Engine Deployment Authentication Bypass Vulnerability 2021-02-24T16:00:00+00:00 2021-03-12T16:02:24+00:00
cisco-sa-fxos-nxos-icmpv6-dos-yd55jvcq Cisco NX-OS Software ICMP Version 6 Memory Leak Denial of Service Vulnerability 2021-02-24T16:00:00+00:00 2021-02-24T16:00:00+00:00
cisco-sa-case-mvuln-dyrdpc6w Cisco Application Services Engine Unauthorized Access Vulnerabilities 2021-02-24T16:00:00+00:00 2021-02-24T16:00:00+00:00
cisco-sa-apic-lldap-dos-werv9cfj Cisco Nexus 9000 Series Fabric Switches ACI Mode Link Layer Discovery Protocol Port Denial of Service Vulnerability 2021-02-24T16:00:00+00:00 2021-02-24T16:00:00+00:00
cisco-sa-anyconnect-dos-55ayyxyr Cisco AnyConnect Secure Mobility Client Denial of Service Vulnerability 2021-02-24T16:00:00+00:00 2021-04-14T16:14:43+00:00
cisco-sa-3000-9000-fileaction-qtlzdry2 Cisco NX-OS Software Unauthenticated Arbitrary File Actions Vulnerability 2021-02-24T16:00:00+00:00 2021-03-08T20:56:03+00:00
cisco-sa-webex-xss-lz6hbgct Cisco Webex Meetings Cross-Site Scripting Vulnerability 2021-02-17T16:00:00+00:00 2021-02-17T16:00:00+00:00
cisco-sa-wda-pt-msh-6lwocz5 Cisco Webex Meetings Desktop App and Webex Productivity Tools for Windows Shared Memory Information Disclosure Vulnerability 2021-02-17T16:00:00+00:00 2021-02-17T16:00:00+00:00
cisco-sa-staros-dos-rllvgfjj Cisco StarOS Denial of Service Vulnerability 2021-02-17T16:00:00+00:00 2021-02-17T16:00:00+00:00
cisco-sa-ise-info-exp-8rsueu8s Cisco Identity Services Engine Sensitive Information Disclosure Vulnerabilities 2021-02-17T16:00:00+00:00 2021-02-17T17:40:13+00:00
cisco-sa-anyconnect-dll-hijac-jrctoqmc Cisco AnyConnect Secure Mobility Client for Windows with VPN Posture (HostScan) Module DLL Hijacking Vulnerability 2021-02-17T16:00:00+00:00 2021-02-17T16:00:00+00:00
cisco-sa-xripv6-spjem78k Cisco IOS XR Software IPv6 Flood Denial of Service Vulnerability 2021-02-03T16:00:00+00:00 2021-02-03T16:00:00+00:00
cisco-sa-wbx-linkinj-wwzpvqu9 Cisco Webex Meetings and Cisco Webex Meetings Server Software Hyperlink Injection Vulnerability 2021-02-03T16:00:00+00:00 2021-02-03T16:00:00+00:00
cisco-sa-ucs-invcert-eoprvckh Cisco Unified Computing System Central Software Improper Certificate Validation Vulnerability 2021-02-03T16:00:00+00:00 2021-02-03T16:00:00+00:00
ID Description Published Updated
msrc_cve-2025-71077 tpm: Cap the number of PCR banks 2026-01-02T00:00:00.000Z 2026-02-18T14:32:10.000Z
msrc_cve-2025-71075 scsi: aic94xx: fix use-after-free in device removal path 2026-01-02T00:00:00.000Z 2026-02-18T14:27:49.000Z
msrc_cve-2025-71074 functionfs: fix the open/removal races 2026-01-02T00:00:00.000Z 2026-03-31T14:52:20.000Z
msrc_cve-2025-71073 Input: lkkbd - disable pending work before freeing device 2026-01-02T00:00:00.000Z 2026-03-31T15:09:32.000Z
msrc_cve-2025-71072 shmem: fix recovery on rename failures 2026-01-02T00:00:00.000Z 2026-03-31T15:10:18.000Z
msrc_cve-2025-71069 f2fs: invalidate dentry cache on failed whiteout creation 2026-01-02T00:00:00.000Z 2026-02-18T14:37:03.000Z
msrc_cve-2025-71068 svcrdma: bound check rq_pages index in inline path 2026-01-02T00:00:00.000Z 2026-02-18T14:24:21.000Z
msrc_cve-2025-71067 ntfs: set dummy blocksize to read boot_block when mounting 2026-01-02T00:00:00.000Z 2026-02-21T04:15:26.000Z
msrc_cve-2025-71066 net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change 2026-01-02T00:00:00.000Z 2026-02-21T04:13:59.000Z
msrc_cve-2025-71065 f2fs: fix to avoid potential deadlock 2026-01-02T00:00:00.000Z 2026-02-18T14:25:46.000Z
msrc_cve-2025-71064 net: hns3: using the num_tqps in the vf driver to apply for resources 2026-01-02T00:00:00.000Z 2026-02-21T04:20:16.000Z
msrc_cve-2025-69195 Wget2: gnu wget2: memory corruption and crash via filename sanitization logic with attacker-controlled urls 2026-01-02T00:00:00.000Z 2026-01-20T14:47:11.000Z
msrc_cve-2025-69194 Wget2: arbitrary file write via metalink path traversal in gnu wget2 2026-01-02T00:00:00.000Z 2026-01-20T14:46:58.000Z
msrc_cve-2025-68823 ublk: fix deadlock when reading partition table 2026-01-02T00:00:00.000Z 2026-02-21T03:58:26.000Z
msrc_cve-2025-68822 Input: alps - fix use-after-free bugs caused by dev3_register_work 2026-01-02T00:00:00.000Z 2026-04-01T01:49:12.000Z
msrc_cve-2025-68819 media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg() 2026-01-02T00:00:00.000Z 2026-02-21T04:18:59.000Z
msrc_cve-2025-68818 scsi: Revert "scsi: qla2xxx: Perform lockless command completion in abort path" 2026-01-02T00:00:00.000Z 2026-02-18T14:28:43.000Z
msrc_cve-2025-68817 ksmbd: fix use-after-free in ksmbd_tree_connect_put under concurrency 2026-01-02T00:00:00.000Z 2026-03-03T01:39:06.000Z
msrc_cve-2025-68816 net/mlx5: fw_tracer, Validate format string parameters 2026-01-02T00:00:00.000Z 2026-02-18T14:31:44.000Z
msrc_cve-2025-68815 net/sched: ets: Remove drr class from the active list if it changes to strict 2026-01-02T00:00:00.000Z 2026-02-18T14:31:18.000Z
msrc_cve-2025-68814 io_uring: fix filename leak in __io_openat_prep() 2026-01-02T00:00:00.000Z 2026-02-18T14:25:17.000Z
msrc_cve-2025-68809 ksmbd: vfs: fix race on m_flags in vfs_cache 2026-01-02T00:00:00.000Z 2026-02-18T14:30:53.000Z
msrc_cve-2025-68808 media: vidtv: initialize local pointers upon transfer of memory ownership 2026-01-02T00:00:00.000Z 2026-02-21T04:07:10.000Z
msrc_cve-2025-68806 ksmbd: fix buffer validation by including null terminator size in EA length 2026-01-02T00:00:00.000Z 2026-02-18T14:15:10.000Z
msrc_cve-2025-68803 NFSD: NFSv4 file creation neglects setting ACL 2026-01-02T00:00:00.000Z 2026-02-18T14:13:26.000Z
msrc_cve-2025-68801 mlxsw: spectrum_router: Fix neighbour use-after-free 2026-01-02T00:00:00.000Z 2026-02-18T14:22:51.000Z
msrc_cve-2025-68800 mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats 2026-01-02T00:00:00.000Z 2026-02-18T14:24:48.000Z
msrc_cve-2025-68799 caif: fix integer underflow in cffrml_receive() 2026-01-02T00:00:00.000Z 2026-02-18T14:43:30.000Z
msrc_cve-2025-68798 perf/x86/amd: Check event before enable to avoid GPF 2026-01-02T00:00:00.000Z 2026-02-18T14:21:19.000Z
msrc_cve-2025-68797 char: applicom: fix NULL pointer dereference in ac_ioctl 2026-01-02T00:00:00.000Z 2026-02-18T14:34:42.000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
opensuse-su-2025:15476-1 gimp-3.0.4-2.1 on GA media 2025-08-21T00:00:00Z 2025-08-21T00:00:00Z
opensuse-su-2025:15475-1 flake-pilot-3.1.21-1.1 on GA media 2025-08-21T00:00:00Z 2025-08-21T00:00:00Z
opensuse-su-2025:15474-1 aide-0.19.2-1.1 on GA media 2025-08-21T00:00:00Z 2025-08-21T00:00:00Z
opensuse-su-2025:15473-1 abseil-cpp-devel-20250814.0-2.1 on GA media 2025-08-21T00:00:00Z 2025-08-21T00:00:00Z
opensuse-su-2025:15472-1 MozillaThunderbird-140.2.0-1.1 on GA media 2025-08-21T00:00:00Z 2025-08-21T00:00:00Z
opensuse-su-2025:15471-1 ImageMagick-7.1.2.1-1.1 on GA media 2025-08-21T00:00:00Z 2025-08-21T00:00:00Z
opensuse-su-2025:15470-1 wicked2nm-1.2.1-1.1 on GA media 2025-08-20T00:00:00Z 2025-08-20T00:00:00Z
opensuse-su-2025:15469-1 govulncheck-vulndb-0.0.20250818T190335-1.1 on GA media 2025-08-20T00:00:00Z 2025-08-20T00:00:00Z
opensuse-su-2025:15468-1 gdk-pixbuf-devel-2.42.12-5.1 on GA media 2025-08-20T00:00:00Z 2025-08-20T00:00:00Z
opensuse-su-2025:15467-1 firefox-esr-140.2.0-1.1 on GA media 2025-08-20T00:00:00Z 2025-08-20T00:00:00Z
opensuse-su-2025:15466-1 polaris-10.1.1-1.1 on GA media 2025-08-19T00:00:00Z 2025-08-19T00:00:00Z
opensuse-su-2025:15465-1 pluto-5.22.5-1.1 on GA media 2025-08-19T00:00:00Z 2025-08-19T00:00:00Z
opensuse-su-2025:15464-1 nova-3.11.8-1.1 on GA media 2025-08-19T00:00:00Z 2025-08-19T00:00:00Z
opensuse-su-2025:15463-1 docker-machine-driver-kvm2-1.36.0-2.1 on GA media 2025-08-19T00:00:00Z 2025-08-19T00:00:00Z
opensuse-su-2025:15462-1 go-sendxmpp-0.15.0-1.1 on GA media 2025-08-19T00:00:00Z 2025-08-19T00:00:00Z
opensuse-su-2025:15461-1 aws-efs-utils-2.3.3-1.1 on GA media 2025-08-19T00:00:00Z 2025-08-19T00:00:00Z
opensuse-su-2025:15460-1 openbao-2.3.2-1.1 on GA media 2025-08-18T00:00:00Z 2025-08-18T00:00:00Z
opensuse-su-2025:15459-1 glibc-2.42-1.1 on GA media 2025-08-18T00:00:00Z 2025-08-18T00:00:00Z
opensuse-su-2025:15458-1 cflow-1.8-2.1 on GA media 2025-08-18T00:00:00Z 2025-08-18T00:00:00Z
opensuse-su-2025:15457-1 cairo-devel-1.18.4-3.1 on GA media 2025-08-18T00:00:00Z 2025-08-18T00:00:00Z
opensuse-su-2025:15456-1 apache2-mod_security2-2.9.12-1.1 on GA media 2025-08-18T00:00:00Z 2025-08-18T00:00:00Z
opensuse-su-2025:15455-1 libecpg6-17.6-1.1 on GA media 2025-08-16T00:00:00Z 2025-08-16T00:00:00Z
opensuse-su-2025:15454-1 trivy-0.65.0-1.1 on GA media 2025-08-15T00:00:00Z 2025-08-15T00:00:00Z
opensuse-su-2025:15453-1 postgresql16-16.10-1.1 on GA media 2025-08-15T00:00:00Z 2025-08-15T00:00:00Z
opensuse-su-2025:15452-1 postgresql15-15.14-1.1 on GA media 2025-08-15T00:00:00Z 2025-08-15T00:00:00Z
opensuse-su-2025:15451-1 postgresql14-14.19-1.1 on GA media 2025-08-15T00:00:00Z 2025-08-15T00:00:00Z
opensuse-su-2025:15450-1 postgresql13-13.22-1.1 on GA media 2025-08-15T00:00:00Z 2025-08-15T00:00:00Z
opensuse-su-2025:15449-1 nginx-1.29.1-1.1 on GA media 2025-08-15T00:00:00Z 2025-08-15T00:00:00Z
opensuse-su-2025:15448-1 lighttpd-1.4.80-1.1 on GA media 2025-08-15T00:00:00Z 2025-08-15T00:00:00Z
opensuse-su-2025:15447-1 jasper-4.2.8-2.1 on GA media 2025-08-15T00:00:00Z 2025-08-15T00:00:00Z
ID Description Published Updated
ID Description Published Updated
rhsa-2026:1909 Red Hat Security Advisory: kernel security update 2026-02-04T18:39:12+00:00 2026-03-19T07:39:06+00:00
rhsa-2026:1908 Red Hat Security Advisory: opentelemetry-collector security update 2026-02-04T16:10:41+00:00 2026-04-14T09:46:08+00:00
rhsa-2026:1879 Red Hat Security Advisory: kernel security update 2026-02-04T16:06:23+00:00 2026-04-01T19:29:22+00:00
rhsa-2026:1942 Red Hat Security Advisory: Red Hat Quay 3.15.3 2026-02-04T15:43:51+00:00 2026-04-14T09:46:09+00:00
rhsa-2026:1906 Red Hat Security Advisory: fence-agents security update 2026-02-04T15:36:27+00:00 2026-03-24T10:03:04+00:00
rhsa-2026:1905 Red Hat Security Advisory: fence-agents security update 2026-02-04T15:13:06+00:00 2026-03-24T10:03:04+00:00
rhsa-2026:1938 Red Hat Security Advisory: Red Hat OpenShift Builds 1.7.0 2026-02-04T15:12:01+00:00 2026-04-14T09:46:08+00:00
rhsa-2026:1922 Red Hat Security Advisory: python3.11 security update 2026-02-04T15:04:41+00:00 2026-04-13T20:02:11+00:00
rhsa-2026:1935 Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.1.4 XP 6.0.2.GA release 2026-02-04T14:34:28+00:00 2026-03-18T03:13:21+00:00
rhsa-2026:1904 Red Hat Security Advisory: resource-agents security update 2026-02-04T12:09:51+00:00 2026-03-24T10:03:03+00:00
rhsa-2026:1902 Red Hat Security Advisory: python-wheel security update 2026-02-04T11:59:01+00:00 2026-04-10T15:33:12+00:00
rhsa-2026:1907 Red Hat Security Advisory: opentelemetry-collector security update 2026-02-04T11:48:06+00:00 2026-04-14T09:46:08+00:00
rhsa-2026:1870 Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.1.4 security update 2026-02-04T11:35:41+00:00 2026-03-24T13:18:43+00:00
rhsa-2026:1852 Red Hat Security Advisory: util-linux security update 2026-02-04T11:22:56+00:00 2026-04-08T16:37:54+00:00
rhsa-2026:1552 Red Hat Security Advisory: OpenShift Container Platform 4.19.23 bug fix and security update 2026-02-04T10:50:17+00:00 2026-04-14T09:16:34+00:00
rhsa-2026:1882 Red Hat Security Advisory: iperf3 security update 2026-02-04T09:11:31+00:00 2026-03-18T03:17:37+00:00
rhsa-2026:1886 Red Hat Security Advisory: kernel security update 2026-02-04T09:07:22+00:00 2026-03-19T07:39:02+00:00
rhsa-2026:1577 Red Hat Security Advisory: OpenShift Container Platform 4.17.48 bug fix and security update 2026-02-04T08:15:24+00:00 2026-04-10T21:19:10+00:00
rhsa-2026:1881 Red Hat Security Advisory: iperf3 security update 2026-02-04T08:06:15+00:00 2026-03-18T03:17:34+00:00
rhsa-2026:1896 Red Hat Security Advisory: Red Hat OpenShift Builds 1.6.3 2026-02-04T07:12:33+00:00 2026-04-14T09:46:08+00:00
rhsa-2026:1871 Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.1.4 security update 2026-02-04T05:16:20+00:00 2026-03-24T13:18:43+00:00
rhsa-2026:1555 Red Hat Security Advisory: OpenShift Container Platform 4.20.13 bug fix and security update 2026-02-04T04:50:43+00:00 2026-04-10T21:19:11+00:00
rhsa-2026:1872 Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.1.4 security update 2026-02-04T04:47:19+00:00 2026-03-24T13:18:43+00:00
rhsa-2026:1556 Red Hat Security Advisory: OpenShift Container Platform 4.20.13 security and extras update 2026-02-04T04:16:28+00:00 2026-04-10T21:19:11+00:00
rhsa-2026:0980 Red Hat Security Advisory: OpenShift Container Platform 4.18.32 bug fix and security update 2026-02-03T21:03:49+00:00 2026-04-13T20:14:15+00:00
rhsa-2026:1820 Red Hat Security Advisory: kpatch-patch-5_14_0-611_9_1 security update 2026-02-03T18:41:33+00:00 2026-03-18T03:17:20+00:00
rhsa-2026:1859 Red Hat Security Advisory: OpenShift Compliance Operator bug fix and enhancement update 2026-02-03T17:24:45+00:00 2026-03-30T14:47:58+00:00
rhsa-2026:1858 Red Hat Security Advisory: Red Hat Ceph Storage 2026-02-03T17:17:26+00:00 2026-04-13T20:02:08+00:00
rhsa-2026:1062 Red Hat Security Advisory: OpenShift Container Platform 4.18.32 bug fix and security update 2026-02-03T17:11:40+00:00 2026-04-10T21:19:08+00:00
rhsa-2026:1845 Red Hat Security Advisory: Red Hat build of Cryostat security update 2026-02-03T16:03:10+00:00 2026-04-14T09:46:08+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
suse-su-2026:20443-1 Security update for python-urllib3 2026-02-16T14:21:49Z 2026-02-16T14:21:49Z
suse-su-2026:0561-1 Security update for the Linux Kernel (Live Patch 5 for SUSE Linux Enterprise 15 SP7) 2026-02-16T12:33:41Z 2026-02-16T12:33:41Z
suse-su-2026:0560-1 Security update for the Linux Kernel (Live Patch 1 for SUSE Linux Enterprise 15 SP7) 2026-02-16T12:03:47Z 2026-02-16T12:03:47Z
suse-su-2026:0559-1 Security update for freerdp 2026-02-16T11:43:04Z 2026-02-16T11:43:04Z
suse-su-2026:0558-1 Security update for libnvidia-container 2026-02-16T11:42:25Z 2026-02-16T11:42:25Z
suse-su-2026:0557-1 Security update for the Linux Kernel (Live Patch 4 for SUSE Linux Enterprise 15 SP7) 2026-02-16T10:33:36Z 2026-02-16T10:33:36Z
suse-su-2026:0556-1 Security update for the Linux Kernel (Live Patch 2 for SUSE Linux Enterprise 15 SP7) 2026-02-16T10:03:47Z 2026-02-16T10:03:47Z
suse-su-2026:20374-1 Security update for python311 2026-02-16T09:45:48Z 2026-02-16T09:45:48Z
suse-su-2026:0555-1 Security update for the Linux Kernel (Live Patch 3 for SUSE Linux Enterprise 15 SP7) 2026-02-16T09:04:29Z 2026-02-16T09:04:29Z
suse-su-2026:20373-1 Security update for openssl-3 2026-02-16T08:54:36Z 2026-02-16T08:54:36Z
suse-su-2026:0554-1 Security update for the Linux Kernel (Live Patch 0 for SUSE Linux Enterprise 15 SP7) 2026-02-16T08:33:36Z 2026-02-16T08:33:36Z
suse-su-2026:20353-1 Security update for libxml2 2026-02-16T08:28:24Z 2026-02-16T08:28:24Z
suse-su-2026:20372-1 Security update for libxml2 2026-02-16T08:19:48Z 2026-02-16T08:19:48Z
suse-su-2026:0551-1 Security update for the Linux Kernel (Live Patch 15 for SUSE Linux Enterprise 15 SP6) 2026-02-16T06:33:35Z 2026-02-16T06:33:35Z
suse-su-2026:0550-1 Security update for the Linux Kernel (Live Patch 14 for SUSE Linux Enterprise 15 SP6) 2026-02-16T05:33:34Z 2026-02-16T05:33:34Z
suse-su-2026:0548-1 Security update for the Linux Kernel (Live Patch 10 for SUSE Linux Enterprise 15 SP6) 2026-02-16T03:33:34Z 2026-02-16T03:33:34Z
suse-su-2026:0546-1 Security update for the Linux Kernel (Live Patch 13 for SUSE Linux Enterprise 15 SP6) 2026-02-15T19:33:42Z 2026-02-15T19:33:42Z
suse-su-2026:0544-1 Security update for the Linux Kernel (Live Patch 31 for SUSE Linux Enterprise 15 SP5) 2026-02-15T18:03:51Z 2026-02-15T18:03:51Z
suse-su-2026:0543-1 Security update for the Linux Kernel (Live Patch 7 for SUSE Linux Enterprise 15 SP6) 2026-02-15T17:33:36Z 2026-02-15T17:33:36Z
suse-su-2026:0542-1 Security update for the Linux Kernel (Live Patch 30 for SUSE Linux Enterprise 15 SP5) 2026-02-15T16:03:51Z 2026-02-15T16:03:51Z
suse-su-2026:0539-1 Security update for the Linux Kernel (Live Patch 26 for SUSE Linux Enterprise 15 SP5) 2026-02-15T13:33:40Z 2026-02-15T13:33:40Z
suse-su-2026:0535-1 Security update for the Linux Kernel (Live Patch 28 for SUSE Linux Enterprise 15 SP5) 2026-02-15T11:04:06Z 2026-02-15T11:04:06Z
suse-su-2026:20436-1 Security update for nodejs22 2026-02-15T08:45:21Z 2026-02-15T08:45:21Z
suse-su-2026:0528-1 Security update for the Linux Kernel (Live Patch 24 for SUSE Linux Enterprise 15 SP5) 2026-02-15T06:33:50Z 2026-02-15T06:33:50Z
suse-su-2026:0533-1 Security update for the Linux Kernel (Live Patch 45 for SUSE Linux Enterprise 15 SP4) 2026-02-15T06:33:38Z 2026-02-15T06:33:38Z
suse-su-2026:20435-1 Security update for fontforge 2026-02-14T21:30:08Z 2026-02-14T21:30:08Z
suse-su-2026:0526-1 Security update for the Linux Kernel (Live Patch 35 for SUSE Linux Enterprise 15 SP4) 2026-02-14T19:33:43Z 2026-02-14T19:33:43Z
suse-su-2026:0525-1 Security update for the Linux Kernel (Live Patch 73 for SUSE Linux Enterprise 12 SP5) 2026-02-14T17:04:03Z 2026-02-14T17:04:03Z
suse-su-2026:0524-1 Security update for the Linux Kernel (Live Patch 72 for SUSE Linux Enterprise 12 SP5) 2026-02-14T17:03:57Z 2026-02-14T17:03:57Z
suse-su-2026:0521-1 Security update for the Linux Kernel (Live Patch 69 for SUSE Linux Enterprise 12 SP5) 2026-02-14T12:03:47Z 2026-02-14T12:03:47Z
ID Description Published Updated
alsa-2025:4263 Moderate: php:8.1 security update 2025-04-28T00:00:00Z 2025-04-29T07:32:58Z
alsa-2025:4244 Moderate: glibc security update 2025-04-28T00:00:00Z 2025-04-28T19:48:02Z
alsa-2025:4229 Important: thunderbird security update 2025-04-28T00:00:00Z 2025-04-28T19:32:51Z
alsa-2025:4170 Important: thunderbird security update 2025-04-24T00:00:00Z 2025-04-25T11:18:44Z
alsa-2025:4169 Important: thunderbird security update 2025-04-24T00:00:00Z 2025-04-25T11:06:00Z
alsa-2025:4063 Moderate: ruby:3.1 security update 2025-04-22T00:00:00Z 2026-04-09T17:45:54Z
alsa-2025:4051 Moderate: gnutls security update 2025-04-22T00:00:00Z 2025-05-08T18:49:20Z
alsa-2025:4049 Moderate: libtasn1 security update 2025-04-22T00:00:00Z 2026-04-09T18:00:49Z
alsa-2025:4048 Moderate: xmlrpc-c security update 2025-04-22T00:00:00Z 2026-04-09T18:11:53Z
alsa-2025:4043 Moderate: bluez security update 2025-04-22T00:00:00Z 2025-04-22T12:08:47Z
alsa-2025:4025 Important: libxslt security update 2025-04-21T00:00:00Z 2025-04-21T08:23:52Z
alsa-2025:3997 Important: mod_auth_openidc:2.3 security update 2025-04-17T00:00:00Z 2025-04-21T07:48:56Z
alsa-2025:3974 Important: webkit2gtk3 security update 2025-04-17T00:00:00Z 2025-04-21T07:46:50Z
alsa-2025:3937 Moderate: kernel security update 2025-04-16T00:00:00Z 2025-04-21T08:27:18Z
alsa-2025:3855 Moderate: java-21-openjdk security update 2025-04-16T00:00:00Z 2025-05-08T18:52:33Z
alsa-2025:3852 Moderate: java-17-openjdk security update 2025-04-16T00:00:00Z 2025-05-08T18:59:49Z
alsa-2025:3845 Moderate: java-1.8.0-openjdk security update 2025-04-16T00:00:00Z 2025-04-22T08:24:02Z
alsa-2025:3913 Moderate: expat security update 2025-04-15T00:00:00Z 2025-04-22T14:34:50Z
alsa-2025:3894 Moderate: kernel-rt security update 2025-04-15T00:00:00Z 2025-04-15T14:18:52Z
alsa-2025:3893 Moderate: kernel security update 2025-04-15T00:00:00Z 2025-04-15T14:21:27Z
alsa-2025:3833 Important: gvisor-tap-vsock security update 2025-04-14T00:00:00Z 2025-04-15T14:12:05Z
alsa-2025:3828 Moderate: glibc security update 2025-04-14T00:00:00Z 2025-04-14T14:26:30Z
alsa-2025:3773 Important: delve and golang security update 2025-04-10T00:00:00Z 2025-04-10T08:20:05Z
alsa-2025:3772 Moderate: go-toolset:rhel8 security update 2025-04-10T00:00:00Z 2025-04-10T14:51:51Z
alsa-2025:3713 Important: webkit2gtk3 security update 2025-04-08T00:00:00Z 2025-04-09T08:21:19Z
alsa-2025:3683 Moderate: tomcat security update 2025-04-08T00:00:00Z 2025-04-09T08:27:17Z
alsa-2025:3645 Moderate: tomcat security update 2025-04-07T00:00:00Z 2025-04-08T10:29:52Z
alsa-2025:3634 Low: python3.11 security update 2025-04-07T00:00:00Z 2025-04-08T09:24:19Z
alsa-2025:3631 Low: python3.12 security update 2025-04-07T00:00:00Z 2025-04-08T09:22:03Z
alsa-2025:3617 Important: gimp security update 2025-04-07T00:00:00Z 2025-04-07T14:05:08Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
osv-2023-95 Use-of-uninitialized-value in isvcd_interpolate_residual_sse42 2023-02-22T13:02:05.514993Z 2023-02-22T13:02:05.515242Z
osv-2023-90 Heap-buffer-overflow in LibRaw_buffer_datastream::scanf_one 2023-02-21T13:00:32.973229Z 2023-02-24T01:53:57.243568Z
osv-2023-89 Heap-buffer-overflow in H5O__mtime_new_encode 2023-02-21T13:00:30.347876Z 2026-03-24T14:48:44.199364Z
osv-2023-88 Stack-buffer-overflow in pdfi_read_cff_dict 2023-02-21T13:00:14.009945Z 2023-02-24T02:20:40.546212Z
osv-2023-86 UNKNOWN READ in isvce_cabac_flush 2023-02-20T13:00:28.631850Z 2023-02-20T13:00:28.632115Z
osv-2023-80 Heap-buffer-overflow in set_data 2023-02-18T13:01:03.496830Z 2023-05-15T14:22:01.756573Z
osv-2023-79 Heap-buffer-overflow in H5O__fsinfo_decode 2023-02-18T13:01:01.580923Z 2023-04-27T14:30:07.165171Z
osv-2023-78 Heap-buffer-overflow in ucl_object_dtor_unref_single 2023-02-18T13:01:01.445224Z 2026-02-17T14:21:11.808505Z
osv-2023-77 Heap-buffer-overflow in H5C__load_cache_image 2023-02-18T13:00:53.191660Z 2023-05-29T14:29:23.762948Z
osv-2023-76 Heap-buffer-overflow in H5SM_delete 2023-02-18T13:00:50.471845Z 2026-03-24T15:56:21.323480Z
osv-2023-75 Heap-buffer-overflow in isvcd_interlyr_motion_mode_pred_dyadic 2023-02-18T13:00:42.024313Z 2023-02-18T13:00:42.024552Z
osv-2023-72 Heap-buffer-overflow in perfetto::trace_processor::TrackEventParser::ParseTrackDescriptor 2023-02-18T13:00:15.470143Z 2023-04-20T22:43:30.312154Z
osv-2023-69 Heap-use-after-free in zend_ast_evaluate_inner 2023-02-17T13:02:09.653146Z 2023-02-17T13:02:09.653400Z
osv-2023-68 Heap-buffer-overflow in isvcd_residual_samp_mb_dyadic 2023-02-17T13:00:59.859598Z 2023-02-17T13:00:59.859844Z
osv-2023-67 Heap-use-after-free in config__cleanup 2023-02-17T13:00:29.254247Z 2023-02-17T13:00:29.254518Z
osv-2023-66 Heap-buffer-overflow in mosquitto__strdup 2023-02-17T13:00:27.069083Z 2023-02-17T13:00:27.069318Z
osv-2023-61 Heap-buffer-overflow in xmlParseTryOrFinish 2023-02-15T13:02:21.068814Z 2023-02-15T13:02:21.069046Z
osv-2023-60 Security exception in org.json.JSONTokener.nextValue 2023-02-15T13:01:50.670813Z 2023-02-15T13:01:50.671047Z
osv-2023-56 Heap-buffer-overflow in git_oid_raw_cmp 2023-02-07T13:00:10.989656Z 2023-04-24T14:22:48.200282Z
osv-2023-55 Index-out-of-bounds in LibRaw::apply_tiff 2023-02-07T13:00:07.438565Z 2026-04-10T14:12:13.379692Z
osv-2023-51 Heap-use-after-free in ZSTD_freeDDict 2023-02-05T13:00:54.245269Z 2025-02-19T14:14:00.172684Z
osv-2023-49 Heap-buffer-overflow in lex_scan 2023-02-05T13:00:15.921972Z 2023-02-05T13:00:15.922227Z
osv-2023-48 Global-buffer-overflow in isvce_write_coeff4x4_cavlc 2023-02-04T13:02:12.024915Z 2023-02-04T13:02:12.025260Z
osv-2023-46 Heap-buffer-overflow in json_cquote 2023-02-03T13:01:48.067659Z 2023-02-15T22:57:59.567156Z
osv-2023-42 Heap-buffer-overflow in bit_read_BB 2023-02-02T13:00:40.999896Z 2023-12-16T14:20:07.644053Z
osv-2023-41 Heap-use-after-free in sk_num 2023-02-02T13:00:19.898084Z 2024-05-08T03:26:30.000000Z
osv-2023-38 Heap-use-after-free in zend_generator_dtor_storage 2023-01-31T13:01:02.586300Z 2023-01-31T13:01:02.586574Z
osv-2023-35 Heap-buffer-overflow in parse_classes_64 2023-01-29T13:01:45.762871Z 2026-04-13T14:21:54.947682Z
osv-2023-34 Heap-use-after-free in gc_trace 2023-01-29T13:00:17.773387Z 2026-03-18T14:25:32.218330Z
osv-2023-31 Heap-use-after-free in zip_source_open 2023-01-25T13:00:19.349341Z 2023-01-25T13:00:19.349630Z
ID Description Published Updated
ID Description Published Updated
bit-libpython-2020-8315 2025-08-11T13:51:37.536Z 2025-08-11T14:19:40.295Z
bit-libpython-2020-27619 2025-08-11T13:51:35.537Z 2025-08-11T14:19:40.295Z
bit-libpython-2020-26116 2025-08-11T13:51:33.813Z 2025-08-11T14:19:40.295Z
bit-libpython-2020-15801 2025-08-11T13:51:32.060Z 2025-08-11T14:19:40.295Z
bit-libpython-2020-15523 2025-08-11T13:51:30.254Z 2025-08-11T14:19:40.295Z
bit-libpython-2020-14422 2025-08-11T13:51:28.699Z 2025-08-11T14:19:40.295Z
bit-libpython-2020-10735 2025-08-11T13:51:26.807Z 2025-11-06T13:25:46.476Z
bit-moodle-2025-26529 Stored XSS risk in admin live log 2025-08-10T23:48:21.915Z 2025-08-11T00:06:06.142Z
bit-moodle-2025-26528 Stored XSS in ddimageortext question type 2025-08-10T23:48:20.501Z 2025-08-11T00:06:06.142Z
bit-moodle-2025-26527 Non-searchable tags can still be discovered on the tag search page and in the tags block 2025-08-10T23:48:18.990Z 2025-08-11T00:06:06.142Z
bit-moodle-2025-26526 Feedback response viewing and deletions did not respect Separate Groups mode 2025-08-10T23:48:17.474Z 2025-08-11T00:06:06.142Z
bit-moodle-2025-26525 Arbitrary file read risk through pdfTeX 2025-08-10T23:48:15.877Z 2025-08-11T00:06:06.142Z
bit-golang-2025-47907 Incorrect results returned from Rows.Scan in database/sql 2025-08-10T23:42:00.295Z 2025-11-06T13:25:46.476Z
bit-vault-2025-6013 Vault LDAP MFA Enforcement Bypass When Using Username As Alias 2025-08-08T06:04:14.175Z 2025-12-16T15:14:22.118Z
bit-moodle-2024-38277 moodle: QR login key and auto-login key for the Moodle mobile app should be generated as separate keys 2025-08-08T06:00:33.314Z 2025-08-08T06:26:52.450Z
bit-moodle-2024-38274 moodle: stored XSS via calendar's event title when deleting the event 2025-08-08T06:00:28.390Z 2025-08-08T06:26:52.450Z
bit-moodle-2024-38273 moodle: BigBlueButton web service leaks meeting joining information to users who should not have access 2025-08-08T06:00:26.723Z 2025-08-08T06:26:52.450Z
bit-modsecurity2-2025-54571 ModSecurity's Insufficient Return Value Handling can Lead to XSS and Source Code Disclosure 2025-08-08T05:55:32.006Z 2025-11-06T13:25:46.476Z
bit-modsecurity-2025-54571 ModSecurity's Insufficient Return Value Handling can Lead to XSS and Source Code Disclosure 2025-08-08T05:55:15.874Z 2025-11-06T13:25:46.476Z
bit-mastodon-2025-54879 Mastodon e‑mail throttle misconfiguration allows unlimited email confirmations against unconfirmed emails 2025-08-08T05:54:51.134Z 2025-08-27T09:06:48.117Z
bit-moodle-2025-26533 SQL injection risk in course search module list filter 2025-08-07T08:59:23.153Z 2025-08-07T09:23:45.368Z
bit-moodle-2025-26532 Teachers can evade trusttext config when restoring glossary entries 2025-08-07T08:59:21.801Z 2025-08-07T09:23:45.368Z
bit-moodle-2025-26531 IDOR in badges allows disabling of arbitrary badges 2025-08-07T08:59:20.231Z 2025-08-07T09:23:45.368Z
bit-prestashop-2025-25692 2025-08-07T08:58:52.761Z 2025-09-03T11:06:29.028Z
bit-prestashop-2025-25691 2025-08-07T08:58:51.176Z 2025-09-03T11:06:29.028Z
bit-moodle-2024-43438 Moodle: idor in feedback non-respondents report allows messaging arbitrary site users 2025-08-06T05:50:00.167Z 2025-08-06T06:08:07.957Z
bit-moodle-2024-43436 Moodle: site administration sql injection via xmldb editor 2025-08-06T05:49:57.125Z 2025-08-06T06:08:07.957Z
bit-moodle-2024-43426 Moodle: arbitrary file read risk through pdftex 2025-08-06T05:49:42.427Z 2025-08-06T06:08:07.957Z
bit-mlflow-2025-1473 CSRF in mlflow/mlflow 2025-08-06T05:45:52.838Z 2025-08-06T06:08:07.957Z
bit-mlflow-2024-8859 Path Traversal in mlflow/mlflow 2025-08-06T05:45:49.791Z 2025-08-06T06:08:07.957Z
ID Description Published Updated
ID Description Published Updated
ID Description Updated
ID Description Published Updated
ID Description Published Updated
certfr-2025-avi-0469 Vulnérabilité dans les produits Synology 2025-06-02T00:00:00.000000 2025-06-02T00:00:00.000000
certfr-2025-avi-0468 Vulnérabilité dans Roundcube 2025-06-02T00:00:00.000000 2025-06-05T00:00:00.000000
certfr-2025-avi-0467 Multiples vulnérabilités dans IBM Db2 2025-05-30T00:00:00.000000 2025-05-30T00:00:00.000000
certfr-2025-avi-0466 Multiples vulnérabilités dans le noyau Linux de Red Hat 2025-05-30T00:00:00.000000 2025-05-30T00:00:00.000000
certfr-2025-avi-0465 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-05-30T00:00:00.000000 2025-05-30T00:00:00.000000
certfr-2025-avi-0464 Multiples vulnérabilités dans le noyau Linux de Debian 2025-05-30T00:00:00.000000 2025-05-30T00:00:00.000000
certfr-2025-avi-0463 Multiples vulnérabilités dans le noyau Linux de Debian LTS 2025-05-30T00:00:00.000000 2025-05-30T00:00:00.000000
certfr-2025-avi-0462 Multiples vulnérabilités dans Microsoft Edge 2025-05-30T00:00:00.000000 2025-05-30T00:00:00.000000
certfr-2025-avi-0461 Vulnérabilité dans Apache Tomcat 2025-05-30T00:00:00.000000 2025-05-30T00:00:00.000000
certfr-2025-avi-0460 Vulnérabilité dans Spring Cloud Gateway Server 2025-05-30T00:00:00.000000 2025-05-30T00:00:00.000000
certfr-2025-avi-0459 Multiples vulnérabilités dans ISC Kea DHCP 2025-05-30T00:00:00.000000 2025-05-30T00:00:00.000000
certfr-2025-avi-0458 Multiples vulnérabilités dans Curl 2025-05-28T00:00:00.000000 2025-05-28T00:00:00.000000
certfr-2025-avi-0457 Vulnérabilité dans Traefik 2025-05-28T00:00:00.000000 2025-05-28T00:00:00.000000
certfr-2025-avi-0456 Multiples vulnérabilités dans Citrix et Xen 2025-05-28T00:00:00.000000 2025-05-28T00:00:00.000000
certfr-2025-avi-0455 Multiples vulnérabilités dans Google Chrome 2025-05-28T00:00:00.000000 2025-05-28T00:00:00.000000
certfr-2025-avi-0454 Multiples vulnérabilités dans les produits Mozilla 2025-05-28T00:00:00.000000 2025-05-28T00:00:00.000000
certfr-2025-avi-0453 Vulnérabilité dans Mattermost Server 2025-05-27T00:00:00.000000 2025-08-19T00:00:00.000000
certfr-2025-avi-0452 Multiples vulnérabilités dans les produits IBM 2025-05-23T00:00:00.000000 2025-05-23T00:00:00.000000
certfr-2025-avi-0451 Vulnérabilité dans Microsoft Edge 2025-05-23T00:00:00.000000 2025-05-23T00:00:00.000000
certfr-2025-avi-0450 Multiples vulnérabilités dans le noyau Linux de Red Hat 2025-05-23T00:00:00.000000 2025-05-23T00:00:00.000000
certfr-2025-avi-0449 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-05-23T00:00:00.000000 2025-05-23T00:00:00.000000
certfr-2025-avi-0448 Multiples vulnérabilités dans Tenable Nessus Network Monitor 2025-05-23T00:00:00.000000 2025-05-23T00:00:00.000000
certfr-2025-avi-0447 Multiples vulnérabilités dans Grafana 2025-05-23T00:00:00.000000 2025-05-23T00:00:00.000000
certfr-2025-avi-0446 Multiples vulnérabilités dans Asterisk 2025-05-23T00:00:00.000000 2025-05-23T00:00:00.000000
certfr-2025-avi-0445 Multiples vulnérabilités dans Mozilla Thunderbird 2025-05-23T00:00:00.000000 2025-05-23T00:00:00.000000
certfr-2025-avi-0444 Vulnérabilité dans OpenSSL 2025-05-23T00:00:00.000000 2025-05-23T00:00:00.000000
certfr-2025-avi-0443 Vulnérabilité dans VMware Avi Load Balancer 2025-05-23T00:00:00.000000 2025-05-23T00:00:00.000000
certfr-2025-avi-0442 Vulnérabilité dans Mozilla Firefox pour iOS 2025-05-22T00:00:00.000000 2025-05-22T00:00:00.000000
certfr-2025-avi-0441 Vulnérabilité dans Mattermost Server 2025-05-22T00:00:00.000000 2025-08-19T00:00:00.000000
certfr-2025-avi-0440 Vulnérabilité dans Grafana 2025-05-22T00:00:00.000000 2025-05-22T00:00:00.000000
ID Description Published Updated
jvndb-2019-007404 WonderCMS vulnerable to directory traversal 2019-08-09T12:23+09:00 2019-10-08T17:23+09:00
jvndb-2019-000051 EC-CUBE plugin "Amazon Pay Plugin 2.12,2.13" vulnerable to cross-site scripting 2019-08-07T13:58+09:00 2019-08-07T13:58+09:00
jvndb-2019-000050 Central Dogma vulnerable to cross-site scripting 2019-07-31T15:29+09:00 2019-10-04T16:37+09:00
jvndb-2019-000049 WordPress Plugin "Category Specific RSS feed Subscription" vulnerable to cross-site request forgery 2019-07-18T13:56+09:00 2019-10-08T16:28+09:00
jvndb-2019-000048 WordPress Plugin "WordPress Ultra Simple Paypal Shopping Cart" vulnerable to cross-site request forgery 2019-07-16T16:16+09:00 2019-10-08T16:38+09:00
jvndb-2019-000047 Multiple vulnerabilities in Cybozu Garoon 2019-07-16T16:08+09:00 2019-10-08T17:19+09:00
jvndb-2019-000046 Intel Dual Band Wireless-AC 8260 vulnerable to denial-of-service (DoS) 2019-07-10T14:07+09:00 2019-07-10T14:07+09:00
jvndb-2019-000045 Multiple vulnerabilities in Access analysis CGI An-Analyzer 2019-07-05T15:28+09:00 2019-07-05T15:28+09:00
jvndb-2019-000044 The management console of iDoors Reader vulnerable to authentication bypass 2019-07-01T14:31+09:00 2019-10-04T15:45+09:00
jvndb-2018-000122 Multiple vulnerabilities in Panasonic BN-SDWBP3 2019-06-28T18:28+09:00 2019-08-27T17:46+09:00
jvndb-2019-000043 Multiple vulnerabilities in Hikari Denwa router/Home GateWay 2019-06-27T15:36+09:00 2019-10-08T17:22+09:00
jvndb-2019-000042 WordPress Plugin "Custom CSS Pro" vulnerable to cross-site request forgery 2019-06-24T14:27+09:00 2019-10-01T10:22+09:00
jvndb-2019-000041 WordPress Plugin "HTML5 Maps" vulnerable to cross-site request forgery 2019-06-24T14:22+09:00 2019-10-01T10:24+09:00
jvndb-2019-000040 Multiple vulnerabilities in VAIO Update 2019-06-21T14:22+09:00 2019-10-01T11:12+09:00
jvndb-2019-000038 WordPress Plugin "Personalized WooCommerce Cart Page" vulnerable to cross-site request forgery 2019-06-19T14:13+09:00 2019-10-04T16:13+09:00
jvndb-2019-000039 WordPress Plugin "Related YouTube Videos" vulnerable to cross-site request forgery 2019-06-17T14:55+09:00 2019-10-04T16:02+09:00
jvndb-2019-000037 A map plugin for Mincraft server "Dynmap" fails to restrict access permissions 2019-06-13T13:57+09:00 2019-10-01T10:18+09:00
jvndb-2019-000036 WordPress Plugin "Contest Gallery" vulnerable to cross-site request forgery 2019-06-12T14:21+09:00 2019-10-04T16:19+09:00
jvndb-2019-000035 Multiple vulnerabilities in WordPress Plugin "Online Lesson Booking" 2019-06-10T15:33+09:00 2019-10-02T17:50+09:00
jvndb-2019-000034 Multiple vulnerabilities in WordPress Plugin "Attendance Manager" 2019-06-10T15:31+09:00 2019-10-01T10:56+09:00
jvndb-2019-000033 Multiple vulnerabilities in GROWI 2019-06-07T15:18+09:00 2019-10-01T10:46+09:00
jvndb-2019-000032 Joruri CMS 2017 vulnerable to cross-site scripting 2019-06-07T15:09+09:00 2019-10-02T17:53+09:00
jvndb-2019-000031 Multiple vulnerabilities in Joruri Mail 2019-06-07T15:03+09:00 2019-10-01T10:50+09:00
jvndb-2019-004441 Vulnerability in Cosminexus HTTP Server and Hitachi Web Server 2019-06-03T13:55+09:00 2019-06-03T13:55+09:00
jvndb-2019-000030 Multiple vulnerabilities in WordPress Plugin "Zoho SalesIQ" 2019-05-31T13:51+09:00 2019-10-01T10:54+09:00
jvndb-2019-000029 Android App "Tootdon for Mastodon" fails to verify SSL server certificates 2019-05-24T15:13+09:00 2019-10-04T15:50+09:00
jvndb-2019-000028 WordPress plugin "WP Open Graph" vulnerable to cross-site request forgery 2019-05-23T14:10+09:00 2019-10-01T11:11+09:00
jvndb-2019-000027 Apache Camel vulnerable to XML external entity injection (XXE) 2019-05-22T14:37+09:00 2019-09-30T18:14+09:00
jvndb-2019-003539 DoS Vulnerability in Hitachi IT Operations Director, JP1/IT Desktop Management - Manager and JP1/IT Desktop Management 2 - Manager 2019-05-20T15:38+09:00 2019-05-20T15:38+09:00
jvndb-2019-003194 Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor 2019-05-13T15:25+09:00 2019-05-13T15:25+09:00
ID Description Published Updated
cnvd-2026-06132 JeecgBoot queryDepartPermission函数授权问题漏洞 2026-01-09 2026-01-22
cnvd-2026-06111 Soda PDF Desktop越界读取漏洞 2026-01-09 2026-01-21
cnvd-2026-06110 Soda PDF Desktop代码执行漏洞(CNVD-2026-06110) 2026-01-09 2026-01-21
cnvd-2026-06108 Soda PDF Desktop代码执行漏洞(CNVD-2026-06108) 2026-01-09 2026-01-21
cnvd-2026-06107 Soda PDF Desktop代码执行漏洞 2026-01-09 2026-01-21
cnvd-2026-05016 UTT 520W formUser函数缓冲区溢出漏洞 2026-01-09 2026-01-13
cnvd-2026-05015 UTT 512W formConfigCliForEngineerOnly函数缓冲区溢出漏洞 2026-01-09 2026-01-13
cnvd-2026-05014 Tenda WH450 goform/PPTPUserSetting文件缓冲区溢出漏洞 2026-01-09 2026-01-14
cnvd-2026-04543 Tenda AC23缓冲区溢出漏洞 2026-01-09 2026-01-13
cnvd-2026-03262 Tenda WH450命令注入漏洞 2026-01-09 2026-01-09
cnvd-2026-03261 Echo Specto CM跨站脚本漏洞 2026-01-09 2026-01-13
cnvd-2026-03090 Tenda WH450 goform/PPTPServer文件缓冲区溢出漏洞 2026-01-09 2026-01-09
cnvd-2026-03089 Tenda WH450 goform/PPTPDClient文件缓冲区溢出漏洞 2026-01-09 2026-01-09
cnvd-2026-03088 Tenda WH450 goform/PPTPClient文件缓冲区溢出漏洞 2026-01-09 2026-01-09
cnvd-2026-03087 Tenda WH450 goform/Natlimit文件缓冲区溢出漏洞 2026-01-09 2026-01-09
cnvd-2026-03086 FluentCMS输入验证错误漏洞 2026-01-09 2026-01-09
cnvd-2026-02980 WordPress插件Shortcodes and extra features for Phlox theme信息泄露漏洞 2026-01-09 2026-01-13
cnvd-2026-02887 WordPress ilGhera Support System for WooCommerce plugin未经授权的数据修改漏洞 2026-01-09 2026-01-09
cnvd-2026-02886 WordPress Geo Controller plugin跨站脚本漏洞 2026-01-09 2026-01-09
cnvd-2026-02885 WordPress FS Registration Password plugin权限提升漏洞 2026-01-09 2026-01-09
cnvd-2026-02884 WordPress FlexTable plugin跨站脚本漏洞 2026-01-09 2026-01-09
cnvd-2026-02883 WordPress FastDup plugin路径遍历漏洞 2026-01-09 2026-01-09
cnvd-2026-02882 WordPress Car Rental Manager plugin缺少授权漏洞 2026-01-09 2026-01-09
cnvd-2026-02881 WordPress Calafate plugin文件包含漏洞 2026-01-09 2026-01-09
cnvd-2026-02880 WordPress Better Business Reviews plugin缺少授权漏洞 2026-01-09 2026-01-09
cnvd-2026-02879 WordPress AffiliateX plugin缺少授权漏洞 2026-01-09 2026-01-09
cnvd-2026-02878 WordPress Accordion plugin跨站脚本漏洞 2026-01-09 2026-01-09
cnvd-2026-02809 ComfyUI-Manager CRLF注入漏洞 2026-01-09 2026-02-23
cnvd-2026-04470 北京神州视翰科技有限公司远程医疗综合服务平台存在SQL注入漏洞(CNVD-C-2026-35542) 2026-01-08 2026-01-21
cnvd-2026-04457 北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞(CNVD-C-2026-33516) 2026-01-07 2026-01-21
ID Description Published Updated
bdu:2026-00479 Уязвимость функции биометрической проверки подлинности Windows Hello операционных систем … 16.01.2026 16.01.2026
bdu:2026-00478 Уязвимость системы управления базами данных Microsoft SQL Server, связанная с недостаткам… 16.01.2026 16.01.2026
bdu:2026-00477 Уязвимость реализации протокола безопасной загрузки Secure Boot операционных систем Windo… 16.01.2026 16.01.2026
bdu:2026-00476 Уязвимость технологии Dynamic Root of Trust for Measurement (DRTM) операционных систем Wi… 16.01.2026 16.01.2026
bdu:2026-00475 Уязвимость средства управления серверами Windows Admin Center, связанная с ошибками прове… 16.01.2026 16.01.2026
bdu:2026-00474 Уязвимость проводника Windows (Windows File Explorer) операционных систем Windows, позвол… 16.01.2026 16.01.2026
bdu:2026-00473 Уязвимость компонента Windows Kernel Memory операционных систем Windows, позволяющая нару… 16.01.2026 16.01.2026
bdu:2026-00472 Уязвимость функции smb2_lock() ядра операционной системы Linux, позволяющая нарушителю вы… 16.01.2026 16.01.2026
bdu:2026-00471 Уязвимость программного обеспечения для 3D-моделирования Adobe Substance 3D Modeler, связ… 16.01.2026 16.01.2026
bdu:2026-00470 Уязвимость программного обеспечения для 3D-моделирования Adobe Substance 3D Modeler, связ… 16.01.2026 16.01.2026
bdu:2026-00469 Уязвимость программного обеспечения для 3D-моделирования Adobe Substance 3D Modeler, связ… 16.01.2026 16.01.2026
bdu:2026-00468 Уязвимость программного обеспечения для 3D-моделирования Adobe Substance 3D Modeler, связ… 16.01.2026 16.01.2026
bdu:2026-00467 Уязвимость программного обеспечения для 3D-моделирования Adobe Substance 3D Modeler, связ… 16.01.2026 16.01.2026
bdu:2026-00466 Уязвимость программного обеспечения для 3D-моделирования Adobe Substance 3D Modeler, связ… 16.01.2026 16.01.2026
bdu:2026-00465 Уязвимость графического редактора Adobe Illustrator, связанная с ошибками разыменования у… 16.01.2026 16.01.2026
bdu:2026-00464 Уязвимость файлового менеджера Adobe Bridge, связанная с переполнением буфера в динамичес… 16.01.2026 16.01.2026
bdu:2026-00463 Уязвимость программы для создания и редактирования текстов Adobe InCopy, связанная с выхо… 16.01.2026 16.01.2026
bdu:2026-00462 Уязвимость графического редактора Adobe Illustrator, связанная с использованием ненадёжно… 16.01.2026 16.01.2026
bdu:2026-00461 Уязвимость компонента Downloads браузера Google Chrome, позволяющая нарушителю раскрыть з… 16.01.2026 16.01.2026
bdu:2026-00460 Уязвимость обработчика JavaScript-сценариев V8 браузера Google Chrome, позволяющая наруши… 16.01.2026 16.01.2026
bdu:2026-00459 Уязвимость библиотеки ANGLE браузера Google Chrome, позволяющая нарушителю вызвать отказ … 16.01.2026 16.01.2026
bdu:2026-00458 Уязвимость демона обработки потоков flowd операционных систем Juniper Networks Junos OS д… 16.01.2026 16.01.2026
bdu:2026-00457 Уязвимость модуля drivers/media/platform/samsung/s5p-mfc/s5p_mfc_ctrl.c ядра операционной… 16.01.2026 16.01.2026
bdu:2026-00456 Уязвимость функции createHook() модуля async_hooks программной платформы Node.js, позволя… 16.01.2026 16.01.2026
bdu:2026-00455 Уязвимость плагина CAD Image DLL, связанная с недостаточной защитой служебных данных при … 16.01.2026 16.01.2026
bdu:2026-00454 Уязвимость модуля drivers/fsi/fsi-occ.c ядра операционной системы Linux, позволяющая нару… 16.01.2026 16.01.2026
bdu:2026-00453 Уязвимость расширения EXT/STANDART языка программирования PHP, позволяющая нарушителю выз… 16.01.2026 16.01.2026
bdu:2026-00452 Уязвимость инструмента для создания диаграммных структур Structurizr, связанная с недоста… 16.01.2026 16.01.2026
bdu:2026-00451 Уязвимость системы макетов для печатной и цифровой продукции Scribus, связанная с недоста… 16.01.2026 16.01.2026
bdu:2026-00450 Уязвимость расширения EXT/STANDART языка программирования PHP, позволяющая нарушителю пол… 16.01.2026 16.01.2026
ID Description Updated
var-202004-0061 The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7… 2026-03-09T21:09:41.415000Z
var-201006-1210 WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4… 2026-03-09T21:09:40.847000Z
var-201203-0180 Google Chrome before 18.0.1025.142 does not properly handle SVG text elements, which allo… 2026-03-09T21:09:35.226000Z
var-201211-0367 Buffer overflow in Adobe Flash Player before 10.3.183.43 and 11.x before 11.5.502.110 on … 2026-03-09T21:09:34.476000Z
var-200512-0678 The Internet Key Exchange version 1 (IKEv1) implementations in Fortinet FortiOS 2.50, 2.8… 2026-03-09T21:08:13.620000Z
var-201410-1319 Integer overflow in bufferobject.c in Python before 2.7.8 allows context-dependent attack… 2026-03-09T21:08:10.318000Z
var-202108-2172 A use after free issue was addressed with improved memory management. This issue is fixed… 2026-03-09T21:08:08.682000Z
var-202203-0129 A cookie management issue was addressed with improved state management. This issue is fix… 2026-03-09T21:08:07.924000Z
var-201203-0195 Use-after-free vulnerability in Google Chrome before 17.0.963.65 allows remote attackers … 2026-03-09T21:07:53.222000Z
var-201905-0080 A flaw was discovered in wildfly versions up to 16.0.0.Final that would allow local users… 2026-03-09T21:07:47.202000Z
var-201506-0210 The do_free_upto function in crypto/cms/cms_smime.c in OpenSSL before 0.9.8zg, 1.0.0 befo… 2026-03-09T21:07:14.890000Z
var-201912-0615 An out-of-bounds read was addressed with improved input validation. This issue is fixed i… 2026-03-09T21:07:14.128000Z
var-200609-1716 Stack-based buffer overflow in the Apple Type Services (ATS) server in Mac OS 10.4.8 and … 2026-03-09T21:06:48.802000Z
var-201306-0225 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2026-03-09T21:06:47.875000Z
var-201504-0477 SQLite before 3.8.9 does not properly implement the dequoting of collation-sequence names… 2026-03-09T21:06:47.601000Z
var-201108-0130 The gif_read_lzw function in filter/image-gif.c in CUPS 1.4.8 and earlier does not proper… 2026-03-09T21:06:46.712000Z
var-201804-1185 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari be… 2026-03-09T21:06:43.557000Z
var-201006-1153 Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 throug… 2026-03-09T21:06:41.323000Z
var-201904-1360 A cookie management issue was addressed with improved checks. This issue affected version… 2026-03-09T21:06:24.275000Z
var-201112-0046 Google Chrome before 16.0.912.63 does not properly parse SVG documents, which allows remo… 2026-03-09T21:06:19.386000Z
var-200512-0749 The khtml::RenderTableSection::ensureRows function in KHTMLParser in Apple Mac OS X 10.4.… 2026-03-09T21:06:18.862000Z
var-201912-0584 A memory corruption issue was addressed with improved input validation. This issue is fix… 2026-03-09T21:05:25.926000Z
var-201404-0585 MultipartStream.java in Apache Commons FileUpload before 1.3.1, as used in Apache Tomcat,… 2026-03-09T21:05:21.141000Z
var-201201-0025 Use-after-free vulnerability in Google Chrome before 16.0.912.77 allows remote attackers … 2026-03-09T21:05:17.630000Z
var-200704-0219 The Login Window in Apple Mac OS X 10.4 through 10.4.9 displays the software update windo… 2026-03-09T21:05:14.110000Z
var-200906-0603 Apache Tomcat 4.1.0 through 4.1.39, 5.5.0 through 5.5.27, 6.0.0 through 6.0.18, and possi… 2026-03-09T21:03:11.345000Z
var-202006-1806 regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression… 2026-03-09T21:02:37.112000Z
var-201511-0037 The xmlParseConditionalSections function in parser.c in libxml2 does not properly skip in… 2026-03-09T21:02:20.356000Z
var-200609-1381 The Security Framework in Apple Mac OS X 10.3.9, and 10.4.x before 10.4.7, does not prope… 2026-03-09T21:01:45.447000Z
var-201702-0466 An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari be… 2026-03-09T21:01:11.719000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated