Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-36113 |
5.4 (3.1)
|
Multiple vulnerabilities were addressed in IBM Sterlin… |
IBM |
Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0 |
2026-01-20T15:15:55.890Z | 2026-01-20T15:34:16.414Z |
| CVE-2026-23875 |
5.7 (4.0)
|
CrawlChat's Discord Bot has a Knowledge Permission vul… |
crawlchat |
crawlchat |
2026-01-19T20:47:57.518Z | 2026-01-20T15:33:08.209Z |
| CVE-2026-23883 |
7.7 (4.0)
|
Heap-use-after-free in update_pointer_new |
FreeRDP |
FreeRDP |
2026-01-19T17:15:55.735Z | 2026-01-20T15:30:10.352Z |
| CVE-2026-0902 |
8.8 (3.1)
|
Inappropriate implementation in V8 in Google Chro… |
Google |
Chrome |
2026-01-20T04:14:15.404Z | 2026-01-20T15:29:39.657Z |
| CVE-2025-43904 |
4.2 (3.1)
|
In SchedMD Slurm before 24.11.5, 24.05.8, and 23.… |
SchedMD |
Slurm |
2026-01-16T00:00:00.000Z | 2026-01-20T15:29:05.323Z |
| CVE-2026-0903 |
5.4 (3.1)
|
Inappropriate implementation in Downloads in Goog… |
Google |
Chrome |
2026-01-20T04:14:15.784Z | 2026-01-20T15:28:59.338Z |
| CVE-2026-0904 |
5.4 (3.1)
|
Incorrect security UI in Digital Credentials in G… |
Google |
Chrome |
2026-01-20T04:14:16.238Z | 2026-01-20T15:26:56.630Z |
| CVE-2026-23884 |
7.7 (4.0)
|
Heap-use-after-free in gdi_set_bounds |
FreeRDP |
FreeRDP |
2026-01-19T17:20:40.149Z | 2026-01-20T15:25:49.504Z |
| CVE-2026-0943 |
7.5 (3.1)
|
HarfBuzz::Shaper versions before 0.032 for Perl contai… |
JV |
HarfBuzz::Shaper |
2026-01-19T02:46:52.012Z | 2026-01-20T15:25:23.530Z |
| CVE-2025-0647 |
7.9 (3.1)
|
In certain Arm CPUs, a CPP RCTX instruction execu… |
Arm |
Neoverse-N2 |
2026-01-14T10:58:44.342Z | 2026-01-20T15:21:14.551Z |
| CVE-2026-23877 |
5.3 (4.0)
|
Directory Traversal & Filesystem can be accessed by a … |
swingmx |
swingmusic |
2026-01-19T20:52:00.516Z | 2026-01-20T15:20:58.996Z |
| CVE-2025-55251 |
3.1 (3.1)
|
HCL AION is affected by an Unrestricted File Upload vu… |
HCL Software |
AION |
2026-01-19T17:39:26.248Z | 2026-01-20T15:13:26.204Z |
| CVE-2026-23880 |
7.3 (3.1)
|
OnboardLite has stored Cross-site Scripting issue that… |
HackUCF |
OnboardLite |
2026-01-19T20:55:28.469Z | 2026-01-20T15:12:32.529Z |
| CVE-2025-29847 |
N/A
|
Apache Linkis: Arbitrary File Read via Double URL Enco… |
Apache Software Foundation |
Apache Linkis |
2026-01-19T08:36:06.839Z | 2026-01-20T15:12:04.287Z |
| CVE-2025-15466 |
5.4 (3.1)
|
Image Photo Gallery Final Tiles Grid <= 3.6.9 - Missin… |
wpchill |
Image Photo Gallery Final Tiles Grid |
2026-01-19T23:21:52.729Z | 2026-01-20T15:11:52.423Z |
| CVE-2025-14977 |
8.1 (3.1)
|
Dokan: AI Powered WooCommerce Multivendor Marketplace … |
dokaninc |
Dokan: AI Powered WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay, Etsy |
2026-01-20T04:35:45.902Z | 2026-01-20T15:11:26.613Z |
| CVE-2026-23625 |
8.7 (3.1)
|
OpenProject has stored XSS regression using attachment… |
opf |
openproject |
2026-01-19T17:41:41.803Z | 2026-01-20T15:10:58.947Z |
| CVE-2025-14348 |
5.3 (3.1)
|
weMail <= 2.0.7 - Insufficient Authorization via x-wem… |
wedevs |
weMail – Email Marketing, Lead Generation, Optin Forms, Email Newsletters, A/B Testing, and Automation |
2026-01-20T04:35:46.497Z | 2026-01-20T15:10:45.592Z |
| CVE-2025-12985 |
8.4 (3.1)
|
License Service: Privilege escalation vulnerability |
IBM |
IBM Licensing Operator |
2026-01-20T14:50:51.912Z | 2026-01-20T15:10:40.350Z |
| CVE-2025-14533 |
9.8 (3.1)
|
Advanced Custom Fields: Extended <= 0.9.2.1 - Unauthen… |
hwk-fr |
Advanced Custom Fields: Extended |
2026-01-20T09:25:00.542Z | 2026-01-20T15:10:03.430Z |
| CVE-2025-59355 |
N/A
|
Apache Linkis: Password Exposure |
Apache Software Foundation |
Apache Linkis |
2026-01-19T08:37:24.364Z | 2026-01-20T15:07:22.356Z |
| CVE-2025-9465 |
8.7 (4.0)
|
ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities |
Rockwell Automation |
ArmorStart® LT |
2026-01-20T13:51:36.454Z | 2026-01-20T15:07:13.275Z |
| CVE-2025-14883 |
N/A
|
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2025-68016. Reason: This candidate is a reservation duplicate of CVE-2025-68016. Notes: All CVE users should reference CVE-2025-68016 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. | N/A | N/A | 2026-01-20T15:07:10.646Z | |
| CVE-2026-0610 |
9.8 (3.1)
|
SQL Injection vulnerability in remote-sessions in… |
Devolutions |
Server |
2026-01-19T14:31:13.173Z | 2026-01-20T15:05:32.415Z |
| CVE-2026-1007 |
7.6 (3.1)
|
Incorrect Authorization vulnerability in virtual … |
Devolutions |
Server |
2026-01-19T14:32:06.163Z | 2026-01-20T15:02:33.576Z |
| CVE-2025-11743 |
7.1 (4.0)
|
Rockwell Automation CompactLogix® 5370 Denial of Servi… |
Rockwell Automation |
CompactLogix® 5370 |
2026-01-20T13:52:16.535Z | 2026-01-20T14:58:13.875Z |
| CVE-2025-69581 |
5.5 (3.1)
|
An issue was discovered in Chamillo LMS 1.11.2. T… |
n/a |
n/a |
2026-01-16T00:00:00.000Z | 2026-01-20T14:56:48.349Z |
| CVE-2026-0726 |
8.1 (3.1)
|
Nexter Extension – Site Enhancements Toolkit <= 4.4.6 … |
posimyththemes |
Nexter Extension – Site Enhancements Toolkit |
2026-01-20T14:26:31.228Z | 2026-01-20T14:54:52.338Z |
| CVE-2026-23646 |
6.5 (3.1)
|
OpenProject users can delete other user's session, cau… |
opf |
openproject |
2026-01-19T17:48:03.082Z | 2026-01-20T14:54:40.162Z |
| CVE-2026-0548 |
5.4 (3.1)
|
Tutor LMS – eLearning and online course solution <= 3.… |
themeum |
Tutor LMS – eLearning and online course solution |
2026-01-20T14:26:31.808Z | 2026-01-20T14:53:42.335Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-39770 |
N/A
|
net: gso: Forbid IPv6 TSO with extensions on devices w… |
Linux |
Linux |
2025-09-11T16:56:24.446Z | 2025-11-03T17:43:12.813Z |
| CVE-2025-12383 |
9.4 (4.0)
|
Race Condition allows Bypass of Trust Restrictions |
Eclipse Foundation |
Jersey |
2025-11-18T15:14:37.765Z | 2025-11-18T21:34:35.027Z |
| CVE-2025-39819 |
N/A
|
fs/smb: Fix inconsistent refcnt update |
Linux |
Linux |
2025-09-16T13:00:19.320Z | 2026-01-02T15:32:29.503Z |
| CVE-2025-39817 |
N/A
|
efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare |
Linux |
Linux |
2025-09-16T13:00:17.776Z | 2025-11-03T17:43:40.463Z |
| CVE-2025-39813 |
N/A
|
ftrace: Fix potential warning in trace_printk_seq duri… |
Linux |
Linux |
2025-09-16T13:00:14.846Z | 2025-11-03T17:43:38.484Z |
| CVE-2025-39812 |
N/A
|
sctp: initialize more fields in sctp_v6_from_sk() |
Linux |
Linux |
2025-09-16T13:00:14.103Z | 2025-11-03T17:43:36.526Z |
| CVE-2025-39808 |
N/A
|
HID: hid-ntrig: fix unable to handle page fault in ntr… |
Linux |
Linux |
2025-09-16T13:00:11.242Z | 2025-11-03T17:43:34.626Z |
| CVE-2025-39806 |
N/A
|
HID: multitouch: fix slab out-of-bounds access in mt_r… |
Linux |
Linux |
2025-09-16T13:00:09.524Z | 2025-11-03T17:43:32.753Z |
| CVE-2022-50327 |
N/A
|
ACPI: processor: idle: Check acpi_fetch_acpi_dev() ret… |
Linux |
Linux |
2025-09-15T14:49:26.711Z | 2025-12-23T13:28:29.153Z |
| CVE-2025-39800 |
N/A
|
btrfs: abort transaction on unexpected eb generation a… |
Linux |
Linux |
2025-09-15T12:36:43.043Z | 2026-01-02T15:32:26.321Z |
| CVE-2025-39798 |
N/A
|
NFS: Fix the setting of capabilities when automounting… |
Linux |
Linux |
2025-09-12T15:59:34.386Z | 2025-11-03T17:43:29.893Z |
| CVE-2025-39795 |
N/A
|
block: avoid possible overflow for chunk_sectors check… |
Linux |
Linux |
2025-09-12T15:59:32.037Z | 2026-01-02T15:32:23.368Z |
| CVE-2025-8046 |
6.1 (3.1)
|
Injection Guard < 1.2.8 - Reflected XSS via $_SERVER['… |
Unknown |
Injection Guard |
2025-08-14T06:00:06.039Z | 2025-08-14T14:49:50.570Z |
| CVE-2025-64663 |
9.9 (3.1)
|
Custom Question Answering Elevation of Privilege Vulne… |
Microsoft |
Azure Cognitive Service for Language |
2025-12-18T22:02:05.377Z | 2026-02-26T16:07:26.652Z |
| CVE-2025-39920 |
N/A
|
pcmcia: Add error handling for add_interval() in do_va… |
Linux |
Linux |
2025-10-01T07:55:15.731Z | 2025-11-03T17:44:40.739Z |
| CVE-2022-50449 |
N/A
|
clk: samsung: Fix memory leak in _samsung_clk_register_pll() |
Linux |
Linux |
2025-10-01T11:45:23.226Z | 2025-10-01T11:45:23.226Z |
| CVE-2022-50448 |
N/A
|
mm/uffd: fix warning without PTE_MARKER_UFFD_WP compiled in |
Linux |
Linux |
2025-10-01T11:45:22.513Z | 2025-10-01T11:45:22.513Z |
| CVE-2025-39916 |
N/A
|
mm/damon/reclaim: avoid divide-by-zero in damon_reclai… |
Linux |
Linux |
2025-10-01T07:44:38.690Z | 2025-11-03T17:44:38.840Z |
| CVE-2022-50447 |
N/A
|
Bluetooth: hci_conn: Fix crash on hci_create_cis_sync |
Linux |
Linux |
2025-10-01T11:45:21.804Z | 2025-10-01T11:45:21.804Z |
| CVE-2022-50446 |
N/A
|
ARC: mm: fix leakage of memory allocated for PTE |
Linux |
Linux |
2025-10-01T11:45:20.854Z | 2025-10-01T11:45:20.854Z |
| CVE-2022-50445 |
N/A
|
xfrm: Reinject transport-mode packets through workqueue |
Linux |
Linux |
2025-10-01T11:45:19.954Z | 2025-10-01T11:45:19.954Z |
| CVE-2025-39914 |
N/A
|
tracing: Silence warning when chunk allocation fails i… |
Linux |
Linux |
2025-10-01T07:44:37.018Z | 2025-11-03T17:44:37.896Z |
| CVE-2022-50444 |
N/A
|
clk: tegra20: Fix refcount leak in tegra20_clock_init |
Linux |
Linux |
2025-10-01T11:42:19.730Z | 2025-10-01T11:42:19.730Z |
| CVE-2023-53259 |
N/A
|
VMCI: check context->notify_page after call to get_use… |
Linux |
Linux |
2025-09-15T14:46:30.955Z | 2025-11-03T17:31:06.014Z |
| CVE-2024-30381 |
8.4 (3.1)
8.4 (4.0)
|
Paragon Active Assurance: probe_serviced exposes inter… |
Juniper Networks |
Paragon Active Assurance |
2024-04-12T14:56:38.299Z | 2024-08-02T01:32:07.189Z |
| CVE-2025-39913 |
N/A
|
tcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict(… |
Linux |
Linux |
2025-10-01T07:44:36.244Z | 2025-11-03T17:44:36.959Z |
| CVE-2025-39911 |
N/A
|
i40e: fix IRQ freeing in i40e_vsi_request_irq_msix err… |
Linux |
Linux |
2025-10-01T07:44:34.561Z | 2025-11-03T17:44:36.010Z |
| CVE-2026-21858 |
10 (3.1)
|
n8n Vulnerable to Unauthenticated File Access via Impr… |
n8n-io |
n8n |
2026-01-07T23:57:52.079Z | 2026-01-12T18:37:27.893Z |
| CVE-2025-39909 |
N/A
|
mm/damon/lru_sort: avoid divide-by-zero in damon_lru_s… |
Linux |
Linux |
2025-10-01T07:44:32.936Z | 2025-11-03T17:44:35.076Z |
| CVE-2025-68926 |
9.8 (3.1)
|
RustFS has a gRPC Hardcoded Token Authentication Bypass |
rustfs |
rustfs |
2025-12-30T16:59:53.999Z | 2026-01-05T14:23:55.080Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-39770 | In the Linux kernel, the following vulnerability has been resolved: net: gso: Forbid IPv6 TSO with… | 2025-09-11T17:15:42.530 | 2026-01-16T20:11:39.663 |
| fkie_cve-2025-12383 | In Eclipse Jersey versions 2.45, 3.0.16, 3.1.9 a race condition can cause ignoring of critical SSL … | 2025-11-18T16:15:42.867 | 2026-01-16T20:09:26.027 |
| fkie_cve-2025-39819 | In the Linux kernel, the following vulnerability has been resolved: fs/smb: Fix inconsistent refcn… | 2025-09-16T13:15:58.260 | 2026-01-16T20:09:10.520 |
| fkie_cve-2025-39817 | In the Linux kernel, the following vulnerability has been resolved: efivarfs: Fix slab-out-of-boun… | 2025-09-16T13:15:57.187 | 2026-01-16T20:08:25.680 |
| fkie_cve-2025-39813 | In the Linux kernel, the following vulnerability has been resolved: ftrace: Fix potential warning … | 2025-09-16T13:15:55.150 | 2026-01-16T20:08:18.040 |
| fkie_cve-2025-39812 | In the Linux kernel, the following vulnerability has been resolved: sctp: initialize more fields i… | 2025-09-16T13:15:54.537 | 2026-01-16T20:08:08.323 |
| fkie_cve-2025-39808 | In the Linux kernel, the following vulnerability has been resolved: HID: hid-ntrig: fix unable to … | 2025-09-16T13:15:52.343 | 2026-01-16T20:07:52.930 |
| fkie_cve-2025-39806 | In the Linux kernel, the following vulnerability has been resolved: HID: multitouch: fix slab out-… | 2025-09-16T13:15:51.303 | 2026-01-16T20:07:18.973 |
| fkie_cve-2022-50327 | In the Linux kernel, the following vulnerability has been resolved: ACPI: processor: idle: Check a… | 2025-09-15T15:15:44.827 | 2026-01-16T20:07:10.330 |
| fkie_cve-2025-39800 | In the Linux kernel, the following vulnerability has been resolved: btrfs: abort transaction on un… | 2025-09-15T13:15:35.467 | 2026-01-16T20:06:47.967 |
| fkie_cve-2025-39798 | In the Linux kernel, the following vulnerability has been resolved: NFS: Fix the setting of capabi… | 2025-09-12T16:15:34.267 | 2026-01-16T20:00:28.610 |
| fkie_cve-2025-39795 | In the Linux kernel, the following vulnerability has been resolved: block: avoid possible overflow… | 2025-09-12T16:15:33.850 | 2026-01-16T20:00:17.163 |
| fkie_cve-2025-8046 | The Injection Guard WordPress plugin before 1.2.8 does not escape the $_SERVER['REQUEST_URI'] param… | 2025-08-14T06:15:28.797 | 2026-01-16T20:00:00.480 |
| fkie_cve-2025-64663 | Custom Question Answering Elevation of Privilege Vulnerability | 2025-12-18T22:16:00.370 | 2026-01-16T19:53:36.677 |
| fkie_cve-2025-39920 | In the Linux kernel, the following vulnerability has been resolved: pcmcia: Add error handling for… | 2025-10-01T08:15:35.237 | 2026-01-16T19:51:49.047 |
| fkie_cve-2022-50449 | In the Linux kernel, the following vulnerability has been resolved: clk: samsung: Fix memory leak … | 2025-10-01T12:15:37.503 | 2026-01-16T19:51:27.210 |
| fkie_cve-2022-50448 | In the Linux kernel, the following vulnerability has been resolved: mm/uffd: fix warning without P… | 2025-10-01T12:15:37.323 | 2026-01-16T19:51:21.667 |
| fkie_cve-2025-39916 | In the Linux kernel, the following vulnerability has been resolved: mm/damon/reclaim: avoid divide… | 2025-10-01T08:15:34.763 | 2026-01-16T19:51:18.380 |
| fkie_cve-2022-50447 | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_conn: Fix crash… | 2025-10-01T12:15:37.177 | 2026-01-16T19:50:46.123 |
| fkie_cve-2022-50446 | In the Linux kernel, the following vulnerability has been resolved: ARC: mm: fix leakage of memory… | 2025-10-01T12:15:37.037 | 2026-01-16T19:50:40.257 |
| fkie_cve-2022-50445 | In the Linux kernel, the following vulnerability has been resolved: xfrm: Reinject transport-mode … | 2025-10-01T12:15:36.897 | 2026-01-16T19:50:34.717 |
| fkie_cve-2025-39914 | In the Linux kernel, the following vulnerability has been resolved: tracing: Silence warning when … | 2025-10-01T08:15:34.520 | 2026-01-16T19:50:25.483 |
| fkie_cve-2022-50444 | In the Linux kernel, the following vulnerability has been resolved: clk: tegra20: Fix refcount lea… | 2025-10-01T12:15:36.740 | 2026-01-16T19:50:22.893 |
| fkie_cve-2023-53259 | In the Linux kernel, the following vulnerability has been resolved: VMCI: check context->notify_pa… | 2025-09-15T15:15:53.317 | 2026-01-16T19:50:14.687 |
| fkie_cve-2024-30381 | An Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Juniper Networks Par… | 2024-04-12T15:15:24.547 | 2026-01-16T19:49:34.397 |
| fkie_cve-2025-39913 | In the Linux kernel, the following vulnerability has been resolved: tcp_bpf: Call sk_msg_free() wh… | 2025-10-01T08:15:34.390 | 2026-01-16T19:48:30.623 |
| fkie_cve-2025-39911 | In the Linux kernel, the following vulnerability has been resolved: i40e: fix IRQ freeing in i40e_… | 2025-10-01T08:15:34.140 | 2026-01-16T19:37:09.060 |
| fkie_cve-2026-21858 | n8n is an open source workflow automation platform. Versions starting with 1.65.0 and below 1.121.0… | 2026-01-08T00:15:59.990 | 2026-01-16T19:31:34.467 |
| fkie_cve-2025-39909 | In the Linux kernel, the following vulnerability has been resolved: mm/damon/lru_sort: avoid divid… | 2025-10-01T08:15:33.850 | 2026-01-16T19:31:15.830 |
| fkie_cve-2025-68926 | RustFS is a distributed object storage system built in Rust. In versions prior to 1.0.0-alpha.78, R… | 2025-12-30T17:15:43.613 | 2026-01-16T19:31:07.460 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-r3r9-v3q6-hv5j |
7.0 (4.0)
|
A vulnerability exists in serial device servers where active debug code remains enabled in the UART… | 2025-12-31T09:30:19Z | 2025-12-31T09:30:19Z |
| ghsa-qx67-x2fg-4q4f |
8.8 (3.1)
8.7 (4.0)
|
VPN Firewall developed by QNO Technology has an OS Command Injection vulnerability, allowing authen… | 2025-12-31T09:30:19Z | 2025-12-31T09:30:19Z |
| ghsa-grcr-j565-jxh5 |
7.8 (3.1)
|
FontForge GUtils XBM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulner… | 2025-12-31T09:30:18Z | 2025-12-31T09:30:19Z |
| ghsa-cgxg-jvf2-h7v5 |
7.8 (3.1)
|
FontForge GUtils BMP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. T… | 2025-12-31T09:30:18Z | 2025-12-31T09:30:19Z |
| ghsa-9hg6-8r8x-q6q6 |
8.8 (3.1)
|
FontForge SFD File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability a… | 2025-12-31T09:30:18Z | 2025-12-31T09:30:19Z |
| ghsa-5vwc-hh96-8x8g |
7.1 (4.0)
|
The NPort 6100-G2/6200-G2 Series is affected by a high-severity vulnerability (CVE-2025-2026) that … | 2025-12-31T09:30:19Z | 2025-12-31T09:30:19Z |
| ghsa-364x-6pf8-6vwj |
7.8 (3.1)
|
FontForge GUtils SGI File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. T… | 2025-12-31T09:30:18Z | 2025-12-31T09:30:19Z |
| ghsa-w327-296g-78wc |
8.8 (3.1)
|
FontForge PFB File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vu… | 2025-12-31T09:30:18Z | 2025-12-31T09:30:18Z |
| ghsa-mv95-mmh4-gvp6 |
7.8 (3.1)
|
FontForge SFD File Parsing Deserialization of Untrusted Data Remote Code Execution Vulnerability. T… | 2025-12-31T09:30:18Z | 2025-12-31T09:30:18Z |
| ghsa-hp8x-4h95-9799 |
8.8 (3.1)
|
FontForge SFD File Parsing Improper Validation of Array Index Remote Code Execution Vulnerability. … | 2025-12-31T09:30:18Z | 2025-12-31T09:30:18Z |
| ghsa-gwg7-r3vr-jqwf |
8.8 (3.1)
|
FontForge SFD File Parsing Improper Validation of Array Index Remote Code Execution Vulnerability. … | 2025-12-31T09:30:18Z | 2025-12-31T09:30:18Z |
| ghsa-c6rw-2xpc-ff8c |
4.3 (3.1)
|
The Easy Digital Downloads plugin for WordPress is vulnerable to Unvalidated Redirect in all versio… | 2025-12-31T09:30:18Z | 2025-12-31T09:30:18Z |
| ghsa-8j84-3r78-7j5x |
8.8 (3.1)
|
FontForge SFD File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability a… | 2025-12-31T09:30:18Z | 2025-12-31T09:30:18Z |
| ghsa-7q3f-q9mp-p2f9 |
8.8 (3.1)
|
FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vul… | 2025-12-31T09:30:18Z | 2025-12-31T09:30:18Z |
| ghsa-6m4m-8948-4883 |
8.8 (3.1)
|
FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vul… | 2025-12-31T09:30:18Z | 2025-12-31T09:30:18Z |
| ghsa-6465-93fg-6pfr |
8.8 (3.1)
|
FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vul… | 2025-12-31T09:30:18Z | 2025-12-31T09:30:18Z |
| ghsa-vwg9-2rf4-w4xc |
6.3 (3.1)
2.1 (4.0)
|
A flaw has been found in EyouCMS up to 1.7.7. The impacted element is the function unserialize of t… | 2025-12-31T06:30:17Z | 2025-12-31T06:30:17Z |
| ghsa-r9h3-v9hv-vpf2 |
3.5 (3.1)
2.0 (4.0)
|
A vulnerability was detected in EyouCMS up to 1.7.7. The affected element is an unknown function of… | 2025-12-31T06:30:16Z | 2025-12-31T06:30:17Z |
| ghsa-93v3-46mj-22fw |
6.3 (3.1)
2.1 (4.0)
|
A security vulnerability has been detected in EyouCMS up to 1.7.7. Impacted is the function saveRem… | 2025-12-31T06:30:16Z | 2025-12-31T06:30:17Z |
| ghsa-5fgj-7r84-vwrr |
4.3 (3.1)
2.1 (4.0)
|
A vulnerability was found in Philipinho Simple-PHP-Blog up to 94b5d3e57308bce5dfbc44c3edafa9811893d… | 2025-12-31T03:30:35Z | 2025-12-31T03:30:35Z |
| ghsa-4695-qj73-37p4 |
2.4 (3.1)
1.9 (4.0)
|
A weakness has been identified in youlaitech vue3-element-admin up to 3.4.0. This issue affects som… | 2025-12-31T03:30:35Z | 2025-12-31T03:30:35Z |
| ghsa-x25x-vjrm-h7qq |
1.9 (3.1)
|
pcap_ether_aton() is an auxiliary function in libpcap, it takes a string argument and returns a fix… | 2025-12-31T03:30:33Z | 2025-12-31T03:30:34Z |
| ghsa-9qhr-gr34-rmgj |
7.8 (3.1)
7.1 (4.0)
|
A vulnerability has been found in Tenda i24, 4G03 Pro, 4G05, 4G08, G0-8G-PoE, Nova MW5G and TEG5328… | 2025-12-31T03:30:34Z | 2025-12-31T03:30:34Z |
| ghsa-53h7-g6w8-rxxc |
1.9 (3.1)
|
On Windows only, if libpcap needs to convert a Windows error message to UTF-8 and the message inclu… | 2025-12-31T03:30:34Z | 2025-12-31T03:30:34Z |
| ghsa-777r-h845-392r |
7.8 (3.1)
7.0 (4.0)
|
GoSign Desktop versions 2.4.0 and earlier use an unsigned update manifest for distributing applicat… | 2025-11-18T18:32:53Z | 2025-12-31T03:30:32Z |
| ghsa-3j8r-26jq-jj7w |
7.5 (3.1)
|
A maliciously crafted DWG file when parsed through Autodesk DWG TrueView can be used to cause a Sta… | 2024-03-18T00:30:44Z | 2025-12-31T03:30:32Z |
| ghsa-78cp-c4p5-694f |
7.4 (3.1)
|
Improper Input Validation in Hitron Systems DVR LGUVR-16H 1.02~4.02 allows an attacker to cause net… | 2024-01-23T06:30:22Z | 2025-12-31T03:30:27Z |
| ghsa-5rp3-83j5-w2g4 |
5.5 (3.1)
|
A LogoFAIL issue was discovered in BmpDecoderDxe in Insyde InsydeH2O with kernel 5.2 before 05.28.4… | 2023-12-07T06:30:18Z | 2025-12-31T03:30:27Z |
| ghsa-f282-55f7-242h |
7.4 (3.1)
|
Improper Input Validation in Hitron Systems DVR HVR-8781 1.03~4.02 allows an attacker to cause netw… | 2024-01-23T06:30:21Z | 2025-12-31T03:30:26Z |
| ghsa-crvx-w25m-8x7c |
7.4 (3.1)
|
Improper Input Validation in Hitron Systems DVR HVR-4781 1.03~4.02 allows an attacker to cause netw… | 2024-01-23T06:30:21Z | 2025-12-31T03:30:26Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-1292 | The wpb-show-core WordPress plugin before 2.6 does not sanitise and escape some parameter… | 2024-02-07T06:03:41.771724Z |
| gsd-2024-1281 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-07T06:03:41.770012Z |
| gsd-2024-1253 | A vulnerability, which was classified as critical, has been found in Beijing Baichuo Smar… | 2024-02-07T06:03:41.763054Z |
| gsd-2024-1273 | The Starbox WordPress plugin before 3.5.0 does not sanitise and escape some parameters, w… | 2024-02-07T06:03:41.762168Z |
| gsd-2024-1265 | A vulnerability classified as problematic has been found in CodeAstro University Manageme… | 2024-02-07T06:03:41.758370Z |
| gsd-2024-1262 | A vulnerability, which was classified as critical, has been found in Juanpao JPShop up to… | 2024-02-07T06:03:41.756314Z |
| gsd-2024-1286 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-07T06:03:41.754591Z |
| gsd-2024-1252 | A vulnerability classified as critical was found in Tongda OA 2017 up to 11.9. Affected b… | 2024-02-07T06:03:41.752115Z |
| gsd-2024-1267 | A vulnerability, which was classified as problematic, has been found in CodeAstro Restaur… | 2024-02-07T06:03:41.749261Z |
| gsd-2024-1282 | The Email Encoder – Protect Email Addresses and Phone Numbers plugin for WordPress is vul… | 2024-02-07T06:03:41.746785Z |
| gsd-2024-1280 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-07T06:03:41.735096Z |
| gsd-2024-1276 | The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerc… | 2024-02-07T06:03:41.732348Z |
| gsd-2024-1296 | The Brizy – Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scriptin… | 2024-02-07T06:03:41.730582Z |
| gsd-2024-1285 | The Page Builder Sandwich – Front End WordPress Page Builder Plugin plugin for WordPress … | 2024-02-07T06:03:41.728652Z |
| gsd-2024-1264 | A vulnerability has been found in Juanpao JPShop up to 1.5.02 and classified as critical.… | 2024-02-07T06:03:41.725870Z |
| gsd-2024-1256 | A vulnerability was found in Jspxcms 10.2.0 and classified as problematic. This issue aff… | 2024-02-07T06:03:41.723248Z |
| gsd-2024-1254 | A vulnerability, which was classified as critical, was found in Beijing Baichuo Smart S20… | 2024-02-07T06:03:41.721364Z |
| gsd-2024-1283 | Heap buffer overflow in Skia in Google Chrome prior to 121.0.6167.160 allowed a remote at… | 2024-02-07T06:03:41.720530Z |
| gsd-2024-1279 | The Paid Memberships Pro WordPress plugin before 2.12.9 does not prevent user with at lea… | 2024-02-07T06:03:41.712821Z |
| gsd-2024-1268 | A vulnerability, which was classified as critical, was found in CodeAstro Restaurant POS … | 2024-02-07T06:03:41.706794Z |
| gsd-2024-1298 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-07T06:03:41.699466Z |
| gsd-2024-1287 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-07T06:03:41.698519Z |
| gsd-2024-1275 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-07T06:03:41.697499Z |
| gsd-2024-1277 | The Ocean Extra plugin for WordPress is vulnerable to Stored Cross-Site Scripting via cus… | 2024-02-07T06:03:41.696967Z |
| gsd-2024-1297 | Loomio version 2.22.0 allows executing arbitrary commands on the server. This is possibl… | 2024-02-07T06:03:41.683850Z |
| gsd-2024-1288 | The Schema & Structured Data for WP & AMP plugin for WordPress is vulnerable to unauthori… | 2024-02-07T06:03:41.677398Z |
| gsd-2024-1259 | A vulnerability was found in Juanpao JPShop up to 1.5.02. It has been rated as critical. … | 2024-02-07T06:03:41.666281Z |
| gsd-2024-1260 | A vulnerability classified as critical has been found in Juanpao JPShop up to 1.5.02. Thi… | 2024-02-07T06:03:41.658561Z |
| gsd-2024-1294 | The Sunshine Photo Cart: Free Client Galleries for Photographers plugin for WordPress is … | 2024-02-07T06:03:41.657740Z |
| gsd-2024-1269 | A vulnerability has been found in SourceCodester Product Management System 1.0 and classi… | 2024-02-07T06:03:41.646366Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-183269 | Malicious code in kisut-diufg-doa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183268 | Malicious code in kisut-diufg-diguafvoatav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183267 | Malicious code in kisut-diufg-diguafvaoatav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183266 | Malicious code in kisut-diufg-diguafuvaoatav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183265 | Malicious code in kisut-diufg-diguafuavaoatav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183264 | Malicious code in kisut-diufg-digafvoatav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183263 | Malicious code in kisut-diufg-difvoatav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183262 | Malicious code in kisut-diufg-difvatav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183261 | Malicious code in kisut-diufg-diftav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183260 | Malicious code in kisut-diufg-difav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183259 | Malicious code in kisut-diufg-difatav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183258 | Malicious code in kisut-diufg-diav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183257 | Malicious code in kisut-diufg-diafvoatav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183256 | Malicious code in kisut-diufg-dav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183255 | Malicious code in kisut-diufg-daoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183254 | Malicious code in kisut-diufg-danuoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183253 | Malicious code in kisut-diufg-danufoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183252 | Malicious code in kisut-diufg-danuamifuifoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183251 | Malicious code in kisut-diufg-danuamicfuifoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183250 | Malicious code in kisut-diufg-danuamfuifoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183249 | Malicious code in kisut-diufg-danuamfoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183248 | Malicious code in kisut-diufg-danuamfifoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183247 | Malicious code in kisut-diufg-danuamffoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183246 | Malicious code in kisut-diufg-danuafoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183245 | Malicious code in kisut-diufg-danoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183244 | Malicious code in kisut-diufg-da (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183243 | Malicious code in kisut-diufg-d (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183242 | Malicious code in kisut-difg-diwfzcfecdavgecab (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183241 | Malicious code in kisut-difg-diwfzcfecdavgec (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183240 | Malicious code in kisut-difg-diwfzcfecdavge (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2023:3821 | Red Hat Security Advisory: ruby:2.7 security, bug fix, and enhancement update | 2023-06-27T15:16:35+00:00 | 2025-11-21T18:41:44+00:00 |
| rhsa-2023:3819 | Red Hat Security Advisory: kernel-rt security and bug fix update | 2023-06-27T15:10:38+00:00 | 2025-11-21T18:41:44+00:00 |
| rhsa-2023:3809 | Red Hat Security Advisory: Red Hat build of Quarkus 2.13.8 release and security update | 2023-06-29T11:09:43+00:00 | 2025-11-21T18:41:44+00:00 |
| rhsa-2023:3814 | Red Hat Security Advisory: Migration Toolkit for Runtimes security update | 2023-06-27T10:56:39+00:00 | 2025-11-21T18:41:43+00:00 |
| rhsa-2023:3813 | Red Hat Security Advisory: Migration Toolkit for Runtimes security update | 2023-06-27T11:34:44+00:00 | 2025-11-21T18:41:42+00:00 |
| rhsa-2023:3811 | Red Hat Security Advisory: python39:3.9 and python39-devel:3.9 security update | 2023-06-27T09:59:39+00:00 | 2025-11-21T18:41:42+00:00 |
| rhsa-2023:3723 | Red Hat Security Advisory: kernel security and bug fix update | 2023-06-21T14:46:05+00:00 | 2025-11-21T18:41:42+00:00 |
| rhsa-2023:3810 | Red Hat Security Advisory: python27:2.7 security update | 2023-06-27T09:51:44+00:00 | 2025-11-21T18:41:41+00:00 |
| rhsa-2023:3796 | Red Hat Security Advisory: python3 security update | 2023-06-26T10:52:12+00:00 | 2025-11-21T18:41:41+00:00 |
| rhsa-2023:3781 | Red Hat Security Advisory: python38:3.8 and python38-devel:3.8 security update | 2023-06-22T14:50:10+00:00 | 2025-11-21T18:41:40+00:00 |
| rhsa-2023:3780 | Red Hat Security Advisory: python27:2.7 security update | 2023-06-22T14:39:04+00:00 | 2025-11-21T18:41:39+00:00 |
| rhsa-2023:3777 | Red Hat Security Advisory: python27:2.7 security update | 2023-06-22T13:01:19+00:00 | 2025-11-21T18:41:39+00:00 |
| rhsa-2023:3776 | Red Hat Security Advisory: python39:3.9 and python39-devel:3.9 security update | 2023-06-22T11:53:44+00:00 | 2025-11-21T18:41:39+00:00 |
| rhsa-2023:3771 | Red Hat Security Advisory: Red Hat Virtualization security and bug fix update | 2023-06-21T19:56:52+00:00 | 2025-11-21T18:41:39+00:00 |
| rhsa-2023:3741 | Red Hat Security Advisory: c-ares security update | 2023-06-21T15:12:26+00:00 | 2025-11-21T18:41:38+00:00 |
| rhsa-2023:3740 | Red Hat Security Advisory: Red Hat Integration Camel for Spring Boot 3.20.1 Patch 1 release security update | 2023-06-21T14:32:32+00:00 | 2025-11-21T18:41:38+00:00 |
| rhsa-2023:3660 | Red Hat Security Advisory: c-ares security update | 2023-06-19T08:05:06+00:00 | 2025-11-21T18:41:37+00:00 |
| rhsa-2023:3715 | Red Hat Security Advisory: libvirt security update | 2023-06-21T14:51:04+00:00 | 2025-11-21T18:41:36+00:00 |
| rhsa-2023:3708 | Red Hat Security Advisory: kernel-rt security and bug fix update | 2023-06-21T14:50:37+00:00 | 2025-11-21T18:41:36+00:00 |
| rhsa-2023:3705 | Red Hat Security Advisory: kpatch-patch security update | 2023-06-21T08:49:51+00:00 | 2025-11-21T18:41:35+00:00 |
| rhsa-2023:3677 | Red Hat Security Advisory: c-ares security update | 2023-06-20T07:18:30+00:00 | 2025-11-21T18:41:35+00:00 |
| rhsa-2023:3665 | Red Hat Security Advisory: c-ares security update | 2023-06-19T13:04:15+00:00 | 2025-11-21T18:41:34+00:00 |
| rhsa-2023:3662 | Red Hat Security Advisory: c-ares security update | 2023-06-19T09:05:05+00:00 | 2025-11-21T18:41:34+00:00 |
| rhsa-2023:3661 | Red Hat Security Advisory: texlive security update | 2023-06-19T09:52:54+00:00 | 2025-11-21T18:41:33+00:00 |
| rhsa-2023:3625 | Red Hat Security Advisory: OpenShift Container Platform 4.10.62 security update | 2023-06-23T17:44:35+00:00 | 2025-11-21T18:41:30+00:00 |
| rhsa-2023:3597 | Red Hat Security Advisory: firefox security update | 2023-06-14T09:54:59+00:00 | 2025-11-21T18:41:28+00:00 |
| rhsa-2023:3596 | Red Hat Security Advisory: thunderbird security update | 2023-06-14T09:55:17+00:00 | 2025-11-21T18:41:28+00:00 |
| rhsa-2023:3595 | Red Hat Security Advisory: python3.9 security update | 2023-06-14T09:53:01+00:00 | 2025-11-21T18:41:28+00:00 |
| rhsa-2023:3594 | Red Hat Security Advisory: python3.11 security update | 2023-06-14T09:55:18+00:00 | 2025-11-21T18:41:28+00:00 |
| rhsa-2023:3591 | Red Hat Security Advisory: python3 security update | 2023-06-14T09:16:29+00:00 | 2025-11-21T18:41:27+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2017-1000118 | Akka HTTP versions <= 10.0.5 Illegal Media Range in Accept Header Causes StackOverflowError Leading to Denial of Service | 2017-10-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2016-7798 | The openssl gem for Ruby uses the same initialization vector (IV) in GCM Mode (aes-*-gcm) when the IV is set before the key which makes it easier for context-dependent attackers to bypass the encryption protection mechanism. | 2017-01-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2016-7161 | Heap-based buffer overflow in the .receive callback of xlnx.xps-ethernetlite in QEMU (aka Quick Emulator) allows attackers to execute arbitrary code on the QEMU host via a large ethlite packet. | 2016-10-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2016-6664 | mysqld_safe in Oracle MySQL through 5.5.51 5.6.x through 5.6.32 and 5.7.x through 5.7.14; MariaDB; Percona Server before 5.5.51-38.2 5.6.x before 5.6.32-78-1 and 5.7.x before 5.7.14-8; and Percona XtraDB Cluster before 5.5.41-37.0 5.6.x before 5.6.32-25.17 and 5.7.x before 5.7.14-26.17 when using file-based logging allows local users with access to the mysql account to gain root privileges via a symlink attack on error logs and possibly other files. | 2016-12-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2015-7504 | Heap-based buffer overflow in the pcnet_receive function in hw/net/pcnet.c in QEMU allows guest OS administrators to cause a denial of service (instance crash) or possibly execute arbitrary code via a series of packets in loopback mode. | 2017-10-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2015-5738 | The RSA-CRT implementation in the Cavium Software Development Kit (SDK) 2.x when used on OCTEON II CN6xxx Hardware on Linux to support TLS with Perfect Forward Secrecy (PFS) makes it easier for remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack. | 2016-07-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2015-3717 | Multiple buffer overflows in the printf functionality in SQLite as used in Apple iOS before 8.4 and OS X before 10.10.4 allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors. | 2015-07-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2013-0223 | The SUSE coreutils-i18n.patch for GNU coreutils allows context-dependent attackers to cause a denial of service (segmentation fault and crash) via a long string to the join command when using the -i switch which triggers a stack-based buffer overflow in the alloca function. | 2013-11-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2013-0222 | The SUSE coreutils-i18n.patch for GNU coreutils allows context-dependent attackers to cause a denial of service (segmentation fault and crash) via a long string to the uniq command which triggers a stack-based buffer overflow in the alloca function. | 2013-11-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2013-0221 | The SUSE coreutils-i18n.patch for GNU coreutils allows context-dependent attackers to cause a denial of service (segmentation fault and crash) via a long string to the sort command when using the (1) -d or (2) -M switch which triggers a stack-based buffer overflow in the alloca function. | 2013-11-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2012-4575 | The add_database function in objects.c in the pgbouncer pooler 1.5.2 for PostgreSQL allows remote attackers to cause a denial of service (daemon outage) via a long database name in a request. | 2012-11-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2011-2519 | Xen in the Linux kernel when running a guest on a host without hardware assisted paging (HAP) allows guest users to cause a denial of service (invalid pointer dereference and hypervisor crash) via the SAHF instruction. | 2013-12-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2010-3865 | Integer overflow in the rds_rdma_pages function in net/rds/rdma.c in the Linux kernel allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted iovec struct in a Reliable Datagram Sockets (RDS) request which triggers a buffer overflow. | 2011-01-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2010-2542 | Stack-based buffer overflow in the is_git_directory function in setup.c in Git before 1.7.2.1 allows local users to gain privileges via a long gitdir: field in a .git file in a working copy. | 2010-08-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2009-4484 | Multiple stack-based buffer overflows in the CertDecoder::GetName function in src/asn.cpp in TaoCrypt in yaSSL before 1.9.9 as used in mysqld in MySQL 5.0.x before 5.0.90 MySQL 5.1.x before 5.1.43 MySQL 5.5.x through 5.5.0-m2 and other products allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption and daemon crash) by establishing an SSL connection and sending an X.509 client certificate with a crafted name field as demonstrated by mysql_overflow1.py and the vd_mysql5 module in VulnDisco Pack Professional 8.11. NOTE: this was originally reported for MySQL 5.0.51a. | 2009-12-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2009-3767 | libraries/libldap/tls_o.c in OpenLDAP 2.2 and 2.4 and possibly other versions when OpenSSL is used does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority a related issue to CVE-2009-2408. | 2009-10-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2009-0590 | The ASN1_STRING_print_ex function in OpenSSL before 0.9.8k allows remote attackers to cause a denial of service (invalid memory access and application crash) via vectors that trigger printing of a (1) BMPString or (2) UniversalString with an invalid encoded length. | 2009-03-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2007-0086 | The Apache HTTP Server when accessed through a TCP connection with a large window size allows remote attackers to cause a denial of service (network bandwidth consumption) via a Range header that specifies multiple copies of the same fragment. NOTE: the severity of this issue has been disputed by third parties who state that the large window size required by the attack is not normally supported or configured by the server or that a DDoS-style attack would accomplish the same goal | 2007-01-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2006-5201 | Multiple packages on Sun Solaris including (1) NSS; (2) Java JDK and JRE 5.0 Update 8 and earlier SDK and JRE 1.4.x up to 1.4.2_12 and SDK and JRE 1.3.x up to 1.3.1_19; (3) JSSE 1.0.3_03 and earlier; (4) IPSec/IKE; (5) Secure Global Desktop; and (6) StarOffice when using an RSA key with exponent 3 removes PKCS-1 padding before generating a hash which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents these products from correctly verifying X.509 and other certificates that use PKCS #1. | 2006-10-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2005-2069 | pam_ldap and nss_ldap when used with OpenLDAP and connecting to a slave using TLS does not use TLS for the subsequent connection if the client is referred to a master which may cause a password to be sent in cleartext and allows remote attackers to sniff the password. | 2005-06-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2000-0803 | GNU Groff uses the current working directory to find a device description file which allows a local user to gain additional privileges by including a malicious postpro directive in the description file which is executed when another user runs groff. | 2001-05-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-1999-1412 | A possible interaction between Apple MacOS X release 1.0 and Apache HTTP server allows remote attackers to cause a denial of service (crash) via a flood of HTTP GET requests to CGI programs which generates a large number of processes. | 2001-09-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-1999-0428 | OpenSSL and SSLeay allow remote attackers to reuse SSL sessions and bypass access controls. | 2000-01-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-1999-0236 | ScriptAlias directory in NCSA and Apache httpd allowed attackers to read CGI programs. | 1999-09-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2020-25211 | In the Linux kernel through 5.8.7 local attackers able to inject conntrack netlink configuration could overflow a local buffer causing crashes or triggering use of incorrect protocol numbers in ctnetlink_parse_tuple_filter in net/netfilter/nf_conntrack_netlink.c aka CID-1cc5ef91d2ff. | 2020-09-02T00:00:00.000Z | 2020-09-17T00:00:00.000Z |
| msrc_cve-2020-24977 | GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e. | 2020-09-02T00:00:00.000Z | 2020-09-11T00:00:00.000Z |
| msrc_cve-2020-12829 | In QEMU through 5.0.0 an integer overflow was found in the SM501 display driver implementation. This flaw occurs in the COPY_AREA macro while handling MMIO write operations through the sm501_2d_engine_write() callback. A local attacker could abuse this flaw to crash the QEMU process in sm501_2d_operation() in hw/display/sm501.c on the host resulting in a denial of service. | 2020-08-02T00:00:00.000Z | 2020-09-09T00:00:00.000Z |
| msrc_cve-2020-11501 | GnuTLS 3.6.x before 3.6.13 uses incorrect cryptography for DTLS. The earliest affected version is 3.6.3 (2018-07-16) because of an error in a 2017-10-06 commit. The DTLS client always uses 32 '\0' bytes instead of a random value and thus contributes no randomness to a DTLS negotiation. This breaks the security guarantees of the DTLS protocol. | 2020-04-02T00:00:00.000Z | 2020-09-09T00:00:00.000Z |
| msrc_cve-2020-14364 | An out-of-bounds read/write access flaw was found in the USB emulator of the QEMU in versions before 5.2.0. This issue occurs while processing USB packets from a guest when USBDevice 'setup_len' exceeds its 'data_buf[4096]' in the do_token_in do_token_out routines. This flaw allows a guest user to crash the QEMU process resulting in a denial of service or the potential execution of arbitrary code with the privileges of the QEMU process on the host. | 2020-08-02T00:00:00.000Z | 2020-09-04T00:00:00.000Z |
| msrc_cve-2020-14415 | oss_write in audio/ossaudio.c in QEMU before 5.0.0 mishandles a buffer position. | 2020-08-02T00:00:00.000Z | 2020-09-02T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201501-0259 | IOHIDFamily in Apple OS X before 10.10.2 allows attackers to execute arbitrary code in a … | 2025-04-13T22:36:52.627000Z |
| var-201603-0217 | Race condition in the kernel in Apple iOS before 9.3 and OS X before 10.11.4 allows attac… | 2025-04-13T22:36:13.073000Z |
| var-201410-0285 | The My nTelos (aka com.telespree.ntelospostpay) application 1.1.2 for Android does not ve… | 2025-04-13T22:36:12.976000Z |
| var-201408-0086 | The Serf RA layer in Apache Subversion 1.4.0 through 1.7.x before 1.7.18 and 1.8.x before… | 2025-04-13T22:35:37.435000Z |
| var-201409-0492 | Safari in Apple iOS before 8 does not properly restrict the autofilling of passwords in f… | 2025-04-13T22:35:37.101000Z |
| var-201407-0078 | Heap-based buffer overflow in launchd in Apple iOS before 7.1.2, Apple OS X before 10.9.4… | 2025-04-13T22:34:34.320000Z |
| var-201410-0965 | Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, and 5.6.19 and earli… | 2025-04-13T22:34:33.953000Z |
| var-201510-0067 | The TLS Handshake Protocol implementation in Secure Transport in Apple OS X before 10.11 … | 2025-04-13T22:34:32.075000Z |
| var-201508-0440 | The Speech UI in Apple OS X before 10.10.5, when speech alerts are enabled, allows remote… | 2025-04-13T22:34:31.954000Z |
| var-201411-0033 | Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and O… | 2025-04-13T22:34:28.313000Z |
| var-201404-0210 | The Intel Graphics Driver in Apple OS X through 10.9.2 does not properly validate a certa… | 2025-04-13T22:34:27.579000Z |
| var-201509-0116 | WebKit, as used in JavaScriptCore in Apple iOS before 9 and iTunes before 12.3, allows re… | 2025-04-13T22:34:27.508000Z |
| var-201405-0119 | Python 2.7 before 3.4 only uses the last eight bits of the prefix to randomize hash value… | 2025-04-13T22:33:56.161000Z |
| var-201507-0064 | Use-after-free vulnerability in Adobe Flash Player before 13.0.0.302 and 14.x through 18.… | 2025-04-13T22:33:20.256000Z |
| var-201409-0457 | WebKit, as used in Apple iOS before 8 and Apple TV before 7, allows remote attackers to e… | 2025-04-13T22:33:20.036000Z |
| var-201611-0334 | The following SIEMENS branded IP Camera Models CCMW3025, CVMW3025-IR, CFMW3025 prior to v… | 2025-04-13T22:32:49.343000Z |
| var-201510-0238 | WebKit, as used in Apple iOS before 9.1, Safari before 9.0.1, and iTunes before 12.3.1, a… | 2025-04-13T22:32:44.923000Z |
| var-201609-0283 | The GeoServices component in Apple iOS before 10 and watchOS before 3 does not properly r… | 2025-04-13T22:32:14.205000Z |
| var-201507-0446 | The Bluetooth HCI interface implementation in Apple OS X before 10.10.4 allows attackers … | 2025-04-13T22:31:42.988000Z |
| var-201509-0300 | Multiple heap-based buffer overflows in 3S-Smart CODESYS Gateway Server before 2.3.9.34 a… | 2025-04-13T22:31:12.159000Z |
| var-201602-0203 | AppleGraphicsPowerManagement in Apple OS X before 10.11.3 allows local users to gain priv… | 2025-04-13T22:31:12.112000Z |
| var-201409-0509 | WebKit, as used in Apple iOS before 8 and Apple TV before 7, allows remote attackers to e… | 2025-04-13T22:31:12.031000Z |
| var-201609-0269 | otool in Apple Xcode before 8 allows local users to gain privileges or cause a denial of … | 2025-04-13T22:31:11.727000Z |
| var-201511-0015 | The CFNetwork HTTPProtocol component in Apple iOS before 9 and OS X before 10.11 does not… | 2025-04-13T22:31:01.296000Z |
| var-201408-0066 | WebKit, as used in Apple Safari before 6.1.6 and 7.x before 7.0.6, allows remote attacker… | 2025-04-13T22:30:27.121000Z |
| var-201508-0065 | Integer overflow in Adobe Flash Player before 18.0.0.232 on Windows and OS X and before 1… | 2025-04-13T22:30:27.071000Z |
| var-201609-0249 | The Safari Tabs component in Apple Safari before 10 allows remote attackers to spoof the … | 2025-04-13T22:29:56.110000Z |
| var-201410-1416 | Integer overflow in Adobe Flash Player before 13.0.0.250 and 14.x and 15.x before 15.0.0.… | 2025-04-13T22:29:53.457000Z |
| var-201409-0502 | IOKit in Apple iOS before 8 and Apple TV before 7 does not properly initialize kernel mem… | 2025-04-13T22:29:53.307000Z |
| var-201603-0022 | mediaserver in Android 6.x before 2016-03-01 allows remote attackers to execute arbitrary… | 2025-04-13T22:29:39.692000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2020:2048-1 | Security update for mailman | 2020-07-24T12:10:10Z | 2020-07-24T12:10:10Z |
| suse-su-2020:2047-1 | Security update for tomcat | 2020-07-24T12:09:28Z | 2020-07-24T12:09:28Z |
| suse-su-2020:2046-1 | Security update for tomcat | 2020-07-24T12:08:55Z | 2020-07-24T12:08:55Z |
| suse-su-2020:2045-1 | Security update for tomcat | 2020-07-24T12:08:36Z | 2020-07-24T12:08:36Z |
| suse-su-2020:2041-1 | Security update for rust, rust-cbindgen | 2020-07-24T11:59:23Z | 2020-07-24T11:59:23Z |
| suse-su-2020:2037-1 | Security update for tomcat | 2020-07-24T11:33:24Z | 2020-07-24T11:33:24Z |
| suse-su-2020:2036-1 | Security update for samba | 2020-07-24T11:32:55Z | 2020-07-24T11:32:55Z |
| suse-su-2020:2032-1 | Security update for freerdp | 2020-07-23T15:37:31Z | 2020-07-23T15:37:31Z |
| suse-su-2020:14437-1 | Security update for samba | 2020-07-23T12:39:13Z | 2020-07-23T12:39:13Z |
| suse-su-2020:2029-1 | Security update for libraw | 2020-07-23T11:50:15Z | 2020-07-23T11:50:15Z |
| suse-su-2020:2028-1 | Security update for libraw | 2020-07-23T11:49:50Z | 2020-07-23T11:49:50Z |
| suse-su-2020:2027-1 | Security update for the Linux Kernel | 2020-07-23T11:49:37Z | 2020-07-23T11:49:37Z |
| suse-su-2020:2025-1 | Security update for perl-YAML-LibYAML | 2020-07-23T11:32:40Z | 2020-07-23T11:32:40Z |
| suse-su-2020:2015-1 | Security update for qemu | 2020-07-23T07:21:35Z | 2020-07-23T07:21:35Z |
| suse-su-2020:2009-1 | Security update for vino | 2020-07-22T15:27:54Z | 2020-07-22T15:27:54Z |
| suse-su-2020:2008-1 | Security update for java-11-openjdk | 2020-07-22T15:27:38Z | 2020-07-22T15:27:38Z |
| suse-su-2020:1992-1 | Security update for webkit2gtk3 | 2020-07-21T21:37:15Z | 2020-07-21T21:37:15Z |
| suse-su-2020:1991-1 | Security update for xrdp | 2020-07-21T16:48:35Z | 2020-07-21T16:48:35Z |
| suse-su-2020:1990-1 | Security update for webkit2gtk3 | 2020-07-21T16:46:05Z | 2020-07-21T16:46:05Z |
| suse-su-2020:1984-1 | Security update for openexr | 2020-07-21T06:34:07Z | 2020-07-21T06:34:07Z |
| suse-su-2020:1983-1 | Security update for tomcat | 2020-07-21T06:31:50Z | 2020-07-21T06:31:50Z |
| suse-su-2020:1974-1 | Security update for salt | 2020-07-21T00:40:27Z | 2020-07-21T00:40:27Z |
| suse-su-2020:1973-1 | Security update for Salt | 2020-07-21T00:39:56Z | 2020-07-21T00:39:56Z |
| suse-su-2020:1972-1 | Security update for SUSE Manager Client Tools | 2020-07-21T00:39:28Z | 2020-07-21T00:39:28Z |
| suse-su-2020:1971-1 | Security update for Salt | 2020-07-21T00:38:31Z | 2020-07-21T00:38:31Z |
| suse-su-2020:1970-1 | Security update for SUSE Manager Client Tools | 2020-07-21T00:37:38Z | 2020-07-21T00:37:38Z |
| suse-su-2020:1963-1 | Security update for tomcat | 2020-07-20T15:30:52Z | 2020-07-20T15:30:52Z |
| suse-su-2020:1962-1 | Security update for tomcat | 2020-07-20T15:30:02Z | 2020-07-20T15:30:02Z |
| suse-su-2020:1958-1 | Security update for MozillaFirefox | 2020-07-20T11:49:11Z | 2020-07-20T11:49:11Z |
| suse-su-2020:1957-1 | Security update for cni-plugins | 2020-07-20T11:47:38Z | 2020-07-20T11:47:38Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2024-37753 | GTKWave整数溢出漏洞(CNVD-2024-37753) | 2024-01-11 | 2024-09-09 |
| cnvd-2024-37752 | GTKWave整数溢出漏洞(CNVD-2024-37752) | 2024-01-11 | 2024-09-09 |
| cnvd-2024-37751 | GTKWave整数溢出漏洞(CNVD-2024-37751) | 2024-01-11 | 2024-09-09 |
| cnvd-2024-37750 | GTKWave整数溢出漏洞(CNVD-2024-37750) | 2024-01-11 | 2024-09-09 |
| cnvd-2024-37731 | GTKWave整数溢出漏洞(CNVD-2024-37731) | 2024-01-11 | 2024-09-09 |
| cnvd-2024-36424 | 新天科技股份有限公司WisdomWater智慧水务营业收费管理系统存在SQL注入漏洞(CNVD-2024-36424) | 2024-07-25 | 2024-09-08 |
| cnvd-2024-36406 | 北京亿赛通科技发展有限责任公司亿赛通电子文档安全管理系统存在SQL注入漏洞(CNVD-2024-36406) | 2024-07-25 | 2024-09-08 |
| cnvd-2024-36673 | 北京亿赛通科技发展有限责任公司亿赛通电子文档安全管理系统存在SQL注入漏洞(CNVD-2024-36673) | 2024-07-24 | 2024-09-07 |
| cnvd-2024-38196 | FrogCms跨站请求伪造漏洞 | 2024-08-14 | 2024-09-06 |
| cnvd-2024-38195 | Concrete CMS跨站脚本漏洞 | 2024-08-14 | 2024-09-06 |
| cnvd-2024-38194 | ZZCMS路径遍历漏洞 | 2024-08-21 | 2024-09-06 |
| cnvd-2024-38193 | ZZCMS目录遍历漏洞(CNVD-2024-38193) | 2024-08-21 | 2024-09-06 |
| cnvd-2024-38192 | YznCMS跨站脚本漏洞(CNVD-2024-38192) | 2024-08-23 | 2024-09-06 |
| cnvd-2024-37667 | RT-Thread dfs_v2 romfs函数缓冲区溢出漏洞 | 2024-03-29 | 2024-09-06 |
| cnvd-2024-37666 | RT-Thread dfs_v2 dfs_file函数缓冲区溢出漏洞 | 2024-03-29 | 2024-09-06 |
| cnvd-2024-37665 | RT-Thread at_server.c文件缓冲区溢出漏洞 | 2024-03-29 | 2024-09-06 |
| cnvd-2024-37629 | SeaCMS拒绝服务漏洞(CNVD-2024-37629) | 2023-05-30 | 2024-09-06 |
| cnvd-2024-37628 | Rockwell Automation FactoryTalk View SE输入验证错误漏洞(CNVD-2024-37628) | 2023-10-30 | 2024-09-06 |
| cnvd-2024-37627 | Kliqqi CMS跨站请求伪造漏洞 | 2024-08-23 | 2024-09-06 |
| cnvd-2024-37626 | Kliqqi CMS跨站请求伪造漏洞(CNVD-2024-37626) | 2024-08-23 | 2024-09-06 |
| cnvd-2024-37625 | Kliqqi CMS跨站请求伪造漏洞(CNVD-2024-37625) | 2024-08-23 | 2024-09-06 |
| cnvd-2024-37624 | Kliqqi CMS跨站请求伪造漏洞(CNVD-2024-37624) | 2024-08-23 | 2024-09-06 |
| cnvd-2024-37623 | Kliqqi CMS跨站请求伪造漏洞(CNVD-2024-37623) | 2024-08-23 | 2024-09-06 |
| cnvd-2024-37622 | Kliqqi CMS跨站请求伪造漏洞(CNVD-2024-37622) | 2024-08-23 | 2024-09-06 |
| cnvd-2024-37621 | Kliqqi CMS跨站请求伪造漏洞(CNVD-2024-37621) | 2024-08-23 | 2024-09-06 |
| cnvd-2024-37620 | Kliqqi CMS跨站请求伪造漏洞(CNVD-2024-37620) | 2024-08-23 | 2024-09-06 |
| cnvd-2024-37619 | Kliqqi CMS跨站请求伪造漏洞(CNVD-2024-37619) | 2024-08-23 | 2024-09-06 |
| cnvd-2024-37618 | Kliqqi CMS跨站请求伪造漏洞(CNVD-2024-37618) | 2024-08-23 | 2024-09-06 |
| cnvd-2024-37617 | Kliqqi CMS跨站请求伪造漏洞(CNVD-2024-37617) | 2024-08-23 | 2024-09-06 |
| cnvd-2024-37616 | Kliqqi CMS跨站请求伪造漏洞(CNVD-2024-37616) | 2024-08-23 | 2024-09-06 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2010-avi-011 | Vulnérabilité dans Microsoft Windows | 2010-01-13T00:00:00.000000 | 2010-01-13T00:00:00.000000 |
| certa-2010-avi-010 | Multiples vulnérabilités dans des produits Oracle | 2010-01-13T00:00:00.000000 | 2010-01-13T00:00:00.000000 |
| certa-2010-avi-003 | Multiples vulnérabilités dans PowerDNS | 2010-01-07T00:00:00.000000 | 2010-01-13T00:00:00.000000 |
| certa-2009-avi-515 | Vulnérabilité dans BIND avec DNSSEC | 2009-11-26T00:00:00.000000 | 2010-01-12T00:00:00.000000 |
| certa-2010-avi-009 | Multiples vulnérabilités dans IBM Lotus Domino Web Access | 2010-01-08T00:00:00.000000 | 2010-01-08T00:00:00.000000 |
| certa-2010-avi-008 | Mulitples vulnérabilités dans VMware ESX | 2010-01-08T00:00:00.000000 | 2010-01-08T00:00:00.000000 |
| certa-2010-avi-007 | Vulnérabilités dans Adobe Illustrator | 2010-01-08T00:00:00.000000 | 2010-01-08T00:00:00.000000 |
| certa-2010-avi-006 | Vulnérabilité dans Novell iManager eDirectory | 2010-01-08T00:00:00.000000 | 2010-01-08T00:00:00.000000 |
| certa-2010-avi-005 | Vulnérabilité dans FreeBSD | 2010-01-07T00:00:00.000000 | 2010-01-07T00:00:00.000000 |
| certa-2010-avi-004 | Vulnérabilité dans MIT Kerberos 5 | 2010-01-07T00:00:00.000000 | 2010-01-07T00:00:00.000000 |
| certa-2009-avi-546 | Vulnérabilités dans PostgreSQL | 2009-12-16T00:00:00.000000 | 2010-01-07T00:00:00.000000 |
| certa-2009-avi-508 | Multiples vulnérabilités dans GIMP | 2009-11-20T00:00:00.000000 | 2010-01-07T00:00:00.000000 |
| certa-2010-avi-001 | Vulnérabilités dans Xoops | 2010-01-05T00:00:00.000000 | 2010-01-05T00:00:00.000000 |
| certa-2009-avi-562 | Vulnérabilité dans Sendmail | 2009-12-31T00:00:00.000000 | 2009-12-31T00:00:00.000000 |
| certa-2009-avi-561 | Multiples vulnérabilités dans Directory Server Enterprise Edition | 2009-12-29T00:00:00.000000 | 2009-12-29T00:00:00.000000 |
| certa-2009-avi-557 | Vulnérabilités dans OSSIM | 2009-12-21T00:00:00.000000 | 2009-12-24T00:00:00.000000 |
| certa-2009-avi-556 | Multiples vulnérabilités dans IBM AIX | 2009-12-21T00:00:00.000000 | 2009-12-24T00:00:00.000000 |
| certa-2009-avi-554 | Multiples vulnérabilités dans Wireshark | 2009-12-18T00:00:00.000000 | 2009-12-24T00:00:00.000000 |
| certa-2009-avi-552 | Vulnérabilité dans des produits Horde | 2009-12-17T00:00:00.000000 | 2009-12-24T00:00:00.000000 |
| certa-2009-avi-549 | Multiples vulnérabilités dans Drupal | 2009-12-17T00:00:00.000000 | 2009-12-24T00:00:00.000000 |
| certa-2009-avi-560 | Vulnérabilité dans phpMyVisites | 2009-12-23T00:00:00.000000 | 2009-12-23T00:00:00.000000 |
| certa-2009-avi-559 | Vulnérabilités dans Winamp | 2009-12-22T00:00:00.000000 | 2009-12-22T00:00:00.000000 |
| certa-2009-avi-558 | Vulnérabilité dans IBM WebSphere Application Server Feature Pack for CEA | 2009-12-21T00:00:00.000000 | 2009-12-21T00:00:00.000000 |
| certa-2009-avi-555 | Vulnérabilités dans Adobe Flash Media Server | 2009-12-21T00:00:00.000000 | 2009-12-21T00:00:00.000000 |
| certa-2009-avi-553 | Multiples vulnérabilités de PHP | 2009-12-18T00:00:00.000000 | 2009-12-18T00:00:00.000000 |
| certa-2009-avi-551 | Multiples vulnérabilités dans IBM WebSphere | 2009-12-17T00:00:00.000000 | 2009-12-17T00:00:00.000000 |
| certa-2009-avi-550 | Multiples vulnérabilités dans Cisco WebEx WRF Player | 2009-12-17T00:00:00.000000 | 2009-12-17T00:00:00.000000 |
| certa-2009-avi-548 | Vulnérabilité dans VMware vCenter Lab Manager | 2009-12-17T00:00:00.000000 | 2009-12-17T00:00:00.000000 |
| certa-2009-avi-149 | Vulnérabilité dans mod_perl pour Apache | 2009-04-17T00:00:00.000000 | 2009-12-17T00:00:00.000000 |
| certa-2009-avi-547 | Multiples vulnérabilités dans Mozilla Firefox | 2009-12-16T00:00:00.000000 | 2009-12-16T00:00:00.000000 |