Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-24445 |
7.5 (3.1)
|
EV Energy ev.energy Improper Restriction of Excessive … |
EV Energy |
ev.energy |
2026-02-27T00:11:15.055Z | 2026-02-27T00:11:15.055Z |
| CVE-2026-27772 |
9.4 (3.1)
|
EV Energy ev.energy Missing Authentication for Critica… |
EV Energy |
ev.energy |
2026-02-27T00:09:12.986Z | 2026-02-27T00:09:12.986Z |
| CVE-2026-27773 |
6.5 (3.1)
|
SWITCH EV swtchenergy.com Insufficiently Protected Cre… |
SWITCH EV |
swtchenergy.com |
2026-02-27T00:03:43.458Z | 2026-02-27T00:03:43.458Z |
| CVE-2026-25778 |
7.3 (3.1)
|
SWITCH EV swtchenergy.com Insufficient Session Expiration |
SWITCH EV |
swtchenergy.com |
2026-02-27T00:02:20.479Z | 2026-02-27T00:02:20.479Z |
| CVE-2026-3272 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Tenda F453 httpd DhcpListClient fromDhcpListClient buf… |
Tenda |
F453 |
2026-02-27T00:02:12.958Z | 2026-02-27T17:19:02.067Z |
| CVE-2026-3271 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Tenda F453 httpd P2pListFilterof fromP2pListFilter buf… |
Tenda |
F453 |
2026-02-27T00:02:09.718Z | 2026-02-27T17:25:44.383Z |
| CVE-2026-26862 |
8.3 (3.1)
|
CleverTap Web SDK version 1.15.2 and earlier is v… |
n/a |
n/a |
2026-02-27T00:00:00.000Z | 2026-02-27T19:39:16.900Z |
| CVE-2026-26861 |
8.3 (3.1)
|
CleverTap Web SDK version 1.15.2 and earlier is v… |
n/a |
n/a |
2026-02-27T00:00:00.000Z | 2026-02-27T19:42:58.097Z |
| CVE-2025-69437 |
8.7 (3.1)
|
PublicCMS v5.202506.d and earlier is vulnerable t… |
n/a |
n/a |
2026-02-27T00:00:00.000Z | 2026-02-27T19:47:56.667Z |
| CVE-2026-25113 |
7.5 (3.1)
|
SWITCH EV swtchenergy.com Improper Restriction of Exce… |
SWITCH EV |
swtchenergy.com |
2026-02-26T23:59:46.758Z | 2026-02-26T23:59:46.758Z |
| CVE-2026-27767 |
9.4 (3.1)
|
SWITCH EV swtchenergy.com Missing Authentication for C… |
SWITCH EV |
swtchenergy.com |
2026-02-26T23:57:51.070Z | 2026-02-27T00:00:53.815Z |
| CVE-2026-22890 |
6.5 (3.1)
|
EV2GO ev2go.io Insufficiently Protected Credentials |
EV2GO |
ev2go.io |
2026-02-26T23:50:56.274Z | 2026-02-26T23:50:56.274Z |
| CVE-2026-20895 |
7.3 (3.1)
|
EV2GO ev2go.io Insufficient Session Expiration |
EV2GO |
ev2go.io |
2026-02-26T23:48:03.827Z | 2026-02-26T23:51:53.584Z |
| CVE-2026-25945 |
7.5 (3.1)
|
EV2GO ev2go.io Improper Restriction of Excessive Authe… |
EV2GO |
ev2go.io |
2026-02-26T23:46:14.876Z | 2026-02-26T23:46:14.876Z |
| CVE-2026-24731 |
9.4 (3.1)
|
EV2GO ev2go.io Missing Authentication for Critical Function |
EV2GO |
ev2go.io |
2026-02-26T23:43:51.003Z | 2026-02-26T23:52:30.793Z |
| CVE-2026-1585 |
8.4 (4.0)
6.7 (3.1)
|
An unquoted Windows service executable path vulne… |
Canon Inc. |
IJ Scan Utility |
2026-02-26T23:39:13.778Z | 2026-02-27T16:38:57.696Z |
| CVE-2026-20733 |
6.5 (3.1)
|
CloudCharge cloudcharge.se Insufficiently Protected Cr… |
CloudCharge |
cloudcharge.se |
2026-02-26T23:38:02.525Z | 2026-02-26T23:38:02.525Z |
| CVE-2026-27652 |
7.3 (3.1)
|
CloudCharge cloudcharge.se Insufficient Session Expiration |
CloudCharge |
cloudcharge.se |
2026-02-26T23:36:33.131Z | 2026-02-26T23:36:33.131Z |
| CVE-2025-40932 |
8.2 (3.1)
|
Apache::SessionX versions through 2.01 for Perl create… |
GRICHTER |
Apache::SessionX |
2026-02-26T23:33:37.083Z | 2026-02-27T18:41:24.407Z |
| CVE-2026-3270 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
psi-probe PSI Probe Whois Whois.java lookup server-sid… |
psi-probe |
PSI Probe |
2026-02-26T23:32:09.687Z | 2026-02-27T19:55:03.743Z |
| CVE-2026-3269 |
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
|
psi-probe PSI Probe Session ExpireSessionsController.j… |
psi-probe |
PSI Probe |
2026-02-26T23:32:07.430Z | 2026-02-27T19:57:57.822Z |
| CVE-2026-2597 |
7.5 (3.1)
|
Crypt::SysRandom::XS versions before 0.010 for Perl is… |
LEONT |
Crypt::SysRandom::XS |
2026-02-26T23:29:16.488Z | 2026-02-27T18:50:46.353Z |
| CVE-2026-25114 |
7.5 (3.1)
|
CloudCharge cloudcharge.se Improper Restriction of Exc… |
CloudCharge |
cloudcharge.se |
2026-02-26T23:27:18.456Z | 2026-02-26T23:27:18.456Z |
| CVE-2026-20781 |
9.4 (3.1)
|
CloudCharge cloudcharge.se Missing Authentication for … |
CloudCharge |
cloudcharge.se |
2026-02-26T23:24:00.964Z | 2026-02-26T23:24:00.964Z |
| CVE-2026-20791 |
6.5 (3.1)
|
Chargemap chargemap.com Insufficiently Protected Credentials |
Chargemap |
chargemap.com |
2026-02-26T23:10:16.841Z | 2026-02-26T23:10:16.841Z |
| CVE-2026-25711 |
7.3 (3.1)
|
Chargemap chargemap.com Insufficient Session Expiration |
Chargemap |
chargemap.com |
2026-02-26T23:08:22.088Z | 2026-02-26T23:08:22.088Z |
| CVE-2026-20792 |
7.5 (3.1)
|
Chargemap chargemap.com Improper Restriction of Excess… |
Chargemap |
chargemap.com |
2026-02-26T23:06:29.969Z | 2026-02-26T23:06:29.969Z |
| CVE-2026-25851 |
9.4 (3.1)
|
Chargemap chargemap.com Missing Authentication for Cri… |
Chargemap |
chargemap.com |
2026-02-26T23:04:13.166Z | 2026-02-26T23:04:13.166Z |
| CVE-2026-3268 |
5.3 (4.0)
5.4 (3.1)
5.4 (3.0)
|
psi-probe PSI Probe Session Attribute RemoveSessAttrib… |
psi-probe |
PSI Probe |
2026-02-26T23:02:08.067Z | 2026-02-27T17:27:38.521Z |
| CVE-2026-28280 |
6.1 (3.1)
|
`osctrl-admin` has Stored Cross-Site Scripting (XSS) i… |
jmpsec |
osctrl |
2026-02-26T23:00:58.040Z | 2026-02-26T23:00:58.040Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-25109 |
8 (3.1)
|
Copeland XWEB and XWEB Pro OS Command Injection |
Copeland |
Copeland XWEB 300D PRO |
2026-02-27T00:48:41.531Z | 2026-02-27T00:48:41.531Z |
| CVE-2026-25085 |
8.6 (3.1)
|
Copeland XWEB and XWEB Pro Unexpected Status Code or R… |
Copeland |
Copeland XWEB 300D PRO |
2026-02-27T00:33:06.657Z | 2026-02-27T00:33:06.657Z |
| CVE-2026-24695 |
8 (3.1)
|
Copeland XWEB and XWEB Pro OS Command Injection |
Copeland |
Copeland XWEB 300D PRO |
2026-02-27T00:51:01.649Z | 2026-02-27T00:51:01.649Z |
| CVE-2026-24689 |
8 (3.1)
|
Copeland XWEB and XWEB Pro OS Command Injection |
Copeland |
Copeland XWEB 300D PRO |
2026-02-27T00:47:26.332Z | 2026-02-27T00:47:26.332Z |
| CVE-2026-24663 |
9 (3.1)
|
Copeland XWEB and XWEB Pro OS Command Injection |
Copeland |
Copeland XWEB 300D PRO |
2026-02-27T00:36:49.215Z | 2026-02-27T00:36:49.215Z |
| CVE-2026-24517 |
8 (3.1)
|
Copeland XWEB and XWEB Pro OS Command Injection |
Copeland |
Copeland XWEB 300D PRO |
2026-02-27T00:43:35.813Z | 2026-02-27T00:43:35.813Z |
| CVE-2026-24445 |
7.5 (3.1)
|
EV Energy ev.energy Improper Restriction of Excessive … |
EV Energy |
ev.energy |
2026-02-27T00:11:15.055Z | 2026-02-27T00:11:15.055Z |
| CVE-2026-22878 |
6.5 (3.1)
|
Mobility46 mobility46.se Insufficiently Protected Cred… |
Mobility46 |
mobility46.se |
2026-02-27T00:25:23.952Z | 2026-02-27T00:25:23.952Z |
| CVE-2026-21718 |
10 (3.1)
|
Copeland XWEB and XWEB Pro Use of a Broken or Risky Cr… |
Copeland |
Copeland XWEB 300D PRO |
2026-02-27T00:34:55.895Z | 2026-02-27T00:34:55.895Z |
| CVE-2026-21389 |
8 (3.1)
|
Copeland XWEB and XWEB Pro OS Command Injection |
Copeland |
Copeland XWEB 300D PRO |
2026-02-27T00:38:51.109Z | 2026-02-27T00:38:51.109Z |
| CVE-2026-20910 |
8 (3.1)
|
Copeland XWEB and XWEB Pro OS Command Injection |
Copeland |
Copeland XWEB 300D PRO |
2026-02-27T00:46:14.644Z | 2026-02-27T00:46:14.644Z |
| CVE-2026-20902 |
8 (3.1)
|
Copeland XWEB and XWEB Pro OS Command Injection |
Copeland |
Copeland XWEB 300D PRO |
2026-02-27T00:49:44.858Z | 2026-02-27T00:49:44.858Z |
| CVE-2026-20742 |
8 (3.1)
|
Copeland XWEB and XWEB Pro OS Command Injection |
Copeland |
Copeland XWEB 300D PRO |
2026-02-27T00:42:12.910Z | 2026-02-27T00:42:12.910Z |
| CVE-2021-4456 |
6.5 (3.1)
|
Net::CIDR versions before 0.24 for Perl mishandle lead… |
MRSAM |
Net::CIDR |
2026-02-27T00:16:36.383Z | 2026-02-27T16:53:23.671Z |
| CVE-2026-3272 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Tenda F453 httpd DhcpListClient fromDhcpListClient buf… |
Tenda |
F453 |
2026-02-27T00:02:12.958Z | 2026-02-27T17:19:02.067Z |
| CVE-2026-3271 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Tenda F453 httpd P2pListFilterof fromP2pListFilter buf… |
Tenda |
F453 |
2026-02-27T00:02:09.718Z | 2026-02-27T17:25:44.383Z |
| CVE-2026-3270 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
psi-probe PSI Probe Whois Whois.java lookup server-sid… |
psi-probe |
PSI Probe |
2026-02-26T23:32:09.687Z | 2026-02-27T19:55:03.743Z |
| CVE-2026-3269 |
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
|
psi-probe PSI Probe Session ExpireSessionsController.j… |
psi-probe |
PSI Probe |
2026-02-26T23:32:07.430Z | 2026-02-27T19:57:57.822Z |
| CVE-2026-2597 |
7.5 (3.1)
|
Crypt::SysRandom::XS versions before 0.010 for Perl is… |
LEONT |
Crypt::SysRandom::XS |
2026-02-26T23:29:16.488Z | 2026-02-27T18:50:46.353Z |
| CVE-2026-27773 |
6.5 (3.1)
|
SWITCH EV swtchenergy.com Insufficiently Protected Cre… |
SWITCH EV |
swtchenergy.com |
2026-02-27T00:03:43.458Z | 2026-02-27T00:03:43.458Z |
| CVE-2026-27772 |
9.4 (3.1)
|
EV Energy ev.energy Missing Authentication for Critica… |
EV Energy |
ev.energy |
2026-02-27T00:09:12.986Z | 2026-02-27T00:09:12.986Z |
| CVE-2026-27767 |
9.4 (3.1)
|
SWITCH EV swtchenergy.com Missing Authentication for C… |
SWITCH EV |
swtchenergy.com |
2026-02-26T23:57:51.070Z | 2026-02-27T00:00:53.815Z |
| CVE-2026-27652 |
7.3 (3.1)
|
CloudCharge cloudcharge.se Insufficient Session Expiration |
CloudCharge |
cloudcharge.se |
2026-02-26T23:36:33.131Z | 2026-02-26T23:36:33.131Z |
| CVE-2026-25945 |
7.5 (3.1)
|
EV2GO ev2go.io Improper Restriction of Excessive Authe… |
EV2GO |
ev2go.io |
2026-02-26T23:46:14.876Z | 2026-02-26T23:46:14.876Z |
| CVE-2026-25851 |
9.4 (3.1)
|
Chargemap chargemap.com Missing Authentication for Cri… |
Chargemap |
chargemap.com |
2026-02-26T23:04:13.166Z | 2026-02-26T23:04:13.166Z |
| CVE-2026-25778 |
7.3 (3.1)
|
SWITCH EV swtchenergy.com Insufficient Session Expiration |
SWITCH EV |
swtchenergy.com |
2026-02-27T00:02:20.479Z | 2026-02-27T00:02:20.479Z |
| CVE-2026-25711 |
7.3 (3.1)
|
Chargemap chargemap.com Insufficient Session Expiration |
Chargemap |
chargemap.com |
2026-02-26T23:08:22.088Z | 2026-02-26T23:08:22.088Z |
| CVE-2026-25114 |
7.5 (3.1)
|
CloudCharge cloudcharge.se Improper Restriction of Exc… |
CloudCharge |
cloudcharge.se |
2026-02-26T23:27:18.456Z | 2026-02-26T23:27:18.456Z |
| CVE-2026-25113 |
7.5 (3.1)
|
SWITCH EV swtchenergy.com Improper Restriction of Exce… |
SWITCH EV |
swtchenergy.com |
2026-02-26T23:59:46.758Z | 2026-02-26T23:59:46.758Z |
| CVE-2026-24731 |
9.4 (3.1)
|
EV2GO ev2go.io Missing Authentication for Critical Function |
EV2GO |
ev2go.io |
2026-02-26T23:43:51.003Z | 2026-02-26T23:52:30.793Z |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-p8jq-98c2-8ggq |
5.4 (3.1)
2.1 (4.0)
|
A vulnerability was detected in psi-probe PSI Probe up to 5.3.0. The affected element is an unknown… | 2026-02-27T00:31:45Z | 2026-02-27T00:31:45Z |
| ghsa-m9p8-mq88-4q4g |
7.5 (3.1)
|
The WebSocket Application Programming Interface lacks restrictions on the number of authentication… | 2026-02-27T00:31:45Z | 2026-02-27T00:31:45Z |
| ghsa-m43j-vx3f-qc3c |
6.3 (3.1)
5.3 (4.0)
|
A vulnerability was found in go2ismail Asp.Net-Core-Inventory-Order-Management-System up to 9.20250… | 2026-02-27T00:31:45Z | 2026-02-27T00:31:45Z |
| ghsa-jqg2-vwg3-wvhv |
6.3 (3.1)
2.1 (4.0)
|
A vulnerability was determined in go2ismail Free-CRM up to b83c40a90726d5e58f0cc680ffdcaa28a03fb5d1… | 2026-02-27T00:31:45Z | 2026-02-27T00:31:45Z |
| ghsa-hq42-5rxw-2578 |
6.3 (3.1)
2.1 (4.0)
|
A vulnerability has been found in go2ismail Asp.Net-Core-Inventory-Order-Management-System up to 9.… | 2026-02-27T00:31:45Z | 2026-02-27T00:31:45Z |
| ghsa-926q-p427-pgcj |
9.4 (3.1)
|
WebSocket endpoints lack proper authentication mechanisms, enabling attackers to perform unauthori… | 2026-02-27T00:31:45Z | 2026-02-27T00:31:45Z |
| ghsa-792m-47fm-p6pr |
6.5 (3.1)
|
Charging station authentication identifiers are publicly accessible via web-based mapping platforms. | 2026-02-27T00:31:45Z | 2026-02-27T00:31:45Z |
| ghsa-6h58-g32m-9g69 |
7.3 (3.1)
5.5 (4.0)
|
A flaw has been found in itsourcecode School Management System 1.0. This impacts an unknown functio… | 2026-02-27T00:31:45Z | 2026-02-27T00:31:45Z |
| ghsa-627v-rfr6-xm8w |
9.4 (3.1)
|
WebSocket endpoints lack proper authentication mechanisms, enabling attackers to perform unauthori… | 2026-02-27T00:31:45Z | 2026-02-27T00:31:45Z |
| ghsa-576v-vjm2-9m8r |
6.5 (3.1)
|
Charging station authentication identifiers are publicly accessible via web-based mapping platforms. | 2026-02-27T00:31:45Z | 2026-02-27T00:31:45Z |
| ghsa-2wp6-xhp6-g2gw |
7.5 (3.1)
|
The WebSocket Application Programming Interface lacks restrictions on the number of authentication… | 2026-02-27T00:31:45Z | 2026-02-27T00:31:45Z |
| ghsa-24q2-h758-fvwc |
6.5 (3.1)
|
Charging station authentication identifiers are publicly accessible via web-based mapping platforms. | 2026-02-27T00:31:45Z | 2026-02-27T00:31:45Z |
| ghsa-8g8j-r87h-p36x |
8.4 (4.0)
|
Vitess users with backup storage access can gain unauthorized access to production deployment envir… | 2026-02-26T22:50:37Z | 2026-02-26T22:50:37Z |
| ghsa-465p-v42x-3fmj |
4.9 (3.1)
|
Sealed Secrets for Kubernetes: Rotate API Allows Scope Widening from Strict/Namespace-Wide to Clust… | 2026-02-26T22:49:14Z | 2026-02-26T22:49:14Z |
| ghsa-gj6x-q8rh-wj6x |
7.1 (4.0)
|
Curio exposes database credentials to users with network access through verbose HTTP error responses | 2026-02-26T22:48:00Z | 2026-02-26T22:48:00Z |
| ghsa-38c7-23hj-2wgq |
4.0 (3.1)
6.3 (4.0)
|
n8n has Webhook Forgery on Zendesk Trigger Node | 2026-02-26T22:47:06Z | 2026-02-26T22:47:06Z |
| ghsa-fvfv-ppw4-7h2w |
3.7 (3.1)
6.3 (4.0)
|
n8n has a Guardrail Node Bypass | 2026-02-26T22:46:42Z | 2026-02-26T22:46:43Z |
| ghsa-jh8h-6c9q-7gmw |
4.8 (3.1)
6.3 (4.0)
|
n8n has an Authentication Bypass in its Chat Trigger Node | 2026-02-26T22:45:41Z | 2026-02-26T22:45:41Z |
| ghsa-vjf3-2gpj-233v |
6.3 (3.1)
6.0 (4.0)
|
n8n has an SSO Enforcement Bypass in its Self-Service Settings API | 2026-02-26T22:45:13Z | 2026-02-26T22:45:14Z |
| ghsa-7gcc-r8m5-44qm |
7.5 (3.1)
|
Koa has Host Header Injection via ctx.hostname | 2026-02-26T22:42:57Z | 2026-02-26T22:42:57Z |
| ghsa-62cr-6wp5-q43h |
5.4 (3.1)
|
Copyparty vulnerable to reflected XSS via setck parameter | 2026-02-26T22:33:46Z | 2026-02-26T22:33:46Z |
| ghsa-fj3w-jwp8-x2g3 |
2.7 (4.0)
|
fast-xml-parser has stack overflow in XMLBuilder with preserveOrder | 2026-02-26T22:33:10Z | 2026-02-26T22:33:10Z |
| ghsa-qgvg-pr8v-6rr3 |
5.3 (4.0)
|
Svelte: XSS via HTML Comment Injection in SSR Error Boundary Hydration Markers | 2026-02-26T22:25:45Z | 2026-02-26T22:25:45Z |
| ghsa-phwv-c562-gvmh |
5.3 (4.0)
|
Svelte vulnerable to XSS during SSR with contenteditable `bind:innerText` and `bind:textContent` | 2026-02-26T22:24:54Z | 2026-02-26T22:24:54Z |
| ghsa-5rmx-256w-8mj9 |
8.8 (3.1)
|
WireGuard Portal is Vulnerable to Privilege Escalation via User Self-Update to Admin Level | 2026-02-26T22:22:23Z | 2026-02-26T22:22:23Z |
| ghsa-wvj2-96wp-fq3f |
7.0 (4.0)
|
MCP Go SDK Vulnerable to Improper Handling of Case Sensitivity | 2026-02-26T22:20:08Z | 2026-02-26T22:20:08Z |
| ghsa-g8gc-6c4h-jg86 |
4.3 (3.1)
|
wger: IDOR in nutritional_values endpoints exposes private dietary data via direct ORM lookup | 2026-02-26T22:15:51Z | 2026-02-27T21:59:53Z |
| ghsa-42cr-w2gr-m54q |
3.1 (3.1)
|
wger: IDOR via user-unscoped cache keys on routine API actions exposes workout data | 2026-02-26T22:15:30Z | 2026-02-27T21:59:39Z |
| ghsa-xf68-8hjw-7mpm |
4.3 (3.1)
|
wger: IDOR in RepetitionsConfig and MaxRepetitionsConfig API leak other users' workout data | 2026-02-26T22:13:13Z | 2026-02-27T21:59:25Z |
| ghsa-7r86-cg39-jmmj |
7.5 (3.1)
|
minimatch has ReDoS: matchOne() combinatorial backtracking via multiple non-adjacent GLOBSTAR segments | 2026-02-26T22:10:18Z | 2026-02-26T22:10:18Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2024-59 |
|
An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. get_supported_l… | django | 2024-07-10T05:15:00+00:00 | 2024-07-10T11:20:07.800540+00:00 |
| pysec-2024-58 |
|
An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. Derived classes… | django | 2024-07-10T05:15:00+00:00 | 2024-07-10T11:20:07.704786+00:00 |
| pysec-2024-57 |
|
An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. The django.cont… | django | 2024-07-10T05:15:00+00:00 | 2024-07-10T11:20:07.604887+00:00 |
| pysec-2024-56 |
|
An issue was discovered in Django 4.2 before 4.2.14 and 5.0 before 5.0.7. urlize and urli… | django | 2024-07-10T05:15:00+00:00 | 2024-07-10T11:20:07.495359+00:00 |
| pysec-2024-60 |
7.5 (3.1)
|
A vulnerability was identified in the kjd/idna library, specifically within the `idna.enc… | idna | 2024-07-07T18:15:00+00:00 | 2024-07-11T17:21:37.216928+00:00 |
| pysec-2024-230 |
7.5 (3.1)
|
Certifi is a curated collection of Root Certificates for validating the trustworthiness o… | certifi | 2024-07-05T19:15:10+00:00 | 2025-02-12T21:21:51.559667+00:00 |
| pysec-2024-176 |
6.1 (3.1)
|
A reflected Cross-Site Scripting (XSS) vulnerability was identified in zenml-io/zenml ver… | zenml | 2024-06-30T16:15:03+00:00 | 2025-01-18T22:21:45.122426+00:00 |
| pysec-2024-167 |
|
NLTK through 3.8.1 allows remote code execution if untrusted packages have pickled Python… | nltk | 2024-06-27T22:15:10+00:00 | 2025-01-18T19:19:06.317325+00:00 |
| pysec-2024-54 |
6.5 (3.1)
|
CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang St… | codechecker | 2024-06-24T18:15:00+00:00 | 2024-06-26T19:19:24.981233+00:00 |
| pysec-2024-53 |
|
langchain_experimental (aka LangChain Experimental) before 0.0.61 for LangChain provides … | langchain-experimental | 2024-06-16T15:15:00+00:00 | 2024-06-16T17:20:32.187558+00:00 |
| pysec-2024-195 |
5.5 (3.1)
|
Use of Web Browser Cache Containing Sensitive Information vulnerability in Apache Airflow… | apache-airflow | 2024-06-14T09:15:09+00:00 | 2025-01-19T16:22:56.419822+00:00 |
| pysec-2024-98 |
9.8 (3.1)
|
** UNSUPPORTED WHEN ASSIGNED ** Incorrect Authorization vulnerability in Apache Submarine… | apache-submarine | 2024-06-12T15:15:00+00:00 | 2024-09-26T17:22:54.526846+00:00 |
| pysec-2024-97 |
9.8 (3.1)
|
** UNSUPPORTED WHEN ASSIGNED ** Improper Authentication vulnerability in Apache Submarine… | apache-submarine | 2024-06-12T14:15:00+00:00 | 2024-09-26T17:22:54.470974+00:00 |
| pysec-2024-236 |
6.1 (3.1)
|
Jupyter Server Proxy allows users to run arbitrary external processes alongside their not… | jupyter-server-proxy | 2024-06-11T22:15:09+00:00 | 2025-02-26T23:22:41.524251+00:00 |
| pysec-2024-177 |
9.8 (3.1)
|
Langflow through 0.6.19 allows remote code execution if untrusted users are able to reach… | langflow | 2024-06-10T20:15:15+00:00 | 2025-01-19T01:52:23.722576+00:00 |
| pysec-2024-52 |
|
lepture Authlib before 1.3.1 has algorithm confusion with asymmetric public keys. Unless … | authlib | 2024-06-09T19:15:00+00:00 | 2024-06-09T21:20:21.309692+00:00 |
| pysec-2024-76 |
7.5 (3.1)
|
An XML External Entity (XXE) vulnerability in the ebookmeta.get_metadata function of eboo… | ebookmeta | 2024-06-07T19:15:00+00:00 | 2024-09-13T21:22:04.531357+00:00 |
| pysec-2024-117 |
9.8 (3.1)
|
man-group/dtale version 3.10.0 is vulnerable to an authentication bypass and remote code … | dtale | 2024-06-06T19:16:00+00:00 | 2024-11-03T20:22:34.425699+00:00 |
| pysec-2024-110 |
4.7 (3.1)
|
A sensitive data leakage vulnerability was identified in scikit-learn's TfidfVectorizer, … | scikit-learn | 2024-06-06T19:16:00+00:00 | 2024-10-24T21:22:05.950602+00:00 |
| pysec-2024-108 |
7.5 (3.1)
|
A path traversal vulnerability exists in the parisneo/lollms application, affecting versi… | lollms | 2024-06-06T19:16:00+00:00 | 2024-10-17T17:21:59.592496+00:00 |
| pysec-2024-242 |
7.5 (3.1)
|
A Local File Inclusion (LFI) vulnerability was identified in mlflow/mlflow, specifically … | mlflow | 2024-06-06T19:15:55+00:00 | 2025-04-08T10:23:24.995743+00:00 |
| pysec-2024-194 |
6.1 (3.1)
|
A clickjacking vulnerability exists in zenml-io/zenml versions up to and including 0.55.5… | zenml | 2024-06-06T19:15:54+00:00 | 2025-01-19T13:22:31.835293+00:00 |
| pysec-2024-193 |
3.3 (3.1)
|
An issue was discovered in zenml-io/zenml versions up to and including 0.55.4. Due to imp… | zenml | 2024-06-06T19:15:53+00:00 | 2025-01-19T13:22:31.701775+00:00 |
| pysec-2024-170 |
4.8 (3.1)
|
A stored Cross-Site Scripting (XSS) vulnerability was identified in the zenml-io/zenml re… | zenml | 2024-06-06T19:15:53+00:00 | 2025-01-18T19:19:08.253212+00:00 |
| pysec-2024-169 |
6.5 (3.1)
|
An improper authorization vulnerability exists in the zenml-io/zenml repository, specific… | zenml | 2024-06-06T19:15:53+00:00 | 2025-01-18T19:19:08.205431+00:00 |
| pysec-2024-239 |
8.8 (3.1)
|
A vulnerability in mlflow/mlflow version 8.2.1 allows for remote code execution due to im… | mlflow | 2024-06-06T19:15:51+00:00 | 2025-04-08T10:23:24.852109+00:00 |
| pysec-2024-118 |
4.7 (3.1)
|
A Denial-of-Service (DoS) vulnerability exists in the `SitemapLoader` class of the `langc… | langchain | 2024-06-06T19:15:00+00:00 | 2024-11-03T20:22:34.854295+00:00 |
| pysec-2024-105 |
3.1 (3.1)
|
A race condition vulnerability exists in zenml-io/zenml versions up to and including 0.55… | zenml | 2024-06-06T19:15:00+00:00 | 2024-10-11T17:21:29.672975+00:00 |
| pysec-2024-184 |
7.5 (3.1)
|
A local file inclusion vulnerability exists in the JSON component of gradio-app/gradio ve… | gradio | 2024-06-06T18:15:18+00:00 | 2025-01-19T04:23:00.017053+00:00 |
| pysec-2024-165 |
7.5 (3.1)
|
The Jupyter Server provides the backend for Jupyter web applications. Jupyter Server on W… | jupyter-server | 2024-06-06T16:15:11+00:00 | 2025-01-18T19:19:04.842426+00:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2026-902 | Malicious code in crc32fast (PyPI) | 2026-02-14T13:26:41Z | 2026-02-14T14:13:09Z |
| mal-2026-900 | Malicious code in cubaflixdownload (PyPI) | 2026-02-14T12:34:41Z | 2026-02-14T12:34:41Z |
| mal-2026-901 | Malicious code in platforms (PyPI) | 2026-02-14T12:29:36Z | 2026-02-14T12:29:36Z |
| mal-2026-899 | Malicious code in dzuseragents (PyPI) | 2026-02-14T11:56:39Z | 2026-02-14T11:56:39Z |
| mal-2024-12375 | Malicious code in langraph (PyPI) | 2026-02-14T05:25:23Z | 2026-02-14T18:48:58Z |
| mal-2026-898 | Malicious code in magicwolf (PyPI) | 2026-02-14T02:02:26Z | 2026-02-26T09:50:46Z |
| mal-2026-897 | Malicious code in clawdest (PyPI) | 2026-02-13T23:10:47Z | 2026-02-26T09:50:46Z |
| mal-2026-896 | Malicious code in sinon-web3-chain (npm) | 2026-02-13T17:36:45Z | 2026-02-23T04:21:35Z |
| mal-2026-895 | Malicious code in json-mapping-src (npm) | 2026-02-13T17:34:17Z | 2026-02-23T04:21:33Z |
| mal-2026-894 | Malicious code in troncloud (PyPI) | 2026-02-13T17:22:10Z | 2026-02-13T18:20:45Z |
| mal-2026-890 | Malicious code in responsible-ai (npm) | 2026-02-13T14:01:25Z | 2026-02-23T04:21:35Z |
| mal-2026-881 | Malicious code in contosoapp (npm) | 2026-02-13T14:01:25Z | 2026-02-23T04:21:32Z |
| mal-2026-879 | Malicious code in codexworld (npm) | 2026-02-13T14:01:25Z | 2026-02-23T04:21:32Z |
| mal-2026-889 | Malicious code in responses-starter-app (npm) | 2026-02-13T14:01:24Z | 2026-02-23T04:21:35Z |
| mal-2026-888 | Malicious code in pyright-root (npm) | 2026-02-13T14:01:24Z | 2026-02-23T04:21:35Z |
| mal-2026-887 | Malicious code in pyrefly (npm) | 2026-02-13T14:01:24Z | 2026-02-23T04:21:35Z |
| mal-2026-886 | Malicious code in open-answer-engine-frontend (npm) | 2026-02-13T14:01:24Z | 2026-02-23T04:21:35Z |
| mal-2026-883 | Malicious code in ecosystem_ui (npm) | 2026-02-13T14:01:24Z | 2026-02-23T04:21:32Z |
| mal-2026-884 | Malicious code in hxz-protection (npm) | 2026-02-13T13:57:39Z | 2026-02-23T04:21:33Z |
| mal-2026-891 | Malicious code in wropz-6module (npm) | 2026-02-13T13:57:38Z | 2026-02-23T04:21:36Z |
| mal-2026-892 | Malicious code in wropz-module (npm) | 2026-02-13T13:57:37Z | 2026-02-23T04:21:36Z |
| mal-2026-893 | Malicious code in xsstesting (npm) | 2026-02-13T13:50:54Z | 2026-02-23T04:21:37Z |
| mal-2026-885 | Malicious code in metadata-stripper (npm) | 2026-02-13T13:50:54Z | 2026-02-23T04:21:34Z |
| mal-2026-882 | Malicious code in despicable-me (npm) | 2026-02-13T13:50:54Z | 2026-02-23T04:21:32Z |
| mal-2026-880 | Malicious code in console-style-pro0o0o0o (npm) | 2026-02-13T13:50:54Z | 2026-02-23T04:21:32Z |
| mal-2026-878 | Malicious code in magichat (PyPI) | 2026-02-13T10:56:11Z | 2026-02-26T09:50:46Z |
| mal-2026-875 | Malicious code in displaydoc (PyPI) | 2026-02-13T10:45:53Z | 2026-02-13T11:45:52Z |
| mal-2026-876 | Malicious code in acpi-tables (PyPI) | 2026-02-13T10:35:04Z | 2026-02-13T10:35:04Z |
| mal-2026-877 | Malicious code in arrayvec (PyPI) | 2026-02-13T10:27:10Z | 2026-02-13T10:27:10Z |
| mal-2026-874 | Malicious code in google-search-result (PyPI) | 2026-02-12T23:27:54Z | 2026-02-13T00:38:45Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-2916 | Net-SNMP: Schwachstelle ermöglicht Codeausführung und DoS | 2025-12-23T23:00:00.000+00:00 | 2026-02-15T23:00:00.000+00:00 |
| wid-sec-w-2025-2915 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-12-23T23:00:00.000+00:00 | 2026-02-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2914 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-12-22T23:00:00.000+00:00 | 2026-02-12T23:00:00.000+00:00 |
| wid-sec-w-2025-2913 | Mattermost: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-12-22T23:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2912 | D-LINK Router: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-12-22T23:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2911 | Synacor Zimbra: Mehrere Schwachstellen | 2025-12-22T23:00:00.000+00:00 | 2026-01-05T23:00:00.000+00:00 |
| wid-sec-w-2025-2910 | Hitachi Ops Center: Mehrere Schwachstellen | 2025-12-22T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2909 | IBM App Connect Enterprise: Mehrere Schwachstellen | 2025-12-22T23:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2908 | FileZilla: Schwachstelle ermöglicht Codeausführung | 2025-12-21T23:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2907 | Red Hat Enterprise Linux AI (HDF5 ): Mehrere Schwachstellen ermöglichen Manipulation von Dateien | 2025-12-21T23:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2906 | ESRI ArcGIS Web AppBuilder: Schwachstelle ermöglicht Manipulation von Dateien | 2025-12-21T23:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2905 | MongoDB: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-12-18T23:00:00.000+00:00 | 2025-12-28T23:00:00.000+00:00 |
| wid-sec-w-2025-2904 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-12-18T23:00:00.000+00:00 | 2026-02-12T23:00:00.000+00:00 |
| wid-sec-w-2025-2903 | IBM App Connect Enterprise: Schwachstelle ermöglicht Denial of Service | 2025-12-18T23:00:00.000+00:00 | 2025-12-18T23:00:00.000+00:00 |
| wid-sec-w-2025-2902 | WatchGuard Firebox OS (iked process): Schwachstelle ermöglicht Codeausführung | 2025-12-18T23:00:00.000+00:00 | 2025-12-18T23:00:00.000+00:00 |
| wid-sec-w-2025-2901 | ConnectWise ScreenConnect: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-12-18T23:00:00.000+00:00 | 2025-12-18T23:00:00.000+00:00 |
| wid-sec-w-2025-2900 | Dell PowerEdge: Schwachstelle ermöglicht Codeausführung | 2025-12-18T23:00:00.000+00:00 | 2025-12-18T23:00:00.000+00:00 |
| wid-sec-w-2025-2899 | Kibana: Mehrere Schwachstellen | 2025-12-18T23:00:00.000+00:00 | 2025-12-18T23:00:00.000+00:00 |
| wid-sec-w-2025-2898 | avahi: Schwachstelle ermöglicht Denial of Service | 2025-12-18T23:00:00.000+00:00 | 2025-12-18T23:00:00.000+00:00 |
| wid-sec-w-2025-2897 | Apache log4j: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-12-18T23:00:00.000+00:00 | 2026-02-15T23:00:00.000+00:00 |
| wid-sec-w-2025-2896 | Elasticsearch: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-12-18T23:00:00.000+00:00 | 2025-12-18T23:00:00.000+00:00 |
| wid-sec-w-2025-2895 | M-Files Server: Mehrere Schwachstellen | 2025-12-18T23:00:00.000+00:00 | 2025-12-18T23:00:00.000+00:00 |
| wid-sec-w-2025-2894 | Foxit PDF Reader und Editor: Mehrere Schwachstellen | 2025-12-18T23:00:00.000+00:00 | 2025-12-18T23:00:00.000+00:00 |
| wid-sec-w-2025-2893 | Checkmk: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen | 2025-12-18T23:00:00.000+00:00 | 2025-12-18T23:00:00.000+00:00 |
| wid-sec-w-2025-2892 | Apache Nifi: Schwachstelle ermöglicht Codeausführung | 2025-12-18T23:00:00.000+00:00 | 2025-12-18T23:00:00.000+00:00 |
| wid-sec-w-2025-2891 | WebKitGTK: Mehrere Schwachstellen ermöglichen Codeausführung und DoS | 2025-12-18T23:00:00.000+00:00 | 2026-01-05T23:00:00.000+00:00 |
| wid-sec-w-2025-2890 | Microsoft Azure Komponenten: Mehrere Schwachstellen | 2025-12-18T23:00:00.000+00:00 | 2025-12-18T23:00:00.000+00:00 |
| wid-sec-w-2025-2889 | Microsoft Edge für Android: Schwachstelle ermöglicht Darstellen falscher Informationen | 2025-12-18T23:00:00.000+00:00 | 2025-12-18T23:00:00.000+00:00 |
| wid-sec-w-2025-2888 | ImageMagick: Schwachstelle ermöglicht Denial of Service | 2025-12-18T23:00:00.000+00:00 | 2026-01-05T23:00:00.000+00:00 |
| wid-sec-w-2025-2887 | PHP: Mehrere Schwachstellen | 2025-12-18T23:00:00.000+00:00 | 2026-02-04T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| ncsc-2025-0298 | Kwetsbaarheden verholpen in Cisco Secure Firewall ASA en FTD | 2025-09-25T18:17:20.040958Z | 2025-09-25T18:17:20.040958Z |
| ncsc-2025-0297 | Kwetsbaarheden verholpen in Cisco IOS en Cisco IOS XE Software | 2025-09-25T09:20:07.678881Z | 2025-09-25T10:42:19.129323Z |
| ncsc-2025-0296 | Kwetsbaarheid verholpen in WatchGuard Fireware OS | 2025-09-19T13:31:26.392203Z | 2025-10-17T08:19:28.145953Z |
| ncsc-2025-0295 | Kwetsbaarheid verholpen in Fortra's GoAnywhere MFT | 2025-09-19T12:26:42.186246Z | 2025-09-19T12:26:42.186246Z |
| ncsc-2025-0294 | Kwetsbaarheden verholpen in HPE Aruba Networking EdgeConnect SD-WAN Gateways | 2025-09-18T12:02:45.239087Z | 2025-09-18T12:02:45.239087Z |
| ncsc-2025-0293 | Kwetsbaarheden verholpen in Spring Framework | 2025-09-16T13:38:44.960337Z | 2025-09-16T13:38:44.960337Z |
| ncsc-2025-0292 | Kwetsbaarheden verholpen in Ivanti producten | 2025-09-16T12:21:50.959347Z | 2025-09-16T12:21:50.959347Z |
| ncsc-2025-0291 | Kwetsbaarheden verholpen in Apple iOS en iPadOS | 2025-09-16T11:17:27.365694Z | 2025-09-16T11:17:27.365694Z |
| ncsc-2025-0290 | Kwetsbaarheden verholpen in Apple macOS | 2025-09-16T11:16:20.572265Z | 2025-09-16T11:16:20.572265Z |
| ncsc-2025-0289 | Kwetsbaarheden verholpen in Omnissa Workspace ONE UEM | 2025-09-12T15:23:20.359090Z | 2025-09-12T15:23:20.359090Z |
| ncsc-2025-0288 | Kwetsbaarheden verholpen in GitLab CE/EE | 2025-09-12T14:49:52.285990Z | 2025-09-12T14:49:52.285990Z |
| ncsc-2025-0287 | Kwetsbaarheden verholpen in Cisco NX-OS Software | 2025-09-11T08:18:37.706725Z | 2025-09-11T08:18:37.706725Z |
| ncsc-2025-0286 | Kwetsbaarheden verholpen in Cisco IOS XR Software | 2025-09-11T08:14:36.960621Z | 2025-09-11T08:14:36.960621Z |
| ncsc-2025-0285 | Kwetsbaarheden verholpen in Adobe Acrobat Reader | 2025-09-10T11:01:43.415733Z | 2025-09-10T11:01:43.415733Z |
| ncsc-2025-0284 | Kwetsbaarheid verholpen in Adobe Commerce en Magento | 2025-09-10T10:49:56.787627Z | 2025-09-10T10:49:56.787627Z |
| ncsc-2025-0283 | Kwetsbaarheden verholpen in Adobe Experience Manager | 2025-09-10T10:46:54.808276Z | 2025-09-10T10:46:54.808276Z |
| ncsc-2025-0282 | Kwetsbaarheid verholpen in Adobe Dreamweaver | 2025-09-10T10:38:24.553749Z | 2025-09-10T10:38:24.553749Z |
| ncsc-2025-0281 | Kwetsbaarheid verholpen in Adobe ColdFusion | 2025-09-10T10:24:09.409410Z | 2025-09-10T10:24:09.409410Z |
| ncsc-2025-0280 | Kwetsbaarheden verholpen in Microsoft SQL Server | 2025-09-09T18:27:39.956624Z | 2025-09-09T18:27:39.956624Z |
| ncsc-2025-0279 | Kwetsbaarheden verholpen in Microsoft Azure | 2025-09-09T18:25:53.539582Z | 2025-09-09T18:25:53.539582Z |
| ncsc-2025-0278 | Kwetsbaarheden verholpen in Microsoft Office | 2025-09-09T18:23:23.763765Z | 2025-09-09T18:23:23.763765Z |
| ncsc-2025-0277 | Kwetsbaarheden verholpen in Microsoft Windows | 2025-09-09T18:22:30.766030Z | 2025-09-09T18:22:30.766030Z |
| ncsc-2025-0276 | Kwetsbaarheden verholpen in Schneider Electric Saitel | 2025-09-09T15:16:00.122647Z | 2025-09-09T15:16:00.122647Z |
| ncsc-2025-0275 | Kwetsbaarheden verholpen in SAP producten | 2025-09-09T11:12:22.945466Z | 2025-09-09T11:12:22.945466Z |
| ncsc-2025-0274 | Kwetsbaarheden verholpen in Siemens producten | 2025-09-09T11:06:34.785987Z | 2025-09-09T11:06:34.785987Z |
| ncsc-2025-0273 | Kwetsbaarheden verholpen in Google Android en Samsung Mobile | 2025-09-04T08:15:14.806733Z | 2025-09-04T08:15:14.806733Z |
| ncsc-2025-0272 | Kwetsbaarheid verholpen in FreePBX | 2025-08-29T08:37:54.893549Z | 2025-08-29T08:37:54.893549Z |
| ncsc-2025-0271 | Kwetsbaarheden verholpen in Arcserve Unified Data Protection | 2025-08-28T12:56:02.228992Z | 2025-08-28T12:56:02.228992Z |
| ncsc-2025-0270 | Kwetsbaarheden verholpen in Cisco NX-OS Software | 2025-08-28T08:36:20.358948Z | 2025-08-28T08:36:20.358948Z |
| ncsc-2025-0269 | Kwetsbaarheden verholpen in IBM Cognos Command Center | 2025-08-27T13:10:59.965070Z | 2025-08-27T13:10:59.965070Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| ssa-806742 | SSA-806742: Multiple Vulnerabilities in SCALANCE XCM-/XRM-300 before V2.4 | 2024-02-13T00:00:00Z | 2024-02-13T00:00:00Z |
| ssa-797296 | SSA-797296: XT File Parsing Vulnerability in Parasolid | 2024-02-13T00:00:00Z | 2024-02-13T00:00:00Z |
| ssa-753746 | SSA-753746: Denial of Service Vulnerabilities in SIMATIC WinCC Affecting Other SIMATIC Software Products | 2024-02-13T00:00:00Z | 2024-09-10T00:00:00Z |
| ssa-716164 | SSA-716164: Multiple Vulnerabilities in Scalance W1750D | 2024-02-13T00:00:00Z | 2024-04-09T00:00:00Z |
| ssa-665034 | SSA-665034: Vulnerability in Nozomi Guardian/CMC before 23.3.0 on RUGGEDCOM APE1808 devices | 2024-02-13T00:00:00Z | 2024-05-14T00:00:00Z |
| ssa-647068 | SSA-647068: Ripple20 in SIMATIC RTLS Gateways | 2024-02-13T00:00:00Z | 2024-02-13T00:00:00Z |
| ssa-602936 | SSA-602936: Multiple Vulnerabilities in SCALANCE SC-600 Family before V3.1 | 2024-02-13T00:00:00Z | 2024-02-13T00:00:00Z |
| ssa-580228 | SSA-580228: Use of Hard-Coded Credentials Vulnerability in Location Intelligence before V4.3 | 2024-02-13T00:00:00Z | 2024-02-13T00:00:00Z |
| ssa-543502 | SSA-543502: Local Privilege Escalation Vulnerability in Unicam FX | 2024-02-13T00:00:00Z | 2024-02-13T00:00:00Z |
| ssa-516818 | SSA-516818: TCP Sequence Number Validation Vulnerability in the TCP/IP Stack of CP343-1 Devices | 2024-02-13T00:00:00Z | 2024-02-13T00:00:00Z |
| ssa-108696 | SSA-108696: Multiple Vulnerabilities in SIDIS Prime before V4.0.400 | 2024-02-13T00:00:00Z | 2024-02-13T00:00:00Z |
| ssa-017796 | SSA-017796: Multiple File Parsing Vulnerabilities in Tecnomatix Plant Simulation | 2024-02-13T00:00:00Z | 2024-02-13T00:00:00Z |
| ssa-000072 | SSA-000072: Multiple File Parsing Vulnerabilities in Simcenter Femap | 2024-02-13T00:00:00Z | 2024-03-12T00:00:00Z |
| ssa-794653 | SSA-794653: Multiple File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go | 2024-01-09T00:00:00Z | 2024-01-09T00:00:00Z |
| ssa-786191 | SSA-786191: Local Privilege Escalation Vulnerability in Spectrum Power 7 | 2024-01-09T00:00:00Z | 2024-01-09T00:00:00Z |
| ssa-777015 | SSA-777015: Multiple Vulnerabilities in SIMATIC CN 4100 before V2.7 | 2024-01-09T00:00:00Z | 2024-01-09T00:00:00Z |
| ssa-702935 | SSA-702935: Redfish Server Vulnerability in maxView Storage Manager | 2024-01-09T00:00:00Z | 2024-01-09T00:00:00Z |
| ssa-589891 | SSA-589891: Multiple PAR File Parsing Vulnerabilities in Solid Edge | 2024-01-09T00:00:00Z | 2024-01-09T00:00:00Z |
| ssa-583634 | SSA-583634: Command Injection Vulnerability in the CPCI85 Firmware of SICAM A8000 Devices | 2024-01-09T00:00:00Z | 2024-01-09T00:00:00Z |
| ssa-892915 | SSA-892915: Multiple Denial of Service Vulnerabilities in the Webserver of Industrial Products | 2023-12-12T00:00:00Z | 2023-12-12T00:00:00Z |
| ssa-887801 | SSA-887801: Information Disclosure Vulnerability in SIMATIC STEP 7 (TIA Portal) | 2023-12-12T00:00:00Z | 2023-12-12T00:00:00Z |
| ssa-693975 | SSA-693975: Denial-of-Service Vulnerability in the Web Server of Industrial Products | 2023-12-12T00:00:00Z | 2024-03-12T00:00:00Z |
| ssa-592380 | SSA-592380: Denial of Service Vulnerability in SIMATIC S7-1500 CPUs and related products | 2023-12-12T00:00:00Z | 2024-05-14T00:00:00Z |
| ssa-480095 | SSA-480095: Vulnerabilities in the Web Interface of SICAM Q100 Devices before V2.60 | 2023-12-12T00:00:00Z | 2024-01-09T00:00:00Z |
| ssa-280603 | SSA-280603: Denial of Service Vulnerability in SINUMERIK ONE and SINUMERIK MC | 2023-12-12T00:00:00Z | 2024-09-10T00:00:00Z |
| ssa-180704 | SSA-180704: Multiple Vulnerabilities in SCALANCE M-800 Family Before V8.0 | 2023-12-12T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-118850 | SSA-118850: Denial of Service Vulnerability in the OPC UA Implementation in SINUMERIK ONE and SINUMERIK MC | 2023-12-12T00:00:00Z | 2023-12-12T00:00:00Z |
| ssa-077170 | SSA-077170: Multiple Vulnerabilities in SINEC INS before V1.0 SP2 Update 2 | 2023-12-12T00:00:00Z | 2023-12-12T00:00:00Z |
| ssa-068047 | SSA-068047: Multiple Vulnerabilities in SCALANCE M-800 Family Before V7.2.2 | 2023-12-12T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-887122 | SSA-887122: X_T File Parsing Vulnerabilities in Simcenter Femap | 2023-11-14T00:00:00Z | 2023-11-14T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2026:2225 | Red Hat Security Advisory: keylime security update | 2026-02-09T01:32:21+00:00 | 2026-02-09T15:28:53+00:00 |
| rhsa-2026:2217 | Red Hat Security Advisory: go-toolset:rhel8 security update | 2026-02-09T01:27:56+00:00 | 2026-02-17T12:41:38+00:00 |
| rhsa-2026:2201 | Red Hat Security Advisory: Red Hat Lightspeed (formerly Insights) for Runtimes security update | 2026-02-05T22:10:05+00:00 | 2026-02-17T12:41:38+00:00 |
| rhsa-2026:2182 | Red Hat Security Advisory: libsoup3 security update | 2026-02-05T19:29:47+00:00 | 2026-02-12T13:28:16+00:00 |
| rhsa-2026:2181 | Red Hat Security Advisory: Self-service automation portal 2.1 security update | 2026-02-05T18:57:03+00:00 | 2026-02-10T17:48:45+00:00 |
| rhsa-2026:2180 | Red Hat Security Advisory: Self-service automation portal 2.0 security update | 2026-02-05T18:48:32+00:00 | 2026-02-10T17:48:45+00:00 |
| rhsa-2026:2172 | Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.15 security, enhancement & bug fix update | 2026-02-05T18:06:29+00:00 | 2026-02-17T08:02:22+00:00 |
| rhsa-2026:2164 | Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16 security, enhancement & bug fix update | 2026-02-05T17:49:21+00:00 | 2026-02-17T08:02:22+00:00 |
| rhsa-2026:2155 | Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17 security, enhancement & bug fix update | 2026-02-05T17:17:50+00:00 | 2026-02-17T08:02:22+00:00 |
| rhsa-2026:1540 | Red Hat Security Advisory: OpenShift Container Platform 4.15.61 packages and security update | 2026-02-05T16:39:36+00:00 | 2026-02-17T12:41:22+00:00 |
| rhsa-2026:1541 | Red Hat Security Advisory: OpenShift Container Platform 4.15.61 bug fix and security update | 2026-02-05T16:26:06+00:00 | 2026-02-05T20:05:38+00:00 |
| rhsa-2026:2149 | Red Hat Security Advisory: Kiali 2.17.3 for Red Hat OpenShift Service Mesh 3.2 | 2026-02-05T16:16:04+00:00 | 2026-02-17T12:41:38+00:00 |
| rhsa-2026:1831 | Red Hat Security Advisory: qemu-kvm security update | 2026-02-05T16:05:02+00:00 | 2026-02-05T19:37:48+00:00 |
| rhsa-2026:1843 | Red Hat Security Advisory: nodejs22 security update | 2026-02-05T16:03:36+00:00 | 2026-02-17T09:33:18+00:00 |
| rhsa-2026:1842 | Red Hat Security Advisory: nodejs24 security update | 2026-02-05T16:03:11+00:00 | 2026-02-17T09:33:20+00:00 |
| rhsa-2026:1837 | Red Hat Security Advisory: osbuild-composer security update | 2026-02-05T16:03:01+00:00 | 2026-02-17T08:02:06+00:00 |
| rhsa-2026:1838 | Red Hat Security Advisory: image-builder security update | 2026-02-05T16:02:26+00:00 | 2026-02-17T08:02:06+00:00 |
| rhsa-2026:2148 | Red Hat Security Advisory: Kiali 2.11.6 for Red Hat OpenShift Service Mesh 3.1 | 2026-02-05T15:58:24+00:00 | 2026-02-17T12:41:37+00:00 |
| rhsa-2026:2147 | Red Hat Security Advisory: Kiali 2.4.12 for Red Hat OpenShift Service Mesh 3.0 | 2026-02-05T15:58:12+00:00 | 2026-02-17T12:41:37+00:00 |
| rhsa-2026:2146 | Red Hat Security Advisory: RHTAS 1.3.2 - Red Hat Trusted Artifact Signer Release | 2026-02-05T15:54:06+00:00 | 2026-02-17T12:41:37+00:00 |
| rhsa-2026:2145 | Red Hat Security Advisory: Kiali 1.73.26 for Red Hat OpenShift Service Mesh 2.6 | 2026-02-05T15:53:57+00:00 | 2026-02-17T12:26:50+00:00 |
| rhsa-2026:1549 | Red Hat Security Advisory: OpenShift Container Platform 4.15.61 bug fix and security update | 2026-02-05T15:48:33+00:00 | 2026-02-17T08:01:36+00:00 |
| rhsa-2026:2128 | Red Hat Security Advisory: python3 security update | 2026-02-05T15:48:06+00:00 | 2026-02-12T19:30:17+00:00 |
| rhsa-2026:2144 | Red Hat Security Advisory: RHTAS 1.3.2 - Red Hat Trusted Artifact Signer Release | 2026-02-05T15:45:43+00:00 | 2026-02-17T12:41:36+00:00 |
| rhsa-2026:2139 | Red Hat Security Advisory: RHTAS 1.3.2 - Red Hat Trusted Artifact Signer Release | 2026-02-05T15:35:09+00:00 | 2026-02-17T12:41:36+00:00 |
| rhsa-2026:2138 | Red Hat Security Advisory: RHTAS 1.3.2 - Red Hat Trusted Artifact Signer Release | 2026-02-05T15:35:02+00:00 | 2026-02-17T12:41:39+00:00 |
| rhsa-2026:2137 | Red Hat Security Advisory: RHTAS 1.3.2 - Red Hat Trusted Artifact Signer Release | 2026-02-05T15:26:20+00:00 | 2026-02-17T12:41:35+00:00 |
| rhsa-2026:2136 | Red Hat Security Advisory: RHTAS 1.3.2 - Red Hat Trusted Artifact Signer Release | 2026-02-05T15:17:09+00:00 | 2026-02-17T12:41:35+00:00 |
| rhsa-2026:2127 | Red Hat Security Advisory: kpatch-patch-5_14_0-70_121_1, kpatch-patch-5_14_0-70_124_1, kpatch-patch-5_14_0-70_132_1, kpatch-patch-5_14_0-70_144_1, and kpatch-patch-5_14_0-70_155_1 security update | 2026-02-05T15:08:50+00:00 | 2026-02-11T18:58:09+00:00 |
| rhsa-2026:2133 | Red Hat Security Advisory: RHTAS 1.3.2 - Red Hat Trusted Artifact Signer Release | 2026-02-05T15:02:51+00:00 | 2026-02-17T12:41:34+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-25-289-01 | Rockwell Automation FactoryTalk View Machine Edition and PanelView Plus 7 | 2025-10-16T06:00:00.000000Z | 2025-10-16T06:00:00.000000Z |
| icsa-25-301-01 | Schneider Electric EcoStruxure | 2025-10-14T07:00:00.000000Z | 2025-10-14T07:00:00.000000Z |
| icsa-25-287-01 | Rockwell Automation 1715 EtherNet/IP Comms Module | 2025-10-14T06:00:00.000000Z | 2025-10-14T06:00:00.000000Z |
| icsa-25-289-10 | Siemens HyperLynx and Industrial Edge App Publisher | 2025-10-14T00:00:00.000000Z | 2026-01-14T22:05:41.165529Z |
| icsa-25-289-09 | Siemens TeleControl Server Basic | 2025-10-14T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-25-289-08 | Siemens SINEC NMS | 2025-10-14T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-25-289-07 | Siemens SIMATIC ET 200SP Communication Processors | 2025-10-14T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-25-289-06 | Siemens SiPass Integrated | 2025-10-14T00:00:00.000000Z | 2026-02-12T07:00:00.000000Z |
| icsa-25-289-05 | Siemens Solid Edge | 2025-10-14T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| va-25-282-01 | Newforma Project Center multiple vulnerabilities | 2025-10-09T19:50:00Z | 2025-10-09T19:50:00Z |
| icsa-25-282-03 | Rockwell Automation Stratix | 2025-10-09T06:00:00.000000Z | 2025-10-09T06:00:00.000000Z |
| icsa-25-282-02 | Rockwell Automation Lifecycle Services with Cisco | 2025-10-09T06:00:00.000000Z | 2025-10-09T06:00:00.000000Z |
| va-25-280-01 | OPEXUS FOIAXpress stored XSS | 2025-10-07T22:50:29Z | 2025-10-07T22:50:29Z |
| icsa-25-280-01 | Delta Electronics DIAScreen | 2025-10-07T06:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| icsa-25-275-01 | Raise3D Pro2 Series 3D Printers** | 2025-10-02T05:00:00.000000Z | 2025-10-02T05:00:00.000000Z |
| icsa-25-289-11 | Hitachi Energy MACH GWS | 2025-09-30T12:50:29.000000Z | 2025-09-30T12:50:29.000000Z |
| icsa-25-275-02 | Hitachi Energy MSM | 2025-09-30T09:02:31.000000Z | 2025-09-30T09:02:31.000000Z |
| icsa-25-282-01 | Hitachi Energy Asset Suite (Update A) | 2025-09-30T08:50:13.000000Z | 2025-10-28T09:50:00.000000Z |
| icsa-25-273-06 | National Instruments Circuit Design Suite | 2025-09-30T06:00:00.000000Z | 2025-09-30T06:00:00.000000Z |
| icsa-25-273-05 | OpenPLC_V3 | 2025-09-30T06:00:00.000000Z | 2025-09-30T06:00:00.000000Z |
| icsa-25-273-04 | Festo Controller CECC-S,-LK,-D Family Firmware (Update A) | 2025-09-30T06:00:00.000000Z | 2025-11-13T07:00:00.000000Z |
| icsa-25-273-01 | MegaSys Enterprises Telenium Online Web Application | 2025-09-30T06:00:00.000000Z | 2025-09-30T06:00:00.000000Z |
| icsa-25-273-07 | LG Innotek Camera Multiple Models | 2025-09-30T05:00:00.000000Z | 2025-09-30T05:00:00.000000Z |
| va-25-273-01 | Microsoft Windows inconsistent driver blocking | 2025-09-30T00:00:00Z | 2025-09-30T00:00:00Z |
| va-25-272-01 | Medical Informatics Engineering Enterprise Health multiple vulnerabilities | 2025-09-29T00:00:00Z | 2025-09-29T00:00:00Z |
| icsa-25-268-01 | Dingtian DT-R002 | 2025-09-25T06:00:00.000000Z | 2025-09-25T06:00:00.000000Z |
| icsa-25-266-04 | Viessmann Vitogate 300 | 2025-09-23T06:00:00.000000Z | 2025-09-23T06:00:00.000000Z |
| icsa-25-266-02 | Mitsubishi Electric MELSEC-Q Series CPU Module | 2025-09-23T06:00:00.000000Z | 2025-09-23T06:00:00.000000Z |
| icsa-25-266-01 | AutomationDirect CLICK PLUS | 2025-09-23T06:00:00.000000Z | 2025-09-23T06:00:00.000000Z |
| va-25-265-01 | Airship AI MFA bypass and default credentials vulnerabilities | 2025-09-22T14:06:13Z | 2025-09-22T14:06:13Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-modular-acl-u5mepxmm | Cisco IOS XR Software Access Control List Bypass Vulnerability | 2025-03-12T16:00:00+00:00 | 2025-03-12T16:00:00+00:00 |
| cisco-sa-ipv4uni-lfm3cfbu | Cisco IOS XR Software for ASR 9000 Series Routers IPv4 Unicast Packets Denial of Service Vulnerability | 2025-03-12T16:00:00+00:00 | 2025-03-12T16:00:00+00:00 |
| cisco-sa-iosxr-priv-esc-gfqjxvof | Cisco IOS XR Software CLI Privilege Escalation Vulnerability | 2025-03-12T16:00:00+00:00 | 2025-03-12T16:00:00+00:00 |
| cisco-sa-iosxr-bgp-dos-o7stephx | Cisco IOS XR Software Border Gateway Protocol Confederation Denial of Service Vulnerability | 2025-03-12T16:00:00+00:00 | 2025-03-12T16:00:00+00:00 |
| cisco-sa-ios-xr-verii-bypass-hhpwqrvx | Cisco IOS XR Software Image Verification Bypass Vulnerability | 2025-03-12T16:00:00+00:00 | 2025-03-12T16:00:00+00:00 |
| cisco-sa-tms-xss-vuln-wbtcywxg | Cisco TelePresence Management Suite Cross-Site Scripting Vulnerability | 2025-03-05T16:00:00+00:00 | 2025-03-05T16:44:57+00:00 |
| cisco-sa-secure-dll-injection-aoyzeqsg | Cisco Secure Client for Windows with Secure Firewall Posture Engine DLL Hijacking Vulnerability | 2025-03-05T16:00:00+00:00 | 2025-03-05T16:00:00+00:00 |
| cisco-sa-webex-credexp-xmn85y6 | Cisco Webex for BroadWorks Credential Exposure Vulnerability | 2025-03-04T16:00:00+00:00 | 2025-04-01T13:40:00+00:00 |
| cisco-sa-nxos-ici-dpojbwxk | Cisco Nexus 3000 and 9000 Series Switches Command Injection Vulnerability | 2025-02-26T16:00:00+00:00 | 2025-02-26T16:00:00+00:00 |
| cisco-sa-n3kn9k-healthdos-eoqswk4g | Cisco Nexus 3000 and 9000 Series Switches Health Monitoring Diagnostics Denial of Service Vulnerability | 2025-02-26T16:00:00+00:00 | 2025-02-26T16:00:00+00:00 |
| cisco-sa-apic-multi-vulns-9ummtg5 | Cisco Application Policy Infrastructure Controller Vulnerabilities | 2025-02-26T16:00:00+00:00 | 2025-02-26T16:00:00+00:00 |
| cisco-sa-phone-info-disc-yyxswstk | Cisco Video Phone 8875 and Desk Phone 9800 Series Information Disclosure Vulnerability | 2025-02-19T16:00:00+00:00 | 2025-02-19T16:00:00+00:00 |
| cisco-sa-esa-mailpol-bypass-5nvcjzmw | Cisco Secure Email Gateway Email Filter Bypass Vulnerability | 2025-02-19T16:00:00+00:00 | 2025-02-19T16:00:00+00:00 |
| cisco-sa-broadworks-xss-gdpgj58p | Cisco BroadWorks Application Delivery Platform Cross-Site Scripting Vulnerability | 2025-02-19T16:00:00+00:00 | 2025-02-19T16:00:00+00:00 |
| cisco-sa-swa-range-bypass-2bsehysu | Cisco Secure Web Appliance Range Request Bypass Vulnerability | 2025-02-05T16:00:00+00:00 | 2025-02-05T16:00:00+00:00 |
| cisco-sa-snmp-dos-sdxnsucw | Cisco IOS, IOS XE, and IOS XR Software SNMP Denial of Service Vulnerabilities | 2025-02-05T16:00:00+00:00 | 2025-03-12T15:22:33+00:00 |
| cisco-sa-ise-xss-42tgsdmg | Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabilities | 2025-02-05T16:00:00+00:00 | 2025-02-05T16:00:00+00:00 |
| cisco-sa-ise-multivuls-ftw9aoxf | Cisco Identity Services Engine Insecure Java Deserialization and Authorization Bypass Vulnerabilities | 2025-02-05T16:00:00+00:00 | 2025-02-10T20:23:50+00:00 |
| cisco-sa-expressway-xss-uexuzrew | Cisco Expressway Series Cross-Site Scripting Vulnerability | 2025-02-05T16:00:00+00:00 | 2025-02-05T16:00:00+00:00 |
| cisco-sa-esa-sma-xss-wck2wcug | Cisco Secure Email and Web Manager and Secure Email Gateway Cross-Site Scripting Vulnerability | 2025-02-05T16:00:00+00:00 | 2025-02-05T16:00:00+00:00 |
| cisco-sa-esa-sma-wsa-snmp-inf-fqpvl8sx | Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance SNMP Polling Information Disclosure Vulnerability | 2025-02-05T16:00:00+00:00 | 2025-02-05T16:00:00+00:00 |
| cisco-sa-esa-sma-wsa-multi-ykujhs34 | Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance Vulnerabilities | 2025-02-05T16:00:00+00:00 | 2025-02-07T19:21:57+00:00 |
| cisco-sa-cmm-privesc-uy2vf8pc | Cisco Meeting Management REST API Privilege Escalation Vulnerability | 2025-01-22T16:00:00+00:00 | 2025-01-22T16:00:00+00:00 |
| cisco-sa-clamav-ole2-h549rpha | ClamAV OLE2 File Format Decryption Denial of Service Vulnerability | 2025-01-22T16:00:00+00:00 | 2025-01-22T16:00:00+00:00 |
| cisco-sa-bw-sip-dos-msysbrmt | Cisco BroadWorks SIP Denial of Service Vulnerability | 2025-01-22T16:00:00+00:00 | 2025-01-22T16:00:00+00:00 |
| cisco-sa-xwork-xss-kccg7wwu | Cisco Crosswork Network Controller Stored Cross-Site Scripting Vulnerabilities | 2025-01-08T16:00:00+00:00 | 2025-01-08T16:00:00+00:00 |
| cisco-sa-thousandeyes-cert-pqtjuv9n | Cisco ThousandEyes Endpoint Agent for MacOS and RoomOS Certificate Validation Vulnerability | 2025-01-08T16:00:00+00:00 | 2025-01-13T22:15:18+00:00 |
| cisco-sa-cspc-xss-cdojzyh | Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities | 2025-01-08T16:00:00+00:00 | 2025-01-08T16:00:00+00:00 |
| cisco-sa-nxos-image-sig-bypas-pqdrqvjl | Cisco NX-OS Software Image Verification Bypass Vulnerability | 2024-12-04T16:00:00+00:00 | 2025-04-07T16:43:32+00:00 |
| cisco-sa-phone-infodisc-sbyqqvbg | Cisco 7800, 8800, and 9800 Series Phones Information Disclosure Vulnerability | 2024-11-06T16:00:00+00:00 | 2024-11-06T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2026-20870 | Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20869 | Windows Local Session Manager (LSM) Elevation of Privilege Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20868 | Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20867 | Windows Management Services Elevation of Privilege Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20866 | Windows Management Services Elevation of Privilege Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20865 | Windows Management Services Elevation of Privilege Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20864 | Windows Connected Devices Platform Service Elevation of Privilege Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20863 | Win32k Elevation of Privilege Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20862 | Windows Management Services Information Disclosure Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20861 | Windows Management Services Elevation of Privilege Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20860 | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20859 | Windows Kernel-Mode Driver Elevation of Privilege Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20858 | Windows Management Services Elevation of Privilege Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20857 | Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20856 | Windows Server Update Service (WSUS) Remote Code Execution Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-15T08:00:00.000Z |
| msrc_cve-2026-20854 | Windows Local Security Authority Subsystem Service (LSASS) Remote Code Execution Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20853 | Windows WalletService Elevation of Privilege Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20852 | Windows Hello Tampering Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20851 | Capability Access Management Service (camsvc) Information Disclosure Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20849 | Windows Kerberos Elevation of Privilege Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20848 | Windows SMB Server Elevation of Privilege Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-20T08:00:00.000Z |
| msrc_cve-2026-20847 | Microsoft Windows File Explorer Spoofing Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20844 | Windows Clipboard Server Elevation of Privilege Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20843 | Windows Routing and Remote Access Service (RRAS) Elevation of Privilege Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20842 | Microsoft DWM Core Library Elevation of Privilege Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20840 | Windows NTFS Remote Code Execution Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20839 | Windows Client-Side Caching (CSC) Service Information Disclosure Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20838 | Windows Kernel Information Disclosure Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20837 | Windows Media Remote Code Execution Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| msrc_cve-2026-20836 | DirectX Graphics Kernel Elevation of Privilege Vulnerability | 2026-01-13T08:00:00.000Z | 2026-01-13T08:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-200609-0685 | The VPN service in Apple Mac OS X 10.3.x through 10.3.9 and 10.4.x through 10.4.8 does no… | 2025-12-22T23:15:16.225000Z |
| var-201310-0596 | Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, a… | 2025-12-22T23:14:41.119000Z |
| var-201702-0469 | An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari be… | 2025-12-22T23:14:10.671000Z |
| var-201711-0923 | There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL b… | 2025-12-22T23:13:10.973000Z |
| var-201801-1711 | Systems with microprocessors utilizing speculative execution and indirect branch predicti… | 2025-12-22T23:12:36.305000Z |
| var-202109-1315 | A memory corruption issue was addressed with improved state management. This issue is fix… | 2025-12-22T23:11:59.868000Z |
| var-200712-0433 | Integer underflow in the asn1_get_string function in the SNMP back end (backend/snmp.c) f… | 2025-12-22T23:11:27.191000Z |
| var-200901-0726 | Use-after-free vulnerability in WebKit, as used in Apple Safari before 4.0, iPhone OS 1.0… | 2025-12-22T23:11:26.210000Z |
| var-201003-1114 | The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9,… | 2025-12-22T23:11:26.032000Z |
| var-202207-0381 | A OS Command Injection vulnerability exists in Node.js versions <14.20.0, <16.20.0, <18.5… | 2025-12-22T23:11:19.217000Z |
| var-201909-0695 | A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kern… | 2025-12-22T23:11:12.635000Z |
| var-201108-0217 | Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before … | 2025-12-22T23:10:40.997000Z |
| var-201109-0200 | Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers… | 2025-12-22T23:10:39.510000Z |
| var-201504-0166 | Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier, and 5.6.23 and earli… | 2025-12-22T23:10:05.860000Z |
| var-200102-0007 | WatchGuard SOHO firewall allows remote attackers to cause a denial of service via a flood… | 2025-12-22T23:10:02.954000Z |
| var-201604-0129 | Xen and the Linux kernel through 4.5.x do not properly suppress hugetlbfs support in x86 … | 2025-12-22T23:08:47.658000Z |
| var-200608-0036 | Integer overflow in ImageIO in Apple Mac OS X 10.4.7 allows user-assisted attackers to ca… | 2025-12-22T23:08:41.976000Z |
| var-200102-0075 | IPSwitch IMail 6.0.5 allows remote attackers to cause a denial of service using the SMTP … | 2025-12-22T23:08:40.730000Z |
| var-200808-0470 | Cross-site scripting (XSS) vulnerability in proxy_ftp.c in the mod_proxy_ftp module in Ap… | 2025-12-22T23:08:39.429000Z |
| var-202212-2277 | An integer underflow in Organization Specific TLV was found in various versions of OpenvS… | 2025-12-22T23:08:38.384000Z |
| var-201306-0256 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … | 2025-12-22T23:08:37.705000Z |
| var-201806-1460 | An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari be… | 2025-12-22T23:08:37.463000Z |
| var-200712-0599 | Integer overflow in the svcauth_gss_get_principal function in lib/rpc/svc_auth_gss.c in M… | 2025-12-22T23:08:37.405000Z |
| var-201501-0435 | OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote attack… | 2025-12-22T23:08:37.087000Z |
| var-200811-0321 | The plug-in interface in WebKit in Apple Safari before 3.2 does not prevent plug-ins from… | 2025-12-22T23:08:28.869000Z |
| var-201203-0177 | Google Chrome before 17.0.963.83 allows remote attackers to bypass the Same Origin Policy… | 2025-12-22T23:08:28.352000Z |
| var-201702-0466 | An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari be… | 2025-12-22T23:08:11.427000Z |
| var-202004-0530 | In filter.c in slapd in OpenLDAP before 2.4.50, LDAP search filters with nested boolean e… | 2025-12-22T23:08:10.438000Z |
| var-201806-1456 | An issue was discovered in certain Apple products. iOS before 11.4 is affected. iOS befor… | 2025-12-22T23:08:04.281000Z |
| var-200909-0399 | The mod_proxy_ftp module in the Apache HTTP Server allows remote attackers to bypass inte… | 2025-12-22T23:07:56.757000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2025-004863 | Panasonic IR Control Hub vulnerable to Unauthorised firmware loading | 2025-05-14T11:30+09:00 | 2025-05-14T11:30+09:00 |
| jvndb-2025-000030 | Reflected cross-site scripting vulnerability in multiple laser printers and MFPs which implement Ricoh Web Image Monitor | 2025-05-12T18:00+09:00 | 2025-07-17T10:06+09:00 |
| jvndb-2025-004671 | Multiple vulnerabilities in GL-MT2500 and GL-MT2500A | 2025-05-12T17:52+09:00 | 2025-05-12T17:52+09:00 |
| jvndb-2025-004079 | Improper access permission settings in multiple SEIKO EPSON printer drivers for Windows OS | 2025-04-30T11:46+09:00 | 2025-04-30T11:46+09:00 |
| jvndb-2025-004076 | Security Update for Trend Micro Trend Vision One (April 2025) | 2025-04-30T10:38+09:00 | 2025-04-30T10:38+09:00 |
| jvndb-2025-000029 | Multiple vulnerabilities in Quick Agent | 2025-04-25T13:49+09:00 | 2025-04-25T13:49+09:00 |
| jvndb-2025-000028 | i-PRO Configuration Tool vulnerable to use of hard-coded cryptographic key | 2025-04-24T13:50+09:00 | 2025-04-24T13:50+09:00 |
| jvndb-2025-000027 | Active! mail vulnerable to stack-based buffer overflow | 2025-04-18T16:50+09:00 | 2025-04-18T16:50+09:00 |
| jvndb-2025-003213 | TP-Link Deco BE65 Pro vulnerable to OS command injection | 2025-04-11T13:52+09:00 | 2025-04-11T13:52+09:00 |
| jvndb-2025-000026 | Multiple vulnerabilities in BizRobo! | 2025-04-10T15:36+09:00 | 2025-04-10T15:36+09:00 |
| jvndb-2025-003091 | Multiple vulnerabilities in Trend Micro Endpoint security products for enterprises (April 2025) | 2025-04-09T14:55+09:00 | 2025-04-09T14:55+09:00 |
| jvndb-2025-002990 | Multiple vulnerabilities in Inaba Denki Sangyo Wi-Fi AP UNIT 'AC-WPS-11ac series' | 2025-04-07T17:44+09:00 | 2025-04-07T17:44+09:00 |
| jvndb-2025-000025 | WinRAR vulnerable to the symbolic link based "Mark of the Web" check bypass | 2025-04-03T12:29+09:00 | 2025-04-03T12:29+09:00 |
| jvndb-2025-000022 | Multiple vulnerabilities in JTEKT ELECTRONICS CORPORATION's products | 2025-04-02T15:12+09:00 | 2025-04-02T15:12+09:00 |
| jvndb-2025-002790 | Out-of-bounds Write vulnerabilities in Canon Printer Drivers for Production Printers, Office/Small Office Multifunction Printers and Laser Printers | 2025-04-02T15:05+09:00 | 2025-04-02T15:05+09:00 |
| jvndb-2025-000023 | WordPress plugin "Welcart e-Commerce" vulnerable to untrusted data deserialization | 2025-04-01T14:20+09:00 | 2025-04-01T14:20+09:00 |
| jvndb-2025-002714 | Improper symbolic link file handling in FutureNet NXR series, VXR series and WXR series routers | 2025-03-31T16:59+09:00 | 2025-04-03T15:19+09:00 |
| jvndb-2025-000024 | a-blog cms vulnerable to untrusted data deserialization | 2025-03-28T10:46+09:00 | 2025-03-28T10:46+09:00 |
| jvndb-2025-000021 | Multiple vulnerabilities in PowerCMS | 2025-03-26T18:13+09:00 | 2025-03-26T18:13+09:00 |
| jvndb-2025-002592 | Multiple vulnerabilities in CHOCO TEI WATCHER mini | 2025-03-26T13:25+09:00 | 2025-03-26T13:25+09:00 |
| jvndb-2025-000019 | Multiple vulnerabilities in AssetView | 2025-03-25T17:10+09:00 | 2025-03-25T17:10+09:00 |
| jvndb-2025-000018 | Multiple vulnerabilities in home gateway HGW-BL1500HM | 2025-03-19T15:33+09:00 | 2025-03-28T11:48+09:00 |
| jvndb-2025-000020 | +F FS010M vulnerable to OS command injection | 2025-03-18T15:01+09:00 | 2025-03-18T15:01+09:00 |
| jvndb-2025-000017 | hostapd vulnerable to improper processing of RADIUS packets | 2025-03-12T14:19+09:00 | 2025-03-12T14:19+09:00 |
| jvndb-2025-000016 | Multiple vulnerabilities in RemoteView Agent (for Windows) | 2025-03-06T14:27+09:00 | 2025-03-10T15:22+09:00 |
| jvndb-2025-001898 | Multiple vulnerabilities in FutureNet AS series (Industrial Routers) and FA series (Protocol Conversion Machine) | 2025-03-04T14:56+09:00 | 2025-03-04T14:56+09:00 |
| jvndb-2025-001605 | "RoboForm Password Manager" App for Android vulnerable to authentication bypass using an alternate path or channel | 2025-02-20T20:15+09:00 | 2025-02-20T20:15+09:00 |
| jvndb-2025-000014 | Multiple cross-site scripting vulnerabilities in Movable Type | 2025-02-19T16:19+09:00 | 2025-02-19T16:19+09:00 |
| jvndb-2025-000015 | RevoWorks SCVX and RevoWorks Browser vulnerable to incorrect resource transfer between spheres | 2025-02-19T14:51+09:00 | 2025-02-19T14:51+09:00 |
| jvndb-2025-001563 | Out-of-bounds write vulnerability in FUJIFILM Business Innovation Corp. MFPs | 2025-02-18T16:33+09:00 | 2025-02-18T16:33+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2026:0317-1 | Security update for the Linux Kernel | 2026-01-28T14:37:02Z | 2026-01-28T14:37:02Z |
| suse-su-2026:0316-1 | Security update for the Linux Kernel | 2026-01-28T14:35:14Z | 2026-01-28T14:35:14Z |
| suse-su-2026:0315-1 | Security update for the Linux Kernel | 2026-01-28T14:34:30Z | 2026-01-28T14:34:30Z |
| suse-su-2026:0314-1 | Security update for python311 | 2026-01-28T13:28:48Z | 2026-01-28T13:28:48Z |
| suse-su-2026:20202-1 | Security update for the Linux Kernel (Live Patch 1 for SUSE Linux Enterprise 16) | 2026-01-28T10:27:58Z | 2026-01-28T10:27:58Z |
| suse-su-2026:20171-1 | Security update for the Linux Kernel (Live Patch 1 for SUSE Linux Enterprise 16) | 2026-01-28T10:27:58Z | 2026-01-28T10:27:58Z |
| suse-su-2026:0313-1 | Security update for gimp | 2026-01-28T10:13:29Z | 2026-01-28T10:13:29Z |
| suse-su-2026:20184-1 | Security update for python-FontTools | 2026-01-28T09:56:55Z | 2026-01-28T09:56:55Z |
| suse-su-2026:0312-1 | Security update for openssl-3 | 2026-01-28T09:37:56Z | 2026-01-28T09:37:56Z |
| suse-su-2026:0311-1 | Security update for openssl-3 | 2026-01-28T09:37:48Z | 2026-01-28T09:37:48Z |
| suse-su-2026:0310-1 | Security update for openssl-3 | 2026-01-28T09:37:26Z | 2026-01-28T09:37:26Z |
| suse-su-2026:0309-1 | Security update for openssl-3 | 2026-01-28T09:36:37Z | 2026-01-28T09:36:37Z |
| suse-su-2026:0308-1 | Security update for go1.24-openssl | 2026-01-28T08:38:40Z | 2026-01-28T08:38:40Z |
| suse-su-2026:20183-1 | Security update for ImageMagick | 2026-01-28T08:38:34Z | 2026-01-28T08:38:34Z |
| suse-su-2026:20182-1 | Security update for cockpit-subscriptions | 2026-01-27T20:40:44Z | 2026-01-27T20:40:44Z |
| suse-su-2026:20170-1 | Security update for cockpit-subscriptions | 2026-01-27T20:40:44Z | 2026-01-27T20:40:44Z |
| suse-su-2026:0307-1 | Security update for python-python-multipart | 2026-01-27T16:36:58Z | 2026-01-27T16:36:58Z |
| suse-su-2026:0306-1 | Security update for xen | 2026-01-27T16:15:19Z | 2026-01-27T16:15:19Z |
| suse-su-2026:0305-1 | Recommended update for kernel-firmware | 2026-01-27T16:15:14Z | 2026-01-27T16:15:14Z |
| suse-su-2026:0304-1 | Security update for xen | 2026-01-27T16:14:51Z | 2026-01-27T16:14:51Z |
| suse-su-2026:0303-1 | Security update for xen | 2026-01-27T16:14:45Z | 2026-01-27T16:14:45Z |
| suse-su-2026:0301-1 | Security update for nodejs22 | 2026-01-27T08:20:46Z | 2026-01-27T08:20:46Z |
| suse-su-2026:0300-1 | Security update for python-pyasn1 | 2026-01-27T06:46:27Z | 2026-01-27T06:46:27Z |
| suse-su-2026:0299-1 | Security update for python311 | 2026-01-26T16:39:24Z | 2026-01-26T16:39:24Z |
| suse-su-2026:0298-1 | Security update for go1.25-openssl | 2026-01-26T16:11:04Z | 2026-01-26T16:11:04Z |
| suse-su-2026:0297-1 | Security update for go1.25-openssl | 2026-01-26T16:10:54Z | 2026-01-26T16:10:54Z |
| suse-su-2026:0296-1 | Security update for go1.24-openssl | 2026-01-26T13:51:05Z | 2026-01-26T13:51:05Z |
| suse-su-2026:0295-1 | Security update for nodejs22 | 2026-01-26T13:19:01Z | 2026-01-26T13:19:01Z |
| suse-su-2026:20146-1 | Security update for php8 | 2026-01-26T12:36:41Z | 2026-01-26T12:36:41Z |
| suse-su-2026:0293-1 | Security update for the Linux Kernel | 2026-01-26T11:36:42Z | 2026-01-26T11:36:42Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2026:10083-1 | vlang-0.5-2.1 on GA media | 2026-01-22T00:00:00Z | 2026-01-22T00:00:00Z |
| opensuse-su-2026:10082-1 | libsuricata8_0_3-8.0.3-1.1 on GA media | 2026-01-22T00:00:00Z | 2026-01-22T00:00:00Z |
| opensuse-su-2026:10081-1 | libsubid-devel-4.19.2-2.1 on GA media | 2026-01-22T00:00:00Z | 2026-01-22T00:00:00Z |
| opensuse-su-2026:10080-1 | bind-9.20.18-1.1 on GA media | 2026-01-22T00:00:00Z | 2026-01-22T00:00:00Z |
| opensuse-su-2026:20100-1 | Security update for gimp | 2026-01-21T13:31:29Z | 2026-01-21T13:31:29Z |
| opensuse-su-2026:20072-1 | Security update for podman | 2026-01-21T11:06:30Z | 2026-01-21T11:06:30Z |
| opensuse-su-2026:10079-1 | python311-weasyprint-68.0-1.1 on GA media | 2026-01-21T00:00:00Z | 2026-01-21T00:00:00Z |
| opensuse-su-2026:10078-1 | python311-pyasn1-0.6.2-1.1 on GA media | 2026-01-21T00:00:00Z | 2026-01-21T00:00:00Z |
| opensuse-su-2026:10077-1 | python311-jaraco.context-6.1.0-1.1 on GA media | 2026-01-21T00:00:00Z | 2026-01-21T00:00:00Z |
| opensuse-su-2026:10076-1 | python311-FontTools-4.61.1-1.1 on GA media | 2026-01-21T00:00:00Z | 2026-01-21T00:00:00Z |
| opensuse-su-2026:10075-1 | corepack24-24.13.0-2.1 on GA media | 2026-01-21T00:00:00Z | 2026-01-21T00:00:00Z |
| opensuse-su-2026:10074-1 | corepack22-22.22.0-1.1 on GA media | 2026-01-21T00:00:00Z | 2026-01-21T00:00:00Z |
| opensuse-su-2026:10073-1 | alloy-1.12.2-2.1 on GA media | 2026-01-21T00:00:00Z | 2026-01-21T00:00:00Z |
| opensuse-su-2026:20069-1 | Security update for python-weasyprint | 2026-01-20T23:40:26Z | 2026-01-20T23:40:26Z |
| opensuse-su-2026:20065-1 | Security update for webkit2gtk3 | 2026-01-20T12:08:51Z | 2026-01-20T12:08:51Z |
| opensuse-su-2026:20067-1 | Security update of open-vm-tools | 2026-01-20T11:02:10Z | 2026-01-20T11:02:10Z |
| opensuse-su-2026:20062-1 | Security update for rust1.91, rust1.92 | 2026-01-19T19:43:51Z | 2026-01-19T19:43:51Z |
| opensuse-su-2026:20064-1 | Security update for ffmpeg-4 | 2026-01-19T14:05:53Z | 2026-01-19T14:05:53Z |
| opensuse-su-2026:20060-1 | Security update for cargo-c | 2026-01-19T10:42:10Z | 2026-01-19T10:42:10Z |
| opensuse-su-2026:10072-1 | libblkid-devel-2.41.3-1.1 on GA media | 2026-01-19T00:00:00Z | 2026-01-19T00:00:00Z |
| opensuse-su-2026:10071-1 | libraylib550-5.5-2.1 on GA media | 2026-01-19T00:00:00Z | 2026-01-19T00:00:00Z |
| opensuse-su-2026:10070-1 | python-keystonemiddleware-doc-10.12.0-2.1 on GA media | 2026-01-19T00:00:00Z | 2026-01-19T00:00:00Z |
| opensuse-su-2026:10069-1 | heroic-games-launcher-2.18.1-2.1 on GA media | 2026-01-19T00:00:00Z | 2026-01-19T00:00:00Z |
| opensuse-su-2026:10068-1 | hauler-1.4.1-1.1 on GA media | 2026-01-19T00:00:00Z | 2026-01-19T00:00:00Z |
| opensuse-su-2026:10067-1 | grafana-11.6.7-2.1 on GA media | 2026-01-19T00:00:00Z | 2026-01-19T00:00:00Z |
| opensuse-su-2026:10066-1 | gimp-3.0.6-5.1 on GA media | 2026-01-19T00:00:00Z | 2026-01-19T00:00:00Z |
| opensuse-su-2026:10065-1 | harfbuzz-devel-12.3.0-2.1 on GA media | 2026-01-18T00:00:00Z | 2026-01-18T00:00:00Z |
| opensuse-su-2026:10064-1 | go1.25-1.25.6-1.1 on GA media | 2026-01-18T00:00:00Z | 2026-01-18T00:00:00Z |
| opensuse-su-2026:10063-1 | go1.24-1.24.12-1.1 on GA media | 2026-01-18T00:00:00Z | 2026-01-18T00:00:00Z |
| opensuse-su-2026:20057-1 | Security update for docker | 2026-01-17T13:20:26Z | 2026-01-17T13:20:26Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| sevd-2021-285-05 | Conext™ Advisor & Conext™ Control V2 | 2021-10-12T00:00:00.000Z | 2021-10-12T00:00:00.000Z |
| sevd-2021-285-04 | Modicon M218 Logic Controller | 2021-10-12T00:00:00.000Z | 2021-10-12T00:00:00.000Z |
| sevd-2021-285-03 | IGSS (Interactive Graphical SCADA System) | 2021-10-12T00:00:00.000Z | 2021-10-12T00:00:00.000Z |
| sevd-2021-285-02 | ConneXium Network Manager (CNM) Software | 2021-10-12T00:00:00.000Z | 2021-10-12T00:00:00.000Z |
| sevd-2021-285-01 | spaceLYnk, Wiser For KNX, fellerLYnk | 2021-10-12T00:00:00.000Z | 2021-10-12T00:00:00.000Z |
| sevd-2021-257-02 | Web Server on Modicon M340, Legacy Offers Modicon Quantum and Premium and Associated Communication Modules | 2021-09-14T20:04:00.000Z | 2023-02-14T20:04:43.000Z |
| sevd-2021-257-01 | EcoStruxureTM Control Expert, EcoStruxureTM Process Expert, SCADAPack RemoteConnect™ for x70 | 2021-09-14T18:30:00.000Z | 2022-07-12T18:30:00.000Z |
| sevd-2021-257-03 | StruxureWare Data Center Expert | 2021-09-14T00:00:00.000Z | 2021-09-14T00:00:00.000Z |
| sevd-2021-222-04 | Modicon PAC Controllers and PLC Simulator for EcoStruxure™ Control Expert and EcoStruxure™ Process Expert | 2021-08-10T02:27:39.000Z | 2024-08-13T00:00:00.000Z |
| sevd-2021-222-06 | CODESYS V2 Vulnerabilities in Programmable Automation Controller (PacDrive) M | 2021-08-10T00:00:00.000Z | 2021-08-10T00:00:00.000Z |
| sevd-2021-222-05 | AccuSine PCSn/PCS+/PFV+ | 2021-08-10T00:00:00.000Z | 2021-08-10T00:00:00.000Z |
| sevd-2021-222-03 | Pro-face GP-Pro EX | 2021-08-10T00:00:00.000Z | 2021-08-10T00:00:00.000Z |
| sevd-2021-217-01 | NicheStack TCP/IP Vulnerabilities (INFRA:HALT) in Lexium ILE, ILA, ILS, and Communication Option Boards for Altivar and Lexium32 drives | 2021-08-05T06:29:08.000Z | 2023-05-09T06:29:00.000Z |
| sevd-2021-222-02 | AT&T Labs Compressor (XMilI) and Decompressor (XDemill) used by EcoStruxureTM Control Expert, EcoStruxureTM Process Expert and SCADAPack RemoteConnect™ for x70 | 2021-08-01T07:25:51.000Z | 2022-07-12T18:30:00.000Z |
| sevd-2021-194-01 | EcoStruxureTM Control Expert, EcoStruxureTM Process Expert, SCADAPack RemoteConnect™ x70, and Modicon Controllers M580 and M340 | 2021-07-13T08:22:02.000Z | 2024-08-13T00:00:00.000Z |
| sevd-2021-194-05 | Easergy T200 | 2021-07-13T00:00:00.000Z | 2021-07-13T00:00:00.000Z |
| sevd-2021-194-04 | C-Bus Toolkit | 2021-07-13T00:00:00.000Z | 2021-07-13T00:00:00.000Z |
| sevd-2021-194-03 | SoSafe Configurable | 2021-07-13T00:00:00.000Z | 2021-07-13T00:00:00.000Z |
| sevd-2021-159-04 | ISaGRAF Vulnerabilities in IEC 61131-3 Programming and Engineering Tools | 2021-06-08T04:36:25.000Z | 2025-11-15T00:00:00.000Z |
| sevd-2021-159-03 | PowerLogic EGX100 and PowerLogicEGX300 | 2021-06-08T00:00:00.000Z | 2021-06-08T00:00:00.000Z |
| sevd-2021-159-02 | PowerLogic PM5500 and PowerLogic PM8ECC | 2021-06-08T00:00:00.000Z | 2024-11-12T00:00:00.000Z |
| sevd-2021-159-01 | IGSS (Interactive Graphical SCADA System) | 2021-06-08T00:00:00.000Z | 2021-06-08T00:00:00.000Z |
| sevd-2021-130-04 | homeLYnk (Wiser For KNX) and spaceLYnk | 2021-05-11T07:30:55.000Z | 2022-11-08T07:30:55.000Z |
| sevd-2021-130-07 | EcoStruxure Geo SCADA Expert | 2021-05-11T00:00:00.000Z | 2021-05-11T00:00:00.000Z |
| sevd-2021-130-05 | Modicon M241 & M251 Logic Controllers | 2021-05-11T00:00:00.000Z | 2021-05-11T00:00:00.000Z |
| sevd-2021-130-01 | Modicon Managed Switch | 2021-05-11T00:00:00.000Z | 2021-05-11T00:00:00.000Z |
| sevd-2021-103-01 | C-Bus Toolkit and C-Gate Server | 2021-04-13T11:17:13.000Z | 2022-11-08T11:17:13.000Z |
| sevd-2021-068-02 | PowerLogic ION7400 / PM8000 / ION9000 Power Meters | 2021-03-09T00:00:00.000Z | 2021-03-09T00:00:00.000Z |
| sevd-2021-068-01 | IGSS (Interactive Graphical SCADA System) | 2021-03-09T00:00:00.000Z | 2021-03-09T00:00:00.000Z |
| sevd-2021-040-01 | PowerLogic Power Metering Products | 2021-02-08T00:00:00.000Z | 2021-02-08T00:00:00.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-kibana-2026-0531 | Allocation of Resources Without Limits or Throttling in Kibana Fleet | 2026-01-16T08:42:14.963Z | 2026-01-16T09:10:29.256Z |
| bit-kibana-2026-0530 | Allocation of Resources Without Limits or Throttling in Kibana Leading to Excessive Allocation | 2026-01-16T08:42:13.351Z | 2026-01-16T09:10:29.256Z |
| bit-elk-2026-0543 | Improper Input Validation in Kibana Email Connector Leading to Excessive Allocation | 2026-01-16T08:39:07.127Z | 2026-01-16T09:10:29.256Z |
| bit-elk-2026-0532 | External Control of File Name or Path and Server-Side Request Forgery (SSRF) in Kibana Google Gemini Connector | 2026-01-16T08:39:05.407Z | 2026-01-16T09:10:29.256Z |
| bit-elk-2026-0531 | Allocation of Resources Without Limits or Throttling in Kibana Fleet | 2026-01-16T08:39:03.612Z | 2026-01-16T09:10:29.256Z |
| bit-elk-2026-0530 | Allocation of Resources Without Limits or Throttling in Kibana Leading to Excessive Allocation | 2026-01-16T08:39:01.662Z | 2026-01-16T09:10:29.256Z |
| bit-appsmith-2026-22794 | Account Takeover Vulnerability in Appsmith | 2026-01-14T08:37:00.092Z | 2026-01-22T09:11:07.452Z |
| bit-mastodon-2026-22246 | Local Mastodon users can enumerate and access severed relationships of every other local user | 2026-01-13T11:27:33.626Z | 2026-01-26T15:09:56.435Z |
| bit-mastodon-2026-22245 | Mastodon has SSRF Protection bypass | 2026-01-13T11:27:28.319Z | 2026-01-13T12:01:00.363Z |
| bit-gitlab-2025-9222 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab | 2026-01-13T09:09:30.025Z | 2026-01-26T15:09:56.435Z |
| bit-gitlab-2025-3950 | Exposure of Private Personal Information to an Unauthorized Actor in GitLab | 2026-01-13T09:08:23.763Z | 2026-01-13T09:11:00.781Z |
| bit-gitlab-2025-13781 | Missing Authorization in GitLab | 2026-01-13T09:07:23.273Z | 2026-01-13T09:11:00.781Z |
| bit-gitlab-2025-13772 | Missing Authorization in GitLab | 2026-01-13T09:07:21.509Z | 2026-01-26T15:09:56.435Z |
| bit-gitlab-2025-13761 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab | 2026-01-13T09:07:19.725Z | 2026-01-26T15:09:56.435Z |
| bit-gitlab-2025-11246 | Insufficient Granularity of Access Control in GitLab | 2026-01-13T09:06:35.458Z | 2026-01-13T09:11:00.781Z |
| bit-gitlab-2025-10569 | Allocation of Resources Without Limits or Throttling in GitLab | 2026-01-13T09:06:21.471Z | 2026-01-13T09:11:00.781Z |
| bit-virtualenv-2026-22702 | virtualenv Has TOCTOU Vulnerabilities in Directory Creation | 2026-01-13T08:53:06.703Z | 2026-01-13T09:11:00.781Z |
| bit-ghost-2026-22597 | Ghost has SSRF via External Media Inliner | 2026-01-13T08:40:27.429Z | 2026-01-13T09:11:00.781Z |
| bit-ghost-2026-22596 | Ghost has SQL Injection in Members Activity Feed | 2026-01-13T08:40:25.592Z | 2026-01-16T09:10:29.256Z |
| bit-ghost-2026-22595 | Ghost has Staff Token permission bypass | 2026-01-13T08:40:23.758Z | 2026-01-13T09:11:00.781Z |
| bit-ghost-2026-22594 | Ghost has Staff 2FA bypass | 2026-01-13T08:40:22.071Z | 2026-01-13T09:11:00.781Z |
| bit-cosign-2026-22703 | Cosign verification accepts any valid Rekor entry under certain conditions | 2026-01-13T08:37:37.120Z | 2026-01-13T09:11:00.781Z |
| bit-php-2025-14180 | NULL Pointer Dereference in PDO quoting | 2026-01-08T11:48:33.482Z | 2026-01-08T12:08:29.041Z |
| bit-php-2025-14178 | Heap buffer overflow in array_merge() | 2026-01-08T11:48:32.142Z | 2026-01-26T15:09:56.435Z |
| bit-php-2025-14177 | Information Leak of Memory in getimagesize | 2026-01-08T11:48:30.537Z | 2026-01-08T12:08:29.041Z |
| bit-libphp-2025-14180 | NULL Pointer Dereference in PDO quoting | 2026-01-08T11:43:29.868Z | 2026-01-08T12:08:29.041Z |
| bit-libphp-2025-14178 | Heap buffer overflow in array_merge() | 2026-01-08T11:43:28.412Z | 2026-01-26T15:09:56.435Z |
| bit-libphp-2025-14177 | Information Leak of Memory in getimagesize | 2026-01-08T11:43:26.820Z | 2026-01-08T12:08:29.041Z |
| bit-discourse-2025-64528 | Users are able to find users by name even when `enable_names` is off | 2026-01-08T11:40:33.666Z | 2026-01-08T18:07:34.629Z |
| bit-composer-2025-67746 | Composer vulnerable to ANSI sequence injection | 2026-01-08T11:35:54.533Z | 2026-01-08T12:08:29.041Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cleanstart-2026-ej58111 | SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process | 2026-01-30T15:50:24.547860Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-qw16951 | SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process | 2026-01-30T15:48:54.464404Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-ad41794 | SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process | 2026-01-30T15:47:54.368234Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-zp68963 | SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process | 2026-01-30T15:47:54.288582Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-gc16599 | Cancelling a query (e | 2026-01-30T15:46:54.243517Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-tr11635 | Cancelling a query (e | 2026-01-30T15:46:54.229170Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-xd92996 | Cancelling a query (e | 2026-01-30T15:46:24.650971Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-ok45738 | Within HostnameError | 2026-01-30T15:45:53.967263Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-rx06615 | SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process | 2026-01-30T15:45:24.056160Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-fj56296 | SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process | 2026-01-30T15:45:23.960354Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-bt39952 | Moby is an open source container framework developed by Docker Inc | 2026-01-30T15:45:23.955705Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-uy81473 | SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process | 2026-01-30T15:44:54.187987Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-bs24435 | SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process | 2026-01-30T15:44:54.166999Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-me47927 | net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines | 2026-01-30T15:43:24.066833Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-pa85871 | net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines | 2026-01-30T15:42:24.099846Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-bv91860 | Within HostnameError | 2026-01-30T15:42:23.881650Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-er42900 | ParseAddress function constructs domain-literal address components through repeated string concatenation | 2026-01-30T15:41:23.817747Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-dv06422 | excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate | 2026-01-30T15:40:54.415037Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-mj51212 | Cancelling a query (e | 2026-01-30T15:40:23.782215Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-so16176 | excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate | 2026-01-30T15:39:24.255623Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-ru37859 | Cancelling a query (e | 2026-01-30T15:39:24.210234Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-pc16040 | Within HostnameError | 2026-01-30T15:37:23.991168Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-dy37532 | Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability | 2026-01-30T15:36:23.811582Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-rw65075 | Within HostnameError | 2026-01-30T15:35:53.815887Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-hg66170 | Cancelling a query (e | 2026-01-30T15:35:23.809128Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-qj89068 | SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process | 2026-01-30T15:34:54.378061Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-bz92766 | beego is an open-source web framework for the Go programming language | 2026-01-30T15:34:54.149400Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-jm84344 | Within HostnameError | 2026-01-30T15:33:53.700265Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-nv07964 | Cancelling a query (e | 2026-01-30T15:33:23.809279Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-do54415 | Within HostnameError | 2026-01-30T15:33:23.703184Z | 2026-01-29T18:58:54Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| drupal-contrib-2024-030 | 2024-08-21T16:23:02.000Z | 2025-02-20T19:11:48.000Z | |
| drupal-contrib-2024-029 | 2024-08-07T17:36:15.000Z | 2025-02-20T19:12:05.000Z | |
| drupal-contrib-2024-028 | 2024-08-07T17:30:20.000Z | 2025-02-20T19:12:22.000Z | |
| drupal-contrib-2024-027 | 2024-08-07T17:19:30.000Z | 2025-02-20T19:12:37.000Z | |
| drupal-contrib-2024-026 | 2024-07-31T15:59:06.000Z | 2025-02-20T19:12:56.000Z | |
| drupal-contrib-2024-025 | 2024-06-05T16:45:02.000Z | 2025-02-20T19:13:15.000Z | |
| drupal-contrib-2024-024 | 2024-05-29T16:58:59.000Z | 2025-02-20T19:13:35.000Z | |
| drupal-contrib-2024-023 | 2024-05-29T16:52:42.000Z | 2025-02-20T19:13:53.000Z | |
| drupal-contrib-2024-022 | 2024-05-29T16:44:55.000Z | 2025-02-20T19:14:10.000Z | |
| drupal-contrib-2024-021 | 2024-05-22T16:21:55.000Z | 2025-02-20T19:14:35.000Z | |
| drupal-contrib-2024-020 | 2024-05-22T16:03:46.000Z | 2025-02-20T18:43:21.000Z | |
| drupal-contrib-2024-018 | 2024-04-24T14:23:34.000Z | 2025-02-20T18:44:08.000Z | |
| drupal-contrib-2024-017 | 2024-04-24T13:16:40.000Z | 2025-02-20T18:44:32.000Z | |
| drupal-contrib-2024-016 | 2024-03-27T17:16:26.000Z | 2025-02-20T19:08:34.000Z | |
| drupal-contrib-2024-015 | 2024-03-06T17:06:37.000Z | 2025-02-20T19:08:51.000Z | |
| drupal-contrib-2024-014 | 2024-02-28T18:36:35.000Z | 2025-02-20T19:09:20.000Z | |
| drupal-contrib-2024-012 | 2024-02-28T18:19:01.000Z | 2025-02-20T19:09:55.000Z | |
| drupal-contrib-2024-011 | 2024-02-28T18:14:40.000Z | 2025-02-20T19:10:16.000Z | |
| drupal-contrib-2024-010 | 2024-02-21T16:58:11.000Z | 2025-02-20T18:36:16.000Z | |
| drupal-contrib-2024-009 | 2024-02-14T19:31:10.000Z | 2025-02-20T18:37:01.000Z | |
| drupal-contrib-2024-008 | 2024-02-07T17:56:55.000Z | 2025-02-20T18:37:40.000Z | |
| drupal-contrib-2024-007 | 2024-01-31T17:22:36.000Z | 2025-02-20T18:38:01.000Z | |
| drupal-contrib-2024-006 | 2024-01-24T15:54:55.000Z | 2025-02-20T18:38:32.000Z | |
| drupal-contrib-2024-005 | 2024-01-24T15:47:36.000Z | 2025-02-20T18:38:57.000Z | |
| drupal-contrib-2024-004 | 2024-01-24T15:45:49.000Z | 2025-02-20T18:39:20.000Z | |
| drupal-contrib-2024-003 | 2024-01-24T15:42:46.000Z | 2025-02-20T18:39:54.000Z | |
| drupal-contrib-2024-002 | 2024-01-10T18:00:05.000Z | 2025-02-20T18:40:20.000Z | |
| drupal-contrib-2023-055 | 2023-12-20T17:02:51.000Z | 2023-12-20T17:53:15.000Z | |
| drupal-contrib-2023-054 | 2023-12-06T16:16:28.000Z | 2023-12-07T02:47:34.000Z | |
| drupal-contrib-2023-053 | 2023-11-29T15:27:05.000Z | 2023-11-29T18:08:04.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2026-07004 | WordPress SpiceForms Form Builder plugin跨站脚本漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06988 | WordPress Sosh Share Buttons plugin跨站请求伪造漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06987 | WordPress SocialChamp with WordPress plugin跨站请求伪造漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06986 | WordPress Short Link plugin跨站脚本漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06985 | WordPress Shipping Rate By Cities plugin SQL注入漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06984 | WordPress SearchWiz plugin跨站脚本漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06913 | WordPress Responsive Accordion Slider plugin未经授权的数据修改漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06912 | WordPress LinkedIn SC plugin跨站脚本漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06911 | WordPress Kunze Law plugin跨站脚本漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06910 | WordPress Internal Link Builder plugin跨站脚本漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06909 | WordPress Gotham Block Extra Light plugin路径遍历漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06908 | WordPress Gotham Block Extra Light plugin跨站脚本漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06907 | WordPress GetContentFromURL plugin服务端请求伪造漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06906 | WordPress Float Payment Gateway plugin未经授权的数据修改漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06905 | WordPress Flat Shipping Rate by City for WooCommerce plugin SQL注入漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06904 | WordPress Electric Studio Download Counter plugin跨站脚本漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06903 | WordPress Aplazo Payment Gateway plugin缺少权限漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06902 | WordPress AJS Footnotes plugin跨站脚本漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06808 | Cyber Cafe Management System add-users.php端点跨站脚本漏洞 | 2026-01-19 | 2026-01-22 |
| cnvd-2026-06807 | Cyber Cafe Management System add-users.php端点跨站脚本漏洞 | 2026-01-19 | 2026-01-22 |
| cnvd-2026-06806 | Cyber Cafe Management System add-users.php端点SQL注入漏洞 | 2026-01-19 | 2026-01-22 |
| cnvd-2026-06805 | Cyber Cafe Management System adminprofile.php端点SQL注入漏洞 | 2026-01-19 | 2026-01-22 |
| cnvd-2026-06433 | D-Link DIR-806A命令注入漏洞 | 2026-01-19 | 2026-01-19 |
| cnvd-2026-06093 | Tenda AX-3 fromAdvSetMacMtuWan函数栈缓冲区溢出漏洞 | 2026-01-19 | 2026-01-21 |
| cnvd-2026-06092 | Tenda AX-3 fromAdvSetMacMtuWan函数堆栈缓冲区溢出漏洞 | 2026-01-19 | 2026-01-21 |
| cnvd-2026-06091 | Tenda AX-3 fromAdvSetMacMtuWan函数栈缓冲区溢出漏洞 | 2026-01-19 | 2026-01-21 |
| cnvd-2026-06090 | Tenda AX-3 fromAdvSetMacMtuWan函数堆栈缓冲区溢出漏洞 | 2026-01-19 | 2026-01-21 |
| cnvd-2026-06089 | Tenda AX-3 fromAdvSetMacMtuWan函数堆栈缓冲区溢出漏洞 | 2026-01-19 | 2026-01-21 |
| cnvd-2026-06088 | Tenda AX1806 sub_4CA50函数堆栈缓冲区溢出漏洞 | 2026-01-19 | 2026-01-21 |
| cnvd-2026-06087 | Tenda AX1806 sub_65B5C函数堆栈缓冲区溢出漏洞 | 2026-01-19 | 2026-01-21 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2026-avi-0047 | Vulnérabilité dans F5 NGINX Ingress Controller | 2026-01-15T00:00:00.000000 | 2026-01-15T00:00:00.000000 |
| certfr-2026-avi-0046 | Multiples vulnérabilités dans les produits Microsoft | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| certfr-2026-avi-0045 | Multiples vulnérabilités dans Microsoft Azure | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| certfr-2026-avi-0044 | Multiples vulnérabilités dans Microsoft Windows | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| certfr-2026-avi-0043 | Multiples vulnérabilités dans Microsoft Office | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| certfr-2026-avi-0042 | Multiples vulnérabilités dans les produits HPE Aruba Networking | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| certfr-2026-avi-0041 | Multiples vulnérabilités dans les produits Elastic | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| certfr-2026-avi-0040 | Multiples vulnérabilités dans Google Chrome | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| certfr-2026-avi-0039 | Multiples vulnérabilités dans Node.js | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| certfr-2026-avi-0038 | Multiples vulnérabilités dans les produits Mozilla | 2026-01-14T00:00:00.000000 | 2026-01-15T00:00:00.000000 |
| certfr-2026-avi-0037 | Multiples vulnérabilités dans Typo3 | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| certfr-2026-avi-0036 | Multiples vulnérabilités dans Suricata | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| certfr-2026-avi-0035 | Multiples vulnérabilités dans les produits Fortinet | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| certfr-2026-avi-0034 | Multiples vulnérabilités dans les produits SAP | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| certfr-2026-avi-0033 | Multiples vulnérabilités dans les produits Schneider Electric | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| certfr-2026-avi-0032 | Multiples vulnérabilités dans les produits Siemens | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| certfr-2026-avi-0031 | Vulnérabilité dans le greffon VSCode pour Spring CLI | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| certfr-2026-avi-0030 | Vulnérabilité dans MISP | 2026-01-13T00:00:00.000000 | 2026-01-13T00:00:00.000000 |
| certfr-2026-avi-0029 | Multiples vulnérabilités dans VMware Tanzu Gemfire | 2026-01-13T00:00:00.000000 | 2026-01-13T00:00:00.000000 |
| certfr-2026-avi-0028 | Multiples vulnérabilités dans MariaDB | 2026-01-13T00:00:00.000000 | 2026-01-13T00:00:00.000000 |
| certfr-2026-avi-0027 | Vulnérabilité dans NetApp ONTAP | 2026-01-13T00:00:00.000000 | 2026-01-13T00:00:00.000000 |
| certfr-2026-avi-0026 | Vulnérabilité dans Google Pixel | 2026-01-13T00:00:00.000000 | 2026-01-13T00:00:00.000000 |
| certfr-2026-avi-0025 | Vulnérabilité dans Microsoft Edge | 2026-01-12T00:00:00.000000 | 2026-01-12T00:00:00.000000 |
| certfr-2026-avi-0024 | Multiples vulnérabilités dans VMware Tanzu Greenplum Backup and Restore | 2026-01-12T00:00:00.000000 | 2026-01-12T00:00:00.000000 |
| certfr-2026-avi-0023 | Multiples vulnérabilités dans les produits Axis | 2026-01-12T00:00:00.000000 | 2026-01-12T00:00:00.000000 |
| certfr-2026-avi-0022 | Multiples vulnérabilités dans les produits Microsoft | 2026-01-09T00:00:00.000000 | 2026-01-09T00:00:00.000000 |
| certfr-2026-avi-0021 | Vulnérabilité dans Microsoft Edge | 2026-01-09T00:00:00.000000 | 2026-01-09T00:00:00.000000 |
| certfr-2026-avi-0020 | Multiples vulnérabilités dans les produits IBM | 2026-01-09T00:00:00.000000 | 2026-01-09T00:00:00.000000 |
| certfr-2026-avi-0019 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2026-01-09T00:00:00.000000 | 2026-01-09T00:00:00.000000 |
| certfr-2026-avi-0018 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2026-01-09T00:00:00.000000 | 2026-01-09T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2014-ale-011 | Vulnérabilité de l'implémentation Kerberos dans Microsoft Windows | 2014-11-18T00:00:00.000000 | 2015-01-30T00:00:00.000000 |
| certfr-2014-ale-010 | Vulnérabilité de l'implémentation des protocoles SSL/TLS dans Microsoft Windows | 2014-11-11T00:00:00.000000 | 2015-01-30T00:00:00.000000 |
| certfr-2014-ale-009 | Vulnérabilité dans Microsoft OLE | 2014-10-22T00:00:00.000000 | 2014-11-12T00:00:00.000000 |
| certfr-2014-ale-008 | Vulnérabilité dans Drupal | 2014-10-16T00:00:00.000000 | 2015-01-30T00:00:00.000000 |
| certfr-2014-ale-007 | Vulnérabilité dans SSLv3 | 2014-10-15T00:00:00.000000 | 2014-10-15T00:00:00.000000 |
| certfr-2014-ale-006 | Vulnérabilité dans GNU bash | 2014-09-25T00:00:00.000000 | 2014-09-30T00:00:00.000000 |
| certfr-2014-ale-005 | Vulnérabilité dans Microsoft Internet Explorer | 2014-04-28T00:00:00.000000 | 2014-05-02T00:00:00.000000 |
| certfr-2014-ale-004 | Vulnérabilité dans Apache Struts | 2014-04-25T00:00:00.000000 | 2014-04-29T00:00:00.000000 |
| certfr-2014-ale-003 | Vulnérabilité dans OpenSSL | 2014-04-08T00:00:00.000000 | 2014-07-30T00:00:00.000000 |
| certfr-2014-ale-002 | Vulnérabilité dans Microsoft Word | 2014-03-25T00:00:00.000000 | 2014-04-09T00:00:00.000000 |
| certfr-2014-ale-001 | Vulnérabilité dans Microsoft Internet Explorer | 2014-02-21T00:00:00.000000 | 2014-03-12T00:00:00.000000 |
| certa-2013-ale-008 | Vulnérabilité critique dans le noyau de Microsoft Windows | 2013-11-28T00:00:00.000000 | 2014-01-16T00:00:00.000000 |
| certa-2013-ale-007 | Vulnérabilité dans un composant graphique de Microsoft | 2013-11-06T00:00:00.000000 | 2013-12-10T00:00:00.000000 |
| certa-2013-ale-006 | Vulnérabilité dans Microsoft Internet Explorer | 2013-09-18T00:00:00.000000 | 2013-10-09T00:00:00.000000 |
| certa-2013-ale-005 | Vulnérabilité dans le noyau Linux | 2013-05-14T00:00:00.000000 | 2013-05-24T00:00:00.000000 |
| certa-2013-ale-004 | Vulnérabilité dans Adobe ColdFusion | 2013-05-10T00:00:00.000000 | 2013-05-15T00:00:00.000000 |
| certa-2013-ale-003 | Vulnérabilité dans Microsoft Internet Explorer 8 | 2013-05-06T00:00:00.000000 | 2013-05-15T00:00:00.000000 |
| certa-2013-ale-002 | Vulnérabilités dans Adobe Reader et Acrobat | 2013-02-14T00:00:00.000000 | 2013-02-21T00:00:00.000000 |
| certa-2013-ale-001 | Vulnérabilités dans Oracle Java | 2013-01-10T00:00:00.000000 | 2013-01-15T00:00:00.000000 |
| certa-2012-ale-010 | Vulnérabilité dans Internet Explorer | 2012-12-31T00:00:00.000000 | 2013-01-15T00:00:00.000000 |
| certa-2012-ale-009 | Vulnérabilité dans les pilotes NVidia | 2012-12-26T00:00:00.000000 | 2013-01-07T00:00:00.000000 |
| certa-2012-ale-008 | Vulnérabilité dans certains terminaux Samsung | 2012-12-18T00:00:00.000000 | 2012-12-18T00:00:00.000000 |
| certa-2012-ale-007 | Vulnérabilité dans MySQL | 2012-12-06T00:00:00.000000 | 2013-01-07T00:00:00.000000 |
| certa-2012-ale-006 | Vulnérabilité dans Internet Explorer | 2012-09-18T00:00:00.000000 | 2012-09-21T00:00:00.000000 |
| certa-2012-ale-005 | Vulnérabilité dans Oracle Java | 2012-08-27T00:00:00.000000 | 2012-08-31T00:00:00.000000 |
| certa-2012-ale-004 | Vulnérabilité dans Microsoft Exchange et Fast Search Server 2010 | 2012-07-25T00:00:00.000000 | 2012-08-16T00:00:00.000000 |
| certa-2012-ale-003 | Vulnérabilité dans Microsoft XML Core Services | 2012-06-14T00:00:00.000000 | 2012-08-17T00:00:00.000000 |
| certa-2012-ale-002 | Vulnérabilité dans Windows RDP | 2012-03-14T00:00:00.000000 | 2012-04-13T00:00:00.000000 |
| certa-2012-ale-001 | Vulnérabilité dans Cisco IronPort | 2012-02-01T00:00:00.000000 | 2013-02-05T00:00:00.000000 |
| certa-2011-ale-008 | Vulnérabilité dans Adobe Reader et Acrobat | 2011-12-07T00:00:00.000000 | 2012-01-10T00:00:00.000000 |