Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2000-0941 |
N/A
|
Kootenay Web KW Whois 1.0 CGI program allows remo… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.432Z |
| CVE-2000-0942 |
N/A
|
The CiWebHitsFile component in Microsoft Indexing… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.014Z |
| CVE-2000-0943 |
N/A
|
Buffer overflow in bftp daemon (bftpd) 1.0.11 all… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.959Z |
| CVE-2000-0944 |
N/A
|
CGI Script Center News Update 1.1 does not proper… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.488Z |
| CVE-2000-0946 |
N/A
|
Compaq Easy Access Keyboard software 1.3 does not… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.768Z |
| CVE-2000-0947 |
N/A
|
Format string vulnerability in cfd daemon in GNU … |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.982Z |
| CVE-2000-0948 |
N/A
|
GnoRPM before 0.95 allows local users to modify a… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.035Z |
| CVE-2000-0949 |
N/A
|
Heap overflow in savestr function in LBNL tracero… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.238Z |
| CVE-2000-0951 |
N/A
|
A misconfiguration in IIS 5.0 with Index Server e… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.695Z |
| CVE-2000-0952 |
N/A
|
global.cgi CGI program in Global 3.55 and earlier… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.347Z |
| CVE-2000-0953 |
N/A
|
Shambala Server 4.5 allows remote attackers to ca… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.688Z |
| CVE-2000-0956 |
N/A
|
cyrus-sasl before 1.5.24 in Red Hat Linux 7.0 doe… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.992Z |
| CVE-2000-0957 |
N/A
|
The pluggable authentication module for mysql (pa… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.676Z |
| CVE-2000-0958 |
N/A
|
HotJava Browser 3.0 allows remote attackers to ac… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.984Z |
| CVE-2000-0959 |
N/A
|
glibc2 does not properly clear the LD_DEBUG_OUTPU… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.726Z |
| CVE-2000-0960 |
N/A
|
The POP3 server in Netscape Messaging Server 4.15… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.635Z |
| CVE-2000-0961 |
N/A
|
Buffer overflow in IMAP server in Netscape Messag… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.846Z |
| CVE-2000-0962 |
N/A
|
The IPSEC implementation in OpenBSD 2.7 does not … |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.008Z |
| CVE-2000-0965 |
N/A
|
The NSAPI plugins for TGA and the Java Servlet pr… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.180Z |
| CVE-2000-0966 |
N/A
|
Buffer overflows in lpspooler in the fileset Prin… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.015Z |
| CVE-2000-0967 |
N/A
|
PHP 3 and 4 do not properly cleanse user-injected… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.006Z |
| CVE-2000-0968 |
N/A
|
Buffer overflow in Half Life dedicated server bef… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.755Z |
| CVE-2000-0969 |
N/A
|
Format string vulnerability in Half Life dedicate… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.216Z |
| CVE-2000-0970 |
N/A
|
IIS 4.0 and 5.0 .ASP pages send the same Session … |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.207Z |
| CVE-2000-0972 |
N/A
|
HP-UX 11.00 crontab allows local users to read ar… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.834Z |
| CVE-2000-0973 |
N/A
|
Buffer overflow in curl earlier than 6.0-1.1, and… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.975Z |
| CVE-2000-0974 |
N/A
|
GnuPG (gpg) 1.0.3 does not properly check all sig… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.168Z |
| CVE-2000-0975 |
N/A
|
Directory traversal vulnerability in apexec.pl in… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.211Z |
| CVE-2000-0977 |
N/A
|
mailfile.cgi CGI program in MailFile 1.10 allows … |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.144Z |
| CVE-2000-0978 |
N/A
|
bbd server in Big Brother System and Network Moni… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.027Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2000-0326 |
N/A
|
Meeting Maker uses weak encryption (a polyalphabe… |
n/a |
n/a |
2000-05-18T04:00:00 | 2024-08-08T05:14:21.311Z |
| CVE-2000-0249 |
N/A
|
The AIX Fast Response Cache Accelerator (FRCA) al… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:20.608Z |
| CVE-2000-0380 |
N/A
|
The IOS HTTP service in Cisco routers and switche… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.476Z |
| CVE-1999-0706 |
N/A
|
Linux xmonisdn package allows local users to gain… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:48:37.646Z |
| CVE-2000-0429 |
N/A
|
A backdoor password in Cart32 3.0 and earlier all… |
n/a |
n/a |
2000-06-15T04:00:00 | 2024-08-08T05:14:21.555Z |
| CVE-2000-0342 |
N/A
|
Eudora 4.x allows remote attackers to bypass the … |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.354Z |
| CVE-2000-0340 |
N/A
|
Buffer overflow in Gnomelib in SuSE Linux 6.3 all… |
n/a |
n/a |
2000-10-13T04:00:00 | 2024-08-08T05:14:21.176Z |
| CVE-1999-0427 |
N/A
|
Eudora 4.1 allows remote attackers to perform a d… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:44.894Z |
| CVE-2000-0341 |
N/A
|
ATRIUM Cassandra NNTP Server 1.10 allows remote a… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:14:21.460Z |
| CVE-2000-0344 |
N/A
|
The knfsd NFS server in Linux kernel 2.2.x allows… |
n/a |
n/a |
2000-10-13T04:00:00 | 2024-08-08T05:14:21.259Z |
| CVE-2000-0401 |
N/A
|
Buffer overflows in redirect.exe and changepw.exe… |
n/a |
n/a |
2000-06-15T04:00:00 | 2024-08-08T05:14:21.501Z |
| CVE-2000-0440 |
N/A
|
NetBSD 1.4.2 and earlier allows remote attackers … |
n/a |
n/a |
2000-10-13T04:00:00 | 2024-08-08T05:21:29.951Z |
| CVE-2000-0447 |
N/A
|
Buffer overflow in WebShield SMTP 4.5.44 allows r… |
n/a |
n/a |
2000-10-13T04:00:00 | 2024-08-08T05:21:30.649Z |
| CVE-2000-0448 |
N/A
|
The WebShield SMTP Management Tool version 4.5.44… |
n/a |
n/a |
2000-10-13T04:00:00 | 2024-08-08T05:21:29.920Z |
| CVE-2000-0449 |
N/A
|
Omnis Studio 2.4 uses weak encryption (trivial en… |
n/a |
n/a |
2000-06-15T04:00:00 | 2024-08-08T05:21:30.473Z |
| CVE-2000-0138 |
N/A
|
A system has a distributed denial of service (DDO… |
n/a |
n/a |
2000-02-15T05:00:00 | 2024-08-08T05:05:54.073Z |
| CVE-2000-0293 |
N/A
|
aaa_base in SuSE Linux 6.3, and cron.daily in ear… |
n/a |
n/a |
2000-04-26T04:00:00 | 2024-08-08T05:14:21.285Z |
| CVE-2000-0343 |
N/A
|
Buffer overflow in Sniffit 0.3.x with the -L logg… |
n/a |
n/a |
2000-05-18T04:00:00 | 2024-08-08T05:14:21.390Z |
| CVE-2000-0346 |
N/A
|
AppleShare IP 6.1 and later allows a remote attac… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.439Z |
| CVE-2000-0347 |
N/A
|
Windows 95 and Windows 98 allow a remote attacker… |
n/a |
n/a |
2000-10-13T04:00:00 | 2024-08-08T05:14:21.511Z |
| CVE-2000-0385 |
N/A
|
FileMaker Pro 5 Web Companion allows remote attac… |
n/a |
n/a |
2000-06-15T04:00:00 | 2024-08-08T05:14:21.452Z |
| CVE-2000-0386 |
N/A
|
FileMaker Pro 5 Web Companion allows remote attac… |
n/a |
n/a |
2000-06-15T04:00:00 | 2024-08-08T05:14:21.488Z |
| CVE-2000-0433 |
N/A
|
The SuSE aaa_base package installs some system ac… |
n/a |
n/a |
2000-06-15T04:00:00 | 2024-08-08T05:21:29.903Z |
| CVE-2000-0303 |
N/A
|
Quake3 Arena allows malicious server operators to… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:20.673Z |
| CVE-2000-0332 |
N/A
|
UltraBoard.pl or UltraBoard.cgi CGI scripts in Ul… |
n/a |
n/a |
2000-10-13T04:00:00 | 2024-08-08T05:14:21.438Z |
| CVE-2000-0335 |
N/A
|
The resolver in glibc 2.1.3 uses predictable IDs,… |
n/a |
n/a |
2000-10-13T04:00:00 | 2024-08-08T05:14:21.315Z |
| CVE-2000-0345 |
N/A
|
The on-line help system options in Cisco routers … |
n/a |
n/a |
2000-05-18T04:00:00 | 2024-08-08T05:14:21.235Z |
| CVE-2000-0378 |
N/A
|
The pam_console PAM module in Linux systems perfo… |
n/a |
n/a |
2000-10-13T04:00:00 | 2024-08-08T05:14:21.493Z |
| CVE-2000-0425 |
N/A
|
Buffer overflow in the Web Archives component of … |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.546Z |
| CVE-2000-0430 |
N/A
|
Cart32 allows remote attackers to access sensitiv… |
n/a |
n/a |
2000-10-13T04:00:00 | 2024-08-08T05:14:21.492Z |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-p5xh-vx83-mxcj |
9.8 (3.1)
9.3 (4.0)
|
HTTP Request Smuggling in Twisted | 2020-03-31T15:40:12Z | 2024-11-25T18:33:22Z |
| ghsa-h96w-mmrf-2h6v |
9.8 (3.1)
9.3 (4.0)
|
Improper Input Validation in Twisted | 2020-03-31T15:42:42Z | 2024-11-25T18:33:22Z |
| ghsa-6c8f-qphg-qjgp |
7.5 (3.1)
|
Validation Bypass in kind-of | 2020-03-31T15:59:54Z | 2021-08-23T15:03:55Z |
| ghsa-j27j-4w6m-8fc4 |
|
Path Traversal in statics-server | 2020-03-31T17:02:12Z | 2020-08-31T18:54:26Z |
| ghsa-754x-4jwp-cqp6 |
7.5 (3.1)
|
Cross-Site Scripting in http_server | 2020-03-31T17:02:26Z | 2023-09-11T21:38:46Z |
| ghsa-vcjj-xf2r-mwvc |
6.1 (3.1)
|
XSS in knockout | 2020-04-01T15:47:45Z | 2022-04-25T23:07:31Z |
| ghsa-9q64-mpxx-87fg |
|
Open Redirect in ecstatic | 2020-04-01T16:35:08Z | 2020-12-15T16:51:18Z |
| ghsa-8qxj-f9rh-9fg2 |
9.1 (3.1)
9.3 (4.0)
|
Improper Verification of Cryptographic Signature in Pure-Python ECDSA | 2020-04-01T16:35:26Z | 2024-09-20T16:52:23Z |
| ghsa-c2h6-7gm8-cv4w |
6.1 (3.1)
|
XSS in MITREid Connect | 2020-04-01T16:35:44Z | 2023-01-24T18:07:52Z |
| ghsa-hj69-c76v-86wr |
7.1 (3.1)
8.3 (4.0)
|
Out-of-bounds Read in Pillow | 2020-04-01T16:36:00Z | 2024-10-08T12:57:35Z |
| ghsa-gvr4-7xgc-gx3w |
|
Cross-Site Scripting in fileview | 2020-04-01T16:36:15Z | 2020-08-31T18:59:48Z |
| ghsa-4g46-5grc-wq49 |
|
Cross-Site Scripting in seeftl | 2020-04-01T16:36:31Z | 2020-08-31T18:59:46Z |
| ghsa-5gm3-px64-rw72 |
7.5 (3.1)
8.7 (4.0)
|
Uncontrolled Resource Consumption in Pillow | 2020-04-01T16:36:44Z | 2024-10-08T13:04:35Z |
| ghsa-gv3v-92v6-m48j |
9.8 (3.1)
|
Improper Neutralization of CRLF Sequences in HTTP Headers in Jooby ('HTTP Response Splitting) | 2020-04-03T15:23:30Z | 2021-07-29T15:47:43Z |
| ghsa-vh95-rmgr-6w4m |
5.6 (3.1)
|
Prototype Pollution in minimist | 2020-04-03T21:48:32Z | 2024-02-13T20:00:13Z |
| ghsa-6chw-6frg-f759 |
7.5 (3.1)
|
Regular Expression Denial of Service in Acorn | 2020-04-03T21:48:38Z | 2021-08-23T15:10:32Z |
| ghsa-6gp3-h3jj-prx4 |
5.3 (3.1)
|
Prototype pollution in class-transformer | 2020-04-07T15:47:40Z | 2022-04-28T17:58:13Z |
| ghsa-jgpq-g82g-6c39 |
5.3 (3.1)
|
confinit vulnerable to prototype pollution | 2020-04-07T15:52:05Z | 2021-07-28T23:16:44Z |
| ghsa-prfq-f66g-43mp |
5.5 (3.1)
|
Information disclosure through error object in auth0.js | 2020-04-10T18:19:10Z | 2021-01-08T20:23:16Z |
| ghsa-8jpx-m2wh-2v34 |
8.0 (3.1)
|
Remote Code Execution (RCE) vulnerability in dropwizard-validation | 2020-04-10T18:42:20Z | 2021-01-08T20:22:52Z |
| ghsa-g2f6-v5qh-h2mq |
8.8 (3.1)
|
Nexus Repository Manager 3 - Remote Code Execution | 2020-04-14T15:27:05Z | 2025-10-22T17:49:49Z |
| ghsa-8h56-v53h-5hhj |
8.8 (3.1)
|
Remote Code Execution - JavaEL Injection (low privileged accounts) in Nexus Repository Manager | 2020-04-14T15:27:14Z | 2021-07-28T21:49:46Z |
| ghsa-3944-787c-f852 |
4.8 (3.1)
|
Persistent Cross-Site scripting in Nexus Repository Manager | 2020-04-14T15:27:21Z | 2021-08-23T15:11:55Z |
| ghsa-4gp3-p7ph-x2jr |
9.8 (3.1)
|
OS Command Injection in devcert-sanscache | 2020-04-14T23:09:00Z | 2021-08-23T15:12:51Z |
| ghsa-wvpv-ffcv-r6cw |
5.1 (3.1)
|
Internal NCryptDecrypt method could be used externally from WindowsHello library. | 2020-04-14T23:09:13Z | 2021-01-08T20:22:38Z |
| ghsa-v2wc-pfq2-5cm6 |
5.8 (3.1)
4.6 (4.0)
|
Possible XSS attack in Wagtail | 2020-04-14T23:09:29Z | 2024-11-19T19:19:49Z |
| ghsa-rc5r-697f-28x6 |
4.8 (3.1)
|
XSS injection in the Grid component of Sylius | 2020-04-15T21:07:59Z | 2024-02-26T12:35:41Z |
| ghsa-xfqh-7356-vqjj |
4.3 (3.1)
|
Exposure of Sensitive Information to an Unauthorized Actor in Keycloak | 2020-04-15T21:08:21Z | 2021-11-01T14:08:16Z |
| ghsa-8vf3-4w62-m3pq |
5.4 (3.1)
|
XSS in Keycloak | 2020-04-15T21:09:09Z | 2021-08-23T15:16:25Z |
| ghsa-6pmv-7pr9-cgrj |
9.8 (3.1)
|
Predictable password in Keycloak | 2020-04-15T21:09:27Z | 2021-08-23T15:17:35Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2021-354 |
|
furlongm openvpn-monitor through 1.1.3 allows Authorization Bypass to disconnect arbitrar… | openvpn-monitor | 2021-09-27T06:15:00Z | 2021-09-30T23:26:26.851532Z |
| pysec-2021-356 |
|
nltk is vulnerable to Inefficient Regular Expression Complexity | nltk | 2021-09-27T13:15:00Z | 2021-10-01T22:29:03.465380Z |
| pysec-2021-351 |
|
ESPHome is a system to control the ESP8266/ESP32. Anyone with web_server enabled and HTTP… | esphome | 2021-09-28T16:15:00Z | 2021-09-30T23:26:26.067991Z |
| pysec-2021-355 |
|
“Shuup” application in versions 0.4.2 to 2.10.8 is affected by the “Formula Injection” vu… | shuup | 2021-09-29T14:15:00Z | 2021-09-30T23:26:29.598032Z |
| pysec-2021-350 |
|
In Shuup, versions 1.6.0 through 2.10.8 are vulnerable to reflected Cross-Site Scripting … | shuup | 2021-09-30T08:15:00Z | 2021-09-30T10:32:36.636402Z |
| pysec-2021-373 |
|
Cobbler before 3.3.0 allows log poisoning, and resultant Remote Code Execution, via an XM… | cobbler | 2021-10-04T06:15:00Z | 2021-10-19T21:47:31.690816Z |
| pysec-2021-374 |
|
Cobbler before 3.3.0 allows arbitrary file write operations via upload_log_data. | cobbler | 2021-10-04T06:15:00Z | 2021-10-19T21:47:31.730339Z |
| pysec-2021-375 |
|
Cobbler before 3.3.0 allows authorization bypass for modification of settings. | cobbler | 2021-10-04T06:15:00Z | 2021-10-19T21:47:31.769581Z |
| pysec-2021-429 |
|
SLO generator allows for loading of YAML files that if crafted in a specific format can a… | slo-generator | 2021-10-04T10:15:00Z | 2021-11-16T21:20:29.712720Z |
| pysec-2021-881 |
7.5 (3.1)
|
The FTL Server (tibftlserver) and Docker images containing tibftlserver components of TIB… | eftl | 2021-10-05T18:15:00Z | 2024-11-21T14:22:45.803448Z |
| pysec-2021-364 |
|
Scrapy-splash is a library which provides Scrapy and JavaScript integration. In affected … | scrapy-splash | 2021-10-05T21:15:00Z | 2021-10-11T01:16:42.816754Z |
| pysec-2021-366 |
|
Vyper is a Pythonic Smart Contract Language for the EVM. In affected versions external fu… | vyper | 2021-10-05T23:15:00Z | 2021-10-11T01:16:43.215640Z |
| pysec-2021-423 |
|
An issue in Gate One 1.2.0 allows attackers to bypass to the verification check done by t… | gateone | 2021-10-06T13:15:00Z | 2021-11-16T03:58:44.124463Z |
| pysec-2021-363 |
|
Scrapy is a high-level web crawling and scraping framework for Python. If you use `HttpAu… | scrapy | 2021-10-06T18:15:00Z | 2021-10-11T01:16:42.905582Z |
| pysec-2021-365 |
|
Vyper is a Pythonic Smart Contract Language for the EVM. In affected versions when perfor… | vyper | 2021-10-06T18:15:00Z | 2021-10-11T01:16:43.176882Z |
| pysec-2021-357 |
|
The Unicorn framework through 0.35.3 for Django allows XSS via component.name. | django-unicorn | 2021-10-07T06:15:00Z | 2021-10-08T02:27:35.256995Z |
| pysec-2021-878 |
7.5 (3.1)
|
The mkdocs 1.2.2 built-in dev-server allows directory traversal using the port 8000, enab… | mkdocs | 2021-10-07T14:15:00Z | 2024-01-17T10:53:34.840029Z |
| pysec-2021-369 |
|
The Unicorn framework before 0.36.1 for Django allows XSS via a component. NOTE: this iss… | django-unicorn | 2021-10-11T01:15:00Z | 2021-10-11T05:26:07.255634Z |
| pysec-2021-372 |
|
OMERO.web provides a web based client and plugin infrastructure. In versions prior to 5.1… | omero-web | 2021-10-14T16:15:00Z | 2021-10-17T22:58:18.538383Z |
| pysec-2021-379 |
|
OMERO.web provides a web based client and plugin infrastructure. In versions prior to 5.1… | omero-figure | 2021-10-14T16:15:00Z | 2021-10-24T23:24:38.547709Z |
| pysec-2021-380 |
|
Ops CLI version 2.0.4 (and earlier) is affected by a Deserialization of Untrusted Data vu… | ops-cli | 2021-10-15T15:15:00Z | 2021-10-24T23:24:39.018050Z |
| pysec-2021-377 |
|
Apache Superset up to and including 1.1 does not sanitize titles correctly on the Explore… | apache-superset | 2021-10-18T15:15:00Z | 2021-10-24T23:24:36.503366Z |
| pysec-2021-378 |
|
Apache Superset up to and including 1.3.0 when configured with ENABLE_TEMPLATE_PROCESSING… | apache-superset | 2021-10-18T15:15:00Z | 2021-10-24T23:24:36.552552Z |
| pysec-2021-849 |
|
The bluemonday sanitizer before 1.0.16 for Go, and before 0.0.8 for Python (in pybluemond… | pybluemonday | 2021-10-18T15:15:00Z | 2021-12-14T08:18:23.339515Z |
| pysec-2021-376 |
|
python-tuf is a Python reference implementation of The Update Framework (TUF). In both cl… | tuf | 2021-10-19T18:15:00Z | 2021-10-22T22:29:45.339771Z |
| pysec-2021-421 |
|
Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files (… | babel | 2021-10-20T21:15:00Z | 2021-11-16T03:58:43.401152Z |
| pysec-2021-382 |
|
qutebrowser is an open source keyboard-focused browser with a minimal GUI. Starting with … | qutebrowser | 2021-10-21T18:15:00Z | 2021-10-28T05:27:07.120992Z |
| pysec-2021-381 |
|
Rasa is an open source machine learning framework to automate text-and voice-based conver… | rasa | 2021-10-21T21:15:00Z | 2021-10-24T23:24:39.410729Z |
| pysec-2021-387 |
|
An issue was discovered in Dask (aka python-dask) through 2021.09.1. Single machine Dask … | dask | 2021-10-26T11:15:00Z | 2021-11-11T13:06:47.756280Z |
| pysec-2021-871 |
|
An issue was discovered in the Dask distributed package before 2021.10.0 for Python. Sing… | distributed | 2021-10-26T11:15:00Z | 2022-07-14T05:11:51.739830Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2022-5104 | Malicious code in opera-toolkit (npm) | 2022-06-20T20:14:09Z | 2022-06-20T20:14:09Z |
| mal-2022-4701 | Malicious code in move-analyzer (npm) | 2022-06-20T20:14:10Z | 2022-06-20T20:14:11Z |
| mal-2022-5911 | Malicious code in sal-stack-lwip (npm) | 2022-06-20T20:14:10Z | 2022-06-20T20:14:10Z |
| mal-2022-7009 | Malicious code in vvs-eslint-config (npm) | 2022-06-20T20:14:10Z | 2022-06-20T20:14:10Z |
| mal-2022-7010 | Malicious code in vvs-uikit (npm) | 2022-06-20T20:14:10Z | 2022-06-20T20:14:10Z |
| mal-2022-3422 | Malicious code in goprocess (npm) | 2022-06-20T20:14:11Z | 2022-06-20T20:14:16Z |
| mal-2022-1150 | Malicious code in async-problem (npm) | 2022-06-20T20:14:16Z | 2022-06-20T20:14:17Z |
| mal-2022-1712 | Malicious code in buffer--leep (npm) | 2022-06-20T20:14:16Z | 2022-06-20T20:14:17Z |
| mal-2022-1716 | Malicious code in buffer-refresh (npm) | 2022-06-20T20:14:16Z | 2022-06-20T20:14:17Z |
| mal-2022-2221 | Malicious code in cp874-utf8 (npm) | 2022-06-20T20:14:17Z | 2022-06-20T20:14:18Z |
| mal-2022-2878 | Malicious code in ethos-design-system (npm) | 2022-06-20T20:14:17Z | 2022-06-20T20:14:17Z |
| mal-2022-3362 | Malicious code in ghs-payments (npm) | 2022-06-20T20:14:17Z | 2022-06-20T20:14:18Z |
| mal-2022-5126 | Malicious code in os-wallet-provider (npm) | 2022-06-20T20:14:17Z | 2022-06-20T20:14:17Z |
| mal-2022-6379 | Malicious code in swisspost-intranet-header (npm) | 2022-06-20T20:14:17Z | 2022-06-20T20:14:18Z |
| mal-2022-4096 | Malicious code in kakakaaka (npm) | 2022-06-20T20:14:18Z | 2022-06-20T20:14:19Z |
| mal-2022-4097 | Malicious code in kakakaakaaa (npm) | 2022-06-20T20:14:18Z | 2022-06-20T20:14:19Z |
| mal-2022-6911 | Malicious code in vgs-auth (npm) | 2022-06-20T20:14:18Z | 2022-06-20T20:14:19Z |
| mal-2022-6912 | Malicious code in vgs-staging (npm) | 2022-06-20T20:14:18Z | 2022-06-20T20:14:18Z |
| mal-2022-4513 | Malicious code in mbed-drivers (npm) | 2022-06-20T20:14:19Z | 2022-06-20T20:14:20Z |
| mal-2022-4736 | Malicious code in multisig-tool (npm) | 2022-06-20T20:14:19Z | 2022-06-20T20:14:20Z |
| mal-2022-6134 | Malicious code in site-vue (npm) | 2022-06-20T20:14:19Z | 2022-06-20T20:14:26Z |
| mal-2022-7130 | Malicious code in wg5 (npm) | 2022-06-20T20:14:19Z | 2022-06-20T20:14:20Z |
| mal-2022-1715 | Malicious code in buffer-fetch (npm) | 2022-06-20T20:14:20Z | 2022-06-20T20:14:26Z |
| mal-2022-4116 | Malicious code in kastjs (npm) | 2022-06-20T20:14:20Z | 2022-06-20T20:14:21Z |
| mal-2022-5304 | Malicious code in personal-info (npm) | 2022-06-20T20:14:20Z | 2022-06-20T20:14:21Z |
| mal-2022-5937 | Malicious code in satreg-bits (npm) | 2022-06-20T20:14:20Z | 2022-06-20T20:14:20Z |
| mal-2022-1631 | Malicious code in blz-internal-pkg (npm) | 2022-06-20T20:14:26Z | 2022-06-20T20:14:27Z |
| mal-2022-2162 | Malicious code in console-less-variables (npm) | 2022-06-20T20:14:26Z | 2022-06-20T20:14:30Z |
| mal-2022-2494 | Malicious code in discord-v11 (npm) | 2022-06-20T20:14:26Z | 2022-06-20T20:14:26Z |
| mal-2022-280 | Malicious code in @frontend-metrics/hotjar (npm) | 2022-06-20T20:14:26Z | 2022-06-20T20:14:27Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2022-1961 | Apache Commons: Schwachstelle ermöglicht Codeausführung | 2022-11-06T23:00:00.000+00:00 | 2025-05-29T22:00:00.000+00:00 |
| wid-sec-w-2022-1964 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2022-11-06T23:00:00.000+00:00 | 2025-12-04T23:00:00.000+00:00 |
| wid-sec-w-2022-1967 | Android Patchday November 2022 | 2022-11-07T23:00:00.000+00:00 | 2023-02-02T23:00:00.000+00:00 |
| wid-sec-w-2022-1970 | Net-SNMP: Schwachstelle ermöglicht Denial of Service | 2022-11-07T23:00:00.000+00:00 | 2025-11-25T23:00:00.000+00:00 |
| wid-sec-w-2022-1974 | Siemens SICAM: Mehrere Schwachstellen | 2022-11-07T23:00:00.000+00:00 | 2025-12-08T23:00:00.000+00:00 |
| wid-sec-w-2022-1980 | Microsoft Exchange Server: Mehrere Schwachstellen | 2022-11-08T23:00:00.000+00:00 | 2022-12-20T23:00:00.000+00:00 |
| wid-sec-w-2022-1984 | Intel BIOS: Mehrere Schwachstellen ermöglichen Privilegieneskalation | 2022-11-08T23:00:00.000+00:00 | 2024-06-26T22:00:00.000+00:00 |
| wid-sec-w-2022-1985 | Intel PROSet Wireless WiFi Software und Killer WiFi: Schwachstelle ermöglicht Denial of Service | 2022-11-08T23:00:00.000+00:00 | 2023-04-02T22:00:00.000+00:00 |
| wid-sec-w-2022-1987 | Intel NUC Firmware: Mehrere Schwachstellen ermöglichen Privilegieneskalation | 2022-11-08T23:00:00.000+00:00 | 2024-12-16T23:00:00.000+00:00 |
| wid-sec-w-2022-1996 | Net-SNMP: Schwachstelle ermöglicht Denial of Service | 2022-11-08T23:00:00.000+00:00 | 2025-11-25T23:00:00.000+00:00 |
| wid-sec-w-2022-1997 | Intel PROSet Wireless WiFi Software: Schwachstelle ermöglicht Denial of Service | 2022-11-08T23:00:00.000+00:00 | 2023-04-02T22:00:00.000+00:00 |
| wid-sec-w-2022-1999 | Intel Chipset: Mehrere Schwachstellen | 2022-11-08T23:00:00.000+00:00 | 2024-06-26T22:00:00.000+00:00 |
| wid-sec-w-2022-2001 | AMD Prozessor: Schwachstelle ermöglicht Offenlegung von Informationen | 2022-11-08T23:00:00.000+00:00 | 2023-03-08T23:00:00.000+00:00 |
| wid-sec-w-2022-2019 | Broadcom Fabric OS: Schwachstelle ermöglicht Codeausführung | 2022-11-08T23:00:00.000+00:00 | 2023-09-19T22:00:00.000+00:00 |
| wid-sec-w-2022-2036 | Varnish HTTP Cache: Mehrere Schwachstellen ermöglichen Manipulation von Dateien | 2022-11-08T23:00:00.000+00:00 | 2025-03-25T23:00:00.000+00:00 |
| wid-sec-w-2022-2043 | Python: Schwachstelle ermöglicht Denial of Service | 2022-11-08T23:00:00.000+00:00 | 2025-12-17T23:00:00.000+00:00 |
| wid-sec-w-2022-2044 | Red Hat Enterprise Linux: Mehrere Schwachstellen | 2022-11-08T23:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2023-0334 | Grafana: Mehrere Schwachstellen | 2022-11-08T23:00:00.000+00:00 | 2024-01-23T23:00:00.000+00:00 |
| wid-sec-w-2022-2009 | Keycloak: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2022-11-09T23:00:00.000+00:00 | 2023-03-01T23:00:00.000+00:00 |
| wid-sec-w-2022-2012 | systemd: Schwachstelle ermöglicht Denial of Service | 2022-11-09T23:00:00.000+00:00 | 2025-06-04T22:00:00.000+00:00 |
| wid-sec-w-2022-2016 | Nvidia Treiber: Schwachstelle ermöglicht Denial of Service | 2022-11-10T23:00:00.000+00:00 | 2023-10-03T22:00:00.000+00:00 |
| wid-sec-w-2022-2017 | Kubernetes: Schwachstelle ermöglicht Offenlegung von Informationen | 2022-11-10T23:00:00.000+00:00 | 2023-07-04T22:00:00.000+00:00 |
| wid-sec-w-2022-2021 | xterm: Schwachstelle ermöglicht Codeausführung | 2022-11-10T23:00:00.000+00:00 | 2025-05-22T22:00:00.000+00:00 |
| wid-sec-w-2022-2027 | Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2022-11-13T23:00:00.000+00:00 | 2023-01-10T23:00:00.000+00:00 |
| wid-sec-w-2022-2034 | ffmpeg: Mehrere Schwachstellen ermöglichen Denial of Service | 2022-11-13T23:00:00.000+00:00 | 2023-12-26T23:00:00.000+00:00 |
| wid-sec-w-2022-2035 | libTIFF: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2022-11-13T23:00:00.000+00:00 | 2025-11-09T23:00:00.000+00:00 |
| wid-sec-w-2022-2038 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2022-11-14T23:00:00.000+00:00 | 2026-01-19T23:00:00.000+00:00 |
| wid-sec-w-2022-2040 | xpdf: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2022-11-14T23:00:00.000+00:00 | 2024-09-24T22:00:00.000+00:00 |
| wid-sec-w-2022-2052 | Mehrere Red Hat Enterprise Linux Pakete: Mehrere Schwachstellen | 2022-11-15T23:00:00.000+00:00 | 2025-04-29T22:00:00.000+00:00 |
| wid-sec-w-2022-2055 | Mozilla Firefox und Thunderbird: Mehrere Schwachstellen | 2022-11-15T23:00:00.000+00:00 | 2025-05-29T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2010:0122 | Red Hat Security Advisory: sudo security update | 2010-02-26T11:06:00+00:00 | 2025-11-21T17:35:51+00:00 |
| rhsa-2010:0124 | Red Hat Security Advisory: systemtap security update | 2010-03-01T19:02:00+00:00 | 2026-01-13T22:35:41+00:00 |
| rhsa-2010:0125 | Red Hat Security Advisory: systemtap security update | 2010-03-01T19:15:00+00:00 | 2026-01-13T22:34:40+00:00 |
| rhsa-2010:0126 | Red Hat Security Advisory: kvm security and bug fix update | 2010-03-01T19:23:00+00:00 | 2026-01-13T22:36:38+00:00 |
| rhsa-2010:0129 | Red Hat Security Advisory: cups security update | 2010-03-03T17:40:00+00:00 | 2025-11-21T17:35:52+00:00 |
| rhsa-2010:0130 | Red Hat Security Advisory: java-1.5.0-ibm security update | 2010-03-03T18:20:00+00:00 | 2026-01-13T22:34:10+00:00 |
| rhsa-2010:0140 | Red Hat Security Advisory: pango security update | 2010-03-15T23:02:00+00:00 | 2026-01-13T21:05:55+00:00 |
| rhsa-2010:0141 | Red Hat Security Advisory: tar security update | 2010-03-15T23:45:00+00:00 | 2026-01-13T22:03:44+00:00 |
| rhsa-2010:0142 | Red Hat Security Advisory: tar security update | 2010-03-16T00:16:00+00:00 | 2025-11-21T17:35:53+00:00 |
| rhsa-2010:0143 | Red Hat Security Advisory: cpio security update | 2010-03-16T00:36:00+00:00 | 2025-11-21T17:35:54+00:00 |
| rhsa-2010:0144 | Red Hat Security Advisory: cpio security update | 2010-03-16T00:47:00+00:00 | 2026-01-13T22:09:21+00:00 |
| rhsa-2010:0145 | Red Hat Security Advisory: cpio security update | 2010-03-16T01:34:00+00:00 | 2025-11-21T17:35:54+00:00 |
| rhsa-2010:0147 | Red Hat Security Advisory: kernel security and bug fix update | 2010-03-17T00:13:00+00:00 | 2026-01-13T20:59:13+00:00 |
| rhsa-2010:0146 | Red Hat Security Advisory: kernel security and bug fix update | 2010-03-17T00:42:00+00:00 | 2026-01-13T22:31:34+00:00 |
| rhsa-2010:0148 | Red Hat Security Advisory: kernel security and bug fix update | 2010-03-17T03:01:00+00:00 | 2026-01-13T22:35:58+00:00 |
| rhsa-2010:0149 | Red Hat Security Advisory: kernel security and bug fix update | 2010-03-17T03:59:00+00:00 | 2026-01-13T22:09:43+00:00 |
| rhsa-2010:0153 | Red Hat Security Advisory: thunderbird security update | 2010-03-17T12:38:00+00:00 | 2026-01-13T22:40:23+00:00 |
| rhsa-2010:0154 | Red Hat Security Advisory: thunderbird security update | 2010-03-17T13:04:00+00:00 | 2026-01-08T09:23:32+00:00 |
| rhsa-2010:0155 | Red Hat Security Advisory: java-1.4.2-ibm security and bug fix update | 2010-03-17T17:19:00+00:00 | 2025-11-21T17:35:56+00:00 |
| rhsa-2010:0161 | Red Hat Security Advisory: kernel-rt security and bug fix update | 2010-03-23T15:42:00+00:00 | 2026-01-13T20:59:14+00:00 |
| rhsa-2010:0172 | Red Hat Security Advisory: rhev-hypervisor security and bug fix update | 2010-03-24T15:46:00+00:00 | 2026-01-13T22:39:54+00:00 |
| rhsa-2010:0162 | Red Hat Security Advisory: openssl security update | 2010-03-25T08:52:00+00:00 | 2026-01-13T22:36:38+00:00 |
| rhsa-2010:0163 | Red Hat Security Advisory: openssl security update | 2010-03-25T09:11:00+00:00 | 2025-11-21T17:35:57+00:00 |
| rhsa-2010:0168 | Red Hat Security Advisory: httpd security and enhancement update | 2010-03-25T09:11:00+00:00 | 2026-01-13T22:20:54+00:00 |
| rhsa-2010:0164 | Red Hat Security Advisory: openssl097a security update | 2010-03-25T09:20:00+00:00 | 2025-11-21T17:35:57+00:00 |
| rhsa-2010:0173 | Red Hat Security Advisory: openssl096b security update | 2010-03-25T09:51:00+00:00 | 2025-11-21T17:35:58+00:00 |
| rhsa-2010:0165 | Red Hat Security Advisory: nss security update | 2010-03-25T10:01:00+00:00 | 2025-11-21T17:35:57+00:00 |
| rhsa-2010:0166 | Red Hat Security Advisory: gnutls security update | 2010-03-25T10:19:00+00:00 | 2025-11-21T17:35:57+00:00 |
| rhsa-2010:0167 | Red Hat Security Advisory: gnutls security update | 2010-03-25T10:31:00+00:00 | 2026-01-13T22:22:53+00:00 |
| rhsa-2010:0175 | Red Hat Security Advisory: httpd security, bug fix, and enhancement update | 2010-03-25T15:40:00+00:00 | 2026-01-13T22:12:04+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-22-069-02 | Siemens SIMOTICS CONNECT 400 | 2022-03-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-069-03 | Siemens SINEC NMS | 2022-03-08T00:00:00.000000Z | 2023-10-10T00:00:00.000000Z |
| icsa-22-069-04 | Siemens SINEMA Mendix Forgot Password Appstore | 2022-03-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-069-05 | Siemens Simcenter STAR-CCM+ Viewer | 2022-03-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-069-06 | Siemens COMOS | 2022-03-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-069-07 | Siemens Climatix POL909 | 2022-03-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-069-08 | Siemens Polarion ALM | 2022-03-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-069-09 | Siemens SINEC INS | 2022-03-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-069-11 | Siemens SINUMERIK MC | 2022-03-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-069-12 | Siemens RUGGEDCOM ROS | 2022-03-08T00:00:00.000000Z | 2025-08-12T00:00:00.000000Z |
| icsa-22-069-13 | Siemens Mendix | 2022-03-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-074-01 | ABB OPC Server for AC 800M | 2022-03-15T00:00:00.000000Z | 2022-03-15T00:00:00.000000Z |
| icsa-22-081-01 | Delta Electronics DIAEnergie (Update C) | 2022-03-22T00:00:00.000000Z | 2022-04-28T00:00:00.000000Z |
| icsa-22-083-01 | Yokogawa CENTUM and Exaopc | 2022-03-24T00:00:00.000000Z | 2022-03-24T00:00:00.000000Z |
| icsa-22-083-02 | mySCADA myPRO | 2022-03-24T00:00:00.000000Z | 2022-03-24T00:00:00.000000Z |
| icsa-22-088-01 | Rockwell Automation ISaGRAF | 2022-03-29T00:00:00.000000Z | 2022-03-29T00:00:00.000000Z |
| icsa-22-088-02 | Omron CX-Position | 2022-03-29T00:00:00.000000Z | 2022-03-29T00:00:00.000000Z |
| icsa-22-088-03 | Hitachi Energy LinkOne WebView | 2022-03-29T00:00:00.000000Z | 2022-03-29T00:00:00.000000Z |
| icsa-22-088-04 | Modbus Tools Modbus Slave | 2022-03-29T00:00:00.000000Z | 2022-03-29T00:00:00.000000Z |
| icsma-22-088-01 | Philips e-Alert | 2022-03-29T00:00:00.000000Z | 2022-03-29T00:00:00.000000Z |
| icsa-22-090-01 | Schneider Electric SCADAPack Workbench | 2022-03-31T00:00:00.000000Z | 2022-03-31T00:00:00.000000Z |
| icsa-22-090-02 | Hitachi Energy e-mesh EMS | 2022-03-31T00:00:00.000000Z | 2022-03-31T00:00:00.000000Z |
| icsa-22-090-03 | Fuji Electric Alpha5 | 2022-03-31T00:00:00.000000Z | 2022-03-31T00:00:00.000000Z |
| icsa-22-090-04 | Mitsubishi Electric FA Products | 2022-03-31T00:00:00.000000Z | 2022-05-31T00:00:00.000000Z |
| icsa-22-090-05 | Rockwell Automation Logix Controllers | 2022-03-31T00:00:00.000000Z | 2022-03-31T00:00:00.000000Z |
| icsa-22-090-06 | General Electric Renewable Energy MDS Radios | 2022-03-31T00:00:00.000000Z | 2022-03-31T00:00:00.000000Z |
| icsa-22-090-07 | Rockwell Automation Studio 5000 Logix Designer | 2022-03-31T00:00:00.000000Z | 2022-03-31T00:00:00.000000Z |
| icsa-22-095-01 | Rockwell Automation ISaGRAF | 2022-04-05T00:00:00.000000Z | 2022-04-05T00:00:00.000000Z |
| icsa-22-095-02 | Johnson Controls Metasys | 2022-04-05T00:00:00.000000Z | 2022-04-05T00:00:00.000000Z |
| icsma-22-095-01 | LifePoint Informatics Patient Portal | 2022-04-05T00:00:00.000000Z | 2022-04-05T00:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-java-spring-scf-rce-dqrhhjxh | Vulnerability in Spring Cloud Function Framework Affecting Cisco Products: March 2022 | 2022-04-01T23:45:00+00:00 | 2022-04-15T15:31:28+00:00 |
| cisco-sa-esa-snmp-jlajkswk | Multiple Cisco Security Products Simple Network Management Protocol Service Denial of Service Vulnerability | 2022-04-06T16:00:00+00:00 | 2022-04-06T16:00:00+00:00 |
| cisco-sa-info-exp-yxawyp3s | Cisco Identity Services Engine Sensitive Information Disclosure Vulnerability | 2022-04-06T16:00:00+00:00 | 2022-04-06T16:00:00+00:00 |
| cisco-sa-sna-xss-mca9tqnj | Cisco Secure Network Analytics Network Diagrams Application Cross-Site Scripting Vulnerability | 2022-04-06T16:00:00+00:00 | 2022-04-06T16:00:00+00:00 |
| cisco-sa-swa-filter-bypass-xxxtu3x | Cisco Web Security Appliance Filter Bypass Vulnerability | 2022-04-06T16:00:00+00:00 | 2022-04-06T16:00:00+00:00 |
| cisco-sa-voip-phone-csrf-k56vxvvx | Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware Cross-Site Request Forgery Vulnerability | 2022-04-06T16:00:00+00:00 | 2022-10-28T14:20:37+00:00 |
| cisco-sa-webex-java-mvx6crh9 | Cisco Webex Meetings Java Deserialization Vulnerability | 2022-04-06T16:00:00+00:00 | 2022-04-06T16:00:00+00:00 |
| cisco-sa-wsa-stored-xss-xpsjghmy | Cisco Web Security Appliance Stored Cross-Site Scripting Vulnerability | 2022-04-06T16:00:00+00:00 | 2022-04-06T16:00:00+00:00 |
| cisco-sa-ap-ip-flood-dos-6hxxenvq | Cisco Embedded Wireless Controller with Catalyst Access Points IP Flood Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-appnav-xe-dos-j5mxtr4 | Cisco IOS XE Software AppNav-XE Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-bgpevpn-zwtrtpbb | Cisco IOS XR Software Border Gateway Protocol Ethernet VPN Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-19T14:12:27+00:00 |
| cisco-sa-c9800-capwap-mdns-6psn7gku | Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family CAPWAP Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-c9800-fnf-dos-bol5vlge | Cisco IOS XE Software for Catalyst 9800 Series Wireless Controllers Application Visibility and Control Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-c9800-snmp-trap-dos-mjent3ey | Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family SNMP Trap Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-cdb-cmicr-vulns-kjjftnb | Cisco Catalyst Digital Building Series Switches and Cisco Catalyst Micro Switches Vulnerabilities | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-cgr1k-ap-dos-mszr4qvh | Cisco 1000 Series Connected Grid Router Integrated Wireless Access Point Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-ewlc-priv-esc-ybvhko5 | Cisco IOS XE Software for Cisco Catalyst 9000 Family Switches and Catalyst 9000 Family Wireless Controllers Privilege Escalation Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-05-12T19:35:11+00:00 |
| cisco-sa-http-dos-svodkdbs | Cisco IOS and IOS XE Software Web Services Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-iosxe-priv-esc-grbtubu | Cisco IOS XE Software Tool Command Language Privilege Escalation Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-iosxe-rpki-dos-2egcneke | Cisco IOS XE Software Border Gateway Protocol Resource Public Key Infrastructure Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-iox-yuxq6hfj | Cisco IOx Application Hosting Environment Vulnerabilities | 2022-04-13T16:00:00+00:00 | 2022-05-12T15:50:29+00:00 |
| cisco-sa-lsplus-z6aqeojk | Cisco IOS XR Software for ASR 9000 Series Routers Lightspeed-Plus Line Cards Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-28T21:28:53+00:00 |
| cisco-sa-ncossh-dos-zakfodq8 | Cisco IOS XE Software NETCONF Over SSH Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-qfp-ipsec-gqmqvtqv | Cisco IOS XE Software IPSec Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-sd-wan-file-access-vw36d28p | Cisco SD-WAN Solution Improper Access Control Vulnerability | 2022-04-13T16:00:00+00:00 | 2024-01-23T21:31:33+00:00 |
| cisco-sa-sdwan-privesc-vman-tejfpbsl | Cisco SD-WAN vManage Software Privilege Escalation Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-sdwan-vedge-dos-jervm4bb | Cisco SD-WAN vEdge Routers Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-sdwan-vman-infodis-73shjneq | Cisco SD-WAN vManage Software Information Disclosure Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-sdwan-vmanage-csrf-rxql4txr | Cisco SD-WAN vManage Software Cross-Site Request Forgery Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-webuiapi-inj-nyrq92od | Cisco IOS XE Software Web UI API Injection Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2022-0585 | Large loops in multiple protocol dissectors in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allow denial of service via packet injection or crafted capture file | 2022-02-02T00:00:00.000Z | 2022-02-25T00:00:00.000Z |
| msrc_cve-2022-0586 | Infinite loop in RTMPT protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file | 2022-02-02T00:00:00.000Z | 2022-02-24T00:00:00.000Z |
| msrc_cve-2022-0617 | A flaw null pointer dereference in the Linux kernel UDF file system functionality was found in the way user triggers udf_file_write_iter function for the malicious UDF image. A local user could use this flaw to crash the system. Actual from Linux kernel 4.2-rc1 till 5.17-rc2. | 2022-02-02T00:00:00.000Z | 2022-03-04T00:00:00.000Z |
| msrc_cve-2022-0629 | Stack-based Buffer Overflow in vim/vim | 2022-02-02T00:00:00.000Z | 2022-02-26T00:00:00.000Z |
| msrc_cve-2022-0685 | Use of Out-of-range Pointer Offset in vim/vim | 2022-02-02T00:00:00.000Z | 2022-03-01T00:00:00.000Z |
| msrc_cve-2022-0696 | NULL Pointer Dereference in vim/vim | 2022-02-02T00:00:00.000Z | 2022-03-02T00:00:00.000Z |
| msrc_cve-2022-0714 | Heap-based Buffer Overflow in vim/vim | 2022-02-02T00:00:00.000Z | 2022-03-02T00:00:00.000Z |
| msrc_cve-2022-0729 | Use of Out-of-range Pointer Offset in vim/vim | 2022-02-02T00:00:00.000Z | 2022-03-02T00:00:00.000Z |
| msrc_cve-2022-21698 | Uncontrolled Resource Consumption in promhttp | 2022-02-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2022-21712 | Cookie and header exposure in twisted | 2022-02-02T00:00:00.000Z | 2022-02-15T00:00:00.000Z |
| msrc_cve-2022-21824 | Due to the formatting logic of the "console.table()" function it was not safe to allow user controlled input to be passed to the "properties" parameter while simultaneously passing a plain object with at least one property as the first parameter which could be "__proto__". The prototype pollution has very limited control in that it only allows an empty string to be assigned to numerical keys of the object prototype.Node.js >= 12.22.9 >= 14.18.3 >= 16.13.2 and >= 17.3.1 use a null protoype for the object these properties are being assigned to. | 2022-02-02T00:00:00.000Z | 2022-03-09T00:00:00.000Z |
| msrc_cve-2022-23308 | valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes. | 2022-02-02T00:00:00.000Z | 2022-03-09T00:00:00.000Z |
| msrc_cve-2022-23639 | Improper Restriction of Operations within the Bounds of a Memory Buffer and Race Condition in crossbeam-utils | 2022-02-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2022-23772 | Rat.SetString in math/big in Go before 1.16.14 and 1.17.x before 1.17.7 has an overflow that can lead to Uncontrolled Memory Consumption. | 2022-02-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2022-23773 | cmd/go in Go before 1.16.14 and 1.17.x before 1.17.7 can misinterpret branch names that falsely appear to be version tags. This can lead to incorrect access control if an actor is supposed to be able to create branches but not tags. | 2022-02-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2022-23806 | Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element. | 2022-02-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2022-24048 | MariaDB CONNECT Storage Engine Stack-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of SQL queries. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the service account. Was ZDI-CAN-16191. | 2022-02-02T00:00:00.000Z | 2022-03-01T00:00:00.000Z |
| msrc_cve-2022-24050 | MariaDB CONNECT Storage Engine Use-After-Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of SQL queries. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the service account. Was ZDI-CAN-16207. | 2022-02-02T00:00:00.000Z | 2022-03-01T00:00:00.000Z |
| msrc_cve-2022-24051 | MariaDB CONNECT Storage Engine Format String Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of SQL queries. The issue results from the lack of proper validation of a user-supplied string before using it as a format specifier. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the service account. Was ZDI-CAN-16193. | 2022-02-02T00:00:00.000Z | 2022-03-01T00:00:00.000Z |
| msrc_cve-2022-24052 | MariaDB CONNECT Storage Engine Heap-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of SQL queries. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the service account. Was ZDI-CAN-16190. | 2022-02-02T00:00:00.000Z | 2022-03-01T00:00:00.000Z |
| msrc_cve-2022-24407 | In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28 plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement. | 2022-02-02T00:00:00.000Z | 2022-03-04T00:00:00.000Z |
| msrc_cve-2022-24448 | An issue was discovered in fs/nfs/dir.c in the Linux kernel before 5.16.5. If an application sets the O_DIRECTORY flag and tries to open a regular file nfs_atomic_open() performs a regular lookup. If a regular file is found ENOTDIR should occur but the server instead returns uninitialized data in the file descriptor. | 2022-02-02T00:00:00.000Z | 2022-02-10T00:00:00.000Z |
| msrc_cve-2022-24958 | drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev->buf release. | 2022-02-02T00:00:00.000Z | 2022-02-18T00:00:00.000Z |
| msrc_cve-2022-24959 | An issue was discovered in the Linux kernel before 5.16.5. There is a memory leak in yam_siocdevprivate in drivers/net/hamradio/yam.c. | 2022-02-02T00:00:00.000Z | 2022-02-18T00:00:00.000Z |
| msrc_cve-2022-25235 | xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation of encoding such as checks for whether a UTF-8 character is valid in a certain context. | 2022-02-02T00:00:00.000Z | 2022-02-24T00:00:00.000Z |
| msrc_cve-2022-25236 | xmlparse.c in Expat (aka libexpat) before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs. | 2022-02-02T00:00:00.000Z | 2022-02-24T00:00:00.000Z |
| msrc_cve-2022-25255 | In Qt 5.9.x through 5.15.x before 5.15.9 and 6.x before 6.2.4 on Linux and UNIX QProcess could execute a binary from the current working directory when not found in the PATH. | 2022-02-02T00:00:00.000Z | 2024-10-25T00:00:00.000Z |
| msrc_cve-2022-25258 | An issue was discovered in drivers/usb/gadget/composite.c in the Linux kernel before 5.16.10. The USB Gadget subsystem lacks certain validation of interface OS descriptor requests (ones with a large array index and ones associated with NULL function pointer retrieval). Memory corruption might occur. | 2022-02-02T00:00:00.000Z | 2022-03-01T00:00:00.000Z |
| msrc_cve-2022-25265 | In the Linux kernel through 5.16.10 certain binary files may have the exec-all attribute if they were built in approximately 2003 (e.g. with GCC 3.2.2 and Linux kernel 2.4.20). This can cause execution of bytes located in supposedly non-executable regions of a file. | 2022-02-02T00:00:00.000Z | 2022-02-26T00:00:00.000Z |
| msrc_cve-2022-25313 | In Expat (aka libexpat) before 2.4.5 an attacker can trigger stack exhaustion in build_model via a large nesting depth in the DTD element. | 2022-02-02T00:00:00.000Z | 2022-02-25T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202103-1674 | Urve is a device used to reserve meeting rooms/guests. Urve has a command execution v… | 2022-05-04T09:55:17.992000Z |
| var-202103-1653 | SCALANCE X208 is a Siemens switch. SIEMENS SCALANCE X208 has a denial of service vuln… | 2022-05-04T09:55:18.004000Z |
| var-202102-1617 | Tianxin Instrument Group Co., Ltd. is a professional service provider of domestic flow me… | 2022-05-04T09:55:19.406000Z |
| var-202102-1596 | TPEditor is a programming software used by Delta Electronics for a programmable display s… | 2022-05-04T09:55:19.417000Z |
| var-202102-1575 | TL-WDR8690 is a wireless router. TP-Link TL-WDR8690 easy exhibition version has a den… | 2022-05-04T09:55:19.428000Z |
| var-202102-1554 | The business scope of Xi'an Jiaotong University Jabil Network Technology Co., Ltd. includ… | 2022-05-04T09:55:19.438000Z |
| var-202102-1533 | Tianyi broadband government-enterprise gateway A8-C is China Telecom's fiber optic modem.… | 2022-05-04T09:55:19.453000Z |
| var-202102-0568 | Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV… | 2022-05-04T09:55:20.075000Z |
| var-202101-2019 | Shanghai Buke Automation Co., Ltd. has been focusing on the R&D, production, sales and re… | 2022-05-04T09:55:20.807000Z |
| var-202101-1997 | Arrow Optoelectronics focuses on the R&D and manufacturing of infrared imaging technology… | 2022-05-04T09:55:20.819000Z |
| var-202101-1974 | ASUS RT-AX86U is a wireless router. ASUS RT-AX86U has a buffer overflow vulnerability… | 2022-05-04T09:55:20.830000Z |
| var-202012-1612 | Forcecontrol is a monitoring configuration software, mainly used for data acquisition and… | 2022-05-04T09:55:22.201000Z |
| var-202012-1591 | Nanjing Xindison Software Technology Co., Ltd. is a high-tech enterprise specializing in … | 2022-05-04T09:55:22.213000Z |
| var-202011-1597 | RE6500 is a table/wall-mounted WiFi signal extender launched by Linksys, which specialize… | 2022-05-04T09:55:26.497000Z |
| var-202011-1575 | China United Network Communications Group Co., Ltd. ("China Unicom") is mainly engaged in… | 2022-05-04T09:55:26.507000Z |
| var-202011-1554 | Advantech WebAccess/HMI Designer is a man-machine interface integrated development tool. … | 2022-05-04T09:55:26.519000Z |
| var-202011-1533 | Schneider-Electric M340 PLC is widely used in the field of industrial control. It is a hi… | 2022-05-04T09:55:26.531000Z |
| var-202010-1626 | Delta Electronics was established in 1971 to provide power management and cooling solutio… | 2022-05-04T09:55:28.141000Z |
| var-202010-1605 | H3C ERG2-450W is an enterprise-class Gigabit VPN router. H3C ERG2-450W has a weak pas… | 2022-05-04T09:55:28.152000Z |
| var-202010-1437 | IBM Resilient OnPrem 38.2 could allow a privileged user to inject malicious commands thro… | 2022-05-04T09:55:28.247000Z |
| var-202009-1704 | Fuzhou Yihuyun Technology Co., Ltd. was established on December 17, 2018. The company's b… | 2022-05-04T09:55:29.352000Z |
| var-202009-1683 | Schneider Electric Modicon M580 PLC belongs to Schneider Company and is a programmable co… | 2022-05-04T09:55:29.364000Z |
| var-202008-1288 | KingView (KingView) is an industrial automation configuration software produced by Beijin… | 2022-05-04T09:55:30.980000Z |
| var-202008-1267 | DCS-2530L is a camera from DEXUN Electronic Equipment (Shanghai) Co., Ltd. D-Link DCS… | 2022-05-04T09:55:30.991000Z |
| var-202007-1508 | The AC15 upgrade software is produced by Shenzhen Jixiang Tengda Technology Co., Ltd. It … | 2022-05-04T09:55:32.188000Z |
| var-202006-1895 | Ruijie RG-RSR20-14E is a multi-service router. The RG-RSR20-14E router has a logic fl… | 2022-05-04T09:55:36.366000Z |
| var-202004-2245 | D-Link DIR-842 is a 2.4GHz and 5GHz dual-band router. D-Link DIR-842 has a buffer ove… | 2022-05-04T09:55:39.221000Z |
| var-202003-1816 | D-Link DIR-110 is a router with a transmission rate of 10/100Mbps. The DIRCOM router … | 2022-05-04T09:55:44.492000Z |
| var-202001-1993 | ZXR10 1800-2S is a router product of ZTE Corporation of China. ZTE ZXR10 1800-2S has fil… | 2022-05-04T09:55:47.662000Z |
| var-202001-1972 | Established in 1984, Haier Group is the world's largest brand of large household applianc… | 2022-05-04T09:55:47.673000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2018-000038 | WordPress plugin "WP Google Map Plugin" vulnerable to cross-site scripting | 2018-04-27T14:15+09:00 | 2018-08-30T12:00+09:00 |
| jvndb-2018-000039 | WordPress plugin "PixelYourSite" vulnerable to cross-site scripting | 2018-04-27T14:24+09:00 | 2018-08-30T11:55+09:00 |
| jvndb-2018-000040 | WordPress plugin "Open Graph for Facebook, Google+ and Twitter Card Tags" vulnerable to cross-site scripting | 2018-04-27T15:01+09:00 | 2018-08-30T13:54+09:00 |
| jvndb-2018-000041 | The installers of multiple CELSYS,Inc. software may insecurely load Dynamic Link Libraries | 2018-04-27T15:19+09:00 | 2018-08-30T14:12+09:00 |
| jvndb-2018-000042 | RT-AC87U vulnerable to cross-site scripting | 2018-05-09T15:37+09:00 | 2018-08-30T12:32+09:00 |
| jvndb-2018-000043 | RT-AC1200HP vulnerable to cross-site scripting | 2018-05-09T15:37+09:00 | 2018-08-30T12:15+09:00 |
| jvndb-2018-000044 | RT-AC68U vulnerable to cross-site scripting | 2018-05-09T15:38+09:00 | 2018-08-30T12:20+09:00 |
| jvndb-2018-000045 | Multiple vulnerabilities in WordPress plugin "Ultimate Member" | 2018-05-10T13:44+09:00 | 2018-08-30T18:11+09:00 |
| jvndb-2018-003030 | Access Control Vulnerability in Hitachi Infrastructure Analytics Advisor | 2018-05-10T15:30+09:00 | 2018-07-31T12:12+09:00 |
| jvndb-2018-000047 | IIJ SmartKey App for Android vulnerable to authentication bypass | 2018-05-11T14:34+09:00 | 2019-12-27T18:11+09:00 |
| jvndb-2018-000048 | KINEPASS App fails to verify SSL server certificates | 2018-05-11T14:34+09:00 | 2018-08-30T15:01+09:00 |
| jvndb-2018-000050 | Self-Extracting Archive files created by IExpress may insecurely load Dynamic Link Libraries | 2018-05-17T14:57+09:00 | 2018-08-21T16:40+09:00 |
| jvndb-2018-000051 | The installer of Visual C++ Redistributable may insecurely load Dynamic Link Libraries | 2018-05-17T14:57+09:00 | 2019-07-05T16:41+09:00 |
| jvndb-2018-000049 | Multiple Microsoft Windows applications and installers may insecurely load Dynamic Link Libraries | 2018-05-17T15:18+09:00 | 2019-07-05T16:40+09:00 |
| jvndb-2018-000052 | Nessus vulnerable to cross-site scripting | 2018-05-21T13:39+09:00 | 2018-08-30T13:47+09:00 |
| jvndb-2018-000053 | Multiple vulnerabilities in Cybozu Office | 2018-05-22T14:30+09:00 | 2018-08-30T16:03+09:00 |
| jvndb-2018-000055 | Multiple vulnerabilities in baserCMS | 2018-05-22T14:53+09:00 | 2019-12-27T18:10+09:00 |
| jvndb-2018-000054 | Multiple cross-site scripting vulnerabilities in Cybozu Mailwise | 2018-05-22T15:26+09:00 | 2018-08-30T17:47+09:00 |
| jvndb-2018-000056 | Susie plug-in "axpdfium" may insecurely load Dynamic Link Libraries | 2018-05-24T15:15+09:00 | 2019-07-02T14:53+09:00 |
| jvndb-2018-000046 | The installer of PlayMemories Home for Windows may insecurely load Dynamic Link Libraries | 2018-05-24T15:25+09:00 | 2019-07-02T14:31+09:00 |
| jvndb-2018-003553 | Information Disclosure Vulnerability in Hitachi Automation Director | 2018-05-28T12:13+09:00 | 2018-07-31T12:16+09:00 |
| jvndb-2018-000058 | WordPress plugin "Email Subscribers & Newsletters" vulnerable to cross-site scripting | 2018-05-28T14:11+09:00 | 2019-07-02T14:50+09:00 |
| jvndb-2018-000059 | WordPress plugin "Site Reviews" vulnerable to cross-site scripting | 2018-05-28T14:11+09:00 | 2019-07-02T14:25+09:00 |
| jvndb-2018-000057 | The installer of "FLET'S VIRUS CLEAR Easy Setup & Application Tool" and "FLET'S VIRUS CLEAR v6 Easy Setup & Application Tool" may insecurely invoke an executable file | 2018-05-29T13:47+09:00 | 2019-12-27T18:09+09:00 |
| jvndb-2018-000060 | Multiple vulnerabilities in Pixelpost | 2018-05-31T14:07+09:00 | 2018-05-31T14:07+09:00 |
| jvndb-2018-000061 | H2O vulnerable to buffer overflow | 2018-06-04T14:10+09:00 | 2018-06-04T14:10+09:00 |
| jvndb-2018-000063 | LINE for Windows may insecurely load Dynamic Link Libraries | 2018-06-12T14:44+09:00 | 2018-06-12T14:44+09:00 |
| jvndb-2018-000062 | Local File Inclusion vulnerability in Zenphoto | 2018-06-13T15:11+09:00 | 2018-06-13T15:11+09:00 |
| jvndb-2018-000064 | Chrome Extension "5000 trillion yen converter" vulnerable to cross-site scripting | 2018-06-15T14:36+09:00 | 2018-06-15T14:36+09:00 |
| jvndb-2018-000065 | ANA App for iOS fails to verify SSL server certificates | 2018-06-15T14:40+09:00 | 2019-12-27T18:08+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2017:2067-1 | Security update for Linux Kernel Live Patch 1 for SLE 12 SP2 | 2017-08-07T08:45:30Z | 2017-08-07T08:45:30Z |
| suse-su-2017:2068-1 | Security update for Linux Kernel Live Patch 2 for SLE 12 SP2 | 2017-08-07T08:45:39Z | 2017-08-07T08:45:39Z |
| suse-su-2017:2061-1 | Security update for Linux Kernel Live Patch 9 for SLE 12 SP1 | 2017-08-07T09:53:16Z | 2017-08-07T09:53:16Z |
| suse-su-2017:2060-1 | Security update for Linux Kernel Live Patch 7 for SLE 12 SP1 | 2017-08-07T09:53:24Z | 2017-08-07T09:53:24Z |
| suse-su-2017:2073-1 | Security update for Linux Kernel Live Patch 11 for SLE 12 SP1 | 2017-08-07T12:01:33Z | 2017-08-07T12:01:33Z |
| suse-su-2017:2072-1 | Security update for Linux Kernel Live Patch 10 for SLE 12 SP1 | 2017-08-07T12:01:44Z | 2017-08-07T12:01:44Z |
| suse-su-2017:2074-1 | Security update for the Linux Kernel | 2017-08-07T12:23:53Z | 2017-08-07T12:23:53Z |
| suse-su-2017:2076-1 | Security update for ncurses | 2017-08-07T12:46:32Z | 2017-08-07T12:46:32Z |
| suse-su-2017:2075-1 | Security update for ncurses | 2017-08-07T12:47:05Z | 2017-08-07T12:47:05Z |
| suse-su-2017:2089-1 | Security update for Linux Kernel Live Patch 17 for SLE 12 SP1 | 2017-08-08T07:26:54Z | 2017-08-08T07:26:54Z |
| suse-su-2017:2094-1 | Security update for Linux Kernel Live Patch 15 for SLE 12 SP1 | 2017-08-08T07:27:07Z | 2017-08-08T07:27:07Z |
| suse-su-2017:2090-1 | Security update for Linux Kernel Live Patch 16 for SLE 12 SP1 | 2017-08-08T07:27:15Z | 2017-08-08T07:27:15Z |
| suse-su-2017:2092-1 | Security update for Linux Kernel Live Patch 13 for SLE 12 SP1 | 2017-08-08T07:27:24Z | 2017-08-08T07:27:24Z |
| suse-su-2017:2091-1 | Security update for Linux Kernel Live Patch 14 for SLE 12 SP1 | 2017-08-08T07:27:31Z | 2017-08-08T07:27:31Z |
| suse-su-2017:2088-1 | Security update for Linux Kernel Live Patch 8 for SLE 12 SP1 | 2017-08-08T07:27:40Z | 2017-08-08T07:27:40Z |
| suse-su-2017:2093-1 | Security update for Linux Kernel Live Patch 17 for SLE 12 | 2017-08-08T09:29:06Z | 2017-08-08T09:29:06Z |
| suse-su-2017:2095-1 | Security update for Linux Kernel Live Patch 18 for SLE 12 | 2017-08-08T09:29:14Z | 2017-08-08T09:29:14Z |
| suse-su-2017:2096-1 | Security update for Linux Kernel Live Patch 19 for SLE 12 | 2017-08-08T09:29:22Z | 2017-08-08T09:29:22Z |
| suse-su-2017:2098-1 | Security update for Linux Kernel Live Patch 23 for SLE 12 | 2017-08-08T11:31:30Z | 2017-08-08T11:31:30Z |
| suse-su-2017:2102-1 | Security update for Linux Kernel Live Patch 22 for SLE 12 | 2017-08-08T11:31:39Z | 2017-08-08T11:31:39Z |
| suse-su-2017:2100-1 | Security update for Linux Kernel Live Patch 21 for SLE 12 | 2017-08-08T11:31:47Z | 2017-08-08T11:31:47Z |
| suse-su-2017:2103-1 | Security update for Linux Kernel Live Patch 20 for SLE 12 | 2017-08-08T11:31:56Z | 2017-08-08T11:31:56Z |
| suse-su-2017:2099-1 | Security update for Linux Kernel Live Patch 16 for SLE 12 | 2017-08-08T11:32:05Z | 2017-08-08T11:32:05Z |
| suse-su-2017:2105-1 | Security update for python-tablib | 2017-08-08T13:27:51Z | 2017-08-08T13:27:51Z |
| suse-su-2017:2113-1 | Security update for puppet | 2017-08-09T07:43:44Z | 2017-08-09T07:43:44Z |
| suse-su-2017:2109-1 | Security update for tcmu-runner | 2017-08-09T07:46:32Z | 2017-08-09T07:46:32Z |
| suse-su-2017:2114-1 | Security update for Linux Kernel Live Patch 0 for SLE 12 SP3 | 2017-08-09T14:30:50Z | 2017-08-09T14:30:50Z |
| suse-su-2017:2115-1 | Security update for libxml2 | 2017-08-09T14:32:08Z | 2017-08-09T14:32:08Z |
| suse-su-2017:2117-1 | Security update for librsvg | 2017-08-09T14:32:43Z | 2017-08-09T14:32:43Z |
| suse-su-2017:2130-1 | Security update for libsoup | 2017-08-10T12:56:52Z | 2017-08-10T12:56:52Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2021:0144-1 | Security update for hawk2 | 2021-01-23T05:41:59Z | 2021-01-23T05:41:59Z |
| opensuse-su-2021:0145-1 | Security update for viewvc | 2021-01-23T11:22:34Z | 2021-01-23T11:22:34Z |
| opensuse-su-2021:0147-1 | Security update for hawk2 | 2021-01-24T05:12:14Z | 2021-01-24T05:12:14Z |
| opensuse-su-2021:0148-1 | Security update for ImageMagick | 2021-01-24T05:22:46Z | 2021-01-24T05:22:46Z |
| opensuse-su-2021:0150-1 | Security update for gdk-pixbuf | 2021-01-24T15:21:30Z | 2021-01-24T15:21:30Z |
| opensuse-su-2021:0152-1 | Security update for python-autobahn | 2021-01-24T15:21:39Z | 2021-01-24T15:21:39Z |
| opensuse-su-2021:0153-1 | Security update for wavpack | 2021-01-24T17:22:03Z | 2021-01-24T17:22:03Z |
| opensuse-su-2021:0154-1 | Security update for wavpack | 2021-01-24T17:22:08Z | 2021-01-24T17:22:08Z |
| opensuse-su-2021:0160-1 | Security update for stunnel | 2021-01-25T13:24:25Z | 2021-01-25T13:24:25Z |
| opensuse-su-2021:0161-1 | Security update for mutt | 2021-01-25T17:23:01Z | 2021-01-25T17:23:01Z |
| opensuse-su-2021:0162-1 | Security update for mutt | 2021-01-25T17:23:09Z | 2021-01-25T17:23:09Z |
| opensuse-su-2021:0165-1 | Security update for virtualbox | 2021-01-25T19:01:06Z | 2021-01-25T19:01:06Z |
| opensuse-su-2021:0166-1 | Security update for chromium | 2021-01-26T09:23:18Z | 2021-01-26T09:23:18Z |
| opensuse-su-2021:0169-1 | Security update for sudo | 2021-01-27T07:24:44Z | 2021-01-27T07:24:44Z |
| opensuse-su-2021:0170-1 | Security update for sudo | 2021-01-27T07:25:26Z | 2021-01-27T07:25:26Z |
| opensuse-su-2021:0173-1 | Security update for chromium | 2021-01-27T13:37:23Z | 2021-01-27T13:37:23Z |
| opensuse-su-2021:0176-1 | Security update for python-autobahn | 2021-01-27T17:24:03Z | 2021-01-27T17:24:03Z |
| opensuse-su-2021:0177-1 | Security update for chromium | 2021-01-27T19:24:31Z | 2021-01-27T19:24:31Z |
| opensuse-su-2021:0180-1 | Security update for python-autobahn | 2021-01-28T11:26:59Z | 2021-01-28T11:26:59Z |
| opensuse-su-2021:0186-1 | Security update for chromium | 2021-01-28T23:26:27Z | 2021-01-28T23:26:27Z |
| opensuse-su-2021:0188-1 | Security update for messagelib | 2021-01-29T19:13:54Z | 2021-01-29T19:13:54Z |
| opensuse-su-2021:0190-1 | Security update for go1.14 | 2021-01-29T19:14:06Z | 2021-01-29T19:14:06Z |
| opensuse-su-2021:0192-1 | Security update for go1.15 | 2021-01-29T19:14:21Z | 2021-01-29T19:14:21Z |
| opensuse-su-2021:0194-1 | Security update for go1.14 | 2021-01-29T23:13:44Z | 2021-01-29T23:13:44Z |
| opensuse-su-2021:0195-1 | Security update for nodejs8 | 2021-01-30T05:13:16Z | 2021-01-30T05:13:16Z |
| opensuse-su-2021:0198-1 | Security update for segv_handler | 2021-01-30T08:25:07Z | 2021-01-30T08:25:07Z |
| opensuse-su-2021:0207-1 | Security update for segv_handler | 2021-01-30T13:12:27Z | 2021-01-30T13:12:27Z |
| opensuse-su-2021:0208-1 | Security update for MozillaThunderbird | 2021-01-30T17:22:09Z | 2021-01-30T17:22:09Z |
| opensuse-su-2021:0209-1 | Security update for MozillaThunderbird | 2021-01-30T17:22:21Z | 2021-01-30T17:22:21Z |
| opensuse-su-2021:0222-1 | Security update for MozillaFirefox | 2021-02-01T18:14:19Z | 2021-02-01T18:14:19Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2015-01889 | OpenSSL 'dtls1_listen'函数拒绝服务漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01890 | OpenSSL 'ASN1_TYPE_cmp'函数拒绝服务漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01891 | OpenSSL ASN.1 signature-verification拒绝服务漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01892 | OpenSSL 'ASN1_item_ex_d2i'函数拒绝服务漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01893 | OpenSSL PKCS#7拒绝服务漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01894 | OpenSSL 'EVP_DecodeUpdate'拒绝服务漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01895 | OpenSSL SSLv2拒绝服务漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01896 | OpenSSL 'ssl3_get_client_key_exchange'函数拒绝服务漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01897 | OpenSSL 'ssl3_client_hello'拒绝服务漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01898 | OpenSSL 'd2i_ECPrivateKey'内存错误引用漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01899 | OpenSSL X509_to_X509_REQ拒绝服务漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01900 | LFTP中间人信息泄露漏洞 | 2015-03-20 | 2015-03-24 |
| cnvd-2015-01901 | GnuTLS证书验证安全绕过漏洞 | 2015-03-20 | 2015-03-24 |
| cnvd-2015-01902 | Suricata空指针拒绝服务漏洞 | 2015-03-20 | 2015-03-24 |
| cnvd-2015-01903 | Python Restkit TLS证书验证安全绕过漏洞 | 2015-03-20 | 2015-03-24 |
| cnvd-2015-01904 | FerretCMS存在多个跨站请求伪造漏洞 | 2015-03-20 | 2015-03-24 |
| cnvd-2015-01905 | IBM Rational Focal Point安全绕过漏洞 | 2015-03-20 | 2015-03-24 |
| cnvd-2015-01906 | IBM Rational Focal Point跨站脚本漏洞(CNVD-2015-01906) | 2015-03-20 | 2015-03-24 |
| cnvd-2015-01907 | IBM Rational Focal Point HTML注入漏洞(CNVD-2015-01907) | 2015-03-20 | 2015-03-24 |
| cnvd-2016-00942 | Easy Paint Tool SAI绘图软件处理sai文件拒绝服务漏洞 | 2015-03-20 | 2015-05-05 |
| cnvd-2015-01908 | Mono中间人欺骗漏洞 | 2015-03-23 | 2015-03-24 |
| cnvd-2015-01909 | OpenDaylight l2switch安全绕过漏洞 | 2015-03-23 | 2015-03-24 |
| cnvd-2015-01910 | OpenDaylight OpenFlow插件安全绕过漏洞 | 2015-03-23 | 2015-03-24 |
| cnvd-2015-01911 | OpenDaylight OpenFlow插件安全绕过漏洞(CNVD-2015-01911) | 2015-03-23 | 2015-03-24 |
| cnvd-2015-01912 | OpenDaylight Helium验证绕过漏洞 | 2015-03-23 | 2015-03-24 |
| cnvd-2015-01913 | Nullsoft Scriptable Install System Inetc插件安全绕过漏洞 | 2015-03-23 | 2015-03-24 |
| cnvd-2015-01914 | Joomla! 'com_tpjobs'组件'id_c[]'参数SQL注入漏洞 | 2015-03-23 | 2015-03-24 |
| cnvd-2015-01915 | SuperWebMailer跨站脚本漏洞 | 2015-03-23 | 2015-03-24 |
| cnvd-2015-01916 | MyBB cache handler漏洞 | 2015-03-23 | 2015-03-24 |
| cnvd-2015-01917 | Fortinet Single Sign On collectoragent.exe栈缓冲区溢出漏洞 | 2015-03-23 | 2015-03-24 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2006-avi-208 | Vulnérabilité de SAP SAPDBA | 2006-05-22T00:00:00.000000 | 2006-05-22T00:00:00.000000 |
| certa-2006-avi-209 | Vulnérabilité de Skype pour Microsoft Windows | 2006-05-22T00:00:00.000000 | 2006-05-22T00:00:00.000000 |
| certa-2006-avi-210 | Vulnérabilité dans Cyrus IMAP Server | 2006-05-23T00:00:00.000000 | 2006-05-23T00:00:00.000000 |
| certa-2006-avi-211 | Vulnérabilité de Dia | 2006-05-23T00:00:00.000000 | 2006-06-08T00:00:00.000000 |
| certa-2006-avi-212 | Vulnérabilité des routeurs Linksys WRT54G | 2006-05-23T00:00:00.000000 | 2006-05-24T00:00:00.000000 |
| certa-2006-avi-213 | Vulnérabilité dans Xoops | 2006-05-23T00:00:00.000000 | 2006-05-23T00:00:00.000000 |
| certa-2006-avi-214 | Vulnérabilité de GNU Binutils | 2006-05-23T00:00:00.000000 | 2006-05-23T00:00:00.000000 |
| certa-2006-avi-215 | Plusieurs vulnérabilités dans les produits HP OpenView | 2006-05-24T00:00:00.000000 | 2006-05-24T00:00:00.000000 |
| certa-2006-avi-216 | Vulnérabilités dans PostgreSQL | 2006-05-24T00:00:00.000000 | 2006-08-21T00:00:00.000000 |
| certa-2006-avi-217 | Vulnérabilité de WebObjects pour Apple Xcode Tools | 2006-05-24T00:00:00.000000 | 2006-05-24T00:00:00.000000 |
| certa-2006-avi-218 | Multiples vulnérabilités dans Tor | 2006-05-26T00:00:00.000000 | 2006-05-26T00:00:00.000000 |
| certa-2006-avi-219 | Vulnérabilités dans Drupal | 2006-05-26T00:00:00.000000 | 2006-05-26T00:00:00.000000 |
| certa-2006-avi-220 | Vulnérabilité dans le client VPN de Cisco | 2006-05-26T00:00:00.000000 | 2006-05-26T00:00:00.000000 |
| certa-2006-avi-221 | Vulnérabilité dans Symantec AntiVirus et Client Security | 2006-05-28T00:00:00.000000 | 2006-06-12T00:00:00.000000 |
| certa-2006-avi-222 | Vulnérabilités de cURL | 2006-05-29T00:00:00.000000 | 2006-09-28T00:00:00.000000 |
| certa-2006-avi-223 | Vulnérabilité de Plume CMS | 2006-05-31T00:00:00.000000 | 2006-05-31T00:00:00.000000 |
| certa-2006-avi-224 | Multiples Vulnérabilités dans libTIFF | 2006-06-01T00:00:00.000000 | 2006-06-01T00:00:00.000000 |
| certa-2006-avi-225 | Vulnérabilité dans F-Secure Anti-Virus pour Microsoft Exchange | 2006-06-01T00:00:00.000000 | 2006-06-01T00:00:00.000000 |
| certa-2006-avi-506 | Vulnérabilité dans libpng | 2006-06-01T00:00:00.000000 | 2006-11-17T00:00:00.000000 |
| certa-2006-avi-226 | Multiples vulnérabilités dans FreeBSD | 2006-06-02T00:00:00.000000 | 2006-06-02T00:00:00.000000 |
| certa-2006-avi-227 | Multiples vulnérabilités dans les produits Mozilla | 2006-06-02T00:00:00.000000 | 2007-10-15T00:00:00.000000 |
| certa-2006-avi-228 | Vulnérabilités dans Claroline | 2006-06-06T00:00:00.000000 | 2006-06-06T00:00:00.000000 |
| certa-2006-avi-229 | Vulnérabilité dans SquirrelMail | 2006-06-07T00:00:00.000000 | 2006-08-02T00:00:00.000000 |
| certa-2006-avi-230 | Vulnérabilité de Sun StorADE | 2006-06-07T00:00:00.000000 | 2006-06-07T00:00:00.000000 |
| certa-2006-avi-231 | Vulnérabilité dans MySQL | 2006-06-08T00:00:00.000000 | 2006-06-12T00:00:00.000000 |
| certa-2006-avi-232 | Vulnérabilité dans Qbik WinGate | 2006-06-09T00:00:00.000000 | 2006-06-09T00:00:00.000000 |
| certa-2006-avi-233 | Vulnérabilité de DotClear | 2006-06-09T00:00:00.000000 | 2006-06-09T00:00:00.000000 |
| certa-2006-avi-234 | Vulnérabilités dans SpamAssassin | 2006-06-12T00:00:00.000000 | 2006-06-27T00:00:00.000000 |
| certa-2006-avi-235 | Vulnérabilités dans Wordpress | 2006-06-12T00:00:00.000000 | 2006-06-12T00:00:00.000000 |
| certa-2006-avi-236 | Vulnérabilités dans LibTIFF | 2006-06-12T00:00:00.000000 | 2006-06-27T00:00:00.000000 |