Recent vulnerabilities

Recent vulnerabilities from
Select from 69 available sources using the dropdown above.
ID CVSS Description Vendor Product Published Updated
CVE-2026-6410
5.3 (3.1)
@fastify/static vulnerable to path traversal in direct… @fastify/static
 @fastify/static
 2026-04-16T13:29:08.120Z 2026-04-16T14:19:36.780Z
CVE-2026-4160
5.3 (3.1)
Fluent Forms – Customizable Contact Forms, Survey, Qui… techjewel
 Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder
 2026-04-16T13:27:09.207Z 2026-04-16T14:12:35.951Z
CVE-2026-6414
5.9 (3.1)
@fastify/static vulnerable to route guard bypass via e… @fastify/static
 @fastify/static
 2026-04-16T13:09:03.526Z 2026-04-16T13:48:52.393Z
CVE-2026-31843
10 (4.0)
9.8 (3.1)
The goodoneuz/pay-uz Laravel package (<= 2.2.24) … goodoneuz
 pay-uz
 2026-04-16T13:02:55.701Z 2026-04-16T19:30:21.203Z
CVE-2025-15621
5.7 (4.0)
Sparx Enterprise Architect Client does not verify the … Sparx Systems Pty Ltd.
 Sparx Enterprise Architect
 2026-04-16T12:40:08.962Z 2026-04-16T12:51:51.633Z
CVE-2026-3155
3.1 (3.1)
OneSignal – Web Push Notifications <= 3.8.0 - Missing … onesignal
 OneSignal – Web Push Notifications
 2026-04-16T11:21:22.226Z 2026-04-16T14:00:56.681Z
CVE-2026-3369
5.4 (3.1)
Better Find and Replace – AI-Powered Suggestions <= 1.… codesolz
 Better Find and Replace – AI-Powered Suggestions
 2026-04-16T11:21:21.822Z 2026-04-16T14:04:23.811Z
CVE-2026-3489
7.5 (3.1)
DirectoryPress – Business Directory And Classified Ad … designinvento
 DirectoryPress – Business Directory And Classified Ad Listing
 2026-04-16T11:21:21.179Z 2026-04-16T14:05:03.740Z
CVE-2025-12624
6 (3.1)
Improper Token Invalidation in WSO2 Identity Server Al… WSO2
 WSO2 Identity Server
 2026-04-16T10:25:19.789Z 2026-04-16T12:30:14.886Z
CVE-2025-6024
6.1 (3.1)
Cross-Site Scripting via Authentication Endpoint in Mu… WSO2
 WSO2 API Manager
 2026-04-16T09:48:45.244Z 2026-04-16T12:30:22.824Z
CVE-2024-10242
6.1 (3.1)
Reflected Cross-Site Scripting via Authentication Endp… WSO2
 WSO2 API Manager
 2026-04-16T09:45:46.115Z 2026-04-16T12:30:30.619Z
CVE-2024-8010
3.5 (3.1)
XML External Entity Injection via Publisher in WSO2 AP… WSO2
 WSO2 API Manager
 2026-04-16T09:39:20.130Z 2026-04-16T12:30:36.466Z
CVE-2024-4867
5.4 (3.1)
Cross-Site Scripting via Developer Portal in WSO2 API … WSO2
 WSO2 API Manager
 2026-04-16T09:32:40.941Z 2026-04-16T12:30:42.568Z
CVE-2026-23772
7.3 (3.1)
Dell Storage Manager - Replay Manager for Microso… Dell
 Storage Manager
 2026-04-16T08:30:56.774Z 2026-04-17T03:55:13.852Z
CVE-2024-2374
7.5 (3.1)
XML External Entity Injection in Multiple WSO2 Product… WSO2
 WSO2 API Manager
 2026-04-16T08:12:58.247Z 2026-04-16T12:30:49.250Z
CVE-2026-0718
5.3 (3.1)
Post Grid Gutenberg Blocks for News, Magazines, Blog W… wpxpo
 Post Grid Gutenberg Blocks for News, Magazines, Blog Websites – PostX
 2026-04-16T07:39:50.799Z 2026-04-16T12:55:16.326Z
CVE-2025-14868
8.8 (3.1)
Career Section <= 1.6 - Cross-Site Request Forgery to … shahinurislam
 Career Section
 2026-04-16T07:39:49.576Z 2026-04-16T12:52:42.034Z
CVE-2026-41035
7.4 (3.1)
In rsync 3.0.1 through 3.4.1, receive_xattr relie… Samba
 rsync
 2026-04-16T06:53:05.237Z 2026-04-22T03:03:52.565Z
CVE-2026-3876
7.2 (3.1)
Prismatic <= 3.7.3 - Unauthenticated Stored Cross-Site… specialk
 Prismatic
 2026-04-16T06:44:53.787Z 2026-04-16T14:13:20.711Z
CVE-2026-3355
6.1 (3.1)
Customer Reviews for WooCommerce <= 5.101.0 - Reflecte… ivole
 Customer Reviews for WooCommerce
 2026-04-16T06:44:53.276Z 2026-04-16T14:25:11.362Z
CVE-2025-13364
6.4 (3.1)
WP Maps – Store Locator,Google Maps,OpenStreetMap,Mapb… flippercode
 WP Maps – Store Locator,Google Maps,OpenStreetMap,Mapbox,Listing,Directory & Filters
 2026-04-16T06:44:52.144Z 2026-04-16T12:04:16.719Z
CVE-2026-3875
6.4 (3.1)
BetterDocs <= 4.3.8 - Authenticated (Contributor+) Sto… wpdevteam
 BetterDocs – Knowledge Base Docs & FAQ Solution for Elementor & Block Editor
 2026-04-16T06:44:51.744Z 2026-04-16T13:41:59.186Z
CVE-2026-3995
4.4 (3.1)
OPEN-BRAIN <= 0.5.0 - Authenticated (Administrator+) S… faridsaniee
 OPEN-BRAIN
 2026-04-16T06:44:51.340Z 2026-04-16T12:04:24.073Z
CVE-2026-1572
6.4 (3.1)
Livemesh Addons by Elementor <= 9.0 - Missing Authoriz… livemesh
 Livemesh Addons by Elementor
 2026-04-16T06:44:50.911Z 2026-04-16T12:55:37.314Z
CVE-2026-1620
8.8 (3.1)
Livemesh Addons by Elementor <= 9.0 - Authenticated (C… livemesh
 Livemesh Addons by Elementor
 2026-04-16T06:44:50.305Z 2026-04-16T12:55:49.055Z
CVE-2026-41034
5 (3.1)
ONLYOFFICE DocumentServer before 9.3.0 has an unt… Ascensio
 ONLYOFFICE DocumentServer
 2026-04-16T06:06:44.570Z 2026-04-16T12:31:05.251Z
CVE-2026-3861
6.5 (3.1)
LINE client for iOS versions prior to 26.3.0 cont… LINE Corporation
 LINE client for iOS
 2026-04-16T05:54:05.194Z 2026-04-16T12:31:11.953Z
CVE-2026-41030
6.2 (3.1)
In ONLYOFFICE DesktopEditors before 9.3.0, the up… Ascensio
 ONLYOFFICE DesktopEditors
 2026-04-16T05:51:21.338Z 2026-04-16T12:31:19.989Z
CVE-2026-3581
5.3 (3.1)
Basic Google Maps Placemarks <= 1.10.7 - Missing Autho… iandunn
 Basic Google Maps Placemarks
 2026-04-16T05:29:55.137Z 2026-04-16T13:44:00.613Z
CVE-2026-3773
6.5 (3.1)
Accessibility Suite by Ability, Inc <= 4.20 - Authenti… onlineada
 Accessibility Suite by Ability, Inc
 2026-04-16T05:29:54.754Z 2026-04-16T13:42:08.243Z
ID CVSS Description Vendor Product Published Updated
CVE-2026-6442
8.3 (3.1)
Improper Command Detection Logic Allows RCE in Cortex … Snowflake
 Cortex Code CLI
 2026-04-16T18:43:21.181Z 2026-04-16T18:54:58.366Z
CVE-2026-33121
8.7 (4.0)
DataEase has SQL Injection via Datasource Save Flow dataease
 dataease
 2026-04-16T18:16:02.485Z 2026-04-16T18:34:54.187Z
CVE-2026-33084
8.7 (4.0)
DataEase has SQL Injection through its getFieldEnumObj… dataease
 dataease
 2026-04-16T18:14:07.316Z 2026-04-18T02:40:47.771Z
CVE-2025-54510
5.9 (4.0)
A missing lock verification in AMD Secure Process… AMD
 AMD EPYC™ 9004 Series Processors
 2026-04-16T18:44:10.182Z 2026-04-16T19:10:19.002Z
CVE-2025-43937
6.6 (3.1)
Dell PowerScale OneFS, versions prior to 9.12.0.0… Dell
 PowerScale OneFS
 2026-04-16T18:03:08.750Z 2026-04-16T18:51:41.562Z
CVE-2025-43935
4.4 (3.1)
Dell PowerScale OneFS, versions prior to 9.12.0.0… Dell
 PowerScale OneFS
 2026-04-16T17:59:04.315Z 2026-04-16T19:38:28.840Z
CVE-2023-20585
5.6 (4.0)
Insufficient checks of the RMP on host buffer acc… AMD
 AMD EPYC™ 7003 Series Processors
 2026-04-16T18:42:28.281Z 2026-04-16T19:12:06.991Z
CVE-2026-41082
7.3 (3.1)
In OCaml opam before 2.5.1, a .install field cont… OCaml
 opam
 2026-04-16T17:32:40.068Z 2026-04-21T09:32:52.152Z
CVE-2026-33083
8.7 (4.0)
DataEase has SQL Injection in Order By Clause dataease
 dataease
 2026-04-16T17:52:37.255Z 2026-04-16T19:39:25.443Z
CVE-2026-33082
8.7 (4.0)
DataEase: SQL Injection in v2 Dataset Export dataease
 dataease
 2026-04-16T17:39:37.894Z 2026-04-16T18:41:46.111Z
CVE-2026-2336
8.7 (4.0)
Weak webstax_auth Cookie Authentication Allows Privile… Microchip
 IStaX
 2026-04-16T17:02:06.352Z 2026-04-16T17:34:39.672Z
CVE-2026-27820
1.7 (4.0)
zlib: Buffer Overflow in Zlib::GzipReader ungetc via l… ruby
 zlib
 2026-04-16T17:27:48.944Z 2026-04-16T18:20:21.451Z
CVE-2026-24749
5.3 (3.1)
Silverstripe Assets Module has a DBFile::getURL() perm… silverstripe
 silverstripe-assets
 2026-04-16T17:08:59.133Z 2026-04-18T02:36:26.887Z
CVE-2025-43883
4.1 (3.1)
Dell PowerScale OneFS, versions prior to 9.12.0.0… Dell
 PowerScale OneFS
 2026-04-16T17:54:09.831Z 2026-04-18T02:39:20.246Z
CVE-2026-41080
2.9 (3.1)
libexpat before 2.8.0 uses insufficient entropy, … libexpat project
 libexpat
 2026-04-16T16:52:01.177Z 2026-04-27T05:59:38.490Z
CVE-2025-36579
5.1 (3.1)
Dell Client Platform BIOS contains a Weak Passwor… Dell
 Dell Pro 14 Essential PV14250
 2026-04-16T16:05:32.561Z 2026-04-16T18:32:52.672Z
CVE-2026-5426
7.5 (3.1)
KnowledgeDeliver deployments before February 24, 2026 … Digital Knowledge
 KnowledgeDeliver
 2026-04-16T15:18:46.224Z 2026-04-18T02:31:32.234Z
CVE-2026-37100
6.5 (3.1)
An issue in the Bluetooth Low Energy (BLE) contro… n/a
 n/a
 2026-04-16T00:00:00.000Z 2026-04-18T02:26:33.302Z
CVE-2026-6409
7.1 (4.0)
Denial of Service (DoS) vulnerability exists in the Pr… Protocol Buffers
 Protobuf-php (Pecl)
 2026-04-16T14:30:51.568Z 2026-04-16T15:24:43.164Z
CVE-2026-3324
8.2 (3.1)
Authentication Bypass Zohocorp
 ManageEngine Log360
 2026-04-16T14:30:55.130Z 2026-04-16T15:21:19.911Z
CVE-2026-37347
9.1 (3.1)
SourceCodester Payroll Management and Information… n/a
 n/a
 2026-04-16T00:00:00.000Z 2026-04-16T15:38:38.249Z
CVE-2026-37346
4.7 (3.1)
SourceCodester Payroll Management and Information… n/a
 n/a
 2026-04-16T00:00:00.000Z 2026-04-16T15:44:44.805Z
CVE-2026-37345
9.8 (3.1)
SourceCodester Vehicle Parking Area Management Sy… n/a
 n/a
 2026-04-16T00:00:00.000Z 2026-04-16T15:42:56.413Z
CVE-2026-37344
7.2 (3.1)
SourceCodester Vehicle Parking Area Management Sy… n/a
 n/a
 2026-04-16T00:00:00.000Z 2026-04-18T02:24:10.031Z
CVE-2026-37343
7.2 (3.1)
SourceCodester Vehicle Parking Area Management Sy… n/a
 n/a
 2026-04-16T00:00:00.000Z 2026-04-18T02:21:26.859Z
CVE-2026-37342
7.2 (3.1)
SourceCodester Vehicle Parking Area Management Sy… n/a
 n/a
 2026-04-16T00:00:00.000Z 2026-04-18T02:18:42.566Z
CVE-2026-37341
7.2 (3.1)
SourceCodester Vehicle Parking Area Management Sy… n/a
 n/a
 2026-04-16T00:00:00.000Z 2026-04-18T02:16:24.628Z
CVE-2026-37340
9.8 (3.1)
SourceCodester Simple Music Cloud Community Syste… n/a
 n/a
 2026-04-16T00:00:00.000Z 2026-04-18T02:14:04.538Z
CVE-2026-37339
9.8 (3.1)
SourceCodester Simple Music Cloud Community Syste… n/a
 n/a
 2026-04-16T00:00:00.000Z 2026-04-18T02:11:23.662Z
CVE-2026-37338
9.4 (3.1)
SourceCodester Simple Music Cloud Community Syste… n/a
 n/a
 2026-04-16T00:00:00.000Z 2026-04-16T15:49:41.995Z
ID Description Published Updated
ID Severity Description Published Updated
ghsa-m32f-8vh9-2hh3
6.9 (3.1)
Keycloak: Arbitrary code execution via Stored Cross-Site Scripting (XSS) in organization selection … 2026-04-14T15:30:35Z 2026-04-16T01:34:56Z
ghsa-h62w-pgwx-cpqf
2.7 (3.1)
SourceCodester Patient Appointment Scheduler System v1.0 is vulnerable to SQL Injection in the file… 2026-04-14T15:30:35Z 2026-04-14T18:30:34Z
ghsa-h4hr-66wr-j77w
2.7 (3.1)
SourceCodester Patient Appointment Scheduler System v1.0 is vulnerable to arbitrary code execution … 2026-04-14T15:30:35Z 2026-04-14T18:30:34Z
ghsa-ggm3-44jr-6qqx
5.4 (3.1)
Stored XSS in Ivanti N-ITSM before version 2025.4 allows a remote authenticated attacker to obtain … 2026-04-14T15:30:35Z 2026-04-14T15:30:35Z
ghsa-96vp-26rc-8483
7.1 (3.1)
A maliciously crafted HTML payload, stored in a design name and exported to CSV, can trigger a Stor… 2026-04-14T15:30:35Z 2026-04-14T15:30:35Z
ghsa-5xvq-hmf7-8pf3
2.7 (3.1)
SourceCodester Patient Appointment Scheduler System v1.0 is vulnerable to SQL Injection in the file… 2026-04-14T15:30:35Z 2026-04-14T18:30:34Z
ghsa-483f-3c23-9fjm
2.7 (3.1)
SourceCodester Patient Appointment Scheduler System v1.0 is vulnerable to SQL Injection in the file… 2026-04-14T15:30:35Z 2026-04-14T18:30:34Z
ghsa-355c-p2wf-x6ff
7.1 (3.1)
A maliciously crafted HTML payload in a component name, when displayed during the delete confirmati… 2026-04-14T15:30:35Z 2026-04-14T15:30:35Z
ghsa-33rr-qfgw-97qc
2.7 (3.1)
SourceCodester Online Employees Work From Home Attendance System v1.0 is vulnerable to SQL Injectio… 2026-04-14T15:30:35Z 2026-04-14T18:30:34Z
ghsa-xxwj-xx57-672q
2.7 (3.1)
SourceCodester Storage Unit Rental Management System v1.0 is vulnerable to SQL Injection in the fil… 2026-04-14T15:30:34Z 2026-04-14T18:30:33Z
ghsa-xvm8-45r5-rf28
8.2 (4.0)
A vulnerability in the AdminServer component of OpenEdge on all supported platforms grants its auth… 2026-04-14T15:30:34Z 2026-04-14T15:30:34Z
ghsa-xrxf-jgv3-qmrm
9.8 (3.1)
OpenAI Codex CLI enables code execution through malicious MCP (Model Context Protocol) configuratio… 2026-04-14T15:30:34Z 2026-04-16T22:56:42Z
ghsa-xgq8-f73q-q3gm
7.4 (4.0)
.NET misconfiguration: use of impersonation vulnerability in upKeeper Solutions upKeeper Instant Pr… 2026-04-14T15:30:34Z 2026-04-14T15:30:34Z
ghsa-vrxf-fj4v-4j4w
6.5 (3.1)
A Local File Inclusion (LFI) vulnerability in the NFSen module (nfsen.inc.php) of LibreNMS 22.11.0-… 2026-04-14T15:30:34Z 2026-04-16T15:31:30Z
ghsa-px5r-qp49-693q
9.8 (3.1)
An issue in Hostbill v.2025-11-24 and 2025-12-01 allows a remote attacker to execute arbitrary code… 2026-04-14T15:30:34Z 2026-04-16T15:31:29Z
ghsa-ph84-76fm-mvm4
2.7 (3.1)
SourceCodester Online Employees Work From Home Attendance System v1.0 is vulnerable to SQL Injectio… 2026-04-14T15:30:34Z 2026-04-14T18:30:34Z
ghsa-jx2h-5gf7-p2qj
2.7 (3.1)
SourceCodester Online Employees Work From Home Attendance System v1.0 is vulnerable to SQL Injectio… 2026-04-14T15:30:34Z 2026-04-14T18:30:34Z
ghsa-h5cx-hfj5-x8v3
6.1 (3.1)
Leaflet versions up to and including 1.9.4 are vulnerable to Cross-Site Scripting (XSS) via the bin… 2026-04-14T15:30:34Z 2026-04-21T18:31:51Z
ghsa-ggj5-jcgr-fm9g
2.7 (3.1)
SourceCodester Storage Unit Rental Management System v1.0 is vulnerable to SQL Injection in the fil… 2026-04-14T15:30:34Z 2026-04-14T18:30:33Z
ghsa-fxwp-fxmc-jh57
4.6 (3.1)
A side-channel vulnerability exists in the implementation of BIP-39 mnemonic processing, as observe… 2026-04-14T15:30:34Z 2026-04-16T15:31:30Z
ghsa-fwc8-56f8-ccxh
2.7 (3.1)
Sourcecodester Storage Unit Rental Management System v1.0 is vulnerable to SQL injection in the fil… 2026-04-14T15:30:34Z 2026-04-14T18:30:33Z
ghsa-cghg-c2cv-qhxh
9.1 (4.0)
The OECH1 prefix encoding is intended to obfuscate values across the OpenEdge platform.  It has bee… 2026-04-14T15:30:34Z 2026-04-14T15:30:35Z
ghsa-997p-hfm2-4w8j
2.7 (3.1)
Sourcecodester Storage Unit Rental Management System v1.0 is vulnerable to SQL in the file /storage… 2026-04-14T15:30:34Z 2026-04-14T18:30:34Z
ghsa-2j5h-v6hf-cf8g
2.7 (3.1)
SourceCodester Online Employees Work From Home Attendance System v1.0 is vulnerable to SQL Injectio… 2026-04-14T15:30:34Z 2026-04-14T18:30:34Z
ghsa-2h65-97g8-x647
2.7 (3.1)
SourceCodester Online Employees Work From Home Attendance System v1.0 is vulnerable to SQL Injectio… 2026-04-14T15:30:34Z 2026-04-14T18:30:34Z
ghsa-9vq7-9h42-j88h
5.3 (4.0)
MCPHub has an authentication bypass 2026-04-14T12:31:28Z 2026-04-15T19:42:53Z
ghsa-56r8-2cmq-4v45
9.0 (4.0)
Improper neutralization of argument delimiters in a command ('argument injection') vulnerability in… 2026-04-14T12:31:28Z 2026-04-14T12:31:29Z
ghsa-446f-x529-8hw2
5.4 (3.1)
Kiuwan SAST improperly authorizes SSO logins for locally disabled mapped user accounts, allowing di… 2026-04-14T12:31:28Z 2026-04-14T21:31:46Z
ghsa-ww73-h4g4-66vr
5.3 (3.1)
Cleartext Transmission of Sensitive Information vulnerability in Apache APISIX. tencent-cloud-cls … 2026-04-14T09:30:45Z 2026-04-14T21:31:46Z
ghsa-r593-vh4q-g7mv
8.8 (3.1)
8.7 (4.0)
A vulnerability has been identified in RUGGEDCOM CROSSBOW Secure Access Manager Primary (SAM-P) (Al… 2026-04-14T09:30:45Z 2026-04-14T09:30:45Z
ID Severity Description Package Published Updated
pysec-2020-60
A stored cross-site scripting (XSS) vulnerability affects the Web UI in Locust before 1.3… locust 2020-11-09T21:15:00Z 2020-11-17T20:37:00Z
pysec-2020-159
In Alerta before version 8.1.0, users may be able to bypass LDAP authentication if they p… alerta-server 2020-11-06T18:15:00Z 2020-11-17T21:08:00Z
pysec-2020-26
Synopsys hub-rest-api-python (aka blackduck on PyPI) version 0.0.25 - 0.0.52 does not val… blackduck 2020-11-06T14:15:00Z 2021-09-01T06:49:41.380049Z
pysec-2020-106
In SaltStack Salt through 3002, salt-netapi improperly validates eauth credentials and to… salt 2020-11-06T08:15:00Z 2021-03-30T13:48:00Z
pysec-2020-105
The TLS module within SaltStack Salt through 3002 creates certificates with weak file per… salt 2020-11-06T08:15:00Z 2021-03-30T13:44:00Z
pysec-2020-104
An issue was discovered in SaltStack Salt through 3002. Sending crafted web requests to t… salt 2020-11-06T08:15:00Z 2021-03-30T13:29:00Z
pysec-2020-267
Red Discord Bot before version 3.4.1 has an unauthorized privilege escalation exploit in … red-discordbot 2020-10-28T17:15:00Z 2021-11-16T03:58:45.518170Z
pysec-2020-61
In lookatme (python/pypi package) versions prior to 2.3.0, the package automatically load… lookatme 2020-10-26T18:15:00Z 2020-11-13T16:40:00Z
pysec-2020-331
In Tensorflow before version 2.4.0, when the `boxes` argument of `tf.image.crop_and_resiz… tensorflow-gpu 2020-10-21T21:15:00Z 2021-12-09T06:35:15.790944Z
pysec-2020-330
In Tensorflow before version 2.4.0, an attacker can pass an invalid `axis` value to `tf.q… tensorflow-gpu 2020-10-21T21:15:00Z 2021-12-09T06:35:15.737663Z
pysec-2020-296
In Tensorflow before version 2.4.0, when the `boxes` argument of `tf.image.crop_and_resiz… tensorflow-cpu 2020-10-21T21:15:00Z 2021-12-09T06:34:44.028853Z
pysec-2020-295
In Tensorflow before version 2.4.0, an attacker can pass an invalid `axis` value to `tf.q… tensorflow-cpu 2020-10-21T21:15:00Z 2021-12-09T06:34:43.980213Z
pysec-2020-139
In Tensorflow before version 2.4.0, when the `boxes` argument of `tf.image.crop_and_resiz… tensorflow 2020-10-21T21:15:00Z 2021-09-01T08:19:35.637564Z
pysec-2020-138
In Tensorflow before version 2.4.0, an attacker can pass an invalid `axis` value to `tf.q… tensorflow 2020-10-21T21:15:00Z 2021-09-01T08:19:35.574576Z
pysec-2020-238
AuthRestServlet in Matrix Synapse before 1.21.0 is vulnerable to XSS due to unsafe interp… matrix-synapse 2020-10-19T17:15:00Z 2021-08-27T03:22:06.522203Z
pysec-2020-142
A mis-handling of invalid unicode characters in the Java implementation of Tink versions … tink 2020-10-19T13:15:00Z 2020-10-29T22:16:00Z
pysec-2020-59
** DISPUTED ** TAXII libtaxii through 1.1.117, as used in EclecticIQ OpenTAXII through 0.… libtaxii 2020-10-17T20:15:00Z 2020-10-27T19:51:00Z
pysec-2020-225
An issue was discovered in OpenStack blazar-dashboard before 1.3.1, 2.0.0, and 3.0.0. A u… blazar-dashboard 2020-10-16T06:15:00Z 2021-08-27T03:21:56.229273Z
pysec-2020-110
In the Channelmgnt plug-in for Sopel (a Python IRC bot) before version 1.0.3, malicious u… sopel-plugins-channelmgnt 2020-10-13T18:15:00Z 2021-05-04T14:02:00Z
pysec-2020-158
In xmpp-http-upload before version 0.4.0, when the GET method is attacked, attackers can … xmpp-http-upload 2020-10-06T19:15:00Z 2020-10-23T03:09:00Z
pysec-2020-220
A flaw was found in Ansible Base when using the aws_ssm connection plugin as garbage coll… ansible 2020-10-05T14:15:00Z 2025-10-31T04:43:53.616247Z
pysec-2020-221
A flaw was found in Ansible Base when using the aws_ssm connection plugin as there is no … ansible 2020-10-05T13:15:00Z 2023-06-22T16:29:43.777510Z
pysec-2020-223
In the course of work on the open source project it was discovered that authenticated use… apache-superset 2020-09-30T21:15:00Z 2021-08-27T03:21:55.668622Z
pysec-2020-263
A flaw was found in Django REST Framework versions before 3.12.0 and before 3.11.2. When … djangorestframework 2020-09-30T20:15:00Z 2021-11-16T03:58:43.874175Z
pysec-2020-148
urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request met… urllib3 2020-09-30T18:15:00Z 2020-10-14T05:15:00Z
pysec-2020-329
In TensorFlow Lite before versions 2.2.1 and 2.3.1, models using segment sum can trigger … tensorflow-gpu 2020-09-25T19:15:00Z 2021-12-09T06:35:15.686226Z
pysec-2020-328
In TensorFlow Lite before versions 2.2.1 and 2.3.1, models using segment sum can trigger … tensorflow-gpu 2020-09-25T19:15:00Z 2021-12-09T06:35:15.598802Z
pysec-2020-327
In TensorFlow Lite before versions 2.2.1 and 2.3.1, models using segment sum can trigger … tensorflow-gpu 2020-09-25T19:15:00Z 2021-12-09T06:35:15.513160Z
pysec-2020-326
In TensorFlow Lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, saved models in… tensorflow-gpu 2020-09-25T19:15:00Z 2021-12-09T06:35:15.416974Z
pysec-2020-325
In tensorflow-lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, if a TFLite sav… tensorflow-gpu 2020-09-25T19:15:00Z 2021-12-09T06:35:15.211180Z
ID Description Updated
ID Description Published Updated
mal-2026-1039 Malicious code in react-devtools-raycast (npm) 2026-02-25T04:33:21Z 2026-03-19T12:23:22Z
mal-2026-1037 Malicious code in get-fonts (npm) 2026-02-25T04:20:48Z 2026-03-19T12:23:20Z
mal-2026-1042 Malicious code in trae-browser-inspect (npm) 2026-02-25T03:30:34Z 2026-03-01T20:43:48Z
mal-2026-1028 Malicious code in examplereactnative76 (npm) 2026-02-24T22:45:56Z 2026-03-01T20:43:44Z
mal-2026-1026 Malicious code in rncalendareventsexample (npm) 2026-02-24T21:35:58Z 2026-03-01T20:43:47Z
mal-2026-1027 Malicious code in rtxbbtyols (npm) 2026-02-24T18:40:07Z 2026-04-01T12:28:03Z
mal-2026-1025 Malicious code in @unitedcapitalfinancialadvisors/finlife-component-library (npm) 2026-02-24T16:56:49Z 2026-03-01T20:43:42Z
mal-2026-1024 Malicious code in @protonme/routing (npm) 2026-02-24T16:56:49Z 2026-03-01T20:43:42Z
mal-2026-1023 Malicious code in @kiukicom/sidebar (npm) 2026-02-24T16:56:48Z 2026-03-01T20:43:42Z
mal-2026-1022 Malicious code in @coinmetro/app (npm) 2026-02-24T16:56:48Z 2026-03-01T20:43:42Z
mal-2026-1021 Malicious code in @atg-aml-shared/kyc-domain (npm) 2026-02-24T16:56:48Z 2026-03-01T20:43:42Z
mal-2026-1020 Malicious code in @ai-studio-web/app (npm) 2026-02-24T16:56:48Z 2026-03-01T20:43:42Z
mal-2026-1019 Malicious code in spark-audit-notify (PyPI) 2026-02-24T16:18:43Z 2026-02-24T17:28:41Z
mal-2026-1018 Malicious code in do-not-install-this-package-003 (PyPI) 2026-02-24T15:18:17Z 2026-03-15T17:45:28Z
mal-2026-1016 Malicious code in js-multer (npm) 2026-02-24T15:01:43Z 2026-03-01T20:43:45Z
mal-2026-1014 Malicious code in chai-iotype (npm) 2026-02-24T15:01:43Z 2026-03-19T12:23:19Z
mal-2026-1013 Malicious code in chai-as-pause (npm) 2026-02-24T14:59:19Z 2026-03-19T12:23:19Z
mal-2026-1017 Malicious code in json-mapping-srcs (npm) 2026-02-24T14:49:33Z 2026-03-19T12:23:21Z
mal-2026-1015 Malicious code in es1int-config (npm) 2026-02-24T14:44:00Z 2026-03-19T12:23:19Z
mal-2026-1006 Malicious code in chai-tools (npm) 2026-02-24T14:31:45Z 2026-03-19T12:23:19Z
mal-2026-1011 Malicious code in node-argon (npm) 2026-02-24T14:30:26Z 2026-03-19T12:23:22Z
mal-2026-1005 Malicious code in argon-web3-chain (npm) 2026-02-24T14:30:26Z 2026-03-01T20:43:43Z
mal-2026-1007 Malicious code in dotenvx-ext (npm) 2026-02-24T14:25:56Z 2026-03-19T12:23:19Z
mal-2026-1010 Malicious code in modify-setting (npm) 2026-02-24T14:18:58Z 2026-03-19T12:23:21Z
mal-2026-1008 Malicious code in es1int-re1ease (npm) 2026-02-24T14:08:28Z 2026-03-19T12:23:19Z
mal-2026-1012 Malicious code in ultimates-express (npm) 2026-02-24T14:01:31Z 2026-03-19T12:23:24Z
mal-2026-1009 Malicious code in express-soaps (npm) 2026-02-24T14:01:31Z 2026-03-19T12:23:20Z
mal-2026-1004 Malicious code in request-httpx-9 (PyPI) 2026-02-24T09:11:42Z 2026-02-24T09:11:42Z
mal-2026-1040 Malicious code in react-markdown-canvas (npm) 2026-02-23T22:01:02Z 2026-03-04T00:15:19Z
mal-2026-1002 Malicious code in newrubylogger (RubyGems) 2026-02-23T20:50:29Z 2026-02-23T20:50:29Z
ID Description Published Updated
ID Description Published Updated
wid-sec-w-2025-1150 Redis: Schwachstelle ermöglicht Denial of Service 2025-05-27T22:00:00.000+00:00 2025-12-03T23:00:00.000+00:00
wid-sec-w-2025-1149 Icinga: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2025-05-27T22:00:00.000+00:00 2025-08-13T22:00:00.000+00:00
wid-sec-w-2025-1148 vBulletin Connect: Mehrere Schwachstellen ermöglichen Codeausführung 2025-05-26T22:00:00.000+00:00 2025-06-01T22:00:00.000+00:00
wid-sec-w-2025-1147 Apache ActiveMQ: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2025-05-26T22:00:00.000+00:00 2025-07-31T22:00:00.000+00:00
wid-sec-w-2025-1146 Mattermost: Mehrere Schwachstellen ermöglicht nicht spezifizierten Angriff 2025-05-26T22:00:00.000+00:00 2025-05-26T22:00:00.000+00:00
wid-sec-w-2025-1145 Linux Kernel: Schwachstelle ermöglicht Denial of Service 2025-05-26T22:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2025-1144 GIMP: Mehrere Schwachstellen ermöglichen Codeausführung 2025-05-25T22:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2025-1143 Red Hat Enterprise Linux (python-tornado): Schwachstelle ermöglicht Denial of Service 2025-05-25T22:00:00.000+00:00 2026-02-04T23:00:00.000+00:00
wid-sec-w-2025-1142 NetApp ActiveIQ Unified Manager: Schwachstelle ermöglicht Offenlegung von Informationen, Manipulation von Dateien, und Denial of Service. 2025-05-25T22:00:00.000+00:00 2025-05-25T22:00:00.000+00:00
wid-sec-w-2025-1141 Red Hat Enterprise Linux (Kernel): Schwachstelle unspezifizierten Angriff 2025-05-25T22:00:00.000+00:00 2025-06-02T22:00:00.000+00:00
wid-sec-w-2025-1140 Red Hat Enterprise Linux (libsoup): Mehrere Schwachstellen 2025-05-25T22:00:00.000+00:00 2026-03-03T23:00:00.000+00:00
wid-sec-w-2025-1139 IBM SPSS: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2025-05-25T22:00:00.000+00:00 2025-05-25T22:00:00.000+00:00
wid-sec-w-2025-1138 Microsoft Windows Server 2025: Schwachstelle ermöglicht Privilegieneskalation 2025-05-25T22:00:00.000+00:00 2025-05-26T22:00:00.000+00:00
wid-sec-w-2025-1137 Bitwarden: Schwachstelle ermöglicht Cross-Site Scripting 2025-05-25T22:00:00.000+00:00 2025-05-25T22:00:00.000+00:00
wid-sec-w-2025-1136 Tenable Security Nessus Network Monitor: Mehrere Schwachstellen ermöglichen Privilegieneskalation 2025-05-22T22:00:00.000+00:00 2025-05-22T22:00:00.000+00:00
wid-sec-w-2025-1135 Asterisk: Mehrere Schwachstellen 2025-05-22T22:00:00.000+00:00 2025-06-02T22:00:00.000+00:00
wid-sec-w-2025-1134 Ghostscript: Schwachstelle ermöglicht Offenlegung von Informationen 2025-05-22T22:00:00.000+00:00 2025-11-17T23:00:00.000+00:00
wid-sec-w-2025-1133 Grafana: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2025-05-22T22:00:00.000+00:00 2025-06-17T22:00:00.000+00:00
wid-sec-w-2025-1132 OpenSSL: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2025-05-22T22:00:00.000+00:00 2025-12-11T23:00:00.000+00:00
wid-sec-w-2025-1131 Zoho ManageEngine ServiceDesk Plus: Schwachstelle ermöglicht Offenlegung von Informationen 2025-05-22T22:00:00.000+00:00 2025-05-22T22:00:00.000+00:00
wid-sec-w-2025-1130 Microsoft Edge: Schwachstelle ermöglicht Privilegieneskalation 2025-05-22T22:00:00.000+00:00 2025-06-29T22:00:00.000+00:00
wid-sec-w-2025-1129 Cisco WebEx: Mehrere Schwachstellen 2025-05-21T22:00:00.000+00:00 2025-05-22T22:00:00.000+00:00
wid-sec-w-2025-1128 Cisco Identity Services Engine (ISE): Mehrere Schwachstellen 2025-05-21T22:00:00.000+00:00 2025-05-21T22:00:00.000+00:00
wid-sec-w-2025-1127 Cisco Unified Intelligence Center und Cisco Unified Contact Center Express (UCCX): Mehrere Schwachstellen ermöglichen Privilegieneskalation 2025-05-21T22:00:00.000+00:00 2025-05-21T22:00:00.000+00:00
wid-sec-w-2025-1126 Google Chrome: Schwachstelle ermöglicht nicht spezifizierten Angriff 2025-05-21T22:00:00.000+00:00 2025-07-27T22:00:00.000+00:00
wid-sec-w-2025-1125 GStreamer: Schwachstelle ermöglicht Privilegieneskalation 2025-05-21T22:00:00.000+00:00 2025-05-21T22:00:00.000+00:00
wid-sec-w-2025-1124 Mozilla Firefox: Schwachstelle ermöglicht Darstellen falscher Informationen 2025-05-21T22:00:00.000+00:00 2025-05-21T22:00:00.000+00:00
wid-sec-w-2025-1123 Cisco Unified Contact Center Enterprise: Schwachstelle ermöglicht Manipulation von Daten 2025-05-21T22:00:00.000+00:00 2025-05-21T22:00:00.000+00:00
wid-sec-w-2025-1122 xwiki: Schwachstelle ermöglicht Privilegieneskalation 2025-05-21T22:00:00.000+00:00 2025-05-21T22:00:00.000+00:00
wid-sec-w-2025-1121 Trend Micro Apex Central: Mehrere Schwachstellen ermöglichen Codeausführung 2025-05-21T22:00:00.000+00:00 2025-05-21T22:00:00.000+00:00
ID Description Published Updated
icsa-21-173-03 CODESYS Control V2 communication 2021-06-22T00:00:00.000000Z 2021-06-22T00:00:00.000000Z
icsa-21-173-02 CODESYS V2 web server 2021-06-22T00:00:00.000000Z 2021-06-22T00:00:00.000000Z
icsa-21-173-01 Advantech WebAccess HMI Designer (Update A) 2021-06-22T00:00:00.000000Z 2021-11-09T00:00:00.000000Z
icsa-21-168-03 Advantech WebAccess/SCADA (Update A) 2021-06-17T00:00:00.000000Z 2021-08-24T00:00:00.000000Z
icsa-21-168-02 Softing OPC-UA C++ SDK 2021-06-17T00:00:00.000000Z 2021-06-17T00:00:00.000000Z
icsa-21-168-01 Schneider Electric Enerlin'X Com 'X 510 2021-06-17T00:00:00.000000Z 2021-06-17T00:00:00.000000Z
icsa-21-166-02 Automation Direct CLICK PLC CPU Modules 2021-06-15T00:00:00.000000Z 2021-06-15T00:00:00.000000Z
icsa-21-166-01 ThroughTek P2P SDK 2021-06-15T00:00:00.000000Z 2021-06-15T00:00:00.000000Z
icsma-21-161-01 ZOLL Defibrillator Dashboard 2021-06-10T00:00:00.000000Z 2021-06-10T00:00:00.000000Z
icsa-21-161-02 AGG Software Web Server Plugin 2021-06-10T00:00:00.000000Z 2021-06-10T00:00:00.000000Z
icsa-21-161-01 Rockwell Automation FactoryTalk Services Platform 2021-06-10T00:00:00.000000Z 2021-06-10T00:00:00.000000Z
icsa-21-159-02 Open Design Alliance Drawings SDK 2021-06-08T06:00:00.000000Z 2021-06-08T06:00:00.000000Z
icsa-24-331-01 Schneider Electric PowerLogic PM55xx and PowerLogic PM8ECC 2021-06-08T00:00:00.000000Z 2024-11-12T00:00:00.000000Z
icsa-21-159-14 Siemens JT2Go and Teamcenter Visualization 2021-06-08T00:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-21-159-13 Siemens SIMATIC RFID (Update B) 2021-06-08T00:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-21-159-12 Siemens Simcenter Femap 2021-06-08T00:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-21-159-11 Siemens SIMATIC NET CP 443-1 OPC UA 2021-06-08T00:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-21-159-10 Siemens SIMATIC TIM libcurl 2021-06-08T00:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-21-159-09 Siemens Solid Edge 2021-06-08T00:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-21-159-08 Siemens TIM 1531 IRC 2021-06-08T00:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-21-159-07 Siemens Mendix SAML Module 2021-06-08T00:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-21-159-06 Thales Sentinel LDK Run-Time Environment 2021-06-08T00:00:00.000000Z 2021-06-08T00:00:00.000000Z
icsa-21-159-05 Schneider Electric Modicon X80 2021-06-08T00:00:00.000000Z 2021-06-08T00:00:00.000000Z
icsa-21-159-04 Schneider Electric IGSS 2021-06-08T00:00:00.000000Z 2021-06-08T00:00:00.000000Z
icsa-21-159-03 AVEVA InTouch 2021-06-08T00:00:00.000000Z 2021-06-08T00:00:00.000000Z
icsa-21-159-01 Johnson Controls Metasys 2021-06-08T00:00:00.000000Z 2021-06-08T00:00:00.000000Z
icsa-21-154-01 Advantech iView 2021-06-03T00:00:00.000000Z 2021-06-03T00:00:00.000000Z
icsma-21-152-01 Hillrom Medical Device Management (Update B) 2021-06-01T00:00:00.000000Z 2021-12-14T00:00:00.000000Z
icsa-21-152-01 Siemens SIMATIC S7-1200 and S7-1500 CPU Families (Update A) 2021-05-28T00:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-21-147-05 Mitsubishi Electric MELSEC iQ-R Series 2021-05-27T00:00:00.000000Z 2021-05-27T00:00:00.000000Z
ID Description Published Updated
cisco-sa-20190501-asa-csrf Cisco Adaptive Security Appliance Software Cross-Site Request Forgery Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-apic-xss Cisco Application Policy Infrastructure Controller Web-Based Management Interface Cross-Site Scripting Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-apic-priv-escalation Cisco Application Policy Infrastructure Controller Privilege Escalation Vulnerability 2019-05-01T16:00:00+00:00 2019-05-09T16:00:10+00:00
cisco-sa-20190501-apic-info-disc Cisco Application Policy Infrastructure Controller Web-Based Management Interface Usage Information Disclosure Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-apic-encrypt Cisco Application Policy Infrastructure Controller Recoverable Encryption Key Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-aci-unmeasured-boot Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Unmeasured Boot Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190501-aci-insecure-fabric Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Insecure Fabric Authentication Vulnerability 2019-05-01T16:00:00+00:00 2019-05-13T19:30:32+00:00
cisco-sa-20190501-aci-hw-clock-util Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Privilege Escalation Vulnerability 2019-05-01T16:00:00+00:00 2019-05-09T15:55:09+00:00
cisco-sa-20190501-aci-filter-query Cisco Nexus 9000 Series Fabric Switches Application Centric Infrastructure Mode Filter Query Information Disclosure Vulnerability 2019-05-01T16:00:00+00:00 2019-05-01T16:00:00+00:00
cisco-sa-20190417-wlc-ssh Cisco Wireless LAN Controller Secure Shell Unauthorized Access Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-wlc-iapp Cisco Wireless LAN Controller Software IAPP Message Handling Denial of Service Vulnerabilities 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-wlc-gui Cisco Wireless LAN Controller Software GUI Configuration Denial of Service Vulnerabilities 2019-04-17T16:00:00+00:00 2019-04-18T18:04:38+00:00
cisco-sa-20190417-wlc-csrf Cisco Wireless LAN Controller Software Cross-Site Request Forgery Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-wlc-cert-dos Cisco Wireless LAN Controller Locally Significant Certificate Denial of Service Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-wlan-hijack Cisco Wireless LAN Controller Software Session Hijacking Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-umbrella-xss Cisco Umbrella Cross-Site Scripting Vulnerability 2019-04-17T16:00:00+00:00 2019-05-08T15:46:02+00:00
cisco-sa-20190417-ucs-cli-inj Cisco UCS B-Series Blade Servers Local Management CLI Arbitrary File Creation or CLI Parameter Injection Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-ucm-dos Cisco Unified Communications Manager Denial of Service Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-swim-proxy Cisco DNA Center Unintended Proxy Via SWIM Import Interface Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-res-xss Cisco Registered Envelope Service Stored Cross-Site Scripting Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-pnr-dos Cisco Prime Network Registrar Denial of Service Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-ise-xss Cisco Identity Services Engine Cross-Site Scripting Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-ise-ssl-dos Cisco Identity Services Engine SSL Renegotiation Denial of Service Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-iosxracl Cisco ASR 9000 Series Aggregation Services Routers ACL Bypass Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-iosxr-pim-dos Cisco IOS XR Software Protocol Independent Multicast Denial of Service Vulnerability 2019-04-17T16:00:00+00:00 2019-06-28T13:51:46+00:00
cisco-sa-20190417-ios-xr-dos Cisco IOS XR gRPC Software Denial of Service Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-ex-vcs-xsrf Cisco Expressway Series and Cisco TelePresence Video Communication Server Cross-Site Request Forgery Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-esa-filter-bypass Cisco Email Security Appliance Content Filter Bypass Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
cisco-sa-20190417-es-tvcs-dos Cisco Expressway Series and Cisco TelePresence Video Communication Server Denial of Service Vulnerability 2019-04-17T16:00:00+00:00 2019-05-03T19:50:01+00:00
cisco-sa-20190417-cfmc-xss Cisco Firepower Management Center Persistent Cross-Site Scripting Vulnerability 2019-04-17T16:00:00+00:00 2019-04-17T16:00:00+00:00
ID Description Published Updated
msrc_cve-2025-53040 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.43, 8.4.0-8.4.6 and 9.0.0-9.4.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). 2025-10-02T00:00:00.000Z 2025-10-23T01:06:07.000Z
msrc_cve-2025-49844 Redis Lua Use-After-Free may lead to remote code execution 2025-10-02T00:00:00.000Z 2025-10-08T01:01:53.000Z
msrc_cve-2025-47912 Insufficient validation of bracketed IPv6 hostnames in net/url 2025-10-02T00:00:00.000Z 2026-02-18T02:10:50.000Z
msrc_cve-2025-46819 Redis is vulnerable to DoS via specially crafted LUA scripts 2025-10-02T00:00:00.000Z 2025-10-10T01:37:12.000Z
msrc_cve-2025-46818 Redis: Authenticated users can execute LUA scripts as a different user 2025-10-02T00:00:00.000Z 2025-12-11T01:38:13.000Z
msrc_cve-2025-46817 Lua library commands may lead to integer overflow and potential RCE 2025-10-02T00:00:00.000Z 2025-10-10T01:36:56.000Z
msrc_cve-2025-40780 Cache poisoning due to weak PRNG 2025-10-02T00:00:00.000Z 2025-11-25T01:38:24.000Z
msrc_cve-2025-40778 Cache poisoning attacks with unsolicited RRs 2025-10-02T00:00:00.000Z 2025-11-25T01:38:19.000Z
msrc_cve-2025-40106 comedi: fix divide-by-zero in comedi_buf_munge() 2025-10-02T00:00:00.000Z 2025-11-01T01:02:23.000Z
msrc_cve-2025-40105 vfs: Don't leak disconnected dentries on umount 2025-10-02T00:00:00.000Z 2025-12-07T01:45:03.000Z
msrc_cve-2025-40104 ixgbevf: fix mailbox API compatibility by negotiating supported features 2025-10-02T00:00:00.000Z 2025-12-07T01:43:55.000Z
msrc_cve-2025-40103 smb: client: Fix refcount leak for cifs_sb_tlink 2025-10-02T00:00:00.000Z 2025-12-07T01:44:07.000Z
msrc_cve-2025-40102 KVM: arm64: Prevent access to vCPU events before init 2025-10-02T00:00:00.000Z 2026-03-31T14:57:55.000Z
msrc_cve-2025-40100 btrfs: do not assert we found block group item when creating free space tree 2025-10-02T00:00:00.000Z 2025-12-07T01:44:51.000Z
msrc_cve-2025-40099 cifs: parse_dfs_referrals: prevent oob on malformed input 2025-10-02T00:00:00.000Z 2025-12-07T01:45:14.000Z
msrc_cve-2025-40097 ALSA: hda: Fix missing pointer check in hda_component_manager_init function 2025-10-02T00:00:00.000Z 2025-10-31T01:09:31.000Z
msrc_cve-2025-40096 drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies 2025-10-02T00:00:00.000Z 2025-12-07T01:44:30.000Z
msrc_cve-2025-40095 usb: gadget: f_rndis: Refactor bind path to use __free() 2025-10-02T00:00:00.000Z 2025-10-31T01:09:26.000Z
msrc_cve-2025-40094 usb: gadget: f_acm: Refactor bind path to use __free() 2025-10-02T00:00:00.000Z 2025-10-31T01:10:37.000Z
msrc_cve-2025-40093 usb: gadget: f_ecm: Refactor bind path to use __free() 2025-10-02T00:00:00.000Z 2025-10-31T01:10:21.000Z
msrc_cve-2025-40092 usb: gadget: f_ncm: Refactor bind path to use __free() 2025-10-02T00:00:00.000Z 2025-10-31T01:10:32.000Z
msrc_cve-2025-40090 ksmbd: fix recursive locking in RPC handle list access 2025-10-02T00:00:00.000Z 2025-10-31T01:10:10.000Z
msrc_cve-2025-40088 hfsplus: fix slab-out-of-bounds read in hfsplus_strcasecmp() 2025-10-02T00:00:00.000Z 2025-10-31T01:10:26.000Z
msrc_cve-2025-40087 NFSD: Define a proc_layoutcommit for the FlexFiles layout type 2025-10-02T00:00:00.000Z 2025-12-07T01:44:18.000Z
msrc_cve-2025-40085 ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card 2025-10-02T00:00:00.000Z 2025-12-07T01:41:15.000Z
msrc_cve-2025-40084 ksmbd: transport_ipc: validate payload size before reading handle 2025-10-02T00:00:00.000Z 2025-12-07T01:40:52.000Z
msrc_cve-2025-40083 net/sched: sch_qfq: Fix null-deref in agg_dequeue 2025-10-02T00:00:00.000Z 2025-12-07T01:41:04.000Z
msrc_cve-2025-40082 hfsplus: fix slab-out-of-bounds read in hfsplus_uni2asc() 2025-10-02T00:00:00.000Z 2026-02-28T01:04:41.000Z
msrc_cve-2025-40081 perf: arm_spe: Prevent overflow in PERF_IDX2OFF() 2025-10-02T00:00:00.000Z 2025-10-29T01:04:15.000Z
msrc_cve-2025-40080 nbd: restrict sockets to TCP and UDP 2025-10-02T00:00:00.000Z 2025-10-29T01:03:21.000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
opensuse-su-2025:14614-1 harfbuzz-devel-10.1.0-2.1 on GA media 2025-01-02T00:00:00Z 2025-01-02T00:00:00Z
opensuse-su-2025:14613-1 velero-1.15.1-1.1 on GA media 2025-01-01T00:00:00Z 2025-01-01T00:00:00Z
opensuse-su-2025:14612-1 sops-3.9.3-1.1 on GA media 2025-01-01T00:00:00Z 2025-01-01T00:00:00Z
opensuse-su-2024:14611-1 libQt6Pdf6-6.8.1-2.1 on GA media 2024-12-29T00:00:00Z 2024-12-29T00:00:00Z
opensuse-su-2024:14610-1 assimp-devel-5.4.3-3.1 on GA media 2024-12-29T00:00:00Z 2024-12-29T00:00:00Z
opensuse-su-2024:0417-1 Security update for chromium 2024-12-28T11:45:06Z 2024-12-28T11:45:06Z
opensuse-su-2024:14609-1 libparaview5_12-5.12.1-2.1 on GA media 2024-12-22T00:00:00Z 2024-12-22T00:00:00Z
opensuse-su-2024:14608-1 govulncheck-vulndb-0.0.20241220T214820-1.1 on GA media 2024-12-22T00:00:00Z 2024-12-22T00:00:00Z
opensuse-su-2024:0413-1 Security update for python-python-sql 2024-12-21T13:02:20Z 2024-12-21T13:02:20Z
opensuse-su-2024:0412-1 Security update for python-python-sql 2024-12-21T13:02:17Z 2024-12-21T13:02:17Z
opensuse-su-2024:14607-1 chromedriver-131.0.6778.204-1.1 on GA media 2024-12-21T00:00:00Z 2024-12-21T00:00:00Z
opensuse-su-2024:14606-1 teleport-17.1.0-1.1 on GA media 2024-12-20T00:00:00Z 2024-12-20T00:00:00Z
opensuse-su-2024:14605-1 tuned-2.24.1.0+git.90c24ee-1.1 on GA media 2024-12-19T00:00:00Z 2024-12-19T00:00:00Z
opensuse-su-2024:14604-1 logcli-3.3.2-1.1 on GA media 2024-12-19T00:00:00Z 2024-12-19T00:00:00Z
opensuse-su-2024:14603-1 govulncheck-vulndb-0.0.20241218T202206-1.1 on GA media 2024-12-19T00:00:00Z 2024-12-19T00:00:00Z
opensuse-su-2024:14602-1 tailscale-1.78.3-2.1 on GA media 2024-12-18T00:00:00Z 2024-12-18T00:00:00Z
opensuse-su-2024:14601-1 python310-xhtml2pdf-0.2.16-2.1 on GA media 2024-12-18T00:00:00Z 2024-12-18T00:00:00Z
opensuse-su-2024:14600-1 libmozjs-128-0-128.5.1-3.1 on GA media 2024-12-18T00:00:00Z 2024-12-18T00:00:00Z
opensuse-su-2024:14599-1 govulncheck-vulndb-0.0.20241213T205935-1.1 on GA media 2024-12-18T00:00:00Z 2024-12-18T00:00:00Z
opensuse-su-2024:14598-1 docker-stable-24.0.9_ce-6.1 on GA media 2024-12-18T00:00:00Z 2024-12-18T00:00:00Z
opensuse-su-2024:14597-1 docker-27.4.1_ce-12.1 on GA media 2024-12-18T00:00:00Z 2024-12-18T00:00:00Z
opensuse-su-2024:14596-1 clamav-1.4.1-1.1 on GA media 2024-12-18T00:00:00Z 2024-12-18T00:00:00Z
opensuse-su-2024:14595-1 traefik2-2.11.16-1.1 on GA media 2024-12-17T00:00:00Z 2024-12-17T00:00:00Z
opensuse-su-2024:14594-1 libmozjs-115-0-115.15.0-4.1 on GA media 2024-12-17T00:00:00Z 2024-12-17T00:00:00Z
opensuse-su-2024:14593-1 helm-3.16.4-1.1 on GA media 2024-12-17T00:00:00Z 2024-12-17T00:00:00Z
opensuse-su-2024:14592-1 git-bug-0.8.0+git.1733745604.d499b6e-1.1 on GA media 2024-12-17T00:00:00Z 2024-12-17T00:00:00Z
opensuse-su-2024:14591-1 emacs-29.4-11.1 on GA media 2024-12-17T00:00:00Z 2024-12-17T00:00:00Z
opensuse-su-2024:14590-1 traefik-3.2.3-1.1 on GA media 2024-12-16T00:00:00Z 2024-12-16T00:00:00Z
opensuse-su-2024:14589-1 libmozjs-78-0-78.15.0-7.1 on GA media 2024-12-16T00:00:00Z 2024-12-16T00:00:00Z
opensuse-su-2024:14588-1 libmozjs-128-0-128.5.1-2.1 on GA media 2024-12-16T00:00:00Z 2024-12-16T00:00:00Z
ID Description Published Updated
ID Description Published Updated
rhsa-2025:22167 Red Hat Security Advisory: tigervnc security update 2025-11-26T07:17:26+00:00 2026-03-18T03:12:06+00:00
rhsa-2025:22163 Red Hat Security Advisory: libxml2 security update 2025-11-26T05:49:49+00:00 2026-04-13T20:13:37+00:00
rhsa-2025:22164 Red Hat Security Advisory: tigervnc security update 2025-11-26T05:26:30+00:00 2026-03-18T03:12:07+00:00
rhsa-2025:22162 Red Hat Security Advisory: libxml2 security update 2025-11-26T05:26:29+00:00 2026-04-13T20:13:37+00:00
rhsa-2025:22124 Red Hat Security Advisory: kernel-rt security update 2025-11-25T18:17:51+00:00 2026-03-19T17:34:09+00:00
rhsa-2025:22095 Red Hat Security Advisory: kernel security update 2025-11-25T17:26:16+00:00 2026-03-19T17:34:08+00:00
rhsa-2025:22096 Red Hat Security Advisory: tigervnc security update 2025-11-25T17:25:56+00:00 2026-03-18T03:12:07+00:00
rhsa-2025:22087 Red Hat Security Advisory: kernel-rt security update 2025-11-25T16:42:52+00:00 2026-03-19T17:34:10+00:00
rhsa-2025:22090 Red Hat Security Advisory: Red Hat build of Keycloak 26.4.6 Images Security Update 2025-11-25T16:24:09+00:00 2026-03-18T03:12:04+00:00
rhsa-2025:22088 Red Hat Security Advisory: Red Hat build of Keycloak 26.2.11 Images Security Update 2025-11-25T16:12:38+00:00 2026-03-18T03:12:03+00:00
rhsa-2025:22091 Red Hat Security Advisory: Red Hat build of Keycloak 26.4.6 Security Update 2025-11-25T16:07:25+00:00 2026-03-18T03:12:05+00:00
rhsa-2025:22089 Red Hat Security Advisory: Red Hat build of Keycloak 26.2.11 Security Update 2025-11-25T16:06:13+00:00 2026-03-18T03:12:03+00:00
rhsa-2025:22077 Red Hat Security Advisory: tigervnc security update 2025-11-25T13:07:15+00:00 2026-03-18T03:12:08+00:00
rhsa-2025:22072 Red Hat Security Advisory: kernel security update 2025-11-25T12:37:05+00:00 2026-03-19T17:34:07+00:00
rhsa-2025:22068 Red Hat Security Advisory: RHTAS 1.3.1 - Tech Preview Release of Model Transparency 2025-11-25T11:12:13+00:00 2026-03-26T20:58:31+00:00
rhsa-2025:22066 Red Hat Security Advisory: kernel security update 2025-11-25T10:41:59+00:00 2026-03-19T17:34:07+00:00
rhsa-2025:22063 Red Hat Security Advisory: cups security update 2025-11-25T10:25:49+00:00 2026-04-13T20:13:36+00:00
rhsa-2025:22058 Red Hat Security Advisory: RHTAS 1.3.1 - Tech Preview Release Of the Policy Controller Operator 2025-11-25T08:59:13+00:00 2026-03-19T17:31:14+00:00
rhsa-2025:22051 Red Hat Security Advisory: tigervnc security update 2025-11-25T08:39:49+00:00 2026-03-18T03:12:05+00:00
rhsa-2025:22055 Red Hat Security Advisory: tigervnc security update 2025-11-25T08:31:09+00:00 2026-03-18T03:12:04+00:00
rhsa-2025:22056 Red Hat Security Advisory: tigervnc security update 2025-11-25T08:24:14+00:00 2026-03-18T03:12:05+00:00
rhsa-2025:22033 Red Hat Security Advisory: expat security update 2025-11-25T08:03:54+00:00 2026-04-13T20:13:36+00:00
rhsa-2025:22030 Red Hat Security Advisory: podman security update 2025-11-25T08:02:25+00:00 2026-04-14T07:56:32+00:00
rhsa-2025:22040 Red Hat Security Advisory: xorg-x11-server security update 2025-11-25T07:57:39+00:00 2026-03-18T03:11:45+00:00
rhsa-2025:22041 Red Hat Security Advisory: tigervnc security update 2025-11-25T07:56:54+00:00 2026-03-18T03:12:07+00:00
rhsa-2025:22034 Red Hat Security Advisory: expat security update 2025-11-25T07:36:20+00:00 2026-04-13T20:13:36+00:00
rhsa-2025:22035 Red Hat Security Advisory: expat security update 2025-11-25T07:17:39+00:00 2026-04-13T20:13:36+00:00
rhsa-2025:22019 Red Hat Security Advisory: pam security update 2025-11-25T06:23:39+00:00 2026-03-18T03:11:10+00:00
rhsa-2025:22011 Red Hat Security Advisory: buildah security update 2025-11-25T05:23:44+00:00 2026-04-14T07:56:31+00:00
rhsa-2025:22013 Red Hat Security Advisory: libsoup security update 2025-11-25T05:12:59+00:00 2026-03-19T17:34:07+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
suse-su-2025:21107-1 Security update for kernel-livepatch-MICRO-6-0_Update_4 2025-11-28T08:19:28Z 2025-11-28T08:19:28Z
suse-su-2025:21098-1 Security update for kernel-livepatch-MICRO-6-0_Update_9 2025-11-28T08:19:28Z 2025-11-28T08:19:28Z
suse-su-2025:21097-1 Security update for kernel-livepatch-MICRO-6-0_Update_8 2025-11-28T08:19:28Z 2025-11-28T08:19:28Z
suse-su-2025:21096-1 Security update for kernel-livepatch-MICRO-6-0_Update_7 2025-11-28T08:19:28Z 2025-11-28T08:19:28Z
suse-su-2025:21095-1 Security update for kernel-livepatch-MICRO-6-0_Update_6 2025-11-28T08:19:28Z 2025-11-28T08:19:28Z
suse-su-2025:21094-1 Security update for kernel-livepatch-MICRO-6-0_Update_5 2025-11-28T08:19:28Z 2025-11-28T08:19:28Z
suse-su-2025:21093-1 Security update for kernel-livepatch-MICRO-6-0_Update_4 2025-11-28T08:19:28Z 2025-11-28T08:19:28Z
suse-su-2025:21092-1 Security update for kernel-livepatch-MICRO-6-0_Update_3 2025-11-28T08:19:28Z 2025-11-28T08:19:28Z
suse-su-2025:21085-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_3 2025-11-28T08:14:04Z 2025-11-28T08:14:04Z
suse-su-2025:21161-1 Security update for openssh 2025-11-28T07:46:20Z 2025-11-28T07:46:20Z
suse-su-2025:21128-1 Security update for openssh 2025-11-28T07:46:20Z 2025-11-28T07:46:20Z
suse-su-2025:4285-1 Security update for the Linux Kernel (Live Patch 62 for SUSE Linux Enterprise 15 SP3) 2025-11-27T22:34:36Z 2025-11-27T22:34:36Z
suse-su-2025:21159-1 Security update for dovecot24 2025-11-27T20:19:42Z 2025-11-27T20:19:42Z
suse-su-2025:21158-1 Security update for himmelblau 2025-11-27T20:17:50Z 2025-11-27T20:17:50Z
suse-su-2025:4283-1 Security update for the Linux Kernel (Live Patch 21 for SUSE Linux Enterprise 15 SP5) 2025-11-27T19:04:00Z 2025-11-27T19:04:00Z
suse-su-2025:4282-1 Security update for the Linux Kernel (Live Patch 11 for SUSE Linux Enterprise 15 SP6) 2025-11-27T16:34:16Z 2025-11-27T16:34:16Z
suse-su-2025:21152-1 Security update for tomcat11 2025-11-27T15:47:37Z 2025-11-27T15:47:37Z
suse-su-2025:4281-1 Security update for the Linux Kernel (Live Patch 43 for SUSE Linux Enterprise 15 SP4) 2025-11-27T15:04:07Z 2025-11-27T15:04:07Z
suse-su-2025:4278-1 Security update for glib2 2025-11-27T13:13:51Z 2025-11-27T13:13:51Z
suse-su-2025:4277-1 Security update for python313 2025-11-27T13:13:43Z 2025-11-27T13:13:43Z
suse-su-2025:21084-1 Security update for sssd 2025-11-27T11:13:31Z 2025-11-27T11:13:31Z
suse-su-2025:21150-1 Security update for libvirt 2025-11-27T10:24:18Z 2025-11-27T10:24:18Z
suse-su-2025:21082-1 Security update for libvirt 2025-11-27T10:24:18Z 2025-11-27T10:24:18Z
suse-su-2025:21149-1 Security update for xwayland 2025-11-27T10:10:58Z 2025-11-27T10:10:58Z
suse-su-2025:4275-1 Security update for the Linux Kernel (Live Patch 15 for SUSE Linux Enterprise 15 SP6) 2025-11-27T10:04:14Z 2025-11-27T10:04:14Z
suse-su-2025:4274-1 Security update for buildah 2025-11-27T08:13:05Z 2025-11-27T08:13:05Z
suse-su-2025:4273-1 Security update for rubygem-rack 2025-11-27T08:12:25Z 2025-11-27T08:12:25Z
suse-su-2025:4272-1 Security update for gnutls 2025-11-27T08:11:48Z 2025-11-27T08:11:48Z
suse-su-2025:4271-1 Security update for gnutls 2025-11-27T08:11:37Z 2025-11-27T08:11:37Z
suse-su-2025:4269-1 Security update for the Linux Kernel (Live Patch 12 for SUSE Linux Enterprise 15 SP6) 2025-11-26T21:10:56Z 2025-11-26T21:10:56Z
ID Description Published Updated
alsa-2024:0157 Important: .NET 7.0 security update 2024-01-10T00:00:00Z 2024-01-11T19:02:02Z
alsa-2024:0156 Important: .NET 6.0 security update 2024-01-10T00:00:00Z 2024-01-11T22:19:35Z
alsa-2024:0155 Moderate: gnutls security update 2024-01-10T00:00:00Z 2024-01-11T19:42:21Z
alsa-2024:0152 Important: .NET 8.0 security update 2024-01-10T00:00:00Z 2024-01-11T16:40:36Z
alsa-2024:0151 Important: .NET 7.0 security update 2024-01-10T00:00:00Z 2024-01-11T16:35:33Z
alsa-2024:0150 Important: .NET 8.0 security update 2024-01-10T00:00:00Z 2024-01-11T20:16:03Z
alsa-2024:0143 Moderate: idm:DL1 security update 2024-01-10T00:00:00Z 2024-01-16T16:19:22Z
alsa-2024:0141 Moderate: ipa security update 2024-01-10T00:00:00Z 2024-01-11T22:26:05Z
alsa-2024:0133 Moderate: fence-agents security update 2024-01-10T00:00:00Z 2024-01-16T16:32:36Z
alsa-2024:0131 Moderate: pixman security update 2024-01-10T00:00:00Z 2024-01-11T20:31:01Z
alsa-2024:0130 Moderate: frr security update 2024-01-10T00:00:00Z 2024-01-16T16:44:16Z
alsa-2024:0125 Moderate: tomcat security update 2024-01-10T00:00:00Z 2024-01-16T16:57:24Z
alsa-2024:0121 Moderate: container-tools:4.0 security update 2024-01-10T00:00:00Z 2024-01-16T17:09:36Z
alsa-2024:0119 Moderate: libxml2 security update 2024-01-10T00:00:00Z 2024-01-12T11:58:47Z
alsa-2024:0116 Moderate: python-urllib3 security update 2024-01-10T00:00:00Z 2024-01-16T17:20:14Z
alsa-2024:0114 Moderate: python3 security update 2024-01-10T00:00:00Z 2024-01-16T20:00:19Z
alsa-2024:0113 Important: kernel security update 2024-01-10T00:00:00Z 2024-01-17T10:35:23Z
alsa-2024:0108 Moderate: nss security update 2024-01-10T00:00:00Z 2024-01-11T16:32:08Z
alsa-2024:0105 Moderate: nss security update 2024-01-10T00:00:00Z 2024-01-12T12:11:15Z
alsa-2024:0071 Important: squid security update 2024-01-08T00:00:00Z 2024-01-08T13:54:39Z
alsa-2024:0046 Important: squid:4 security update 2024-01-03T00:00:00Z 2024-01-08T14:59:53Z
alsa-2024:0025 Important: firefox security update 2024-01-02T00:00:00Z 2024-01-03T17:14:01Z
alsa-2024:0018 Important: tigervnc security update 2024-01-02T00:00:00Z 2024-01-04T14:24:25Z
alsa-2024:0012 Important: firefox security update 2024-01-02T00:00:00Z 2024-01-04T14:29:24Z
alsa-2024:0010 Important: tigervnc security update 2024-01-02T00:00:00Z 2024-01-03T17:17:24Z
alsa-2024:0003 Important: thunderbird security update 2024-01-02T00:00:00Z 2024-01-04T14:33:51Z
alsa-2024:0001 Important: thunderbird security update 2024-01-02T00:00:00Z 2024-01-03T17:21:11Z
alsa-2023:7884 Important: postgresql:15 security update 2023-12-20T00:00:00Z 2023-12-25T09:42:53Z
alsa-2023:7879 Moderate: opensc security update 2023-12-19T00:00:00Z 2023-12-22T09:44:51Z
alsa-2023:7877 Low: openssl security update 2023-12-19T00:00:00Z 2023-12-20T12:42:21Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
osv-2021-1235 Heap-buffer-overflow in ih264d_fill_bs1_16x16mb_pslice 2021-09-12T00:00:37.949727Z 2023-02-24T01:45:10.980832Z
osv-2021-1231 Heap-buffer-overflow in padding 2021-09-12T00:00:14.393392Z 2022-04-13T03:04:39.801760Z
osv-2021-1230 UNKNOWN READ in helper_ret_stb_mmu_x86_64 2021-09-12T00:00:11.430175Z 2022-04-13T03:32:30.819169Z
osv-2021-1229 Heap-buffer-overflow in flatbuffers::JsonPrinter::GenFieldOffset 2021-09-12T00:00:09.534319Z 2022-04-13T03:04:42.073120Z
osv-2021-1228 Heap-buffer-overflow in backup_lpf 2021-09-12T00:00:08.147879Z 2022-04-13T03:04:39.812193Z
osv-2021-1227 Heap-buffer-overflow in blosclz_compress 2021-09-11T00:01:45.898877Z 2022-04-13T03:04:35.752295Z
osv-2021-1224 Heap-buffer-overflow in srtp_stream_init_keys 2021-09-11T00:01:13.004929Z 2022-04-13T03:04:39.630798Z
osv-2021-1222 Invalid-free in swift_unexpectedError 2021-09-11T00:00:12.261007Z 2022-04-13T03:04:35.854242Z
osv-2021-1221 Heap-buffer-overflow in parse_via_param 2021-09-11T00:00:10.922189Z 2022-04-13T03:04:37.763544Z
osv-2021-1218 Heap-buffer-overflow in value_move 2021-09-10T00:01:30.327601Z 2022-04-13T03:04:39.785928Z
osv-2021-1217 Heap-use-after-free in ZEND_FETCH_OBJ_R_SPEC_CV_CONST_INLINE_HANDLER 2021-09-10T00:00:45.962198Z 2023-02-24T03:01:07.611720Z
osv-2021-1216 Global-buffer-overflow in fr_is_base16_nstd 2021-09-10T00:00:35.488094Z 2022-04-13T03:04:40.152583Z
osv-2021-1215 Invalid-free in swift_unexpectedError 2021-09-10T00:00:28.645690Z 2022-04-13T03:04:35.848549Z
osv-2021-1214 Invalid-free in swift_unexpectedError 2021-09-10T00:00:21.104468Z 2022-04-13T03:04:35.866501Z
osv-2021-1213 UNKNOWN WRITE in mrb_vm_exec 2021-09-10T00:00:14.325174Z 2022-04-13T03:04:39.667876Z
osv-2021-1211 Heap-buffer-overflow in MqttDecode_Publish 2021-09-09T00:00:39.898203Z 2022-04-13T03:04:33.994155Z
osv-2021-1206 Stack-use-after-scope in uprv_stricmp_70 2021-09-07T00:00:06.847136Z 2022-04-13T03:04:34.107648Z
osv-2021-1205 Heap-buffer-overflow in backup_lpf 2021-09-06T00:00:42.136598Z 2022-04-13T03:04:39.833196Z
osv-2021-1204 Heap-buffer-overflow in MqttClient_DecodePacket 2021-09-06T00:00:41.682340Z 2022-04-13T03:04:34.044844Z
osv-2021-1202 Heap-buffer-overflow in parse_to_param 2021-09-05T00:01:58.381058Z 2022-04-13T03:04:37.737870Z
osv-2021-1201 Heap-buffer-overflow in q_memchr 2021-09-05T00:00:46.108630Z 2022-04-13T03:04:37.747979Z
osv-2021-1199 Heap-use-after-free in i_zval_ptr_dtor 2021-09-04T00:01:34.068585Z 2023-05-26T15:17:48.975421Z
osv-2021-1198 Heap-buffer-overflow in parse_param_name 2021-09-04T00:01:26.375213Z 2022-04-13T03:04:37.768689Z
osv-2021-1197 Heap-buffer-overflow in H5O__linfo_decode 2021-09-04T00:00:54.649060Z 2022-04-13T03:04:42.974116Z
osv-2021-1196 Heap-buffer-overflow in parse_content_length 2021-09-04T00:00:36.456594Z 2022-04-13T03:04:37.732807Z
osv-2021-1195 Heap-buffer-overflow in trim_leading 2021-09-04T00:00:17.660776Z 2022-04-13T03:04:37.742922Z
osv-2021-1194 Heap-use-after-free in zend_string_release 2021-09-03T00:00:12.853762Z 2022-04-13T03:04:33.586949Z
osv-2021-1192 Segv on unknown address in arrow::DefaultBackend 2021-09-02T00:01:47.797383Z 2022-04-13T03:04:31.877586Z
osv-2021-1189 Segv on unknown address in arrow::DefaultBackend 2021-09-02T00:00:11.313252Z 2022-04-13T03:04:31.943435Z
osv-2021-1188 Heap-buffer-overflow in MqttDecode_Publish 2021-09-01T00:01:33.045505Z 2022-04-13T03:04:34.021202Z
ID Description Published Updated
ID Description Published Updated
bit-setuptools-2024-6345 Remote Code Execution in pypa/setuptools 2024-08-03T07:36:56.917Z 2026-02-11T09:09:18.507Z
bit-elasticsearch-2024-23444 Elasticsearch elasticsearch-certutil csr fails to encrypt private key 2024-08-02T07:18:37.023Z 2025-05-20T10:02:07.006Z
bit-discourse-2024-37165 Discourse has an XSS via Onebox system 2024-08-01T11:18:49.407Z 2025-05-20T10:02:07.006Z
bit-discourse-2024-37299 Discourse vulnerable to DoS via Tag Group 2024-08-01T11:18:31.703Z 2025-05-20T10:02:07.006Z
bit-discourse-2024-39320 Discourse allows iframe injection though default site setting 2024-08-01T11:17:54.016Z 2025-05-20T10:02:07.006Z
bit-tensorflow-2023-33976 TensorFlow segfault in array_ops.upper_bound 2024-08-01T07:38:17.914Z 2025-05-20T10:02:07.006Z
bit-kibana-2024-37281 Kibana Denial of Service issue 2024-08-01T07:22:52.204Z 2025-05-20T10:02:07.006Z
bit-elk-2024-37281 Kibana Denial of Service issue 2024-08-01T07:17:29.618Z 2025-05-20T10:02:07.006Z
bit-elasticsearch-2023-49921 2024-07-31T07:18:47.750Z 2025-04-03T14:40:37.652Z
bit-gitlab-2024-0231 Improper Control of Resource Identifiers ('Resource Injection') in GitLab 2024-07-26T07:32:53.059Z 2025-05-20T10:02:07.006Z
bit-gitlab-2024-5067 Exposure of Sensitive Information to an Unauthorized Actor in GitLab 2024-07-26T07:22:33.753Z 2025-05-20T10:02:07.006Z
bit-gitlab-2024-7047 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab 2024-07-26T07:19:35.456Z 2025-05-20T10:02:07.006Z
bit-gitlab-2024-7057 Improper Access Control in GitLab 2024-07-26T07:19:19.356Z 2025-05-20T10:02:07.006Z
bit-gitlab-2024-7060 Exposure of Sensitive Information to an Unauthorized Actor in GitLab 2024-07-26T07:19:04.262Z 2025-05-20T10:02:07.006Z
bit-gitlab-2024-7091 Exposure of Sensitive Information to an Unauthorized Actor in GitLab 2024-07-26T07:18:49.551Z 2025-05-20T10:02:07.006Z
bit-syncthing-2021-21404 Crash due to malformed relay protocol message 2024-07-24T19:38:44.658Z 2025-05-20T10:02:07.006Z
bit-syncthing-2022-46165 Cross-site Scripting (XSS) in Web GUI in syncthing 2024-07-24T19:38:31.354Z 2025-05-20T10:02:07.006Z
bit-apache-2024-40725 Apache HTTP Server: source code disclosure with handlers configured via AddType 2024-07-23T07:16:46.614Z 2025-05-20T10:02:07.006Z
bit-apache-2024-40898 Apache HTTP Server: SSRF with mod_rewrite in server/vhost context on Windows 2024-07-23T07:16:32.016Z 2025-05-20T10:02:07.006Z
bit-dotnet-2024-30105 .NET and Visual Studio Denial of Service Vulnerability 2024-07-20T07:17:25.261Z 2025-05-20T10:02:07.006Z
bit-dotnet-2024-35264 .NET and Visual Studio Remote Code Execution Vulnerability 2024-07-20T07:17:07.352Z 2025-05-20T10:02:07.006Z
bit-moodle-2024-34008 moodle: CSRF risk in analytics management of models 2024-07-19T07:25:34.028Z 2025-05-20T10:02:07.006Z
bit-gitlab-2024-6595 Uncontrolled Search Path Element in GitLab 2024-07-19T07:19:00.729Z 2025-05-20T10:02:07.006Z
bit-airflow-2024-39863 Apache Airflow: Potential XSS Vulnerability 2024-07-19T07:16:29.237Z 2025-05-20T10:02:07.006Z
bit-airflow-2024-39877 Apache Airflow: DAG Author Code Execution possibility in airflow-scheduler 2024-07-19T07:16:17.842Z 2025-05-20T10:02:07.006Z
bit-wordpress-2023-28492 2024-07-18T07:44:25.068Z 2024-07-18T07:56:34.499Z
bit-wordpress-2023-51474 2024-07-18T07:43:55.364Z 2025-03-24T17:31:38.612Z
bit-wordpress-2024-3755 2024-07-18T07:42:10.574Z 2025-03-24T17:31:38.612Z
bit-wordpress-2024-3756 2024-07-18T07:41:57.570Z 2025-03-24T17:31:38.612Z
bit-discourse-2024-38360 Denial of service via Watched Words in Discourse 2024-07-17T09:56:10.359Z 2025-05-20T10:02:07.006Z
ID Description Published Updated
ID Description Published Updated
ID Description Updated
ID Description Published Updated
ID Description Published Updated
certfr-2024-avi-0657 Multiples vulnérabilités dans les produits HPE Aruba Networking 2024-08-07T00:00:00.000000 2024-08-07T00:00:00.000000
certfr-2024-avi-0656 Multiples vulnérabilités dans les produits Mozilla 2024-08-07T00:00:00.000000 2024-08-07T00:00:00.000000
certfr-2024-avi-0655 Multiples vulnérabilités dans Google Android 2024-08-07T00:00:00.000000 2024-08-07T00:00:00.000000
certfr-2024-avi-0654 Vulnérabilité dans Kibana 2024-08-06T00:00:00.000000 2024-08-06T00:00:00.000000
certfr-2024-avi-0653 Vulnérabilité dans LibreOffice 2024-08-06T00:00:00.000000 2024-08-06T00:00:00.000000
certfr-2024-avi-0652 Vulnérabilité dans les produits Cisco 2024-08-05T00:00:00.000000 2024-08-05T00:00:00.000000
certfr-2024-avi-0651 Vulnérabilité dans les produits Trend Micro 2024-08-05T00:00:00.000000 2024-08-05T00:00:00.000000
certfr-2024-avi-0650 Multiples vulnérabilités dans Stormshield Management Center 2024-08-05T00:00:00.000000 2024-08-05T00:00:00.000000
certfr-2024-avi-0649 Vulnérabilité dans les produits Citrix 2024-08-05T00:00:00.000000 2024-08-05T00:00:00.000000
certfr-2024-avi-0648 Multiples vulnérabilités dans les produits SonicWall 2024-08-05T00:00:00.000000 2024-08-05T00:00:00.000000
certfr-2024-avi-0647 Multiples vulnérabilités dans Roundcube 2024-08-05T00:00:00.000000 2024-08-05T00:00:00.000000
certfr-2024-avi-0646 Multiples vulnérabilités dans les produits IBM 2024-08-02T00:00:00.000000 2024-08-02T00:00:00.000000
certfr-2024-avi-0645 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2024-08-02T00:00:00.000000 2024-08-02T00:00:00.000000
certfr-2024-avi-0644 Multiples vulnérabilités dans le noyau Linux de Red Hat 2024-08-02T00:00:00.000000 2024-08-02T00:00:00.000000
certfr-2024-avi-0643 Vulnérabilité dans les produits Moxa 2024-08-02T00:00:00.000000 2024-08-02T00:00:00.000000
certfr-2024-avi-0642 Multiples vulnérabilités dans Microsoft Edge 2024-08-02T00:00:00.000000 2024-08-02T00:00:00.000000
certfr-2024-avi-0641 Multiples vulnérabilités dans les produits NetApp 2024-08-01T00:00:00.000000 2024-08-01T00:00:00.000000
certfr-2024-avi-0640 Vulnérabilité dans Elastic Elasticsearch 2024-08-01T00:00:00.000000 2024-08-01T00:00:00.000000
certfr-2024-avi-0639 Vulnérabilité dans les produits Microsoft 2024-08-01T00:00:00.000000 2024-08-01T00:00:00.000000
certfr-2024-avi-0638 Vulnérabilité dans Elastic Kibana 2024-07-31T00:00:00.000000 2024-07-31T00:00:00.000000
certfr-2024-avi-0637 Multiples vulnérabilités dans HPE Aruba Networking ClearPass Policy Manager 2024-07-31T00:00:00.000000 2024-07-31T00:00:00.000000
certfr-2024-avi-0636 Multiples vulnérabilités dans Google Chrome 2024-07-31T00:00:00.000000 2024-07-31T00:00:00.000000
certfr-2024-avi-0635 Multiples vulnérabilités dans StormShield Management Center 2024-07-30T00:00:00.000000 2024-07-30T00:00:00.000000
certfr-2024-avi-0634 Multiples vulnérabilités dans les produits Apple 2024-07-30T00:00:00.000000 2024-07-30T00:00:00.000000
certfr-2024-avi-0633 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2024-07-26T00:00:00.000000 2024-07-26T00:00:00.000000
certfr-2024-avi-0632 Multiples vulnérabilités dans le noyau Linux de SUSE 2024-07-26T00:00:00.000000 2024-07-26T00:00:00.000000
certfr-2024-avi-0631 Multiples vulnérabilités dans le noyau Linux de Red Hat 2024-07-26T00:00:00.000000 2024-07-26T00:00:00.000000
certfr-2024-avi-0630 Multiples vulnérabilités dans IBM QRadar 2024-07-26T00:00:00.000000 2024-07-26T00:00:00.000000
certfr-2024-avi-0629 Vulnérabilité dans SPIP 2024-07-26T00:00:00.000000 2024-07-26T00:00:00.000000
certfr-2024-avi-0628 Multiples vulnérabilités dans Microsoft Edge 2024-07-26T00:00:00.000000 2024-07-26T00:00:00.000000
ID Description Published Updated
jvndb-2014-000143 "File Upload BBS" of i-HTTPD vulnerable to remote command execution 2014-12-09T14:40+09:00 2014-12-16T17:10+09:00
jvndb-2014-000148 Kaku-San-Sei Million Arthur for Android information management vulnerability 2014-12-04T12:28+09:00 2014-12-08T16:05+09:00
jvndb-2014-000147 KENT-WEB Clip Board vulnerable to cross-site scripting 2014-12-04T12:22+09:00 2014-12-08T16:03+09:00
jvndb-2014-000142 DBD::PgPP vulnerable to SQL injection 2014-12-03T15:09+09:00 2014-12-03T15:09+09:00
jvndb-2014-000140 LG Electronics mobile access routers lack access restrictions 2014-12-02T14:27+09:00 2014-12-08T16:07+09:00
jvndb-2014-000139 ARROWS Me F-11D vulnerability where arbitrary areas may be accessed 2014-12-02T14:26+09:00 2014-12-08T16:06+09:00
jvndb-2014-000138 OS command injection vulnerability in multiple FUJITSU Android devices 2014-12-02T14:21+09:00 2014-12-09T15:33+09:00
jvndb-2014-000137 Multiple improper data validation vulnerabilities in Syslink driver for Texas Instruments OMAP mobile processors 2014-12-02T13:56+09:00 2014-12-09T15:34+09:00
jvndb-2014-000136 SEIL Series routers vulnerable to denial-of-service (DoS) 2014-12-01T15:24+09:00 2014-12-09T15:31+09:00
jvndb-2014-000135 SEIL Series routers vulnerable to denial-of-service (DoS) 2014-12-01T15:18+09:00 2014-12-09T15:32+09:00
jvndb-2014-000141 FAST/TOOLS vulnerable to improper restriction of XML external entity references 2014-11-28T14:54+09:00 2014-12-10T10:16+09:00
jvndb-2014-000134 BSD Operating Systems vulnerable to denial-of-service (DoS) 2014-11-21T14:10+09:00 2014-12-16T17:08+09:00
jvndb-2014-000133 iLogScanner vulnerable to cross-site scripting 2014-11-14T14:38+09:00 2014-11-18T18:22+09:00
jvndb-2014-000118 Direct Web Remoting (DWR) vulnerable to cross-site scripting 2014-11-14T14:37+09:00 2014-11-25T17:51+09:00
jvndb-2014-000117 Direct Web Remoting (DWR) vulnerable to XML external entity injection 2014-11-14T14:33+09:00 2014-11-25T17:50+09:00
jvndb-2014-000131 Ichitaro series vulnerable to arbitrary code execution 2014-11-13T16:52+09:00 2014-11-27T17:58+09:00
jvndb-2014-004833 Vulnerability in JP1/NETM/DM and Job Management Partner 1/Software Distribution data reproduction functionality 2014-11-11T15:33+09:00 2015-03-03T16:59+09:00
jvndb-2014-000130 Multiple Cybozu products vulnerable to buffer overflow 2014-11-11T13:36+09:00 2014-11-25T17:52+09:00
jvndb-2014-000129 OpenAM vulnerable to denial-of-service (DoS) 2014-11-10T14:23+09:00 2014-11-20T10:09+09:00
jvndb-2014-000126 QNAP QTS vulnerable to OS command injection 2014-10-28T14:39+09:00 2015-12-25T13:47+09:00
jvndb-2014-000125 SumaHo for Android fails to verify SSL/TLS server certificates 2014-10-23T13:43+09:00 2018-03-07T14:24+09:00
jvndb-2014-000123 GIGAPOD vulnerable to denial-of-service (DoS) 2014-10-16T13:51+09:00 2024-05-13T18:10+09:00
jvndb-2014-000122 Aflax vulnerable to cross-site scripting 2014-10-16T13:35+09:00 2014-10-24T18:32+09:00
jvndb-2014-000121 BirdBlog vulnerable to cross-site scripting 2014-10-16T13:26+09:00 2014-10-16T13:26+09:00
jvndb-2014-000120 Huawei E5332 vulnerable to denial-of-service (DoS) 2014-10-10T14:03+09:00 2014-10-21T15:11+09:00
jvndb-2014-000119 Huawei E5332 vulnerable to denial-of-service (DoS) 2014-10-10T14:02+09:00 2014-10-21T15:15+09:00
jvndb-2014-004316 Safari issue in handling application cache 2014-09-25T14:54+09:00 2014-09-25T14:54+09:00
jvndb-2014-000116 Yahoo! Japan Box for Android issue where it fails to verify SSL server certificates 2014-09-25T14:54+09:00 2014-09-25T14:54+09:00
jvndb-2014-000112 N-Media file uploader vulnerability in handling uploaded files 2014-09-25T14:53+09:00 2014-09-29T11:39+09:00
jvndb-2014-000108 jigbrowser+ for iOS same origin policy bypass 2014-09-25T14:52+09:00 2014-09-29T11:47+09:00
ID Description Published Updated
cnvd-2026-04437 北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞(CNVD-C-2025-925298) 2025-11-25 2026-01-22
cnvd-2026-04436 北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞(CNVD-C-2025-925280) 2025-11-25 2026-01-22
cnvd-2026-04435 北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞(CNVD-C-2025-925115) 2025-11-25 2026-01-22
cnvd-2026-04434 北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞(CNVD-C-2025-924847) 2025-11-25 2026-01-22
cnvd-2026-04433 北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞(CNVD-C-2025-924158) 2025-11-25 2026-01-22
cnvd-2026-04432 北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞(CNVD-C-2025-923949) 2025-11-25 2026-01-22
cnvd-2026-04426 北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞(CNVD-C-2025-921601) 2025-11-25 2026-01-22
cnvd-2025-30596 WordPress插件Seriously Simple Podcasting信息泄露漏洞 2025-11-25 2025-12-12
cnvd-2025-30595 WordPress插件OneClick Chat to Order信息泄露漏洞 2025-11-25 2025-12-12
cnvd-2025-30594 WordPress插件LearnPress信息泄露漏洞 2025-11-25 2025-12-12
cnvd-2025-30260 WordPress插件CP Contact Form with PayPal存在未明漏洞 2025-11-25 2025-12-08
cnvd-2025-30259 WordPress插件Accessibility Toolkit by WebYes存在未明漏洞 2025-11-25 2025-12-08
cnvd-2025-30171 WordPress Import WP plugin信息泄露漏洞 2025-11-25 2025-12-05
cnvd-2025-30170 WordPress I Order Terms plugin跨站请求伪造漏洞 2025-11-25 2025-12-05
cnvd-2025-30169 WordPress HT Mega plugin跨站脚本漏洞 2025-11-25 2025-12-05
cnvd-2025-30168 WordPress Gutenverse plugin缺少授权漏洞 2025-11-25 2025-12-05
cnvd-2025-30167 WordPress Gutenverse Form plugin缺少授权漏洞 2025-11-25 2025-12-05
cnvd-2025-30166 WordPress EchBay Admin Security plugin跨站脚本漏洞 2025-11-25 2025-12-05
cnvd-2025-30165 WordPress Display Pages Shortcode plugin跨站脚本漏洞 2025-11-25 2025-12-05
cnvd-2025-30164 WordPress Custom Post Type plugin跨站请求伪造漏洞 2025-11-25 2025-12-05
cnvd-2025-30163 WordPress Custom Order Numbers for WooCommerce plugin缺少授权漏洞 2025-11-25 2025-12-05
cnvd-2025-30162 WordPress Checkbox plugin未经授权的数据丢失漏洞 2025-11-25 2025-12-05
cnvd-2025-30161 WordPress Chat Help plugin缺失授权漏洞 2025-11-25 2025-12-05
cnvd-2025-30160 WordPress Cart Weight for WooCommerce plugin缺失授权漏洞 2025-11-25 2025-12-05
cnvd-2025-30159 WordPress Bulma Shortcodes plugin跨站脚本漏洞 2025-11-25 2025-12-05
cnvd-2025-30158 WordPress Accordion Slider plugin跨站脚本漏洞 2025-11-25 2025-12-05
cnvd-2025-30134 WordPress ELEX WordPress HelpDesk & Customer Ticketing System plugin不安全的直接对象引用漏洞 2025-11-25 2025-12-05
cnvd-2025-30133 WordPress ELEX WordPress HelpDesk & Customer Ticketing System plugin未经授权的数据修改漏洞(CNVD-2025… 2025-11-25 2025-12-05
cnvd-2025-30132 WordPress ELEX WordPress HelpDesk & Customer Ticketing System plugin未经授权的数据修改漏洞(CNVD-2025… 2025-11-25 2025-12-05
cnvd-2025-30131 WordPress ELEX WordPress HelpDesk & Customer Ticketing System plugin未经授权的数据修改漏洞(CNVD-2025… 2025-11-25 2025-12-05
ID Description Published Updated
bdu:2025-16007 Уязвимость компонента Log File Handler модуля mod_auth веб-сервера lighttpd, позволяющая … 17.12.2025 17.12.2025
bdu:2025-16006 Уязвимость веб-интерфейса средства администрирования Juniper Networks Junos Space Securit… 17.12.2025 17.12.2025
bdu:2025-16005 Уязвимость модуля Packet Forwarding Engine (PFE) операционной системы JunOS, позволяющая … 17.12.2025 17.12.2025
bdu:2025-16004 Уязвимость компонента GET Parameter Handler плагина JoomlaUX JUX Real Estate для системы … 17.12.2025 17.12.2025
bdu:2025-16003 Уязвимость плагина JoomlaUX JUX Real Estate для системы управления контентом (CMS) Joomla… 17.12.2025 17.12.2025
bdu:2025-16002 Уязвимость программных решений, поддерживающих процесс закрытия, консолидации и составлен… 17.12.2025 17.12.2025
bdu:2025-16001 Уязвимость шлюза IBM Aspera HTTP Gateway, связанная с передачей критичной информации откр… 17.12.2025 17.12.2025
bdu:2025-16000 Уязвимость микропрограммного обеспечения ленточного накопителя IBM Storage TS4500, связан… 17.12.2025 17.12.2025
bdu:2025-15999 Уязвимость программного средства чтения и записи файлов Adobe DNG Software Development Ki… 17.12.2025 17.12.2025
bdu:2025-15998 Уязвимость программного средства чтения и записи файлов Adobe DNG Software Development Ki… 17.12.2025 17.12.2025
bdu:2025-15997 Уязвимость средства управления серверами Windows Admin Center, связанная с ошибками разгр… 17.12.2025 17.12.2025
bdu:2025-15996 Уязвимость приложения графического редактора для рабочего стола Adobe Creative Cloud Desk… 17.12.2025 17.12.2025
bdu:2025-15995 Уязвимость программ просмотра и редактирования PDF-файлов Acrobat DC, Acrobat Reader DC, … 17.12.2025 17.12.2025
bdu:2025-15994 Уязвимость программ просмотра и редактирования PDF-файлов Acrobat DC, Acrobat Reader DC, … 17.12.2025 17.12.2025
bdu:2025-15993 Уязвимость программ просмотра и редактирования PDF-файлов Acrobat DC, Acrobat Reader DC, … 17.12.2025 17.12.2025
bdu:2025-15992 Уязвимость программного средства чтения и записи файлов Adobe DNG Software Development Ki… 17.12.2025 17.12.2025
bdu:2025-15991 Уязвимость программного средства чтения и записи файлов Adobe DNG Software Development Ki… 17.12.2025 17.12.2025
bdu:2025-15990 Уязвимость панели управления веб-хостингом Plesk Obsidian, связанная с ошибками разгранич… 17.12.2025 17.12.2025
bdu:2025-15989 Уязвимость модуля Endpoint Manager веб-интерфейса управления системами IP-телефонии FreeP… 17.12.2025 17.12.2025
bdu:2025-15988 Уязвимость веб-системы обработки заявок для служб поддержки клиентов, технической поддерж… 16.12.2025 16.12.2025
bdu:2025-15987 Уязвимость комплекса прикладного программирования ПЛК CODESYS Development System, связанн… 16.12.2025 16.12.2025
bdu:2025-15986 Уязвимость программного средства автоматизации бизнес-процессов IBM Sterling B2B Integrat… 16.12.2025 16.12.2025
bdu:2025-15985 Уязвимость клиента IAM (Identity and Access Management) программного обеспечения для прое… 16.12.2025 16.12.2025
bdu:2025-15984 Уязвимость микропрограммного обеспечения сетевых интерфейсных модулей 432ES-IG3 Series A,… 16.12.2025 16.12.2025
bdu:2025-15983 Уязвимость платформы управления данными и оптимизации производственных процессов FactoryT… 16.12.2025 16.12.2025
bdu:2025-15982 Уязвимость платформы создания совместных веб-приложений XWiki Platform XWiki, связанная с… 16.12.2025 22.12.2025
bdu:2025-15981 Уязвимость интерфейса REST API платформы создания совместных веб-приложений XWiki Platfor… 16.12.2025 16.12.2025
bdu:2025-15980 Уязвимость расширений XWiki Platform Flamingo Skin Resources и XWiki Platform Web Templat… 16.12.2025 16.12.2025
bdu:2025-15979 Уязвимость плагина Redpen - Pipeline Reporter for Jira сервера автоматизации Jenkins, свя… 16.12.2025 16.12.2025
bdu:2025-15978 Уязвимость системного вызова ioctl драйвера ltq-ptm операционной системы для маршрутизато… 16.12.2025 16.12.2025
ID Description Updated
var-202510-1230 A cross-site request forgery security issue exists in the product and version listed. The… 2025-11-19T23:30:51.233000Z
var-202510-1671 Out-of-bounds write under specific condition in the pre-processing of JPEG decoding in li… 2025-11-19T23:30:51.205000Z
var-202510-2091 There is a Denial of Service(DoS)vulnerability in the ZTE MC889A Pro product. Due to insu… 2025-11-19T23:30:51.162000Z
var-202510-2219 On BIG-IP systems, undisclosed traffic can cause data corruption and unauthorized data mo… 2025-11-19T23:30:51.079000Z
var-202510-2282 D-Link DIR600L Ax FW116WWb01 was discovered to contain a buffer overflow via the curTime … 2025-11-19T23:30:51.038000Z
var-202510-2324 A vulnerability has been found in Tenda CH22 1.0.0.1. This affects the function fromSafeM… 2025-11-19T23:30:51.010000Z
var-202510-2345 A security flaw has been discovered in Tenda CH22 1.0.0.1. This impacts the function from… 2025-11-19T23:30:50.994000Z
var-202511-0002 /etc/avahi/services/z9.service can be Arbitrarily Written.This issue affects BLU-IC2: thr… 2025-11-19T23:30:50.052000Z
var-202511-0275 Multiple Devices are Sharing the Same Secrets for SDKSocket (TCP/5000).This issue affects… 2025-11-19T23:30:49.906000Z
var-202312-1293 TOTOLink A7000R V9.1.0u.6115_B20201022 has a stack overflow vulnerability via setOpModeCf… 2025-11-19T23:30:26.178000Z
var-202510-2087 D-Link DIR600L Ax FW116WWb01 was discovered to contain a buffer overflow via the curTime … 2025-11-19T23:30:22.142000Z
var-202510-2337 When using a multi-bladed platform with more than one blade, undisclosed traffic can caus… 2025-11-19T23:30:21.990000Z
var-202510-2358 D-Link DIR600L Ax FW116WWb01 was discovered to contain a buffer overflow via the curTime … 2025-11-19T23:30:21.973000Z
var-202510-2360 D-Link DIR-823G A1 v1.0.2B05 was discovered to contain a buffer overflow in the FillMacCl… 2025-11-19T23:30:21.957000Z
var-202510-3116 Inconsistent interpretation of http requests ('http request/response smuggling') in ASP.N… 2025-11-19T23:30:21.592000Z
var-201110-0491 AUTOMGEN versions up to and including 8.0.0.7 (also referenced as 8.022) contain a vulner… 2025-11-19T23:29:06.140000Z
var-202308-3286 The compare_parentcontrol_time function does not authenticate user input parameters, resu… 2025-11-19T23:28:53.404000Z
var-202508-0672 A vulnerability was identified in Tenda AC15 15.13.07.13. Affected by this vulnerability … 2025-11-19T23:28:49.745000Z
var-202509-1560 A security flaw has been discovered in D-Link DIR-825 up to 2.10. Affected by this vulner… 2025-11-19T23:28:49.514000Z
var-202509-3635 An issue was discovered in Tenda AC6 US_AC6V1.0BR_V15.03.05.16_multi_TD01 allowing attack… 2025-11-19T23:28:49.422000Z
var-202509-4454 The AC18 is a dual-band wireless router. The AC18 router developed by Shenzhen Jixiang T… 2025-11-19T23:28:49.382000Z
var-202510-0874 A denial-of-service security issue exists in the affected product and version. The securi… 2025-11-19T23:28:49.253000Z
var-202510-0895 D-Link DIR-816A2_FWv1.10CNB05 was discovered to contain a stack overflow via the statusch… 2025-11-19T23:28:49.237000Z
var-202510-2092 When a client SSL profile is configured on a virtual server, undisclosed requests can cau… 2025-11-19T23:28:49.131000Z
var-202510-2218 When IPsec is configured on the BIG-IP system, undisclosed traffic can cause the Traffic … 2025-11-19T23:28:49.059000Z
var-202510-2239 A vulnerability has been found in TOTOLINK A3300R 17.0.0cu.557_B20221024. The impacted el… 2025-11-19T23:28:49.042000Z
var-202510-2281 D-Link DIR600LAx FW116WWb01 was discovered to contain a buffer overflow via the curTime p… 2025-11-19T23:28:49.012000Z
var-202511-0001 A weakness has been identified in Tenda AC23 16.03.07.52. This impacts the function formS… 2025-11-19T23:28:48.104000Z
var-202511-0547 A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_F… 2025-11-19T23:28:47.796000Z
var-202208-2048 TOTOLINK N600R V4.3.0cu.7647_B20210106 was discovered to contain a hardcoded password for… 2025-11-19T23:27:46.996000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated