Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-22777	7.5 (3.1)	ComfyUI-Manager is Vulnerable to CRLF Injection in Con…	Comfy-Org	ComfyUI-Manager	2026-01-10T06:43:21.579Z	2026-01-12T13:22:32.833Z
CVE-2026-22773	6.5 (3.1)	vLLM is vulnerable to DoS in Idefics3 vision models vi…	vllm-project	vllm	2026-01-10T06:39:02.276Z	2026-01-12T13:22:52.666Z
CVE-2025-14943	4.3 (3.1)	Blog2Social: Social Media Auto Post & Scheduler <= 8.7…	pr-gateway	Blog2Social: Social Media Auto Post & Scheduler	2026-01-10T06:32:34.320Z	2026-01-12T13:40:35.845Z
CVE-2026-22704	8.1 (3.1)	HAXcms Has Stored XSS Vulnerability that May Lead to A…	haxtheweb	issues	2026-01-10T06:22:45.076Z	2026-01-13T15:09:03.814Z
CVE-2026-22705	6.4 (3.1)	RustCrypto: Signatures has timing side-channel in ML-D…	RustCrypto	signatures	2026-01-10T06:14:20.292Z	2026-01-12T16:43:06.463Z
CVE-2026-22703	5.5 (3.1)	Cosign verification accepts any valid Rekor entry unde…	sigstore	cosign	2026-01-10T06:11:09.426Z	2026-01-12T16:43:57.302Z
CVE-2026-22702	4.5 (3.1)	virtualenv Has TOCTOU Vulnerabilities in Directory Creation	pypa	virtualenv	2026-01-10T06:05:53.281Z	2026-01-12T16:44:12.734Z
CVE-2026-22701	5.3 (3.1)	filelock Time-of-Check-Time-of-Use (TOCTOU) Symlink Vu…	tox-dev	filelock	2026-01-10T05:59:28.872Z	2026-01-12T16:45:50.638Z
CVE-2026-22693	5.3 (3.1)	Null Pointer Dereference in SubtableUnicodesCache::cre…	harfbuzz	harfbuzz	2026-01-10T05:53:21.019Z	2026-01-12T16:47:17.715Z
CVE-2026-22689	6.5 (3.1)	Mailpit is vulnerable to Cross-Site WebSocket Hijackin…	axllent	mailpit	2026-01-10T05:46:13.771Z	2026-01-12T16:47:34.722Z
CVE-2026-22685	8.8 (3.1)	DevToys Path Traversal (“Zip Slip”) Vulnerability in D…	DevToys-app	DevToys	2026-01-10T05:43:19.856Z	2026-01-12T14:39:28.330Z
CVE-2026-22611	3.7 (3.1)	AWS SDK for .NET V4 adopted defense in depth enhanceme…	aws	aws-sdk-net	2026-01-10T05:37:08.297Z	2026-01-12T14:39:57.770Z
CVE-2026-22700	7.5 (3.1)	RustCrypto Has Insufficient Length Validation in decry…	RustCrypto	elliptic-curves	2026-01-10T05:17:25.583Z	2026-01-12T14:46:46.227Z
CVE-2026-22699	7.5 (3.1)	RustCrypto SM2-PKE has Unchecked AffinePoint Decoding …	RustCrypto	elliptic-curves	2026-01-10T05:17:22.818Z	2026-01-12T14:59:18.634Z
CVE-2026-22698	8.7 (4.0)	RustCrypto SM2-PKE has 32-bit Biased Nonce Vulnerability	RustCrypto	elliptic-curves	2026-01-10T05:17:19.993Z	2026-01-12T16:48:30.706Z
CVE-2026-22691	2.7 (4.0)	pypdf has possible long runtimes for malformed startxref	py-pdf	pypdf	2026-01-10T04:46:12.423Z	2026-01-12T16:48:53.503Z
CVE-2026-22690	2.7 (4.0)	pypdf has possible long runtimes for missing /Root obj…	py-pdf	pypdf	2026-01-10T04:41:20.773Z	2026-01-12T17:07:00.323Z
CVE-2026-22688	10 (3.1)	WeKnora has Command Injection in MCP stdio test	Tencent	WeKnora	2026-01-10T03:41:59.952Z	2026-01-12T17:20:43.431Z
CVE-2026-22687	8.1 (3.1)	WeKnora vulnerable to SQL Injection	Tencent	WeKnora	2026-01-10T03:41:43.862Z	2026-01-12T17:21:25.675Z
CVE-2026-22610	8.5 (4.0)	Angular has XSS Vulnerability via Unsanitized SVG Scri…	angular	angular	2026-01-10T03:35:40.727Z	2026-01-13T04:55:48.905Z
CVE-2025-13457	7.5 (3.1)	WooCommerce Square <= 5.1.1 - Unauthenticated Insecure…	woocommerce	WooCommerce Square	2026-01-10T03:21:01.113Z	2026-01-12T16:49:14.896Z
CVE-2026-22589	7.5 (3.1)	Spree API has Unauthenticated IDOR - Guest Address	spree	spree	2026-01-10T03:17:58.494Z	2026-01-12T17:32:46.777Z
CVE-2025-61674	6.1 (3.1)	October CMS Vulnerable to Stored XSS via Editor and Br…	octobercms	october	2026-01-10T03:14:11.185Z	2026-01-12T17:33:33.662Z
CVE-2025-61676	6.1 (3.1)	October CMS Vulnerable to Stored XSS via Branding Styles	octobercms	october	2026-01-10T03:14:00.708Z	2026-01-12T17:34:13.595Z
CVE-2025-65091	10 (3.1)	XWiki Full Calendar Macro vulnerable to SQL injection …	xwiki-contrib	macro-fullcalendar	2026-01-10T03:06:16.775Z	2026-01-12T17:35:19.706Z
CVE-2025-65090	5.3 (3.1)	XWiki Full Calendar Macro vulnerable to data leak thro…	xwiki-contrib	macro-fullcalendar	2026-01-10T03:05:06.531Z	2026-01-12T17:36:38.233Z
CVE-2026-22597	5.1 (4.0)	Ghost has SSRF via External Media Inliner	TryGhost	Ghost	2026-01-10T02:57:36.898Z	2026-01-12T16:23:47.163Z
CVE-2026-22596	6.7 (3.1)	Ghost has SQL Injection in Members Activity Feed	TryGhost	Ghost	2026-01-10T02:57:19.792Z	2026-01-12T17:37:41.086Z
CVE-2026-22595	8.1 (3.1)	Ghost has Staff Token permission bypass	TryGhost	Ghost	2026-01-10T02:57:08.131Z	2026-01-12T17:51:41.017Z
CVE-2026-22594	8.1 (3.1)	Ghost has Staff 2FA bypass	TryGhost	Ghost	2026-01-10T02:56:47.226Z	2026-01-12T17:53:57.181Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-69272	5.3 (4.0)	Spectrum password returned in clear	Broadcom	DX NetOps Spectrum	2026-01-12T04:33:37.988Z	2026-01-12T15:19:26.775Z
CVE-2025-69271	2.3 (4.0)	Spectrum basic authentication in use	Broadcom	DX NetOps Spectrum	2026-01-12T04:27:55.507Z	2026-01-12T15:20:41.443Z
CVE-2025-69270	2.3 (4.0)	Spectrum session token in URL	Broadcom	DX NetOps Spectrum	2026-01-12T04:20:13.446Z	2026-01-12T15:21:09.808Z
CVE-2025-69269	7.1 (4.0)	Spectrum command injection in NCM service	Broadcom	DX NetOps Spectrum	2026-01-12T04:10:44.802Z	2026-01-12T15:51:36.355Z
CVE-2025-69268	5.3 (4.0)	Spectrum reflected XSS	Broadcom	DX NetOps Spectrum	2026-01-12T03:59:17.522Z	2026-01-12T15:52:46.499Z
CVE-2025-69267	8.8 (4.0)	Spectrum directory path traversal	Broadcom	DX NetOps Spectrum	2026-01-12T03:53:00.624Z	2026-01-12T15:53:40.392Z
CVE-2026-0853	6.9 (4.0) 5.3 (3.1)	A-Plus Video Technologies｜NVR - Sensitive Data Exposure	A-Plus Video Technologies	AP-RM864P	2026-01-12T03:26:47.546Z	2026-01-12T15:54:38.969Z
CVE-2025-52694	10 (3.1)	Execution of arbitrary SQL commands	Advantech	IoTSuite and IoT Edge Products	2026-01-12T02:27:16.744Z	2026-01-15T09:32:25.933Z
CVE-2026-0852	6.9 (4.0) 7.3 (3.1) 7.3 (3.0)	code-projects Online Music Site AdminUpdateUser.php sq…	code-projects	Online Music Site	2026-01-12T00:02:06.128Z	2026-01-12T15:58:49.390Z
CVE-2026-0851	6.9 (4.0) 7.3 (3.1) 7.3 (3.0)	code-projects Online Music Site AdminAddUser.php sql i…	code-projects	Online Music Site	2026-01-11T23:32:07.010Z	2026-01-12T16:37:46.944Z
CVE-2026-0850	5.1 (4.0) 4.7 (3.1) 4.7 (3.0)	code-projects Intern Membership Management System dele…	code-projects	Intern Membership Management System	2026-01-11T23:02:06.162Z	2026-01-12T16:50:15.555Z
CVE-2025-68493	N/A	Apache Struts, Apache Struts: XXE vulnerability in out…	Apache Software Foundation	Apache Struts	2026-01-11T13:05:36.894Z	2026-01-12T13:52:58.210Z
CVE-2025-15506	4.8 (4.0) 3.3 (3.1) 3.3 (3.0)	AcademySoftwareFoundation OpenColorIO FileRules.cpp Co…	AcademySoftwareFoundation	OpenColorIO	2026-01-11T11:02:09.187Z	2026-01-12T17:03:17.278Z
CVE-2026-0843	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	jiujiujia/victor123/wxw850227 jjjfood/jjjshop_food ind…	jiujiujia	jjjfood	2026-01-11T09:02:05.907Z	2026-01-12T17:09:55.150Z
CVE-2026-0842	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	Flycatcher Toys smART Sketcher Bluetooth Low Energy mi…	Flycatcher Toys	smART Sketcher	2026-01-11T08:02:06.221Z	2026-01-12T17:50:26.288Z
CVE-2026-0841	8.7 (4.0) 8.8 (3.1) 8.8 (3.0)	UTT 进取 520W formPictureUrl strcpy buffer overflow	UTT	进取 520W	2026-01-11T07:32:07.736Z	2026-01-12T14:33:15.407Z
CVE-2026-0840	8.7 (4.0) 8.8 (3.1) 8.8 (3.0)	UTT 进取 520W formConfigNoticeConfig strcpy buffer overflow	UTT	进取 520W	2026-01-11T06:32:06.734Z	2026-01-12T14:34:38.435Z
CVE-2026-0839	8.7 (4.0) 8.8 (3.1) 8.8 (3.0)	UTT 进取 520W APSecurity strcpy buffer overflow	UTT	进取 520W	2026-01-11T06:02:05.798Z	2026-01-12T14:35:14.535Z
CVE-2026-0838	8.7 (4.0) 8.8 (3.1) 8.8 (3.0)	UTT 进取 520W ConfigWirelessBase strcpy buffer overflow	UTT	进取 520W	2026-01-11T05:32:06.225Z	2026-01-12T14:35:49.763Z
CVE-2026-0837	8.7 (4.0) 8.8 (3.1) 8.8 (3.0)	UTT 进取 520W formFireWall strcpy buffer overflow	UTT	进取 520W	2026-01-11T05:02:06.048Z	2026-01-12T14:36:14.234Z
CVE-2026-0836	8.7 (4.0) 8.8 (3.1) 8.8 (3.0)	UTT 进取 520W formConfigFastDirectionW strcpy buffer overflow	UTT	进取 520W	2026-01-11T04:32:06.535Z	2026-01-12T18:13:16.566Z
CVE-2025-15505	4.8 (4.0) 2.4 (3.1) 2.4 (3.0)	Luxul XWR-600 Web Administration cross site scripting	Luxul	XWR-600	2026-01-11T01:32:07.400Z	2026-01-12T18:15:20.196Z
CVE-2026-0824	5.1 (4.0) 3.5 (3.1) 3.5 (3.0)	questdb ui Web Console cross site scripting	questdb	ui	2026-01-10T14:32:08.724Z	2026-01-12T18:26:21.294Z
CVE-2026-0822	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	quickjs-ng quickjs quickjs.c js_typed_array_sort heap-…	quickjs-ng	quickjs	2026-01-10T13:32:08.881Z	2026-01-12T18:30:50.158Z
CVE-2025-13393	4.3 (3.1)	Featured Image from URL (FIFU) <= 5.3.1 - Authenticate…	marceljm	Featured Image from URL (FIFU)	2026-01-10T13:47:35.750Z	2026-01-12T18:28:15.408Z
CVE-2025-12379	6.4 (3.1)	Shortcodes and extra features for Phlox theme <= 2.17.…	averta	Shortcodes and extra features for Phlox theme	2026-01-10T13:47:35.146Z	2026-01-12T18:29:20.473Z
CVE-2026-0821	6.9 (4.0) 7.3 (3.1) 7.3 (3.0)	quickjs-ng quickjs quickjs.c js_typed_array_constructo…	quickjs-ng	quickjs	2026-01-10T13:02:07.698Z	2026-01-12T14:36:51.911Z
CVE-2025-14555	6.4 (3.1)	Countdown Timer - Widget Countdown <= 2.7.7 - Authenti…	wpdevart	Countdown Timer – Widget Countdown	2026-01-10T12:23:16.588Z	2026-01-12T13:10:31.231Z
CVE-2025-15504	4.8 (4.0) 3.3 (3.1) 3.3 (3.0)	lief-project LIEF ELF Binary Parser.tcc parse_binary n…	lief-project	LIEF	2026-01-10T11:32:06.771Z	2026-01-12T14:45:44.884Z
CVE-2025-14506	6.4 (3.1)	ConvertForce Popup Builder <= 0.0.7 - Stored Cross-Sit…	imtiazrayhan	ConvertForce Popup Builder	2026-01-10T11:22:38.947Z	2026-01-12T13:10:20.692Z

ID	Description	Published	Updated

ID	Severity	Description	Published	Updated
ghsa-rg37-qjm5-vw5p	6.3 (3.1) 2.1 (4.0)	A flaw has been found in RainyGao DocSys up to 2.02.36. The impacted element is an unknown function…	2026-01-09T18:31:36Z	2026-01-09T18:31:36Z
ghsa-qgg6-hj2r-3x43	7.5 (3.1)	fluidsynth-2.4.6 and earlier versions is vulnerable to Null pointer dereference in fluid_synth_mono…	2026-01-09T18:31:36Z	2026-01-12T18:30:29Z
ghsa-q3wr-c9vh-mxp6	2.7 (3.1)	Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions…	2026-01-09T18:31:36Z	2026-01-09T18:31:36Z
ghsa-q3qv-m4mc-pj49	10.0 (4.0)	The Ruckus vRIoT IoT Controller firmware versions prior to 3.0.0.0 (GA) contain hardcoded credentia…	2026-01-09T18:31:36Z	2026-01-09T18:31:37Z
ghsa-jxg2-gp53-m88h	7.5 (3.1)	In Yonyou YonBIP v3 and before, the LoginWithV8 interface in the series data application service sy…	2026-01-09T18:31:36Z	2026-01-12T18:30:29Z
ghsa-gq6h-g93p-6wqx	6.9 (4.0)	Improper Input Validation vulnerability in TP-Link Archer AXE75 v1.6 (vpn modules) allows an authen…	2026-01-09T18:31:36Z	2026-01-09T18:31:36Z
ghsa-g6jg-q927-wwmp	7.5 (3.1)	An issue in Hero Motocorp Vida V1 Pro 2.0.7 allows a local attacker to cause a denial of service vi…	2026-01-09T18:31:36Z	2026-01-09T18:31:36Z
ghsa-ffrr-jp4v-9v79	5.3 (3.1)	An issue in TIM Solution GmbH TIM BPM Suite & TIM FLOW before v.9.1.2 allows a remote attacker to e…	2026-01-09T18:31:36Z	2026-01-09T18:31:36Z
ghsa-f4rm-q33h-47w8	6.5 (3.1)	An issue in TIM Solution GmbH TIM BPM Suite & TIM FLOW before v.9.1.2 allows a remote attacker to e…	2026-01-09T18:31:36Z	2026-01-09T18:31:36Z
ghsa-cpp7-6w4h-pg23	6.3 (3.1) 2.1 (4.0)	A vulnerability was found in PHPGurukul Online Course Registration System up to 3.1. This affects a…	2026-01-09T18:31:36Z	2026-01-09T18:31:37Z
ghsa-9w9h-4qfh-f6m6	6.5 (3.1)	An Information Disclosure vulnerability in CouchCMS 2.4 allow an Admin user to read arbitrary files…	2026-01-09T18:31:36Z	2026-01-12T18:30:29Z
ghsa-8hfg-wp8c-fvqv	6.5 (3.1)	Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions…	2026-01-09T18:31:36Z	2026-01-09T18:31:37Z
ghsa-6c7p-3rhg-7wgj	6.3 (3.1) 2.1 (4.0)	A vulnerability has been found in RainyGao DocSys up to 2.02.37. This affects an unknown function o…	2026-01-09T18:31:36Z	2026-01-09T18:31:36Z
ghsa-5v56-6x55-vhpv	5.3 (3.1)	Missing Authorization vulnerability in Wikimedia Foundation MediaWiki - CampaignEvents extension al…	2026-01-09T18:31:36Z	2026-01-09T18:31:36Z
ghsa-348h-xmhf-cxqc	5.4 (3.1)	In TIM BPM Suite/ TIM FLOW through 9.1.2 multiple Hibernate Query Language injection vulnerabilitie…	2026-01-09T18:31:36Z	2026-01-09T18:31:36Z
ghsa-2388-fgq3-x3rp	5.4 (3.1)	In TIM BPM Suite/ TIM FLOW through 9.1.2 multiple SQL injection vulnerabilities exists which allow …	2026-01-09T18:31:36Z	2026-01-09T18:31:36Z
ghsa-xg8w-4mgh-rwxq	6.3 (3.1) 2.1 (4.0)	A vulnerability was detected in RainyGao DocSys up to 2.02.36. The affected element is an unknown f…	2026-01-09T18:31:35Z	2026-01-09T18:31:35Z
ghsa-mqfq-rfg7-86wc	6.0 (3.1)	Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions…	2026-01-09T18:31:35Z	2026-01-09T18:31:35Z
ghsa-96v6-28qx-cr4q	2.3 (3.1)	Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions…	2026-01-09T18:31:35Z	2026-01-09T18:31:35Z
ghsa-gxxc-m74c-f48x	6.1 (3.1)	October CMS Vulnerable to Stored XSS via Editor and Branding Styles	2026-01-09T18:12:58Z	2026-01-11T14:55:29Z
ghsa-w3fc-rm7j-qh7j	9.8 (3.1)	BeeS Software Solutions BET Portal contains an SQL injection vulnerability in the login functionali…	2026-01-09T15:30:23Z	2026-01-09T18:31:35Z
ghsa-x2rg-q7qq-q3c7	6.5 (3.1)	The WP Page Permalink Extension plugin for WordPress is vulnerable to Missing Authorization in all …	2026-01-09T12:32:26Z	2026-01-09T12:32:26Z
ghsa-wc63-83rx-8qcg	6.4 (3.1)	The Woodpecker for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via …	2026-01-09T12:32:26Z	2026-01-09T12:32:26Z
ghsa-vcxh-46f5-vx6r	7.5 (3.1) 8.7 (4.0)	Vivotek IP7137 camera with firmware version 0200a is vulnerable to an information disclosure issue …	2026-01-09T12:32:26Z	2026-01-14T18:31:17Z
ghsa-pc52-v769-jjvw	6.4 (3.1)	The Client Testimonial Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via…	2026-01-09T12:32:26Z	2026-01-09T12:32:26Z
ghsa-m6m8-c4cv-c66j	8.8 (4.0)	This vulnerability exists in Tenda wireless routers (300Mbps Wireless Router F3 and N300 Easy Setup…	2026-01-09T12:32:26Z	2026-01-09T12:32:26Z
ghsa-hfqg-hpcg-h9rx	6.4 (3.1)	The Curved Text plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'radius' …	2026-01-09T12:32:26Z	2026-01-09T12:32:26Z
ghsa-gfjh-r2j2-6qf3	6.1 (3.1)	The MG AdvancedOptions plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the…	2026-01-09T12:32:26Z	2026-01-09T12:32:26Z
ghsa-gcqp-g44c-653f	6.4 (3.1)	The PullQuote plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'p…	2026-01-09T12:32:26Z	2026-01-09T12:32:26Z
ghsa-g36m-9jqw-jhm4	6.1 (3.1)	The Lesson Plan Book plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the `…	2026-01-09T12:32:26Z	2026-01-09T12:32:26Z

ID	Severity	Description	Package	Published	Updated
pysec-2021-878	7.5 (3.1)	The mkdocs 1.2.2 built-in dev-server allows directory traversal using the port 8000, enab…	mkdocs	2021-10-07T14:15:00Z	2024-01-17T10:53:34.840029Z
pysec-2021-357		The Unicorn framework through 0.35.3 for Django allows XSS via component.name.	django-unicorn	2021-10-07T06:15:00Z	2021-10-08T02:27:35.256995Z
pysec-2021-365		Vyper is a Pythonic Smart Contract Language for the EVM. In affected versions when perfor…	vyper	2021-10-06T18:15:00Z	2021-10-11T01:16:43.176882Z
pysec-2021-363		Scrapy is a high-level web crawling and scraping framework for Python. If you use `HttpAu…	scrapy	2021-10-06T18:15:00Z	2021-10-11T01:16:42.905582Z
pysec-2021-423		An issue in Gate One 1.2.0 allows attackers to bypass to the verification check done by t…	gateone	2021-10-06T13:15:00Z	2021-11-16T03:58:44.124463Z
pysec-2021-366		Vyper is a Pythonic Smart Contract Language for the EVM. In affected versions external fu…	vyper	2021-10-05T23:15:00Z	2021-10-11T01:16:43.215640Z
pysec-2021-364		Scrapy-splash is a library which provides Scrapy and JavaScript integration. In affected …	scrapy-splash	2021-10-05T21:15:00Z	2021-10-11T01:16:42.816754Z
pysec-2021-881	7.5 (3.1)	The FTL Server (tibftlserver) and Docker images containing tibftlserver components of TIB…	eftl	2021-10-05T18:15:00Z	2024-11-21T14:22:45.803448Z
pysec-2021-429		SLO generator allows for loading of YAML files that if crafted in a specific format can a…	slo-generator	2021-10-04T10:15:00Z	2021-11-16T21:20:29.712720Z
pysec-2021-375		Cobbler before 3.3.0 allows authorization bypass for modification of settings.	cobbler	2021-10-04T06:15:00Z	2021-10-19T21:47:31.769581Z
pysec-2021-374		Cobbler before 3.3.0 allows arbitrary file write operations via upload_log_data.	cobbler	2021-10-04T06:15:00Z	2021-10-19T21:47:31.730339Z
pysec-2021-373		Cobbler before 3.3.0 allows log poisoning, and resultant Remote Code Execution, via an XM…	cobbler	2021-10-04T06:15:00Z	2021-10-19T21:47:31.690816Z
pysec-2021-350		In Shuup, versions 1.6.0 through 2.10.8 are vulnerable to reflected Cross-Site Scripting …	shuup	2021-09-30T08:15:00Z	2021-09-30T10:32:36.636402Z
pysec-2021-355		“Shuup” application in versions 0.4.2 to 2.10.8 is affected by the “Formula Injection” vu…	shuup	2021-09-29T14:15:00Z	2021-09-30T23:26:29.598032Z
pysec-2021-351		ESPHome is a system to control the ESP8266/ESP32. Anyone with web_server enabled and HTTP…	esphome	2021-09-28T16:15:00Z	2021-09-30T23:26:26.067991Z
pysec-2021-356		nltk is vulnerable to Inefficient Regular Expression Complexity	nltk	2021-09-27T13:15:00Z	2021-10-01T22:29:03.465380Z
pysec-2021-354		furlongm openvpn-monitor through 1.1.3 allows Authorization Bypass to disconnect arbitrar…	openvpn-monitor	2021-09-27T06:15:00Z	2021-09-30T23:26:26.851532Z
pysec-2021-353		furlongm openvpn-monitor through 1.1.3 allows %0a command injection via the OpenVPN manag…	openvpn-monitor	2021-09-27T06:15:00Z	2021-09-30T23:26:26.808242Z
pysec-2021-352		furlongm openvpn-monitor through 1.1.3 allows CSRF to disconnect an arbitrary client.	openvpn-monitor	2021-09-27T06:15:00Z	2021-09-30T23:26:26.774511Z
pysec-2021-338		Leo Editor v6.2.1 was discovered to contain a regular expression denial of service (ReDoS…	leo	2021-09-22T20:15:00Z	2021-09-26T23:50:00.616119Z
pysec-2021-358		A flaw was found in Ansible, where a user's controller is vulnerable to template injectio…	ansible	2021-09-22T12:15:00Z	2021-10-11T01:16:39.746753Z
pysec-2021-327		Apprise is an open source library which allows you to send a notification to almost all o…	apprise	2021-09-20T22:15:00Z	2021-09-23T00:10:35.209283Z
pysec-2021-325		Flask-RESTX (pypi package flask-restx) is a community driven fork of Flask-RESTPlus. Flas…	flask-restx	2021-09-20T18:15:00Z	2021-09-20T20:31:06.092661Z
pysec-2021-333		sqlparse is a non-validating SQL parser module for Python. In sqlparse versions 0.4.0 and…	sqlparse	2021-09-20T17:15:00Z	2023-04-09T10:46:38.256842Z
pysec-2021-324		An issue was discovered in LIEF through 0.11.4. A heap-buffer-overflow exists in the func…	lief	2021-09-20T16:15:00Z	2021-09-20T18:35:23.431537Z
pysec-2021-321		Wasmtime is an open source runtime for WebAssembly & WASI. In Wasmtime from version 0.26.…	wasmtime	2021-09-17T21:15:00Z	2021-09-17T22:30:49.898970Z
pysec-2021-322		Wasmtime is an open source runtime for WebAssembly & WASI. Wasmtime before version 0.30.0…	wasmtime	2021-09-17T20:15:00Z	2021-09-17T22:30:49.947373Z
pysec-2021-320		Wasmtime is an open source runtime for WebAssembly & WASI. In Wasmtime from version 0.19.…	wasmtime	2021-09-17T20:15:00Z	2021-09-17T22:30:49.852358Z
pysec-2021-328		mitmproxy is an interactive, SSL/TLS-capable intercepting proxy. In mitmproxy 7.0.2 and b…	mitmproxy	2021-09-16T15:15:00Z	2021-09-23T00:11:00.900340Z
pysec-2021-334		parlai is a framework for training and evaluating AI models on a variety of openly availa…	parlai	2021-09-10T23:15:00Z	2021-09-23T16:57:40.954858Z

ID	Description	Type

ID	Description	Updated

ID	Description	Published	Updated
mal-2025-192062	Malicious code in elf-stats-glittering-wishlist-537 (npm)	2025-12-03T15:59:29Z	2025-12-23T20:09:23Z
mal-2025-192061	Malicious code in elf-stats-glittering-nutcracker-591 (npm)	2025-12-03T15:59:29Z	2025-12-23T20:09:23Z
mal-2025-192060	Malicious code in elf-stats-glittering-marshmallow-217 (npm)	2025-12-03T15:59:29Z	2025-12-23T20:09:23Z
mal-2025-192059	Malicious code in elf-stats-glittering-lantern-418 (npm)	2025-12-03T15:59:29Z	2025-12-03T15:59:29Z
mal-2025-192058	Malicious code in elf-stats-glittering-cookie-772 (npm)	2025-12-03T15:59:29Z	2025-12-23T20:09:23Z
mal-2025-192057	Malicious code in elf-stats-gingersnap-sparkler-768 (npm)	2025-12-03T15:59:29Z	2025-12-03T15:59:29Z
mal-2025-192056	Malicious code in elf-stats-gingersnap-reindeer-987 (npm)	2025-12-03T15:59:29Z	2025-12-16T07:25:30Z
mal-2025-192055	Malicious code in elf-stats-gingersnap-pinecone-440 (npm)	2025-12-03T15:59:29Z	2025-12-03T15:59:29Z
mal-2025-192054	Malicious code in elf-stats-ginger-workshop-948 (npm)	2025-12-03T15:59:29Z	2025-12-23T20:09:23Z
mal-2025-192053	Malicious code in elf-stats-ginger-ledger-106 (npm)	2025-12-03T15:59:29Z	2025-12-23T20:09:23Z
mal-2025-192052	Malicious code in elf-stats-ginger-icicle-707 (npm)	2025-12-03T15:59:29Z	2025-12-04T10:25:39Z
mal-2025-192051	Malicious code in elf-stats-ginger-cookiejar-383 (npm)	2025-12-03T15:59:29Z	2025-12-03T15:59:29Z
mal-2025-192050	Malicious code in elf-stats-ginger-bell-819 (npm)	2025-12-03T15:59:29Z	2025-12-03T15:59:29Z
mal-2025-192049	Malicious code in elf-stats-fuzzy-sparkler-922 (npm)	2025-12-03T15:59:29Z	2025-12-23T20:09:23Z
mal-2025-192048	Malicious code in elf-stats-fuzzy-pantry-827 (npm)	2025-12-03T15:59:29Z	2025-12-23T20:09:23Z
mal-2025-192047	Malicious code in elf-stats-fuzzy-ornament-236 (npm)	2025-12-03T15:59:29Z	2025-12-03T15:59:29Z
mal-2025-192046	Malicious code in elf-stats-fuzzy-mitten-891 (npm)	2025-12-03T15:59:29Z	2025-12-03T15:59:29Z
mal-2025-192045	Malicious code in elf-stats-fuzzy-marshmallow-280 (npm)	2025-12-03T15:59:29Z	2025-12-23T20:09:23Z
mal-2025-192044	Malicious code in elf-stats-fuzzy-cushion-615 (npm)	2025-12-03T15:59:29Z	2025-12-03T15:59:29Z
mal-2025-192043	Malicious code in elf-stats-frosty-toy-870 (npm)	2025-12-03T15:59:29Z	2025-12-03T15:59:29Z
mal-2025-192042	Malicious code in elf-stats-frosty-candy-152 (npm)	2025-12-03T15:59:29Z	2025-12-03T15:59:29Z
mal-2025-192041	Malicious code in elf-stats-frostbitten-wishlist-794 (npm)	2025-12-03T15:59:29Z	2025-12-03T15:59:29Z
mal-2025-192040	Malicious code in elf-stats-frostbitten-train-315 (npm)	2025-12-03T15:59:29Z	2025-12-03T15:59:29Z
mal-2025-192039	Malicious code in elf-stats-frostbitten-ribbon-950 (npm)	2025-12-03T15:59:29Z	2025-12-23T19:37:08Z
mal-2025-192038	Malicious code in elf-stats-frostbitten-bow-539 (npm)	2025-12-03T15:59:29Z	2025-12-23T19:37:08Z
mal-2025-192037	Malicious code in elf-stats-flickering-workbench-929 (npm)	2025-12-03T15:59:29Z	2025-12-23T19:37:08Z
mal-2025-192036	Malicious code in elf-stats-flickering-wishlist-695 (npm)	2025-12-03T15:59:29Z	2025-12-03T15:59:29Z
mal-2025-192035	Malicious code in elf-stats-flickering-saddlebag-301 (npm)	2025-12-03T15:59:29Z	2025-12-23T19:37:08Z
mal-2025-192034	Malicious code in elf-stats-flickering-fir-572 (npm)	2025-12-03T15:59:29Z	2025-12-03T15:59:29Z
mal-2025-192033	Malicious code in elf-stats-flickering-candy-280 (npm)	2025-12-03T15:59:29Z	2025-12-03T15:59:29Z

ID	Description	Published	Updated
wid-sec-w-2025-1596	Linux Kernel: Schwachstelle ermöglicht Denial of Service und nicht spezifizierten Angriff	2025-07-17T22:00:00.000+00:00	2025-12-15T23:00:00.000+00:00
wid-sec-w-2025-1595	IBM AIX und VIOS (SQLite): Mehrere Schwachstellen	2025-07-17T22:00:00.000+00:00	2025-07-17T22:00:00.000+00:00
wid-sec-w-2025-1594	IBM Tivoli Netcool/OMNIbus (Eclipse OMR): Mehrere Schwachstellen	2025-07-17T22:00:00.000+00:00	2025-07-17T22:00:00.000+00:00
wid-sec-w-2025-1593	Grafana: Mehrere Schwachstellen	2025-07-17T22:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-1592	Red Hat Ansible Automation Platform: Schwachstelle ermöglicht Offenlegung von Informationen	2025-07-17T22:00:00.000+00:00	2025-08-04T22:00:00.000+00:00
wid-sec-w-2025-1591	IBM WebSphere Application Server: Schwachstelle ermöglicht Offenlegung von Informationen	2025-07-17T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-1590	7-Zip: Mehrere Schwachstellen ermöglichen Denial of Service	2025-07-17T22:00:00.000+00:00	2026-01-04T23:00:00.000+00:00
wid-sec-w-2025-1589	Apache Tomcat: Schwachstelle ermöglicht Denial of Service	2025-07-17T22:00:00.000+00:00	2025-07-17T22:00:00.000+00:00
wid-sec-w-2025-1588	Cisco Identity Services Engine (ISE): Mehrere Schwachstellen	2025-07-16T22:00:00.000+00:00	2025-07-16T22:00:00.000+00:00
wid-sec-w-2025-1587	Drupal-Module: Mehrere Schwachstellen	2025-07-16T22:00:00.000+00:00	2025-07-21T22:00:00.000+00:00
wid-sec-w-2025-1586	Cisco Unified Intelligence Center: Mehrere Schwachstellen	2025-07-16T22:00:00.000+00:00	2025-07-16T22:00:00.000+00:00
wid-sec-w-2025-1585	Internet Systems Consortium BIND: Mehrere Schwachstellen	2025-07-16T22:00:00.000+00:00	2025-07-17T22:00:00.000+00:00
wid-sec-w-2025-1584	Cisco Prime Infrastructure und EPNM: Schwachstelle ermöglicht Offenlegung von Informationen	2025-07-16T22:00:00.000+00:00	2025-07-16T22:00:00.000+00:00
wid-sec-w-2025-1583	ffmpeg: Schwachstelle ermöglicht Denial of Service	2025-07-16T22:00:00.000+00:00	2025-11-17T23:00:00.000+00:00
wid-sec-w-2025-1582	IBM WebSphere Application Server: Schwachstelle ermöglicht Denial of Service	2025-07-16T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-1581	Fortra GoAnywhere MFT: Schwachstelle ermöglicht Denial of Service	2025-07-16T22:00:00.000+00:00	2025-07-16T22:00:00.000+00:00
wid-sec-w-2025-1580	Google Chrome / Microsoft Edge: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-27T22:00:00.000+00:00
wid-sec-w-2025-1579	Atlassian Bamboo Data Center und Server: Schwachstelle ermöglicht Offenlegung von Informationen	2025-07-15T22:00:00.000+00:00	2025-10-05T22:00:00.000+00:00
wid-sec-w-2025-1578	Node.js: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-10-12T22:00:00.000+00:00
wid-sec-w-2025-1577	Microsoft GitHub Enterprise: Schwachstelle ermöglicht Offenlegung von Informationen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1576	VMware Produkte: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-16T22:00:00.000+00:00
wid-sec-w-2025-1575	vim (.tar and .zip): Mehrere Schwachstellen ermöglichen Codeausführung	2025-07-15T22:00:00.000+00:00	2025-12-10T23:00:00.000+00:00
wid-sec-w-2025-1574	Apache CXF: Schwachstelle ermöglicht Denial of Service und Offenlegung von Informationen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1573	IBM QRadar SIEM: Schwachstelle ermöglicht Cross-Site Scripting	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1572	Oracle Fusion Middleware: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1571	Oracle Hyperion: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1570	Oracle Insurance Applications: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1569	Oracle Java SE: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-1568	Oracle JD Edwards: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-07-15T22:00:00.000+00:00
wid-sec-w-2025-1567	Oracle MySQL: Mehrere Schwachstellen	2025-07-15T22:00:00.000+00:00	2025-12-01T23:00:00.000+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
rhsa-2025:16487	Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update	2025-09-23T18:04:58+00:00	2025-12-08T12:45:05+00:00
rhsa-2025:16488	Red Hat Security Advisory: podman security update	2025-09-23T16:48:17+00:00	2025-12-16T15:20:22+00:00
rhsa-2025:16504	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.19 security, enhancement & bug fix update	2025-09-23T15:46:00+00:00	2025-11-21T19:38:37+00:00
rhsa-2025:16482	Red Hat Security Advisory: container-tools:rhel8 security update	2025-09-23T15:24:48+00:00	2025-12-16T15:20:17+00:00
rhsa-2025:16481	Red Hat Security Advisory: podman security update	2025-09-23T15:19:02+00:00	2025-12-16T15:20:12+00:00
rhsa-2025:16480	Red Hat Security Advisory: podman security update	2025-09-23T14:06:08+00:00	2025-12-16T15:20:13+00:00
rhsa-2025:16483	Red Hat Security Advisory: OpenShift Virtualization 4.12.20 Images	2025-09-23T13:46:22+00:00	2026-01-19T18:08:30+00:00
rhsa-2025:16461	Red Hat Security Advisory: Red Hat Product OCP Tools 4.14 OpenShift Jenkins security update	2025-09-23T10:10:12+00:00	2026-01-03T11:37:50+00:00
rhsa-2025:16462	Red Hat Security Advisory: Red Hat Product OCP Tools 4.15 OpenShift Jenkins security update	2025-09-23T10:09:56+00:00	2026-01-03T11:37:50+00:00
rhsa-2025:16460	Red Hat Security Advisory: Red Hat Product OCP Tools 4.13 OpenShift Jenkins security update	2025-09-23T10:09:41+00:00	2026-01-03T11:37:50+00:00
rhsa-2025:16459	Red Hat Security Advisory: Red Hat Product OCP Tools 4.12 OpenShift Jenkins security update	2025-09-23T09:47:46+00:00	2026-01-03T11:37:49+00:00
rhsa-2025:16457	Red Hat Security Advisory: Red Hat Product OCP Tools 4.16 OpenShift Jenkins security update	2025-09-23T09:44:56+00:00	2026-01-03T11:37:49+00:00
rhsa-2025:16456	Red Hat Security Advisory: Red Hat Product OCP Tools 4.17 OpenShift Jenkins security update	2025-09-23T09:44:51+00:00	2026-01-03T11:37:47+00:00
rhsa-2025:16454	Red Hat Security Advisory: Red Hat Product OCP Tools 4.19 OpenShift Jenkins security update	2025-09-23T09:44:32+00:00	2026-01-03T11:37:50+00:00
rhsa-2025:16455	Red Hat Security Advisory: Red Hat Product OCP Tools 4.18 Openshift Jenkins security update	2025-09-23T09:40:23+00:00	2026-01-03T11:37:47+00:00
rhsa-2025:16441	Red Hat Security Advisory: avahi security update	2025-09-23T08:32:26+00:00	2025-11-21T19:26:58+00:00
rhsa-2025:16428	Red Hat Security Advisory: libtpms security update	2025-09-23T08:27:06+00:00	2025-11-21T19:26:55+00:00
rhsa-2025:16432	Red Hat Security Advisory: opentelemetry-collector security update	2025-09-23T08:27:01+00:00	2026-01-13T23:04:36+00:00
rhsa-2025:16411	Red Hat Security Advisory: NetworkManager security update	2025-09-23T02:37:25+00:00	2025-11-21T19:26:54+00:00
rhsa-2025:16414	Red Hat Security Advisory: ncurses security update	2025-09-23T02:06:40+00:00	2025-12-01T22:02:55+00:00
rhsa-2025:16418	Red Hat Security Advisory: ncurses security update	2025-09-23T01:37:10+00:00	2025-12-01T22:02:56+00:00
rhsa-2025:16398	Red Hat Security Advisory: kernel security update	2025-09-23T01:04:55+00:00	2026-01-08T03:24:21+00:00
rhsa-2025:16409	Red Hat Security Advisory: Red Hat AMQ Broker 7.12.5 release and security update	2025-09-22T23:39:35+00:00	2026-01-20T00:55:59+00:00
rhsa-2025:16407	Red Hat Security Advisory: Streams for Apache Kafka 3.0.1 release and security update	2025-09-22T21:48:11+00:00	2026-01-19T03:55:07+00:00
rhsa-2025:16404	Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Container Release Update	2025-09-22T20:31:19+00:00	2025-12-08T12:45:16+00:00
rhsa-2025:16403	Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update	2025-09-22T18:14:13+00:00	2025-12-08T12:45:04+00:00
rhsa-2025:16399	Red Hat Security Advisory: Red Hat build of Keycloak 26.2.9 Security Update	2025-09-22T15:36:01+00:00	2025-12-19T21:46:33+00:00
rhsa-2025:16400	Red Hat Security Advisory: Red Hat build of Keycloak 26.2.9 Images Security Update	2025-09-22T15:35:49+00:00	2025-12-19T21:46:37+00:00
rhsa-2025:16372	Red Hat Security Advisory: kernel security update	2025-09-22T14:18:04+00:00	2026-01-13T22:28:44+00:00
rhsa-2025:16373	Red Hat Security Advisory: kernel-rt security update	2025-09-22T11:07:39+00:00	2025-12-22T22:32:23+00:00

ID	Description	Published	Updated
icsa-23-026-07	Landis+Gyr E850	2023-01-26T00:00:00.000000Z	2023-01-26T00:00:00.000000Z
icsa-23-026-06	Rockwell Automation products using GoAhead Web Server	2023-01-26T00:00:00.000000Z	2023-01-26T00:00:00.000000Z
icsa-23-026-05	Mitsubishi Electric MELFA SD/SQ series and F-series Robot Controllers	2023-01-26T00:00:00.000000Z	2023-01-26T00:00:00.000000Z
icsa-23-026-04	Sierra Wireless AirLink Router with ALEOS Software	2023-01-26T00:00:00.000000Z	2023-01-26T00:00:00.000000Z
icsa-23-026-03	Snap One Wattbox WB-300-IP-3	2023-01-26T00:00:00.000000Z	2023-01-26T00:00:00.000000Z
icsa-23-026-01	Delta Electronics CNCSoft ScreenEditor	2023-01-26T00:00:00.000000Z	2023-01-26T00:00:00.000000Z
icsa-23-024-02	SOCOMEC MODULYS GP (UPDATE A)	2023-01-24T07:00:00.000000Z	2023-09-26T06:00:00.000000Z
icsa-23-024-01	XINJE XD	2023-01-24T00:00:00.000000Z	2023-01-24T00:00:00.000000Z
icsa-23-019-01	Hitachi Energy PCU400	2023-01-19T00:00:00.000000Z	2023-01-19T00:00:00.000000Z
icsa-23-017-02	Mitsubishi Electric MELSEC iQ-F, iQ-R Series	2023-01-17T00:00:00.000000Z	2023-01-27T00:00:00.000000Z
icsa-23-017-01	GE Digital Proficy Historian	2023-01-17T00:00:00.000000Z	2023-01-17T00:00:00.000000Z
icsa-23-012-07	Hitachi Energy Lumada APM	2023-01-12T00:00:00.000000Z	2023-01-12T00:00:00.000000Z
icsa-23-012-06	Johnson Controls Metasys	2023-01-12T00:00:00.000000Z	2023-01-12T00:00:00.000000Z
icsa-23-012-05	SAUTER Controls Nova 200 - 220 Series (PLC 6)	2023-01-12T00:00:00.000000Z	2023-01-12T00:00:00.000000Z
icsa-23-012-04	Panasonic Sanyo CCTV Network Camera	2023-01-12T00:00:00.000000Z	2023-01-12T00:00:00.000000Z
icsa-23-012-03	InHand Networks InRouter	2023-01-12T00:00:00.000000Z	2023-01-12T00:00:00.000000Z
icsa-23-012-02	RONDS Equipment Predictive Maintenance Solution	2023-01-12T00:00:00.000000Z	2023-01-12T00:00:00.000000Z
icsa-23-012-01	Sewio RTLS Studio	2023-01-12T00:00:00.000000Z	2023-01-12T00:00:00.000000Z
icsa-23-017-03	Siemens SINEC INS	2023-01-10T00:00:00.000000Z	2023-01-10T00:00:00.000000Z
icsa-23-012-11	Siemens Solid Edge before V2023 MP1	2023-01-10T00:00:00.000000Z	2023-01-10T00:00:00.000000Z
icsa-23-012-10	Siemens Automation License Manager	2023-01-10T00:00:00.000000Z	2023-03-14T00:00:00.000000Z
icsa-23-012-09	Siemens Mendix SAML Module	2023-01-10T00:00:00.000000Z	2023-01-10T00:00:00.000000Z
icsa-23-012-08	Siemens S7-1500 CPU devices	2023-01-10T00:00:00.000000Z	2025-01-14T00:00:00.000000Z
icsa-23-010-01	Black Box KVM	2023-01-10T00:00:00.000000Z	2023-01-10T00:00:00.000000Z
icsa-23-005-03	Hitachi Energy Lumada Asset Performance Management	2023-01-05T00:00:00.000000Z	2023-01-05T00:00:00.000000Z
icsa-23-005-02	Hitachi Energy FOXMAN-UN	2023-01-05T00:00:00.000000Z	2023-01-05T00:00:00.000000Z
icsa-23-005-01	Hitachi Energy UNEM	2023-01-05T00:00:00.000000Z	2023-01-05T00:00:00.000000Z
icsa-22-356-03	Mitsubishi Electric MELSEC iQ-R, iQ-L Series and MELIPC Series (Update E)	2022-12-22T07:00:00.000000Z	2024-09-05T06:00:00.000000Z
icsa-22-356-04	Omron CX-Programmer	2022-12-22T00:00:00.000000Z	2022-12-22T00:00:00.000000Z
icsa-22-356-02	Rockwell Automation Studio 5000 Logix Emulate	2022-12-22T00:00:00.000000Z	2022-12-22T00:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-iosxe-rsp3-rce-jvhg8z7c	Cisco IOS XE Software for Cisco ASR 900 Series Route Switch Processor 3 Arbitrary Code Execution Vulnerabilities	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-iosxe-isdn-q931-dos-67euzbtf	Cisco IOS and IOS XE Software ISDN Q.931 Denial of Service Vulnerability	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-iosxe-iox-app-host-mczcnsbt	Cisco IOS XE Software IOx Application Hosting Privilege Escalation Vulnerability	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-iosxe-ewlc-snmp-dos-wnkedg9k	Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family SNMP Trap Denial of Service Vulnerability	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-iosxe-dhcp-dos-jsckx43h	Cisco IOS XE Software for Cisco cBR-8 Converged Broadband Routers DHCP Denial of Service Vulnerability	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-iosxe-ctbypass-7qhafhkk	Cisco IOS XE Software Consent Token Bypass Vulnerability	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-iosxe-cmdinj-2mzhjm6k	Cisco IOS XE Software Command Injection Vulnerability	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-ios-xe-webui-multi-vftkk7yr	Cisco IOS XE Software Web Management Framework Vulnerabilities	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-ios-webui-priv-esc-k8zvewm	Cisco IOS XE Software Privilege Escalation Vulnerabilities	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-ios-profinet-dos-65qyg3w5	Cisco IOS and IOS XE Software PROFINET Link Layer Discovery Protocol Denial of Service Vulnerability	2020-09-24T16:00:00+00:00	2020-12-09T15:23:48+00:00
cisco-sa-ios-lua-rce-7vejx4f	Cisco IOS XE Software Arbitrary Code Execution Vulnerability	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-ios-lpwa-access-cxsd7pra	Cisco IOS Software for Cisco Industrial Routers Virtual-LPWA Unauthorized Access Vulnerability	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-ios-bgp-evpn-dos-lnfyjxff	Cisco IOS and IOS XE Software MP-BGP EVPN Denial of Service Vulnerability	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-info-disclosure-v4bmjbnf	Cisco IOS and IOS XE Software Information Disclosure Vulnerability	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-file-overwrite-ynu5prjd	Cisco IOS XE Software Arbitrary File Overwrite Vulnerability	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-ewlc-icmpv6-qb9eyycr	Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family Improper Access Control Vulnerability	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-esp20-arp-dos-gvhvggqj	Cisco IOS XE Software for Cisco ASR 1000 Series 20-Gbps Embedded Services Processor IP ARP Denial of Service Vulnerability	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-dclass-dos-vkh9d8k3	Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family WLAN Local Profiling Denial of Service Vulnerability	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-cops-vld-mpbtvgew	Cisco IOS XE Software Common Open Policy Service Engine Denial of Service Vulnerability	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-confacl-hbptfsuo	Cisco IOS XE Software RESTCONF and NETCONF-YANG Access Control List Denial of Service Vulnerability	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-capwap-dos-tpdntdyq	Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family CAPWAP Denial of Service Vulnerabilities	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-capwap-dos-shfzxf	Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family CAPWAP Denial of Service Vulnerability	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-ap-ethport-dos-xtjtt8py	Cisco Aironet Access Points Ethernet Wired Clients Denial of Service Vulnerability	2020-09-24T16:00:00+00:00	2020-09-30T15:49:49+00:00
cisco-sa-aironet-dos-vhr2zg9y	Cisco Aironet Access Points UDP Flooding Denial of Service Vulnerability	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-aironet-dos-h3dculxw	Cisco Aironet Access Point Authentication Flood Denial of Service Vulnerability	2020-09-24T16:00:00+00:00	2020-09-24T16:00:00+00:00
cisco-sa-webex-meetings-utbwor4q	Cisco Webex Training Unauthorized Meeting Join Vulnerability	2020-09-02T16:00:00+00:00	2020-09-02T16:00:00+00:00
cisco-sa-webex-media-znjfwhd6	Cisco Webex Meetings Client for Windows, Webex Meetings Desktop App, and Webex Teams Information Disclosure Vulnerability	2020-09-02T16:00:00+00:00	2020-09-02T16:00:00+00:00
cisco-sa-sma-wsa-esa-info-dis-vsvpzohp	Cisco Content Security Management Appliance and Cisco Web Security Appliance Information Disclosure Vulnerability	2020-09-02T16:00:00+00:00	2022-02-02T21:31:49+00:00
cisco-sa-rv-osinj-rce-pwtkpcjv	Cisco Small Business RV340 Series Routers Command Injection and Remote Code Execution Vulnerabilities	2020-09-02T16:00:00+00:00	2020-09-30T19:35:24+00:00
cisco-sa-nfvis-path-emy79oc2	Cisco Enterprise NFV Infrastructure Software Path Traversal Vulnerability	2020-09-02T16:00:00+00:00	2020-09-02T16:00:00+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2025-38679	media: venus: Fix OOB read due to missing payload bound check	2025-09-02T00:00:00.000Z	2025-09-06T01:09:41.000Z
msrc_cve-2025-38678	netfilter: nf_tables: reject duplicate device on updates	2025-09-02T00:00:00.000Z	2025-12-02T14:35:35.000Z
msrc_cve-2025-11083	GNU Binutils Linker elfcode.h elf_swap_shdr heap-based overflow	2025-09-02T00:00:00.000Z	2025-10-02T01:04:49.000Z
msrc_cve-2025-11082	GNU Binutils Linker elf-eh-frame.c _bfd_elf_parse_eh_frame heap-based overflow	2025-09-02T00:00:00.000Z	2025-10-02T01:04:39.000Z
msrc_cve-2025-11081	GNU Binutils objdump.c dump_dwarf_section out-of-bounds	2025-09-02T00:00:00.000Z	2025-10-02T01:04:20.000Z
msrc_cve-2025-11021	Libsoup: out-of-bounds read in cookie date handling of libsoup http library	2025-09-02T00:00:00.000Z	2025-09-29T01:01:39.000Z
msrc_cve-2025-10911	Libxslt: use-after-free with key data stored cross-rvt	2025-09-02T00:00:00.000Z	2026-01-03T01:37:47.000Z
msrc_cve-2025-10824	axboe fio init.c __parse_jobs_ini use after free	2025-09-02T00:00:00.000Z	2025-09-24T01:01:39.000Z
msrc_cve-2025-10823	axboe fio options.c str_buffer_pattern_cb null pointer dereference	2025-09-02T00:00:00.000Z	2025-09-24T01:01:30.000Z
msrc_cve-2024-58241	Bluetooth: hci_core: Disable works on hci_unregister_dev	2025-09-02T00:00:00.000Z	2026-01-08T14:44:27.000Z
msrc_cve-2023-53447	f2fs: don't reset unchangable mount option in f2fs_remount()	2025-09-02T00:00:00.000Z	2025-12-17T01:39:01.000Z
msrc_cve-2023-53438	x86/MCE: Always save CS register on AMD Zen IF Poison errors	2025-09-02T00:00:00.000Z	2025-12-12T01:02:37.000Z
msrc_cve-2023-53429	btrfs: don't check PageError in __extent_writepage	2025-09-02T00:00:00.000Z	2025-12-12T01:02:32.000Z
msrc_cve-2023-53424	clk: mediatek: fix of_iomap memory leak	2025-09-02T00:00:00.000Z	2025-12-12T01:02:26.000Z
msrc_cve-2023-53421	blk-cgroup: Reinit blkg_iostat_set after clearing in blkcg_reset_stats()	2025-09-02T00:00:00.000Z	2025-12-12T01:02:21.000Z
msrc_cve-2023-53410	USB: ULPI: fix memory leak with using debugfs_lookup()	2025-09-02T00:00:00.000Z	2025-12-16T01:36:48.000Z
msrc_cve-2023-53401	mm: kmem: fix a NULL pointer dereference in obj_stock_flush_required()	2025-09-02T00:00:00.000Z	2025-12-13T01:01:40.000Z
msrc_cve-2023-53387	scsi: ufs: core: Fix device management cmd timeout flow	2025-09-02T00:00:00.000Z	2025-12-16T01:37:11.000Z
msrc_cve-2023-53383	irqchip/gicv3: Workaround for NVIDIA erratum T241-FABRIC-4	2025-09-02T00:00:00.000Z	2025-12-13T01:01:29.000Z
msrc_cve-2023-53376	scsi: mpi3mr: Use number of bits to manage bitmap sizes	2025-09-02T00:00:00.000Z	2025-12-15T14:36:14.000Z
msrc_cve-2023-53371	net/mlx5e: fix memory leak in mlx5e_fs_tt_redirect_any_create	2025-09-02T00:00:00.000Z	2025-12-17T01:38:56.000Z
msrc_cve-2023-53370	drm/amdgpu: fix memory leak in mes self test	2025-09-02T00:00:00.000Z	2025-12-16T01:37:37.000Z
msrc_cve-2023-53367	accel/habanalabs: fix mem leak in capture user mappings	2025-09-02T00:00:00.000Z	2025-12-16T01:37:04.000Z
msrc_cve-2023-53366	block: be a bit more careful in checking for NULL bdev while polling	2025-09-02T00:00:00.000Z	2025-12-13T01:01:18.000Z
msrc_cve-2023-53355	staging: pi433: fix memory leak with using debugfs_lookup()	2025-09-02T00:00:00.000Z	2025-12-12T01:02:10.000Z
msrc_cve-2023-53353	accel/habanalabs: postpone mem_mgr IDR destruction to hpriv_release()	2025-09-02T00:00:00.000Z	2025-12-12T01:02:05.000Z
msrc_cve-2023-53348	btrfs: fix deadlock when aborting transaction during relocation with scrub	2025-09-02T00:00:00.000Z	2025-12-12T01:01:59.000Z
msrc_cve-2023-53347	net/mlx5: Handle pairing of E-switch via uplink un/load APIs	2025-09-02T00:00:00.000Z	2025-12-12T01:01:54.000Z
msrc_cve-2023-53332	genirq/ipi: Fix NULL pointer deref in irq_data_get_affinity_mask()	2025-09-02T00:00:00.000Z	2025-12-12T01:01:33.000Z
msrc_cve-2023-53323	ext2/dax: Fix ext2_setsize when len is page aligned	2025-09-02T00:00:00.000Z	2025-12-12T01:01:27.000Z

ID	Description	Published	Updated

ID	Description	Updated
var-201304-0375	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2025-12-22T20:02:41.559000Z
var-202007-1133	Inappropriate implementation in WebRTC in Google Chrome prior to 84.0.4147.89 allowed an …	2025-12-22T20:01:57.106000Z
var-201912-0525	A logic issue was addressed with improved state management. This issue is fixed in tvOS 1…	2025-12-22T20:01:43.882000Z
var-201003-0281	The ssl3_get_record function in ssl/s3_pkt.c in OpenSSL 0.9.8f through 0.9.8m allows remo…	2025-12-22T20:01:43.591000Z
var-200708-0612	The date handling code in modules/proxy/proxy_util.c (mod_proxy) in Apache 2.3.0, when us…	2025-12-22T20:01:43.508000Z
var-201912-0609	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2025-12-22T20:01:43.411000Z
var-201912-0604	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2025-12-22T20:01:42.738000Z
var-201212-0238	Integer overflow in Adobe Flash Player before 10.3.183.48 and 11.x before 11.5.502.135 on…	2025-12-22T20:00:36.466000Z
var-201902-0192	If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (…	2025-12-22T20:00:36.067000Z
var-201108-0150	Integer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and…	2025-12-22T20:00:35.057000Z
var-201012-0193	OpenSSL before 0.9.8q, and 1.0.x before 1.0.0c, when SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_…	2025-12-22T20:00:34.784000Z
var-200809-0184	Race condition in Login Window in Apple Mac OS X 10.5 through 10.5.4, when a blank-passwo…	2025-12-22T19:59:59.508000Z
var-201011-0042	Integer overflow in the Text::wholeText method in dom/Text.cpp in WebKit, as used in Appl…	2025-12-22T19:59:59.427000Z
var-201504-0478	The sqlite3VdbeExec function in vdbe.c in SQLite before 3.8.9 does not properly implement…	2025-12-22T19:59:58.200000Z
var-201007-0319	The counters functionality in the Cascading Style Sheets (CSS) implementation in WebKit i…	2025-12-22T19:59:45.667000Z
var-200609-0315	Apple QuickTime before 7.1.3 allows user-assisted remote attackers to execute arbitrary c…	2025-12-22T19:59:44.461000Z
var-201210-0278	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2025-12-22T19:59:43.994000Z
var-201912-1856	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2025-12-22T19:59:00.340000Z
var-201912-1844	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2025-12-22T19:58:29.224000Z
var-200608-0043	The Download Validation in Mail in Mac OS X 10.4 does not properly recognize attachment f…	2025-12-22T19:58:28.809000Z
var-201704-1034	Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.…	2025-12-22T19:58:27.256000Z
var-200712-0605	Use-after-free vulnerability in the gss_indicate_mechs function in lib/gssapi/mechglue/g_…	2025-12-22T19:58:25.855000Z
var-201912-0501	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2025-12-22T19:58:24.051000Z
var-202202-0114	xmlparse.c in Expat (aka libexpat) before 2.4.5 allows attackers to insert namespace-sepa…	2025-12-22T19:58:23.455000Z
var-200608-0038	Unspecified vulnerability in AFP Server in Apple Mac OS X 10.3.9 allows remote attackers …	2025-12-22T19:57:51.790000Z
var-200609-0703	The Installer application in Apple Mac OS X 10.4.8 and earlier, when used by a user with …	2025-12-22T19:57:51.445000Z
var-201603-0237	Web Server in Apple OS X Server before 5.1 supports the RC4 algorithm, which makes it eas…	2025-12-22T19:57:14.248000Z
var-200505-0311	Stack-based buffer overflow in the VPN daemon (vpnd) for Mac OS X before 10.3.9 allows lo…	2025-12-22T19:57:00.654000Z
var-200702-0109	The Bonjour functionality in iChat in Apple Mac OS X 10.3.9 allows remote attackers to ca…	2025-12-22T19:56:54.860000Z
var-201203-0202	The extension subsystem in Google Chrome before 17.0.963.78 does not properly handle hist…	2025-12-22T19:56:50.816000Z

ID	Description	Published	Updated
jvndb-2017-000231	OpenAM (Open Source Edition) vulnerable to authentication bypass	2017-11-01T15:36+09:00	2018-03-14T14:03+09:00
jvndb-2017-008629	Memory corruption vulnerability in Rakuraku Hagaki and Rakuraku Hagaki Select for Ichitaro	2017-10-25T12:17+09:00	2018-03-14T14:01+09:00
jvndb-2017-008411	XXE Vulnerability in Hitachi Command Suite	2017-10-18T14:22+09:00	2017-11-07T15:06+09:00
jvndb-2017-000229	Home unit KX-HJB1000 contains multiple vulnerabilities	2017-10-17T17:22+09:00	2018-03-07T14:24+09:00
jvndb-2017-008370	Information Disclosure Vulnerability in Hitachi Automation Director	2017-10-17T17:01+09:00	2017-10-18T12:31+09:00
jvndb-2017-008369	Multiple Vulnerabilities in Hitachi Infrastructure Analytics Advisor	2017-10-17T16:58+09:00	2017-10-18T12:31+09:00
jvndb-2017-008364	RMI Vulnerability in Hitachi Tuning Manager	2017-10-17T16:26+09:00	2017-10-18T12:31+09:00
jvndb-2017-008363	Information Disclosure Vulnerability in Hitachi Global Link Manager	2017-10-17T16:26+09:00	2017-10-18T12:31+09:00
jvndb-2017-000228	Installer of HIBUN Confidential File Viewer may insecurely load Dynamic Link Libraries and invoke executable files	2017-10-11T16:43+09:00	2018-03-07T12:09+09:00
jvndb-2017-000227	HIBUN Confidential File Decryption program may insecurely load Dynamic Link Libraries	2017-10-11T16:43+09:00	2018-03-07T12:06+09:00
jvndb-2017-000226	HIBUN Confidential File Decryption program may insecurely load Dynamic Link Libraries	2017-10-11T16:43+09:00	2018-03-07T12:12+09:00
jvndb-2017-000225	Cybozu Office fails to restrict access permissions	2017-10-11T14:28+09:00	2018-03-07T12:21+09:00
jvndb-2017-007767	Self-Decrypting Confidential Files created by JP1/HIBUN may insecurely load Dynamic Link Libraries	2017-10-03T11:18+09:00	2017-10-06T11:36+09:00
jvndb-2017-000223	Install program and Installer of i-filter 6.0 may insecurely load Dynamic Link Libraries and invoke executable files	2017-09-29T13:54+09:00	2017-09-29T13:54+09:00
jvndb-2017-000146	Marp vulnerable to improper access control in JavaScript execution	2017-09-29T13:54+09:00	2018-02-07T11:52+09:00
jvndb-2017-007582	jwt-scala fails to verify token signatures	2017-09-26T15:37+09:00	2018-03-07T12:23+09:00
jvndb-2017-007422	InterScan Web Security Virtual Appliance vulnerable to code injection	2017-09-21T15:58+09:00	2018-03-07T14:32+09:00
jvndb-2017-000218	Wi-Fi STATION L-02F fails to restrict access permissions	2017-09-12T14:35+09:00	2018-02-28T14:09+09:00
jvndb-2017-000217	Backdoor access issue in Wi-Fi STATION L-02F	2017-09-12T14:34+09:00	2018-02-28T14:11+09:00
jvndb-2017-000222	SEIL Series routers vulnerable to denial-of-service (DoS)	2017-09-11T15:19+09:00	2018-02-28T14:12+09:00
jvndb-2017-000221	Installer of FENCE-Explorer may insecurely load Dynamic Link Libraries and invoke executable files	2017-09-11T14:55+09:00	2018-02-28T13:58+09:00
jvndb-2017-000220	Multiple vulnerabilities in CG-WLR300NM	2017-09-08T14:14+09:00	2018-02-28T12:21+09:00
jvndb-2017-006769	Denial-of-service (DoS) Vulnerability in JP1 and Hitachi IT Operations Director	2017-09-04T12:14+09:00	2017-09-05T10:46+09:00
jvndb-2017-000219	Multiple Fuji Xerox products may insecurely load Dynamic Link Libraries	2017-08-31T16:35+09:00	2021-04-12T13:30+09:00
jvndb-2017-000211	Installer of "Remote Support Tool (Enkaku Support Tool)" may insecurely load Dynamic Link Libraries	2017-08-30T15:10+09:00	2017-08-30T15:10+09:00
jvndb-2017-006466	Denial-of-service (DoS) Vulnerability in HiRDB	2017-08-28T13:46+09:00	2017-09-05T10:46+09:00
jvndb-2017-000214	Installer of "Flets Install Tool" may insecurely load Dynamic Link Libraries	2017-08-25T15:02+09:00	2018-02-28T14:07+09:00
jvndb-2017-000212	Installer of "Flets Azukeru for Windows Auto Backup Tool" may insecurely load Dynamic Link Libraries	2017-08-25T15:02+09:00	2018-02-28T14:07+09:00
jvndb-2017-000216	Installer of "Flets Setsuzoku Tool" may insecurely load Dynamic Link Libraries	2017-08-25T14:52+09:00	2018-02-28T11:39+09:00
jvndb-2017-000215	Installer and self-extracting archive containing the installer of "Security Setup Tool" may insecurely load Dynamic Link Libraries	2017-08-25T14:50+09:00	2018-02-28T14:28+09:00

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2025:03011-1	Security update for the Linux Kernel	2025-08-28T12:06:15Z	2025-08-28T12:06:15Z
suse-su-2025:03010-1	Security update for gdk-pixbuf	2025-08-28T10:46:34Z	2025-08-28T10:46:34Z
suse-su-2025:03009-1	Security update for MozillaFirefox	2025-08-28T09:19:04Z	2025-08-28T09:19:04Z
suse-su-2025:03008-1	Security update for MozillaFirefox	2025-08-28T09:18:13Z	2025-08-28T09:18:13Z
suse-su-2025:03007-1	Security update for MozillaThunderbird	2025-08-28T08:03:38Z	2025-08-28T08:03:38Z
suse-su-2025:03006-1	Security update for tomcat10	2025-08-28T08:02:59Z	2025-08-28T08:02:59Z
suse-su-2025:03004-1	Security update for postgresql15	2025-08-27T13:42:44Z	2025-08-27T13:42:44Z
suse-su-2025:03003-1	Security update for postgresql13	2025-08-27T13:42:33Z	2025-08-27T13:42:33Z
suse-su-2025:03001-1	Security update for ignition	2025-08-27T12:05:48Z	2025-08-27T12:05:48Z
suse-su-2025:03000-1	Security update for ignition	2025-08-27T12:05:13Z	2025-08-27T12:05:13Z
suse-su-2025:02999-1	Security update for ignition	2025-08-27T12:05:04Z	2025-08-27T12:05:04Z
suse-su-2025:02998-1	Security update for ignition	2025-08-27T12:04:54Z	2025-08-27T12:04:54Z
suse-su-2025:02997-1	Security update for the Linux Kernel	2025-08-27T12:04:21Z	2025-08-27T12:04:21Z
suse-su-2025:02996-1	Security update for the Linux Kernel	2025-08-27T12:02:43Z	2025-08-27T12:02:43Z
suse-su-2025:02995-1	Security update for postgresql17	2025-08-27T12:01:22Z	2025-08-27T12:01:22Z
suse-su-2025:02994-1	Security update for postgresql13	2025-08-27T12:00:14Z	2025-08-27T12:00:14Z
suse-su-2025:02992-1	Security update for tomcat11	2025-08-27T11:57:03Z	2025-08-27T11:57:03Z
suse-su-2025:02991-1	Security update for firebird	2025-08-27T11:56:30Z	2025-08-27T11:56:30Z
suse-su-2025:02990-1	Security update for ffmpeg	2025-08-27T10:29:08Z	2025-08-27T10:29:08Z
suse-su-2025:20631-1	Security update for python311	2025-08-27T10:27:12Z	2025-08-27T10:27:12Z
suse-su-2025:20607-1	Security update for libxml2	2025-08-27T09:46:19Z	2025-08-27T09:46:19Z
suse-su-2025:02987-1	Security update for postgresql17	2025-08-26T10:41:47Z	2025-08-26T10:41:47Z
suse-su-2025:02986-1	Security update for postgresql17	2025-08-26T10:41:09Z	2025-08-26T10:41:09Z
suse-su-2025:02985-1	Security update for python-urllib3	2025-08-25T13:55:10Z	2025-08-25T13:55:10Z
suse-su-2025:02984-1	Security update for python311	2025-08-25T13:48:53Z	2025-08-25T13:48:53Z
suse-su-2025:02983-1	Security update for python36	2025-08-25T13:48:42Z	2025-08-25T13:48:42Z
suse-su-2025:02982-1	Security update for python312	2025-08-25T13:48:25Z	2025-08-25T13:48:25Z
suse-su-2025:02981-1	Security update for postgresql16	2025-08-25T13:47:51Z	2025-08-25T13:47:51Z
suse-su-2025:02980-1	Security update for postgresql16	2025-08-25T13:46:44Z	2025-08-25T13:46:44Z
suse-su-2025:02979-1	Security update for tomcat11	2025-08-25T13:46:18Z	2025-08-25T13:46:18Z

ID	Description	Published	Updated
opensuse-su-2025:14685-1	java-11-openjdk-11.0.26.0-1.1 on GA media	2025-01-23T00:00:00Z	2025-01-23T00:00:00Z
opensuse-su-2025:14684-1	helmfile-0.170.1-1.1 on GA media	2025-01-23T00:00:00Z	2025-01-23T00:00:00Z
opensuse-su-2025:14683-1	clamav-1.4.2-1.1 on GA media	2025-01-23T00:00:00Z	2025-01-23T00:00:00Z
opensuse-su-2025:0021-1	Security update for gh	2025-01-22T10:02:08Z	2025-01-22T10:02:08Z
opensuse-su-2025:14682-1	java-17-openjdk-17.0.14.0-1.1 on GA media	2025-01-22T00:00:00Z	2025-01-22T00:00:00Z
opensuse-su-2025:14681-1	grafana-11.3.2-1.1 on GA media	2025-01-22T00:00:00Z	2025-01-22T00:00:00Z
opensuse-su-2025:14680-1	ruby3.4-rubygem-railties-8.0-8.0.1-1.1 on GA media	2025-01-21T00:00:00Z	2025-01-21T00:00:00Z
opensuse-su-2025:14679-1	ruby3.4-rubygem-rails-8.0-8.0.1-1.1 on GA media	2025-01-21T00:00:00Z	2025-01-21T00:00:00Z
opensuse-su-2025:14678-1	ruby3.4-rubygem-activesupport-8.0-8.0.1-1.1 on GA media	2025-01-21T00:00:00Z	2025-01-21T00:00:00Z
opensuse-su-2025:14677-1	ruby3.4-rubygem-activestorage-8.0-8.0.1-1.1 on GA media	2025-01-21T00:00:00Z	2025-01-21T00:00:00Z
opensuse-su-2025:14676-1	ruby3.4-rubygem-activerecord-8.0-8.0.1-1.1 on GA media	2025-01-21T00:00:00Z	2025-01-21T00:00:00Z
opensuse-su-2025:14675-1	ruby3.4-rubygem-activemodel-8.0-8.0.1-1.1 on GA media	2025-01-21T00:00:00Z	2025-01-21T00:00:00Z
opensuse-su-2025:14674-1	ruby3.4-rubygem-activejob-8.0-8.0.1-1.1 on GA media	2025-01-21T00:00:00Z	2025-01-21T00:00:00Z
opensuse-su-2025:14673-1	ruby3.4-rubygem-actionview-8.0-8.0.1-1.1 on GA media	2025-01-21T00:00:00Z	2025-01-21T00:00:00Z
opensuse-su-2025:14672-1	ruby3.4-rubygem-actiontext-8.0-8.0.1-1.1 on GA media	2025-01-21T00:00:00Z	2025-01-21T00:00:00Z
opensuse-su-2025:14671-1	ruby3.4-rubygem-actionpack-8.0-8.0.1-1.1 on GA media	2025-01-21T00:00:00Z	2025-01-21T00:00:00Z
opensuse-su-2025:14670-1	ruby3.4-rubygem-actionmailer-8.0-8.0.1-1.1 on GA media	2025-01-21T00:00:00Z	2025-01-21T00:00:00Z
opensuse-su-2025:14669-1	ruby3.4-rubygem-actionmailbox-8.0-8.0.1-1.1 on GA media	2025-01-21T00:00:00Z	2025-01-21T00:00:00Z
opensuse-su-2025:14668-1	ruby3.4-rubygem-actioncable-8.0-8.0.1-1.1 on GA media	2025-01-21T00:00:00Z	2025-01-21T00:00:00Z
opensuse-su-2025:14667-1	nvidia-modprobe-565.77-1.1 on GA media	2025-01-21T00:00:00Z	2025-01-21T00:00:00Z
opensuse-su-2025:14666-1	helmfile-0.170.0-1.1 on GA media	2025-01-21T00:00:00Z	2025-01-21T00:00:00Z
opensuse-su-2025:0018-1	Security update for chromium	2025-01-20T09:59:01Z	2025-01-20T09:59:01Z
opensuse-su-2025:14665-1	rsync-3.4.1-1.1 on GA media	2025-01-18T00:00:00Z	2025-01-18T00:00:00Z
opensuse-su-2025:14664-1	python311-httpx-0.28.1-2.1 on GA media	2025-01-18T00:00:00Z	2025-01-18T00:00:00Z
opensuse-su-2025:14663-1	velociraptor-0.7.0.4.git142.862ef23-1.1 on GA media	2025-01-17T00:00:00Z	2025-01-17T00:00:00Z
opensuse-su-2025:14662-1	python311-Django-5.1.5-1.1 on GA media	2025-01-17T00:00:00Z	2025-01-17T00:00:00Z
opensuse-su-2025:14661-1	nvidia-open-driver-G06-signed-default-devel-550.144.03-1.1 on GA media	2025-01-17T00:00:00Z	2025-01-17T00:00:00Z
opensuse-su-2025:14660-1	golang-github-prometheus-prometheus-3.1.0-1.1 on GA media	2025-01-17T00:00:00Z	2025-01-17T00:00:00Z
opensuse-su-2025:14659-1	chromedriver-132.0.6834.83-1.1 on GA media	2025-01-17T00:00:00Z	2025-01-17T00:00:00Z
opensuse-su-2025:14658-1	amazon-ssm-agent-3.3.1611.0-1.1 on GA media	2025-01-17T00:00:00Z	2025-01-17T00:00:00Z

ID	Description	Published	Updated

ID	Description	Published	Updated
cnvd-2025-27559	QNAP QTS和QuTS hero空指针取消引用漏洞（CNVD-2025-27559）	2025-10-15	2025-11-10
cnvd-2025-27558	QNAP QTS和QuTS hero空指针取消引用漏洞（CNVD-2025-27558）	2025-10-15	2025-11-10
cnvd-2025-27557	QNAP QTS和QuTS hero空指针取消引用漏洞	2025-10-15	2025-11-10
cnvd-2025-24279	WordPress Community Events plugin SQL注入漏洞	2025-10-15	2025-10-20
cnvd-2025-24278	WordPress Colibri Page Builder plugin跨站脚本漏洞	2025-10-15	2025-10-20
cnvd-2025-24277	WordPress CM Registration plugin开放重定向漏洞	2025-10-15	2025-10-20
cnvd-2025-24276	WordPress Betheme plugin跨站脚本漏洞	2025-10-15	2025-10-20
cnvd-2025-24275	WordPress Postie Plugin跨站脚本漏洞	2025-10-15	2025-10-20
cnvd-2025-24256	Fuji Electric V-SFT越界读取漏洞	2025-10-15	2025-10-21
cnvd-2025-24167	Tenda W12缓冲区溢出漏洞	2025-10-15	2025-10-17
cnvd-2025-24162	Tenda AC7命令注入漏洞	2025-10-15	2025-10-17
cnvd-2025-24161	Tenda AC7 /goform/WifiMacFilterSet文件缓冲区溢出漏洞	2025-10-15	2025-10-17
cnvd-2025-24156	Project Monitoring System useredit.php文件SQL注入漏洞	2025-10-15	2025-10-17
cnvd-2025-24155	Online Complaint Site state.php文件SQL注入漏洞	2025-10-15	2025-10-17
cnvd-2025-24154	Online Complaint Site register-complaint.php文件SQL注入漏洞	2025-10-15	2025-10-17
cnvd-2025-24153	Tenda AC7 /goform/SetUpnpCfg文件缓冲区溢出漏洞	2025-10-15	2025-10-17
cnvd-2025-24152	Tenda AC7 /goform/setNotUpgrade文件缓冲区溢出漏洞	2025-10-15	2025-10-17
cnvd-2025-24151	Tenda AC7 /goform/SetDDNSCfg文件缓冲区溢出漏洞	2025-10-15	2025-10-17
cnvd-2025-24150	Tenda AC7 /goform/saveAutoQos文件缓冲区溢出漏洞	2025-10-15	2025-10-17
cnvd-2025-24149	Tenda AC7 /goform/fast_setting_pppoe_set文件缓冲区溢出漏洞	2025-10-15	2025-10-17
cnvd-2025-24148	Juniper Networks Junos OS Evolved操作系统命令注入漏洞	2025-10-15	2025-10-17
cnvd-2025-24147	ERPNext跨站脚本漏洞	2025-10-15	2025-10-17
cnvd-2025-24134	Hospital Management System session函数硬编码密钥漏洞	2025-10-15	2025-10-17
cnvd-2025-24133	E-Banking System SQL注入漏洞	2025-10-15	2025-10-17
cnvd-2025-24128	Courier Management System add-courier.php文件SQL注入漏洞	2025-10-15	2025-10-17
cnvd-2025-24126	Computer Laboratory System SQL注入漏洞	2025-10-15	2025-10-17
cnvd-2025-24124	Client Details System跨站脚本漏洞	2025-10-15	2025-10-17
cnvd-2025-24123	Client Details System update-profile.php文件SQL注入漏洞	2025-10-15	2025-10-17
cnvd-2025-24070	Huawei HarmonyOS Wi-Fi模块权限控制漏洞	2025-10-15	2025-10-17
cnvd-2025-24068	Huawei HarmonyOS Camera app权限验证绕过漏洞	2025-10-15	2025-10-17

ID	Description	Published	Updated
certfr-2024-avi-0996	Multiples vulnérabilités dans GLPI	2024-11-18T00:00:00.000000	2024-11-18T00:00:00.000000
certfr-2024-avi-0995	Multiples vulnérabilités dans les produits Nextcloud	2024-11-18T00:00:00.000000	2024-11-18T00:00:00.000000
certfr-2024-avi-0994	Vulnérabilité dans Microsoft Azure	2024-11-18T00:00:00.000000	2024-11-18T00:00:00.000000
certfr-2024-avi-0993	Vulnérabilité dans les caméras Synology	2024-11-18T00:00:00.000000	2024-11-18T00:00:00.000000
certfr-2024-avi-0992	Multiples vulnérabilités dans les produits IBM	2024-11-15T00:00:00.000000	2024-11-15T00:00:00.000000
certfr-2024-avi-0991	Vulnérabilité dans Spring	2024-11-15T00:00:00.000000	2024-11-15T00:00:00.000000
certfr-2024-avi-0990	Vulnérabilité dans les produits Palo Alto Networks	2024-11-15T00:00:00.000000	2024-11-18T00:00:00.000000
certfr-2024-avi-0989	Vulnérabilité dans MongoDB	2024-11-15T00:00:00.000000	2024-11-15T00:00:00.000000
certfr-2024-avi-0988	Multiples vulnérabilités dans Microsoft Edge	2024-11-15T00:00:00.000000	2024-11-15T00:00:00.000000
certfr-2024-avi-0987	Multiples vulnérabilités dans PostgreSQL	2024-11-15T00:00:00.000000	2024-11-15T00:00:00.000000
certfr-2024-avi-0986	Multiples vulnérabilités dans les produits Palo Alto Networks	2024-11-14T00:00:00.000000	2024-11-14T00:00:00.000000
certfr-2024-avi-0985	Multiples vulnérabilités dans Stormshield Network Security	2024-11-14T00:00:00.000000	2024-11-14T00:00:00.000000
certfr-2024-avi-0984	Vulnérabilité dans les produits Symfony	2024-11-14T00:00:00.000000	2024-11-14T00:00:00.000000
certfr-2024-avi-0983	Vulnérabilité dans les produits Mozilla	2024-11-14T00:00:00.000000	2024-11-14T00:00:00.000000
certfr-2024-avi-0982	Vulnérabilité dans CPython	2024-11-13T00:00:00.000000	2024-11-13T00:00:00.000000
certfr-2024-avi-0981	Multiples vulnérabilités dans GitLab	2024-11-13T00:00:00.000000	2024-11-13T00:00:00.000000
certfr-2024-avi-0980	Multiples vulnérabilités dans les produits Intel	2024-11-13T00:00:00.000000	2024-11-13T00:00:00.000000
certfr-2024-avi-0979	Multiples vulnérabilités dans les produits Fortinet	2024-11-13T00:00:00.000000	2024-11-13T00:00:00.000000
certfr-2024-avi-0978	Multiples vulnérabilités dans les produits Microsoft	2024-11-13T00:00:00.000000	2024-11-13T00:00:00.000000
certfr-2024-avi-0977	Multiples vulnérabilités dans Microsoft Azure	2024-11-13T00:00:00.000000	2024-11-13T00:00:00.000000
certfr-2024-avi-0976	Multiples vulnérabilités dans Microsoft .Net	2024-11-13T00:00:00.000000	2024-11-13T00:00:00.000000
certfr-2024-avi-0975	Multiples vulnérabilités dans Microsoft Windows	2024-11-13T00:00:00.000000	2024-11-13T00:00:00.000000
certfr-2024-avi-0974	Multiples vulnérabilités dans Microsoft Office	2024-11-13T00:00:00.000000	2024-11-13T00:00:00.000000
certfr-2024-avi-0973	Vulnérabilité dans les produits Citrix	2024-11-13T00:00:00.000000	2024-11-13T00:00:00.000000
certfr-2024-avi-0972	Vulnérabilité dans les produits Adobe	2024-11-13T00:00:00.000000	2024-11-13T00:00:00.000000
certfr-2024-avi-0971	Multiples vulnérabilités dans Grafana	2024-11-13T00:00:00.000000	2024-11-13T00:00:00.000000
certfr-2024-avi-0970	Multiples vulnérabilités dans Google Chrome	2024-11-13T00:00:00.000000	2024-11-13T00:00:00.000000
certfr-2024-avi-0969	Multiples vulnérabilités dans Synacor Zimbra Collaboration	2024-11-13T00:00:00.000000	2024-11-20T00:00:00.000000
certfr-2024-avi-0968	Multiples vulnérabilités dans les produits Siemens	2024-11-13T00:00:00.000000	2024-11-13T00:00:00.000000
certfr-2024-avi-0967	Multiples vulnérabilités dans les produits Ivanti	2024-11-13T00:00:00.000000	2024-11-13T00:00:00.000000

ID	Description	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated