Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-14078 |
5.3 (3.1)
|
PAYGENT for WooCommerce <= 2.4.6 - Missing Authorizati… |
shoheitanaka |
PAYGENT for WooCommerce |
2026-01-17T08:24:31.760Z | 2026-01-20T19:23:14.231Z |
| CVE-2025-8615 |
6.4 (3.1)
|
CubeWP <= 1.1.26 - Authenticated (Contributor+) Stored… |
cubewp1211 |
CubeWP Framework |
2026-01-17T08:24:32.192Z | 2026-01-20T19:23:09.481Z |
| CVE-2025-23203 |
5.5 (3.1)
|
Icinga has rest API endpoints accessible to restricted users |
Icinga |
icingaweb2-module-director |
2025-03-26T13:44:58.110Z | 2026-01-20T19:13:43.844Z |
| CVE-2025-67263 |
6.1 (3.1)
|
Abacre Retail Point of Sale 14.0.0.396 is affecte… |
n/a |
n/a |
2026-01-20T00:00:00.000Z | 2026-01-20T18:53:28.009Z |
| CVE-2025-40679 |
5.1 (4.0)
|
HTML injection in Isshue from Bdtask |
Bdtask |
Isshue |
2026-01-20T11:53:39.846Z | 2026-01-20T18:50:40.146Z |
| CVE-2025-33233 |
7.8 (3.1)
|
NVIDIA Merlin Transformers4Rec for all platforms … |
NVIDIA |
Merlin Transformers4Rec |
2026-01-20T17:43:38.169Z | 2026-01-20T18:47:17.434Z |
| CVE-2025-45731 |
6.5 (3.1)
|
A group deletion race condition in 2FAuth v5.5.0 … |
n/a |
n/a |
2025-07-24T00:00:00.000Z | 2026-01-20T18:43:16.863Z |
| CVE-2026-22219 |
8.3 (4.0)
|
Chainlit < 2.9.4 SQLAlchemy Data Layer SSRF via /proje… |
Chainlit |
Chainlit |
2026-01-19T23:15:08.897Z | 2026-01-20T18:41:46.632Z |
| CVE-2026-0519 |
4.6 (4.0)
|
Information Disclosure in Secure Access Between 12.70 … |
Absolute Security |
Secure Access |
2026-01-17T01:13:59.183Z | 2026-01-20T18:39:13.845Z |
| CVE-2026-0518 |
4.8 (4.0)
|
XSS in Secure Access Consoles prior to 14.20 |
Absolute Security |
Secure Access |
2026-01-17T01:09:29.268Z | 2026-01-20T18:37:15.079Z |
| CVE-2026-22787 |
8.7 (4.0)
|
html2pdf.js has a cross-site scripting vulnerability |
eKoopmans |
html2pdf.js |
2026-01-14T16:52:38.372Z | 2026-01-20T18:37:09.279Z |
| CVE-2025-12825 |
5.3 (3.1)
|
User Registration Using Contact Form 7 <= 2.5 - Authen… |
zealopensource |
User Registration Using Contact Form 7 |
2026-01-17T04:34:02.212Z | 2026-01-20T18:34:56.055Z |
| CVE-2026-0517 |
6 (4.0)
|
Denial of Service in Secure Access Servers Prior to 14.20. |
Absolute Security |
Secure Access |
2026-01-17T01:04:55.634Z | 2026-01-20T18:34:14.258Z |
| CVE-2025-66019 |
6.6 (4.0)
|
pypdf manipulated LZWDecode streams can exhaust RAM |
py-pdf |
pypdf |
2025-11-25T23:38:12.473Z | 2026-01-20T18:33:02.928Z |
| CVE-2025-12168 |
4.3 (3.1)
|
Phrase TMS Integration for WordPress <= 4.7.5 - Missin… |
memsource |
Phrase TMS Integration for WordPress |
2026-01-17T04:34:01.207Z | 2026-01-20T18:32:40.697Z |
| CVE-2025-14029 |
5.3 (3.1)
|
Community Events <= 1.5.6 - Missing Authorization to U… |
jackdewey |
Community Events |
2026-01-17T04:34:00.530Z | 2026-01-20T18:31:08.439Z |
| CVE-2025-41025 |
5.1 (4.0)
|
Stored Cross-Site Scripting in Poultry Farm Management… |
Poultry Farm Management System |
Poultry Farm Management System |
2026-01-20T12:04:05.614Z | 2026-01-20T18:29:13.214Z |
| CVE-2026-0691 |
4.4 (3.1)
|
CM E-Mail Blacklist <= 1.6.2 - Authenticated (Administ… |
creativemindssolutions |
CM E-Mail Blacklist – Simple email filtering for safer registration |
2026-01-17T06:42:20.210Z | 2026-01-20T18:28:47.071Z |
| CVE-2026-0808 |
5.3 (3.1)
|
Spin Wheel <= 2.1.0 - Unauthenticated Client-Side Priz… |
bdthemes |
Spin Wheel – Interactive spinning wheel that offers coupons |
2026-01-17T06:42:20.697Z | 2026-01-20T18:27:18.935Z |
| CVE-2026-1222 |
8.6 (4.0)
7.2 (3.1)
|
BROWAN COMMUNICATIONS |PrismX MX100 AP controller - Ar… |
BROWAN COMMUNICATIONS |
PrismX MX100 AP controller |
2026-01-20T06:30:52.946Z | 2026-01-20T18:26:15.271Z |
| CVE-2026-1223 |
6.9 (4.0)
4.9 (3.1)
|
BROWAN COMMUNICATIONS |PrismX MX100 AP controller - In… |
BROWAN COMMUNICATIONS |
PrismX MX100 AP controller |
2026-01-20T06:35:17.742Z | 2026-01-20T18:24:10.328Z |
| CVE-2025-66523 |
6.1 (3.1)
|
Reflected Cross-Site Scripting (XSS) Vulnerability in … |
Foxit Software Inc. |
na1.foxitesign.foxit.com |
2026-01-20T06:51:34.771Z | 2026-01-20T18:08:07.692Z |
| CVE-2026-0895 |
5.2 (4.0)
|
Insecure Deserialization in extension "Mailqueue" (mai… |
TYPO3 |
Extension "Mailqueue" |
2026-01-20T07:19:00.786Z | 2026-01-20T18:07:10.983Z |
| CVE-2025-6035 |
6.1 (3.1)
|
Gimp: gimp integer overflow |
|
|
2025-06-13T15:21:17.439Z | 2026-01-20T17:56:26.216Z |
| CVE-2026-1183 |
5.1 (4.0)
|
HTML injection in multiple Botble products |
Botble |
TransP |
2026-01-20T12:09:05.269Z | 2026-01-20T17:51:26.528Z |
| CVE-2025-51602 |
4.8 (3.1)
|
mmstu.c in VideoLAN VLC media player before 3.0.2… |
VideoLAN |
VLC media player |
2026-01-16T00:00:00.000Z | 2026-01-20T17:35:37.090Z |
| CVE-2026-0625 |
9.3 (4.0)
|
D-Link DSL/DIR/DNS Command Injection via DNS Configura… |
D-Link |
DSL-2640B |
2026-01-05T21:14:48.992Z | 2026-01-20T17:34:41.776Z |
| CVE-2025-56154 |
6.1 (3.1)
|
htmly v3.0.8 is vulnerable to Cross Site Scriptin… |
n/a |
n/a |
2025-10-02T00:00:00.000Z | 2026-01-20T17:34:14.577Z |
| CVE-2026-23840 |
9.3 (3.1)
|
Movary vulnerable to Cross-site Scripting with `?categ… |
leepeuker |
movary |
2026-01-19T18:32:50.229Z | 2026-01-20T17:30:24.315Z |
| CVE-2026-22797 |
9.9 (3.1)
|
An issue was discovered in OpenStack keystonemidd… |
OpenStack |
keystonemiddleware |
2026-01-19T00:00:00.000Z | 2026-01-20T17:28:09.348Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-8491 |
N/A
|
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | N/A | N/A | 2026-01-16T22:19:08.586Z | |
| CVE-2025-15456 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
bg5sbk MiniCMS Publish page-edit.php improper authentication |
bg5sbk |
MiniCMS |
2026-01-05T04:02:06.770Z | 2026-02-23T08:16:46.676Z |
| CVE-2022-50443 |
N/A
|
drm/rockchip: lvds: fix PM usage counter unbalance in … |
Linux |
Linux |
2025-10-01T11:42:18.900Z | 2025-10-01T11:42:18.900Z |
| CVE-2023-53461 |
N/A
|
io_uring: wait interruptibly for request completions on exit |
Linux |
Linux |
2025-10-01T11:42:32.525Z | 2025-10-02T07:04:22.533Z |
| CVE-2023-53462 |
N/A
|
hsr: Fix uninit-value access in fill_frame_info() |
Linux |
Linux |
2025-10-01T11:42:33.434Z | 2025-10-01T11:42:33.434Z |
| CVE-2023-53463 |
N/A
|
ibmvnic: Do not reset dql stats on NON_FATAL err |
Linux |
Linux |
2025-10-01T11:42:34.308Z | 2025-10-01T11:42:34.308Z |
| CVE-2025-61246 |
9.8 (3.1)
|
indieka900 online-shopping-system-php 1.0 is vuln… |
n/a |
n/a |
2026-01-08T00:00:00.000Z | 2026-01-08T19:37:53.508Z |
| CVE-2023-53448 |
N/A
|
fbdev: imxfb: Removed unneeded release_mem_region |
Linux |
Linux |
2025-10-01T11:42:20.557Z | 2025-10-01T11:42:20.557Z |
| CVE-2025-67091 |
6.5 (3.1)
|
An issue in GL Inet GL.Inet AX1800 Version 4.6.4 … |
n/a |
n/a |
2026-01-08T00:00:00.000Z | 2026-01-08T16:10:44.603Z |
| CVE-2025-67090 |
5.1 (3.1)
|
The LuCI web interface on Gl Inet GL.Inet AX1800 … |
n/a |
n/a |
2026-01-08T00:00:00.000Z | 2026-01-08T16:51:52.244Z |
| CVE-2025-67089 |
8.1 (3.1)
|
A command injection vulnerability exists in the G… |
n/a |
n/a |
2026-01-08T00:00:00.000Z | 2026-01-08T16:52:24.897Z |
| CVE-2023-53449 |
N/A
|
s390/dasd: Fix potential memleak in dasd_eckd_init() |
Linux |
Linux |
2025-10-01T11:42:21.371Z | 2025-10-01T11:42:21.371Z |
| CVE-2023-53451 |
N/A
|
scsi: qla2xxx: Fix potential NULL pointer dereference |
Linux |
Linux |
2025-10-01T11:42:22.857Z | 2026-01-05T10:20:37.445Z |
| CVE-2023-53452 |
N/A
|
wifi: rtw89: fix potential race condition between napi… |
Linux |
Linux |
2025-10-01T11:42:23.831Z | 2025-10-01T11:42:23.831Z |
| CVE-2025-63916 |
8.1 (3.1)
|
MyScreenTools v2.2.1.0 contains a critical OS com… |
n/a |
n/a |
2025-11-17T00:00:00.000Z | 2025-11-17T19:00:52.724Z |
| CVE-2023-53453 |
N/A
|
drm/radeon: free iio for atombios when driver shutdown |
Linux |
Linux |
2025-10-01T11:42:24.649Z | 2026-01-05T10:20:43.775Z |
| CVE-2025-10543 |
6.3 (4.0)
|
In Eclipse Paho Go MQTT v3.1 library (paho.mqtt.g… |
Eclipse Foundation |
paho.mqtt.golang (Go MQTT v3.1 library) |
2025-12-02T08:18:16.724Z | 2025-12-02T13:55:51.665Z |
| CVE-2023-53454 |
N/A
|
HID: multitouch: Correct devm device reference for hid… |
Linux |
Linux |
2025-10-01T11:42:25.760Z | 2025-10-01T11:42:25.760Z |
| CVE-2023-53460 |
N/A
|
wifi: rtw88: fix memory leak in rtw_usb_probe() |
Linux |
Linux |
2025-10-01T11:42:31.620Z | 2025-10-02T07:04:21.343Z |
| CVE-2025-46603 |
7 (3.1)
|
Dell CloudBoost Virtual Appliance, versions 19.13… |
Dell |
CloudBoost Virtual Appliance |
2025-12-05T19:01:28.898Z | 2025-12-05T19:15:38.424Z |
| CVE-2025-34291 |
9.4 (4.0)
|
Langflow <= 1.6.9 CORS Misconfiguration to Token Hijac… |
Langflow |
Langflow |
2025-12-05T22:27:26.438Z | 2025-12-08T20:46:49.653Z |
| CVE-2023-53455 |
N/A
|
drm/vc4: drop all currently held locks if deadlock happens |
Linux |
Linux |
2025-10-01T11:42:26.791Z | 2025-10-01T11:42:26.791Z |
| CVE-2025-12941 |
5 (4.0)
|
Denial of Service Vulnerability in NETGEAR C6220 and C6230 |
NETGEAR |
C6220 |
2025-12-09T17:01:04.702Z | 2025-12-09T20:44:09.127Z |
| CVE-2023-53456 |
N/A
|
scsi: qla4xxx: Add length check when parsing nlattrs |
Linux |
Linux |
2025-10-01T11:42:27.821Z | 2025-10-01T11:42:27.821Z |
| CVE-2025-12945 |
1.1 (4.0)
|
Improper input validation in NETGEAR Nighthawk router R7000P |
NETGEAR |
R7000P |
2025-12-09T17:01:38.595Z | 2025-12-09T20:44:03.610Z |
| CVE-2025-8281 |
7.1 (3.1)
|
WP Talroo <= 2.4 - Reflected XSS |
Unknown |
WP Talroo |
2025-08-22T06:00:03.699Z | 2026-01-09T20:20:08.756Z |
| CVE-2023-53457 |
N/A
|
FS: JFS: Fix null-ptr-deref Read in txBegin |
Linux |
Linux |
2025-10-01T11:42:28.730Z | 2026-01-05T10:20:45.270Z |
| CVE-2023-53458 |
N/A
|
media: cx23885: Fix a null-ptr-deref bug in buffer_pre… |
Linux |
Linux |
2025-10-01T11:42:29.665Z | 2026-01-05T10:20:51.971Z |
| CVE-2025-61319 |
6.1 (3.1)
|
ReNgine thru 2.2.0 is vulnerable to a Stored Cros… |
n/a |
n/a |
2025-10-10T00:00:00.000Z | 2025-10-10T14:23:44.425Z |
| CVE-2023-53459 |
N/A
|
HID: mcp-2221: prevent UAF in delayed work |
Linux |
Linux |
2025-10-01T11:42:30.648Z | 2025-10-01T11:42:30.648Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-12941 | Denial of Service Vulnerability in NETGEAR C6220 and C6230 (DOCSIS® 3.0 Two-in-one Cable Modem + Wi… | 2025-12-09T17:15:48.453 | 2026-01-16T21:13:16.813 |
| fkie_cve-2023-53456 | In the Linux kernel, the following vulnerability has been resolved: scsi: qla4xxx: Add length chec… | 2025-10-01T12:15:45.983 | 2026-01-16T21:09:17.963 |
| fkie_cve-2025-12945 | A vulnerability in NETGEAR Nighthawk R7000P routers lets an authenticated admin execute OS command … | 2025-12-09T17:15:48.647 | 2026-01-16T21:07:14.730 |
| fkie_cve-2025-8281 | The WP Talroo WordPress plugin through 2.4 does not sanitise and escape a parameter before outputti… | 2025-08-22T06:15:33.563 | 2026-01-16T21:05:35.663 |
| fkie_cve-2023-53457 | In the Linux kernel, the following vulnerability has been resolved: FS: JFS: Fix null-ptr-deref Re… | 2025-10-01T12:15:47.007 | 2026-01-16T20:59:21.080 |
| fkie_cve-2023-53458 | In the Linux kernel, the following vulnerability has been resolved: media: cx23885: Fix a null-ptr… | 2025-10-01T12:15:47.300 | 2026-01-16T20:58:04.740 |
| fkie_cve-2025-61319 | ReNgine thru 2.2.0 is vulnerable to a Stored Cross-Site Scripting (XSS) vulnerability in the Vulner… | 2025-10-10T14:15:43.500 | 2026-01-16T20:57:05.080 |
| fkie_cve-2023-53459 | In the Linux kernel, the following vulnerability has been resolved: HID: mcp-2221: prevent UAF in … | 2025-10-01T12:15:47.443 | 2026-01-16T20:56:36.920 |
| fkie_cve-2025-11579 | github.com/nwaples/rardecode versions <=2.1.1 fail to restrict the dictionary size when reading lar… | 2025-10-10T12:15:37.743 | 2026-01-16T20:56:26.367 |
| fkie_cve-2023-53499 | In the Linux kernel, the following vulnerability has been resolved: virtio_net: Fix error unwindin… | 2025-10-01T12:15:53.350 | 2026-01-16T20:51:31.697 |
| fkie_cve-2023-53498 | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix potential… | 2025-10-01T12:15:53.223 | 2026-01-16T20:49:57.350 |
| fkie_cve-2023-53497 | In the Linux kernel, the following vulnerability has been resolved: media: vsp1: Replace vb2_is_st… | 2025-10-01T12:15:53.090 | 2026-01-16T20:47:28.777 |
| fkie_cve-2023-53496 | In the Linux kernel, the following vulnerability has been resolved: x86/platform/uv: Use alternate… | 2025-10-01T12:15:52.950 | 2026-01-16T20:47:00.540 |
| fkie_cve-2023-53495 | In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mvpp2_main: fix… | 2025-10-01T12:15:52.803 | 2026-01-16T20:46:37.340 |
| fkie_cve-2023-53494 | In the Linux kernel, the following vulnerability has been resolved: crypto: xts - Handle EBUSY cor… | 2025-10-01T12:15:52.673 | 2026-01-16T20:45:58.230 |
| fkie_cve-2023-53493 | In the Linux kernel, the following vulnerability has been resolved: accel/qaic: tighten bounds che… | 2025-10-01T12:15:52.540 | 2026-01-16T20:45:18.710 |
| fkie_cve-2023-53492 | In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: do not i… | 2025-10-01T12:15:52.390 | 2026-01-16T20:42:40.380 |
| fkie_cve-2023-53490 | In the Linux kernel, the following vulnerability has been resolved: mptcp: fix disconnect vs accep… | 2025-10-01T12:15:52.107 | 2026-01-16T20:40:48.793 |
| fkie_cve-2025-39823 | In the Linux kernel, the following vulnerability has been resolved: KVM: x86: use array_index_nosp… | 2025-09-16T13:16:00.397 | 2026-01-16T20:38:07.723 |
| fkie_cve-2025-39824 | In the Linux kernel, the following vulnerability has been resolved: HID: asus: fix UAF via HID_CLA… | 2025-09-16T13:16:01.050 | 2026-01-16T20:37:49.810 |
| fkie_cve-2025-39825 | In the Linux kernel, the following vulnerability has been resolved: smb: client: fix race with con… | 2025-09-16T13:16:01.780 | 2026-01-16T20:37:11.190 |
| fkie_cve-2025-39826 | In the Linux kernel, the following vulnerability has been resolved: net: rose: convert 'use' field… | 2025-09-16T13:16:02.290 | 2026-01-16T20:36:13.207 |
| fkie_cve-2025-39827 | In the Linux kernel, the following vulnerability has been resolved: net: rose: include node refere… | 2025-09-16T13:16:02.873 | 2026-01-16T20:35:06.037 |
| fkie_cve-2025-11965 | In Eclipse Vert.x versions [4.0.0, 4.5.21] and [5.0.0, 5.0.4], a StaticHandler configuration for re… | 2025-10-22T15:15:31.590 | 2026-01-16T20:34:16.370 |
| fkie_cve-2025-39828 | In the Linux kernel, the following vulnerability has been resolved: atm: atmtcp: Prevent arbitrary… | 2025-09-16T13:16:03.373 | 2026-01-16T20:32:37.030 |
| fkie_cve-2025-39835 | In the Linux kernel, the following vulnerability has been resolved: xfs: do not propagate ENODATA … | 2025-09-16T14:15:51.850 | 2026-01-16T20:30:16.260 |
| fkie_cve-2025-40300 | In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional I… | 2025-09-11T17:15:45.680 | 2026-01-16T20:25:45.940 |
| fkie_cve-2025-39790 | In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Detect events … | 2025-09-11T17:15:45.360 | 2026-01-16T20:25:39.967 |
| fkie_cve-2025-39788 | In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: exynos: Fix program… | 2025-09-11T17:15:45.070 | 2026-01-16T20:25:34.853 |
| fkie_cve-2025-39787 | In the Linux kernel, the following vulnerability has been resolved: soc: qcom: mdt_loader: Ensure … | 2025-09-11T17:15:44.907 | 2026-01-16T20:25:29.447 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-5723-g3wg-9xq3 |
|
Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it… | 2026-01-01T03:30:25Z | 2026-01-01T03:30:25Z |
| ghsa-q5rr-6j45-r8gx |
3.4 (3.1)
|
KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsin… | 2026-01-01T00:31:26Z | 2026-01-01T00:31:26Z |
| ghsa-mvxv-qjhv-59fg |
5.6 (3.1)
|
ArcGIS Server version 11.5 and earlier on Windows and Linux does not properly validate uploaded fil… | 2026-01-01T00:31:26Z | 2026-01-01T00:31:26Z |
| ghsa-hvcp-4wf3-wrc5 |
6.1 (3.1)
|
There is a stored cross site scripting issue in Esri ArcGIS Server 11.4 and earlier on Windows and … | 2026-01-01T00:31:26Z | 2026-01-01T00:31:26Z |
| ghsa-gffq-5p7q-h2w7 |
6.1 (3.1)
|
There is a stored cross site scripting issue in Esri ArcGIS Server 11.4 and earlier on Windows and … | 2026-01-01T00:31:25Z | 2026-01-01T00:31:26Z |
| ghsa-65q9-988v-j5v5 |
6.1 (3.1)
|
There is a stored cross site scripting issue in Esri ArcGIS Server 11.4 and earlier on Windows and … | 2026-01-01T00:31:26Z | 2026-01-01T00:31:26Z |
| ghsa-5w35-rjp9-mmr7 |
5.6 (3.1)
|
ArcGIS Server version 11.5 and earlier on Windows and Linux does not properly validate uploaded fil… | 2026-01-01T00:31:26Z | 2026-01-01T00:31:26Z |
| ghsa-4762-x793-4ghq |
6.1 (3.1)
|
There is a stored cross site scripting issue in Esri ArcGIS Server 11.4 and earlier on Windows and … | 2026-01-01T00:31:26Z | 2026-01-01T00:31:26Z |
| ghsa-3x4j-ww9c-3p4w |
6.1 (3.1)
|
There is a stored cross site scripting issue in Esri ArcGIS Server 11.4 and earlier on Windows and … | 2026-01-01T00:31:26Z | 2026-01-01T00:31:26Z |
| ghsa-j2rj-pxc8-245c |
6.1 (3.1)
|
There is a stored cross site scripting issue in Esri ArcGIS Server 11.4 and earlier on Windows and … | 2026-01-01T00:31:25Z | 2026-01-01T00:31:25Z |
| ghsa-h4qv-4942-vw79 |
6.1 (3.1)
|
There is a stored cross site scripting issue in Esri ArcGIS Server 11.4 and earlier on Windows and … | 2026-01-01T00:31:25Z | 2026-01-01T00:31:25Z |
| ghsa-739h-rw2p-gghv |
3.7 (3.1)
2.9 (4.0)
|
A security vulnerability has been detected in Uasoft badaso up to 2.9.7. Affected is the function f… | 2026-01-01T00:31:25Z | 2026-01-01T00:31:25Z |
| ghsa-mpj7-7xpf-5v66 |
3.7 (3.1)
|
Missing Authorization vulnerability in Quiz Maker team Quiz Maker.This issue affects Quiz Maker: fr… | 2024-04-24T12:30:42Z | 2026-01-01T00:31:23Z |
| ghsa-j47q-rc62-w448 |
6.9 (4.0)
|
fastapi-guard is vulnerable to ReDoS through inefficient regex | 2025-07-07T23:36:39Z | 2025-12-31T22:50:34Z |
| ghsa-fff3-4rp7-px97 |
3.3 (3.1)
1.1 (4.0)
|
ImageMagick has a heap-buffer-overflow | 2025-08-25T15:54:51Z | 2025-12-31T22:18:05Z |
| ghsa-59pp-r3rg-353g |
1.2 (4.0)
|
Composer is vulnerable to ANSI sequence injection | 2025-12-30T17:44:10Z | 2025-12-31T22:17:32Z |
| ghsa-jv8r-hv7q-p6vc |
5.4 (3.1)
|
phpMyFAQ has Stored XSS in user list via admin-managed display_name | 2025-12-29T22:12:35Z | 2025-12-31T22:13:13Z |
| ghsa-p2gr-hm8g-q772 |
1.3 (4.0)
|
Temporal has a namespace policy bypass allowing requests to be authorized for incorrect contexts | 2025-12-30T21:30:33Z | 2025-12-31T22:08:24Z |
| ghsa-rwc2-f344-q6w6 |
7.5 (3.1)
|
serverless MCP Server vulnerable to Command Injection in list-projects tool | 2025-12-31T22:05:32Z | 2025-12-31T22:05:32Z |
| ghsa-fjmr-7667-8v4p |
5.4 (3.1)
|
Visual Studio Code Go extension has unexpected untrusted code execution | 2025-12-30T00:32:59Z | 2025-12-31T22:05:05Z |
| ghsa-g3ch-rx76-35fx |
4.2 (3.1)
|
vue-template-compiler vulnerable to client-side Cross-Site Scripting (XSS) | 2024-07-23T15:31:09Z | 2025-12-31T22:04:13Z |
| ghsa-xx83-cxmq-x89m |
5.9 (3.1)
|
Boundary Community Edition Incorrectly Handles HTTP Requests On Initialization Which May Lead to a … | 2024-12-13T00:30:50Z | 2025-12-31T22:00:42Z |
| ghsa-423w-p2w9-r7vq |
4.7 (3.1)
|
AEADs/aes-gcm: Plaintext exposed in decrypt_in_place_detached even on tag verification failure | 2023-09-22T16:11:47Z | 2025-12-31T22:00:24Z |
| ghsa-vqf4-7m7x-wgfc |
8.8 (4.0)
|
LZ4 Java Compression has Out-of-bounds memory operations which can cause DoS | 2025-11-28T18:30:23Z | 2025-12-31T22:00:12Z |
| ghsa-8vxj-4cph-c596 |
9.1 (3.1)
5.5 (4.0)
|
Deno has --allow-read / --allow-write permission bypass in `node:sqlite` | 2025-06-04T21:22:27Z | 2025-12-31T21:58:17Z |
| ghsa-h87r-f4vc-mchv |
7.5 (3.1)
|
PocketMine-MP vulnerable to improperly checked dropped item count leading to server crash | 2023-06-06T01:51:09Z | 2025-12-31T21:42:11Z |
| ghsa-q49x-mf7w-873r |
4.7 (3.1)
5.1 (4.0)
|
A vulnerability was detected in PKrystian Full-Stack-Bank up to bf73a0179e3ff07c0d7dc35297cea0be0e5… | 2025-12-31T21:30:59Z | 2025-12-31T21:30:59Z |
| ghsa-x9rg-7xj6-v2x6 |
7.5 (3.1)
6.9 (4.0)
|
KZTech JT3500V 4G LTE CPE 2.0.1 contains a session management vulnerability that allows attackers t… | 2025-12-31T21:30:57Z | 2025-12-31T21:30:57Z |
| ghsa-x8v6-6vmg-p732 |
5.4 (3.1)
4.8 (4.0)
|
STVS ProVision 5.9.10 contains a cross-site scripting vulnerability in the 'files' POST parameter t… | 2025-12-31T21:30:57Z | 2025-12-31T21:30:57Z |
| ghsa-x357-46c7-h4hf |
6.1 (3.1)
5.1 (4.0)
|
COMMAX Biometric Access Control System 1.0.0 contains an unauthenticated reflected cross-site scrip… | 2025-12-31T21:30:57Z | 2025-12-31T21:30:57Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-25335 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-08T06:02:24.991362Z |
| gsd-2024-25562 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-08T06:02:24.990251Z |
| gsd-2024-25414 | An arbitrary file upload vulnerability in /admin/upgrade of CSZ CMS v1.3.0 allows attacke… | 2024-02-08T06:02:24.989387Z |
| gsd-2024-25523 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-08T06:02:24.988412Z |
| gsd-2024-25318 | Code-projects Hotel Managment System 1.0 allows SQL Injection via the 'pid' parameter in … | 2024-02-08T06:02:24.988079Z |
| gsd-2024-25342 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-08T06:02:24.987721Z |
| gsd-2024-25436 | A cross-site scripting (XSS) vulnerability in the Production module of Pkp Ojs v3.3 allow… | 2024-02-08T06:02:24.987346Z |
| gsd-2024-25449 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-08T06:02:24.986983Z |
| gsd-2024-25521 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-08T06:02:24.986599Z |
| gsd-2024-25388 | drivers/wlan/wlan_mgmt,c in RT-Thread through 5.0.2 has an integer signedness error and r… | 2024-02-08T06:02:24.986298Z |
| gsd-2024-25228 | Vinchin Backup and Recovery 7.2 and Earlier is vulnerable to Authenticated Remote Code Ex… | 2024-02-08T06:02:24.985936Z |
| gsd-2024-25381 | There is a Stored XSS Vulnerability in Emlog Pro 2.2.8 Article Publishing, due to non-fil… | 2024-02-08T06:02:24.985616Z |
| gsd-2024-25250 | SQL Injection vulnerability in code-projects Agro-School Management System 1.0 allows att… | 2024-02-08T06:02:24.985243Z |
| gsd-2024-25243 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-08T06:02:24.984934Z |
| gsd-2024-25263 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-08T06:02:24.984632Z |
| gsd-2024-25470 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-08T06:02:24.984313Z |
| gsd-2024-25484 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-08T06:02:24.983993Z |
| gsd-2024-25506 | Cross Site Scripting vulnerability in Process Maker, Inc ProcessMaker before 4.0 allows a… | 2024-02-08T06:02:24.983651Z |
| gsd-2024-25340 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-08T06:02:24.983239Z |
| gsd-2024-25280 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-08T06:02:24.982870Z |
| gsd-2024-25258 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-08T06:02:24.982443Z |
| gsd-2024-25332 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-08T06:02:24.982137Z |
| gsd-2024-25476 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-08T06:02:24.981819Z |
| gsd-2024-25256 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-08T06:02:24.981482Z |
| gsd-2024-25321 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-08T06:02:24.981036Z |
| gsd-2024-25354 | RegEx Denial of Service in domain-suffix 1.0.8 allows attackers to crash the application … | 2024-02-08T06:02:24.980690Z |
| gsd-2024-25406 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-08T06:02:24.980288Z |
| gsd-2024-25251 | code-projects Agro-School Management System 1.0 is suffers from Incorrect Access Control. | 2024-02-08T06:02:24.979898Z |
| gsd-2024-25559 | URL spoofing vulnerability exists in a-blog cms Ver.3.1.0 to Ver.3.1.8. If an attacker se… | 2024-02-08T06:02:24.979515Z |
| gsd-2024-25430 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-08T06:02:24.978962Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-183415 | Malicious code in lobac-ubb-avigagu (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183414 | Malicious code in lobac-ubb-au (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183413 | Malicious code in lobac-ubb-anu (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183412 | Malicious code in lobac-ubb-afyganu (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183411 | Malicious code in lobac-ubb-afyanu (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183410 | Malicious code in lobac-ubb-afnu (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183409 | Malicious code in lobac-ubb-afayoruaganu (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183408 | Malicious code in lobac-ubb-afayorgugu (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183407 | Malicious code in lobac-ubb-afayorguagu (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183406 | Malicious code in lobac-ubb-afayorguagau (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183405 | Malicious code in lobac-ubb-afayorguaganu (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183404 | Malicious code in lobac-ubb-afayorgu (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183403 | Malicious code in lobac-ubb-afayorganu (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183402 | Malicious code in lobac-ubb-afayorg (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183401 | Malicious code in lobac-ubb-afayor (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183400 | Malicious code in lobac-ubb-afayoganu (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183399 | Malicious code in lobac-ubb-afayo (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183398 | Malicious code in lobac-ubb-afay (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183397 | Malicious code in lobac-ubb-afa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183396 | Malicious code in lobac-ubb-aa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183395 | Malicious code in lobac-ubb-a (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183394 | Malicious code in lobac-ub-jma (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183393 | Malicious code in lobac-ub-jm (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183392 | Malicious code in lobac-ub-jfyuma (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183391 | Malicious code in lobac-ub-jfuma (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183390 | Malicious code in lobac-ub-jfggafuayuma (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183389 | Malicious code in lobac-ub-jfggafayuma (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183388 | Malicious code in lobac-ub-jfgayuma (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183387 | Malicious code in lobac-ub-jfgaayuma (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183386 | Malicious code in lobac-ub-jf (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2023:4432 | Red Hat Security Advisory: iperf3 security update | 2023-08-02T13:34:27+00:00 | 2025-11-21T18:42:59+00:00 |
| rhsa-2023:4431 | Red Hat Security Advisory: iperf3 security update | 2023-08-02T13:30:37+00:00 | 2025-11-21T18:42:59+00:00 |
| rhsa-2023:4429 | Red Hat Security Advisory: mod_auth_openidc:2.3 security update | 2023-08-02T08:00:03+00:00 | 2025-11-21T18:42:58+00:00 |
| rhsa-2023:4428 | Red Hat Security Advisory: openssh security update | 2023-08-02T08:00:40+00:00 | 2025-11-21T18:42:58+00:00 |
| rhsa-2023:4417 | Red Hat Security Advisory: cjose security update | 2023-08-01T14:18:07+00:00 | 2025-11-21T18:42:58+00:00 |
| rhsa-2023:4419 | Red Hat Security Advisory: openssh security update | 2023-08-01T14:40:23+00:00 | 2025-11-21T18:42:56+00:00 |
| rhsa-2023:4418 | Red Hat Security Advisory: mod_auth_openidc:2.3 security update | 2023-08-01T14:30:24+00:00 | 2025-11-21T18:42:56+00:00 |
| rhsa-2023:4416 | Red Hat Security Advisory: iperf3 security update | 2023-08-01T14:14:06+00:00 | 2025-11-21T18:42:55+00:00 |
| rhsa-2023:4415 | Red Hat Security Advisory: iperf3 security update | 2023-08-01T14:14:58+00:00 | 2025-11-21T18:42:54+00:00 |
| rhsa-2023:4414 | Red Hat Security Advisory: iperf3 security update | 2023-08-01T14:15:42+00:00 | 2025-11-21T18:42:54+00:00 |
| rhsa-2023:4413 | Red Hat Security Advisory: openssh security update | 2023-08-01T14:19:11+00:00 | 2025-11-21T18:42:54+00:00 |
| rhsa-2023:4412 | Red Hat Security Advisory: openssh security update | 2023-08-01T14:08:38+00:00 | 2025-11-21T18:42:52+00:00 |
| rhsa-2023:4411 | Red Hat Security Advisory: cjose security update | 2023-08-01T13:54:16+00:00 | 2025-11-21T18:42:52+00:00 |
| rhsa-2023:4410 | Red Hat Security Advisory: mod_auth_openidc:2.3 security update | 2023-08-01T13:45:43+00:00 | 2025-11-21T18:42:51+00:00 |
| rhsa-2023:4409 | Red Hat Security Advisory: mod_auth_openidc:2.3 security update | 2023-08-01T13:47:10+00:00 | 2025-11-21T18:42:51+00:00 |
| rhsa-2023:4408 | Red Hat Security Advisory: mod_auth_openidc:2.3 security update | 2023-08-01T13:39:20+00:00 | 2025-11-21T18:42:50+00:00 |
| rhsa-2023:4384 | Red Hat Security Advisory: openssh security update | 2023-08-01T09:36:23+00:00 | 2025-11-21T18:42:50+00:00 |
| rhsa-2023:4383 | Red Hat Security Advisory: openssh security update | 2023-08-01T09:30:33+00:00 | 2025-11-21T18:42:49+00:00 |
| rhsa-2023:4382 | Red Hat Security Advisory: openssh security update | 2023-08-01T09:42:38+00:00 | 2025-11-21T18:42:49+00:00 |
| rhsa-2023:4381 | Red Hat Security Advisory: openssh security update | 2023-08-01T09:23:00+00:00 | 2025-11-21T18:42:48+00:00 |
| rhsa-2023:4380 | Red Hat Security Advisory: kpatch-patch security update | 2023-08-01T09:16:53+00:00 | 2025-11-21T18:42:47+00:00 |
| rhsa-2023:4378 | Red Hat Security Advisory: kernel-rt security and bug fix update | 2023-08-01T09:08:49+00:00 | 2025-11-21T18:42:46+00:00 |
| rhsa-2023:4377 | Red Hat Security Advisory: kernel security, bug fix, and enhancement update | 2023-08-01T09:24:51+00:00 | 2025-11-21T18:42:46+00:00 |
| rhsa-2023:4350 | Red Hat Security Advisory: python-requests security update | 2023-08-01T08:55:20+00:00 | 2025-11-21T18:42:46+00:00 |
| rhsa-2023:4349 | Red Hat Security Advisory: libxml2 security update | 2023-08-01T08:55:32+00:00 | 2025-11-21T18:42:44+00:00 |
| rhsa-2023:4347 | Red Hat Security Advisory: libeconf security update | 2023-08-01T08:55:05+00:00 | 2025-11-21T18:42:44+00:00 |
| rhsa-2023:4340 | Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update | 2023-07-31T18:19:32+00:00 | 2025-11-21T18:42:44+00:00 |
| rhsa-2023:4332 | Red Hat Security Advisory: bind security update | 2023-07-31T09:39:38+00:00 | 2025-11-21T18:42:42+00:00 |
| rhsa-2023:4331 | Red Hat Security Advisory: nodejs security, bug fix, and enhancement update | 2023-07-31T09:36:57+00:00 | 2025-11-21T18:42:42+00:00 |
| rhsa-2023:4330 | Red Hat Security Advisory: nodejs:18 security, bug fix, and enhancement update | 2023-07-31T09:37:11+00:00 | 2025-11-21T18:42:41+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2020-14866 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-11-02T00:00:00.000Z |
| msrc_cve-2020-14861 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-11-02T00:00:00.000Z |
| msrc_cve-2020-14860 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 2.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N). | 2020-10-02T00:00:00.000Z | 2020-11-02T00:00:00.000Z |
| msrc_cve-2020-14893 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14891 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14878 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: LDAP Auth). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with access to the physical communication segment attached to the hardware where the MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS 3.1 Base Score 8.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14873 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Logging). Supported versions that are affected are 8.0.21 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14870 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: X Plugin). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14869 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: LDAP Auth). Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14852 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Charsets). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14848 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14845 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14839 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14838 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14837 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14836 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14830 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14829 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14828 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS 3.1 Base Score 7.2 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14814 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14812 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Locking). Supported versions that are affected are 5.6.49 and prior 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14809 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14804 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: FTS). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14800 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14794 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14793 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.49 and prior 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14791 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.21 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Server. CVSS 3.1 Base Score 2.2 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14790 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: PS). Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14785 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| msrc_cve-2020-14777 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-10-02T00:00:00.000Z | 2020-10-27T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201609-0235 | WebKit in Apple iOS before 10, Safari before 10, and tvOS before 10 allows remote attacke… | 2025-04-13T22:59:52.743000Z |
| var-201603-0206 | The History implementation in WebKit in Apple iOS before 9.3, Safari before 9.1, and tvOS… | 2025-04-13T22:59:17.457000Z |
| var-201607-0360 | WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remot… | 2025-04-13T22:59:16.460000Z |
| var-201510-0182 | The NVIDIA driver in the Graphics Drivers subsystem in Apple OS X before 10.11.1 allows l… | 2025-04-13T22:59:16.119000Z |
| var-201609-0237 | WebKit in Apple iOS before 10, Safari before 10, tvOS before 10, and watchOS before 3 all… | 2025-04-13T22:59:13.054000Z |
| var-201509-0110 | WebKit, as used in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to … | 2025-04-13T22:58:42.039000Z |
| var-201512-0135 | IOAcceleratorFamily in Apple OS X before 10.11.2 and tvOS before 9.1 allows attackers to … | 2025-04-13T22:58:40.508000Z |
| var-201503-0094 | WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, all… | 2025-04-13T22:58:40.058000Z |
| var-201510-0090 | IOGraphics in Apple OS X before 10.11 allows attackers to obtain sensitive kernel memory-… | 2025-04-13T22:58:39.853000Z |
| var-201503-0075 | MobileStorageMounter in Apple iOS before 8.2 and Apple TV before 7.1 does not delete inva… | 2025-04-13T22:58:39.439000Z |
| var-201512-0521 | Off-by-one error in the phar_parse_zipfile function in ext/phar/zip.c in PHP before 5.5.3… | 2025-04-13T22:58:38.040000Z |
| var-201506-0088 | Integer overflow in Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.… | 2025-04-13T22:58:35.134000Z |
| var-201411-0491 | CFNetwork in Apple iOS before 8.1.1 and OS X before 10.10.1 does not properly clear the b… | 2025-04-13T22:58:09.500000Z |
| var-201609-0261 | AppleEFIRuntime in Apple OS X before 10.12 allows attackers to execute arbitrary code in … | 2025-04-13T22:57:00.478000Z |
| var-201605-0473 | OpenGL, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and wa… | 2025-04-13T22:56:45.769000Z |
| var-201407-0098 | Intel Compute in Apple OS X before 10.9.4 does not properly restrict an unspecified OpenC… | 2025-04-13T22:56:43.256000Z |
| var-201602-0210 | WebKit, as used in Apple iOS before 9.2.1 and Safari before 9.0.3, allows remote attacker… | 2025-04-13T22:56:41.059000Z |
| var-201410-0825 | Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlie… | 2025-04-13T22:56:10.712000Z |
| var-201601-0146 | libxml2 in Apple iOS before 9.2, OS X before 10.11.2, and tvOS before 9.1 allows remote a… | 2025-04-13T22:56:10.671000Z |
| var-201512-0132 | The Intel Graphics Driver component in Apple OS X before 10.11.2 allows local users to ga… | 2025-04-13T22:56:00.816000Z |
| var-201508-0052 | IOGraphics in Apple OS X before 10.10.5 allows attackers to execute arbitrary code or cau… | 2025-04-13T22:55:29.053000Z |
| var-201508-0038 | AppleGraphicsControl in Apple OS X before 10.10.5 allows attackers to obtain sensitive ke… | 2025-04-13T22:55:26Z |
| var-201504-0135 | AppleKeyStore in Apple iOS before 8.3 does not properly restrict a certain passcode-confi… | 2025-04-13T22:55:25.473000Z |
| var-201510-0415 | libxpc in launchd in Apple OS X before 10.11 does not restrict the creation of processes … | 2025-04-13T22:55:24.643000Z |
| var-201603-0294 | Cisco IOS 15.3 and 15.4, Cisco IOS XE 3.8 through 3.11, and Cisco Unified Communications … | 2025-04-13T22:55:23.488000Z |
| var-201408-0068 | WebKit, as used in Apple Safari before 6.1.6 and 7.x before 7.0.6, allows remote attacker… | 2025-04-13T22:55:23.026000Z |
| var-201403-0463 | Cisco IOS 15.1 through 15.3 and IOS XE 3.3 and 3.5 before 3.5.2E; 3.7 before 3.7.5S; and … | 2025-04-13T22:55:18.316000Z |
| var-201508-0061 | Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 on Windows and OS X … | 2025-04-13T22:54:45.056000Z |
| var-201510-0074 | The Address Book framework in Apple OS X before 10.11 allows local users to gain privileg… | 2025-04-13T22:54:42.239000Z |
| var-201412-0434 | Multiple buffer overflows in AllegroSoft RomPager, as used in Huawei Home Gateway product… | 2025-04-13T22:54:41.693000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2020:2481-1 | Security update for xorg-x11-server | 2020-09-03T13:19:06Z | 2020-09-03T13:19:06Z |
| suse-su-2020:2478-1 | Security update for the Linux Kernel | 2020-09-03T10:12:56Z | 2020-09-03T10:12:56Z |
| suse-su-2020:2477-1 | Security update for php5 | 2020-09-03T10:12:35Z | 2020-09-03T10:12:35Z |
| suse-su-2020:14484-1 | Security update for java-1_7_1-ibm | 2020-09-03T10:11:45Z | 2020-09-03T10:11:45Z |
| suse-su-2020:2475-1 | Security update for libX11 | 2020-09-03T10:11:08Z | 2020-09-03T10:11:08Z |
| suse-su-2020:2474-1 | Security update for libX11 | 2020-09-03T10:10:40Z | 2020-09-03T10:10:40Z |
| suse-su-2020:2471-1 | Security update for squid | 2020-09-03T07:03:15Z | 2020-09-03T07:03:15Z |
| suse-su-2020:2461-1 | Security update for java-1_8_0-ibm | 2020-09-02T15:13:35Z | 2020-09-02T15:13:35Z |
| suse-su-2020:14482-1 | Security update for java-1_7_0-ibm | 2020-09-02T15:11:40Z | 2020-09-02T15:11:40Z |
| suse-su-2020:2456-1 | Security update for php7 | 2020-09-02T12:02:08Z | 2020-09-02T12:02:08Z |
| suse-su-2020:2455-1 | Security update for php7 | 2020-09-02T12:01:13Z | 2020-09-02T12:01:13Z |
| suse-su-2020:14481-1 | Security update for curl | 2020-09-02T12:00:19Z | 2020-09-02T12:00:19Z |
| suse-su-2020:2453-1 | Security update for java-1_8_0-ibm | 2020-09-02T11:59:43Z | 2020-09-02T11:59:43Z |
| suse-su-2020:2452-1 | Security update for xorg-x11-server | 2020-09-02T11:58:35Z | 2020-09-02T11:58:35Z |
| suse-su-2020:2450-1 | Security update for apache2 | 2020-09-02T09:48:12Z | 2020-09-02T09:48:12Z |
| suse-su-2020:2446-1 | Security update for curl | 2020-09-02T07:33:26Z | 2020-09-02T07:33:26Z |
| suse-su-2020:2445-1 | Security update for curl | 2020-09-02T07:33:06Z | 2020-09-02T07:33:06Z |
| suse-su-2020:2444-1 | Security update for curl | 2020-09-02T07:32:50Z | 2020-09-02T07:32:50Z |
| suse-su-2020:2443-1 | Security update for squid | 2020-09-02T07:32:30Z | 2020-09-02T07:32:30Z |
| suse-su-2020:2442-1 | Security update for squid | 2020-09-02T07:32:18Z | 2020-09-02T07:32:18Z |
| suse-su-2020:2409-1 | Security update for freerdp | 2020-09-01T09:47:20Z | 2020-09-01T09:47:20Z |
| suse-su-2020:2408-1 | Security update for freerdp | 2020-09-01T09:47:08Z | 2020-09-01T09:47:08Z |
| suse-su-2020:2407-1 | Security update for xorg-x11-server | 2020-09-01T09:05:38Z | 2020-09-01T09:05:38Z |
| suse-su-2020:2405-1 | Security update for php72 | 2020-09-01T08:04:50Z | 2020-09-01T08:04:50Z |
| suse-su-2020:2404-1 | Security update for php74 | 2020-09-01T08:04:27Z | 2020-09-01T08:04:27Z |
| suse-su-2020:2403-1 | Security update for php7 | 2020-09-01T08:04:05Z | 2020-09-01T08:04:05Z |
| suse-su-2020:2401-1 | Security update for xorg-x11-server | 2020-09-01T06:23:49Z | 2020-09-01T06:23:49Z |
| suse-su-2020:2399-1 | Security update for xorg-x11-server | 2020-09-01T06:22:40Z | 2020-09-01T06:22:40Z |
| suse-su-2020:2398-1 | Security update for xorg-x11-server | 2020-09-01T06:22:16Z | 2020-09-01T06:22:16Z |
| suse-su-2020:14475-1 | Security update for xorg-x11-server | 2020-09-01T06:21:53Z | 2020-09-01T06:21:53Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2024-38821 | Ivanti Endpoint Manager代码问题漏洞 | 2024-09-13 | 2024-09-23 |
| cnvd-2024-38798 | Microsoft SQL Server信息泄露漏洞(CNVD-2024-38798) | 2024-09-12 | 2024-09-23 |
| cnvd-2024-38797 | Microsoft SQL Server远程代码执行漏洞(CNVD-2024-38797) | 2024-09-12 | 2024-09-23 |
| cnvd-2024-38796 | Microsoft SQL Server权限提升漏洞(CNVD-2024-38796) | 2024-09-12 | 2024-09-23 |
| cnvd-2024-38795 | Microsoft SQL Server远程代码执行漏洞(CNVD-2024-38795) | 2024-09-12 | 2024-09-23 |
| cnvd-2024-38794 | Microsoft SQL Server权限提升漏洞 | 2024-09-12 | 2024-09-23 |
| cnvd-2024-38793 | Microsoft SQL Server远程代码执行漏洞(CNVD-2024-38793) | 2024-09-12 | 2024-09-23 |
| cnvd-2024-38792 | Microsoft SQL Server远程代码执行漏洞(CNVD-2024-38792) | 2024-09-12 | 2024-09-23 |
| cnvd-2024-38791 | Microsoft SQL Server远程代码执行漏洞(CNVD-2024-38791) | 2024-09-12 | 2024-09-23 |
| cnvd-2024-38790 | Microsoft SQL Server信息泄露漏洞(CNVD-2024-38790) | 2024-09-12 | 2024-09-23 |
| cnvd-2024-38789 | Microsoft SQL Server信息泄露漏洞(CNVD-2024-38789) | 2024-09-12 | 2024-09-23 |
| cnvd-2024-37771 | 北京亿赛通科技发展有限责任公司亿赛通电子文档安全管理系统存在SQL注入漏洞(CNVD-2024-37771) | 2024-08-09 | 2024-09-23 |
| cnvd-2024-37765 | 北京和利时工业软件有限公司多款产品存在任意文件下载漏洞 | 2024-08-09 | 2024-09-23 |
| cnvd-2024-38075 | 上海布雷德科技有限公司Saber企业级开发平台存在SQL注入漏洞 | 2024-08-08 | 2024-09-22 |
| cnvd-2024-38103 | 贵州小码科技有限公司jpress存在文件上传漏洞(CNVD-2024-38103) | 2024-08-07 | 2024-09-21 |
| cnvd-2024-38564 | Tenda FH451命令注入漏洞 | 2024-09-14 | 2024-09-20 |
| cnvd-2024-38563 | Tenda FH451缓冲区溢出漏洞 | 2024-09-14 | 2024-09-20 |
| cnvd-2024-38562 | Tenda FH451缓冲区溢出漏洞(CNVD-2024-38562) | 2024-09-14 | 2024-09-20 |
| cnvd-2024-38534 | Adobe Acrobat Reader资源管理错误漏洞(CNVD-2024-38534) | 2024-09-09 | 2024-09-20 |
| cnvd-2024-38529 | IBM webMethods Integration路径遍历漏洞 | 2024-09-09 | 2024-09-20 |
| cnvd-2024-38528 | IBM webMethods Integration权限提升漏洞 | 2024-09-09 | 2024-09-20 |
| cnvd-2024-38527 | IBM webMethods Integration文件上传漏洞 | 2024-09-09 | 2024-09-20 |
| cnvd-2024-38526 | IBM Maximo Application Suite加密问题漏洞 | 2024-09-11 | 2024-09-20 |
| cnvd-2024-38525 | IBM MQ Operator拒绝服务漏洞 | 2024-09-11 | 2024-09-20 |
| cnvd-2024-38524 | IBM MQ Operator安全绕过漏洞 | 2024-09-11 | 2024-09-20 |
| cnvd-2024-38573 | SeaCMS跨站脚本漏洞(CNVD-2024-38573) | 2024-09-05 | 2024-09-19 |
| cnvd-2024-38571 | FastCMS跨站脚本漏洞(CNVD-2024-38571) | 2024-09-14 | 2024-09-19 |
| cnvd-2024-38570 | Micron Crucial MX500 Series Solid State Drives缓冲区溢出漏洞 | 2024-09-05 | 2024-09-19 |
| cnvd-2024-38567 | Huawei EMUI和Huawei HarmonyOS代码执行漏洞 | 2024-08-12 | 2024-09-19 |
| cnvd-2024-38566 | Huawei EMUI和Huawei HarmonyOS存在未明漏洞 | 2024-08-12 | 2024-09-19 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2010-avi-162 | Multiples vulnérabilités dans les produits VMware | 2010-04-09T00:00:00.000000 | 2010-04-09T00:00:00.000000 |
| certa-2010-avi-161 | Multiples vulnérabilités dans McAfee Email Gateway | 2010-04-07T00:00:00.000000 | 2010-04-08T00:00:00.000000 |
| certa-2010-avi-160 | Vulnérabilités dans VMware ESX Server | 2010-04-07T00:00:00.000000 | 2010-04-07T00:00:00.000000 |
| certa-2010-avi-159 | Vulnérabilité dans MediaWiki | 2010-04-07T00:00:00.000000 | 2010-04-07T00:00:00.000000 |
| certa-2010-avi-158 | Multiples vulnérabilités dans ClamAV | 2010-04-07T00:00:00.000000 | 2010-04-07T00:00:00.000000 |
| certa-2010-avi-157 | Vulnérabilité dans Emacs | 2010-04-07T00:00:00.000000 | 2010-04-07T00:00:00.000000 |
| certa-2010-avi-156 | Multiples vulnérabilités dans CA XOsoft | 2010-04-07T00:00:00.000000 | 2010-04-07T00:00:00.000000 |
| certa-2010-avi-093 | Vulnérabilité dans Asterisk | 2010-03-01T00:00:00.000000 | 2010-04-07T00:00:00.000000 |
| certa-2009-avi-448 | Vulnérabilités dans Xpdf et dérivés | 2009-10-16T00:00:00.000000 | 2010-04-07T00:00:00.000000 |
| certa-2010-avi-155 | Vulnérabilité dans Foxit Reader | 2010-04-02T00:00:00.000000 | 2010-04-02T00:00:00.000000 |
| certa-2010-avi-154 | Vulnérabilité dans Firefox | 2010-04-02T00:00:00.000000 | 2010-04-02T00:00:00.000000 |
| certa-2010-avi-153 | Multiples vulnérabilités dans Apple QuickTime | 2010-04-01T00:00:00.000000 | 2010-04-01T00:00:00.000000 |
| certa-2010-avi-152 | Multiples vulnérabilités dans Oracle Java | 2010-04-01T00:00:00.000000 | 2010-04-01T00:00:00.000000 |
| certa-2010-avi-151 | Vulnérabilités dans Apache ActiveMQ | 2010-04-01T00:00:00.000000 | 2010-04-01T00:00:00.000000 |
| certa-2010-avi-150 | Multiples vulnérabilités dans Moodle | 2010-04-01T00:00:00.000000 | 2010-04-01T00:00:00.000000 |
| certa-2010-avi-149 | Multiples vulnérabilités dans Firefox | 2010-04-01T00:00:00.000000 | 2010-04-01T00:00:00.000000 |
| certa-2010-avi-148 | Multiples vulnérabilités dans HP SOA Registry Fondation | 2010-03-31T00:00:00.000000 | 2010-03-31T00:00:00.000000 |
| certa-2010-avi-147 | Multiples vulnérabilités dans Apple iTunes | 2010-03-31T00:00:00.000000 | 2010-03-31T00:00:00.000000 |
| certa-2010-avi-146 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2010-03-31T00:00:00.000000 | 2010-03-31T00:00:00.000000 |
| certa-2010-avi-145 | Multiples vulnérabilités dans IBM Web Interface for Content Management | 2010-03-30T00:00:00.000000 | 2010-03-30T00:00:00.000000 |
| certa-2010-avi-144 | Vulnérabilité dans phpCAS | 2010-03-30T00:00:00.000000 | 2010-03-30T00:00:00.000000 |
| certa-2010-avi-143 | Multiples vulnérabilités dans Apple MacOS X | 2010-03-30T00:00:00.000000 | 2010-03-30T00:00:00.000000 |
| certa-2010-avi-142 | Vulnérabilités dans IBM WebSphere | 2010-03-30T00:00:00.000000 | 2010-03-30T00:00:00.000000 |
| certa-2010-avi-141 | Multiples vulnérabilités dans les produits VMware | 2010-03-30T00:00:00.000000 | 2010-03-30T00:00:00.000000 |
| certa-2010-avi-140 | Multiples vulnérabilités dans HP-UX | 2010-03-30T00:00:00.000000 | 2010-03-30T00:00:00.000000 |
| certa-2010-avi-139 | Multiples vulnérabilités dans HP Project and Portfolio Center | 2010-03-30T00:00:00.000000 | 2010-03-30T00:00:00.000000 |
| certa-2010-avi-138 | Vulnérabilité dans cURL/LibCurl | 2010-03-29T00:00:00.000000 | 2010-03-29T00:00:00.000000 |
| certa-2010-avi-137 | Vulnérabilités dans les imprimantes laser Lexmark | 2010-03-26T00:00:00.000000 | 2010-03-26T00:00:00.000000 |
| certa-2010-avi-136 | Multiples vulnérabilités dans Cisco IOS | 2010-03-26T00:00:00.000000 | 2010-03-26T00:00:00.000000 |
| certa-2010-avi-135 | Vulnérabilité dans spamass-milter | 2010-03-26T00:00:00.000000 | 2010-03-26T00:00:00.000000 |