Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-69088 |
6.5 (3.1)
|
WordPress Combo Offers WooCommerce plugin <= 4.2 - Cro… |
Vidish |
Combo Offers WooCommerce |
2025-12-30T10:47:57.866Z | 2026-01-20T14:28:29.668Z |
| CVE-2025-69033 |
6.5 (3.1)
|
WordPress Blog Filter plugin <= 1.7.3 - Cross Site Scr… |
A WP Life |
Blog Filter |
2025-12-30T10:47:57.477Z | 2026-01-20T14:28:29.646Z |
| CVE-2025-69034 |
8.1 (3.1)
|
WordPress Lekker theme <= 1.8 - Local File Inclusion v… |
Mikado-Themes |
Lekker |
2025-12-30T10:47:57.680Z | 2026-01-20T14:28:29.626Z |
| CVE-2025-69024 |
6.5 (3.1)
|
WordPress BizPrint plugin <= 4.6.7 - Broken Access Con… |
bizswoop |
BizPrint |
2025-12-30T10:47:55.715Z | 2026-01-20T14:28:29.626Z |
| CVE-2025-69019 |
6.5 (3.1)
|
WordPress FlippingBook plugin <= 2.0.1 - Cross Site Sc… |
FlippingBook |
FlippingBook |
2025-12-30T10:47:54.668Z | 2026-01-20T14:28:29.563Z |
| CVE-2025-69023 |
4.3 (3.1)
|
WordPress Discussion Board plugin <= 2.5.7 - Broken Ac… |
Marketing Fire |
Discussion Board |
2025-12-30T10:47:55.530Z | 2026-01-20T14:28:29.548Z |
| CVE-2025-69017 |
6.5 (3.1)
|
WordPress RestroPress plugin <= 3.2.4.2 - Cross Site S… |
Magnigenie |
RestroPress |
2025-12-30T10:47:54.276Z | 2026-01-20T14:28:29.548Z |
| CVE-2025-69030 |
5.4 (3.1)
|
WordPress Backpack Traveler theme <= 2.10.3 - Insecure… |
Mikado-Themes |
Backpack Traveler |
2025-12-30T10:47:56.911Z | 2026-01-20T14:28:29.543Z |
| CVE-2025-69012 |
4.3 (3.1)
|
WordPress Event Organiser plugin <= 3.12.8 - Broken Ac… |
Stephen Harris |
Event Organiser |
2025-12-30T10:47:53.274Z | 2026-01-20T14:28:29.543Z |
| CVE-2025-69027 |
5.4 (3.1)
|
WordPress Product Delivery Date for WooCommerce – Lite… |
tychesoftwares |
Product Delivery Date for WooCommerce – Lite |
2025-12-30T10:47:56.343Z | 2026-01-20T14:28:29.539Z |
| CVE-2025-69025 |
4.3 (3.1)
|
WordPress Poptics: AI-Powered Popup Builder for Lead G… |
Aethonic |
Poptics: AI-Powered Popup Builder for Lead Generation, Conversions, Exit-Intent, Email Opt-ins & WooCommerce Sales |
2025-12-30T10:47:55.921Z | 2026-01-20T14:28:29.538Z |
| CVE-2025-69015 |
3.8 (3.1)
|
WordPress Crowdsignal Forms plugin <= 1.7.2 - Broken A… |
Automattic |
Crowdsignal Forms |
2025-12-30T10:47:53.892Z | 2026-01-20T14:28:29.538Z |
| CVE-2025-69031 |
5.3 (3.1)
|
WordPress Arcane theme <= 3.6.6 - Broken Access Contro… |
Skywarrior |
Arcane |
2025-12-30T10:47:57.098Z | 2026-01-20T14:28:29.537Z |
| CVE-2025-69026 |
4.3 (3.1)
|
WordPress PopupKit plugin <= 2.1.5 - Sensitive Data Ex… |
Roxnor |
PopupKit |
2025-12-30T10:47:56.141Z | 2026-01-20T14:28:29.533Z |
| CVE-2025-69028 |
5.3 (3.1)
|
WordPress weForms plugin <= 1.6.25 - Broken Access Con… |
BoldGrid |
weForms |
2025-12-30T10:47:56.532Z | 2026-01-20T14:28:29.529Z |
| CVE-2025-69014 |
4.9 (3.1)
|
WordPress Youzify plugin <= 1.3.5 - Server Side Reques… |
Youzify |
Youzify |
2025-12-30T10:47:53.707Z | 2026-01-20T14:28:29.525Z |
| CVE-2025-69006 |
5.9 (3.1)
|
WordPress AM Events plugin <= 1.13.1 - Cross Site Scri… |
Atte Moisio |
AM Events |
2025-12-30T10:47:52.307Z | 2026-01-20T14:28:29.524Z |
| CVE-2025-69032 |
5.4 (3.1)
|
WordPress FiveStar theme <= 1.7 - Insecure Direct Obje… |
Mikado-Themes |
FiveStar |
2025-12-30T10:47:57.290Z | 2026-01-20T14:28:29.523Z |
| CVE-2025-69029 |
5.4 (3.1)
|
WordPress Struktur theme <= 2.5.1 - Insecure Direct Ob… |
Select-Themes |
Struktur |
2025-12-30T10:47:56.721Z | 2026-01-20T14:28:29.516Z |
| CVE-2025-69007 |
5.9 (3.1)
|
WordPress Popping Sidebars and Widgets Light plugin <=… |
OTWthemes |
Popping Sidebars and Widgets Light |
2025-12-30T10:47:52.485Z | 2026-01-20T14:28:29.508Z |
| CVE-2025-69021 |
5.4 (3.1)
|
WordPress Popup box plugin <= 6.0.7 - Cross Site Reque… |
Ays Pro |
Popup box |
2025-12-30T10:47:55.134Z | 2026-01-20T14:28:29.507Z |
| CVE-2025-69020 |
6.5 (3.1)
|
WordPress Newsletters plugin <= 4.12 - Cross Site Scri… |
Tribulant Software |
Newsletters |
2025-12-30T10:47:54.856Z | 2026-01-20T14:28:29.503Z |
| CVE-2025-69018 |
6.5 (3.1)
|
WordPress Web Directory Free plugin <= 1.7.12 - Cross … |
Shamalli |
Web Directory Free |
2025-12-30T10:47:54.463Z | 2026-01-20T14:28:29.503Z |
| CVE-2025-69010 |
5.3 (3.1)
|
WordPress Themebeez Toolkit plugin <= 1.3.5 - Broken A… |
themebeez |
Themebeez Toolkit |
2025-12-30T10:47:53.090Z | 2026-01-20T14:28:29.490Z |
| CVE-2025-69009 |
5.3 (3.1)
|
WordPress Medicalequipment theme <= 1.0.9 - Broken Acc… |
kamleshyadav |
Medicalequipment |
2025-12-30T10:47:52.874Z | 2026-01-20T14:28:29.485Z |
| CVE-2025-69022 |
5.4 (3.1)
|
WordPress HR Management Lite plugin <= 3.5 - Broken Ac… |
Weblizar - WordPress Themes & Plugin |
HR Management Lite |
2025-12-30T10:47:55.337Z | 2026-01-20T14:28:29.476Z |
| CVE-2025-68997 |
5.3 (3.1)
|
WordPress wpDiscuz plugin <= 7.6.40 - Insecure Direct … |
AdvancedCoding |
wpDiscuz |
2025-12-30T10:47:51.914Z | 2026-01-20T14:28:29.460Z |
| CVE-2025-69013 |
4.3 (3.1)
|
WordPress Stratum plugin <= 1.6.1 - Broken Access Cont… |
jetmonsters |
Stratum |
2025-12-30T10:47:53.465Z | 2026-01-20T14:28:29.448Z |
| CVE-2025-68995 |
4.3 (3.1)
|
WordPress My Sticky Elements plugin <= 2.3.3 - Broken … |
Gal Dubinski |
My Sticky Elements |
2025-12-30T10:47:51.492Z | 2026-01-20T14:28:29.446Z |
| CVE-2025-69008 |
5.9 (3.1)
|
WordPress Inboxify Sign Up Form plugin <= 1.0.4 - Cros… |
Inboxify |
Inboxify Sign Up Form |
2025-12-30T10:47:52.689Z | 2026-01-20T14:28:29.445Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2022-50461 |
N/A
|
net: ethernet: ti: am65-cpsw: Fix PM runtime leakage i… |
Linux |
Linux |
2025-10-01T11:45:33.300Z | 2025-10-01T11:45:33.300Z |
| CVE-2022-50460 |
N/A
|
cifs: Fix xid leak in cifs_flock() |
Linux |
Linux |
2025-10-01T11:45:32.484Z | 2025-10-01T11:45:32.484Z |
| CVE-2025-14823 |
5.3 (3.1)
|
Certificate Signing Extension Returns Encrypted Values |
ConnectWise |
ScreenConnect |
2025-12-18T15:50:06.929Z | 2025-12-18T16:04:17.893Z |
| CVE-2026-21430 |
7 (4.0)
|
Emlog: CSRF chained with stored XSS leads to ATO |
emlog |
emlog |
2026-01-02T18:44:24.192Z | 2026-01-05T20:38:09.299Z |
| CVE-2026-22606 |
8.9 (4.0)
|
Fickling has a bypass via runpy.run_path() and runpy.r… |
trailofbits |
fickling |
2026-01-10T01:35:00.797Z | 2026-01-13T19:58:14.707Z |
| CVE-2026-22607 |
8.9 (4.0)
|
Fickling Blocklist Bypass: cProfile.run() |
trailofbits |
fickling |
2026-01-10T01:35:04.920Z | 2026-01-13T21:49:38.169Z |
| CVE-2026-22608 |
8.9 (4.0)
|
Fickling vulnerable to use of ctypes and pydoc gadget … |
trailofbits |
fickling |
2026-01-10T01:35:11.291Z | 2026-01-13T19:57:12.040Z |
| CVE-2026-22612 |
8.9 (4.0)
|
Fickling vulnerable to detection bypass due to "builti… |
trailofbits |
fickling |
2026-01-10T01:35:25.197Z | 2026-01-12T18:18:29.466Z |
| CVE-2026-22609 |
8.9 (4.0)
|
Fickling has Static Analysis Bypass via Incomplete Dan… |
trailofbits |
fickling |
2026-01-10T01:35:18.152Z | 2026-01-14T19:51:31.740Z |
| CVE-2025-68949 |
5.3 (3.1)
|
n8n has a Webhook Node IP Whitelist Bypass via Partial… |
n8n-io |
n8n |
2026-01-13T18:43:20.189Z | 2026-01-13T19:00:47.909Z |
| CVE-2026-22861 |
8.8 (3.1)
|
iccDEV has a heap-buffer-overflow in SIccCalcOp::Descr… |
InternationalColorConsortium |
iccDEV |
2026-01-13T20:20:39.236Z | 2026-01-13T21:45:47.596Z |
| CVE-2026-23497 |
1.3 (4.0)
|
Frappe LMS has a Stored XSS via Unsanitized Image File… |
frappe |
lms |
2026-01-14T18:25:52.052Z | 2026-01-14T21:15:21.105Z |
| CVE-2026-22781 |
10 (4.0)
|
TinyWeb CGI Command Injection |
maximmasiutin |
TinyWeb |
2026-01-12T18:23:00.512Z | 2026-01-12T18:50:57.979Z |
| CVE-2026-22783 |
9.6 (3.1)
|
Iris Allows Arbitrary File Deletion via Mass Assignmen… |
dfir-iris |
iris-web |
2026-01-12T18:27:38.259Z | 2026-01-12T18:52:04.765Z |
| CVE-2026-22784 |
2.3 (4.0)
|
Lychee cross-album password propagation on Album unlocking |
LycheeOrg |
Lychee |
2026-01-12T18:37:55.183Z | 2026-01-12T18:55:55.328Z |
| CVE-2026-22804 |
8 (3.1)
|
Termix has a Stored XSS in File Manager leading to Loc… |
Termix-SSH |
Termix |
2026-01-12T22:14:03.762Z | 2026-01-13T19:07:57.276Z |
| CVE-2025-68428 |
9.2 (4.0)
|
jsPDF has Local File Inclusion/Path Traversal vulnerability |
parallax |
jsPDF |
2026-01-05T21:43:55.169Z | 2026-01-06T17:38:46.470Z |
| CVE-2026-21445 |
8.8 (4.0)
|
Langflow Missing Authentication on Critical API Endpoints |
langflow-ai |
langflow |
2026-01-02T19:11:24.451Z | 2026-02-26T15:04:59.539Z |
| CVE-2025-70753 |
7.5 (3.1)
|
Tenda AX-1806 v1.0.0.1 was discovered to contain … |
n/a |
n/a |
2026-01-13T00:00:00.000Z | 2026-01-16T15:17:17.445Z |
| CVE-2025-71024 |
7.5 (3.1)
|
Tenda AX-3 v16.03.12.10_CN was discovered to cont… |
n/a |
n/a |
2026-01-13T00:00:00.000Z | 2026-01-16T15:36:46.523Z |
| CVE-2025-71025 |
7.5 (3.1)
|
Tenda AX-3 v16.03.12.10_CN was discovered to cont… |
n/a |
n/a |
2026-01-13T00:00:00.000Z | 2026-01-16T15:35:26.308Z |
| CVE-2025-71027 |
7.5 (3.1)
|
Tenda AX-3 v16.03.12.10_CN was discovered to cont… |
n/a |
n/a |
2026-01-13T00:00:00.000Z | 2026-01-16T15:33:13.870Z |
| CVE-2025-71026 |
7.5 (3.1)
|
Tenda AX-3 v16.03.12.10_CN was discovered to cont… |
n/a |
n/a |
2026-01-13T00:00:00.000Z | 2026-01-16T15:34:39.045Z |
| CVE-2025-69990 |
9.1 (3.1)
|
phpgurukul News Portal Project V4.1 has an Arbitr… |
n/a |
n/a |
2026-01-13T00:00:00.000Z | 2026-01-14T14:30:04.693Z |
| CVE-2025-69991 |
9.8 (3.1)
|
phpgurukul News Portal Project V4.1 is vulnerable… |
n/a |
n/a |
2026-01-13T00:00:00.000Z | 2026-01-14T14:49:09.164Z |
| CVE-2025-69992 |
9.8 (3.1)
|
phpgurukul News Portal Project V4.1 has File Uplo… |
n/a |
n/a |
2026-01-13T00:00:00.000Z | 2026-01-14T14:47:29.156Z |
| CVE-2025-43386 |
7.8 (3.1)
|
An out-of-bounds access issue was addressed with … |
Apple |
tvOS |
2025-11-04T01:17:51.013Z | 2026-02-26T17:47:32.485Z |
| CVE-2025-25290 |
5.3 (3.1)
|
@octokit/request has a Regular Expression in fetchWrap… |
octokit |
request.js |
2025-02-14T19:37:47.110Z | 2026-01-16T17:29:06.418Z |
| CVE-2025-24980 |
6.9 (4.0)
|
Pimcore Admin Classic Bundle allows user enumeration |
pimcore |
admin-ui-classic-bundle |
2025-02-07T19:56:10.439Z | 2026-01-16T17:17:53.971Z |
| CVE-2025-24022 |
8.6 (3.1)
|
iTop server vulnerable to portal code injection |
Combodo |
iTop |
2025-05-14T14:57:37.960Z | 2026-01-20T15:37:55.868Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2022-50461 | In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ti: am65-cpsw: … | 2025-10-01T12:15:39.560 | 2026-01-16T19:14:42.013 |
| fkie_cve-2022-50460 | In the Linux kernel, the following vulnerability has been resolved: cifs: Fix xid leak in cifs_flo… | 2025-10-01T12:15:39.420 | 2026-01-16T19:14:10.807 |
| fkie_cve-2025-14823 | In deployments using the ScreenConnect™ Certificate Signing Extension, encrypted configuration valu… | 2025-12-18T16:15:52.503 | 2026-01-16T19:10:48.387 |
| fkie_cve-2026-21430 | Emlog is an open source website building system. In version 2.5.23, article creation functionality … | 2026-01-02T19:15:47.697 | 2026-01-16T19:07:18.667 |
| fkie_cve-2026-22606 | Fickling is a Python pickling decompiler and static analyzer. Fickling versions up to and including… | 2026-01-10T02:15:49.637 | 2026-01-16T18:59:35.140 |
| fkie_cve-2026-22607 | Fickling is a Python pickling decompiler and static analyzer. Fickling versions up to and including… | 2026-01-10T02:15:49.780 | 2026-01-16T18:58:22.570 |
| fkie_cve-2026-22608 | Fickling is a Python pickling decompiler and static analyzer. Prior to version 0.1.7, both ctypes a… | 2026-01-10T02:15:49.917 | 2026-01-16T18:57:26.013 |
| fkie_cve-2026-22612 | Fickling is a Python pickling decompiler and static analyzer. Prior to version 0.1.7, Fickling is v… | 2026-01-10T02:15:50.187 | 2026-01-16T18:56:30.137 |
| fkie_cve-2026-22609 | Fickling is a Python pickling decompiler and static analyzer. Prior to version 0.1.7, the unsafe_im… | 2026-01-10T02:15:50.050 | 2026-01-16T18:52:26.077 |
| fkie_cve-2025-68949 | n8n is an open source workflow automation platform. From 1.36.0 to before 2.2.0, the Webhook node’s… | 2026-01-13T19:16:15.637 | 2026-01-16T18:47:32.203 |
| fkie_cve-2026-22861 | iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and appl… | 2026-01-13T21:15:54.437 | 2026-01-16T18:46:06.070 |
| fkie_cve-2026-23497 | Frappe Learning Management System (LMS) is a learning system that helps users structure their conte… | 2026-01-14T19:16:48.283 | 2026-01-16T18:44:56.547 |
| fkie_cve-2026-22781 | TinyWeb is a web server (HTTP, HTTPS) written in Delphi for Win32. TinyWeb HTTP Server before versi… | 2026-01-12T19:16:03.787 | 2026-01-16T18:44:23.120 |
| fkie_cve-2026-22783 | Iris is a web collaborative platform that helps incident responders share technical details during … | 2026-01-12T19:16:03.953 | 2026-01-16T18:42:18.303 |
| fkie_cve-2026-22784 | Lychee is a free, open-source photo-management tool. Prior to 7.1.0, an authorization vulnerability… | 2026-01-12T19:16:04.127 | 2026-01-16T18:39:42.707 |
| fkie_cve-2026-22804 | Termix is a web-based server management platform with SSH terminal, tunneling, and file editing cap… | 2026-01-12T23:15:53.063 | 2026-01-16T18:37:32.920 |
| fkie_cve-2025-68428 | jsPDF is a library to generate PDFs in JavaScript. Prior to version 4.0.0, user control of the firs… | 2026-01-05T22:15:51.977 | 2026-01-16T18:34:24.440 |
| fkie_cve-2026-21445 | Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.7… | 2026-01-02T20:16:17.880 | 2026-01-16T18:32:17.060 |
| fkie_cve-2025-70753 | Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the security_5g parameter of t… | 2026-01-13T16:16:05.090 | 2026-01-16T18:25:02.577 |
| fkie_cve-2025-71024 | Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the serviceName2 parameter… | 2026-01-13T16:16:05.303 | 2026-01-16T18:24:43.870 |
| fkie_cve-2025-71025 | Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the cloneType2 parameter o… | 2026-01-13T16:16:05.413 | 2026-01-16T18:24:25.410 |
| fkie_cve-2025-71027 | Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the wanMTU2 parameter of t… | 2026-01-13T16:16:05.630 | 2026-01-16T18:24:14.237 |
| fkie_cve-2025-71026 | Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the wanSpeed2 parameter of… | 2026-01-13T16:16:05.520 | 2026-01-16T18:23:52.100 |
| fkie_cve-2025-69990 | phpgurukul News Portal Project V4.1 has an Arbitrary File Deletion Vulnerability in remove_file.php… | 2026-01-13T16:16:04.767 | 2026-01-16T18:23:21.523 |
| fkie_cve-2025-69991 | phpgurukul News Portal Project V4.1 is vulnerable to SQL Injection in check_availablity.php. | 2026-01-13T16:16:04.877 | 2026-01-16T18:23:13.180 |
| fkie_cve-2025-69992 | phpgurukul News Portal Project V4.1 has File Upload Vulnerability via upload.php, which enables the… | 2026-01-13T16:16:04.987 | 2026-01-16T18:23:02.813 |
| fkie_cve-2025-43386 | An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in t… | 2025-11-04T02:15:45.590 | 2026-01-16T18:16:07.643 |
| fkie_cve-2025-25290 | @octokit/request sends parameterized requests to GitHub’s APIs with sensible defaults in browsers a… | 2025-02-14T20:15:35.593 | 2026-01-16T18:16:07.137 |
| fkie_cve-2025-24980 | pimcore/admin-ui-classic-bundle provides a Backend UI for Pimcore. In affected versions an error me… | 2025-02-07T20:15:33.933 | 2026-01-16T18:16:06.993 |
| fkie_cve-2025-24022 | iTop is an web based IT Service Management tool. Prior to versions 2.7.12, 3.1.3, and 3.2.1, server… | 2025-05-14T15:15:56.293 | 2026-01-16T18:16:06.313 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-xphh-5v4r-r3rx |
8.1 (3.1)
|
PsiTransfer has Zip Slip Path Traversal via TAR Archive Download | 2025-12-30T19:25:04Z | 2025-12-30T19:25:04Z |
| ghsa-pc98-fxf5-853j |
4.7 (3.1)
2.0 (4.0)
|
A security flaw has been discovered in BiggiDroid Simple PHP CMS 1.0. This impacts an unknown funct… | 2025-12-30T18:30:20Z | 2025-12-30T18:30:20Z |
| ghsa-g7wc-fgqc-j967 |
3.5 (3.1)
2.0 (4.0)
|
A weakness has been identified in Edimax BR-6208AC 1.02/1.03. Affected by this issue is the functio… | 2025-12-30T18:30:20Z | 2025-12-30T18:30:20Z |
| ghsa-xvq8-m37c-gmmv |
7.3 (3.1)
5.5 (4.0)
|
A security flaw has been discovered in Edimax BR-6208AC 1.02/1.03. Affected by this vulnerability i… | 2025-12-30T18:30:19Z | 2025-12-30T18:30:19Z |
| ghsa-pw2q-c8xj-w9fw |
9.8 (3.1)
8.9 (4.0)
|
A vulnerability was determined in Tenda W6-S 1.0.0.4(510). This impacts an unknown function of the … | 2025-12-30T18:30:18Z | 2025-12-30T18:30:18Z |
| ghsa-grrf-q8mm-c5x7 |
6.3 (3.1)
2.1 (4.0)
|
A vulnerability was found in Tenda W6-S 1.0.0.4(510). This affects the function TendaAte of the fil… | 2025-12-30T18:30:18Z | 2025-12-30T18:30:18Z |
| ghsa-h52r-r84q-8jgv |
6.1 (3.1)
|
The Advance WP Query Search Filter WordPress plugin through 1.0.10 does not sanitise and escape a p… | 2025-12-30T06:30:19Z | 2025-12-30T18:30:17Z |
| ghsa-94c2-8jj7-8pjp |
6.1 (3.1)
|
The Advance WP Query Search Filter WordPress plugin through 1.0.10 does not sanitise and escape a p… | 2025-12-30T06:30:19Z | 2025-12-30T18:30:17Z |
| ghsa-w7q9-f5xc-px27 |
7.5 (3.1)
|
Buffer overflow vulnerability in function dcputchar in decompile.c in libming 0.4.8. | 2025-12-29T18:30:55Z | 2025-12-30T18:30:16Z |
| ghsa-w539-2pgj-g759 |
7.5 (3.1)
|
An issue was discovered in function d_print_comp_inner in file cp-demangle.c in BinUtils 2.26 allow… | 2025-12-29T18:30:55Z | 2025-12-30T18:30:16Z |
| ghsa-vphr-3984-5c8w |
7.5 (3.1)
|
An issue was discovered in function d_discriminator in file cp-demangle.c in BinUtils 2.26 allows a… | 2025-12-29T18:30:55Z | 2025-12-30T18:30:16Z |
| ghsa-rhg5-g54m-7cq3 |
7.5 (3.1)
|
A buffer overflow vulnerability in function gnu_special in file cplus-dem.c in BinUtils 2.26 allows… | 2025-12-29T18:30:55Z | 2025-12-30T18:30:16Z |
| ghsa-h793-prqc-9r54 |
6.2 (3.1)
|
A stack overflow in the src/main.c component of GNU Unrtf v0.21.10 allows attackers to cause a Deni… | 2025-12-23T18:30:27Z | 2025-12-30T18:30:16Z |
| ghsa-cj98-23mv-wprf |
7.5 (3.1)
|
givanz VvvebJs 1.7.2 is vulnerable to Directory Traversal via scan.php. | 2025-12-29T21:30:25Z | 2025-12-30T18:30:16Z |
| ghsa-97m2-wmvc-crmh |
7.5 (3.1)
|
Buffer overflow vulnerability in function strcat in asan_interceptors.cpp in libming 0.4.8. | 2025-12-29T18:30:55Z | 2025-12-30T18:30:16Z |
| ghsa-5r6q-cg35-jr9q |
9.1 (3.1)
|
A critical vulnerability has been identified in givanz VvvebJs 1.7.2, which allows both Server-Side… | 2025-12-29T21:30:25Z | 2025-12-30T18:30:16Z |
| ghsa-59x4-7jm9-mrhq |
9.8 (3.1)
|
Improper input handling in /Grocery/search_products_itname.php inPuneethReddyHC event-management 1.… | 2025-12-23T21:30:29Z | 2025-12-30T18:30:16Z |
| ghsa-2mm6-624x-fqrr |
6.1 (3.1)
2.4 (4.0)
|
Emails sent by pretix can utilize placeholders that will be filled with customer data. For example,… | 2025-11-27T12:30:28Z | 2025-12-30T18:30:15Z |
| ghsa-h78w-g73r-8jrv |
9.3 (4.0)
|
An information disclosure vulnerability in Phloc Webscopes 7.0.0 allows local attackers with access… | 2024-06-26T00:31:43Z | 2025-12-30T18:30:14Z |
| ghsa-8wpr-639p-ccrj |
6.9 (4.0)
|
Nest has a Fastify URL Encoding Middleware Bypass (TOCTOU) | 2025-12-30T15:32:44Z | 2025-12-30T15:32:44Z |
| ghsa-9cg9-4h4f-j6fg |
7.5 (3.1)
|
phpMyFAQ has unauthenticated config backup download via /api/setup/backup | 2025-12-30T15:31:19Z | 2025-12-30T15:31:19Z |
| ghsa-5pmw-cmp3-g6wx |
5.6 (3.1)
6.3 (4.0)
|
A vulnerability was detected in beecue FastBee up to 2.1. Impacted is the function getRootElement o… | 2025-12-30T15:30:36Z | 2025-12-30T15:30:37Z |
| ghsa-r7xj-f632-276f |
3.5 (3.1)
5.1 (4.0)
|
A weakness has been identified in zhujunliang3 work_platform up to 6bc5a50bb527ce27f7906d11ea6ec139… | 2025-12-30T15:30:36Z | 2025-12-30T15:30:36Z |
| ghsa-r67g-vmvr-rvjq |
|
In the Linux kernel, the following vulnerability has been resolved: crypto: qat - fix out-of-bound… | 2025-12-30T15:30:36Z | 2025-12-30T15:30:36Z |
| ghsa-pc8q-ch37-jjrm |
4.7 (3.1)
2.0 (4.0)
|
A security vulnerability has been detected in 08CMS Novel System up to 3.4. This issue affects some… | 2025-12-30T15:30:36Z | 2025-12-30T15:30:36Z |
| ghsa-mp4j-2q4v-gvfv |
4.3 (3.1)
|
The Strong Testimonials plugin for WordPress is vulnerable to unauthorized modification of data due… | 2025-12-30T15:30:36Z | 2025-12-30T15:30:36Z |
| ghsa-jx25-4v2r-83c2 |
|
In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv/sriov: perform… | 2025-12-30T15:30:35Z | 2025-12-30T15:30:36Z |
| ghsa-jp9m-rpm6-97j7 |
|
In the Linux kernel, the following vulnerability has been resolved: dm: fix a race condition in re… | 2025-12-30T15:30:36Z | 2025-12-30T15:30:36Z |
| ghsa-hrq7-rg66-qqxv |
|
In the Linux kernel, the following vulnerability has been resolved: media: af9005: Fix null-ptr-de… | 2025-12-30T15:30:36Z | 2025-12-30T15:30:36Z |
| ghsa-gjjf-pwjw-673q |
|
In the Linux kernel, the following vulnerability has been resolved: platform/x86/amd: pmc: Fix mem… | 2025-12-30T15:30:36Z | 2025-12-30T15:30:36Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-25107 | WikiDiscover is an extension designed for use with a CreateWiki managed farm to display w… | 2024-02-06T06:02:56.124068Z |
| gsd-2024-25112 | Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modif… | 2024-02-06T06:02:56.123725Z |
| gsd-2024-25099 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-02-06T06:02:56.123380Z |
| gsd-2024-25123 | MSS (Mission Support System) is an open source package designed for planning atmospheric … | 2024-02-06T06:02:56.122765Z |
| gsd-2024-25095 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-06T06:02:56.122024Z |
| gsd-2024-25094 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-02-06T06:02:56.121568Z |
| gsd-2024-25098 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-02-06T06:02:56.120906Z |
| gsd-2024-25128 | Flask-AppBuilder is an application development framework, built on top of Flask. When Fla… | 2024-02-06T06:02:56.120543Z |
| gsd-2024-25132 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-06T06:02:56.114827Z |
| gsd-2024-25136 | There is a function in AutomationDirect C-MORE EA9 HMI that allows an attacker to send a… | 2024-02-06T06:02:56.113720Z |
| gsd-2024-25111 | Squid is a web proxy cache. Starting in version 3.5.27 and prior to version 6.8, Squid ma… | 2024-02-06T06:02:56.112283Z |
| gsd-2024-25109 | ManageWiki is a MediaWiki extension allowing users to manage wikis. Special:ManageWiki do… | 2024-02-06T06:02:56.111152Z |
| gsd-2024-25103 | This vulnerability exists in AppSamvid software due to the usage of vulnerable and outdat… | 2024-02-06T06:02:56.110821Z |
| gsd-2024-25131 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-06T06:02:56.109181Z |
| gsd-2024-25097 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-02-06T06:02:56.108704Z |
| gsd-2024-25114 | Collabora Online is a collaborative online office suite based on LibreOffice technology. … | 2024-02-06T06:02:56.108130Z |
| gsd-2024-25108 | Pixelfed is an open source photo sharing platform. When processing requests authorization… | 2024-02-06T06:02:56.106869Z |
| gsd-2024-25100 | Deserialization of Untrusted Data vulnerability in WP Swings Coupon Referral Program.This… | 2024-02-06T06:02:56.104499Z |
| gsd-2024-25121 | TYPO3 is an open source PHP based web content management system released under the GNU GP… | 2024-02-06T06:02:56.104068Z |
| gsd-2024-25093 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-02-06T06:02:56.103407Z |
| gsd-2024-25118 | TYPO3 is an open source PHP based web content management system released under the GNU GP… | 2024-02-06T06:02:56.101687Z |
| gsd-2024-25135 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-06T06:02:56.099925Z |
| gsd-2024-25110 | The UAMQP is a general purpose C library for AMQP 1.0. During a call to open_get_offered_… | 2024-02-06T06:02:56.099064Z |
| gsd-2024-25101 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-02-06T06:02:56.098722Z |
| gsd-2024-25119 | TYPO3 is an open source PHP based web content management system released under the GNU GP… | 2024-02-06T06:02:56.096924Z |
| gsd-2024-25115 | RedisBloom adds a set of probabilistic data structures to Redis. Starting in version 2.0.… | 2024-02-06T06:02:56.095523Z |
| gsd-2024-25113 | ** REJECT ** This CVE was misassigned. See CVE-2023-47623 for the canonical reference. | 2024-02-06T06:02:56.095183Z |
| gsd-2024-25106 | OpenObserve is a observability platform built specifically for logs, metrics, traces, ana… | 2024-02-06T06:02:56.092414Z |
| gsd-2024-25116 | RedisBloom adds a set of probabilistic data structures to Redis. Starting in version 2.0.… | 2024-02-06T06:02:56.092077Z |
| gsd-2024-25127 | The format of the source doesn't require a description, click on the link for more details. | 2024-02-06T06:02:56.090888Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-183183 | Malicious code in kidt-avog-u (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183182 | Malicious code in kidt-aog-uvuifaafiv (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183181 | Malicious code in kidt-aog-uvuffaifaafiv (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183180 | Malicious code in kidt-aog-uvuffacfeaaifaafiv (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183179 | Malicious code in kidt-aog-uvuffacaifaafiv (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183178 | Malicious code in kidt-aog-uvuffaaifaafiv (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183177 | Malicious code in kidt-aog-uvufaifaafiv (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183176 | Malicious code in kidt-aog-uvufafiv (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183175 | Malicious code in kidt-aog-uvufaafiv (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183174 | Malicious code in kidt-aog-uv (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183173 | Malicious code in kidt-aog-ufav (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183172 | Malicious code in kidt-aog-ufaiv (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183171 | Malicious code in kidt-aog-ufafiv (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183170 | Malicious code in kidt-aog-u (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183169 | Malicious code in kidt-acvog-uu (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183168 | Malicious code in item-ut-duoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183167 | Malicious code in item-ifut-duoa (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183166 | Malicious code in item-atm-kujoloi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183165 | Malicious code in item-atm-kujolnoi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183164 | Malicious code in item-atm-kujolioaknoi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183163 | Malicious code in item-atm-kujolinoi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183162 | Malicious code in item-atm-kujolianoi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183161 | Malicious code in item-atm-kujoliaknoi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183160 | Malicious code in item-atm-kujoli (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183159 | Malicious code in item-atm-kujoi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183158 | Malicious code in item-atm-kuji (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183157 | Malicious code in item-atm-kujaulahubi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183156 | Malicious code in item-atm-kujaui (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183155 | Malicious code in item-atm-kujauhubi (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| mal-2025-183154 | Malicious code in item-atm-kujai (npm) | 2025-11-12T22:25:03Z | 2025-11-12T22:25:03Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2023:3349 | Red Hat Security Advisory: kernel security and bug fix update | 2023-05-30T15:10:11+00:00 | 2025-11-21T18:40:57+00:00 |
| rhsa-2023:3325 | Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.1.7 security fixes and container updates | 2023-05-25T16:22:12+00:00 | 2025-11-21T18:40:56+00:00 |
| rhsa-2023:3297 | Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.7.4 security fixes and container updates | 2023-05-24T18:02:01+00:00 | 2025-11-21T18:40:53+00:00 |
| rhsa-2023:3296 | Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.2.4 security fixes and container updates | 2023-05-24T15:23:14+00:00 | 2025-11-21T18:40:53+00:00 |
| rhsa-2023:3291 | Red Hat Security Advisory: rh-ruby27-ruby security, bug fix, and enhancement update | 2023-05-24T08:59:45+00:00 | 2025-11-21T18:40:53+00:00 |
| rhsa-2023:3280 | Red Hat Security Advisory: rh-git227-git security update | 2023-05-23T14:47:02+00:00 | 2025-11-21T18:40:52+00:00 |
| rhsa-2023:3277 | Red Hat Security Advisory: kernel security update | 2023-05-23T14:06:57+00:00 | 2025-11-21T18:40:52+00:00 |
| rhsa-2023:3278 | Red Hat Security Advisory: kpatch-patch security update | 2023-05-23T14:06:14+00:00 | 2025-11-21T18:40:51+00:00 |
| rhsa-2023:3276 | Red Hat Security Advisory: sudo security update | 2023-05-23T14:06:45+00:00 | 2025-11-21T18:40:51+00:00 |
| rhsa-2023:3264 | Red Hat Security Advisory: sudo security update | 2023-05-23T09:28:49+00:00 | 2025-11-21T18:40:50+00:00 |
| rhsa-2023:3263 | Red Hat Security Advisory: git security update | 2023-05-23T09:25:47+00:00 | 2025-11-21T18:40:50+00:00 |
| rhsa-2023:3262 | Red Hat Security Advisory: sudo security update | 2023-05-23T09:30:42+00:00 | 2025-11-21T18:40:50+00:00 |
| rhsa-2023:3248 | Red Hat Security Advisory: git security update | 2023-05-22T07:07:11+00:00 | 2025-11-21T18:40:49+00:00 |
| rhsa-2023:3247 | Red Hat Security Advisory: git security update | 2023-05-22T07:12:50+00:00 | 2025-11-21T18:40:49+00:00 |
| rhsa-2023:3246 | Red Hat Security Advisory: git security update | 2023-05-22T07:11:28+00:00 | 2025-11-21T18:40:49+00:00 |
| rhsa-2023:3245 | Red Hat Security Advisory: git security update | 2023-05-22T07:08:06+00:00 | 2025-11-21T18:40:49+00:00 |
| rhsa-2023:3243 | Red Hat Security Advisory: git security update | 2023-05-22T06:55:20+00:00 | 2025-11-21T18:40:49+00:00 |
| rhsa-2023:3221 | Red Hat Security Advisory: thunderbird security update | 2023-05-18T06:42:28+00:00 | 2025-11-21T18:40:47+00:00 |
| rhsa-2023:3220 | Red Hat Security Advisory: firefox security update | 2023-05-18T06:42:22+00:00 | 2025-11-21T18:40:47+00:00 |
| rhsa-2023:3216 | Red Hat Security Advisory: OpenShift Container Platform 4.10.60 packages and security update | 2023-05-24T13:26:10+00:00 | 2025-11-21T18:40:47+00:00 |
| rhsa-2023:3192 | Red Hat Security Advisory: git security update | 2023-05-17T15:23:52+00:00 | 2025-11-21T18:40:45+00:00 |
| rhsa-2023:3191 | Red Hat Security Advisory: kpatch-patch security update | 2023-05-17T15:27:55+00:00 | 2025-11-21T18:40:44+00:00 |
| rhsa-2023:3190 | Red Hat Security Advisory: kernel security update | 2023-05-17T15:27:55+00:00 | 2025-11-21T18:40:44+00:00 |
| rhsa-2023:3189 | Red Hat Security Advisory: emacs security update | 2023-05-17T15:27:38+00:00 | 2025-11-21T18:40:44+00:00 |
| rhsa-2023:3185 | Red Hat Security Advisory: Red Hat AMQ Broker 7.10.3 release and security update | 2023-05-17T13:58:49+00:00 | 2025-11-21T18:40:43+00:00 |
| rhsa-2023:3178 | Red Hat Security Advisory: apr-util security update | 2023-05-17T12:44:32+00:00 | 2025-11-21T18:40:43+00:00 |
| rhsa-2023:3177 | Red Hat Security Advisory: apr-util security update | 2023-05-17T12:37:11+00:00 | 2025-11-21T18:40:43+00:00 |
| rhsa-2023:3155 | Red Hat Security Advisory: thunderbird security update | 2023-05-16T19:48:14+00:00 | 2025-11-21T18:40:41+00:00 |
| rhsa-2023:3154 | Red Hat Security Advisory: thunderbird security update | 2023-05-16T19:46:12+00:00 | 2025-11-21T18:40:41+00:00 |
| rhsa-2023:3153 | Red Hat Security Advisory: thunderbird security update | 2023-05-16T19:44:05+00:00 | 2025-11-21T18:40:41+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2020-14619 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). | 2020-07-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-14614 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-07-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-14597 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-07-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-14591 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Audit Plug-in). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). | 2020-07-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-14586 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-07-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-14576 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: UDF). Supported versions that are affected are 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). | 2020-07-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-14575 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-07-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-14568 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-07-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-14559 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 5.6.48 and prior 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N). | 2020-07-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-14553 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Pluggable Auth). Supported versions that are affected are 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 4.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N). | 2020-07-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-14550 | Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.48 and prior 5.7.30 and prior and 8.0.20 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H). | 2020-07-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-14547 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-07-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-14540 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2020-07-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-14539 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.48 and prior 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). | 2020-07-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-14155 | libpcre in PCRE before 8.44 allows an integer overflow via a large number after a (?C substring. | 2020-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-13974 | An issue was discovered in the Linux kernel 4.4 through 5.7.1. drivers/tty/vt/keyboard.c has an integer overflow if k_ascii is called several times in a row aka CID-b86dab054059. NOTE: Members in the community argue that the integer overflow does not lead to a security issue in this case. | 2020-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-13800 | ati-vga in hw/display/ati.c in QEMU 4.2.0 allows guest OS users to trigger infinite recursion via a crafted mm_index value during an ati_mm_read or ati_mm_write call. | 2020-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-13791 | hw/pci/pci.c in QEMU 4.2.0 allows guest OS users to trigger an out-of-bounds access by providing an address near the end of the PCI configuration space. | 2020-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-13777 | GnuTLS 3.6.x before 3.6.14 uses incorrect cryptography for encrypting a session ticket (a loss of confidentiality in TLS 1.2 and an authentication bypass in TLS 1.3). The earliest affected version is 3.6.4 (2018-09-24) because of an error in a 2018-09-18 commit. Until the first key rotation the TLS server always uses wrong data in place of an encryption key derived from an application. | 2020-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-13776 | systemd through v245 mishandles numerical usernames such as ones composed of decimal digits or 0x followed by hex digits as demonstrated by use of root privileges when privileges of the 0x0 user account were intended. NOTE: this issue exists because of an incomplete fix for CVE-2017-1000082. | 2020-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-13754 | hw/pci/msix.c in QEMU 4.2.0 allows guest OS users to trigger an out-of-bounds access via a crafted address in an msi-x mmio operation. | 2020-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-13659 | address_space_map in exec.c in QEMU 4.2.0 can trigger a NULL pointer dereference related to BounceBuffer. | 2020-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-13362 | In QEMU 5.0.0 and earlier megasas_lookup_frame in hw/scsi/megasas.c has an out-of-bounds read via a crafted reply_queue_head field from a guest OS user. | 2020-05-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-13361 | In QEMU 5.0.0 and earlier es1370_transfer_audio in hw/audio/es1370.c does not properly validate the frame count which allows guest OS users to trigger an out-of-bounds access during an es1370_write() operation. | 2020-05-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-13253 | sd_wp_addr in hw/sd/sd.c in QEMU 4.2.0 uses an unvalidated address which leads to an out-of-bounds read during sdhci_write() operations. A guest OS user can crash the QEMU process. | 2020-05-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-12888 | The VFIO PCI driver in the Linux kernel through 5.6.13 mishandles attempts to access disabled memory space. | 2020-05-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-12771 | An issue was discovered in the Linux kernel through 5.6.11. btree_gc_coalesce in drivers/md/bcache/btree.c has a deadlock if a coalescing operation fails. | 2020-05-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-12656 | gss_mech_free in net/sunrpc/auth_gss/gss_mech_switch.c in the rpcsec_gss_krb5 implementation in the Linux kernel through 5.6.10 lacks certain domain_release calls leading to a memory leak. Note: This was disputed with the assertion that the issue does not grant any access not already available. It is a problem that on unloading a specific kernel module some memory is leaked but loading kernel modules is a privileged operation. A user could also write a kernel module to consume any amount of memory they like and load that replicating the effect of this bug | 2020-05-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-12655 | An issue was discovered in xfs_agf_verify in fs/xfs/libxfs/xfs_alloc.c in the Linux kernel through 5.6.10. Attackers may trigger a sync of excessive duration via an XFS v5 image with crafted metadata aka CID-d0c7feaf8767. | 2020-05-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-11993 | Apache HTTP Server versions 2.4.20 to 2.4.43 When trace/debug was enabled for the HTTP/2 module and on certain traffic edge patterns logging statements were made on the wrong connection causing concurrent use of memory pools. Configuring the LogLevel of mod_http2 above "info" will mitigate this vulnerability for unpatched servers. | 2020-08-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201603-0156 | IOHIDFamily in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS be… | 2025-04-13T22:22:49.311000Z |
| var-201507-0419 | MobileInstallation in Apple iOS before 8.4 does not ensure the uniqueness of Watch bundle… | 2025-04-13T22:22:48.274000Z |
| var-201603-0221 | libxml2 in Apple iOS before 9.3, OS X before 10.11.4, and watchOS before 2.2 allows remot… | 2025-04-13T22:22:48.130000Z |
| var-201510-0247 | ImageIO in Apple iOS before 9.1, OS X before 10.11.1, and watchOS before 2.0.1 allows rem… | 2025-04-13T22:22:41.806000Z |
| var-201403-0247 | Adobe Flash Player before 11.7.700.272 and 11.8.x through 12.0.x before 12.0.0.77 on Wind… | 2025-04-13T22:22:10.755000Z |
| var-201507-0424 | Cross-site scripting (XSS) vulnerability in the PDF functionality in WebKit in Apple Safa… | 2025-04-13T22:22:10.031000Z |
| var-201512-0146 | The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS bef… | 2025-04-13T22:22:09.684000Z |
| var-201510-0144 | FontParser in Apple iOS before 9.1 and OS X before 10.11.1 allows remote attackers to exe… | 2025-04-13T22:22:08.696000Z |
| var-201507-0399 | IOAcceleratorFamily in Apple OS X before 10.10.4 allows attackers to execute arbitrary co… | 2025-04-13T22:22:07.047000Z |
| var-201504-0398 | Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows a… | 2025-04-13T22:22:01.262000Z |
| var-201512-0108 | CoreMedia Playback in Apple iOS before 9.2, OS X before 10.11.2, and tvOS before 9.1 allo… | 2025-04-13T22:21:58.533000Z |
| var-201508-0431 | QuickTime 7 in Apple OS X before 10.10.5 allows remote attackers to execute arbitrary cod… | 2025-04-13T22:21:58.062000Z |
| var-201607-0333 | WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remot… | 2025-04-13T22:21:17.801000Z |
| var-201609-0258 | WKWebView in WebKit in Apple iOS before 10, iTunes before 12.5.1 on Windows, and Safari b… | 2025-04-13T22:20:46.389000Z |
| var-201503-0097 | WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, all… | 2025-04-13T22:20:46.270000Z |
| var-201510-0155 | FontParser in Apple iOS before 9.1 and OS X before 10.11.1 allows remote attackers to exe… | 2025-04-13T22:20:46.231000Z |
| var-201605-0280 | F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM 11.3.x, 11.4.x before 1… | 2025-04-13T22:20:41.840000Z |
| var-201505-0276 | Race condition in Adobe Flash Player before 13.0.0.289 and 14.x through 17.x before 17.0.… | 2025-04-13T22:20:41.214000Z |
| var-201603-0158 | Use-after-free vulnerability in the kernel in Apple iOS before 9.3, OS X before 10.11.4, … | 2025-04-13T22:20:40.318000Z |
| var-201409-0507 | WebKit, as used in Apple iOS before 8 and Apple TV before 7, allows remote attackers to e… | 2025-04-13T22:20:40.227000Z |
| var-201605-0452 | The Graphics Drivers subsystem in Apple OS X before 10.11.5 allows attackers to execute a… | 2025-04-13T22:20:34.122000Z |
| var-201509-0066 | NetworkExtension in the kernel in Apple iOS before 9 does not properly initialize an unsp… | 2025-04-13T22:19:50.475000Z |
| var-201502-0409 | The V8ThrowException::createDOMException function in bindings/core/v8/V8ThrowException.cp… | 2025-04-13T22:19:19.289000Z |
| var-201504-0087 | Use-after-free vulnerability in CoreAnimation in Apple OS X before 10.10.3 allows remote … | 2025-04-13T22:19:19.191000Z |
| var-201607-0337 | The Siri Contacts component in Apple iOS before 9.3.3 allows physically proximate attacke… | 2025-04-13T22:19:14.354000Z |
| var-201409-0511 | NSXMLParser in Foundation in Apple iOS before 8 allows attackers to read arbitrary files … | 2025-04-13T22:18:39.421000Z |
| var-201609-0238 | libxslt in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 a… | 2025-04-13T22:18:39.358000Z |
| var-201609-0293 | The kernel in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before … | 2025-04-13T22:18:37.695000Z |
| var-201509-0085 | The Application Store component in Apple iOS before 9 allows remote attackers to cause a … | 2025-04-13T22:18:37.462000Z |
| var-201609-0251 | Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 mishandle si… | 2025-04-13T22:18:37.132000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2019:3033-2 | Security update for djvulibre | 2020-07-07T11:41:22Z | 2020-07-07T11:41:22Z |
| suse-su-2020:0111-2 | Security update for Mesa | 2020-07-07T11:40:56Z | 2020-07-07T11:40:56Z |
| suse-su-2020:1864-1 | Security update for nasm | 2020-07-07T10:54:13Z | 2020-07-07T10:54:13Z |
| suse-su-2020:1860-1 | Security update for permissions | 2020-07-06T15:09:48Z | 2020-07-06T15:09:48Z |
| suse-su-2020:1859-1 | Security update for openldap2 | 2020-07-06T15:09:38Z | 2020-07-06T15:09:38Z |
| suse-su-2020:1858-1 | Security update for permissions | 2020-07-06T15:08:23Z | 2020-07-06T15:08:23Z |
| suse-su-2020:1857-1 | Security update for permissions | 2020-07-06T15:07:38Z | 2020-07-06T15:07:38Z |
| suse-su-2020:1856-1 | Security update for openldap2 | 2020-07-06T15:06:53Z | 2020-07-06T15:06:53Z |
| suse-su-2020:1855-1 | Security update for openldap2 | 2020-07-06T15:05:48Z | 2020-07-06T15:05:48Z |
| suse-su-2020:14419-1 | Security update for openldap2 | 2020-07-06T15:04:50Z | 2020-07-06T15:04:50Z |
| suse-su-2020:14418-1 | Security update for mozilla-nspr, mozilla-nss | 2020-07-06T14:31:09Z | 2020-07-06T14:31:09Z |
| suse-su-2020:1850-1 | Security update for mozilla-nss | 2020-07-06T12:45:10Z | 2020-07-06T12:45:10Z |
| suse-su-2019:2971-2 | Security update for libjpeg-turbo | 2020-07-06T10:23:32Z | 2020-07-06T10:23:32Z |
| suse-su-2020:1843-1 | Security update for nasm | 2020-07-06T10:13:48Z | 2020-07-06T10:13:48Z |
| suse-su-2020:1842-1 | Security update for systemd | 2020-07-03T20:40:52Z | 2020-07-03T20:40:52Z |
| suse-su-2020:1841-1 | Security update for tomcat | 2020-07-03T20:40:14Z | 2020-07-03T20:40:14Z |
| suse-su-2020:1839-1 | Security update for mozilla-nspr, mozilla-nss | 2020-07-03T10:46:49Z | 2020-07-03T10:46:49Z |
| suse-su-2020:1828-1 | Security update for systemd | 2020-07-02T11:07:36Z | 2020-07-02T11:07:36Z |
| suse-su-2020:1823-1 | Security update for ntp | 2020-07-02T09:32:43Z | 2020-07-02T09:32:43Z |
| suse-su-2020:1822-1 | Security update for python3 | 2020-07-02T09:31:19Z | 2020-07-02T09:31:19Z |
| suse-su-2020:1819-1 | Security update for unbound | 2020-07-01T14:19:58Z | 2020-07-01T14:19:58Z |
| suse-su-2020:14415-1 | Security update for ntp | 2020-07-01T14:18:41Z | 2020-07-01T14:18:41Z |
| suse-su-2020:1807-1 | Security update for openconnect | 2020-06-30T15:43:59Z | 2020-06-30T15:43:59Z |
| suse-su-2020:1806-1 | Security update for transfig | 2020-06-30T15:43:39Z | 2020-06-30T15:43:39Z |
| suse-su-2020:1805-1 | Security update for ntp | 2020-06-30T15:37:45Z | 2020-06-30T15:37:45Z |
| suse-su-2020:1803-1 | Security update for squid | 2020-06-30T11:53:36Z | 2020-06-30T11:53:36Z |
| suse-su-2020:1800-1 | Security update for xmlgraphics-batik | 2020-06-30T09:50:41Z | 2020-06-30T09:50:41Z |
| suse-su-2020:14414-1 | Security update for mutt | 2020-06-30T09:30:09Z | 2020-06-30T09:30:09Z |
| suse-su-2020:1798-1 | Security update for mariadb-100 | 2020-06-30T09:29:15Z | 2020-06-30T09:29:15Z |
| suse-su-2020:1796-1 | Security update for unzip | 2020-06-29T11:28:07Z | 2020-06-29T11:28:07Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2024-37703 | Cisco Identity Services Engine跨站请求伪造漏洞(CNVD-2024-37703) | 2024-08-26 | 2024-09-05 |
| cnvd-2024-37702 | Cisco Unified Communications Manager跨站脚本漏洞(CNVD-2024-37702) | 2024-08-29 | 2024-09-05 |
| cnvd-2024-37701 | Cisco NX-OS Software授权问题漏洞(CNVD-2024-37701) | 2024-08-30 | 2024-09-05 |
| cnvd-2024-37700 | Cisco NX-OS Software权限提升漏洞(CNVD-2024-37700) | 2024-08-30 | 2024-09-05 |
| cnvd-2024-37699 | Cisco NX-OS Software命令执行漏洞 | 2024-08-30 | 2024-09-05 |
| cnvd-2024-37698 | Cisco NX-OS Software拒绝服务漏洞(CNVD-2024-37698) | 2024-08-30 | 2024-09-05 |
| cnvd-2024-37609 | FeehiCMS代码问题漏洞(CNVD-2024-37609) | 2024-08-30 | 2024-09-05 |
| cnvd-2024-37608 | IBM Security Verify Access输入验证错误漏洞(CNVD-2024-37608) | 2024-09-03 | 2024-09-05 |
| cnvd-2024-37606 | Cisco Small Business缓冲区溢出漏洞(CNVD-2024-37606) | 2024-03-12 | 2024-09-05 |
| cnvd-2024-37490 | ZOHO ManageEngine ADAudit Plus目录遍历漏洞 | 2024-01-25 | 2024-09-05 |
| cnvd-2024-37489 | ZOHO ManageEngine ADAudit Plus访问控制错误漏洞 | 2024-05-28 | 2024-09-05 |
| cnvd-2024-37488 | ZOHO ManageEngine ADAudit Plus安全绕过漏洞 | 2024-05-28 | 2024-09-05 |
| cnvd-2024-37487 | ZOHO ManageEngine ADAudit Plus SQL注入漏洞(CNVD-2024-37487) | 2024-08-27 | 2024-09-05 |
| cnvd-2024-37486 | ZOHO ManageEngine ADAudit Plus SQL注入漏洞(CNVD-2024-37486) | 2024-08-27 | 2024-09-05 |
| cnvd-2024-37485 | ZOHO ManageEngine ADAudit Plus SQL注入漏洞(CNVD-2024-37485) | 2024-08-27 | 2024-09-05 |
| cnvd-2024-37484 | ZOHO ManageEngine ADAudit Plus SQL注入漏洞(CNVD-2024-37484) | 2024-08-27 | 2024-09-05 |
| cnvd-2024-37483 | ZOHO ManageEngine ADAudit Plus SQL注入漏洞(CNVD-2024-37483) | 2024-08-27 | 2024-09-05 |
| cnvd-2024-37482 | ZOHO ManageEngine ADAudit Plus SQL注入漏洞(CNVD-2024-37482) | 2024-08-27 | 2024-09-05 |
| cnvd-2024-37481 | ZOHO ManageEngine ADAudit Plus SQL注入漏洞(CNVD-2024-37481) | 2024-08-27 | 2024-09-05 |
| cnvd-2024-37480 | ZOHO ManageEngine ADAudit Plus SQL注入漏洞(CNVD-2024-37480) | 2024-08-27 | 2024-09-05 |
| cnvd-2024-37463 | FIWARE Keyrock加密问题漏洞 | 2024-08-29 | 2024-09-05 |
| cnvd-2024-37462 | FIWARE Keyrock加密问题漏洞(CNVD-2024-37462) | 2024-08-29 | 2024-09-05 |
| cnvd-2024-37461 | FIWARE Keyrock加密问题漏洞(CNVD-2024-37461) | 2024-08-29 | 2024-09-05 |
| cnvd-2024-37460 | FIWARE Keyrock操作系统命令注入漏洞 | 2024-08-29 | 2024-09-05 |
| cnvd-2024-37459 | FIWARE Keyrock操作系统命令注入漏洞(CNVD-2024-37459) | 2024-08-29 | 2024-09-05 |
| cnvd-2024-37458 | CyberArk Identity Management信息泄露漏洞 | 2024-08-29 | 2024-09-05 |
| cnvd-2024-37457 | CyberArk Identity Management信息泄露漏洞(CNVD-2024-37457) | 2024-08-29 | 2024-09-05 |
| cnvd-2024-37456 | CyberArk Identity Management信息泄露漏洞(CNVD-2024-37456) | 2024-08-29 | 2024-09-05 |
| cnvd-2024-37455 | CyberArk Identity Management存在未明漏洞 | 2024-08-29 | 2024-09-05 |
| cnvd-2024-37454 | wolfSSL输入验证错误漏洞 | 2024-02-28 | 2024-09-05 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2009-avi-486 | Vulnérabilité dans Sun Virtual Desktop Infrastructure | 2009-11-09T00:00:00.000000 | 2009-11-09T00:00:00.000000 |
| certa-2009-avi-485 | Vulnérabilité dans les produits Citrix | 2009-11-09T00:00:00.000000 | 2009-11-09T00:00:00.000000 |
| certa-2009-avi-484 | Vulnérabilité dans PowerHA Cluster Management sous IBM AIX | 2009-11-09T00:00:00.000000 | 2009-11-09T00:00:00.000000 |
| certa-2009-avi-483 | Vulnérabilité dans BlackBerry Desktop Manager | 2009-11-09T00:00:00.000000 | 2009-11-09T00:00:00.000000 |
| certa-2009-avi-481 | Vulnérabilités dans Google Chrome | 2009-11-06T00:00:00.000000 | 2009-11-06T00:00:00.000000 |
| certa-2009-avi-480 | Vulnérabilités dans Joomla! | 2009-11-06T00:00:00.000000 | 2009-11-06T00:00:00.000000 |
| certa-2009-avi-479 | Vulnérabilité dans Asterisk | 2009-11-05T00:00:00.000000 | 2009-11-05T00:00:00.000000 |
| certa-2009-avi-478 | Vulnérabilité dans Snort | 2009-11-04T00:00:00.000000 | 2009-11-05T00:00:00.000000 |
| certa-2009-avi-477 | Vulnérabilité de Novell eDirectory | 2009-11-04T00:00:00.000000 | 2009-11-04T00:00:00.000000 |
| certa-2009-avi-476 | Vulnérabilité dans Solaris Sockets Direct Protocol Driver | 2009-11-04T00:00:00.000000 | 2009-11-04T00:00:00.000000 |
| certa-2009-avi-475 | Vulnérabilité du noyau Linux | 2009-11-04T00:00:00.000000 | 2009-11-04T00:00:00.000000 |
| certa-2009-avi-474 | Multiples vulnérabilités dans Sun Java JDK/JRE | 2009-11-04T00:00:00.000000 | 2009-11-04T00:00:00.000000 |
| certa-2009-avi-473 | Vulnérabilités dans IBM Tivoli Storage Manager | 2009-11-04T00:00:00.000000 | 2009-11-04T00:00:00.000000 |
| certa-2009-avi-472 | Multiples vulnérabilités dans Adobe Shockwave Player | 2009-11-04T00:00:00.000000 | 2009-11-04T00:00:00.000000 |
| certa-2009-avi-459 | Multiples vulnérabilités dans Mozilla Firefox | 2009-10-28T00:00:00.000000 | 2009-11-04T00:00:00.000000 |
| certa-2009-avi-471 | Multiples vulnérabilités dans IBM WebSphere pour z/OS | 2009-11-03T00:00:00.000000 | 2009-11-03T00:00:00.000000 |
| certa-2009-avi-470 | Multiples vulnérabilités dans KDE | 2009-11-03T00:00:00.000000 | 2009-11-03T00:00:00.000000 |
| certa-2009-avi-469 | Vulnérabilité dans les cartes mères Intel Desktop | 2009-11-03T00:00:00.000000 | 2009-11-03T00:00:00.000000 |
| certa-2009-avi-468 | Multiples vulnérabilités dans SquidGuard | 2009-11-03T00:00:00.000000 | 2009-11-03T00:00:00.000000 |
| certa-2009-avi-467 | Vulnérabilité dans Symantec Altiris | 2009-11-03T00:00:00.000000 | 2009-11-03T00:00:00.000000 |
| certa-2009-avi-466 | Multiples vulnérabilités dans CADIC Intégrale | 2009-10-30T00:00:00.000000 | 2009-10-30T00:00:00.000000 |
| certa-2009-avi-465 | Vulnérabilité dans les produits F-Secure | 2009-10-30T00:00:00.000000 | 2009-10-30T00:00:00.000000 |
| certa-2009-avi-464 | Multiples vulnérabilités des produits VMware | 2009-10-30T00:00:00.000000 | 2009-10-30T00:00:00.000000 |
| certa-2009-avi-463 | Multiples vulnérabilités dans Wireshark | 2009-10-28T00:00:00.000000 | 2009-10-28T00:00:00.000000 |
| certa-2009-avi-462 | Vulnérabilités dans les produits McAfee | 2009-10-28T00:00:00.000000 | 2009-10-28T00:00:00.000000 |
| certa-2009-avi-461 | Vulnérabilité dans Solaris Trusted Extensions | 2009-10-28T00:00:00.000000 | 2009-10-28T00:00:00.000000 |
| certa-2009-avi-460 | Vulnérabilités dans Opera | 2009-10-28T00:00:00.000000 | 2009-10-28T00:00:00.000000 |
| certa-2009-avi-458 | Vulnérabilité dans IBM Lotus Connections | 2009-10-27T00:00:00.000000 | 2009-10-27T00:00:00.000000 |
| certa-2009-avi-457 | Vulnérabilité dans Asterisk | 2009-10-27T00:00:00.000000 | 2009-10-27T00:00:00.000000 |
| certa-2009-avi-211 | Multiples vulnérabilités de Apache Tomcat | 2009-06-08T00:00:00.000000 | 2009-10-27T00:00:00.000000 |