Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-27835	4.3 (3.1)	wger: IDOR in RepetitionsConfig and MaxRepetitionsConf…	wger-project	wger	2026-02-26T22:00:23.768Z	2026-02-26T22:00:23.768Z
CVE-2026-27457	4.3 (3.1)	Weblate: Missing access control for the AddonViewSet A…	WeblateOrg	weblate	2026-02-26T21:56:03.220Z	2026-02-26T21:56:03.220Z
CVE-2026-27449	7.5 (3.1)	Umbraco.Engage.Forms Allows Unauthorized Access to Mul…	umbraco	Umbraco.Engage.Forms	2026-02-26T21:51:14.512Z	2026-02-26T21:51:14.512Z
CVE-2026-25741	7.1 (3.1)	Zulip Vulnerable to Modification of Payment Method (St…	zulip	zulip	2026-02-26T21:44:34.398Z	2026-02-26T21:44:34.398Z
CVE-2026-3263	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	go2ismail Asp.Net-Core-Inventory-Order-Management-Syst…	go2ismail	Asp.Net-Core-Inventory-Order-Management-System	2026-02-26T21:32:08.766Z	2026-02-26T21:32:08.766Z
CVE-2026-28227	1.2 (4.0)	Discourse Vulnerable to Unauthorized Topic Creation in…	discourse	discourse	2026-02-26T21:27:38.926Z	2026-02-26T21:27:38.926Z
CVE-2026-28219	1.3 (4.0)	Privilege Escalation via Mass Assignment Allows Regula…	discourse	discourse	2026-02-26T21:25:36.635Z	2026-02-26T21:25:36.635Z
CVE-2026-28218	5.3 (4.0)	Discourse's Fail-Open Access Control in Data Explorer …	discourse	discourse	2026-02-26T21:23:32.354Z	2026-02-26T21:23:32.354Z
CVE-2026-27154	1.3 (4.0)	Discourse has XSS when editing a malicious post	discourse	discourse	2026-02-26T21:20:25.181Z	2026-02-26T21:20:25.181Z
CVE-2026-27153	1.3 (4.0)	Discourse doesn't prevent moderators from exporting us…	discourse	discourse	2026-02-26T21:16:41.077Z	2026-02-26T21:18:26.613Z
CVE-2026-3262	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	go2ismail Asp.Net-Core-Inventory-Order-Management-Syst…	go2ismail	Asp.Net-Core-Inventory-Order-Management-System	2026-02-26T21:02:10.682Z	2026-02-27T15:15:41.931Z
CVE-2026-3261	6.9 (4.0) 7.3 (3.1) 7.3 (3.0)	itsourcecode School Management System Setting index.ph…	itsourcecode	School Management System	2026-02-26T21:02:08.434Z	2026-02-27T15:44:41.552Z
CVE-2026-22207	9.3 (4.0) 9.8 (3.1)	OpenViking Missing root_api_key Allows Anonymous ROOT Access	Volcengine	OpenViking	2026-02-26T20:34:30.907Z	2026-02-27T18:17:03.313Z
CVE-2023-31364	8.3 (4.0)	Improper handling of direct memory writes in the …	AMD	AMD EPYC™ 7001 Series Processors	2026-02-26T20:33:28.086Z	2026-02-27T19:06:16.269Z
CVE-2026-22205	8.7 (4.0) 7.5 (3.1)	SPIP < 4.4.10 Authentication Bypass via PHP Type Juggling	SPIP	SPIP	2026-02-26T20:18:14.748Z	2026-02-27T20:06:38.973Z
CVE-2026-22206	8.7 (4.0) 8.8 (3.1)	SPIP < 4.4.10 SQL Injection RCE via Union & PHP Tags	SPIP	SPIP	2026-02-26T20:17:58.443Z	2026-02-27T20:08:48.214Z
CVE-2026-27152	1.3 (4.0)	DIscourse has DM communication-preference bypass when …	discourse	discourse	2026-02-26T20:00:33.138Z	2026-02-26T20:00:33.138Z
CVE-2026-27162	4.9 (4.0)	DIscourse doesn't prevent whispers to leak in excerpts	discourse	discourse	2026-02-26T19:58:33.819Z	2026-02-26T19:58:33.819Z
CVE-2026-27151	1.3 (4.0)	Discourse doesn't validate destination topic when movi…	discourse	discourse	2026-02-26T19:57:06.920Z	2026-02-26T19:57:06.920Z
CVE-2026-27150	1.3 (4.0)	Discourse doesn't ensure guardian check when creating …	discourse	discourse	2026-02-26T19:55:35.263Z	2026-02-26T19:55:35.263Z
CVE-2026-27149	4.9 (4.0)	Discourse has SQL injection in PM tag filtering	discourse	discourse	2026-02-26T19:52:54.619Z	2026-02-26T19:52:54.619Z
CVE-2026-27021	6.9 (4.0)	Discourse: Poll voters endpoint lacked post visibility…	discourse	discourse	2026-02-26T19:50:56.341Z	2026-02-28T03:25:15.137Z
CVE-2026-23939	6.9 (4.0)	Path Traversal in Local File Store Backend	hexpm	hexpm	2026-02-26T19:41:18.762Z	2026-02-27T03:57:08.485Z
CVE-2026-26979	0 (4.0)	Discourse: TL4 users are able to change status of rest…	discourse	discourse	2026-02-26T19:25:15.812Z	2026-02-26T20:38:24.755Z
CVE-2026-1565	8.8 (3.1)	User Frontend: AI Powered Frontend Posting, User Direc…	wedevs	User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration	2026-02-26T19:23:09.638Z	2026-02-26T20:45:54.082Z
CVE-2026-1241	8.7 (4.0)	Authentication Bypass Using an Alternate Path or Chann…	Pelco, Inc.	Sarix Professional IMP 3 Series	2026-02-26T19:21:26.754Z	2026-02-26T20:43:53.216Z
CVE-2026-26973	4.3 (3.1)	Discourse doesn't scope reviewable notes to user-visib…	discourse	discourse	2026-02-26T19:19:18.139Z	2026-02-26T20:41:30.698Z
CVE-2026-27510	6.4 (4.0) 9.6 (3.1)	Unitree Go2 Mobile Program Tampering Enables Root RCE	UnitreeRobotics	Unitree Go2	2026-02-26T18:56:56.654Z	2026-02-27T18:15:59.996Z
CVE-2026-27509	8.5 (4.0) 8 (3.1)	Unitree Go2 Missing DDS Authentication Enables Adjacent RCE	UnitreeRobotics	Unitree Go2	2026-02-26T18:56:31.648Z	2026-02-27T18:15:37.037Z
CVE-2026-27141	7.5 (3.1)	Sending certain HTTP/2 frames can cause a server to pa…	golang.org/x/net	golang.org/x/net/http2	2026-02-26T18:50:31.830Z	2026-02-27T19:11:57.260Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-28217	6.5 (3.1)	IDOR in GraphQL userCollection Query Exposes Other Use…	hoppscotch	hoppscotch	2026-02-26T22:38:33.854Z	2026-02-27T18:42:07.857Z
CVE-2026-28216	8.3 (3.1)	hoppscotch has IDOR in updateUserEnvironment / deleteU…	hoppscotch	hoppscotch	2026-02-26T22:36:50.539Z	2026-02-27T18:43:16.218Z
CVE-2026-28215	9.1 (3.1)	hoppscotch Vulnerable to Unauthenticated Onboarding Co…	hoppscotch	hoppscotch	2026-02-26T22:34:46.524Z	2026-02-26T22:34:46.524Z
CVE-2026-28213	9.8 (3.1)	EverShop Vulnerable to Arbitrary Customer Account Take…	evershopcommerce	evershop	2026-02-26T22:31:47.122Z	2026-02-27T18:51:10.647Z
CVE-2026-28211	7.8 (3.1)	Arbitrary code execution in log reader via untrusted l…	CyrilleB79	NVDA-Dev-Test-Toolbox	2026-02-26T22:29:36.164Z	2026-02-27T18:52:30.864Z
CVE-2026-28208	5.9 (3.1)	Junrar has arbitrary file write due to backslash path …	junrar	junrar	2026-02-26T22:20:03.765Z	2026-02-26T22:20:03.765Z
CVE-2026-28207	6.6 (3.1)	Zen-C Vulnerable to Command Injection via Malicious Ou…	z-libs	Zen-C	2026-02-26T22:17:58.898Z	2026-02-27T16:57:44.054Z
CVE-2026-27839	4.3 (3.1)	wger: IDOR in nutritional_values endpoints exposes pri…	wger-project	wger	2026-02-26T22:07:43.640Z	2026-02-26T22:07:43.640Z
CVE-2026-27838	3.1 (3.1)	wger: IDOR via user-unscoped cache keys on routine API…	wger-project	wger	2026-02-26T22:04:57.968Z	2026-02-26T22:04:57.968Z
CVE-2026-27638	5.7 (4.0)	ActualBudget missing authorization in sync endpoints a…	actualbudget	actual	2026-02-26T22:14:21.481Z	2026-02-26T22:14:21.481Z
CVE-2026-3263	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	go2ismail Asp.Net-Core-Inventory-Order-Management-Syst…	go2ismail	Asp.Net-Core-Inventory-Order-Management-System	2026-02-26T21:32:08.766Z	2026-02-26T21:32:08.766Z
CVE-2026-3262	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	go2ismail Asp.Net-Core-Inventory-Order-Management-Syst…	go2ismail	Asp.Net-Core-Inventory-Order-Management-System	2026-02-26T21:02:10.682Z	2026-02-27T15:15:41.931Z
CVE-2026-3261	6.9 (4.0) 7.3 (3.1) 7.3 (3.0)	itsourcecode School Management System Setting index.ph…	itsourcecode	School Management System	2026-02-26T21:02:08.434Z	2026-02-27T15:44:41.552Z
CVE-2026-28227	1.2 (4.0)	Discourse Vulnerable to Unauthorized Topic Creation in…	discourse	discourse	2026-02-26T21:27:38.926Z	2026-02-26T21:27:38.926Z
CVE-2026-28219	1.3 (4.0)	Privilege Escalation via Mass Assignment Allows Regula…	discourse	discourse	2026-02-26T21:25:36.635Z	2026-02-26T21:25:36.635Z
CVE-2026-28218	5.3 (4.0)	Discourse's Fail-Open Access Control in Data Explorer …	discourse	discourse	2026-02-26T21:23:32.354Z	2026-02-26T21:23:32.354Z
CVE-2026-27835	4.3 (3.1)	wger: IDOR in RepetitionsConfig and MaxRepetitionsConf…	wger-project	wger	2026-02-26T22:00:23.768Z	2026-02-26T22:00:23.768Z
CVE-2026-27457	4.3 (3.1)	Weblate: Missing access control for the AddonViewSet A…	WeblateOrg	weblate	2026-02-26T21:56:03.220Z	2026-02-26T21:56:03.220Z
CVE-2026-27449	7.5 (3.1)	Umbraco.Engage.Forms Allows Unauthorized Access to Mul…	umbraco	Umbraco.Engage.Forms	2026-02-26T21:51:14.512Z	2026-02-26T21:51:14.512Z
CVE-2026-27154	1.3 (4.0)	Discourse has XSS when editing a malicious post	discourse	discourse	2026-02-26T21:20:25.181Z	2026-02-26T21:20:25.181Z
CVE-2026-27153	1.3 (4.0)	Discourse doesn't prevent moderators from exporting us…	discourse	discourse	2026-02-26T21:16:41.077Z	2026-02-26T21:18:26.613Z
CVE-2026-25741	7.1 (3.1)	Zulip Vulnerable to Modification of Payment Method (St…	zulip	zulip	2026-02-26T21:44:34.398Z	2026-02-26T21:44:34.398Z
CVE-2026-27162	4.9 (4.0)	DIscourse doesn't prevent whispers to leak in excerpts	discourse	discourse	2026-02-26T19:58:33.819Z	2026-02-26T19:58:33.819Z
CVE-2026-27152	1.3 (4.0)	DIscourse has DM communication-preference bypass when …	discourse	discourse	2026-02-26T20:00:33.138Z	2026-02-26T20:00:33.138Z
CVE-2026-27151	1.3 (4.0)	Discourse doesn't validate destination topic when movi…	discourse	discourse	2026-02-26T19:57:06.920Z	2026-02-26T19:57:06.920Z
CVE-2026-27150	1.3 (4.0)	Discourse doesn't ensure guardian check when creating …	discourse	discourse	2026-02-26T19:55:35.263Z	2026-02-26T19:55:35.263Z
CVE-2026-27149	4.9 (4.0)	Discourse has SQL injection in PM tag filtering	discourse	discourse	2026-02-26T19:52:54.619Z	2026-02-26T19:52:54.619Z
CVE-2026-27021	6.9 (4.0)	Discourse: Poll voters endpoint lacked post visibility…	discourse	discourse	2026-02-26T19:50:56.341Z	2026-02-28T03:25:15.137Z
CVE-2026-22207	9.3 (4.0) 9.8 (3.1)	OpenViking Missing root_api_key Allows Anonymous ROOT Access	Volcengine	OpenViking	2026-02-26T20:34:30.907Z	2026-02-27T18:17:03.313Z
CVE-2026-22206	8.7 (4.0) 8.8 (3.1)	SPIP < 4.4.10 SQL Injection RCE via Union & PHP Tags	SPIP	SPIP	2026-02-26T20:17:58.443Z	2026-02-27T20:08:48.214Z

ID	Description	Published	Updated

ID	Severity	Description	Published	Updated
ghsa-vvxg-3v44-fpqx	6.5 (3.1)	Improper Validation of Specified Quantity in Input (CWE-1284) in Kibana can allow an authenticated …	2026-02-26T18:31:41Z	2026-02-26T18:31:41Z
ghsa-r8j5-pj3m-qhpv	4.3 (3.1)	A flaw was found in the FTP GVfs backend. A remote attacker could exploit this input validation vul…	2026-02-26T18:31:41Z	2026-02-26T18:31:41Z
ghsa-r78h-rv66-c9hf	3.7 (3.1) 6.3 (4.0)	VideoLAN VLC for Android prior to version 3.7.0 contain an authentication bypass in the Remote Acce…	2026-02-26T18:31:41Z	2026-02-27T21:31:20Z
ghsa-pp79-4qx3-mf4h	4.3 (3.1)	A flaw was found in the FTP GVfs backend. A malicious FTP server can exploit this vulnerability by …	2026-02-26T18:31:41Z	2026-02-26T18:31:41Z
ghsa-jjjp-v7q5-4xgm	4.9 (3.1) 2.3 (4.0)	VideoLAN VLC for Android prior to version 3.7.0 contains a path traversal vulnerability in the Remo…	2026-02-26T18:31:41Z	2026-02-27T21:31:20Z
ghsa-h52p-5g3g-rxjm	3.7 (3.1) 6.3 (4.0)	Golioth Firmware SDK version 0.10.0 prior to 0.22.0, fixed in commit d7f55b38, contain an out-of-bo…	2026-02-26T18:31:41Z	2026-02-27T15:34:17Z
ghsa-fg9r-q7mv-mcrw	5.7 (3.1)	Improper Validation of Array Index (CWE-129) in the PostgreSQL protocol parser in Packetbeat can le…	2026-02-26T18:31:41Z	2026-02-26T18:31:41Z
ghsa-5wx9-6p5v-7r76	3.7 (3.1) 6.3 (4.0)	Golioth Firmware SDK version 0.10.0 prior to 0.22.0, fixed in commit 48f521b, contain a stack-based…	2026-02-26T18:31:41Z	2026-02-27T15:34:17Z
ghsa-5859-4v8q-r354	7.8 (3.1)	An issue in fastCMS before v.0.1.6 allows a local attacker to execute arbitrary code via the Plugin…	2026-02-26T18:31:41Z	2026-02-26T21:31:30Z
ghsa-2qjx-h626-j6v4	2.9 (3.1) 2.1 (4.0)	Golioth Firmware SDK version 0.19.1 prior to 0.22.0, fixed in commit 0e788217, contain an out-of-bo…	2026-02-26T18:31:41Z	2026-02-27T15:34:17Z
ghsa-253p-9p9w-rg6r	9.8 (3.1)	ZenTaoPMS v18.11 through v21.6.beta is vulnerable to Directory Traversal in /module/ai/control.php.…	2026-02-26T18:31:41Z	2026-02-26T21:31:30Z
ghsa-ccw4-mq8x-wr3j	5.4 (3.1)	A reflected Cross-Site Scripting (XSS) vulnerability exists in the register.php backend script of P…	2026-02-26T18:31:40Z	2026-02-26T18:31:40Z
ghsa-mqpr-49jj-32rc	4.0 (3.1) 6.3 (4.0)	n8n: Webhook Forgery on Github Webhook Trigger	2026-02-26T15:58:34Z	2026-02-26T15:58:34Z
ghsa-f3f2-mcxc-pwjx	8.2 (3.1) 5.3 (4.0)	n8n: SQL Injection in MySQL, PostgreSQL, and Microsoft SQL nodes	2026-02-26T15:56:31Z	2026-02-26T15:56:31Z
ghsa-xp3g-cfwm-4q5h	4.8 (4.0)	Reflected Cross-Site Scripting (XSS) on the A3factura web platform, in parameter 'name', in 'a3fact…	2026-02-26T15:30:30Z	2026-02-26T15:30:30Z
ghsa-vq69-qj8j-4r8j	4.8 (4.0)	Reflected Cross-Site Scripting (XSS) on the A3factura web platform, in parameter 'name', parameter …	2026-02-26T15:30:30Z	2026-02-26T15:30:30Z
ghsa-jm25-jfc5-xhx6	4.8 (4.0)	Reflected Cross-Site Scripting (XSS) on the A3factura web platform, in parameter 'customerName', in…	2026-02-26T15:30:30Z	2026-02-26T15:30:30Z
ghsa-j28w-j889-vwc6	7.6 (3.1)	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera…	2026-02-26T15:30:30Z	2026-02-26T15:30:30Z
ghsa-g8p2-q5wh-ppx2	4.8 (4.0)	Reflected Cross-Site Scripting (XSS) on the A3factura web platform, in parameter 'customerVATNumber…	2026-02-26T15:30:30Z	2026-02-26T15:30:30Z
ghsa-6v6h-v95w-6g6x	8.4 (3.1)	Deserialization of untrusted data in the LanguageModel class of Flair from versions 0.4.1 to latest…	2026-02-26T15:30:30Z	2026-02-26T15:30:30Z
ghsa-65m8-95c4-38hm	8.4 (4.0)	A vulnerability in Google Cloud Vertex AI Workbench from 7/21/2025 to 01/30/2026 allows an attacker…	2026-02-26T15:30:30Z	2026-02-26T15:30:31Z
ghsa-42wg-38gx-85rh	7.2 (3.1)	Vikunja has Path Traversal in CLI Restore	2026-02-26T15:23:30Z	2026-02-26T15:23:30Z
ghsa-w789-49fc-v8hr	8.7 (4.0)	TerriaJS-Server has a domain validation bypass vulnerability in its proxy allowlist	2026-02-26T15:22:11Z	2026-02-26T15:22:11Z
ghsa-24p2-j2jr-386w	6.8 (4.0)	psd-tools: Compression module has unguarded zlib decompression, missing dimension validation, and h…	2026-02-26T15:20:51Z	2026-02-26T15:20:51Z
ghsa-mpf7-p9x7-96r3	5.8 (3.1)	Mailpit is Vulnerable to Server-Side Request Forgery (SSRF) via Link Check API	2026-02-26T15:18:46Z	2026-02-26T15:18:46Z
ghsa-vjqx-cfc4-9h6v	6.4 (4.0)	mcp-server-git : Path traversal in git_add allows staging files outside repository boundaries	2026-02-26T15:16:57Z	2026-02-26T15:16:57Z
ghsa-mjf5-7g4m-gx5w	8.9 (4.0)	Storybook Dev Server is Vulnerable to WebSocket Hijacking	2026-02-26T15:16:10Z	2026-02-26T15:16:10Z
ghsa-49xw-vfc4-7p43	5.1 (4.0)	Fleet has an SQL Injection vulnerability via backtick escape in ORDER BY parameter	2026-02-26T15:14:12Z	2026-02-26T15:14:12Z
ghsa-p5q4-qc3r-2w36	7.3 (4.0)	Improper neutralization of input in Checkmk versions 2.4.0 before 2.4.0p22, and 2.3.0 before 2.3.0p…	2026-02-26T12:30:25Z	2026-02-26T12:30:25Z
ghsa-ggxg-6g5h-6m7w	8.6 (4.0)	SIMPLE.ERP is vulnerable to the SQL Injection in search functionality in "Obroty na kontach" window…	2026-02-26T12:30:25Z	2026-02-26T12:30:25Z

ID	Severity	Description	Package	Published	Updated
pysec-2024-221	5.3 (3.1)	aiosmtpd is a reimplementation of the Python stdlib smtpd.py based on asyncio. aiosmtpd i…	aiosmtpd	2024-03-12T21:15:58+00:00	2025-01-22T16:23:18.042465+00:00
pysec-2024-44		In RPyC before 6.0.0, when a server exposes a method that calls the attribute named __arr…	rpyc	2024-03-12T16:15:00+00:00	2024-03-12T19:19:21.886478+00:00
pysec-2024-45		LangChain through 0.1.10 allows ../ directory traversal by an actor who is able to contro…	langchain-core	2024-03-04T00:15:00+00:00	2024-03-13T23:20:07.486731+00:00
pysec-2024-43		LangChain through 0.1.10 allows ../ directory traversal by an actor who is able to contro…	langchain	2024-03-04T00:15:00+00:00	2024-03-05T10:22:15.555734+00:00
pysec-2024-42		Apache Airflow, versions before 2.8.2, has a vulnerability that allows authenticated Ops …	apache-airflow	2024-03-01T11:15:00+00:00	2024-03-01T14:20:34.498842+00:00
pysec-2024-245		Apache Airflow, versions before 2.8.2, has a vulnerability that allows authenticated user…	apache-airflow	2024-02-29T11:15:08+00:00	2025-05-01T21:22:38.598048+00:00
pysec-2024-162	6.5 (3.1)	A Regular Expression Denial of Service (ReDoS) vulnerability exists in the XMLFeedSpider …	scrapy	2024-02-28T00:15:53+00:00	2025-01-14T05:22:21.870348+00:00
pysec-2024-41		diffoscope before 256 allows directory traversal via an embedded filename in a GPG file. …	diffoscope	2024-02-27T02:15:00+00:00	2024-02-27T07:20:27.954412+00:00
pysec-2024-205	5.3 (3.1)	Vyper is a pythonic Smart Contract Language for the ethereum virtual machine. When using …	vyper	2024-02-26T20:19:05+00:00	2025-01-19T19:19:01.519824+00:00
pysec-2024-164	5.3 (3.1)	Vyper is a pythonic Smart Contract Language for the ethereum virtual machine. If an exces…	vyper	2024-02-26T20:19:05+00:00	2025-01-16T21:21:41.436934+00:00
pysec-2024-40		orjson.loads in orjson before 3.9.15 does not limit recursion for deeply nested JSON documents.	orjson	2024-02-26T16:28:00+00:00	2024-02-26T18:22:26.039698+00:00
pysec-2024-253		pretix before 2024.1.1 mishandles file validation.	pretix	2024-02-26T16:28:00+00:00	2025-06-11T15:23:51.683422+00:00
pysec-2024-235	8.1 (3.1)	With the following crawler configuration: ```python from bs4 import BeautifulSoup as Sou…	langchain-exa	2024-02-26T16:27:49+00:00	2025-02-26T02:48:56.937312+00:00
pysec-2024-39		Versions of the package fastecdsa before 2.3.2 are vulnerable to Use of Uninitialized Var…	fastecdsa	2024-02-24T05:15:00+00:00	2024-02-24T07:19:09.418536+00:00
pysec-2024-241	9.6 (3.1)	Insufficient sanitization in MLflow leads to XSS when running a recipe that uses an untru…	mlflow	2024-02-23T22:15:55+00:00	2025-04-08T10:23:24.946136+00:00
pysec-2024-240	9.6 (3.1)	Insufficient sanitization in MLflow leads to XSS when running an untrusted recipe. This …	mlflow	2024-02-23T22:15:55+00:00	2025-04-08T10:23:24.900947+00:00
pysec-2024-223	9.1 (3.1)	Versions of the package onnx before and including 1.15.0 are vulnerable to Out-of-bounds …	onnx	2024-02-23T18:15:50+00:00	2025-01-22T16:23:22.060512+00:00
pysec-2024-222	7.5 (3.1)	Versions of the package onnx before and including 1.15.0 are vulnerable to Directory Trav…	onnx	2024-02-23T18:15:50+00:00	2025-01-22T16:23:21.994731+00:00
pysec-2024-249	6.1 (3.1)	### Summary On all Label Studio versions prior to 1.11.0, data imported via file upload f…	label-studio	2024-02-22T22:15:47+00:00	2025-05-19T11:22:35.312280+00:00
pysec-2024-226	7.8 (3.1)	Pymatgen (Python Materials Genomics) is an open-source Python library for materials analy…	pymatgen	2024-02-21T17:15:09+00:00	2025-02-06T00:34:28.734730+00:00
pysec-2024-225	7.5 (3.1)	cryptography is a package designed to expose cryptographic primitives and recipes to Pyth…	cryptography	2024-02-21T17:15:09+00:00	2025-02-06T00:34:24.427679+00:00
pysec-2024-155	7.5 (3.1)	cbor2 provides encoding and decoding for the Concise Binary Object Representation (CBOR) …	cbor2	2024-02-19T23:15:07+00:00	2025-01-14T05:22:09.226388+00:00
pysec-2024-107	5.0 (3.1)	Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modif…	exiv2	2024-02-12T23:15:00+00:00	2024-10-23T00:00:00+00:00
pysec-2024-106	5.0 (3.1)	Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modif…	exiv2	2024-02-12T23:15:00+00:00	2024-10-23T00:00:00+00:00
pysec-2024-104	5.3 (3.1)	A vulnerability was found in JWCrypto. This flaw allows an attacker to cause a denial of …	jwcrypto	2024-02-12T14:15:00+00:00	2024-10-10T17:22:00.587279+00:00
pysec-2024-37	6.5 (3.1)	nonebot2 is a cross-platform Python asynchronous chatbot framework written in Python. Thi…	nonebot2	2024-02-09T23:15:00+00:00	2024-02-16T16:22:37.389642+00:00
pysec-2024-125	7.5 (3.1)	DIRAC is a distributed resource framework. In affected versions any user could get a toke…	dirac	2024-02-09T00:15:00+00:00	2024-11-21T14:22:45.495938+00:00
pysec-2024-150	9.8 (3.1)	Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. Arrays can …	vyper	2024-02-07T17:15:00+00:00	2024-11-21T14:23:03.024978+00:00
pysec-2024-28		An issue was discovered in Django 3.2 before 3.2.24, 4.2 before 4.2.10, and Django 5.0 be…	django	2024-02-06T22:16:00+00:00	2024-02-07T00:25:46.826634+00:00
pysec-2024-36	5.5 (3.1)	An information disclosure flaw was found in ansible-core due to a failure to respect the …	ansible-core	2024-02-06T12:15:00+00:00	2024-02-14T07:20:09.911618+00:00

ID	Description	Type

ID	Description	Updated

ID	Description	Published	Updated
mal-2026-850	Malicious code in ntoctfutils (PyPI)	2026-02-11T08:58:36Z	2026-02-11T08:58:36Z
mal-2026-849	Malicious code in jsonconfig-utils (PyPI)	2026-02-11T06:56:16Z	2026-02-11T06:56:16Z
mal-2026-848	Malicious code in npm_cimetadata (npm)	2026-02-11T03:35:51Z	2026-02-23T04:21:34Z
mal-2026-846	Malicious code in cryptowallethash (PyPI)	2026-02-10T23:03:29Z	2026-02-10T23:05:44Z
mal-2026-847	Malicious code in requests-auth-toolkit (PyPI)	2026-02-10T22:45:40Z	2026-02-10T22:45:40Z
mal-2024-12373	Malicious code in gpu-discovery (PyPI)	2026-02-10T22:28:06Z	2026-02-14T18:48:58Z
mal-2026-845	Malicious code in rzr-home (PyPI)	2026-02-10T20:45:52Z	2026-02-10T20:45:52Z
mal-2026-842	Malicious code in amplify-python-logging (PyPI)	2026-02-10T19:22:57Z	2026-02-10T19:22:57Z
mal-2026-844	Malicious code in vllm-plugins (PyPI)	2026-02-10T19:19:17Z	2026-02-10T19:19:17Z
mal-2026-843	Malicious code in requests-core-plugin (PyPI)	2026-02-10T19:14:49Z	2026-02-10T19:14:49Z
mal-2026-841	Malicious code in lyroxpy (PyPI)	2026-02-10T19:02:39Z	2026-02-10T19:02:39Z
mal-2026-839	Malicious code in search-newfrontier-podlet (npm)	2026-02-10T17:16:51Z	2026-02-23T04:21:35Z
mal-2026-837	Malicious code in notification-saved-search-settings-podlet (npm)	2026-02-10T17:06:08Z	2026-02-23T04:21:34Z
mal-2026-840	Malicious code in search-savedsearch-podlet (npm)	2026-02-10T17:06:06Z	2026-02-23T04:21:35Z
mal-2026-836	Malicious code in myads-layout (npm)	2026-02-10T17:06:04Z	2026-02-23T04:21:34Z
mal-2026-838	Malicious code in realestate-atlas (npm)	2026-02-10T17:06:02Z	2026-02-23T04:21:35Z
mal-2026-829	Malicious code in @uniconvex/dotenv (npm)	2026-02-10T16:30:16Z	2026-02-23T04:21:31Z
mal-2026-828	Malicious code in @reimorg/config (npm)	2026-02-10T16:30:16Z	2026-02-23T04:21:31Z
mal-2026-833	Malicious code in express-configer (npm)	2026-02-10T16:15:42Z	2026-02-23T04:21:32Z
mal-2026-830	Malicious code in aligners (npm)	2026-02-10T16:05:06Z	2026-02-23T04:21:31Z
mal-2026-835	Malicious code in sap-code-style-guides (npm)	2026-02-10T15:58:34Z	2026-02-23T04:21:35Z
mal-2026-832	Malicious code in chai-as-approved (npm)	2026-02-10T15:56:44Z	2026-02-23T04:21:32Z
mal-2026-831	Malicious code in bigmathix (npm)	2026-02-10T15:48:53Z	2026-02-23T04:21:32Z
mal-2026-834	Malicious code in graphflowx (npm)	2026-02-10T15:46:43Z	2026-02-23T04:21:33Z
mal-2026-827	Malicious code in narrow-array (npm)	2026-02-10T13:49:16Z	2026-02-23T04:21:34Z
mal-2026-826	Malicious code in testppe-pkg (PyPI)	2026-02-10T08:38:48Z	2026-02-10T08:38:48Z
mal-2026-824	Malicious code in dev-pipline-test (PyPI)	2026-02-10T07:48:33Z	2026-02-10T07:48:33Z
mal-2026-825	Malicious code in devtools-webhook-cicd-utils (PyPI)	2026-02-10T07:42:45Z	2026-02-10T07:42:45Z
mal-2026-823	Malicious code in ntoutils (PyPI)	2026-02-10T07:25:38Z	2026-02-10T07:25:38Z
mal-2026-821	Malicious code in jwtdotenv (npm)	2026-02-09T17:27:19Z	2026-02-23T04:21:33Z

ID	Description	Published	Updated
wid-sec-w-2025-2856	Dell SupportAssist für Home und Business PCs: Schwachstelle ermöglicht Privilegieneskalation	2025-12-15T23:00:00.000+00:00	2025-12-15T23:00:00.000+00:00
wid-sec-w-2025-2855	IBM DataPower Gateway: Mehrere Schwachstellen	2025-12-15T23:00:00.000+00:00	2025-12-15T23:00:00.000+00:00
wid-sec-w-2025-2854	Roundcube: Mehrere Schwachstellen	2025-12-15T23:00:00.000+00:00	2026-02-22T23:00:00.000+00:00
wid-sec-w-2025-2853	HCL Commerce: Mehrere Schwachstellen	2025-12-15T23:00:00.000+00:00	2025-12-15T23:00:00.000+00:00
wid-sec-w-2025-2852	Red Hat Enterprise Linux (Lightspeed): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-12-15T23:00:00.000+00:00	2025-12-15T23:00:00.000+00:00
wid-sec-w-2025-2851	Moodle: Mehrere Schwachstellen	2025-12-15T23:00:00.000+00:00	2025-12-15T23:00:00.000+00:00
wid-sec-w-2025-2850	HCL Domino und Notes (Apache POI): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-12-15T23:00:00.000+00:00	2025-12-15T23:00:00.000+00:00
wid-sec-w-2025-2849	Red Hat Enterprise Linux (Keylime): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-12-15T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2848	Keycloak: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-12-15T23:00:00.000+00:00	2025-12-15T23:00:00.000+00:00
wid-sec-w-2025-2847	Autodesk AutoCAD: Mehrere Schwachstellen	2025-12-15T23:00:00.000+00:00	2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2846	strongSwan (NetworkManager-Plugin): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-12-14T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2845	LibreOffice: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-12-14T23:00:00.000+00:00	2025-12-15T23:00:00.000+00:00
wid-sec-w-2025-2844	HPE ProLiant: Mehrere Schwachstellen	2025-12-14T23:00:00.000+00:00	2025-12-14T23:00:00.000+00:00
wid-sec-w-2025-2843	IBM DataPower Gateway (Jansson): Schwachstelle ermöglicht Denial of Service	2025-12-14T23:00:00.000+00:00	2025-12-14T23:00:00.000+00:00
wid-sec-w-2025-2842	Kibana: Schwachstelle ermöglicht Cross-Site Scripting	2025-12-14T23:00:00.000+00:00	2025-12-15T23:00:00.000+00:00
wid-sec-w-2025-2841	Elasticsearch: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-12-14T23:00:00.000+00:00	2025-12-15T23:00:00.000+00:00
wid-sec-w-2025-2840	Exim: Schwachstelle ermöglicht Codeausführung	2025-12-14T23:00:00.000+00:00	2026-01-04T23:00:00.000+00:00
wid-sec-w-2025-2839	MISP: Schwachstelle ermöglicht Cross-Site Scripting	2025-12-14T23:00:00.000+00:00	2025-12-14T23:00:00.000+00:00
wid-sec-w-2025-2838	Apple macOS: Mehrere Schwachstellen	2025-12-14T23:00:00.000+00:00	2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2837	Apple Safari: Mehrere Schwachstellen	2025-12-14T23:00:00.000+00:00	2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2836	Apple iOS und iPadOS: Mehrere Schwachstellen	2025-12-14T23:00:00.000+00:00	2026-02-11T23:00:00.000+00:00
wid-sec-w-2025-2835	Vercel Next.js und React Server Components: Mehrere Schwachstellen	2025-12-11T23:00:00.000+00:00	2025-12-11T23:00:00.000+00:00
wid-sec-w-2025-2834	Gladinet CentreStack und Triofox: Schwachstelle ermöglicht Codeausführung	2025-12-11T23:00:00.000+00:00	2025-12-14T23:00:00.000+00:00
wid-sec-w-2025-2833	ESRI ArcGIS Server: Mehrere Schwachstellen	2025-12-11T23:00:00.000+00:00	2026-01-01T23:00:00.000+00:00
wid-sec-w-2025-2832	JetBrains TeamCity: Mehrere Schwachstellen	2025-12-11T23:00:00.000+00:00	2025-12-11T23:00:00.000+00:00
wid-sec-w-2025-2831	ConnectWise ScreenConnect: Schwachstelle ermöglicht Codeausführung	2025-12-11T23:00:00.000+00:00	2025-12-11T23:00:00.000+00:00
wid-sec-w-2025-2830	Red Hat Enterprise Linux (libsoup): Schwachstelle ermöglicht Denial of Service	2025-12-11T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2829	AnyDesk: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode	2025-12-11T23:00:00.000+00:00	2025-12-11T23:00:00.000+00:00
wid-sec-w-2025-2828	Netgate pfSense: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen und potenziell Denial of Service	2025-12-11T23:00:00.000+00:00	2025-12-11T23:00:00.000+00:00
wid-sec-w-2025-2827	Microsoft Windows Admin Center: Schwachstelle ermöglicht Privilegieneskalation	2025-12-11T23:00:00.000+00:00	2025-12-11T23:00:00.000+00:00

ID	Description	Published	Updated
ncsc-2025-0238	Kwetsbaarheden verholpen in Apple macOS, iOS en iPadOS	2025-07-30T13:02:51.663320Z	2025-07-30T13:02:51.663320Z
ncsc-2025-0237	Kwetsbaarheden verholpen in Autodesk AutoCAD	2025-07-30T08:04:31.603165Z	2025-07-30T08:04:31.603165Z
ncsc-2025-0236	Kwetsbaarheden verholpen in Salesforce Tableau Server	2025-07-28T07:52:42.872259Z	2025-07-28T07:52:42.872259Z
ncsc-2025-0235	Kwetsbaarheden verholpen in Firefox en Thunderbird	2025-07-23T13:01:45.118883Z	2025-07-23T13:01:45.118883Z
ncsc-2025-0234	Kwetsbaarheid verholpen in CrushFTP	2025-07-21T08:34:35.304610Z	2025-08-28T07:59:34.275023Z
ncsc-2025-0233	Zeroday-kwetsbaarheden ontdekt in Microsoft SharePoint Server	2025-07-20T08:34:22.645952Z	2025-07-23T15:31:20.529389Z
ncsc-2025-0232	Kwetsbaarheid verholpen in Keycloak	2025-07-18T13:12:14.074394Z	2025-07-18T13:12:14.074394Z
ncsc-2025-0231	Kwetsbaarheden verholpen in XWiki	2025-07-17T12:35:48.998487Z	2025-07-17T12:35:48.998487Z
ncsc-2025-0230	Kwetsbaarheid verholpen in Wing FTP Server	2025-07-14T06:06:24.154078Z	2025-07-14T06:06:24.154078Z
ncsc-2025-0229	Kwetsbaarheden verholpen in Adobe InDesign Desktop	2025-07-11T10:01:48.229418Z	2025-07-11T10:01:48.229418Z
ncsc-2025-0228	Kwetsbaarheden verholpen in Zoom Clients	2025-07-11T09:58:21.871103Z	2025-07-11T09:58:21.871103Z
ncsc-2025-0227	Kwetsbaarheid verholpen in Juniper SRX300 Series	2025-07-11T09:57:40.476096Z	2025-07-11T09:57:40.476096Z
ncsc-2025-0226	Kwetsbaarheid verholpen in FortiWeb	2025-07-11T09:57:23.588152Z	2025-07-11T13:20:55.101692Z
ncsc-2025-0225	Kwetsbaarheid verholpen in Juniper Networks Security Director	2025-07-11T09:55:46.934253Z	2025-07-11T09:55:46.934253Z
ncsc-2025-0224	Kwetsbaarheden verholpen in Adobe Illustrator	2025-07-09T08:57:08.548822Z	2025-07-09T08:57:08.548822Z
ncsc-2025-0223	Kwetsbaarheden verholpen in Adobe Framemaker	2025-07-09T08:47:38.891072Z	2025-07-09T08:47:38.891072Z
ncsc-2025-0222	Kwetsbaarheden verholpen in Adobe ColdFusion	2025-07-09T08:41:53.656736Z	2025-07-09T08:41:53.656736Z
ncsc-2025-0221	Kwetsbaarheden verholpen in Schneider Electric EcoStruxture IT Datacenter Expert	2025-07-09T08:38:05.336146Z	2025-07-09T08:38:05.336146Z
ncsc-2025-0220	Kwetsbaarheden verholpen in Palo Alto PAN-OS	2025-07-09T08:33:14.284978Z	2025-07-09T08:33:14.284978Z
ncsc-2025-0219	Kwetsbaarheden verholpen in SAP producten	2025-07-09T08:29:00.474865Z	2025-07-09T08:29:00.474865Z
ncsc-2025-0218	Kwetsbaarheden verholpen in Microsoft Edge (Chromium based)	2025-07-08T18:26:55.812717Z	2025-07-08T18:26:55.812717Z
ncsc-2025-0217	Kwetsbaarheden verholpen in Microsoft Visual Studio	2025-07-08T18:26:14.881161Z	2025-07-08T18:26:14.881161Z
ncsc-2025-0216	Kwetsbaarheden verholpen in Microsoft SQL Server	2025-07-08T18:25:40.909948Z	2025-07-08T18:25:40.909948Z
ncsc-2025-0215	Kwetsbaarheden verholpen in Microsoft Office	2025-07-08T18:24:48.517158Z	2025-07-19T11:40:27.812820Z
ncsc-2025-0214	Kwetsbaarheden verholpen in Microsoft Azure	2025-07-08T18:24:14.065296Z	2025-07-08T18:24:14.065296Z
ncsc-2025-0213	Kwetsbaarheden verholpen in Microsoft Windows	2025-07-08T18:23:09.960791Z	2025-07-08T18:23:09.960791Z
ncsc-2025-0212	Kwetsbaarheden verholpen in Splunk Enterprise en Splunk Cloud Platform	2025-07-08T12:03:17.100858Z	2025-07-08T12:03:17.100858Z
ncsc-2025-0211	Kwetsbaarheden verholpen in Siemens producten	2025-07-08T11:58:23.712452Z	2025-07-08T11:58:23.712452Z
ncsc-2025-0210	Kwetsbaarheid verholpen in Cisco Unified Communications Manager	2025-07-03T07:43:27.075341Z	2025-07-03T07:43:27.075341Z
ncsc-2025-0209	Kwetsbaarheid verholpen in Google Chrome	2025-07-01T15:56:24.236216Z	2025-07-01T15:56:24.236216Z

ID	Description	Published	Updated

ID	Description	Published	Updated
ssa-240541	SSA-240541: WIBU Systems CodeMeter Heap Buffer Overflow Vulnerability in Industrial Products	2023-09-12T00:00:00Z	2024-05-14T00:00:00Z
ssa-190839	SSA-190839: X_T File Parsing Vulnerabilities in Parasolid	2023-09-12T00:00:00Z	2023-09-12T00:00:00Z
ssa-147266	SSA-147266: Multiple Vulnerabilities in QMS Automotive before V12.39	2023-09-12T00:00:00Z	2023-09-12T00:00:00Z
ssa-975961	SSA-975961: Privilege Escalation Vulnerabilities in SICAM TOOLBOX II before V07.10	2023-08-08T00:00:00Z	2023-08-08T00:00:00Z
ssa-811403	SSA-811403: Multiple File Parsing Vulnerabilities in Solid Edge before V223 Update 7	2023-08-08T00:00:00Z	2023-08-08T00:00:00Z
ssa-472630	SSA-472630: Security Vulnerabilities Fixed in RUGGEDCOM CROSSBOW V5.4	2023-08-08T00:00:00Z	2023-08-08T00:00:00Z
ssa-407785	SSA-407785: Multiple X_T File Parsing Vulnerabilities in Parasolid and Teamcenter Visualization	2023-08-08T00:00:00Z	2024-08-13T00:00:00Z
ssa-188491	SSA-188491: DLL Hijacking Vulnerabilities in Siemens Software Center	2023-08-08T00:00:00Z	2023-08-08T00:00:00Z
ssa-131450	SSA-131450: File parsing Vulnerabilities in Solid Edge, JT2Go and Teamcenter Visualization	2023-08-08T00:00:00Z	2023-08-08T00:00:00Z
ssa-116172	SSA-116172: Nullsoft Scriptable Install System (NSIS) Vulnerability (CVE-2023-37378) in Parasolid Installer	2023-08-08T00:00:00Z	2023-08-08T00:00:00Z
ssa-001569	SSA-001569: JT File Parsing Vulnerabilities in JT Open, JT Utilities and Parasolid	2023-08-08T00:00:00Z	2023-08-08T00:00:00Z
ssa-924149	SSA-924149: Stack Overflow Vulnerability in SiPass Integrated before V2.90.3.8	2023-07-11T00:00:00Z	2023-07-11T00:00:00Z
ssa-764801	SSA-764801: File Parsing Vulnerabilities in Tecnomatix Plant Simulation	2023-07-11T00:00:00Z	2023-09-12T00:00:00Z
ssa-561322	SSA-561322: Multiple Vulnerabilities in SIMATIC MV500 Devices before V3.3.4	2023-07-11T00:00:00Z	2023-07-11T00:00:00Z
ssa-313488	SSA-313488: Multiple Vulnerabilities in SIMATIC CN 4100 before V2.5	2023-07-11T00:00:00Z	2023-07-11T00:00:00Z
ssa-146325	SSA-146325: Multiple Vulnerabilities in RUGGEDCOM ROX before V2.16	2023-07-11T00:00:00Z	2023-07-11T00:00:00Z
ssa-975766	SSA-975766: Open Design Alliance Drawings SDK Vulnerability in Solid Edge	2023-06-13T00:00:00Z	2023-11-14T00:00:00Z
ssa-968170	SSA-968170: Remote Code Execution Vulnerability in SIMATIC STEP 7 V5.x and Derived Products	2023-06-13T00:00:00Z	2024-05-14T00:00:00Z
ssa-942865	SSA-942865: Multiple Vulnerabilities in the Integrated SCALANCE S615 of SINAMICS Medium Voltage Products	2023-06-13T00:00:00Z	2023-06-14T00:00:00Z
ssa-914026	SSA-914026: Local Code Execution Vulnerability in SIMATIC WinCC V7	2023-06-13T00:00:00Z	2023-06-13T00:00:00Z
ssa-887249	SSA-887249: Multiple Vulnerabilities in the Web Interface of SICAM Q200 Devices	2023-06-13T00:00:00Z	2023-06-13T00:00:00Z
ssa-831302	SSA-831302: Vulnerabilities in the BIOS of the SIMATIC S7-1500 TM MFP before V1.3.0	2023-06-13T00:00:00Z	2024-04-09T00:00:00Z
ssa-794697	SSA-794697: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 TM MFP before V1.1	2023-06-13T00:00:00Z	2024-04-09T00:00:00Z
ssa-731916	SSA-731916: Multiple Vulnerabilities in CPCI85 Firmware of SICAM A8000 Devices	2023-06-13T00:00:00Z	2023-06-13T00:00:00Z
ssa-538795	SSA-538795: Multiple File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go	2023-06-13T00:00:00Z	2023-06-13T00:00:00Z
ssa-508677	SSA-508677: Use of Obsolete Function Vulnerability in SIMATIC WinCC before V8	2023-06-13T00:00:00Z	2023-06-13T00:00:00Z
ssa-482956	SSA-482956: Information Disclosure Vulnerability in SIMOTION before V5.5	2023-06-13T00:00:00Z	2023-06-13T00:00:00Z
ssa-932528	SSA-932528: Multiple File Parsing Vulnerabilities in Solid Edge	2023-05-09T00:00:00Z	2023-08-08T00:00:00Z
ssa-892048	SSA-892048: Third-Party Component Vulnerabilities in SINEC NMS before V1.0.3.1	2023-05-09T00:00:00Z	2023-05-09T00:00:00Z
ssa-789345	SSA-789345: Code Execution Vulnerabilities in Siveillance Video Event and Management Servers	2023-05-09T00:00:00Z	2023-05-09T00:00:00Z

ID	Description	Published	Updated
rhsa-2026:1967	Red Hat Security Advisory: iperf3 security update	2026-02-04T21:10:32+00:00	2026-02-10T19:02:39+00:00
rhsa-2026:1913	Red Hat Security Advisory: util-linux security update	2026-02-04T20:08:57+00:00	2026-02-17T09:27:47+00:00
rhsa-2026:1893	Red Hat Security Advisory: python3.11 security update	2026-02-04T19:51:47+00:00	2026-02-16T14:24:32+00:00
rhsa-2026:1892	Red Hat Security Advisory: python3.11 security update	2026-02-04T19:41:47+00:00	2026-02-16T14:24:51+00:00
rhsa-2026:1939	Red Hat Security Advisory: python3.12-wheel security update	2026-02-04T19:31:27+00:00	2026-02-16T17:59:14+00:00
rhsa-2026:1948	Red Hat Security Advisory: libsoup security update	2026-02-04T19:21:37+00:00	2026-02-12T13:28:15+00:00
rhsa-2026:1957	Red Hat Security Advisory: python3.12-urllib3 security update	2026-02-04T19:16:17+00:00	2026-02-17T12:41:36+00:00
rhsa-2026:1946	Red Hat Security Advisory: kernel-rt security update	2026-02-04T18:55:17+00:00	2026-02-12T19:28:15+00:00
rhsa-2026:1903	Red Hat Security Advisory: fence-agents security update	2026-02-04T18:50:17+00:00	2026-02-16T19:42:54+00:00
rhsa-2026:1539	Red Hat Security Advisory: OpenShift Container Platform 4.19.23 bug fix and security update	2026-02-04T18:43:37+00:00	2026-02-12T13:27:40+00:00
rhsa-2026:1909	Red Hat Security Advisory: kernel security update	2026-02-04T18:39:12+00:00	2026-02-12T19:28:14+00:00
rhsa-2026:1908	Red Hat Security Advisory: opentelemetry-collector security update	2026-02-04T16:10:41+00:00	2026-02-17T12:41:32+00:00
rhsa-2026:1879	Red Hat Security Advisory: kernel security update	2026-02-04T16:06:23+00:00	2026-02-16T19:42:59+00:00
rhsa-2026:1942	Red Hat Security Advisory: Red Hat Quay 3.15.3	2026-02-04T15:43:51+00:00	2026-02-17T12:41:32+00:00
rhsa-2026:1906	Red Hat Security Advisory: fence-agents security update	2026-02-04T15:36:27+00:00	2026-02-16T19:42:57+00:00
rhsa-2026:1905	Red Hat Security Advisory: fence-agents security update	2026-02-04T15:13:06+00:00	2026-02-16T19:42:56+00:00
rhsa-2026:1938	Red Hat Security Advisory: Red Hat OpenShift Builds 1.7.0	2026-02-04T15:12:01+00:00	2026-02-17T12:41:32+00:00
rhsa-2026:1922	Red Hat Security Advisory: python3.11 security update	2026-02-04T15:04:41+00:00	2026-02-16T14:24:45+00:00
rhsa-2026:1935	Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.1.4 XP 6.0.2.GA release	2026-02-04T14:34:28+00:00	2026-02-04T18:56:12+00:00
rhsa-2026:1904	Red Hat Security Advisory: resource-agents security update	2026-02-04T12:09:51+00:00	2026-02-16T19:42:56+00:00
rhsa-2026:1902	Red Hat Security Advisory: python-wheel security update	2026-02-04T11:59:01+00:00	2026-02-16T17:59:11+00:00
rhsa-2026:1907	Red Hat Security Advisory: opentelemetry-collector security update	2026-02-04T11:48:06+00:00	2026-02-17T12:41:32+00:00
rhsa-2026:1870	Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.1.4 security update	2026-02-04T11:35:41+00:00	2026-02-16T19:38:36+00:00
rhsa-2026:1852	Red Hat Security Advisory: util-linux security update	2026-02-04T11:22:56+00:00	2026-02-17T09:27:46+00:00
rhsa-2026:1552	Red Hat Security Advisory: OpenShift Container Platform 4.19.23 bug fix and security update	2026-02-04T10:50:17+00:00	2026-02-17T08:01:38+00:00
rhsa-2026:1882	Red Hat Security Advisory: iperf3 security update	2026-02-04T09:11:31+00:00	2026-02-10T19:02:45+00:00
rhsa-2026:1886	Red Hat Security Advisory: kernel security update	2026-02-04T09:07:22+00:00	2026-02-12T19:28:10+00:00
rhsa-2026:1577	Red Hat Security Advisory: OpenShift Container Platform 4.17.48 bug fix and security update	2026-02-04T08:15:24+00:00	2026-02-17T08:01:43+00:00
rhsa-2026:1881	Red Hat Security Advisory: iperf3 security update	2026-02-04T08:06:15+00:00	2026-02-10T19:02:44+00:00
rhsa-2026:1896	Red Hat Security Advisory: Red Hat OpenShift Builds 1.6.3	2026-02-04T07:12:33+00:00	2026-02-17T12:41:35+00:00

ID	Description	Published	Updated
icsa-25-245-03	SunPower PVS6	2025-09-02T06:00:00.000000Z	2025-09-02T06:00:00.000000Z
icsa-25-245-02	Fuji Electric FRENIC-Loader 4	2025-09-02T06:00:00.000000Z	2025-09-02T06:00:00.000000Z
icsa-25-245-01	Delta Electronics EIP Builder	2025-09-02T06:00:00.000000Z	2025-09-02T06:00:00.000000Z
icsa-25-240-06	GE Vernova CIMPLICITY	2025-08-28T06:00:00.000000Z	2025-08-28T06:00:00.000000Z
icsa-25-240-05	Delta Electronics COMMGR	2025-08-28T06:00:00.000000Z	2025-08-28T06:00:00.000000Z
icsa-25-240-04	Delta Electronics CNCSoft-G2	2025-08-28T06:00:00.000000Z	2025-08-28T06:00:00.000000Z
icsa-25-240-02	Mitsubishi Electric MELSEC iQ-F Series CPU Module	2025-08-28T06:00:00.000000Z	2025-08-28T06:00:00.000000Z
icsa-25-240-01	Mitsubishi Electric MELSEC iQ-F Series CPU Module	2025-08-28T06:00:00.000000Z	2025-08-28T06:00:00.000000Z
icsa-25-261-05	Remote Code Execution Vulnerability in Hitachi Energy Service Suite Product	2025-08-26T09:52:01.000000Z	2025-08-26T09:52:01.000000Z
icsa-25-261-04	Multiple Open-Source Software Vulnerabilities in Hitachi Energy Asset Suite Product	2025-08-26T09:22:47.000000Z	2025-08-26T09:22:00.000000Z
icsa-25-238-01	INVT VT-Designer and HMITool	2025-08-26T06:00:00.000000Z	2025-08-26T06:00:00.000000Z
va-25-239-01	Agiloft multiple vulnerabilities	2025-08-26T00:00:00Z	2025-08-26T00:00:00Z
icsma-25-233-01	FUJIFILM Healthcare Americas Synapse Mobility	2025-08-21T06:00:00.000000Z	2025-08-21T06:00:00.000000Z
icsa-25-233-01	Mitsubishi Electric Corporation MELSEC iQ-F Series CPU module (Update A)	2025-08-21T06:00:00.000000Z	2025-09-09T06:00:00.000000Z
icsa-25-226-31	Rockwell Automation 1756-EN4TR, 1756-EN4TRXT (Update B)	2025-08-14T06:00:00.000000Z	2025-10-07T06:00:00.000000Z
icsa-25-226-30	Rockwell Automation FactoryTalk Action Manager	2025-08-14T06:00:00.000000Z	2025-08-15T06:00:00.000000Z
icsa-25-226-29	Rockwell Automation Studio 5000 Logix Designer	2025-08-14T06:00:00.000000Z	2025-08-14T06:00:00.000000Z
icsa-25-226-28	Rockwell Automation ControlLogix Ethernet Modules	2025-08-14T06:00:00.000000Z	2025-08-14T06:00:00.000000Z
icsa-25-226-27	Rockwell Automation ArmorBlock 5000 I/O - Webserver	2025-08-14T06:00:00.000000Z	2025-08-14T06:00:00.000000Z
icsa-25-226-26	Rockwell Automation FLEX 5000 I/O (Update A)	2025-08-14T06:00:00.000000Z	2025-09-30T06:00:00.000000Z
icsa-25-226-25	Rockwell Automation Micro800	2025-08-14T06:00:00.000000Z	2025-08-14T06:00:00.000000Z
icsa-25-226-24	Rockwell FactoryTalk Linx	2025-08-14T06:00:00.000000Z	2025-08-14T06:00:00.000000Z
icsa-25-226-23	Rockwell Automation FactoryTalk Viewpoint	2025-08-14T06:00:00.000000Z	2025-08-14T06:00:00.000000Z
icsa-25-231-02	Siemens Mendix SAML Module	2025-08-14T00:00:00.000000Z	2026-01-14T22:05:40.193680Z
icsa-25-231-01	Siemens Desigo CC Product Family and SENTRON Powermanager	2025-08-14T00:00:00.000000Z	2025-08-14T00:00:00.000000Z
icsma-25-224-01	Santesoft Sante PACS Server	2025-08-12T06:00:00.000000Z	2025-08-12T06:00:00.000000Z
icsa-25-224-04	AVEVA PI Integrator	2025-08-12T06:00:00.000000Z	2025-08-12T06:00:00.000000Z
icsa-25-224-02	Johnson Controls iSTAR Ultra, iSTAR Ultra SE, iSTAR Ultra G2, iSTAR Ultra G2 SE, iSTAR Edge G2 (Update A)	2025-08-12T06:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-224-01	Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share	2025-08-12T06:00:00.000000Z	2025-08-12T06:00:00.000000Z
icsa-25-266-03	Schneider Electric SESU	2025-08-12T04:00:00.000000Z	2025-09-09T04:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-fmc-cmd-inj-g8aokndp	Cisco Secure Firewall Management Center Software Cluster Backup Command Injection Vulnerability	2024-10-23T16:00:00+00:00	2024-10-23T16:00:00+00:00
cisco-sa-fmc-cmd-inj-2hbka97g	Cisco Secure Firewall Management Center Software Command Injection Vulnerability	2024-10-23T16:00:00+00:00	2024-10-23T16:00:00+00:00
cisco-sa-csc-dos-xvphm3bj	Cisco Secure Client Software Denial of Service Vulnerability	2024-10-23T16:00:00+00:00	2024-10-23T16:00:00+00:00
cisco-sa-asaftdvirtual-dos-muengnyr	Cisco Adaptive Security Virtual Appliance and Secure Firewall Threat Defense Virtual SSL VPN Denial of Service Vulnerability	2024-10-23T16:00:00+00:00	2024-10-23T16:00:00+00:00
cisco-sa-asaftd-xss-yjj7zjvq	Cisco Adaptive Security Appliance and Firepower Threat Defense Software VPN Web Client Services Cross-Site Scripting Vulnerabilities	2024-10-23T16:00:00+00:00	2024-10-23T16:00:00+00:00
cisco-sa-asaftd-webvpn-dos-honb9ph4	Cisco Adaptive Security Appliance and Firepower Threat Defense Software SSL VPN Memory Management Denial of Service Vulnerability	2024-10-23T16:00:00+00:00	2024-10-23T16:00:00+00:00
cisco-sa-asaftd-snmp-dos-7tcnzxtu	Cisco Adaptive Security Appliance and Firepower Threat Defense Software SNMP Denial of Service Vulnerability	2024-10-23T16:00:00+00:00	2024-10-23T16:00:00+00:00
cisco-sa-asaftd-persist-lce-vu3ekmj3	Cisco Adaptive Security Appliance and Firepower Threat Defense Software Persistent Local Code Execution Vulnerability	2024-10-23T16:00:00+00:00	2024-10-23T16:00:00+00:00
cisco-sa-asaftd-nsgacl-bypass-77xneasl	Cisco Adaptive Security Appliance and Firepower Threat Defense Software NSG Access Control List Bypass Vulnerability	2024-10-23T16:00:00+00:00	2024-10-23T16:00:00+00:00
cisco-sa-asaftd-ikev2-dos-9fgeyhsf	Cisco Adaptive Security Appliance and Firepower Threat Defense Software IKEv2 VPN Denial of Service Vulnerability	2024-10-23T16:00:00+00:00	2024-10-23T16:00:00+00:00
cisco-sa-asaftd-dap-dos-bhekp7n	Cisco Adaptive Security Appliance and Firepower Threat Defense Software Dynamic Access Policies Denial of Service Vulnerability	2024-10-23T16:00:00+00:00	2024-10-23T16:00:00+00:00
cisco-sa-asaftd-bf-dos-vdzhlqrw	Cisco Adaptive Security Appliance and Firepower Threat Defense Software Remote Access VPN Brute Force Denial of Service Vulnerability	2024-10-23T16:00:00+00:00	2024-10-23T16:00:00+00:00
cisco-sa-asaftd-acl-bypass-vvnlnkqf	Cisco Adaptive Security Appliance and Firepower Threat Defense Software AnyConnect Access Control List Bypass Vulnerabilities	2024-10-23T16:00:00+00:00	2024-10-24T21:19:17+00:00
cisco-sa-asa-vpn-nyh3fhp	Cisco Adaptive Security Appliance and Firepower Threat Defense Software Remote Access SSL VPN Authentication Targeted Denial of Service Vulnerability	2024-10-23T16:00:00+00:00	2024-10-23T16:00:00+00:00
cisco-sa-asa-vpn-czf8gt	Cisco Adaptive Security Appliance and Firepower Threat Defense Software Remote Access VPN Denial of Service Vulnerability	2024-10-23T16:00:00+00:00	2024-10-23T16:00:00+00:00
cisco-sa-asa-vpn-4gyewmkg	Cisco Adaptive Security Appliance and Firepower Threat Defense Software Remote Access SSL VPN Authentication Targeted Denial of Service Vulnerability	2024-10-23T16:00:00+00:00	2024-10-23T16:00:00+00:00
cisco-sa-asa-tls-cwy6zxb	Cisco Adaptive Security Appliance and Firepower Threat Defense Software TLS Denial of Service Vulnerability	2024-10-23T16:00:00+00:00	2024-10-23T16:00:00+00:00
cisco-sa-asa-ssh-rce-graupeuf	Cisco Adaptive Security Appliance Software SSH Remote Command Injection Vulnerability	2024-10-23T16:00:00+00:00	2024-10-23T16:00:00+00:00
cisco-sa-asa-ssh-dos-eedwu5rm	Cisco Adaptive Security Appliance Software SSH Server Resource Denial of Service Vulnerability	2024-10-23T16:00:00+00:00	2024-10-23T16:00:00+00:00
cisco-sa-asa-ftd-priv-esc-hbs9gnwq	Cisco Adaptive Security Appliance and Firepower Threat Defense Software FXOS CLI Root Privilege Escalation Vulnerability	2024-10-23T16:00:00+00:00	2024-10-23T16:00:00+00:00
cisco-sa-ucsc-bkpsky-tgj5f73j	Cisco UCS Central Software Configuration Backup Information Disclosure Vulnerability	2024-10-16T16:00:00+00:00	2024-10-16T16:00:00+00:00
cisco-sa-ccmpdm-rxss-tax76u3k	Cisco Unified Contact Center Management Portal Reflected Cross-Site Scripting Vulnerability	2024-10-16T16:00:00+00:00	2024-10-16T16:00:00+00:00
cisco-sa-ata19x-multi-rdteqrsy	Cisco ATA 190 Series Analog Telephone Adapter Firmware Vulnerabilities	2024-10-16T16:00:00+00:00	2024-10-24T11:47:37+00:00
cisco-sa-sb-rv04x_rv32x_vulns-yj2osdhv	Cisco Small Business RV042, RV042G, RV320, and RV325 Routers Denial of Service and Remote Code Execution Vulnerabilities	2024-10-02T16:00:00+00:00	2024-10-02T16:00:00+00:00
cisco-sa-rv34x-privesc-rce-qe33tcms	Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Privilege Escalation and Remote Command Execution Vulnerabilities	2024-10-02T16:00:00+00:00	2024-10-02T16:00:00+00:00
cisco-sa-ndo-tlsvld-fduf3cpw	Cisco Nexus Dashboard Orchestrator SSL/TLS Certificate Validation Vulnerability	2024-10-02T16:00:00+00:00	2024-10-02T16:00:00+00:00
cisco-sa-ndhs-uaapi-jh4v6zpn	Cisco Nexus Dashboard and Nexus Dashboard Fabric Controller Unauthorized REST API Vulnerabilities	2024-10-02T16:00:00+00:00	2024-10-02T16:00:00+00:00
cisco-sa-ndhs-idv-bk8vqedc	Cisco Nexus Dashboard Hosted Services Information Disclosure Vulnerabilities	2024-10-02T16:00:00+00:00	2024-10-02T16:00:00+00:00
cisco-sa-ndfc-raci-t46k3jnn	Cisco Nexus Dashboard Fabric Controller REST API Command Injection Vulnerability	2024-10-02T16:00:00+00:00	2024-10-02T16:00:00+00:00
cisco-sa-ndfc-ptrce-bushlbp	Cisco Nexus Dashboard Fabric Controller Remote Code Execution Vulnerability	2024-10-02T16:00:00+00:00	2024-10-02T16:00:00+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2026-0386	Windows Deployment Services Remote Code Execution Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-23490	pyasn1 has a DoS vulnerability in decoder	2026-01-02T00:00:00.000Z	2026-02-18T15:03:58.000Z
msrc_cve-2026-23000	net/mlx5e: Fix crash on profile change rollback failure	2026-01-02T00:00:00.000Z	2026-02-26T01:02:05.000Z
msrc_cve-2026-22999	net/sched: sch_qfq: do not free existing class in qfq_change_class()	2026-01-02T00:00:00.000Z	2026-02-28T01:04:35.000Z
msrc_cve-2026-22998	nvme-tcp: fix NULL pointer dereferences in nvmet_tcp_build_pdu_iovec	2026-01-02T00:00:00.000Z	2026-02-28T01:04:30.000Z
msrc_cve-2026-22997	net: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts	2026-01-02T00:00:00.000Z	2026-02-28T01:04:22.000Z
msrc_cve-2026-22996	net/mlx5e: Don't store mlx5e_priv in mlx5e_dev devlink priv	2026-01-02T00:00:00.000Z	2026-02-28T01:04:17.000Z
msrc_cve-2026-22992	libceph: return the handler error from mon_handle_auth_done()	2026-01-02T00:00:00.000Z	2026-02-28T01:04:11.000Z
msrc_cve-2026-22991	libceph: make free_choose_arg_map() resilient to partial allocation	2026-01-02T00:00:00.000Z	2026-02-28T01:04:06.000Z
msrc_cve-2026-22990	libceph: replace overzealous BUG_ON in osdmap_apply_incremental()	2026-01-02T00:00:00.000Z	2026-02-28T01:04:00.000Z
msrc_cve-2026-22984	libceph: prevent potential out-of-bounds reads in handle_auth_done()	2026-01-02T00:00:00.000Z	2026-02-28T01:03:55.000Z
msrc_cve-2026-22982	net: mscc: ocelot: Fix crash when adding interface under a lag	2026-01-02T00:00:00.000Z	2026-02-28T01:03:50.000Z
msrc_cve-2026-22980	nfsd: provide locking for v4_end_grace	2026-01-02T00:00:00.000Z	2026-02-28T01:03:44.000Z
msrc_cve-2026-22979	net: fix memory leak in skb_segment_list for GRO packets	2026-01-02T00:00:00.000Z	2026-02-28T01:03:39.000Z
msrc_cve-2026-22978	wifi: avoid kernel-infoleak from struct iw_point	2026-01-02T00:00:00.000Z	2026-02-28T01:03:33.000Z
msrc_cve-2026-22977	net: sock: fix hardened usercopy panic in sock_recv_errqueue	2026-01-02T00:00:00.000Z	2026-02-28T01:03:28.000Z
msrc_cve-2026-22976	net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset	2026-01-02T00:00:00.000Z	2026-02-28T01:03:22.000Z
msrc_cve-2026-22801	LIBPNG has an integer truncation causing heap buffer over-read in png_image_write_*	2026-01-02T00:00:00.000Z	2026-02-18T14:10:26.000Z
msrc_cve-2026-22702	virtualenv Has TOCTOU Vulnerabilities in Directory Creation	2026-01-02T00:00:00.000Z	2026-02-21T03:51:39.000Z
msrc_cve-2026-22701	filelock Time-of-Check-Time-of-Use (TOCTOU) Symlink Vulnerability in SoftFileLock	2026-01-02T00:00:00.000Z	2026-02-18T14:09:01.000Z
msrc_cve-2026-22695	LIBPNG has a heap buffer over-read in png_image_read_direct_scaled (regression from CVE-2025-65018 fix)	2026-01-02T00:00:00.000Z	2026-01-21T14:36:38.000Z
msrc_cve-2026-22693	Null Pointer Dereference in SubtableUnicodesCache::create leading to DoS	2026-01-02T00:00:00.000Z	2026-01-20T14:47:26.000Z
msrc_cve-2026-22185	OpenLDAP <= 2.6.10 LMDB mdb_load Heap Buffer Underflow in readline()	2026-01-02T00:00:00.000Z	2026-01-09T01:08:20.000Z
msrc_cve-2026-22184	zlib <= 1.3.1.2 untgz Global Buffer Overflow in TGZfname()	2026-01-02T00:00:00.000Z	2026-01-12T14:37:58.000Z
msrc_cve-2026-21895	rsa crate has potential panic on a prime being equal to 1	2026-01-02T00:00:00.000Z	2026-01-20T14:47:37.000Z
msrc_cve-2026-21860	Werkzeug safe_join() allows Windows special device names with compound extensions	2026-01-02T00:00:00.000Z	2026-02-21T03:49:22.000Z
msrc_cve-2026-21444	libtpms returns wrong initialization vector when certain symmetric ciphers are used	2026-01-02T00:00:00.000Z	2026-01-13T01:37:01.000Z
msrc_cve-2026-21441	urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API)	2026-01-02T00:00:00.000Z	2026-02-19T01:13:26.000Z
msrc_cve-2026-0992	Libxml2: libxml2: denial of service via crafted xml catalogs	2026-01-02T00:00:00.000Z	2026-02-23T14:35:52.000Z
msrc_cve-2026-0990	Libxml2: libxml2: denial of service via uncontrolled recursion in xml catalog processing	2026-01-02T00:00:00.000Z	2026-02-23T14:35:45.000Z

ID	Description	Published	Updated

ID	Description	Updated
var-201901-1586	In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before 11.4.1, tvOS before 1…	2025-12-22T23:04:10.152000Z
var-201711-0480	An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari be…	2025-12-22T23:04:09.857000Z
var-202201-0567	A use after free issue was addressed with improved memory management. This issue is fixed…	2025-12-22T23:04:09.535000Z
var-201403-0508	The sctp_sf_do_5_1D_ce function in net/sctp/sm_statefuns.c in the Linux kernel through 3.…	2025-12-22T23:04:09.185000Z
var-201804-1202	An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. macOS b…	2025-12-22T23:04:06.508000Z
var-200701-0021	Double free vulnerability in the _ATPsndrsp function in Apple Mac OS X 10.4.8, and possib…	2025-12-22T23:03:35.827000Z
var-201912-0616	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2025-12-22T23:03:35.705000Z
var-201201-0312	OpenSSL before 0.9.8s and 1.x before 1.0.0f, when RFC 3779 support is enabled, allows rem…	2025-12-22T23:03:05.164000Z
var-200809-0190	Multiple integer overflows in the SearchKit API in Apple Mac OS X 10.4.11 and 10.5 throug…	2025-12-22T23:01:28.272000Z
var-201806-1482	An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari be…	2025-12-22T23:01:28.138000Z
var-200901-0466	The MD5 Message-Digest Algorithm is not collision resistant, which makes it easier for co…	2025-12-22T23:01:14.133000Z
var-201912-1847	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2025-12-22T23:01:13.747000Z
var-201806-1459	An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS bef…	2025-12-22T23:01:13.603000Z
var-202003-1786	FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between seriali…	2025-12-22T23:00:39.749000Z
var-202010-1510	A type confusion issue was addressed with improved memory handling. This issue is fixed i…	2025-12-22T22:59:08.949000Z
var-202105-1459	A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in …	2025-12-22T22:59:07.750000Z
var-202103-0218	A flaw was found in multiple versions of OpenvSwitch. Specially crafted LLDP packets can …	2025-12-22T22:59:07.560000Z
var-202105-1431	The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired…	2025-12-22T22:58:52.903000Z
var-201302-0144	Integer overflow in Adobe Flash Player before 10.3.183.63 and 11.x before 11.6.602.168 on…	2025-12-22T22:58:52.560000Z
var-201912-0480	A type confusion issue was addressed with improved memory handling. This issue is fixed i…	2025-12-22T22:58:49.507000Z
var-201605-0145	Expat allows context-dependent attackers to cause a denial of service (crash) or possibly…	2025-12-22T22:58:45.637000Z
var-201806-1485	An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS bef…	2025-12-22T22:57:43.611000Z
var-200107-0173	Cisco CBOS 2.3.0.053 sends output of the "sh nat" (aka "show nat") command to the termina…	2025-12-22T22:57:41.381000Z
var-202004-2191	In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untru…	2025-12-22T22:57:36.525000Z
var-202201-0369	Heap-based Buffer Overflow in GitHub repository vim prior to 8.2. vim Exists in an out-of…	2025-12-22T22:57:35.356000Z
var-201912-1854	An issue existed in the drawing of web page elements. The issue was addressed with improv…	2025-12-22T22:57:33.069000Z
var-201806-1449	An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari be…	2025-12-22T22:57:31.487000Z
var-200505-0359	Apple Terminal 1.4.4 allows attackers to execute arbitrary commands via terminal escape s…	2025-12-22T22:57:29.900000Z
var-202105-1469	A use of uninitialized value was found in libwebp in versions before 1.0.1 in ReadSymbol(…	2025-12-22T22:57:29.592000Z
var-201409-0340	Mozilla Network Security Services (NSS) before 3.16.2.1, 3.16.x before 3.16.5, and 3.17.x…	2025-12-22T22:57:29.441000Z

ID	Description	Published	Updated
jvndb-2024-000124	Multiple vulnerabilities in UNIVERGE IX/IX-R/IX-V series routers	2024-12-02T16:38+09:00	2024-12-02T16:38+09:00
jvndb-2024-000123	Multiple FCNT Android devices vulnerable to authentication bypass	2024-11-29T15:30+09:00	2024-11-29T15:30+09:00
jvndb-2024-013702	Multiple vulnerabilities in FUJI ELECTRIC products	2024-11-29T14:42+09:00	2024-11-29T14:42+09:00
jvndb-2024-000122	HAProxy vulnerable to HTTP request/response smuggling	2024-11-27T14:36+09:00	2024-11-27T14:36+09:00
jvndb-2024-000121	WordPress Plugin "WP Admin UI Customize" vulnerable to cross-site scripting	2024-11-26T13:57+09:00	2024-11-26T13:57+09:00
jvndb-2024-013260	Multiple vulnerabilities in Edgecross Basic Software for Windows	2024-11-22T10:59+09:00	2025-11-04T16:41+09:00
jvndb-2024-000120	"Kura Sushi Official App Produced by EPARK" for Android uses a hard-coded cryptographic key	2024-11-20T13:56+09:00	2024-11-20T13:56+09:00
jvndb-2024-012941	Multiple vulnerabilities in Rakuten Turbo 5G	2024-11-19T10:41+09:00	2024-11-19T10:41+09:00
jvndb-2024-000119	Multiple vulnerabilities in FitNesse	2024-11-15T13:37+09:00	2024-11-20T11:18+09:00
jvndb-2024-012461	Multiple vulnerabilities in SoftBank Mesh Wi-Fi router RP562B	2024-11-13T14:26+09:00	2024-11-26T16:11+09:00
jvndb-2024-000118	WordPress Plugin "VK All in One Expansion Unit" vulnerable to cross-site scripting	2024-11-13T13:50+09:00	2024-11-13T13:50+09:00
jvndb-2024-012017	Trend Micro Deep Security 20 Agent for Windows vulnerable to improper access control	2024-11-06T11:00+09:00	2024-11-06T11:00+09:00
jvndb-2024-011833	Incorrect authorization vulnerability in OMRON Sysmac Studio	2024-11-05T15:29+09:00	2024-11-05T15:29+09:00
jvndb-2024-011747	Command injection vulnerability in Trend Micro Cloud Edge	2024-11-01T14:28+09:00	2024-11-01T14:28+09:00
jvndb-2024-011744	REST-APIs unintentionally enabled in Century Systems FutureNet NXR series routers	2024-11-01T13:49+09:00	2024-11-01T13:49+09:00
jvndb-2024-000117	Stack-based buffer overflow vulnerability in multiple laser printers and MFPs which implement Ricoh Web Image Monitor	2024-10-31T16:44+09:00	2025-05-19T17:59+09:00
jvndb-2024-000116	Hikvision network camera security enhancement to prevent cleartext transmission of Dynamic DNS credentials	2024-10-30T15:07+09:00	2024-10-30T15:07+09:00
jvndb-2024-011256	Multiple vulnerabilities in Sharp and Toshiba Tec MFPs	2024-10-28T17:33+09:00	2024-10-28T17:33+09:00
jvndb-2024-000115	Chatwork Desktop Application (Windows) uses a potentially dangerous function	2024-10-28T14:29+09:00	2024-10-28T14:29+09:00
jvndb-2024-000114	Multiple vulnerabilities in baserCMS	2024-10-25T15:07+09:00	2025-02-18T15:35+09:00
jvndb-2024-010802	Multiple SQL injection vulnerabilities in Trend Micro Deep Discovery Inspector	2024-10-22T13:02+09:00	2024-10-22T13:02+09:00
jvndb-2024-000106	Multiple vulnerabilities in AIPHONE IX SYSTEM, IXG SYSTEM, and System Support Software	2024-10-21T11:58+09:00	2024-11-21T11:37+09:00
jvndb-2024-000113	N-LINE vulnerable to HTML injection	2024-10-18T14:48+09:00	2024-10-25T16:48+09:00
jvndb-2024-000112	MUSASI version 3 performing authentication on client-side	2024-10-18T14:40+09:00	2024-10-25T16:55+09:00
jvndb-2024-000111	SHIRASAGI vulnerable to path traversal	2024-10-16T14:12+09:00	2024-10-23T17:35+09:00
jvndb-2024-000110	Multiple vulnerabilities in Exment	2024-10-11T14:13+09:00	2024-10-11T14:13+09:00
jvndb-2024-000109	baserCMS plugin "BurgerEditor" vulnerable to directory listing	2024-10-10T14:57+09:00	2024-11-06T14:45+09:00
jvndb-2024-009667	Multiple vulnerabilities in JTEKT ELECTRONICS Kostac PLC Programming Software	2024-10-03T13:42+09:00	2024-10-03T13:42+09:00
jvndb-2024-000108	Apache Tomcat improper handling of TLS handshake process data	2024-10-01T17:51+09:00	2024-10-01T17:51+09:00
jvndb-2024-009498	Vulnerability in Cosminexus	2024-10-01T16:01+09:00	2024-10-01T16:01+09:00

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2026:0263-1	Security update for the Linux Kernel	2026-01-22T21:15:02Z	2026-01-22T21:15:02Z
suse-su-2026:20134-1	Security update for busybox	2026-01-22T16:57:46Z	2026-01-22T16:57:46Z
suse-su-2026:20135-1	Security update for bind	2026-01-22T16:50:15Z	2026-01-22T16:50:15Z
suse-su-2026:20133-1	Security update for python-pyasn1	2026-01-22T16:46:21Z	2026-01-22T16:46:21Z
suse-su-2026:20158-1	Security update for python-pyasn1	2026-01-22T16:35:43Z	2026-01-22T16:35:43Z
suse-su-2026:0262-1	Security update for the Linux Kernel (Live Patch 8 for SUSE Linux Enterprise 15 SP6)	2026-01-22T16:33:41Z	2026-01-22T16:33:41Z
suse-su-2026:0260-1	Security update for MozillaFirefox	2026-01-22T16:11:44Z	2026-01-22T16:11:44Z
suse-su-2026:0259-1	Security update for avahi	2026-01-22T16:10:45Z	2026-01-22T16:10:45Z
suse-su-2026:0258-1	Security update for libsoup2	2026-01-22T16:10:25Z	2026-01-22T16:10:25Z
suse-su-2026:0257-1	Security update for libsoup	2026-01-22T16:09:13Z	2026-01-22T16:09:13Z
suse-su-2026:0256-1	Security update for openldap2_5	2026-01-22T16:08:55Z	2026-01-22T16:08:55Z
suse-su-2026:0255-1	Security update for python-urllib3	2026-01-22T16:08:44Z	2026-01-22T16:08:44Z
suse-su-2026:0254-1	Security update for log4j	2026-01-22T16:08:26Z	2026-01-22T16:08:26Z
suse-su-2026:0253-1	Security update for libsoup2	2026-01-22T16:08:05Z	2026-01-22T16:08:05Z
suse-su-2026:0252-1	Security update for python-pyasn1	2026-01-22T16:06:32Z	2026-01-22T16:06:32Z
suse-su-2026:20132-1	Security update for go1.25	2026-01-22T15:53:13Z	2026-01-22T15:53:13Z
suse-su-2026:20129-1	Security update for python-virtualenv	2026-01-22T15:48:44Z	2026-01-22T15:48:44Z
suse-su-2026:20130-1	Security update for python-marshmallow	2026-01-22T15:46:22Z	2026-01-22T15:46:22Z
suse-su-2026:20157-1	Security update for python-urllib3	2026-01-22T15:46:01Z	2026-01-22T15:46:01Z
suse-su-2026:20131-1	Security update for python-urllib3	2026-01-22T15:46:01Z	2026-01-22T15:46:01Z
suse-su-2026:0247-1	Security update for the Linux Kernel (Live Patch 5 for SUSE Linux Enterprise 15 SP7)	2026-01-22T15:22:22Z	2026-01-22T15:22:22Z
suse-su-2026:0246-1	Security update for the Linux Kernel (Live Patch 22 for SUSE Linux Enterprise 15 SP5)	2026-01-22T15:19:55Z	2026-01-22T15:19:55Z
suse-su-2026:0245-1	Security update for php7	2026-01-22T15:18:06Z	2026-01-22T15:18:06Z
suse-su-2026:20156-1	Security update for gdk-pixbuf	2026-01-22T14:36:50Z	2026-01-22T14:36:50Z
suse-su-2026:20128-1	Security update for gdk-pixbuf	2026-01-22T14:36:50Z	2026-01-22T14:36:50Z
suse-su-2026:20155-1	Security update for libpng16	2026-01-22T14:31:16Z	2026-01-22T14:31:16Z
suse-su-2026:20127-1	Security update for libpng16	2026-01-22T14:31:16Z	2026-01-22T14:31:16Z
suse-su-2026:20154-1	Security update for python313	2026-01-22T14:12:33Z	2026-01-22T14:12:33Z
suse-su-2026:20126-1	Security update for rabbitmq-server	2026-01-22T14:12:33Z	2026-01-22T14:12:33Z
suse-su-2026:20125-1	Security update for python313	2026-01-22T14:12:33Z	2026-01-22T14:12:33Z

ID	Description	Published	Updated
opensuse-su-2026:10048-1	openCryptoki-3.26.0-3.1 on GA media	2026-01-14T00:00:00Z	2026-01-14T00:00:00Z
opensuse-su-2026:10047-1	libcryptopp-devel-8.9.0-6.1 on GA media	2026-01-14T00:00:00Z	2026-01-14T00:00:00Z
opensuse-su-2026:10046-1	MozillaFirefox-147.0-1.1 on GA media	2026-01-14T00:00:00Z	2026-01-14T00:00:00Z
opensuse-su-2026:20026-1	Security update for python-uv	2026-01-13T12:48:04Z	2026-01-13T12:48:04Z
opensuse-su-2026:20025-1	Security update for hawk2	2026-01-13T12:41:42Z	2026-01-13T12:41:42Z
opensuse-su-2026:10045-1	liburiparser1-1.0.0-1.1 on GA media	2026-01-13T00:00:00Z	2026-01-13T00:00:00Z
opensuse-su-2026:10044-1	python311-pypdf-6.6.0-1.1 on GA media	2026-01-13T00:00:00Z	2026-01-13T00:00:00Z
opensuse-su-2026:10043-1	python311-filelock-3.20.3-1.1 on GA media	2026-01-13T00:00:00Z	2026-01-13T00:00:00Z
opensuse-su-2026:10042-1	mcphost-0.32.0-1.1 on GA media	2026-01-13T00:00:00Z	2026-01-13T00:00:00Z
opensuse-su-2026:10041-1	libsoup-2_4-1-2.74.3-14.1 on GA media	2026-01-13T00:00:00Z	2026-01-13T00:00:00Z
opensuse-su-2026:10040-1	libsoup-3_0-0-3.6.5-11.1 on GA media	2026-01-13T00:00:00Z	2026-01-13T00:00:00Z
opensuse-su-2026:10039-1	kernel-devel-6.18.5-1.1 on GA media	2026-01-13T00:00:00Z	2026-01-13T00:00:00Z
opensuse-su-2026:10038-1	fluidsynth-2.5.2-2.1 on GA media	2026-01-13T00:00:00Z	2026-01-13T00:00:00Z
opensuse-su-2026:10037-1	firefox-esr-140.7.0-1.1 on GA media	2026-01-13T00:00:00Z	2026-01-13T00:00:00Z
opensuse-su-2026:10036-1	cockpit-repos-4.6-1.1 on GA media	2026-01-13T00:00:00Z	2026-01-13T00:00:00Z
opensuse-su-2026:20018-1	Security update for glib2	2026-01-12T11:52:23Z	2026-01-12T11:52:23Z
opensuse-su-2026:20014-1	Security update for MozillaFirefox	2026-01-12T11:35:13Z	2026-01-12T11:35:13Z
opensuse-su-2026:20017-1	Security update for libpng16	2026-01-12T11:14:46Z	2026-01-12T11:14:46Z
opensuse-su-2026:20016-1	Security update for libmicrohttpd	2026-01-12T11:14:46Z	2026-01-12T11:14:46Z
opensuse-su-2026:20015-1	Security update for python-tornado6	2026-01-12T10:29:37Z	2026-01-12T10:29:37Z
opensuse-su-2026:10035-1	teleport-17.7.13-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10034-1	python311-Authlib-1.6.6-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10033-1	libtasn1-6-32bit-4.21.0-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10032-1	libpcap-devel-1.10.6-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10031-1	kubelogin-0.2.14-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10030-1	k6-1.5.0-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10029-1	istioctl-1.28.2-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10028-1	ffmpeg-7-7.1.3-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10027-1	ffmpeg-4-4.4.6-10.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:20022-1	Security update for matio	2026-01-11T17:15:13Z	2026-01-11T17:15:13Z

ID	Description	Published	Updated
sevd-2020-224-01	Schneider Electric Modbus Serial Driver	2020-08-11T00:00:00.000Z	2020-10-13T00:00:00.000Z
sevd-2020-196-01	Schneider Electric Software Update (SESU)	2020-07-14T00:00:00.000Z	2020-07-14T00:00:00.000Z
sevd-2020-175-01	Treck TCP/IP Vulnerabilities (Ripple20)	2020-06-23T16:00:00.000Z	2022-08-08T13:57:08.970Z
sevd-2020-174-01	APC by Schneider Electric Network Management Cards (NMC) and NMC Embedded Devices	2020-06-22T00:00:00.000Z	2021-06-30T00:00:00.000Z
sevd-2020-161-05	Easergy Builder	2020-06-09T00:00:00.000Z	2021-05-13T00:00:00.000Z
sevd-2020-161-04	Easergy T300	2020-06-09T00:00:00.000Z	2021-05-13T00:00:00.000Z
sevd-2020-161-03	Modicon LMC078 Logic Controller additional URGENT/11 Fix	2020-06-09T00:00:00.000Z	2020-06-09T00:00:00.000Z
sevd-2020-161-01	Modicon M218 Logic Controller	2020-06-09T00:00:00.000Z	2020-06-09T00:00:00.000Z
sevd-2020-133-03	U.motion Servers and Touch Panels	2020-05-12T00:00:00.000Z	2021-04-15T00:00:00.000Z
sevd-2020-133-02	Vijeo Designer and Vijeo Designer Basic Software	2020-05-12T00:00:00.000Z	2020-08-14T00:00:00.000Z
sevd-2020-105-03	Vijeo Designer and Vijeo Designer Basic	2020-04-14T00:00:00.000Z	2020-08-11T00:00:00.000Z
sevd-2020-105-02	Modicon M218/M241/M251/M258 Logic Controllers,SoMachine/SoMachine Motion, EcoStruxure™ Machine Expert	2020-04-14T00:00:00.000Z	2020-11-10T00:00:00.000Z
sevd-2020-105-01	Modicon M100/M200/M221 controllers, SoMachine Basic and EcoStruxure Machine Expert - Basic Programming Software	2020-04-14T00:00:00.000Z	2020-04-14T00:00:00.000Z
sevd-2020-080-01	Modicon Controllers, EcoStruxure™ Control Expert and Unity Pro Programming Software	2020-03-20T00:00:00.000Z	2021-05-11T00:00:00.000Z
sevd-2020-070-04	Andover Continuum System	2020-03-10T00:00:00.000Z	2020-05-12T00:00:00.000Z
sevd-2020-070-03	ZigBee Installation Toolkit	2020-03-10T00:00:00.000Z	2020-03-10T00:00:00.000Z
sevd-2020-070-02	Modicon Quantum Ethernet Network module and Quantum / Premium COPRO	2020-03-10T00:00:00.000Z	2020-03-10T00:00:00.000Z
sevd-2020-070-01	IGSS (Interactive Graphical SCADA System)	2020-03-10T00:00:00.000Z	2020-03-10T00:00:00.000Z
sevd-2020-042-01	ProSoft Configurator for Modicon PMEPXM0100 (H)	2020-02-11T00:00:00.000Z	2020-02-11T00:00:00.000Z
sevd-2020-014-01	MSX Configurator	2020-01-14T00:00:00.000Z	2020-01-14T00:00:00.000Z
sevd-2019-281-02	Modicon Controllers	2019-09-26T12:53:28.000Z	2024-08-13T00:00:00.000Z
sevd-2019-225-01	Harmony (formerly known as Magelis) HMI Panels	2019-08-13T09:59:02.000Z	2024-01-09T09:59:02.000Z
sesb-2019-214-01	Wind River VxWorks Vulnerabilities (URGENT/11)	2019-08-02T00:00:00.000Z	2022-09-13T00:00:00.000Z
sevd-2019-134-11	Modicon Controllers	2019-05-14T08:31:22.000Z	2025-02-11T06:00:00.000Z
sevd-2018-095-01	Security Notification - U.motion Builder software	2018-04-05T00:00:00.000Z	2020-02-11T00:00:00.000Z
sevd-2018-081-01	Embedded FTP Servers for Modicon PAC Controllers	2018-03-22T03:39:21.000Z	2024-08-13T00:00:00.000Z
sevd-2015-344-01	GoAhead Web Server vulnerability	2015-12-15T00:00:00.000Z	2020-06-09T00:00:00.000Z

ID	Description	Published	Updated
bit-gitlab-2025-13978	Generation of Error Message Containing Sensitive Information in GitLab	2025-12-18T12:04:44.454Z	2025-12-18T12:08:20.703Z
bit-gitlab-2025-12734	Improper Encoding or Escaping of Output in GitLab	2025-12-18T12:04:35.112Z	2025-12-18T12:08:20.703Z
bit-gitlab-2025-12716	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab	2025-12-18T12:04:33.134Z	2025-12-18T12:08:20.703Z
bit-gitlab-2025-12562	Allocation of Resources Without Limits or Throttling in GitLab	2025-12-18T12:04:25.675Z	2025-12-18T12:08:20.703Z
bit-gitlab-2025-12029	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab	2025-12-18T12:04:20.332Z	2025-12-18T12:08:20.703Z
bit-gitlab-2025-11984	Authentication Bypass Using an Alternate Path or Channel in GitLab	2025-12-18T12:04:14.698Z	2025-12-18T12:08:20.703Z
bit-gitlab-2025-11247	Authorization Bypass Through User-Controlled Key in GitLab	2025-12-18T12:03:59.823Z	2025-12-18T12:08:20.703Z
bit-parse-2025-68150	Parse Server has Server-Side Request Forgery (SSRF) in Instagram OAuth Adapter	2025-12-18T11:46:18.950Z	2026-01-08T18:07:34.629Z
bit-parse-2025-68115	Parse Server vulnerable to Cross-Site Scripting (XSS) via Unescaped Mustache Template Variables	2025-12-18T11:46:17.211Z	2026-01-08T18:07:34.629Z
bit-parse-2025-67727	Parse Server GitHub CI workflow vulnerable to RCE through Improper Privilege Management	2025-12-18T11:46:15.637Z	2026-01-08T18:07:34.629Z
bit-kibana-2025-37732	Kibana Cross-site Scripting via the Integration Package Upload Functionality	2025-12-18T11:40:39.003Z	2025-12-18T12:08:20.703Z
bit-elk-2025-37732	Kibana Cross-site Scripting via the Integration Package Upload Functionality	2025-12-18T11:37:43.350Z	2025-12-18T12:08:20.703Z
bit-elasticsearch-2025-37731	Elasticsearch Improper Authentication	2025-12-18T11:37:43.121Z	2025-12-19T12:06:33.755Z
bit-airflow-2025-66388	Apache Airflow: Secrets in rendered templates not redacted properly and exposed in the UI	2025-12-16T14:37:51.384Z	2025-12-16T15:14:22.118Z
bit-mongodb-2025-12657	Malformed KMIP response may result in access violation	2025-12-13T11:42:23.275Z	2025-12-13T12:05:53.698Z
bit-django-2025-13372	Potential SQL injection in FilteredRelation column aliases on PostgreSQL	2025-12-13T11:36:31.883Z	2025-12-13T12:05:53.698Z
bit-mongodb-2025-14345	Cross-Shard Failovers May Lead to Partial Transaction Commit in MongoDB Server	2025-12-12T17:42:48.437Z	2025-12-12T18:06:16.411Z
bit-jenkins-2025-67639		2025-12-12T11:23:52.749Z	2025-12-12T11:51:34.315Z
bit-jenkins-2025-67638		2025-12-12T11:23:47.516Z	2025-12-12T11:51:34.315Z
bit-jenkins-2025-67637		2025-12-12T11:23:42.761Z	2025-12-12T11:51:34.315Z
bit-jenkins-2025-67636		2025-12-12T11:23:36.617Z	2025-12-12T11:51:34.315Z
bit-jenkins-2025-67635		2025-12-12T11:23:31.286Z	2025-12-12T11:51:34.315Z
bit-mongodb-2025-13644	MongoDB may be susceptible to Invariant Failure due to batched delete	2025-12-12T11:19:13.963Z	2026-01-08T18:07:34.629Z
bit-mongodb-2025-13643	MongoDB Server may allow queries to be terminated by unauthorized users	2025-12-12T11:19:08.903Z	2026-01-08T18:07:34.629Z
bit-mastodon-2025-67500	Mastodon Error Handling Discrepancy Enables Private Status Existence Enumeration	2025-12-11T11:41:16.693Z	2026-01-08T18:07:34.629Z
bit-django-2025-64460	Potential denial-of-service vulnerability in XML serializer text extraction	2025-12-11T11:37:12.400Z	2025-12-11T12:06:55.559Z
bit-python-2025-12084	Quadratic complexity in node ID cache clearing	2025-12-10T17:49:06.243Z	2026-01-27T09:14:53.416Z
bit-libpython-2025-12084	Quadratic complexity in node ID cache clearing	2025-12-10T17:41:46.450Z	2026-01-27T09:14:53.416Z
bit-gitlab-2024-9183	Time-of-check Time-of-use (TOCTOU) Race Condition in GitLab	2025-12-09T12:02:49.276Z	2025-12-11T12:06:55.559Z
bit-apache-2025-66200	Apache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo	2025-12-09T11:38:20.150Z	2025-12-09T12:08:00.393Z

ID	Description	Published	Updated
cleanstart-2026-pw33232	SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process	2026-01-30T15:09:53.441606Z	2026-01-29T18:58:54Z
cleanstart-2026-il25782	SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process	2026-01-30T15:09:53.055759Z	2026-01-29T18:58:54Z
cleanstart-2026-yd51202	SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process	2026-01-30T15:09:23.124967Z	2026-01-29T18:58:54Z
cleanstart-2026-gc72145	SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process	2026-01-30T15:09:23.061580Z	2026-01-29T18:58:54Z
cleanstart-2026-bl06950	excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate	2026-01-30T15:08:23.121647Z	2026-01-29T18:58:54Z
cleanstart-2026-tf52804	excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate	2026-01-30T15:08:23.107112Z	2026-01-29T18:58:54Z
cleanstart-2026-fm00685	Cancelling a query (e	2026-01-30T15:07:53.091254Z	2026-01-29T18:58:54Z
cleanstart-2026-hh74302	Cancelling a query (e	2026-01-30T15:07:53.076603Z	2026-01-29T18:58:54Z
cleanstart-2026-iw06531	excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate	2026-01-30T15:07:23.455235Z	2026-01-29T18:58:54Z
cleanstart-2026-ck72347	excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate	2026-01-30T15:07:23.436298Z	2026-01-29T18:58:54Z
cleanstart-2026-su64392	Cancelling a query (e	2026-01-30T15:07:22.975031Z	2026-01-29T18:58:54Z
cleanstart-2026-ni96678	Within HostnameError	2026-01-30T15:06:52.947220Z	2026-01-29T18:58:54Z
cleanstart-2026-ib05679	Within HostnameError	2026-01-30T15:06:23.436295Z	2026-01-29T18:58:54Z
cleanstart-2026-kk41938	Within HostnameError	2026-01-30T15:06:23.375949Z	2026-01-29T18:58:54Z
cleanstart-2026-jx43631	Within HostnameError	2026-01-30T15:06:23.337190Z	2026-01-29T18:58:54Z
cleanstart-2026-sh75345	Cancelling a query (e	2026-01-30T15:05:23.442396Z	2026-01-29T18:58:54Z
cleanstart-2026-bh03809	excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate	2026-01-30T15:04:53.009971Z	2026-01-29T18:58:54Z
cleanstart-2026-vl83369	excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate	2026-01-30T15:03:53.758258Z	2026-01-29T18:58:54Z
cleanstart-2026-rj88561	excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate	2026-01-30T15:03:53.732429Z	2026-01-29T18:58:54Z
cleanstart-2026-lp38773	excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate	2026-01-30T15:03:53.100242Z	2026-01-29T18:58:54Z
cleanstart-2026-uj17204	excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate	2026-01-30T15:03:52.998379Z	2026-01-29T18:58:54Z
cleanstart-2026-py88758	Cancelling a query (e	2026-01-30T15:02:53.130919Z	2026-01-29T18:58:54Z
cleanstart-2026-hw39798	Cancelling a query (e	2026-01-30T15:02:52.970576Z	2026-01-29T18:58:54Z
cleanstart-2026-fd27182	Cancelling a query (e	2026-01-30T15:02:52.949683Z	2026-01-29T18:58:54Z
cleanstart-2026-hu01783	Cancelling a query (e	2026-01-30T15:02:52.911074Z	2026-01-29T18:58:54Z
cleanstart-2026-co80279	Within HostnameError	2026-01-30T15:02:52.896368Z	2026-01-29T18:58:54Z
cleanstart-2026-ti76190	Cancelling a query (e	2026-01-30T15:02:23.296683Z	2026-01-29T18:58:54Z
cleanstart-2026-di91874	Cancelling a query (e	2026-01-30T15:02:23.274144Z	2026-01-29T18:58:54Z
cleanstart-2026-vc16841	Within HostnameError	2026-01-30T15:02:22.944744Z	2026-01-29T18:58:54Z
cleanstart-2026-sq13072	Moby is an open source container framework developed by Docker Inc	2026-01-30T15:02:22.907312Z	2026-01-29T18:58:54Z

ID	Published	Updated
drupal-contrib-2023-019	2023-05-31T13:22:44.000Z	2023-08-10T13:56:55.000Z
drupal-contrib-2023-018	2023-05-31T13:20:43.000Z	2023-08-10T13:56:48.000Z
drupal-contrib-2023-017	2023-05-31T13:18:52.000Z	2023-08-10T13:57:22.000Z
drupal-contrib-2023-016	2023-05-31T13:14:25.000Z	2023-08-10T13:58:03.000Z
drupal-contrib-2023-014	2023-05-03T15:44:12.000Z	2023-08-10T13:58:54.000Z
drupal-contrib-2023-013	2023-04-12T16:09:25.000Z	2023-08-10T14:19:21.000Z
drupal-contrib-2023-012	2023-03-29T17:44:58.000Z	2023-08-10T14:19:50.000Z
drupal-contrib-2023-011	2023-03-15T17:40:02.000Z	2023-08-10T15:37:51.000Z
drupal-contrib-2023-010	2023-03-15T17:22:57.000Z	2023-08-10T14:20:35.000Z
drupal-contrib-2023-009	2023-03-08T17:46:44.000Z	2023-08-10T14:20:59.000Z
drupal-contrib-2023-008	2023-03-01T17:38:09.000Z	2023-08-10T14:21:21.000Z
drupal-contrib-2023-007	2023-03-01T17:11:03.000Z	2023-08-10T14:22:08.000Z
drupal-contrib-2023-006	2023-03-01T15:15:08.000Z	2023-08-10T14:22:32.000Z
drupal-contrib-2023-005	2023-02-01T16:13:42.000Z	2023-08-10T14:23:38.000Z
drupal-contrib-2023-004	2023-01-18T17:49:04.000Z	2023-08-10T14:23:53.000Z
drupal-contrib-2023-003	2023-01-18T17:36:56.000Z	2023-08-10T14:25:39.000Z
drupal-contrib-2023-002	2023-01-18T17:28:05.000Z	2023-08-10T14:25:24.000Z
drupal-contrib-2023-001	2023-01-11T17:15:37.000Z	2023-08-10T14:25:04.000Z
drupal-contrib-2022-062	2022-11-30T15:34:03.000Z	2023-08-10T18:25:13.000Z
drupal-contrib-2022-061	2022-11-30T15:28:44.000Z	2023-08-10T18:25:19.000Z
drupal-contrib-2022-060	2022-11-30T15:20:10.000Z	2023-08-10T18:23:08.000Z
drupal-contrib-2022-059	2022-10-19T20:28:24.000Z	2023-08-10T18:22:23.000Z
drupal-contrib-2022-058	2022-10-12T19:41:07.000Z	2023-08-10T19:30:04.000Z
drupal-contrib-2022-056	2022-09-07T17:06:06.000Z	2023-08-10T19:28:12.000Z
drupal-contrib-2022-055	2022-09-07T17:04:31.000Z	2023-08-10T19:27:28.000Z
drupal-contrib-2022-054	2022-09-07T16:57:28.000Z	2023-08-10T19:26:43.000Z
drupal-contrib-2022-053	2022-08-24T18:21:02.000Z	2023-08-10T19:26:24.000Z
drupal-contrib-2022-052	2022-08-10T15:09:36.000Z	2023-08-10T19:25:47.000Z
drupal-contrib-2022-051	2022-07-27T17:07:39.000Z	2023-08-10T19:25:28.000Z
drupal-contrib-2022-050	2022-07-27T17:03:38.000Z	2023-08-10T19:24:22.000Z

ID	Description	Published	Updated
cnvd-2026-07111	IBM Concert竞争条件漏洞	2026-01-14	2026-01-23
cnvd-2026-06812	D-Link DWR-M920 sub_423848函数缓冲区溢出漏洞	2026-01-14	2026-01-23
cnvd-2026-06811	D-Link DWR-M920 sub_464794函数缓冲区溢出漏洞	2026-01-14	2026-01-23
cnvd-2026-06810	D-Link DWR-M920命令注入漏洞	2026-01-14	2026-01-23
cnvd-2026-06809	D-Link DWR-M920 sub_42261C函数堆栈缓冲区溢出漏洞	2026-01-14	2026-01-23
cnvd-2026-06094	Tenda M3 /goform/setInternetLanInfo文件堆缓冲区溢出漏洞	2026-01-14	2026-01-21
cnvd-2026-05329	Complete Online Beauty Parlor Management System /search-invoices.php文件跨站脚本漏洞	2026-01-14	2026-01-21
cnvd-2026-04917	Refugee Food Management System SQL注入漏洞	2026-01-14	2026-01-19
cnvd-2026-04665	FastAdmin SQL注入漏洞	2026-01-14	2026-01-16
cnvd-2026-04664	Panda3d栈溢出漏洞	2026-01-14	2026-01-16
cnvd-2026-04542	PHPEMS竞争条件问题漏洞	2026-01-14	2026-01-16
cnvd-2026-04185	D-Link DWR-M920命令注入漏洞	2026-01-14	2026-01-16
cnvd-2026-04184	D-Link DSL-124访问控制错误漏洞	2026-01-14	2026-01-16
cnvd-2026-07960	Soda PDF Desktop权限提升漏洞	2026-01-09	2026-01-27
cnvd-2026-07959	Soda PDF Desktop越界读取信息泄露漏洞（CNVD-2026-07959）	2026-01-09	2026-01-27
cnvd-2026-07958	Soda PDF Desktop内存损坏信息泄露漏洞	2026-01-09	2026-01-27
cnvd-2026-07957	Soda PDF Desktop越界读取信息泄露漏洞	2026-01-09	2026-01-27
cnvd-2026-07554	WordPress插件Wallet System for WooCommerce信息泄露漏洞	2026-01-09	2026-01-28
cnvd-2026-07241	Google Chrome策略执行不足漏洞	2026-01-09	2026-01-22
cnvd-2026-06139	JeecgBoot getDeptRoleByUserId函数信息泄露漏洞	2026-01-09	2026-01-22
cnvd-2026-06138	JeecgBoot loadDatarule函数授权问题漏洞	2026-01-09	2026-01-22
cnvd-2026-06137	JeecgBoot queryPageList函数授权问题漏洞	2026-01-09	2026-01-22
cnvd-2026-06136	JeecgBoot getDeptRoleList函数授权问题漏洞	2026-01-09	2026-01-22
cnvd-2026-06135	JeecgBoot getParameterMap函数授权问题漏洞	2026-01-09	2026-01-22
cnvd-2026-06134	JeecgBoot /datarule文件授权问题漏洞	2026-01-09	2026-01-22
cnvd-2026-06133	JeecgBoot getPositionUserList函数授权问题漏洞	2026-01-09	2026-01-22
cnvd-2026-06132	JeecgBoot queryDepartPermission函数授权问题漏洞	2026-01-09	2026-01-22
cnvd-2026-06111	Soda PDF Desktop越界读取漏洞	2026-01-09	2026-01-21
cnvd-2026-06110	Soda PDF Desktop代码执行漏洞（CNVD-2026-06110）	2026-01-09	2026-01-21
cnvd-2026-06108	Soda PDF Desktop代码执行漏洞（CNVD-2026-06108）	2026-01-09	2026-01-21

ID	Description	Published	Updated
certfr-2025-avi-1129	Multiples vulnérabilités dans les produits VMware	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1128	Multiples vulnérabilités dans Mozilla Firefox	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1127	Multiples vulnérabilités dans Centreon Web	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1126	Multiples vulnérabilités dans PHP	2025-12-19T00:00:00.000000	2025-12-22T00:00:00.000000
certfr-2025-avi-1125	Vulnérabilité dans les produits NetApp	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1124	Multiples vulnérabilités dans Microsoft Edge	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1123	Multiples vulnérabilités dans les produits Elastic	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1122	Multiples vulnérabilités dans Mattermost Server	2025-12-18T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2025-avi-1121	Vulnérabilité dans Sonicwall Secure Mobile Access	2025-12-18T00:00:00.000000	2025-12-18T00:00:00.000000
certfr-2025-avi-1120	Vulnérabilité dans les produits Cisco	2025-12-18T00:00:00.000000	2025-12-18T00:00:00.000000
certfr-2025-avi-1119	Multiples vulnérabilités dans les produits Synology	2025-12-17T00:00:00.000000	2025-12-17T00:00:00.000000
certfr-2025-avi-1118	Vulnérabilité dans Mozilla Firefox	2025-12-17T00:00:00.000000	2025-12-17T00:00:00.000000
certfr-2025-avi-1117	Multiples vulnérabilités dans GLPI	2025-12-17T00:00:00.000000	2025-12-17T00:00:00.000000
certfr-2025-avi-1116	Multiples vulnérabilités dans Google Chrome	2025-12-17T00:00:00.000000	2025-12-17T00:00:00.000000
certfr-2025-avi-1115	Vulnérabilité dans Trend Micro Apex One	2025-12-16T00:00:00.000000	2025-12-16T00:00:00.000000
certfr-2025-avi-1114	Multiples vulnérabilités dans Tenable Nessus	2025-12-16T00:00:00.000000	2025-12-16T00:00:00.000000
certfr-2025-avi-1113	Multiples vulnérabilités dans Moodle	2025-12-16T00:00:00.000000	2025-12-16T00:00:00.000000
certfr-2025-avi-1112	Multiples vulnérabilités dans les produits Elastic	2025-12-15T00:00:00.000000	2025-12-15T00:00:00.000000
certfr-2025-avi-1111	Multiples vulnérabilités dans Roundcube	2025-12-15T00:00:00.000000	2026-01-05T00:00:00.000000
certfr-2025-avi-1110	Multiples vulnérabilités dans les produits Apple	2025-12-15T00:00:00.000000	2025-12-15T00:00:00.000000
certfr-2025-avi-1109	Vulnérabilité dans strongSwan	2025-12-15T00:00:00.000000	2025-12-15T00:00:00.000000
certfr-2025-avi-1108	Multiples vulnérabilités dans les produits IBM	2025-12-12T00:00:00.000000	2025-12-12T00:00:00.000000
certfr-2025-avi-1107	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-12-12T00:00:00.000000	2025-12-12T00:00:00.000000
certfr-2025-avi-1106	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2025-12-12T00:00:00.000000	2025-12-12T00:00:00.000000
certfr-2025-avi-1105	Multiples vulnérabilités dans le noyau Linux de Red Hat	2025-12-12T00:00:00.000000	2025-12-12T00:00:00.000000
certfr-2025-avi-1104	Vulnérabilité dans Microsoft Windows Admin Center	2025-12-12T00:00:00.000000	2025-12-12T00:00:00.000000
certfr-2025-avi-1103	Multiples vulnérabilités dans Microsoft Edge	2025-12-12T00:00:00.000000	2025-12-15T00:00:00.000000
certfr-2025-avi-1102	Multiples vulnérabilités dans les produits NetApp	2025-12-12T00:00:00.000000	2025-12-12T00:00:00.000000
certfr-2025-avi-1101	Multiples vulnérabilités dans les produits Netgate	2025-12-12T00:00:00.000000	2025-12-12T00:00:00.000000
certfr-2025-avi-1100	Multiples vulnérabilités dans les produits Atlassian	2025-12-12T00:00:00.000000	2025-12-12T00:00:00.000000

ID	Description	Published	Updated
certa-2009-ale-021	Vulnérabilité dans Adobe Illustrator	2009-12-10T00:00:00.000000	2010-01-08T00:00:00.000000
certa-2009-ale-020	Vulnérabilité dans Internet Explorer	2009-11-21T00:00:00.000000	2009-12-09T00:00:00.000000
certa-2009-ale-019	Vulnérabilité dans Windows 7 et Windows Server 2008 R2	2009-11-16T00:00:00.000000	2010-06-10T00:00:00.000000
certa-2009-ale-018	Vulnérabilité dans Adobe Reader et Adobe Acrobat	2009-10-09T00:00:00.000000	2009-10-14T00:00:00.000000
certa-2009-ale-017	Vulnérabilités dans l'implémentation TCP/IP de divers produits	2009-09-09T00:00:00.000000	2013-02-19T00:00:00.000000
certa-2009-ale-016	Vulnérabilité de SMBv2 dans Microsoft Windows	2009-09-09T00:00:00.000000	2009-10-13T00:00:00.000000
certa-2009-ale-015	Vulnérabilités du serveur FTP de Microsoft IIS	2009-09-01T00:00:00.000000	2009-10-14T00:00:00.000000
certa-2009-ale-014	Multiples vulnérabilités du client de messagerie Mozilla Thunderbird	2009-08-07T00:00:00.000000	2013-02-05T00:00:00.000000
certa-2009-ale-013	Vulnérabilité Shockwave Flash pour les produits Adobe	2009-07-23T00:00:00.000000	2009-07-31T00:00:00.000000
certa-2009-ale-012	Vulnérabilité dans Mozilla Firefox	2009-07-15T00:00:00.000000	2009-07-17T00:00:00.000000
certa-2009-ale-011	Vulnérabilité dans Microsoft Office Web Components Control	2009-07-13T00:00:00.000000	2009-08-12T00:00:00.000000
certa-2009-ale-010	Vulnérabilité dans le contrôle ActiveX Microsoft Video	2009-07-07T00:00:00.000000	2009-07-15T00:00:00.000000
certa-2009-ale-009	Vulnérabilité dans Microsoft DirectShow	2009-05-29T00:00:00.000000	2009-07-14T00:00:00.000000
certa-2009-ale-008	Vulnérabilité Java de Mac OS X	2009-05-20T00:00:00.000000	2009-06-17T00:00:00.000000
certa-2009-ale-007	Vulnérabilité WebDAV sous Microsoft IIS	2009-05-18T00:00:00.000000	2009-06-10T00:00:00.000000
certa-2009-ale-006	Multiples vulnérabilités dans Adobe Reader et Adobe Acrobat	2009-04-28T00:00:00.000000	2009-05-13T00:00:00.000000
certa-2009-ale-005	Vulnérabilité de PowerPoint	2009-04-03T00:00:00.000000	2009-05-13T00:00:00.000000
certa-2009-ale-004	Vulnérabilité dans Mozilla Firefox	2009-03-27T00:00:00.000000	2009-03-30T00:00:00.000000
certa-2009-ale-003	Vulnérabilité dans Apple Mac OS X	2009-03-24T00:00:00.000000	2009-06-02T00:00:00.000000
certa-2009-ale-002	Vulnérabilité dans Microsoft Excel	2009-02-25T00:00:00.000000	2009-04-15T00:00:00.000000
certa-2009-ale-001	Vulnérabilité dans l'interprétation JBIG2 des produits Adobe	2009-02-20T00:00:00.000000	2009-03-20T00:00:00.000000
certa-2008-ale-017	Vulnérabilité dans Microsoft SQL Server	2008-12-12T00:00:00.000000	2009-02-11T00:00:00.000000
certa-2008-ale-016	Vulnérabilité dans Microsoft Internet Explorer	2008-12-10T00:00:00.000000	2008-12-17T00:00:00.000000
certa-2008-ale-015	Vulnérabilité dans le convertisseur de texte de WordPad	2008-12-10T00:00:00.000000	2009-04-15T00:00:00.000000
certa-2008-ale-014	Vulnérabilité dans Opera	2008-11-20T00:00:00.000000	2009-01-06T00:00:00.000000
certa-2008-ale-013	Vulnérabilité du service sadmind de Sun Solaris	2008-10-17T00:00:00.000000	2013-02-21T00:00:00.000000
certa-2008-ale-012	Vulnérabilité dans Microsoft Windows	2008-10-10T00:00:00.000000	2009-04-15T00:00:00.000000
certa-2008-ale-011	Vulnérabilité dans Oracle BEA WebLogic Server	2008-07-24T00:00:00.000000	2008-08-08T00:00:00.000000
certa-2008-ale-010	Vulnérabilité dans Microsoft Word	2008-07-09T00:00:00.000000	2008-08-13T00:00:00.000000
certa-2008-ale-009	Vulnérabilité dans Microsoft Access Snapshot Viewer	2008-07-08T00:00:00.000000	2008-08-13T00:00:00.000000

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated