Recent vulnerabilities

Recent vulnerabilities from
Select from 69 available sources using the dropdown above.
ID CVSS Description Vendor Product Published Updated
CVE-2026-40348
7.7 (3.1)
Movary has Authenticated SSRF via Jellyfin Server URL … leepeuker
 movary
 2026-04-18T00:01:09.725Z 2026-04-20T16:11:32.779Z
CVE-2026-40347
5.3 (3.1)
Python-Multipart affected by Denial of Service via lar… Kludex
 python-multipart
 2026-04-17T23:56:50.777Z 2026-04-20T15:46:40.011Z
CVE-2026-40346
6.4 (4.0)
NocoBase has SSRF in Workflow HTTP Request and Custom … nocobase
 @nocobase/plugin-workflow-request
 2026-04-17T23:54:34.829Z 2026-04-20T14:56:12.829Z
CVE-2026-40581
8.1 (3.1)
ChurchCRM: Cross-Site Request Forgery (CSRF) in Select… ChurchCRM
 CRM
 2026-04-17T23:51:32.765Z 2026-04-20T16:15:58.183Z
CVE-2026-40337
5.1 (3.1)
Sentry kernel has incomplete ownership check for IRQ l… camelot-os
 sentry-kernel
 2026-04-17T23:51:09.866Z 2026-04-20T16:13:48.908Z
CVE-2026-40341
3.5 (3.1)
libgphoto2 has an OOB Read in ptp_unpack_EOS_FocusInfoEx gphoto
 libgphoto2
 2026-04-17T23:48:36.644Z 2026-04-20T16:14:19.107Z
CVE-2026-40340
6.1 (3.1)
libgphoto2 has OOB read in ptp_unpack_OI() in ptp-pack… gphoto
 libgphoto2
 2026-04-17T23:45:17.467Z 2026-04-20T13:36:05.149Z
CVE-2026-40339
5.2 (3.1)
libgphoto2 has OOB read in ptp_unpack_Sony_DPD() FormF… gphoto
 libgphoto2
 2026-04-17T23:42:32.586Z 2026-04-20T14:56:21.979Z
CVE-2026-40338
5.2 (3.1)
libgphoto2 has OOB read in ptp_unpack_Sony_DPD() enume… gphoto
 libgphoto2
 2026-04-17T23:40:10.097Z 2026-04-20T16:16:08.585Z
CVE-2026-40485
5.3 (3.1)
ChurchCRM: Username Enumeration via Differential Respo… ChurchCRM
 CRM
 2026-04-17T23:29:35.884Z 2026-04-20T13:36:05.319Z
CVE-2026-40336
2.4 (3.1)
libgphoto2 has memory leak in ptp_unpack_Sony_DPD() se… gphoto
 libgphoto2
 2026-04-17T23:27:42.868Z 2026-04-20T16:14:53.071Z
CVE-2026-2262
7.5 (3.1)
Easy Appointments <= 3.12.21 - Unauthenticated Sensiti… easyappointments
 Easy Appointments
 2026-04-17T23:26:48.863Z 2026-04-20T13:51:28.513Z
CVE-2026-40484
9.1 (3.1)
ChurchCRM: Authenticated Remote Code Execution via Unr… ChurchCRM
 CRM
 2026-04-17T23:25:06.319Z 2026-04-20T14:56:29.684Z
CVE-2026-40483
5.4 (3.1)
ChurchCRM: Stored XSS in PledgeEditor.php via Donation… ChurchCRM
 CRM
 2026-04-17T23:20:44.900Z 2026-04-20T16:16:17.841Z
CVE-2026-40335
5.2 (3.1)
libgphoto2 has OOB read in ptp_unpack_DPV() UINT128/IN… gphoto
 libgphoto2
 2026-04-17T23:19:16.935Z 2026-04-20T13:36:05.542Z
CVE-2026-40334
3.5 (3.1)
libgphoto2 missing null termination in ptp_unpack_Cano… gphoto
 libgphoto2
 2026-04-17T23:16:38.751Z 2026-04-20T13:36:05.703Z
CVE-2026-40582
9.1 (4.0)
ChurchCRM: Authentication Bypass in `/api/public/user/… ChurchCRM
 CRM
 2026-04-17T23:16:13.862Z 2026-04-20T14:56:36.921Z
CVE-2026-40333
6.1 (3.1)
libgphoto2 has OOB read in ptp_unpack_EOS_ImageFormat(… gphoto
 libgphoto2
 2026-04-17T23:11:11.073Z 2026-04-20T14:56:44.091Z
CVE-2026-40480
7.1 (4.0)
ChurchCRM has Missing Object-Level Authorization / IDO… ChurchCRM
 CRM
 2026-04-17T23:07:30.126Z 2026-04-20T16:16:00.433Z
CVE-2026-40324
9.1 (3.1)
Hot Chocolate's Utf8GraphQLParser has Stack Overflow v… ChilliCream
 graphql-platform
 2026-04-17T23:05:26.217Z 2026-04-20T16:16:25.151Z
CVE-2026-40482
7.1 (4.0)
ChurchCRM has Authenticated SQL Injection in `/api/fam… ChurchCRM
 CRM
 2026-04-17T22:58:48.528Z 2026-04-20T16:16:32.247Z
CVE-2026-40323
8.9 (4.0)
SP1 V6 Recursion Circuit Row-Count Binding Gap succinctlabs
 sp1
 2026-04-17T22:58:42.580Z 2026-04-20T16:16:41.143Z
CVE-2026-40481
8.2 (4.0)
monetr: Unauthenticated Stripe webhook reads attacker-… monetr
 monetr
 2026-04-17T22:54:57.545Z 2026-04-20T13:36:05.862Z
CVE-2026-40486
4.3 (3.1)
Kimai's User Preferences API allows standard users to … kimai
 kimai
 2026-04-17T22:35:53.543Z 2026-04-20T14:56:51.165Z
CVE-2026-40479
5.4 (3.1)
Kimai: Stored XSS via Incomplete HTML Attribute Escapi… kimai
 kimai
 2026-04-17T22:31:29.930Z 2026-04-20T16:16:41.880Z
CVE-2026-2434
6.4 (3.1)
Pz-LinkCard <= 2.5.8.1 - Authenticated (Contributor+) … poporon
 Pz-LinkCard
 2026-04-17T22:27:13.525Z 2026-04-20T13:36:06.124Z
CVE-2026-40478
9.1 (3.1)
Improper neutralization of specific syntax patterns fo… thymeleaf
 thymeleaf
 2026-04-17T21:57:01.560Z 2026-04-22T03:55:42.682Z
CVE-2026-40477
9.1 (3.1)
Improper restriction of the scope of accessible object… thymeleaf
 thymeleaf
 2026-04-17T21:53:47.271Z 2026-04-22T03:55:41.093Z
CVE-2026-40476
6.9 (4.0)
graphql-php: Denial of Service via quadratic complexit… webonyx
 graphql-php
 2026-04-17T21:42:59.511Z 2026-04-20T14:56:57.812Z
CVE-2026-5720
7.1 (4.0)
miniupnpd Integer Underflow SOAPAction Header Parsing miniupnp project
 miniupnpd
 2026-04-17T21:39:54.818Z 2026-04-20T16:59:21.060Z
ID CVSS Description Vendor Product Published Updated
CVE-2026-30898
N/A
Apache Airflow: Bad example of BashOperator shell inje… Apache Software Foundation
 Apache Airflow
 2026-04-18T06:20:48.647Z 2026-04-22T03:55:38.783Z
CVE-2026-25917
N/A
Apache Airflow: API extra-links triggers XCom deserial… Apache Software Foundation
 Apache Airflow
 2026-04-18T06:20:11.187Z 2026-04-22T13:58:49.807Z
CVE-2026-41253
6.9 (3.1)
In iTerm2 through 3.6.9, displaying a .txt file c… iTerm2
 iTerm2
 2026-04-18T05:27:08.202Z 2026-04-20T15:52:10.357Z
CVE-2026-6518
8.8 (3.1)
CMP – Coming Soon & Maintenance Plugin by NiteoThemes … niteo
 CMP – Coming Soon & Maintenance Plugin by NiteoThemes
 2026-04-18T03:37:04.707Z 2026-04-20T13:46:08.222Z
CVE-2026-6048
6.4 (3.1)
Flipbox Addon for Elementor <= 2.1.1 - Authenticated (… dragwyb
 Flipbox Addon for Elementor
 2026-04-18T03:37:05.751Z 2026-04-20T13:46:08.081Z
CVE-2026-4801
6.4 (3.1)
Page Builder Gutenberg Blocks <= 3.1.16 - Authenticate… godaddy
 Page Builder Gutenberg Blocks – CoBlocks
 2026-04-18T03:37:03.859Z 2026-04-20T14:42:38.120Z
CVE-2026-40494
9.8 (3.1)
SAIL has heap buffer overflow in TGA RLE decoder — raw… HappySeaFox
 sail
 2026-04-18T01:42:48.830Z 2026-04-20T14:55:42.859Z
CVE-2026-40493
9.8 (3.1)
SAIL has heap buffer overflow in PSD decoder — bpp mis… HappySeaFox
 sail
 2026-04-18T01:41:14.664Z 2026-04-20T16:15:22.120Z
CVE-2026-40492
9.8 (3.1)
SAIL has heap buffer overflow in XWD decoder — bits_pe… HappySeaFox
 sail
 2026-04-18T01:39:48.056Z 2026-04-20T15:24:42.029Z
CVE-2026-40491
6.5 (3.1)
gdown Affected by Arbitrary File Write via Path Traver… wkentaro
 gdown
 2026-04-18T01:36:47.659Z 2026-04-20T15:50:02.983Z
CVE-2026-40490
6.8 (3.1)
AsyncHttpClient leaks authorization credentials to unt… AsyncHttpClient
 async-http-client
 2026-04-18T01:31:13.860Z 2026-04-20T14:55:50.254Z
CVE-2026-40489
8.6 (4.0)
editorconfig-core-c has incomplete fix for CVE-2023-0341 editorconfig
 editorconfig-core-c
 2026-04-18T01:24:57.278Z 2026-04-20T16:15:31.570Z
CVE-2026-40487
8.9 (3.1)
Postiz Has Unrestricted File Upload via MIME Type Spoo… gitroomhq
 postiz-app
 2026-04-18T01:19:06.588Z 2026-04-20T15:25:40.893Z
CVE-2026-35582
8.8 (3.1)
Emissary has an OS Command Injection via Unvalidated I… NationalSecurityAgency
 emissary
 2026-04-18T01:16:27.661Z 2026-04-20T15:48:51.543Z
CVE-2026-1838
6.1 (3.1)
Hostel <= 1.1.6 - Reflected Cross-Site Scripting via '… prasunsen
 Hostel
 2026-04-18T01:26:04.643Z 2026-04-20T14:19:29.627Z
CVE-2026-1559
6.4 (3.1)
Youzify <= 1.3.6 - Authenticated (Subscriber+) Stored … youzify
 Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress
 2026-04-18T01:26:05.210Z 2026-04-20T13:46:08.353Z
CVE-2026-40572
9 (3.1)
NovumOS has Arbitrary Memory Mapping via Syscall 15 (M… MinecAnton209
 NovumOS
 2026-04-18T00:16:02.590Z 2026-04-20T14:55:57.521Z
CVE-2026-40350
8.8 (3.1)
Movary User Management (/settings/users) has Authoriza… leepeuker
 movary
 2026-04-18T00:07:33.324Z 2026-04-20T16:15:39.915Z
CVE-2026-40317
9.4 (3.1)
NovumOS has Privilege Escalation in the Syscall Interface MinecAnton209
 NovumOS
 2026-04-18T00:12:10.368Z 2026-04-20T15:26:25.222Z
CVE-2026-35465
7.5 (3.1)
SecureDrop Client has path injection in read_gzip_head… freedomofpress
 securedrop-client
 2026-04-18T00:41:16.594Z 2026-04-20T15:47:43.822Z
CVE-2026-40593
4.8 (3.1)
ChurchCRM: Stored XSS in UserEditor.php via Login Name Field ChurchCRM
 CRM
 2026-04-18T00:02:59.606Z 2026-04-20T14:56:05.666Z
CVE-2026-40582
9.1 (4.0)
ChurchCRM: Authentication Bypass in `/api/public/user/… ChurchCRM
 CRM
 2026-04-17T23:16:13.862Z 2026-04-20T14:56:36.921Z
CVE-2026-40581
8.1 (3.1)
ChurchCRM: Cross-Site Request Forgery (CSRF) in Select… ChurchCRM
 CRM
 2026-04-17T23:51:32.765Z 2026-04-20T16:15:58.183Z
CVE-2026-40485
5.3 (3.1)
ChurchCRM: Username Enumeration via Differential Respo… ChurchCRM
 CRM
 2026-04-17T23:29:35.884Z 2026-04-20T13:36:05.319Z
CVE-2026-40484
9.1 (3.1)
ChurchCRM: Authenticated Remote Code Execution via Unr… ChurchCRM
 CRM
 2026-04-17T23:25:06.319Z 2026-04-20T14:56:29.684Z
CVE-2026-40483
5.4 (3.1)
ChurchCRM: Stored XSS in PledgeEditor.php via Donation… ChurchCRM
 CRM
 2026-04-17T23:20:44.900Z 2026-04-20T16:16:17.841Z
CVE-2026-40482
7.1 (4.0)
ChurchCRM has Authenticated SQL Injection in `/api/fam… ChurchCRM
 CRM
 2026-04-17T22:58:48.528Z 2026-04-20T16:16:32.247Z
CVE-2026-40480
7.1 (4.0)
ChurchCRM has Missing Object-Level Authorization / IDO… ChurchCRM
 CRM
 2026-04-17T23:07:30.126Z 2026-04-20T16:16:00.433Z
CVE-2026-40349
8.8 (3.1)
Authenticated Movary User Can Self-Escalate to Adminis… leepeuker
 movary
 2026-04-18T00:05:46.360Z 2026-04-20T16:15:49.844Z
CVE-2026-40348
7.7 (3.1)
Movary has Authenticated SSRF via Jellyfin Server URL … leepeuker
 movary
 2026-04-18T00:01:09.725Z 2026-04-20T16:11:32.779Z
ID Description Published Updated
ID Severity Description Published Updated
ghsa-gvvw-8j96-8g5r
9.8 (3.1)
MsQuic has a Remote Elevation of Privilege Vulnerability 2026-04-16T01:04:03Z 2026-04-16T01:04:03Z
ghsa-6hw5-45gm-fj88
9.1 (4.0)
@fastify/express has a middleware authentication bypass via URL normalization gaps (duplicate slash… 2026-04-16T01:03:46Z 2026-04-16T01:03:46Z
ghsa-hrwm-hgmj-7p9c
9.1 (3.1)
@fastify/express's middleware path doubling causes authentication bypass in child plugin scopes 2026-04-16T01:03:25Z 2026-04-16T01:03:25Z
ghsa-gwhp-pf74-vj37
9.0 (4.0)
Fastify's connection header abuse enables stripping of proxy-added headers 2026-04-16T01:02:59Z 2026-04-16T01:02:59Z
ghsa-33r3-4whc-44c2
8.4 (4.0)
Path traversal in vite-plus/binding downloadPackageManager() writes outside VP_HOME 2026-04-16T01:02:48Z 2026-04-16T01:02:48Z
ghsa-458j-xx4x-4375
4.3 (3.1)
hono Improperly Handles JSX Attribute Names Allows HTML Injection in hono/jsx SSR 2026-04-16T01:02:24Z 2026-04-16T01:02:24Z
ghsa-w59f-67xm-rxx7
9.9 (3.1)
Froxlor has Local File Inclusion via path traversal in API `def_language` parameter leads to Remote… 2026-04-16T01:02:12Z 2026-04-16T01:02:12Z
ghsa-r35r-mrc6-xgfp
5.4 (4.0)
Inadequate Encryption Strength vulnerability in TP-Link Archer C7 v5 and v5.8 (uhttpd modules) allo… 2026-04-16T00:54:04Z 2026-04-16T00:54:04Z
ghsa-p8x8-wgf2-jrjm
9.8 (3.1)
The Barcode Scanner (+Mobile App) – Inventory manager, Order fulfillment system, POS (Point of Sale… 2026-04-16T00:54:04Z 2026-04-16T00:54:04Z
ghsa-mx9c-q7m4-fm97
9.1 (3.1)
A flaw was found in ArgoCD Image Updater. This vulnerability allows an attacker, with permissions t… 2026-04-16T00:54:04Z 2026-04-16T00:54:04Z
ghsa-hm98-22vr-c62v
4.8 (3.1)
5.1 (4.0)
Pega Platform versions 8.1.0 through 25.1.1 are affected by an HTML Injection vulnerability in a us… 2026-04-16T00:54:04Z 2026-04-23T21:31:19Z
ghsa-gmwr-9j4p-96vm
6.8 (3.1)
6.1 (4.0)
ProcessWire: server-side request forgery vulnerability in the admin panel's 'Add Module From URL' feature 2026-04-16T00:54:04Z 2026-04-16T22:28:24Z
ghsa-9wp3-36f6-c335
4.3 (3.1)
The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict … 2026-04-16T00:54:04Z 2026-04-16T00:54:04Z
ghsa-6vgr-gf7r-f3jc
2.9 (3.1)
Yubico libfido2 before 1.17.0, python-fido2 before 2.2.0, and yubikey-manager before 5.9.1 have an … 2026-04-16T00:54:04Z 2026-04-16T00:54:04Z
ghsa-332r-xc5m-v45j
4.8 (3.1)
4.8 (4.0)
Pega Platform versions 8.1.0 through 25.1.1 are affected by a Stored Cross-Site Scripting vulnerabi… 2026-04-16T00:54:04Z 2026-04-23T21:31:19Z
ghsa-gc9w-cc93-rjv8
9.1 (3.1)
Froxlor has a PHP Code Injection via Unescaped Single Quotes in userdata.inc.php Generation (MysqlS… 2026-04-16T00:50:00Z 2026-04-16T00:50:00Z
ghsa-47hf-23pw-3m8c
8.5 (3.1)
Froxlor has a BIND Zone File Injection via Unsanitized DNS Record Content in DomainZones::add() 2026-04-16T00:47:26Z 2026-04-16T00:47:26Z
ghsa-75h4-c557-j89r
7.5 (3.1)
Froxlor has Incomplete Symlink Validation in DataDump.add() Allows Arbitrary Directory Ownership Ta… 2026-04-16T00:47:18Z 2026-04-16T00:47:18Z
ghsa-vmjj-qr7v-pxm6
5.0 (3.1)
Froxlor has an Email Sender Alias Domain Ownership Bypass via Wrong Array Index Allows Cross-Custom… 2026-04-16T00:47:05Z 2026-04-16T00:47:05Z
ghsa-jvx4-xv3m-hrj4
5.4 (3.1)
Froxlor has a Reseller Domain Quota Bypass via Unvalidated adminid Parameter in Domains.add() 2026-04-16T00:46:47Z 2026-04-16T00:46:47Z
ghsa-39q2-94rc-95cp
5.3 (4.0)
DOMPurify's ADD_TAGS function form bypasses FORBID_TAGS due to short-circuit evaluation 2026-04-16T00:46:35Z 2026-04-16T00:46:35Z
ghsa-xm65-r32w-c46p
6.5 (3.1)
Out of bounds read in Skia in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to ob… 2026-04-15T21:30:19Z 2026-04-16T15:31:32Z
ghsa-xhc9-2rpq-wh58
8.3 (3.1)
Use after free in Dawn in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had c… 2026-04-15T21:30:19Z 2026-04-15T21:30:19Z
ghsa-wrr6-q4vw-3g77
8.8 (3.1)
Use after free in Codecs in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to exec… 2026-04-15T21:30:19Z 2026-04-16T12:31:39Z
ghsa-vm22-5c7q-8w8h
8.3 (3.1)
Use after free in Viz in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had co… 2026-04-15T21:30:19Z 2026-04-15T21:30:19Z
ghsa-vhh6-f54w-x5gw
8.3 (3.1)
Uninitialized Use in Accessibility in Google Chrome on Windows prior to 147.0.7727.101 allowed a re… 2026-04-15T21:30:19Z 2026-04-15T21:30:19Z
ghsa-qwmx-478f-c8cp
8.8 (3.1)
Use after free in Video in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execu… 2026-04-15T21:30:19Z 2026-04-15T21:30:19Z
ghsa-qhxw-36rq-x2m4
8.3 (3.1)
Use after free in Graphite in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who h… 2026-04-15T21:30:19Z 2026-04-15T21:30:19Z
ghsa-qh37-w9pg-j55f
7.3 (3.1)
A flaw was found in gimp. This buffer overflow vulnerability in the GIF image loading component's `… 2026-04-15T21:30:19Z 2026-04-15T21:30:19Z
ghsa-qg3c-xm7q-9c4x
3.1 (3.1)
Insufficient policy enforcement in Passwords in Google Chrome prior to 147.0.7727.101 allowed a rem… 2026-04-15T21:30:19Z 2026-04-15T21:30:19Z
ID Severity Description Package Published Updated
pysec-2021-125
A flaw was found in Ansible where the secret information present in async_files are getti… ansible 2021-06-09T12:15:00Z 2024-12-03T18:23:29.400148Z
pysec-2021-99
In Django 2.2 before 2.2.24, 3.x before 3.1.12, and 3.2 before 3.2.4, URLValidator, valid… django 2021-06-08T18:15:00Z 2021-06-22T04:54:55.488063Z
pysec-2021-98
Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory… django 2021-06-08T18:15:00Z 2021-06-22T04:54:55.381670Z
pysec-2021-104
Zope is an open-source web application server. This advisory extends the previous advisor… zope 2021-06-08T18:15:00Z 2021-06-22T04:54:57.652841Z
pysec-2021-89
Datasette is an open source multi-tool for exploring and publishing data. The `?_trace=1`… datasette 2021-06-07T22:15:00Z 2021-06-09T05:01:28.246179Z
pysec-2021-90
Flask-AppBuilder is a development framework, built on top of Flask. User enumeration in d… flask-appbuilder 2021-06-07T19:15:00Z 2021-06-09T05:01:12.347920Z
pysec-2021-95
The aaugustin websockets library before 9.1 for Python has an Observable Timing Discrepan… websockets 2021-06-06T15:15:00Z 2021-06-09T05:01:36.173811Z
pysec-2021-94
An issue was discovered in Pillow before 8.2.0. For BLP data, BlpImagePlugin did not prop… pillow 2021-06-02T16:15:00Z 2021-06-09T05:01:24.292350Z
pysec-2021-93
An issue was discovered in Pillow before 8.2.0. For EPS data, the readline implementation… pillow 2021-06-02T16:15:00Z 2021-06-09T05:00:59.042287Z
pysec-2021-92
An issue was discovered in Pillow before 8.2.0. For FLI data, FliDecode did not properly … pillow 2021-06-02T16:15:00Z 2021-06-09T05:01:16.347355Z
pysec-2021-138
An issue was discovered in Pillow before 8.2.0. There is an out-of-bounds read in J2kDeco… pillow 2021-06-02T16:15:00Z 2021-08-27T03:22:10.437557Z
pysec-2021-137
An issue was discovered in Pillow before 8.2.0. There is an out-of-bounds read in J2kDeco… pillow 2021-06-02T16:15:00Z 2021-08-27T03:22:10.375655Z
pysec-2021-139
An issue was discovered in Pillow before 8.2.0. PSDImagePlugin.PsdImageFile lacked a sani… pillow 2021-06-02T15:15:00Z 2021-08-27T03:22:10.501313Z
pysec-2021-136
A flaw was found in openstack-neutron's default Open vSwitch firewall rules. By sending c… neutron 2021-05-28T19:15:00Z 2021-08-27T03:22:08.884816Z
pysec-2021-105
A flaw was found in the use of insufficiently random values in Ansible. Two random passwo… ansible 2021-05-27T19:15:00Z 2021-07-02T02:41:34.811883Z
pysec-2021-887
9.8 (3.1)
GattLib 0.3-rc1 has a stack-based buffer over-read in get_device_path_from_mac in dbus/ga… gattlib-py 2021-05-27T11:15:00Z 2024-11-21T14:22:50.881327Z
pysec-2021-124
A flaw was found in ansible. Credentials, such as secrets, are being disclosed in console… ansible 2021-05-26T21:15:00Z 2021-08-27T03:21:53.214122Z
pysec-2021-77
An issue was discovered in management/commands/hyperkitty_import.py in HyperKitty through… hyperkitty 2021-05-26T14:15:00Z 2021-06-09T05:01:08.351404Z
pysec-2021-106
A flaw was found in ansible module where credentials are disclosed in the console log by … ansible 2021-05-26T12:15:00Z 2021-07-02T02:41:35.206595Z
pysec-2021-87
Cranelift is an open-source code generator maintained by Bytecode Alliance. It translates… wasmtime 2021-05-24T16:15:00Z 2021-06-02T03:48:07.159295Z
pysec-2021-85
Plone through 5.2.4 allows XSS via the inline_diff methods in Products.CMFDiffTool. plone 2021-05-21T22:15:00Z 2021-06-09T05:00:54.946731Z
pysec-2021-84
Plone through 5.2.4 allows stored XSS attacks (by a Contributor) by uploading an SVG or H… plone 2021-05-21T22:15:00Z 2021-06-02T03:48:11.504291Z
pysec-2021-83
Plone though 5.2.4 allows SSRF via the lxml parser. This affects Diazo themes, Dexterity … plone 2021-05-21T22:15:00Z 2021-06-02T03:48:05.392145Z
pysec-2021-82
Plone through 5.2.4 allows remote authenticated managers to conduct SSRF attacks via an e… plone 2021-05-21T22:15:00Z 2021-06-09T05:01:20.334920Z
pysec-2021-81
Plone through 5.2.4 allows remote authenticated managers to perform disk I/O via crafted … plone 2021-05-21T22:15:00Z 2021-06-02T03:48:09.722168Z
pysec-2021-80
Plone through 5.2.4 allows XSS via a full name that is mishandled during rendering of the… plone 2021-05-21T22:15:00Z 2021-06-09T05:01:40.464417Z
pysec-2021-79
Zope Products.CMFCore before 2.5.1 and Products.PluggableAuthService before 2.6.2, as use… plone 2021-05-21T22:15:00Z 2021-06-02T03:48:01.619218Z
pysec-2021-88
Zope is an open-source web application server. In Zope versions prior to 4.6 and 5.2, use… zope 2021-05-21T14:15:00Z 2021-06-02T03:47:57.190321Z
pysec-2021-78
Plone CMS until version 5.2.4 has a stored Cross-Site Scripting (XSS) vulnerability in th… plone 2021-05-20T16:15:00Z 2021-06-09T05:00:50.662546Z
pysec-2021-123
The Python "Flask-Security-Too" package is used for adding security features to your Flas… flask-security-too 2021-05-17T18:15:00Z 2021-08-25T04:30:09.653075Z
ID Description Updated
ID Description Published Updated
mal-2026-1503 Malicious code in minify-replace (npm) 2026-03-18T02:38:00Z 2026-03-23T05:16:29Z
mal-2026-1501 Malicious code in @storylane/uikit (npm) 2026-03-18T02:37:27Z 2026-03-23T05:16:25Z
mal-2026-1500 Malicious code in @storylane/shared-packages (npm) 2026-03-18T02:37:27Z 2026-03-23T05:16:25Z
mal-2026-1513 Malicious code in vitest-globals (npm) 2026-03-18T02:20:28Z 2026-03-23T05:16:31Z
mal-2026-1507 Malicious code in transform-property-literals (npm) 2026-03-18T02:20:28Z 2026-03-23T05:16:31Z
mal-2026-1510 Malicious code in transform-simplify-comparison-operators (npm) 2026-03-18T02:20:27Z 2026-03-23T05:16:31Z
mal-2026-1506 Malicious code in transform-minify-booleans (npm) 2026-03-18T02:20:27Z 2026-03-23T05:16:31Z
mal-2026-1504 Malicious code in transform-jsbi-to-bigint (npm) 2026-03-18T02:18:55Z 2026-03-23T05:16:31Z
mal-2026-1502 Malicious code in better-styled-components (npm) 2026-03-18T02:18:55Z 2026-03-23T05:16:25Z
mal-2026-1508 Malicious code in transform-react-jsx (npm) 2026-03-18T02:09:47Z 2026-03-23T05:16:31Z
mal-2026-1499 Malicious code in anistream (PyPI) 2026-03-17T23:11:06Z 2026-03-17T23:11:06Z
mal-2026-1498 Malicious code in telegramdatas (PyPI) 2026-03-17T16:16:37Z 2026-03-17T16:16:37Z
mal-2026-1497 Malicious code in robloxapi-test (PyPI) 2026-03-17T09:06:42Z 2026-03-17T09:06:43Z
mal-2026-1496 Malicious code in robloxapi-testy (PyPI) 2026-03-17T06:44:38Z 2026-03-17T06:44:38Z
mal-2026-1495 Malicious code in whatfix-icons (npm) 2026-03-17T06:25:55Z 2026-03-23T05:16:32Z
mal-2026-1494 Malicious code in navi-design-system (npm) 2026-03-17T06:15:39Z 2026-03-23T05:16:29Z
mal-2026-1493 Malicious code in pino-logger-utils (npm) 2026-03-17T04:46:23Z 2026-04-16T15:42:09Z
mal-2026-1492 Malicious code in strapi-plugin-workspace-plugin (npm) 2026-03-17T03:09:34Z 2026-03-23T05:16:30Z
mal-2026-1490 Malicious code in ember-power-calendar-utils (npm) 2026-03-17T03:09:34Z 2026-03-23T05:16:27Z
mal-2026-1489 Malicious code in asset-delivery (npm) 2026-03-17T03:09:32Z 2026-03-23T05:16:25Z
mal-2026-1491 Malicious code in graphlib-js (npm) 2026-03-17T02:54:20Z 2026-04-16T15:42:08Z
mal-2026-1481 Malicious code in revolut-merchant-widget (npm) 2026-03-16T20:46:00Z 2026-03-25T00:55:56Z
mal-2026-1482 Malicious code in chacha-lite-encrypt (PyPI) 2026-03-16T20:09:47Z 2026-03-16T20:09:47Z
mal-2026-1480 Malicious code in pretty-tabulate (PyPI) 2026-03-16T18:04:10Z 2026-03-16T18:04:10Z
mal-2026-1479 Malicious code in color-list (PyPI) 2026-03-16T18:03:13Z 2026-03-16T18:03:13Z
mal-2026-1488 Malicious code in codeshouhu (PyPI) 2026-03-16T18:00:09Z 2026-03-16T18:00:09Z
mal-2026-1478 Malicious code in wordpecker-fx (npm) 2026-03-16T15:51:36Z 2026-03-23T05:16:32Z
mal-2026-1477 Malicious code in supply-hx (npm) 2026-03-16T15:51:36Z 2026-03-23T05:16:30Z
mal-2026-1476 Malicious code in jalalstealer (npm) 2026-03-16T15:51:36Z 2026-03-23T05:16:28Z
mal-2026-1475 Malicious code in delta666 (npm) 2026-03-16T15:51:36Z 2026-03-23T05:16:26Z
ID Description Published Updated
ID Description Published Updated
wid-sec-w-2025-1718 Red Hat Enterprise Linux (gdk-pixbuf): Schwachstelle ermöglicht Denial of Service 2025-08-04T22:00:00.000+00:00 2025-10-30T23:00:00.000+00:00
wid-sec-w-2025-1717 libTIFF (tiff2ps): Schwachstelle ermöglicht Denial of Service 2025-08-04T22:00:00.000+00:00 2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-1716 Apache OFBiz: Schwachstelle ermöglicht Codeausführung 2025-08-04T22:00:00.000+00:00 2025-08-17T22:00:00.000+00:00
wid-sec-w-2025-1715 Red Hat Ansible Automation Platform: Schwachstelle ermöglicht Offenlegung von Informationen 2025-08-04T22:00:00.000+00:00 2025-08-04T22:00:00.000+00:00
wid-sec-w-2025-1714 Dell PowerProtect Data Domain: Mehrere Schwachstellen 2025-08-04T22:00:00.000+00:00 2025-08-04T22:00:00.000+00:00
wid-sec-w-2025-1713 Netgate pfSense (OpenVPN Dashboard): Schwachstelle ermöglicht Stored Cross-Site Scripting 2025-08-04T22:00:00.000+00:00 2025-08-04T22:00:00.000+00:00
wid-sec-w-2025-1712 Dell Unity: Mehrere Schwachstellen 2025-08-04T22:00:00.000+00:00 2025-08-04T22:00:00.000+00:00
wid-sec-w-2025-1711 Ubiquiti UniFi: Schwachstelle ermöglicht Codeausführung 2025-08-04T22:00:00.000+00:00 2025-08-04T22:00:00.000+00:00
wid-sec-w-2025-1710 Samsung Android: Mehrere Schwachstellen 2025-08-04T22:00:00.000+00:00 2025-08-05T22:00:00.000+00:00
wid-sec-w-2025-1709 Android Patchday August 2025: Multiple Vulnerabilities 2025-08-04T22:00:00.000+00:00 2025-08-04T22:00:00.000+00:00
wid-sec-w-2025-1708 Liferay Portal und Liferay DXP: Mehrere Schwachstellen 2025-08-04T22:00:00.000+00:00 2025-08-04T22:00:00.000+00:00
wid-sec-w-2025-1707 Red Hat Ansible Automation Platform: Schwachstelle ermöglicht Denial of Service 2025-08-04T22:00:00.000+00:00 2025-08-04T22:00:00.000+00:00
wid-sec-w-2025-1706 poppler: Mehrere Schwachstellen 2025-08-04T22:00:00.000+00:00 2025-11-04T23:00:00.000+00:00
wid-sec-w-2025-1705 CODESYS: Mehrere Schwachstellen 2025-08-03T22:00:00.000+00:00 2025-08-04T22:00:00.000+00:00
wid-sec-w-2025-1704 Grafana (Infinity datasource plugin): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2025-08-03T22:00:00.000+00:00 2025-08-04T22:00:00.000+00:00
wid-sec-w-2025-1703 WebKitGTK: Mehrere Schwachstellen 2025-08-03T22:00:00.000+00:00 2025-11-30T23:00:00.000+00:00
wid-sec-w-2025-1702 Hashicorp Vault Community und Enterprise: Mehrere Schwachstellen 2025-08-03T22:00:00.000+00:00 2025-08-03T22:00:00.000+00:00
wid-sec-w-2025-1701 IBM QRadar SIEM: Schwachstelle ermöglicht Cross-Site Scripting 2025-08-03T22:00:00.000+00:00 2025-08-03T22:00:00.000+00:00
wid-sec-w-2025-1700 libTIFF: Schwachstelle ermöglicht einen Denial of Service 2025-08-03T22:00:00.000+00:00 2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-1699 Red Hat Enterprise Linux (requests): Schwachstelle ermöglicht das Ausspähen von Informationen 2025-08-03T22:00:00.000+00:00 2026-02-04T23:00:00.000+00:00
wid-sec-w-2025-1698 IBM Operational Decision Manager: Mehrere Schwachstellen 2025-07-31T22:00:00.000+00:00 2025-08-03T22:00:00.000+00:00
wid-sec-w-2025-1697 Asterisk: Mehrere Schwachstellen 2025-07-31T22:00:00.000+00:00 2025-10-12T22:00:00.000+00:00
wid-sec-w-2025-1696 Squid: Schwachstelle ermöglicht Codeausführung 2025-07-31T22:00:00.000+00:00 2025-11-18T23:00:00.000+00:00
wid-sec-w-2025-1691 Apache Struts: Schwachstelle ermöglicht Manipulation 2025-07-30T22:00:00.000+00:00 2025-07-30T22:00:00.000+00:00
wid-sec-w-2025-1690 Acronis Cyber Protect Cloud Agent: Schwachstelle ermöglicht Offenlegung von Informationen 2025-07-30T22:00:00.000+00:00 2026-03-05T23:00:00.000+00:00
wid-sec-w-2025-1689 Mattermost Server: Schwachstelle ermöglicht nicht spezifizierten Angriff 2025-07-30T22:00:00.000+00:00 2025-07-30T22:00:00.000+00:00
wid-sec-w-2025-1688 SUSE Manager: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Administratorrechten 2025-07-30T22:00:00.000+00:00 2025-07-30T22:00:00.000+00:00
wid-sec-w-2025-1687 Devolutions Server: Mehrere Schwachstellen 2025-07-30T22:00:00.000+00:00 2025-07-30T22:00:00.000+00:00
wid-sec-w-2025-1686 Ruby SAML: Schwachstelle ermöglicht Denial of Service 2025-07-30T22:00:00.000+00:00 2025-08-31T22:00:00.000+00:00
wid-sec-w-2025-1685 HP LaserJet: Schwachstelle ermöglicht Offenlegung von Informationen 2025-07-30T22:00:00.000+00:00 2025-07-30T22:00:00.000+00:00
ID Description Published Updated
icsa-22-286-01 Siemens LOGO! 2022-10-11T00:00:00.000000Z 2022-10-11T00:00:00.000000Z
icsa-22-284-03 Sensormatic Electronics C-CURE 9000 2022-10-11T00:00:00.000000Z 2022-10-11T00:00:00.000000Z
icsa-22-284-02 Daikin Holdings Singapore 2022-10-11T00:00:00.000000Z 2022-10-11T00:00:00.000000Z
icsa-22-284-01 Altair HyperView Player 2022-10-11T00:00:00.000000Z 2022-10-11T00:00:00.000000Z
icsa-22-279-02 HIWIN Robot System Software (HRSS) 2022-10-06T00:00:00.000000Z 2022-10-06T00:00:00.000000Z
icsa-22-279-01 Rockwell Automation FactoryTalk VantagePoint 2022-10-06T00:00:00.000000Z 2022-10-06T00:00:00.000000Z
icsa-22-277-03 Horner Automation Cscape 2022-10-04T06:00:00.000000Z 2022-10-04T06:00:00.000000Z
icsma-22-277-01 BD Totalys MultiProcessor 2022-10-04T00:00:00.000000Z 2022-10-04T00:00:00.000000Z
icsa-22-277-04 OMRON CX-Programmer 2022-10-04T00:00:00.000000Z 2022-10-04T00:00:00.000000Z
icsa-22-277-02 Hitachi Energy Modular Switchgear Monitoring (MSM) 2022-10-04T00:00:00.000000Z 2022-10-04T00:00:00.000000Z
icsa-22-277-01 Johnson Controls Metasys ADX Server 2022-10-04T00:00:00.000000Z 2022-10-04T00:00:00.000000Z
icsa-22-272-02 Hitachi Energy MicroSCADA Pro X SYS600 2022-09-29T00:00:00.000000Z 2022-09-29T00:00:00.000000Z
icsa-22-272-01 Hitachi Energy MicroSCADA Pro X SYS600 2022-09-29T00:00:00.000000Z 2022-09-29T00:00:00.000000Z
icsa-22-270-03 Rockwell Automation ThinManager ThinServer 2022-09-27T00:00:00.000000Z 2022-09-27T00:00:00.000000Z
icsa-22-270-02 Hitachi Energy APM Edge 2022-09-27T00:00:00.000000Z 2022-09-27T00:00:00.000000Z
icsa-22-270-01 Hitachi Energy AFS660/AFS665 2022-09-27T00:00:00.000000Z 2022-09-27T00:00:00.000000Z
icsa-22-265-01 Measuresoft ScadaPro Server 2022-09-22T00:00:00.000000Z 2022-09-22T00:00:00.000000Z
icsa-25-273-03 Festo CPX-CEC-C1 and CPX-CMXX 2022-09-20T10:00:00.000000Z 2025-07-28T10:00:00.000000Z
icsa-22-263-03 Dataprobe iBoot-PDU 2022-09-20T06:00:00.000000Z 2023-05-04T23:12:37.028223Z
icsma-22-263-01 Medtronic NGP 600 Series Insulin Pumps 2022-09-20T00:00:00.000000Z 2022-09-20T00:00:00.000000Z
icsa-22-263-04 Host Engineering Communications Module 2022-09-20T00:00:00.000000Z 2022-09-20T00:00:00.000000Z
icsa-22-263-02 Hitachi Energy AFF660/665 Series 2022-09-20T00:00:00.000000Z 2022-09-20T00:00:00.000000Z
icsa-22-263-01 Hitachi Energy PROMOD IV 2022-09-20T00:00:00.000000Z 2022-09-20T00:00:00.000000Z
icsa-22-256-03 Delta Electronics DIAEnergie 2022-09-19T06:00:00.000000Z 2023-06-01T06:00:00.000000Z
icsa-22-258-05 Siemens SINEC INS 2022-09-13T00:00:00.000000Z 2022-09-13T00:00:00.000000Z
icsa-22-258-04 Siemens Mendix SAML Module 2022-09-13T00:00:00.000000Z 2022-12-13T00:00:00.000000Z
icsa-22-258-03 Siemens RUGGEDCOM ROS 2022-09-13T00:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-22-258-02 Siemens Simcenter Femap and Parasolid 2022-09-13T00:00:00.000000Z 2022-09-13T00:00:00.000000Z
icsa-22-258-01 Siemens Mobility CoreShield OWG Software 2022-09-13T00:00:00.000000Z 2022-09-13T00:00:00.000000Z
icsa-22-256-04 Kingspan TMS300 CS 2022-09-13T00:00:00.000000Z 2022-09-13T00:00:00.000000Z
ID Description Published Updated
cisco-sa-ios-nxos-onepk-rce-6hhyt4dc Cisco IOS, IOS XE, IOS XR, and NX-OS Software One Platform Kit Remote Code Execution Vulnerability 2020-06-03T16:00:00+00:00 2020-06-03T16:00:00+00:00
cisco-sa-ios-ir800-img-verif-whhlyhjk Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers Image Verification Bypass Vulnerability 2020-06-03T16:00:00+00:00 2020-06-03T16:00:00+00:00
cisco-sa-ios-iot-vds-cred-upmp9zby Cisco IOS Software for Cisco Industrial Routers Virtual Device Server Static Credentials Vulnerability 2020-06-03T16:00:00+00:00 2020-06-03T16:00:00+00:00
cisco-sa-ios-iot-vds-cmd-inj-vfjtqghe Cisco IOS Software for Cisco Industrial Routers Virtual Device Server CLI Command Injection Vulnerability 2020-06-03T16:00:00+00:00 2020-06-03T16:00:00+00:00
cisco-sa-ios-iot-udp-vds-inj-f2d5jzrt Cisco IOS Software for Cisco Industrial Routers Virtual Device Server Inter-VM Channel Command Injection Vulnerability 2020-06-03T16:00:00+00:00 2020-06-03T16:00:00+00:00
cisco-sa-ios-iot-rce-xyrsemnh Cisco IOS Software for Cisco Industrial Routers Arbitrary Code Execution Vulnerabilities 2020-06-03T16:00:00+00:00 2020-06-03T16:00:00+00:00
cisco-sa-ios-iot-gos-vuln-s9qs8kyl Cisco IOx Application Environment for IOS Software for Cisco Industrial Routers Vulnerabilities 2020-06-03T16:00:00+00:00 2020-06-03T16:00:00+00:00
cisco-sa-ikev2-9p23jj2a Cisco IOS and IOS XE Software Internet Key Exchange Version 2 Denial of Service Vulnerability 2020-06-03T16:00:00+00:00 2020-06-03T16:00:00+00:00
cisco-sa-ewlc-dos-anvkvmxr Cisco IOS XE Software Catalyst 9800 Series Wireless Controllers Denial of Service Vulnerability 2020-06-03T16:00:00+00:00 2020-06-03T16:00:00+00:00
cisco-sa-dnac-audit-log-59rbdwb6 Cisco Digital Network Architecture Center Information Disclosure Vulnerability 2020-06-03T16:00:00+00:00 2020-06-03T16:00:00+00:00
cisco-sa-cipdos-hkftzxex Cisco IOS and IOS XE Software Common Industrial Protocol Denial of Service Vulnerabilities 2020-06-03T16:00:00+00:00 2020-06-03T16:00:00+00:00
cisco-sa-caf-file-mvnpqkw9 Cisco IOx Application Framework Arbitrary File Overwrite Vulnerability 2020-06-03T16:00:00+00:00 2020-06-03T16:00:00+00:00
cisco-sa-caf-3dxm8exv Cisco IOx Application Framework Arbitrary File Creation Vulnerability 2020-06-03T16:00:00+00:00 2020-06-03T16:00:00+00:00
cisco-sa-c2960l-dpwa9re4 Cisco IOS Software for Catalyst 2960-L Series Switches and Catalyst CDB-8P Switches 802.1X Authentication Bypass Vulnerability 2020-06-03T16:00:00+00:00 2020-06-03T16:00:00+00:00
cisco-sa-auth-b-nzwhjhh7 Cisco IOS XE SD-WAN Software Authentication Bypass Vulnerability 2020-06-03T16:00:00+00:00 2020-06-03T16:00:00+00:00
cisco-sa-asr920-abjclmef Cisco ASR 920 Series Aggregation Services Router Model 12SZ-IM SNMP Denial of Service Vulnerability 2020-06-03T16:00:00+00:00 2020-06-03T16:00:00+00:00
cisco-sa-apic-ksv-3wzbhyt4 Cisco Application Services Engine Software Authorization Vulnerability 2020-06-03T16:00:00+00:00 2020-06-03T16:00:00+00:00
cisco-sa-apic-epu-f8y5kuop Cisco Application Services Engine Software Unauthenticated Event Policies Update Vulnerability 2020-06-03T16:00:00+00:00 2020-06-03T16:00:00+00:00
cisco-sa-nxos-ipip-dos-kct9x4 Cisco NX-OS Software Unexpected IP in IP Packet Processing Vulnerability 2020-06-01T16:00:00+00:00 2020-06-01T16:00:00+00:00
cisco-sa-salt-2vx545ag SaltStack FrameWork Vulnerabilities Affecting Cisco Products 2020-05-28T16:00:00+00:00 2020-06-16T15:17:35+00:00
cisco-sa-uccx-rce-gmsc6rkn Cisco Unified Contact Center Express Remote Code Execution Vulnerability 2020-05-20T16:00:00+00:00 2020-05-20T16:00:00+00:00
cisco-sa-pcp-sql-inj-22auwt66 Cisco Prime Collaboration Provisioning Software SQL Injection Vulnerability 2020-05-20T16:00:00+00:00 2020-05-20T16:00:00+00:00
cisco-sa-cpnr-dhcp-dos-bkezfhlp Cisco Prime Network Registrar DHCP Denial of Service Vulnerability 2020-05-20T16:00:00+00:00 2020-05-20T16:00:00+00:00
cisco-sa-amp4emac-dos-kfkjugtm Cisco AMP for Endpoints Mac Connector Software File Scan Denial of Service Vulnerability 2020-05-20T16:00:00+00:00 2020-05-20T16:00:00+00:00
cisco-sa-amp4elinux-h33dkrvb Cisco AMP for Endpoints Linux Connector and AMP for Endpoints Mac Connector Software Memory Buffer Vulnerability 2020-05-20T16:00:00+00:00 2020-05-20T16:00:00+00:00
cisco-sa-xpftd-gydxyn8h Cisco Firepower Device Manager On-Box Software XML Parsing Vulnerability 2020-05-06T16:00:00+00:00 2020-05-06T16:00:00+00:00
cisco-sa-umbrella-head-inject-n4qarjh Cisco Umbrella Carriage Return Line Feed Injection Vulnerability 2020-05-06T16:00:00+00:00 2020-05-06T16:00:00+00:00
cisco-sa-ucsd-ar6baguz Cisco IMC Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data Role-Based Access Control Vulnerability 2020-05-06T16:00:00+00:00 2020-05-06T16:00:00+00:00
cisco-sa-ssl-bypass-o5tgum2n Cisco Firepower Threat Defense Software SSL/TLS URL Category Bypass Vulnerability 2020-05-06T16:00:00+00:00 2020-05-06T16:00:00+00:00
cisco-sa-snort_filepolbypass-m4x5dgop Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass Vulnerability 2020-05-06T16:00:00+00:00 2020-05-08T15:54:59+00:00
ID Description Published Updated
msrc_cve-2025-40355 sysfs: check visibility before changing group attribute ownership 2025-12-02T00:00:00.000Z 2026-03-31T14:49:21.000Z
msrc_cve-2025-40354 drm/amd/display: increase max link count and fix link->enc NULL pointer access 2025-12-02T00:00:00.000Z 2026-01-13T01:36:14.000Z
msrc_cve-2025-40353 arm64: mte: Do not warn if the page is already tagged in copy_highpage() 2025-12-02T00:00:00.000Z 2025-12-17T01:03:28.000Z
msrc_cve-2025-40345 usb: storage: sddr55: Reject out-of-bound new_pba 2025-12-02T00:00:00.000Z 2026-01-07T14:37:39.000Z
msrc_cve-2025-40343 nvmet-fc: avoid scheduling association deletion twice 2025-12-02T00:00:00.000Z 2025-12-16T14:40:15.000Z
msrc_cve-2025-40342 nvme-fc: use lock accessing port_state and rport state 2025-12-02T00:00:00.000Z 2025-12-16T14:40:34.000Z
msrc_cve-2025-40341 futex: Don't leak robust_list pointer on exec race 2025-12-02T00:00:00.000Z 2025-12-16T14:40:09.000Z
msrc_cve-2025-40340 drm/xe: Fix oops in xe_gem_fault when running core_hotunplug test. 2025-12-02T00:00:00.000Z 2025-12-10T01:02:33.000Z
msrc_cve-2025-40339 drm/amdgpu: fix nullptr err of vm_handle_moved 2025-12-02T00:00:00.000Z 2026-03-31T15:15:25.000Z
msrc_cve-2025-40338 ASoC: Intel: avs: Do not share the name pointer between components 2025-12-02T00:00:00.000Z 2025-12-11T01:36:32.000Z
msrc_cve-2025-40337 net: stmmac: Correctly handle Rx checksum offload errors 2025-12-02T00:00:00.000Z 2025-12-16T14:40:54.000Z
msrc_cve-2025-40336 drm/gpusvm: fix hmm_pfn_to_map_order() usage 2025-12-02T00:00:00.000Z 2025-12-11T01:36:26.000Z
msrc_cve-2025-40335 drm/amdgpu: validate userq input args 2025-12-02T00:00:00.000Z 2026-01-20T14:51:11.000Z
msrc_cve-2025-40334 drm/amdgpu: validate userq buffer virtual address and size 2025-12-02T00:00:00.000Z 2025-12-11T01:36:37.000Z
msrc_cve-2025-40333 f2fs: fix infinite loop in __insert_extent_tree() 2025-12-02T00:00:00.000Z 2025-12-16T14:40:47.000Z
msrc_cve-2025-40332 drm/amdkfd: Fix mmap write lock not release 2025-12-02T00:00:00.000Z 2026-01-20T14:51:28.000Z
msrc_cve-2025-40331 sctp: Prevent TOCTOU out-of-bounds write 2025-12-02T00:00:00.000Z 2025-12-16T14:40:22.000Z
msrc_cve-2025-40329 drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb 2025-12-02T00:00:00.000Z 2025-12-16T14:40:41.000Z
msrc_cve-2025-40328 smb: client: fix potential UAF in smb2_close_cached_fid() 2025-12-02T00:00:00.000Z 2025-12-16T14:40:28.000Z
msrc_cve-2025-40324 NFSD: Fix crash in nfsd4_read_release() 2025-12-02T00:00:00.000Z 2025-12-16T14:40:02.000Z
msrc_cve-2025-40323 fbcon: Set fb_display[i]->mode to NULL when the mode is released 2025-12-02T00:00:00.000Z 2025-12-16T14:39:30.000Z
msrc_cve-2025-40322 fbdev: bitblit: bound-check glyph index in bit_putcs* 2025-12-02T00:00:00.000Z 2025-12-16T14:39:43.000Z
msrc_cve-2025-40321 wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode 2025-12-02T00:00:00.000Z 2025-12-16T14:38:58.000Z
msrc_cve-2025-40319 bpf: Sync pending IRQ work before freeing ring buffer 2025-12-02T00:00:00.000Z 2025-12-16T14:38:51.000Z
msrc_cve-2025-40317 regmap: slimbus: fix bus_context pointer in regmap init calls 2025-12-02T00:00:00.000Z 2025-12-09T01:02:25.000Z
msrc_cve-2025-40315 usb: gadget: f_fs: Fix epfile null pointer access after ep enable. 2025-12-02T00:00:00.000Z 2025-12-09T01:02:15.000Z
msrc_cve-2025-40314 usb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget 2025-12-02T00:00:00.000Z 2025-12-09T01:02:20.000Z
msrc_cve-2025-40313 ntfs3: pretend $Extend records as regular files 2025-12-02T00:00:00.000Z 2025-12-09T01:02:47.000Z
msrc_cve-2025-40312 jfs: Verify inode mode when loading from disk 2025-12-02T00:00:00.000Z 2025-12-09T01:02:09.000Z
msrc_cve-2025-40311 accel/habanalabs: support mapping cb with vmalloc-backed coherent memory 2025-12-02T00:00:00.000Z 2025-12-16T14:39:36.000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
opensuse-su-2025:0147-1 Security update for mozjs102 2025-05-09T08:01:38Z 2025-05-09T08:01:38Z
opensuse-su-2025:15074-1 libmosquitto1-2.0.21-2.1 on GA media 2025-05-09T00:00:00Z 2025-05-09T00:00:00Z
opensuse-su-2025:15073-1 chromedriver-136.0.7103.92-1.1 on GA media 2025-05-09T00:00:00Z 2025-05-09T00:00:00Z
opensuse-su-2025:15072-1 bird3-3.1.0-1.1 on GA media 2025-05-09T00:00:00Z 2025-05-09T00:00:00Z
opensuse-su-2025:15071-1 afterburn-5.7.0.git103.bae893c-1.1 on GA media 2025-05-09T00:00:00Z 2025-05-09T00:00:00Z
opensuse-su-2025:15070-1 libevtlog-4_8-0-4.8.2-1.1 on GA media 2025-05-08T00:00:00Z 2025-05-08T00:00:00Z
opensuse-su-2025:15069-1 sslh-2.2.3-1.1 on GA media 2025-05-08T00:00:00Z 2025-05-08T00:00:00Z
opensuse-su-2025:15068-1 sequoia-octopus-librnp-1.11.0-2.1 on GA media 2025-05-08T00:00:00Z 2025-05-08T00:00:00Z
opensuse-su-2025:15067-1 ruby3.4-rubygem-rack-2.2-2.2.14-1.1 on GA media 2025-05-08T00:00:00Z 2025-05-08T00:00:00Z
opensuse-su-2025:15066-1 ldap-proxy-0.1.0~90-1.1 on GA media 2025-05-08T00:00:00Z 2025-05-08T00:00:00Z
opensuse-su-2025:15065-1 wasm-bindgen-0.2.97~0-3.1 on GA media 2025-05-07T00:00:00Z 2025-05-07T00:00:00Z
opensuse-su-2025:15064-1 transfig-3.2.9a-2.1 on GA media 2025-05-07T00:00:00Z 2025-05-07T00:00:00Z
opensuse-su-2025:15063-1 tealdeer-1.7.1-2.1 on GA media 2025-05-07T00:00:00Z 2025-05-07T00:00:00Z
opensuse-su-2025:15062-1 sccache-0.9.1~22-2.1 on GA media 2025-05-07T00:00:00Z 2025-05-07T00:00:00Z
opensuse-su-2025:15061-1 rustup-1.28.1~0-2.1 on GA media 2025-05-07T00:00:00Z 2025-05-07T00:00:00Z
opensuse-su-2025:15060-1 kanidm-1.6.0~git0.d7ae0f336-1.1 on GA media 2025-05-07T00:00:00Z 2025-05-07T00:00:00Z
opensuse-su-2025:15059-1 govulncheck-vulndb-0.0.20250506T153719-1.1 on GA media 2025-05-07T00:00:00Z 2025-05-07T00:00:00Z
opensuse-su-2025:15058-1 go1.24-1.24.3-1.1 on GA media 2025-05-07T00:00:00Z 2025-05-07T00:00:00Z
opensuse-su-2025:15057-1 cargo-c-0.10.3~git0.ee7d7ef-3.1 on GA media 2025-05-07T00:00:00Z 2025-05-07T00:00:00Z
opensuse-su-2025:15056-1 389-ds-3.1.2~git90.2bc7250be-1.1 on GA media 2025-05-07T00:00:00Z 2025-05-07T00:00:00Z
opensuse-su-2025:0145-1 Security update for chromium 2025-05-06T06:05:59Z 2025-05-06T06:05:59Z
opensuse-su-2025:15055-1 weblate-5.11.3-1.1 on GA media 2025-05-06T00:00:00Z 2025-05-06T00:00:00Z
opensuse-su-2025:15054-1 rclone-1.69.2-1.1 on GA media 2025-05-05T00:00:00Z 2025-05-05T00:00:00Z
opensuse-su-2025:15053-1 java-1_8_0-openjdk-1.8.0.452-1.1 on GA media 2025-05-05T00:00:00Z 2025-05-05T00:00:00Z
opensuse-su-2025:15052-1 grafana-11.5.4-1.1 on GA media 2025-05-05T00:00:00Z 2025-05-05T00:00:00Z
opensuse-su-2025:15051-1 chromedriver-136.0.7103.59-1.1 on GA media 2025-05-04T00:00:00Z 2025-05-04T00:00:00Z
opensuse-su-2025:15050-1 audiofile-0.3.6-15.1 on GA media 2025-05-03T00:00:00Z 2025-05-03T00:00:00Z
opensuse-su-2025:15049-1 tomcat10-10.1.40-1.1 on GA media 2025-05-02T00:00:00Z 2025-05-02T00:00:00Z
opensuse-su-2025:15048-1 tomcat-9.0.104-1.1 on GA media 2025-05-02T00:00:00Z 2025-05-02T00:00:00Z
opensuse-su-2025:15047-1 hauler-1.2.4-1.1 on GA media 2025-05-02T00:00:00Z 2025-05-02T00:00:00Z
ID Description Published Updated
ID Description Published Updated
rhsa-2026:0422 Red Hat Security Advisory: libsoup security update 2026-01-12T02:53:33+00:00 2026-03-19T14:36:58+00:00
rhsa-2026:0443 Red Hat Security Advisory: kernel-rt security update 2026-01-12T02:42:33+00:00 2026-04-08T13:32:44+00:00
rhsa-2026:0435 Red Hat Security Advisory: tar security update 2026-01-12T02:39:28+00:00 2026-03-18T03:14:49+00:00
rhsa-2026:0428 Red Hat Security Advisory: libssh security update 2026-01-12T02:35:33+00:00 2026-03-20T20:06:02+00:00
rhsa-2026:0434 Red Hat Security Advisory: tar security update 2026-01-12T02:30:08+00:00 2026-03-18T03:14:57+00:00
rhsa-2026:0424 Red Hat Security Advisory: podman security update 2026-01-12T02:26:08+00:00 2026-04-14T07:57:46+00:00
rhsa-2026:0421 Red Hat Security Advisory: libsoup security update 2026-01-12T02:24:03+00:00 2026-03-19T14:36:58+00:00
rhsa-2026:0427 Red Hat Security Advisory: libssh security update 2026-01-12T02:12:23+00:00 2026-03-20T20:06:02+00:00
rhsa-2026:0430 Red Hat Security Advisory: libssh security update 2026-01-12T02:08:48+00:00 2026-03-20T20:06:03+00:00
rhsa-2026:0436 Red Hat Security Advisory: buildah security update 2026-01-12T02:06:04+00:00 2026-04-02T16:47:02+00:00
rhsa-2026:0429 Red Hat Security Advisory: keylime security update 2026-01-12T02:05:04+00:00 2026-03-19T15:40:07+00:00
rhsa-2026:0433 Red Hat Security Advisory: wireshark security update 2026-01-12T02:00:34+00:00 2026-03-18T03:15:03+00:00
rhsa-2026:0423 Red Hat Security Advisory: libsoup3 security update 2026-01-12T01:38:59+00:00 2026-03-19T14:36:59+00:00
rhsa-2026:0304 Red Hat Security Advisory: mariadb:10.3 security update 2026-01-09T08:07:12+00:00 2026-04-13T20:00:32+00:00
rhsa-2026:0414 Red Hat Security Advisory: A Subscription Management tool for finding and reporting Red Hat product usage 2026-01-08T22:34:17+00:00 2026-04-14T09:16:29+00:00
rhsa-2026:0409 Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Container Release Update 2026-01-08T19:41:55+00:00 2026-03-23T17:11:53+00:00
rhsa-2026:0408 Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.6 Container Release Update 2026-01-08T19:38:23+00:00 2026-03-23T17:11:53+00:00
rhsa-2026:0406 Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Container Release Update 2026-01-08T19:34:46+00:00 2026-03-23T17:11:54+00:00
rhsa-2026:0384 Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.1.3 security update 2026-01-08T16:57:30+00:00 2026-04-01T13:37:38+00:00
rhsa-2026:0383 Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.1.3 security update 2026-01-08T16:57:24+00:00 2026-04-01T13:37:37+00:00
rhsa-2026:0386 Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.1.3 security update 2026-01-08T16:53:51+00:00 2026-04-01T13:37:38+00:00
rhsa-2026:0376 Red Hat Security Advisory: mariadb10.11 security update 2026-01-08T16:41:25+00:00 2026-04-14T09:46:01+00:00
rhsa-2026:0367 Red Hat Security Advisory: mariadb security update 2026-01-08T15:48:20+00:00 2026-04-13T20:00:36+00:00
rhsa-2026:0355 Red Hat Security Advisory: python3.12 security update 2026-01-08T14:45:29+00:00 2026-04-13T20:00:36+00:00
rhsa-2026:0354 Red Hat Security Advisory: python3.12 security update 2026-01-08T14:33:54+00:00 2026-04-13T20:00:35+00:00
rhsa-2026:0356 Red Hat Security Advisory: gimp:2.8 security update 2026-01-08T14:27:05+00:00 2026-03-18T03:14:09+00:00
rhsa-2026:0361 Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security Update 2026-01-08T14:13:04+00:00 2026-03-18T03:14:52+00:00
rhsa-2026:0360 Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.6 Product Security Update 2026-01-08T14:12:09+00:00 2026-03-18T03:14:53+00:00
rhsa-2026:0357 Red Hat Security Advisory: mariadb:10.3 security update 2026-01-08T14:07:19+00:00 2026-04-13T20:00:36+00:00
rhsa-2026:0341 Red Hat Security Advisory: gcc-toolset-14-binutils security update 2026-01-08T13:54:39+00:00 2026-04-13T20:00:34+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
suse-su-2026:0202-1 Security update for the Linux Kernel (Live Patch 3 for SUSE Linux Enterprise 15 SP7) 2026-01-21T14:35:49Z 2026-01-21T14:35:49Z
suse-su-2026:20365-1 Security update for util-linux 2026-01-21T13:48:05Z 2026-01-21T13:48:05Z
suse-su-2026:20364-1 Security update for python-urllib3 2026-01-21T13:44:58Z 2026-01-21T13:44:58Z
suse-su-2026:0204-1 Security update for the Linux Kernel (Live Patch 16 for SUSE Linux Enterprise 15 SP6) 2026-01-21T13:33:35Z 2026-01-21T13:33:35Z
suse-su-2026:0203-1 Security update for the Linux Kernel (Live Patch 15 for SUSE Linux Enterprise 15 SP6) 2026-01-21T13:04:03Z 2026-01-21T13:04:03Z
suse-su-2026:20270-1 Security update for python-urllib3 2026-01-21T13:01:37Z 2026-01-21T13:01:37Z
suse-su-2026:0200-1 Security update for the Linux Kernel (Live Patch 73 for SUSE Linux Enterprise 12 SP5) 2026-01-21T12:17:09Z 2026-01-21T12:17:09Z
suse-su-2026:20116-1 Security update for podman 2026-01-21T11:08:51Z 2026-01-21T11:08:51Z
suse-su-2026:20103-1 Security update for podman 2026-01-21T11:08:51Z 2026-01-21T11:08:51Z
suse-su-2026:0199-1 Security update for python-FontTools 2026-01-21T11:03:55Z 2026-01-21T11:03:55Z
suse-su-2026:0198-1 Security update for ffmpeg-4 2026-01-21T10:16:19Z 2026-01-21T10:16:19Z
suse-su-2026:0197-1 Security update for postgresql17, postgresql18 2026-01-21T09:31:57Z 2026-01-21T09:31:57Z
suse-su-2026:0196-1 Security update for ovmf 2026-01-21T09:05:26Z 2026-01-21T09:05:26Z
suse-su-2026:0195-1 Security update for net-snmp 2026-01-21T09:05:17Z 2026-01-21T09:05:17Z
suse-su-2026:0194-1 Security update for libsodium 2026-01-21T09:05:11Z 2026-01-21T09:05:11Z
suse-su-2026:0193-1 Security update for libvirt 2026-01-21T08:04:55Z 2026-01-21T08:04:55Z
suse-su-2026:0192-1 Security update for libpng16 2026-01-21T03:33:46Z 2026-01-21T03:33:46Z
suse-su-2026:0191-1 Security update for the Linux Kernel (Live Patch 43 for SUSE Linux Enterprise 15 SP4) 2026-01-20T21:05:44Z 2026-01-20T21:05:44Z
suse-su-2026:0188-1 Security update for the Linux Kernel (Live Patch 31 for SUSE Linux Enterprise 15 SP5) 2026-01-20T14:06:23Z 2026-01-20T14:06:23Z
suse-su-2026:0187-1 Security update for the Linux Kernel (Live Patch 30 for SUSE Linux Enterprise 15 SP5) 2026-01-20T12:46:06Z 2026-01-20T12:46:06Z
suse-su-2026:0186-1 Security update for the Linux Kernel (Live Patch 29 for SUSE Linux Enterprise 15 SP5) 2026-01-20T12:45:55Z 2026-01-20T12:45:55Z
suse-su-2026:20102-1 Security update for webkit2gtk3 2026-01-20T12:37:33Z 2026-01-20T12:37:33Z
suse-su-2026:0185-1 Security update for the Linux Kernel (Live Patch 45 for SUSE Linux Enterprise 15 SP4) 2026-01-20T11:08:06Z 2026-01-20T11:08:06Z
suse-su-2026:20114-1 Security update of open-vm-tools 2026-01-20T11:00:32Z 2026-01-20T11:00:32Z
suse-su-2026:20100-1 Security update of open-vm-tools 2026-01-20T11:00:32Z 2026-01-20T11:00:32Z
suse-su-2026:20361-1 Security update for abseil-cpp 2026-01-20T09:46:41Z 2026-01-20T09:46:41Z
suse-su-2026:20268-1 Security update for abseil-cpp 2026-01-20T09:41:09Z 2026-01-20T09:41:09Z
suse-su-2026:0184-1 Security update for the Linux Kernel (Live Patch 27 for SUSE Linux Enterprise 15 SP5) 2026-01-20T09:34:00Z 2026-01-20T09:34:00Z
suse-su-2026:20267-1 Security update for net-snmp 2026-01-20T08:52:45Z 2026-01-20T08:52:45Z
suse-su-2026:0180-1 Security update for the Linux Kernel (Live Patch 24 for SUSE Linux Enterprise 15 SP5) 2026-01-20T07:04:14Z 2026-01-20T07:04:14Z
ID Description Published Updated
alsa-2024:6309 Moderate: fence-agents security update 2024-09-04T00:00:00Z 2024-09-05T06:39:10Z
alsa-2024:6197 Moderate: ghostscript security update 2024-09-03T00:00:00Z 2024-09-04T08:17:53Z
alsa-2024:6195 Moderate: skopeo security update 2024-09-03T00:00:00Z 2024-09-03T13:22:48Z
alsa-2024:6194 Important: podman security update 2024-09-03T00:00:00Z 2024-09-04T08:19:33Z
alsa-2024:6192 Moderate: wget security update 2024-09-03T00:00:00Z 2024-09-04T08:20:54Z
alsa-2024:6189 Moderate: buildah security update 2024-09-03T00:00:00Z 2024-09-03T13:24:13Z
alsa-2024:6188 Moderate: runc security update 2024-09-03T00:00:00Z 2024-09-04T08:22:18Z
alsa-2024:6187 Moderate: gvisor-tap-vsock security update 2024-09-03T00:00:00Z 2024-09-03T13:25:37Z
alsa-2024:6186 Moderate: containernetworking-plugins security update 2024-09-03T00:00:00Z 2024-09-04T08:23:09Z
alsa-2024:6184 Moderate: orc security update 2024-09-03T00:00:00Z 2024-09-04T09:13:16Z
alsa-2024:6179 Moderate: python3.11 security update 2024-09-03T00:00:00Z 2024-09-04T08:24:24Z
alsa-2024:6166 Moderate: krb5 security update 2024-09-03T00:00:00Z 2024-09-04T08:26:08Z
alsa-2024:6163 Moderate: python3.9 security update 2024-09-03T00:00:00Z 2024-09-04T08:28:04Z
alsa-2024:6162 Moderate: python-urllib3 security update 2024-09-03T00:00:00Z 2024-09-03T13:27:19Z
alsa-2024:6148 Moderate: nodejs:18 security update 2024-09-03T00:00:00Z 2024-09-03T13:11:49Z
alsa-2024:6147 Moderate: nodejs:18 security update 2024-09-03T00:00:00Z 2024-09-03T13:09:23Z
alsa-2024:6146 Moderate: python3.12 security update 2024-09-03T00:00:00Z 2024-09-03T07:39:19Z
alsa-2024:6020 Important: postgresql:15 security update 2024-08-29T00:00:00Z 2024-08-29T13:44:43Z
alsa-2024:6018 Important: postgresql:13 security update 2024-08-29T00:00:00Z 2024-08-29T13:41:13Z
alsa-2024:6001 Important: postgresql:15 security update 2024-08-29T00:00:00Z 2024-08-29T13:39:16Z
alsa-2024:6000 Important: postgresql:12 security update 2024-08-29T00:00:00Z 2024-08-29T13:46:13Z
alsa-2024:5999 Important: postgresql security update 2024-08-29T00:00:00Z 2024-08-29T13:54:02Z
alsa-2024:5962 Moderate: python39:3.9 and python39-devel:3.9 security update 2024-08-28T00:00:00Z 2024-08-29T08:29:21Z
alsa-2024:5941 Moderate: libvpx security update 2024-08-28T00:00:00Z 2024-08-29T08:25:04Z
alsa-2024:5929 Important: postgresql:16 security update 2024-08-28T00:00:00Z 2024-08-28T15:25:58Z
alsa-2024:5928 Important: kernel security update 2024-08-28T00:00:00Z 2024-11-03T22:29:00Z
alsa-2024:5927 Important: postgresql:16 security update 2024-08-28T00:00:00Z 2024-08-30T12:36:27Z
alsa-2024:5815 Moderate: nodejs:20 security update 2024-08-26T00:00:00Z 2024-08-26T18:11:55Z
alsa-2024:5814 Moderate: nodejs:20 security update 2024-08-26T00:00:00Z 2024-08-26T18:53:15Z
alsa-2024:5694 Important: tomcat security update 2024-08-21T00:00:00Z 2024-08-21T13:21:48Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
osv-2022-507 Heap-use-after-free in psi_device_ref_finalize 2022-06-25T00:01:55.696626Z 2022-06-25T00:01:55.696857Z
osv-2022-501 UNKNOWN WRITE in grk::TileLengthMarkers::seek 2022-06-24T00:01:56.977425Z 2022-06-27T00:04:10.724141Z
osv-2022-497 Uncaught exception in com.ctc.wstx.dtd.FullDTDReader.readContentSpec 2022-06-23T00:01:42.392060Z 2022-06-23T00:01:42.392303Z
osv-2022-496 Heap-buffer-overflow in pdfi_dict_get_no_store_R_inner 2022-06-23T00:00:48.826856Z 2022-06-23T00:00:48.827258Z
osv-2022-494 Heap-buffer-overflow in ucl_hash_search 2022-06-22T00:01:16.539035Z 2025-06-05T14:39:06.351080Z
osv-2022-493 Segv on unknown address in jxl::N_AVX2::XYBStage<jxl::N_AVX2::PerChannelOp<jxl::N_AVX2::Op709> >::ProcessRo 2022-06-21T00:01:55.187291Z 2022-06-21T00:01:55.187587Z
osv-2022-492 Heap-buffer-overflow in jxl::BitsCoder::Read 2022-06-20T00:01:36.686599Z 2022-06-20T00:01:36.686881Z
osv-2021-1820 Heap-buffer-overflow in r_str_utf8_codepoint 2022-06-19T00:00:52.240583Z 2022-06-19T00:00:52.240913Z
osv-2022-490 Stack-buffer-overflow in spvtools::opt::CompositeInsertToCompositeConstruct 2022-06-17T00:01:02.205743Z 2022-06-17T00:01:02.206010Z
osv-2022-489 Heap-buffer-overflow in fr_size_from_str 2022-06-17T00:00:29.738821Z 2022-06-17T00:00:29.739073Z
osv-2022-487 Heap-use-after-free in duckdb::Planner::CreatePlan 2022-06-17T00:00:15.351733Z 2022-06-17T00:00:15.351999Z
osv-2022-486 Heap-buffer-overflow in frame_get_vlmetalayers 2022-06-17T00:00:08.687092Z 2024-10-02T14:11:20.344165Z
osv-2022-485 Segv on unknown address in duckdb::ExpressionBinder::BindExpression 2022-06-16T00:00:15.479357Z 2022-06-16T00:00:15.479757Z
osv-2022-483 Heap-buffer-overflow in ndpi_search_dns 2022-06-15T00:01:56.102357Z 2022-06-15T00:01:56.102595Z
osv-2022-481 UNKNOWN READ in ndpi_strdup 2022-06-15T00:01:12.654297Z 2022-06-15T00:01:12.654543Z
osv-2022-480 Heap-buffer-overflow in jxl::JxlBoxContentDecoder::Process 2022-06-15T00:00:47.673415Z 2022-06-15T00:00:47.673708Z
osv-2022-478 Segv on unknown address 2022-06-14T00:01:10.335839Z 2023-10-09T14:11:11.908246Z
osv-2022-476 Stack-buffer-overflow in simple_str_to_doublestr 2022-06-13T00:01:55.785660Z 2022-06-13T00:01:55.785861Z
osv-2022-475 Heap-double-free in nft_set_context_free_many 2022-06-13T00:01:49.208216Z 2022-06-13T00:01:49.208454Z
osv-2022-474 Heap-double-free in config_parse_nft_set_context 2022-06-13T00:00:44.235758Z 2022-06-13T00:00:44.236019Z
osv-2022-473 Stack-buffer-overflow in input_osc_52 2022-06-13T00:00:43.680059Z 2022-06-13T00:00:43.680337Z
osv-2022-472 Heap-double-free in nft_set_context_free_many 2022-06-12T00:02:00.632767Z 2022-06-12T00:02:00.632977Z
osv-2022-468 Heap-buffer-overflow in json_parse 2022-06-12T00:00:08.434300Z 2022-06-12T00:00:08.434602Z
osv-2022-467 Security exception in jaz.Zer.<clinit> 2022-06-10T00:00:30.386864Z 2022-06-10T00:00:30.387111Z
osv-2022-463 Uncaught exception in com.ctc.wstx.dtd.FullDTDReader.readContentSpec 2022-06-08T00:00:50.179167Z 2022-06-08T00:00:50.179440Z
osv-2022-462 Stack-buffer-overflow in strcat 2022-06-07T00:01:47.521548Z 2026-02-08T14:10:42.909724Z
osv-2022-460 Heap-use-after-free in inflate 2022-06-06T00:01:38.349008Z 2022-06-09T00:43:11.909085Z
osv-2022-458 Uncaught exception in com.ctc.wstx.dtd.FullDTDReader.readContentSpec 2022-06-04T00:01:54.560493Z 2022-06-04T00:01:54.560720Z
osv-2022-457 Heap-buffer-overflow in CFF::Charset::collect_glyph_to_sid_map 2022-06-04T00:01:52.823074Z 2022-06-04T00:01:52.823308Z
osv-2022-456 Null-dereference READ in load_glyph 2022-06-04T00:01:31.294896Z 2022-06-04T00:01:31.295128Z
ID Description Published Updated
ID Description Published Updated
bit-joomla-2020-11891 2025-04-03T14:10:00.912Z 2025-04-03T14:40:37.652Z
bit-joomla-2020-11890 2025-04-03T14:09:56.804Z 2025-04-03T14:40:37.652Z
bit-joomla-2020-11889 2025-04-03T14:09:52.491Z 2025-04-03T14:40:37.652Z
bit-joomla-2020-10243 2025-04-03T14:09:48.487Z 2025-04-03T14:40:37.652Z
bit-joomla-2020-10242 2025-04-03T14:09:45.193Z 2025-04-03T14:40:37.652Z
bit-joomla-2020-10241 2025-04-03T14:09:41.599Z 2025-04-03T14:40:37.652Z
bit-joomla-2020-10240 2025-04-03T14:09:37.802Z 2025-04-03T14:40:37.652Z
bit-joomla-2020-10239 2025-04-03T14:09:34.111Z 2025-04-03T14:40:37.652Z
bit-joomla-2020-10238 2025-04-03T14:09:30.406Z 2025-04-03T14:40:37.652Z
bit-mlflow-2025-0453 Denial of Service through Batched Queries in GraphQL in mlflow/mlflow 2025-04-03T09:02:58.147Z 2025-05-20T10:02:07.006Z
bit-mlflow-2024-6838 Uncontrolled Resource Consumption in mlflow/mlflow 2025-04-02T07:17:05.688Z 2025-05-20T10:02:07.006Z
bit-appsmith-2024-55963 2025-04-02T07:06:56.893Z 2025-04-03T14:40:37.652Z
bit-appsmith-2024-55964 2025-04-02T07:06:54.525Z 2025-04-03T14:40:37.652Z
bit-gitlab-2024-10307 Allocation of Resources Without Limits or Throttling in GitLab 2025-04-01T08:18:31.847Z 2025-08-13T06:08:53.695Z
bit-gitlab-2024-12619 Insufficient Granularity of Access Control in GitLab 2025-04-01T08:16:40.753Z 2025-08-13T06:08:53.695Z
bit-gitlab-2024-9773 Improper Neutralization of Special Elements used in a Command ('Command Injection') in GitLab 2025-03-29T07:12:34.592Z 2025-08-13T06:08:53.695Z
bit-gitlab-2025-0811 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab 2025-03-29T07:11:18.091Z 2025-08-13T06:08:53.695Z
bit-gitlab-2025-2242 Incorrect Authorization in GitLab 2025-03-29T07:10:26.493Z 2025-08-13T06:08:53.695Z
bit-gitlab-2025-2255 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab 2025-03-29T07:10:19.692Z 2025-08-13T06:08:53.695Z
bit-discourse-2025-24808 Discourse has race condition when adding users to a group DM 2025-03-28T09:46:39.640Z 2025-08-26T06:08:52.180Z
bit-discourse-2025-24972 Discourse may bypass user preference when adding users to chat groups 2025-03-28T09:46:35.742Z 2025-05-20T10:02:07.006Z
bit-mlflow-2025-1474 Weak Password Requirements in mlflow/mlflow 2025-03-28T07:22:47.450Z 2025-05-20T10:02:07.006Z
bit-rabbitmq-2025-30219 RabbitMQ has XSS Vulnerability in an Error Message in Management UI 2025-03-27T07:51:20.693Z 2025-05-20T10:02:07.006Z
bit-cilium-2025-30162 East-west traffic not subject to egress policy enforcement for requests via Gateway API load balancers 2025-03-26T07:08:03.178Z 2025-09-09T06:08:46.021Z
bit-cilium-2025-30163 Node based network policies may incorrectly allow workload traffic 2025-03-26T07:07:58.967Z 2025-09-09T06:08:46.021Z
bit-varnish-2025-30346 2025-03-25T07:44:36.946Z 2025-04-03T14:40:37.652Z
bit-parse-2025-30168 Parse Server has an OAuth login vulnerability 2025-03-25T07:27:47.242Z 2025-05-20T10:02:07.006Z
bit-envoy-2025-30157 Envoy crashes when HTTP ext_proc processes local replies 2025-03-25T07:10:09.552Z 2025-05-20T10:02:07.006Z
bit-gitlab-2024-12380 Generation of Error Message Containing Sensitive Information in GitLab 2025-03-15T07:42:28.195Z 2025-08-07T09:23:45.368Z
bit-gitlab-2024-13054 Allocation of Resources Without Limits or Throttling in GitLab 2025-03-15T07:41:20.300Z 2025-05-20T10:02:07.006Z
ID Description Published Updated
ID Description Published Updated
ID Description Updated
ID Description Published Updated
ID Description Published Updated
certfr-2025-avi-0055 Multiples vulnérabilités dans Oracle PeopleSoft 2025-01-22T00:00:00.000000 2025-01-22T00:00:00.000000
certfr-2025-avi-0054 Multiples vulnérabilités dans Oracle MySQL 2025-01-22T00:00:00.000000 2025-01-22T00:00:00.000000
certfr-2025-avi-0053 Multiples vulnérabilités dans Oracle Java SE 2025-01-22T00:00:00.000000 2025-01-22T00:00:00.000000
certfr-2025-avi-0052 Multiples vulnérabilités dans Oracle Database Server 2025-01-22T00:00:00.000000 2025-01-22T00:00:00.000000
certfr-2025-avi-0051 Multiples vulnérabilités dans phpMyAdmin 2025-01-22T00:00:00.000000 2025-01-22T00:00:00.000000
certfr-2025-avi-0050 Multiples vulnérabilités dans les produits Elastic 2025-01-21T00:00:00.000000 2025-01-21T00:00:00.000000
certfr-2025-avi-0049 Multiples vulnérabilités dans Microsoft Edge 2025-01-20T00:00:00.000000 2025-01-20T00:00:00.000000
certfr-2025-avi-0048 Vulnérabilité dans Microsoft Windows 2025-01-17T00:00:00.000000 2025-01-17T00:00:00.000000
certfr-2025-avi-0047 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-01-17T00:00:00.000000 2025-01-17T00:00:00.000000
certfr-2025-avi-0046 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2025-01-17T00:00:00.000000 2025-01-17T00:00:00.000000
certfr-2025-avi-0045 Multiples vulnérabilités dans les produits IBM 2025-01-17T00:00:00.000000 2025-01-17T00:00:00.000000
certfr-2025-avi-0044 Vulnérabilité dans les produits Moxa 2025-01-17T00:00:00.000000 2025-01-17T00:00:00.000000
certfr-2025-avi-0043 Multiples vulnérabilités dans SPIP 2025-01-17T00:00:00.000000 2026-02-25T00:00:00.000000
certfr-2025-avi-0042 Vulnérabilité dans le greffon Splunk Supporting pour Active Directory 2025-01-16T00:00:00.000000 2025-01-16T00:00:00.000000
certfr-2025-avi-0041 Multiples vulnérabilités dans les produits Microsoft 2025-01-15T00:00:00.000000 2025-01-15T00:00:00.000000
certfr-2025-avi-0040 Multiples vulnérabilités dans Microsoft .Net 2025-01-15T00:00:00.000000 2025-01-15T00:00:00.000000
certfr-2025-avi-0039 Multiples vulnérabilités dans Microsoft Windows 2025-01-15T00:00:00.000000 2025-01-15T00:00:00.000000
certfr-2025-avi-0038 Multiples vulnérabilités dans Microsoft Office 2025-01-15T00:00:00.000000 2025-01-15T00:00:00.000000
certfr-2025-avi-0037 Vulnérabilité dans Microsoft Edge 2025-01-15T00:00:00.000000 2025-01-15T00:00:00.000000
certfr-2025-avi-0036 Multiples vulnérabilités dans les produits Moxa 2025-01-15T00:00:00.000000 2025-01-15T00:00:00.000000
certfr-2025-avi-0035 Multiples vulnérabilités dans Ivanti Endpoint Manager (EPM) 2025-01-15T00:00:00.000000 2025-01-15T00:00:00.000000
certfr-2025-avi-0034 Multiples vulnérabilités dans les produits Schneider Electric 2025-01-15T00:00:00.000000 2025-01-15T00:00:00.000000
certfr-2025-avi-0033 Multiples vulnérabilités dans Google Chrome 2025-01-15T00:00:00.000000 2025-01-15T00:00:00.000000
certfr-2025-avi-0032 Multiples vulnérabilités dans HPE Aruba Networking AOS 2025-01-15T00:00:00.000000 2025-01-15T00:00:00.000000
certfr-2025-avi-0031 Multiples vulnérabilités dans les produits Fortinet 2025-01-15T00:00:00.000000 2025-01-15T00:00:00.000000
certfr-2025-avi-0030 Multiples vulnérabilités dans les produits Fortinet 2025-01-14T00:00:00.000000 2025-02-12T00:00:00.000000
certfr-2025-avi-0029 Multiples vulnérabilités dans les produits Siemens 2025-01-14T00:00:00.000000 2025-01-14T00:00:00.000000
certfr-2025-avi-0028 Multiples vulnérabilités dans Typo3 2025-01-14T00:00:00.000000 2025-01-14T00:00:00.000000
certfr-2025-avi-0027 Multiples vulnérabilités dans les produits SAP 2025-01-14T00:00:00.000000 2025-01-14T00:00:00.000000
certfr-2025-avi-0026 Vulnérabilité dans Veeam Backup pour Microsoft Azure 2025-01-14T00:00:00.000000 2025-01-14T00:00:00.000000
ID Description Published Updated
jvndb-2017-000058 Tablacus Explorer vulnerable to script injection 2017-04-07T14:47+09:00 2017-06-01T15:24+09:00
jvndb-2016-006450 Vulnerability in JP1/Cm2/Network Node Manager i 2017-03-30T15:01+09:00 2017-03-30T15:01+09:00
jvndb-2017-000044 CentreCOM AR260S V2 vulnerable to privilege escalation 2017-03-30T14:37+09:00 2017-06-05T10:51+09:00
jvndb-2017-000050 WordPress plugin "YOP Poll" vulnerable to cross-site scripting 2017-03-23T12:23+09:00 2017-06-01T15:08+09:00
jvndb-2017-000049 Installer of PhishWall Client Internet Explorer version may insecurely load Dynamic Link Libraries 2017-03-22T14:43+09:00 2017-06-01T17:16+09:00
jvndb-2017-000047 Security guide for website operators vulnerable to OS command injection 2017-03-16T13:32+09:00 2017-06-01T15:08+09:00
jvndb-2017-000045 Cybozu KUNAI for Android information management vulnerability 2017-03-13T13:42+09:00 2017-06-02T18:04+09:00
jvndb-2017-000043 OneThird CMS vulnerable to cross-site scripting 2017-03-08T09:57+09:00 2017-06-01T15:08+09:00
jvndb-2017-000042 OneThird CMS vulnerable to cross-site scripting 2017-03-08T09:57+09:00 2017-06-01T12:28+09:00
jvndb-2017-000041 Multiple I-O DATA network camera products vulnerable to buffer overflow 2017-03-02T14:36+09:00 2017-06-05T11:10+09:00
jvndb-2017-000040 Multiple I-O DATA network camera products vulnerable to OS command injection 2017-03-02T14:36+09:00 2017-06-06T15:52+09:00
jvndb-2017-000039 Multiple I-O DATA network camera products vulnerable to HTTP header injection 2017-03-02T14:36+09:00 2017-06-06T15:52+09:00
jvndb-2017-000034 Access CX App fails to verify SSL server certificates 2017-03-01T16:31+09:00 2017-06-05T11:26+09:00
jvndb-2017-000033 PrimeDrive Desktop Application Installer may insecurely load Dynamic Link Libraries 2017-03-01T15:53+09:00 2017-05-15T11:27+09:00
jvndb-2017-000037 WBCE CMS vulnerable to SQL injection 2017-02-28T14:22+09:00 2017-06-01T12:28+09:00
jvndb-2017-000036 WBCE CMS vulnerable to directory traversal 2017-02-28T14:21+09:00 2017-06-01T12:28+09:00
jvndb-2017-000035 WBCE CMS vulnerable to cross-site scripting 2017-02-28T14:21+09:00 2017-06-01T12:28+09:00
jvndb-2017-000038 CubeCart vulnerable to directory traversal 2017-02-28T14:13+09:00 2017-06-01T12:18+09:00
jvndb-2017-000032 Cybozu Garoon fails to restrict access permission in the mail function 2017-02-20T15:40+09:00 2017-06-01T15:05+09:00
jvndb-2017-000031 Cybozu Garoon fails to restrict access permission in Workflow and the function "MultiReport" 2017-02-20T15:40+09:00 2017-06-01T15:05+09:00
jvndb-2017-000030 Cybozu Garoon vulnerable to information disclosure 2017-02-20T15:40+09:00 2017-06-01T15:05+09:00
jvndb-2017-000029 Cybozu Garoon vulnerable to cross-site scripting 2017-02-20T15:38+09:00 2017-06-01T15:05+09:00
jvndb-2017-000028 Cybozu Garoon fails to restrict access permission in the Phone Messages function 2017-02-20T15:38+09:00 2017-06-01T15:05+09:00
jvndb-2017-000027 Cybozu Garoon vulnerable to SQL injection 2017-02-20T15:38+09:00 2017-06-01T15:05+09:00
jvndb-2017-000024 Self-Extracting Archives created by 7-ZIP32.DLL may insecurely load Dynamic Link Libraries 2017-02-17T15:13+09:00 2017-06-05T11:55+09:00
jvndb-2017-000026 Apache Brooklyn vulnerable to cross-site request forgery 2017-02-15T16:20+09:00 2018-03-07T14:35+09:00
jvndb-2017-000025 Apache Brooklyn vulnerable to cross-site scripting 2017-02-15T16:20+09:00 2017-02-15T16:20+09:00
jvndb-2017-000023 TVer App for Android fails to verify SSL server certificates 2017-02-10T15:14+09:00 2017-06-06T11:52+09:00
jvndb-2017-000015 Norton Download Manager may insecurely load Dynamic Link Libraries 2017-02-10T14:58+09:00 2017-02-10T14:58+09:00
jvndb-2017-000019 Hands-on Vulnerability Learning Tool "AppGoat" vulnerable to DNS rebinding 2017-02-09T14:47+09:00 2017-06-01T11:30+09:00
ID Description Published Updated
cnvd-2025-30923 Adobe Experience Manager跨站脚本漏洞(CNVD-2025-30923) 2025-12-15 2025-12-18
cnvd-2025-30922 Adobe Experience Manager跨站脚本漏洞(CNVD-2025-30922) 2025-12-15 2025-12-18
cnvd-2025-30861 AzeoTech DAQFactory越界写入漏洞 2025-12-15 2025-12-17
cnvd-2025-30860 AzeoTech DAQFactory越界读取漏洞 2025-12-15 2025-12-17
cnvd-2025-30859 AzeoTech DAQFactory缓冲区溢出漏洞 2025-12-15 2025-12-17
cnvd-2025-30858 AzeoTech DAQFactory内存损坏漏洞 2025-12-15 2025-12-17
cnvd-2025-30857 AzeoTech DAQFactory释放后使用漏洞 2025-12-15 2025-12-17
cnvd-2025-30856 AzeoTech DAQFactory堆栈缓冲区溢出漏洞 2025-12-15 2025-12-17
cnvd-2026-17160 Microsoft Hyper-V拒绝服务漏洞(CNVD-2026-17160) 2025-12-12 2026-04-14
cnvd-2026-14410 Microsoft Exchange Server欺骗漏洞(CNVD-2026-14410) 2025-12-12 2026-03-20
cnvd-2026-11809 Microsoft Windows Routing and Remote Access Service远程代码执行漏洞 2025-12-12 2026-02-28
cnvd-2026-06337 用友网络科技股份有限公司U8 cloud存在信息泄露漏洞 2025-12-12 2026-01-26
cnvd-2026-06272 用友网络科技股份有限公司U8 cloud存在SQL注入漏洞(CNVD-2026-06272) 2025-12-12 2026-01-26
cnvd-2025-30875 MailEnable WindowContext参数跨站脚本漏洞 2025-12-12 2025-12-17
cnvd-2025-30874 MailEnable代码问题漏洞 2025-12-12 2025-12-17
cnvd-2025-30873 MailEnable theme参数跨站脚本漏洞 2025-12-12 2025-12-17
cnvd-2025-30872 MailEnable Id参数跨站脚本漏洞 2025-12-12 2025-12-17
cnvd-2025-30871 MailEnable Message参数跨站脚本漏洞 2025-12-12 2025-12-17
cnvd-2025-30870 MailEnable InstanceScope参数跨站脚本漏洞 2025-12-12 2025-12-17
cnvd-2025-30869 MailEnable FieldTo参数跨站脚本漏洞 2025-12-12 2025-12-17
cnvd-2025-30868 MailEnable FieldCc参数跨站脚本漏洞 2025-12-12 2025-12-17
cnvd-2025-30867 MailEnable FieldBcc参数跨站脚本漏洞 2025-12-12 2025-12-17
cnvd-2025-30866 MailEnable AddressesTo参数跨站脚本漏洞 2025-12-12 2025-12-17
cnvd-2025-30865 MailEnable AddressesCc参数跨站脚本漏洞 2025-12-12 2025-12-17
cnvd-2025-30864 MailEnable AddressesBcc参数跨站脚本漏洞 2025-12-12 2025-12-17
cnvd-2025-30863 MailEnable Failed参数跨站脚本漏洞 2025-12-12 2025-12-17
cnvd-2025-30862 MailEnable Added参数跨站脚本漏洞 2025-12-12 2025-12-17
cnvd-2025-30770 Tenda CH22缓冲区溢出漏洞(CNVD-2025-30770) 2025-12-12 2025-12-15
cnvd-2025-30741 WordPress Essential Widgets plugin跨站脚本漏洞 2025-12-12 2025-12-15
cnvd-2025-30740 WordPress Donation Thermometer plugin跨站脚本漏洞 2025-12-12 2025-12-15
ID Description Published Updated
bdu:2026-00058 Уязвимость программного обеспечения для проведения онлайн-экзаменов Tecnick TCExam, связа… 06.01.2026 06.01.2026
bdu:2026-00057 Уязвимость сетевой файловой системы Network File System (NFS) операционной систем Synolog… 06.01.2026 06.01.2026
bdu:2026-00056 Уязвимость системы управления контентом Sitecore Experience Platform (XP) и Sitecore Expe… 06.01.2026 06.01.2026
bdu:2026-00055 Уязвимость приложения для хранения мультимедийных файлов QuMagie для QNAP NAS, связанная … 06.01.2026 06.01.2026
bdu:2026-00054 Уязвимость беспроводного модемного модуля SIMCom SIM7600G, связанная с наличием недокумен… 06.01.2026 06.01.2026
bdu:2026-00053 Уязвимость микропрограммного обеспечения программируемого логических контроллеров Siemens… 06.01.2026 06.01.2026
bdu:2026-00052 Уязвимость микропрограммного обеспечения программируемого логических контроллеров Siemens… 06.01.2026 06.01.2026
bdu:2026-00051 Уязвимость микропрограммного обеспечения программируемого логических контроллеров Siemens… 06.01.2026 06.01.2026
bdu:2026-00050 Уязвимость набора инструментов конвертации файлов между различными форматами PS/IGES Para… 06.01.2026 06.01.2026
bdu:2026-00049 Уязвимость веб-интерфейса микропрограммного обеспечения маршрутизатора LB-Link BL-CPE300M… 06.01.2026 06.01.2026
bdu:2026-00048 Уязвимость компонента API Endpoint бэк-офисного приложения Rising Technosoft CAP Back Off… 06.01.2026 06.01.2026
bdu:2026-00047 Уязвимость реализации механизма OTP бэк-офисного приложения Rising Technosoft CAP Back Of… 06.01.2026 06.01.2026
bdu:2026-00046 Уязвимость компонента API Endpoint бэк-офисного приложения Rising Technosoft CAP Back Off… 06.01.2026 06.01.2026
bdu:2026-00045 Уязвимость компонента API Endpoint бэк-офисного приложения Rising Technosoft CAP Back Off… 06.01.2026 06.01.2026
bdu:2026-00044 Уязвимость компонента API Endpoint бэк-офисного приложения Rising Technosoft CAP Back Off… 06.01.2026 06.01.2026
bdu:2026-00043 Уязвимость программной платформы для управления вики Requarks Wiki.js, связанная с неверн… 03.01.2026 03.01.2026
bdu:2026-00042 Уязвимость aap-шлюза системы управления конфигурациями Ansible, позволяющая нарушителю по… 03.01.2026 03.01.2026
bdu:2026-00041 Уязвимость операционной системы NVIDIA DGX OS рабочих станций для искусственного интеллек… 03.01.2026 03.01.2026
bdu:2026-00040 Уязвимость компонента Director NBR системы резервного копирования, репликации и восстанов… 03.01.2026 03.01.2026
bdu:2026-00039 Уязвимость микропрограммного обеспечения дорожного блока связи Kapsch TrafficCom RIS-9260… 03.01.2026 03.01.2026
bdu:2026-00038 Уязвимость debug-интерфейса микропрограммного обеспечения логических контроллеров JUMO v… 03.01.2026 03.01.2026
bdu:2026-00037 Уязвимость микропрограммного обеспечения маршрутизатора I-O Data Device UD-LT2, существую… 03.01.2026 03.01.2026
bdu:2026-00036 Уязвимость библиотеки Go Getter, связанная с некорректным определением символических ссыл… 03.01.2026 03.01.2026
bdu:2026-00035 Уязвимость реализации модуля httpd микропрограммного обеспечения усилителя беспроводного … 03.01.2026 03.01.2026
bdu:2026-00034 Уязвимость реализации модуля httpd микропрограммного обеспечения усилителя беспроводного … 03.01.2026 03.01.2026
bdu:2026-00033 Уязвимость программного обеспечения для работы с PDF-файлами UPDF операционных систем Win… 03.01.2026 03.01.2026
bdu:2026-00032 Уязвимость программного обеспечения для работы с PDF-файлами UPDF операционных систем Win… 03.01.2026 03.01.2026
bdu:2026-00031 Уязвимость программного обеспечения для работы с PDF-файлами UPDF операционных систем Win… 03.01.2026 03.01.2026
bdu:2026-00030 Уязвимость компонента управления пользователями User Management Component (UMC) веб-систе… 03.01.2026 03.01.2026
bdu:2026-00029 Уязвимость компонента управления пользователями User Management Component (UMC) веб-систе… 03.01.2026 03.01.2026
ID Description Updated
var-202602-3107 Tenda FH1203 V2.0.1.6 contains a stack-based buffer overflow vulnerability in the modify_… 2026-03-03T23:36:58.023000Z
var-202602-3168 Caddy is an extensible server platform that uses TLS by default. Prior to version 2.11.1,… 2026-03-03T23:27:02.870000Z
var-202602-3216 Caddy is an extensible server platform that uses TLS by default. Prior to version 2.11.1,… 2026-03-03T23:25:23.865000Z
var-200609-1587 The Airport driver for certain Orinoco based Airport cards in Darwin kernel 8.8.0 in Appl… 2026-03-03T22:40:50.747000Z
var-201206-0062 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2026-03-03T22:28:03.447000Z
var-200609-1245 Stack-based buffer overflow in the Apple Type Services (ATS) server in Mac OS 10.4.8 and … 2026-03-03T22:21:35.197000Z
var-201304-0106 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2026-03-03T22:08:23.709000Z
var-200609-0699 Heap-based buffer overflow in the Finder in Apple Mac OS X 10.4.8 and earlier allows user… 2026-03-03T22:00:56.312000Z
var-201601-0016 Mozilla Network Security Services (NSS) before 3.20.2, as used in Mozilla Firefox before … 2026-03-03T21:51:15.603000Z
var-201410-1144 Memory leak in the tls_decrypt_ticket function in t1_lib.c in OpenSSL before 0.9.8zc, 1.0… 2026-03-03T21:24:07.760000Z
var-200110-0214 The Apple Type Services (ATS) server in Mac OS X 10.4.8 and earlier does not securely cre… 2026-03-03T21:12:00.858000Z
var-201201-0170 Double free vulnerability in OpenSSL 0.9.8 before 0.9.8s, when X509_V_FLAG_POLICY_CHECK i… 2026-03-03T21:08:19.245000Z
var-200609-0680 The Security Framework in Apple Mac OS X 10.3.9, and 10.4.x before 10.4.7, does not prope… 2026-03-03T20:40:03.198000Z
var-200609-1236 Buffer overflow in PPP on Apple Mac OS X 10.4.x up to 10.4.8 and 10.3.x up to 10.3.9, whe… 2026-03-03T20:37:31.545000Z
var-200110-0349 OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions allows attackers t… 2026-03-03T20:35:26.896000Z
var-202302-0482 A timing based side channel exists in the OpenSSL RSA Decryption implementation which cou… 2026-03-03T20:13:38.229000Z
var-200609-1080 WebKit in Apple Mac OS X 10.3.x through 10.3.9 and 10.4 through 10.4.8 allows remote atta… 2026-03-03T20:08:38.362000Z
var-200609-0718 The Security Framework in Apple Mac OS X 10.3.x up to 10.3.9 does not properly prioritize… 2026-03-03T19:44:00.179000Z
var-200609-1389 Heap-based buffer overflow in the Finder in Apple Mac OS X 10.4.8 and earlier allows user… 2026-03-02T23:29:33.338000Z
var-200609-0686 Buffer overflow in PPP on Apple Mac OS X 10.4.x up to 10.4.8 and 10.3.x up to 10.3.9, whe… 2026-03-02T23:18:03.399000Z
var-200110-0440 2026-03-02T22:40:52.535000Z
var-200110-0446 OpenSSL 0.9.7 before 0.9.7l and 0.9.8 before 0.9.8d allows remote attackers to cause a de… 2026-03-02T22:15:59.056000Z
var-200609-1096 Multiple buffer overflows in the Apple Type Services (ATS) server in Mac OS X 10.4 throug… 2026-03-02T22:00:06.242000Z
var-200609-1724 WebKit in Apple Mac OS X 10.3.x through 10.3.9 and 10.4 through 10.4.8 allows remote atta… 2026-03-02T20:59:44.423000Z
var-200609-1189 The Airport driver for certain Orinoco based Airport cards in Darwin kernel 8.8.0 in Appl… 2026-03-02T20:37:38.954000Z
var-200609-0988 The get_server_hello function in the SSLv2 client code in OpenSSL 0.9.7 before 0.9.7l, 0.… 2026-03-02T20:12:22.401000Z
var-200609-1034 The Security Framework in Apple Mac OS X 10.3.x up to 10.3.9 does not properly prioritize… 2026-03-02T20:09:26.715000Z
var-200110-0429 Mozilla Network Security Service (NSS) library before 3.11.3, as used in Mozilla Firefox … 2025-12-22T23:19:47.551000Z
var-201505-0233 The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server bu… 2025-12-22T23:16:33.731000Z
var-200609-1325 Unspecified vulnerability in CFNetwork in Mac OS 10.4.8 and earlier allows user-assisted … 2025-12-22T23:04:56.358000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated