Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-59920	8.6 (4.0)	SQL injection in time@work from systems@work	systems at work	time at work	2026-02-18T13:41:02.115Z	2026-02-18T13:41:02.115Z
CVE-2025-8308	6.3 (3.1)	Reflected XSS in Key Software's INFOREX	Key Software Solutions Inc.	INFOREX- General Information Management System	2026-02-18T13:40:09.032Z	2026-02-18T13:40:09.032Z
CVE-2025-14340	7.3 (4.0)	Admin Account Takeover via malicious URL payload	Payara Platform	Payara Server	2026-02-18T13:39:11.316Z	2026-02-18T13:39:11.316Z
CVE-2026-27171	2.9 (3.1)	zlib before 1.3.2 allows CPU consumption via crc3…	zlib	zlib	2026-02-18T02:36:19.509Z	2026-02-18T13:38:55.713Z
CVE-2026-2654	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	huggingface smolagents LocalPythonExecutor requests.po…	huggingface	smolagents	2026-02-18T13:32:06.959Z	2026-02-18T13:32:06.959Z
CVE-2026-1441	5.3 (4.0)	Reflected Cross-Site Scripting (XSS) vulnerability in …	Graylog	Graylog Web Interface	2026-02-18T13:14:11.570Z	2026-02-18T13:14:11.570Z
CVE-2026-1440	5.3 (4.0)	Reflected Cross-Site Scripting (XSS) vulnerability in …	Graylog	Graylog Web Interface	2026-02-18T13:13:51.933Z	2026-02-18T13:13:51.933Z
CVE-2026-1439	5.3 (4.0)	Reflected Cross-Site Scripting (XSS) vulnerability in …	Graylog	Graylog Web Interface	2026-02-18T13:13:36.893Z	2026-02-18T13:13:36.893Z
CVE-2026-1438	5.3 (4.0)	Reflected Cross-Site Scripting (XSS) vulnerability in …	Graylog	Graylog Web Interface	2026-02-18T13:13:23.498Z	2026-02-18T13:13:23.498Z
CVE-2026-1437	5.3 (4.0)	Reflected Cross-Site Scripting (XSS) vulnerability in …	Graylog	Graylog Web Interface	2026-02-18T13:12:57.904Z	2026-02-18T13:12:57.904Z
CVE-2026-1436	7.1 (4.0)	Improper Access Control (IDOR) vulnerability in Graylo…	Graylog	Graylog Web Interface	2026-02-18T13:09:35.443Z	2026-02-18T13:11:34.044Z
CVE-2026-1435	9.3 (4.0)	Incorrect management of session invalidation vulnerabi…	Graylog	Graylog Web Interface	2026-02-18T13:08:36.348Z	2026-02-18T13:08:36.348Z
CVE-2025-12074	5.3 (3.1)	Context Blog <= 1.2.5 - Unauthenticated Private Post D…	postmagthemes	Context Blog	2026-02-18T04:35:41.852Z	2026-02-18T12:53:56.485Z
CVE-2026-1714	8.6 (3.1)	ShopLentor <= 3.3.2 - Unauthenticated Email Relay Abus…	devitemsllc	ShopLentor – All-in-One WooCommerce Growth & Store Enhancement Plugin	2026-02-18T04:35:45.965Z	2026-02-18T12:53:49.971Z
CVE-2026-2576	7.5 (3.1)	Business Directory Plugin <= 6.4.21 - Unauthenticated …	strategy11team	Business Directory Plugin – Easy Listing Directories for WordPress	2026-02-18T04:35:46.432Z	2026-02-18T12:53:43.182Z
CVE-2026-1925	4.3 (3.1)	EmailKit – Email Customizer for WooCommerce & WP <= 1.…	roxnor	EmailKit – Email Customizer for WooCommerce & WP	2026-02-18T04:35:46.791Z	2026-02-18T12:53:36.600Z
CVE-2026-2023	4.3 (3.1)	WP Plugin Info Card <= 6.2.0 - Cross-Site Request Forg…	brikou	WP Plugin Info Card	2026-02-18T05:29:15.847Z	2026-02-18T12:53:29.827Z
CVE-2025-11737	6.4 (3.1)	VK All in One Expansion Unit <= 9.112.3 - Authenticate…	kurudrive	VK All in One Expansion Unit	2026-02-18T05:29:16.434Z	2026-02-18T12:53:23.276Z
CVE-2026-1639	6.5 (3.1)	Taskbuilder <= 5.0.2 - Authenticated (Subscriber+) SQL…	taskbuilder	Taskbuilder – WordPress Project Management & Task Management,kanban view	2026-02-18T05:29:16.875Z	2026-02-18T12:53:16.656Z
CVE-2026-1906	4.3 (3.1)	PDF Invoices & Packing Slips for WooCommerce <= 5.6.0 …	wpovernight	PDF Invoices & Packing Slips for WooCommerce	2026-02-18T05:29:17.309Z	2026-02-18T12:53:09.667Z
CVE-2026-1072	4.3 (3.1)	Keybase.io Verification <= 1.4.5 - Cross-Site Request …	jamesits	Keybase.io Verification	2026-02-18T05:29:17.672Z	2026-02-18T12:53:01.683Z
CVE-2025-12122	6.4 (3.1)	Popup Box – Easily Create WordPress Popups <= 3.2.12 -…	wpcalc	Popup Box – Easily Create WordPress Popups	2026-02-18T05:29:18.098Z	2026-02-18T12:52:54.621Z
CVE-2026-1304	4.4 (3.1)	Membership Plugin – Restrict Content <= 3.2.18 - Authe…	stellarwp	Membership Plugin – Restrict Content	2026-02-18T05:29:18.540Z	2026-02-18T12:52:47.695Z
CVE-2026-2419	2.7 (3.1)	WP-DownloadManager <= 1.69 - Authenticated (Administra…	gamerz	WP-DownloadManager	2026-02-18T07:25:39.503Z	2026-02-18T12:52:40.197Z
CVE-2026-1655	4.3 (3.1)	EventPrime <= 4.2.8.4 - Missing Authorization to Authe…	metagauss	EventPrime – Events Calendar, Bookings and Tickets	2026-02-18T07:25:40.066Z	2026-02-18T12:52:33.131Z
CVE-2026-1938	5.3 (3.1)	YayMail <= 4.3.2 - Missing Authorization to Authentica…	yaycommerce	YayMail – WooCommerce Email Customizer	2026-02-18T07:25:40.480Z	2026-02-18T12:52:25.936Z
CVE-2026-1943	4.4 (3.1)	YayMail <= 4.3.2 - Authenticated (Shop Manager+) Store…	yaycommerce	YayMail – WooCommerce Email Customizer	2026-02-18T07:25:40.955Z	2026-02-18T12:52:18.900Z
CVE-2026-1860	4.3 (3.1)	Kali Forms <= 2.4.8 - Insecure Direct Object Reference…	wpchill	Kali Forms — Contact Form & Drag-and-Drop Builder	2026-02-18T07:25:41.338Z	2026-02-18T12:52:12.224Z
CVE-2026-1831	2.7 (3.1)	YayMail <= 4.3.2 - Missing Authorization to Authentica…	yaycommerce	YayMail – WooCommerce Email Customizer	2026-02-18T07:25:41.707Z	2026-02-18T12:52:05.436Z
CVE-2026-2112	4.3 (3.1)	Dam Spam <= 1.0.8 - Cross-Site Request Forgery to Arbi…	webguyio	Dam Spam	2026-02-18T07:25:42.068Z	2026-02-18T12:51:56.413Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-25641	10 (3.1)	SandboxJS has a sandbox escape via TOCTOU bug on keys …	nyariv	SandboxJS	2026-02-06T19:50:11.634Z	2026-02-06T20:20:03.764Z
CVE-2026-22276	5.5 (3.1)	Dell ECS, versions 3.8.1.0 through 3.8.1.7, and D…	Dell	ObjectScale	2026-01-23T09:42:46.521Z	2026-01-23T15:14:02.380Z
CVE-2026-22275	4.4 (3.1)	Dell ECS, versions 3.8.1.0 through 3.8.1.7, and D…	Dell	ObjectScale	2026-01-23T09:34:34.710Z	2026-01-23T15:15:44.763Z
CVE-2026-22274	6.5 (3.1)	Dell ECS, versions 3.8.1.0 through 3.8.1.7, and D…	Dell	ObjectScale	2026-01-23T09:25:04.509Z	2026-01-23T15:16:16.656Z
CVE-2026-22273	8.8 (3.1)	Dell ECS, versions 3.8.1.0 through 3.8.1.7, and D…	Dell	ObjectScale	2026-01-23T09:14:38.455Z	2026-01-24T04:55:38.871Z
CVE-2026-22271	7.5 (3.1)	Dell ECS, versions 3.8.1.0 through 3.8.1.7, and D…	Dell	ObjectScale	2026-01-23T08:54:16.081Z	2026-01-24T04:55:17.141Z
CVE-2020-7796	9.8 (3.1)	Zimbra Collaboration Suite (ZCS) before 8.8.15 Pa…	n/a	n/a	2020-02-18T21:14:22.000Z	2026-02-18T04:56:25.831Z
CVE-2024-7694	7.2 (3.1)	TeamT5 ThreatSonar Anti-Ransomware - Arbitrary File Upload	TeamT5	ThreatSonar Anti-Ransomware	2024-08-12T03:00:55.680Z	2026-02-18T04:56:25.049Z
CVE-2026-2441	8.8 (3.1)	Use after free in CSS in Google Chrome prior to 1…	Google	Chrome	2026-02-13T18:27:48.355Z	2026-02-18T04:56:20.736Z
CVE-2026-2386	4.3 (3.1)	The Plus Addons for Elementor – Addons for Elementor, …	posimyththemes	The Plus Addons for Elementor – Addons for Elementor, Page Templates, Widgets, Mega Menu, WooCommerce	2026-02-18T12:28:34.722Z	2026-02-18T12:28:34.722Z
CVE-2026-1582	3.7 (3.1)	WP All Export <= 1.4.14 - Unauthenticated Sensitive In…	soflyy	WP All Export – Drag & Drop Export to Any Custom CSV, XML & Excel	2026-02-18T12:28:35.103Z	2026-02-18T12:28:35.103Z
CVE-2026-1317	6.5 (3.1)	WP Import – Ultimate CSV XML Importer for WordPress <=…	smackcoders	WP Import – Ultimate CSV XML Importer for WordPress	2026-02-18T12:28:35.464Z	2026-02-18T12:28:35.464Z
CVE-2025-8781	4.9 (3.1)	Bookster – WordPress Appointment Booking Plugin <= 2.1…	bookster	Bookster – WordPress Appointment Booking Plugin	2026-02-18T12:28:34.014Z	2026-02-18T12:28:34.014Z
CVE-2025-7630	5.3 (3.1)	OTP Password Brute Forcing in DorukNet's Wispotter	Doruk Communication and Automation Industry and Trade Inc.	Wispotter	2026-02-18T12:09:07.301Z	2026-02-18T12:09:07.301Z
CVE-2025-14799	6.5 (3.1)	Brevo - Email, SMS, Web Push, Chat, and more. <= 3.3.0…	neeraj_slit	Brevo – Email, SMS, Web Push, Chat, and more.	2026-02-18T11:26:03.698Z	2026-02-18T11:26:03.698Z
CVE-2026-2653	4.8 (4.0) 5.3 (3.1) 5.3 (3.0)	admesh normals.c stl_check_normal_vector heap-based overflow	n/a	admesh	2026-02-18T11:02:07.838Z	2026-02-18T11:02:07.838Z
CVE-2026-2426	6.5 (3.1)	WP-DownloadManager <= 1.69 - Authenticated (Administra…	gamerz	WP-DownloadManager	2026-02-18T10:20:48.986Z	2026-02-18T12:50:25.552Z
CVE-2026-1942	6.5 (3.1)	Blog2Social: Social Media Auto Post & Scheduler <= 8.7…	pr-gateway	Blog2Social: Social Media Auto Post & Scheduler	2026-02-18T10:20:48.607Z	2026-02-18T12:50:33.724Z
CVE-2025-14444	5.3 (3.1)	RegistrationMagic – Custom Registration Forms, User Re…	metagauss	RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login	2026-02-18T10:20:47.975Z	2026-02-18T12:50:42.109Z
CVE-2026-2126	5.3 (3.1)	User Submitted Posts <= 20260113 - Incorrect Authoriza…	specialk	User Submitted Posts – Enable Users to Submit Posts from the Front End	2026-02-18T09:25:51.296Z	2026-02-18T12:51:09.152Z
CVE-2025-13727	4.4 (3.1)	Video Share VOD <= 2.7.11 - Authenticated (Editor+) St…	videowhisper	Video Share VOD – Turnkey Video Site Builder Script	2026-02-18T09:25:51.838Z	2026-02-18T12:50:59.928Z
CVE-2025-11185	6.4 (3.1)	Complianz \| GDPR/CCPA Cookie Consent <= 7.4.3 - Authen…	complianz	Complianz – GDPR/CCPA Cookie Consent	2026-02-18T09:25:52.199Z	2026-02-18T12:50:51.671Z
CVE-2026-2495	7.5 (3.1)	WPNakama <= 0.6.5 - Unauthenticated SQL Injection via …	qdonow	WPNakama – Team and multi-Client Collaboration, Editorial and Project Management	2026-02-18T08:26:03.735Z	2026-02-18T12:51:42.161Z
CVE-2026-2127	5.4 (3.1)	SiteOrigin Widgets Bundle <= 1.70.4 - Missing Authoriz…	gpriday	SiteOrigin Widgets Bundle	2026-02-18T08:26:04.127Z	2026-02-18T12:51:34.763Z
CVE-2026-1941	6.4 (3.1)	WP Event Aggregator <= 1.8.7 - Authenticated (Contribu…	xylus	WP Event Aggregator: Import Eventbrite events, Meetup events, social events and any iCal Events into Event Calendar	2026-02-18T08:26:03.081Z	2026-02-18T12:51:49.408Z
CVE-2026-1656	5.3 (3.1)	Business Directory Plugin <= 6.4.20 - Missing Authoriz…	strategy11team	Business Directory Plugin – Easy Listing Directories for WordPress	2026-02-18T08:26:05.398Z	2026-02-18T12:51:17.963Z
CVE-2026-1649	4.4 (3.1)	Community Events <= 1.5.7 - Authenticated (Administrat…	jackdewey	Community Events	2026-02-18T08:26:04.945Z	2026-02-18T12:51:26.267Z
CVE-2026-25421	N/A	This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Collision with another CVE.	N/A	N/A	2026-02-18T07:39:45.404Z	2026-02-18T07:41:24.693Z
CVE-2026-2419	2.7 (3.1)	WP-DownloadManager <= 1.69 - Authenticated (Administra…	gamerz	WP-DownloadManager	2026-02-18T07:25:39.503Z	2026-02-18T12:52:40.197Z
CVE-2026-2112	4.3 (3.1)	Dam Spam <= 1.0.8 - Cross-Site Request Forgery to Arbi…	webguyio	Dam Spam	2026-02-18T07:25:42.068Z	2026-02-18T12:51:56.413Z

ID	Description	Published	Updated
fkie_cve-2025-14799	The Brevo - Email, SMS, Web Push, Chat, and more. plugin for WordPress is vulnerable to authorizati…	2026-02-18T12:15:58.573	2026-02-18T12:15:58.573
fkie_cve-2026-2653	A security flaw has been discovered in admesh up to 0.98.5. This issue affects the function stl_che…	2026-02-18T11:16:32.770	2026-02-18T11:16:32.770
fkie_cve-2026-2426	The WP-DownloadManager plugin for WordPress is vulnerable to Path Traversal in all versions up to, …	2026-02-18T11:16:32.603	2026-02-18T11:16:32.603
fkie_cve-2026-1942	The Blog2Social: Social Media Auto Post & Scheduler plugin for WordPress is vulnerable to unauthori…	2026-02-18T11:16:32.423	2026-02-18T11:16:32.423
fkie_cve-2025-14444	The RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login plugi…	2026-02-18T11:16:30.453	2026-02-18T11:16:30.453
fkie_cve-2026-2126	The User Submitted Posts – Enable Users to Submit Posts from the Front End plugin for WordPress is …	2026-02-18T10:16:15.173	2026-02-18T10:16:15.173
fkie_cve-2025-13727	The Video Share VOD – Turnkey Video Site Builder Script plugin for WordPress is vulnerable to Store…	2026-02-18T10:16:14.403	2026-02-18T10:16:14.403
fkie_cve-2025-11185	The Complianz – GDPR/CCPA Cookie Consent plugin for WordPress is vulnerable to Stored Cross-Site Sc…	2026-02-18T10:16:13.340	2026-02-18T10:16:13.340
fkie_cve-2026-2495	The WPNakama – Team and multi-Client Collaboration, Editorial and Project Management plugin for Wor…	2026-02-18T09:15:59.030	2026-02-18T09:15:59.030
fkie_cve-2026-2127	The SiteOrigin Widgets Bundle plugin for WordPress is vulnerable to unauthorized arbitrary shortcod…	2026-02-18T09:15:58.817	2026-02-18T09:15:58.817
fkie_cve-2026-1941	The WP Event Aggregator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the p…	2026-02-18T09:15:58.603	2026-02-18T09:15:58.603
fkie_cve-2026-1656	The Business Directory Plugin for WordPress is vulnerable to authorization bypass due to a missing …	2026-02-18T09:15:58.403	2026-02-18T09:15:58.403
fkie_cve-2026-1649	The Community Events plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'ce_…	2026-02-18T09:15:58.173	2026-02-18T09:15:58.173
fkie_cve-2026-25421	Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Collisi…	2026-02-18T08:16:15.540	2026-02-18T08:16:15.540
fkie_cve-2026-2419	The WP-DownloadManager plugin for WordPress is vulnerable to Path Traversal in all versions up to, …	2026-02-18T08:16:15.817	2026-02-18T08:16:15.817
fkie_cve-2026-2112	The Dam Spam plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to…	2026-02-18T08:16:15.637	2026-02-18T08:16:15.637
fkie_cve-2026-1943	The YayMail – WooCommerce Email Customizer plugin for WordPress is vulnerable to Stored Cross-Site …	2026-02-18T08:16:15.373	2026-02-18T08:16:15.373
fkie_cve-2026-1938	The YayMail – WooCommerce Email Customizer plugin for WordPress is vulnerable to unauthorized licen…	2026-02-18T08:16:15.207	2026-02-18T08:16:15.207
fkie_cve-2026-1860	The Kali Forms plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versio…	2026-02-18T08:16:15.043	2026-02-18T08:16:15.043
fkie_cve-2026-1831	The YayMail - WooCommerce Email Customizer plugin for WordPress is vulnerable to unauthorized plugi…	2026-02-18T08:16:14.873	2026-02-18T08:16:14.873
fkie_cve-2026-1655	The EventPrime plugin for WordPress is vulnerable to unauthorized post modification due to missing …	2026-02-18T08:16:14.257	2026-02-18T08:16:14.257
fkie_cve-2026-2644	A weakness has been identified in niklasso minisat up to 2.2.0. This issue affects the function Sol…	2026-02-18T07:16:11.230	2026-02-18T07:16:11.230
fkie_cve-2026-2642	A security vulnerability has been detected in ggreer the_silver_searcher up to 2.2.0. The impacted …	2026-02-18T07:16:10.980	2026-02-18T07:16:10.980
fkie_cve-2026-2633	The Gutenberg Blocks with AI by Kadence WP plugin for WordPress is vulnerable to Missing Authorizat…	2026-02-18T07:16:10.807	2026-02-18T07:16:10.807
fkie_cve-2026-2296	The Product Addons for Woocommerce – Product Options with Custom Fields plugin for WordPress is vul…	2026-02-18T07:16:10.630	2026-02-18T07:16:10.630
fkie_cve-2026-2281	The Private Comment plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Labe…	2026-02-18T07:16:10.450	2026-02-18T07:16:10.450
fkie_cve-2026-2019	The Cart All In One For WooCommerce plugin for WordPress is vulnerable to Code Injection in all ver…	2026-02-18T07:16:10.273	2026-02-18T07:16:10.273
fkie_cve-2026-1937	The YayMail – WooCommerce Email Customizer plugin for WordPress is vulnerable to unauthorized modif…	2026-02-18T07:16:10.093	2026-02-18T07:16:10.093
fkie_cve-2026-1857	The Gutenberg Blocks with AI by Kadence WP plugin for WordPress is vulnerable to Server-Side Reques…	2026-02-18T07:16:09.907	2026-02-18T07:16:09.907
fkie_cve-2026-1807	The InteractiveCalculator for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scr…	2026-02-18T07:16:09.727	2026-02-18T07:16:09.727

ID	Severity	Description	Published	Updated
ghsa-w2w8-j4gc-v26q	6.5 (3.1)	The WP-DownloadManager plugin for WordPress is vulnerable to Path Traversal in all versions up to, …	2026-02-18T12:31:11Z	2026-02-18T12:31:11Z
ghsa-vcj6-96x2-26j3	5.3 (3.1) 1.9 (4.0)	A security flaw has been discovered in admesh up to 0.98.5. This issue affects the function stl_che…	2026-02-18T12:31:11Z	2026-02-18T12:31:11Z
ghsa-fq68-cwcx-p92f	5.3 (3.1)	The RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login plugi…	2026-02-18T12:31:10Z	2026-02-18T12:31:11Z
ghsa-9pr5-g9xr-gp22	6.5 (3.1)	The Blog2Social: Social Media Auto Post & Scheduler plugin for WordPress is vulnerable to unauthori…	2026-02-18T12:31:11Z	2026-02-18T12:31:11Z
ghsa-2pc4-pm2m-q53r	6.5 (3.1)	The Brevo - Email, SMS, Web Push, Chat, and more. plugin for WordPress is vulnerable to authorizati…	2026-02-18T12:31:11Z	2026-02-18T12:31:11Z
ghsa-pm8v-w3f2-2hxx	5.3 (3.1)	The User Submitted Posts – Enable Users to Submit Posts from the Front End plugin for WordPress is …	2026-02-18T12:31:10Z	2026-02-18T12:31:10Z
ghsa-3vq8-64jx-f882	6.4 (3.1)	The Complianz – GDPR/CCPA Cookie Consent plugin for WordPress is vulnerable to Stored Cross-Site Sc…	2026-02-18T12:31:10Z	2026-02-18T12:31:10Z
ghsa-23h7-68rq-jgvf	4.4 (3.1)	The Video Share VOD – Turnkey Video Site Builder Script plugin for WordPress is vulnerable to Store…	2026-02-18T12:31:10Z	2026-02-18T12:31:10Z
ghsa-xf7v-j2cc-2crf	6.4 (3.1)	The WP Event Aggregator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the p…	2026-02-18T09:31:04Z	2026-02-18T09:31:04Z
ghsa-rg7x-c263-823c	7.5 (3.1)	The WPNakama – Team and multi-Client Collaboration, Editorial and Project Management plugin for Wor…	2026-02-18T09:31:04Z	2026-02-18T09:31:04Z
ghsa-qj9g-q4j9-47hp	4.3 (3.1)	The Dam Spam plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to…	2026-02-18T09:31:04Z	2026-02-18T09:31:04Z
ghsa-qfwf-756h-2p4g	3.3 (3.1) 1.9 (4.0)	A weakness has been identified in niklasso minisat up to 2.2.0. This issue affects the function Sol…	2026-02-18T09:31:04Z	2026-02-18T09:31:04Z
ghsa-q7wp-4j7p-g4vj	2.7 (3.1)	The WP-DownloadManager plugin for WordPress is vulnerable to Path Traversal in all versions up to, …	2026-02-18T09:31:04Z	2026-02-18T09:31:04Z
ghsa-p572-g32f-hp32	7.2 (3.1)	The Product Addons for Woocommerce – Product Options with Custom Fields plugin for WordPress is vul…	2026-02-18T09:31:04Z	2026-02-18T09:31:04Z
ghsa-jh7f-pj8r-h37c	4.3 (3.1)	The EventPrime plugin for WordPress is vulnerable to unauthorized post modification due to missing …	2026-02-18T09:31:04Z	2026-02-18T09:31:04Z
ghsa-h92c-7ccr-x4hr	4.3 (3.1)	The Kali Forms plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versio…	2026-02-18T09:31:04Z	2026-02-18T09:31:04Z
ghsa-gxvp-w433-832f	2.7 (3.1)	The YayMail - WooCommerce Email Customizer plugin for WordPress is vulnerable to unauthorized plugi…	2026-02-18T09:31:04Z	2026-02-18T09:31:04Z
ghsa-gmgx-8hxg-f53q	4.4 (3.1)	The YayMail – WooCommerce Email Customizer plugin for WordPress is vulnerable to Stored Cross-Site …	2026-02-18T09:31:04Z	2026-02-18T09:31:04Z
ghsa-gch6-cfhh-c44p	4.3 (3.1)	The Gutenberg Blocks with AI by Kadence WP plugin for WordPress is vulnerable to Missing Authorizat…	2026-02-18T09:31:04Z	2026-02-18T09:31:04Z
ghsa-g6wj-gw42-4345	5.3 (3.1)	The YayMail – WooCommerce Email Customizer plugin for WordPress is vulnerable to unauthorized licen…	2026-02-18T09:31:04Z	2026-02-18T09:31:04Z
ghsa-cxr2-7xvc-hh42	4.4 (3.1)	The Community Events plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'ce_…	2026-02-18T09:31:04Z	2026-02-18T09:31:04Z
ghsa-cwvx-vcjx-vqjc	7.2 (3.1)	The Cart All In One For WooCommerce plugin for WordPress is vulnerable to Code Injection in all ver…	2026-02-18T09:31:04Z	2026-02-18T09:31:04Z
ghsa-9x54-6v7m-8wf2		Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Collisi…	2026-02-18T09:31:04Z	2026-02-18T09:31:04Z
ghsa-8vw7-m4cj-2323	3.3 (3.1) 1.9 (4.0)	A security vulnerability has been detected in ggreer the_silver_searcher up to 2.2.0. The impacted …	2026-02-18T09:31:04Z	2026-02-18T09:31:04Z
ghsa-77g9-fwj8-pcwg	9.8 (3.1)	The YayMail – WooCommerce Email Customizer plugin for WordPress is vulnerable to unauthorized modif…	2026-02-18T09:31:04Z	2026-02-18T09:31:04Z
ghsa-6mq9-qm49-w244	5.4 (3.1)	The SiteOrigin Widgets Bundle plugin for WordPress is vulnerable to unauthorized arbitrary shortcod…	2026-02-18T09:31:04Z	2026-02-18T09:31:04Z
ghsa-53pp-j4fh-wvrr	5.3 (3.1)	The Business Directory Plugin for WordPress is vulnerable to authorization bypass due to a missing …	2026-02-18T09:31:04Z	2026-02-18T09:31:04Z
ghsa-34f4-7p4v-274v	4.4 (3.1)	The Private Comment plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Labe…	2026-02-18T09:31:04Z	2026-02-18T09:31:04Z
ghsa-wxhm-86c2-x66c	4.3 (3.1)	The Taskbuilder – WordPress Project Management & Task Management plugin for WordPress is vulnerable…	2026-02-18T09:31:03Z	2026-02-18T09:31:03Z
ghsa-q7cc-x725-hp7g	6.4 (3.1)	The InteractiveCalculator for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scr…	2026-02-18T09:31:03Z	2026-02-18T09:31:03Z

ID	Severity	Description	Package	Published	Updated
pysec-2024-85	7.5 (3.1)	Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsD…	mindsdb	2024-09-12T13:15:00Z	2026-02-17T13:55:49.356648Z
pysec-2024-84	7.5 (3.1)	Deserialization of untrusted data can occur in versions 23.10.3.0 and newer of the MindsD…	mindsdb	2024-09-12T13:15:00Z	2026-02-17T13:55:49.257552Z
pysec-2024-83	7.5 (3.1)	Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsD…	mindsdb	2024-09-12T13:15:00Z	2026-02-17T13:55:49.155981Z
pysec-2024-82	8.8 (3.1)	Deserialization of untrusted data can occur in versions 23.3.2.0 and newer of the MindsDB…	mindsdb	2024-09-12T13:15:00Z	2026-02-17T13:55:49.053637Z
pysec-2023-278	5.3 (3.1)	MindsDB connects artificial intelligence models to real time data. Versions prior to 23.1…	mindsdb	2023-12-11T21:15:00Z	2026-02-17T13:55:48.935281Z
pysec-2026-1		A PyPI user account compromised by an attacker and was able to upload a malicious version…	dydx-v4-client		2026-01-28T21:09:02+00:00
pysec-2025-52		gateway_proxy_handler in MLflow before 3.1.0 lacks gateway_path validation.	mlflow	2025-06-23T15:15:29Z	2025-12-05T13:25:55.146081Z
pysec-2020-220		A flaw was found in Ansible Base when using the aws_ssm connection plugin as garbage coll…	ansible	2020-10-05T14:15:00Z	2025-10-31T04:43:53.616247Z
pysec-2025-72		The `num2words` project was compromised via a phishing attack and two new versions were u…	num2words		2025-07-31T14:34:47+00:00
pysec-2025-71		Cadwyn creates production-ready community-driven modern Stripe-like API versioning in Fas…	cadwyn	2025-07-21T21:15:25+00:00	2025-07-23T15:24:03.825615+00:00
pysec-2025-70	10.0 (3.1)	A Server-Side Request Forgery (SSRF) vulnerability exists in the RequestsToolkit componen…	langchain-community	2025-06-23T21:15:25+00:00	2025-07-16T21:23:40.211079+00:00
pysec-2024-259	9.8 (3.1)	In PyTorch <=2.4.1, the RemoteModule has Deserialization RCE. NOTE: this is disputed by m…	torch	2024-10-29T21:15:04+00:00	2025-07-16T03:09:57.748865+00:00
pysec-2024-258		In scrapy/scrapy, an issue was identified where the Authorization header is not removed d…	scrapy	2024-05-20T08:15:08+00:00	2025-07-15T17:37:50.051730+00:00
pysec-2025-69		In Roundup before 2.5.0, XSS can occur via interaction between URLs and issue tracker tem…	roundup	2025-07-13T20:15:25+00:00	2025-07-13T21:23:01.161315+00:00
pysec-2025-68	8.0 (3.1)	A vulnerability, which was classified as critical, has been found in Upsonic up to 0.55.6…	upsonic	2025-06-19T21:15:27+00:00	2025-07-08T19:22:27.449399+00:00
pysec-2025-67	9.8 (3.1)	A vulnerability classified as critical was found in Upsonic up to 0.55.6. This vulnerabil…	upsonic	2025-06-19T21:15:27+00:00	2025-07-08T19:22:27.385619+00:00
pysec-2025-66		Improper privilege management in a REST interface allowed registered users to access unau…	streampipes	2025-03-03T11:15:11+00:00	2025-07-08T15:23:46.628375+00:00
pysec-2025-65		A path traversal vulnerability exists in run-llama/llama_index versions 0.12.27 through 0…	llama-index	2025-07-07T13:15:28+00:00	2025-07-07T15:23:42.730681+00:00
pysec-2025-61		Pillow is a Python imaging library. In versions 11.2.0 to before 11.3.0, there is a heap …	pillow	2025-07-01T19:15:27Z	2025-07-07T14:12:46.226030Z
pysec-2025-64	9.8 (3.1)	A vulnerability classified as critical has been found in themanojdesai python-a2a up to 0…	python-a2a	2025-06-17T07:15:18+00:00	2025-07-02T21:23:13.806273+00:00
pysec-2025-63		vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Whe…	vllm	2025-03-19T16:15:32+00:00	2025-07-01T23:22:49.176005+00:00
pysec-2025-62		vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Mal…	vllm	2025-02-07T20:15:34+00:00	2025-07-01T23:22:49.083695+00:00
pysec-2025-60		Exposure of Sensitive Information to an Unauthorized Actor, Insertion of Sensitive Inform…	apache-iotdb	2025-05-14T11:16:28+00:00	2025-07-01T21:22:47.232036+00:00
pysec-2025-59		Remote Code Execution with untrusted URI of UDF vulnerability in Apache IoTDB. The attack…	apache-iotdb	2025-05-14T11:15:47+00:00	2025-07-01T21:22:47.177405+00:00
pysec-2024-257	7.5 (3.1)	Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm…	mobsf	2024-03-22T23:15:07+00:00	2025-06-30T15:23:50.085549+00:00
pysec-2025-58	8.8 (3.1)	vLLM is a library for LLM inference and serving. vllm/model_executor/weight_utils.py impl…	vllm	2025-01-27T18:15:41+00:00	2025-06-27T21:22:36.583615+00:00
pysec-2025-57		A Denial of Service (DoS) vulnerability in zenml-io/zenml version 0.66.0 allows unauthent…	zenml	2025-03-20T10:15:48+00:00	2025-06-27T17:22:55.175431+00:00
pysec-2025-56	4.3 (3.1)	OctoPrint provides a web interface for controlling consumer 3D printers. In versions up t…	octoprint	2025-04-22T18:15:59+00:00	2025-06-27T17:22:53.513680+00:00
pysec-2024-256		Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm…	mobsf	2024-12-03T16:15:24+00:00	2025-06-27T17:22:53.325430+00:00
pysec-2025-55		vLLM is an inference and serving engine for large language models (LLMs). Version 0.8.0 u…	vllm	2025-05-30T19:15:30+00:00	2025-06-26T21:23:06.407481+00:00

ID	Description	Updated
gsd-2024-33903	In CARLA through 0.9.15.2, the collision sensor mishandles some situations involving pede…	2024-04-29T05:02:07.295775Z
gsd-2024-33902	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.486429Z
gsd-2024-33901	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.525896Z
gsd-2024-33900	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.290639Z
gsd-2024-33899	RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attackers to spoof the scr…	2024-04-29T05:02:07.400574Z
gsd-2024-33898	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.287632Z
gsd-2024-33897	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.283756Z
gsd-2024-33896	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.313250Z
gsd-2024-33895	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.493081Z
gsd-2024-33894	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.488420Z
gsd-2024-33893	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.381761Z
gsd-2024-33892	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.378170Z
gsd-2024-33891	Delinea Secret Server before 11.7.000001 allows attackers to bypass authentication via th…	2024-04-29T05:02:07.412035Z
gsd-2024-33890	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.344384Z
gsd-2024-33889	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.392587Z
gsd-2024-33888	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.468423Z
gsd-2024-33887	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.503613Z
gsd-2024-33886	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.287167Z
gsd-2024-33885	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.441746Z
gsd-2024-33884	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.534455Z
gsd-2024-33883	The ejs (aka Embedded JavaScript templates) package before 3.1.10 for Node.js lacks certa…	2024-04-29T05:02:07.271727Z
gsd-2024-4303	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:05.716348Z
gsd-2024-4302	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:05.603637Z
gsd-2024-4301	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:05.678292Z
gsd-2024-4300	E-WEBInformationCo. FS-EZViewer(Web) exposes sensitive information in the service. A remo…	2024-04-29T05:02:05.715239Z
gsd-2024-4299	The system configuration interface of HGiga iSherlock (including MailSherlock, SpamSheroc…	2024-04-29T05:02:05.606402Z
gsd-2024-4298	The email search interface of HGiga iSherlock (including MailSherlock, SpamSherock, Audit…	2024-04-29T05:02:05.598531Z
gsd-2024-4297	The system configuration interface of HGiga iSherlock (including MailSherlock, SpamSherlo…	2024-04-29T05:02:05.700888Z
gsd-2024-4296	The account management interface of HGiga iSherlock (including MailSherlock, SpamSherlock…	2024-04-29T05:02:05.621428Z
gsd-2024-33882	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.803998Z

ID	Description	Published	Updated
mal-2026-932	Malicious code in easyreg (PyPI)	2026-02-17T23:17:30Z	2026-02-18T00:36:33Z
mal-2026-933	Malicious code in pywin-simple-gui (PyPI)	2026-02-17T23:14:17Z	2026-02-17T23:14:17Z
mal-2026-930	Malicious code in telebot-info (PyPI)	2026-02-17T20:18:25Z	2026-02-17T21:16:32Z
mal-2026-931	Malicious code in telebot-infe (PyPI)	2026-02-17T20:36:23Z	2026-02-17T20:45:24Z
mal-2026-929	Malicious code in vds-monarch (npm)	2026-02-17T15:55:37Z	2026-02-17T15:55:37Z
mal-2026-910	Malicious code in dns-execution-test (PyPI)	2026-02-15T23:20:54Z	2026-02-17T11:48:47Z
mal-2026-928	Malicious code in polyutil (PyPI)	2026-02-17T04:31:14Z	2026-02-17T04:31:14Z
MAL-2026-928	Malicious code in polyutil (PyPI)	2026-02-17T04:31:14Z	2026-02-17T04:31:14Z
mal-2026-926	Malicious code in auto-backup-wsl (PyPI)	2026-01-05T23:50:24Z	2026-02-17T00:36:40Z
mal-2026-925	Malicious code in auto-backup-wins (PyPI)	2026-01-05T23:49:57Z	2026-02-17T00:36:40Z
mal-2026-924	Malicious code in auto-backup-macos (PyPI)	2026-01-05T23:50:38Z	2026-02-17T00:36:40Z
mal-2026-923	Malicious code in auto-backup-linux (PyPI)	2026-01-05T23:50:47Z	2026-02-17T00:36:40Z
MAL-2026-926	Malicious code in auto-backup-wsl (PyPI)	2026-01-05T23:50:24Z	2026-02-17T00:36:40Z
MAL-2026-925	Malicious code in auto-backup-wins (PyPI)	2026-01-05T23:49:57Z	2026-02-17T00:36:40Z
MAL-2026-924	Malicious code in auto-backup-macos (PyPI)	2026-01-05T23:50:38Z	2026-02-17T00:36:40Z
MAL-2026-923	Malicious code in auto-backup-linux (PyPI)	2026-01-05T23:50:47Z	2026-02-17T00:36:40Z
mal-2026-927	Malicious code in polyclawd (PyPI)	2026-02-16T23:40:13Z	2026-02-16T23:40:13Z
MAL-2026-927	Malicious code in polyclawd (PyPI)	2026-02-16T23:40:13Z	2026-02-16T23:40:13Z
mal-2026-922	Malicious code in compass-e2e-tests (npm)	2026-02-16T19:55:51Z	2026-02-16T19:55:51Z
MAL-2026-922	Malicious code in compass-e2e-tests (npm)	2026-02-16T19:55:51Z	2026-02-16T19:55:51Z
mal-2026-921	Malicious code in cicibot-fix-message-naming (PyPI)	2026-02-16T18:08:42Z	2026-02-16T18:08:42Z
MAL-2026-921	Malicious code in cicibot-fix-message-naming (PyPI)	2026-02-16T18:08:42Z	2026-02-16T18:08:42Z
mal-2026-920	Malicious code in ambar-src (npm)	2026-02-16T17:03:16Z	2026-02-16T17:03:23Z
MAL-2026-920	Malicious code in ambar-src (npm)	2026-02-16T17:03:16Z	2026-02-16T17:03:23Z
mal-2026-919	Malicious code in mds-webcomponents (npm)	2026-02-16T15:20:34Z	2026-02-16T15:20:34Z
MAL-2026-919	Malicious code in mds-webcomponents (npm)	2026-02-16T15:20:34Z	2026-02-16T15:20:34Z
mal-2026-918	Malicious code in webpack-vite (npm)	2026-02-16T15:03:26Z	2026-02-16T15:03:27Z
MAL-2026-918	Malicious code in webpack-vite (npm)	2026-02-16T15:03:26Z	2026-02-16T15:03:27Z
mal-2025-5096	Malicious code in aliyun-ai-labs-snippets-sdk (PyPI)	2025-05-19T15:43:26Z	2026-02-16T14:24:05Z
mal-2025-5094	Malicious code in ai-labs-snippets-sdk (PyPI)	2025-05-19T15:43:26Z	2026-02-16T14:24:05Z

ID	Description	Published	Updated
wid-sec-w-2026-0420	Google Chrome und Microsoft Edge: Schwachstelle ermöglicht Codeausführung	2026-02-15T23:00:00.000+00:00	2026-02-17T23:00:00.000+00:00
wid-sec-w-2026-0426	Apache Traffic Server: Mehrere Schwachstellen ermöglichen Denial of Service	2019-08-14T22:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0401	Google Chrome: Mehrere Schwachstellen	2026-02-11T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0378	IBM WebSphere Application Server: Schwachstelle ermöglicht nicht spezifizierten Angriff	2026-02-10T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0367	Microsoft DeveloperTools (Visual Studio Code und .NET): Mehrere Schwachstellen	2026-02-10T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0362	Red Hat Enterprise Linux (Lodash): Schwachstelle ermöglicht Denial of Service	2026-02-10T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0359	GnuTLS: Mehrere Schwachstellen ermöglichen Denial of Service	2026-02-09T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0353	libpng: Schwachstelle ermöglicht Codeausführung	2026-02-09T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0345	Golang Go: Mehrere Schwachstellen	2026-02-08T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0306	Red Hat Enterprise Linux (pyasn1): Schwachstelle ermöglicht Denial of Service	2026-02-04T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0304	patch: Schwachstelle ermöglicht Denial of Service	2021-12-22T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0302	Red Hat Enterprise Linux (python-wheel): Schwachstelle ermöglicht Privilegieneskalation und Codeausführung	2026-02-03T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0265	expat: Schwachstelle ermöglicht Codeausführung	2026-01-29T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0243	Red Hat OpenShift Container Platform: Schwachstelle ermöglicht Denial of Service	2026-01-27T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0231	GnuPG und Gpg4win: Mehrere Schwachstellen	2026-01-27T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0215	Linux Kernel: Mehrere Schwachstellen	2026-01-25T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0213	expat: Schwachstelle ermöglicht Denial of Service	2026-01-25T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0207	Red Hat Enterprise Linux (urllib3): Mehrere Schwachstellen ermöglichen Denial of Service	2026-01-25T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0199	Red Hat OpenShift Pipelines Operator (Fulcio): Schwachstelle ermöglicht Denial of Service	2026-01-22T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0198	Red Hat OpenShift und OpenShift AI (urllib3): Schwachstelle ermöglicht Denial of Service	2026-01-22T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0145	FreeRDP: Mehrere Schwachstellen ermöglichen DoS und Codeausführung	2026-01-19T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0136	AMD EPYC-Prozessoren: Schwachstelle ermöglicht Manipulation von Daten	2026-01-15T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0129	Golang Go: Mehrere Schwachstellen	2026-01-15T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0116	Wireshark: Mehrere Schwachstellen ermöglichen Denial of Service	2026-01-14T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0111	FreeRDP: Mehrere Schwachstellen	2026-01-13T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0105	Red Hat Developer Hub: Mehrere Schwachstellen	2026-01-13T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0098	Node.js: Mehrere Schwachstellen	2026-01-13T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0086	Linux Kernel: Mehrere Schwachstellen	2026-01-13T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0008	Red Hat Enterprise Linux: Mehrere Schwachstellen	2026-01-04T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2025-2931	GIMP: Schwachstelle ermöglicht Codeausführung	2025-12-29T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00

ID	Description	Published	Updated
ncsc-2026-0065	Kwetsbaarheid verholpen in Dell RecoverPoint for Virtual Machines	2026-02-18T13:18:23.815384Z	2026-02-18T13:18:23.815384Z
ncsc-2026-0064	Kwetsbaarheden verholpen in Apple iOS en iPadOS	2026-02-13T13:35:03.870920Z	2026-02-13T13:35:03.870920Z
ncsc-2026-0063	Kwetsbaarheden verholpen in Apple macOS	2026-02-13T13:24:06.433550Z	2026-02-13T13:24:06.433550Z
ncsc-2026-0048	Kwetsbaarheid verholpen in BeyondTrust Remote Support	2026-02-09T10:27:57.867529Z	2026-02-13T12:54:32.614217Z
ncsc-2026-0062	Kwetsbaarheden verholpen in GitLab CE/EE	2026-02-11T11:45:05.986313Z	2026-02-11T11:45:05.986313Z
ncsc-2026-0061	Kwetsbaarheden verholpen in Fortinet FortiOS	2026-02-11T11:34:50.888067Z	2026-02-11T11:34:50.888067Z
ncsc-2026-0060	Kwetsbaarheden verholpen in Fortinet FortiSandbox, FortiAuthenticator en FortiClient	2026-02-11T11:34:36.684955Z	2026-02-11T11:34:36.684955Z
ncsc-2026-0059	Kwetsbaarheden verholpen in Ivanti Endpoint Manager	2026-02-11T08:16:27.583936Z	2026-02-11T08:16:27.583936Z
ncsc-2026-0058	Kwetsbaarheden verholpen in Microsoft Office	2026-02-10T19:11:42.825147Z	2026-02-10T19:11:42.825147Z
ncsc-2026-0057	Kwetsbaarheden verholpen in Microsoft Azure	2026-02-10T19:08:27.878305Z	2026-02-10T19:08:27.878305Z
ncsc-2026-0056	Kwetsbaarheden verholpen in Microsoft Developer Tools	2026-02-10T19:07:16.028511Z	2026-02-10T19:07:16.028511Z
ncsc-2026-0055	Kwetsbaarheid verholpen in Microsoft SQL Server	2026-02-10T19:05:45.729972Z	2026-02-10T19:05:45.729972Z
ncsc-2026-0054	Kwetsbaarheid verholpen in Microsoft Exchange	2026-02-10T19:04:51.366294Z	2026-02-10T19:04:51.366294Z
ncsc-2026-0053	Kwetsbaarheden verholpen in Microsoft Windows	2026-02-10T19:01:45.561771Z	2026-02-10T19:01:45.561771Z
ncsc-2026-0052	Kwetsbaarheden verholpen in SAP producten	2026-02-10T12:28:40.531069Z	2026-02-10T12:28:40.531069Z
ncsc-2026-0051	Kwetsbaarheden verholpen in Siemens producten	2026-02-10T12:27:40.637581Z	2026-02-10T12:27:40.637581Z
ncsc-2026-0050	Kwetsbaarheid verholpen in PEAR	2026-02-09T10:41:43.856342Z	2026-02-09T10:41:43.856342Z
ncsc-2026-0049	Kwetsbaarheden verholpen in n8n	2026-02-09T10:39:40.792744Z	2026-02-09T10:39:40.792744Z
ncsc-2026-0047	Kwetsbaarheid verholpen in Fortinet FortiClient EMS	2026-02-09T10:16:18.048622Z	2026-02-09T10:16:18.048622Z
ncsc-2026-0046	Kwetsbaarheden verholpen in Samsung mobile	2026-02-09T07:48:28.751473Z	2026-02-09T07:48:28.751473Z
ncsc-2026-0040	Kwetsbaarheid verholpen in SmarterTools SmarterMail	2026-01-27T10:51:39.476320Z	2026-02-06T09:25:57.008166Z
ncsc-2026-0045	Kwetsbaarheid verholpen in Cisco Meeting Management	2026-02-06T09:22:16.831778Z	2026-02-06T09:22:16.831778Z
ncsc-2026-0044	Kwetsbaarheid verholpen in Cisco TelePresence Collaboration Endpoint	2026-02-06T09:20:11.629058Z	2026-02-06T09:20:11.629058Z
ncsc-2026-0043	Zeroday-kwetsbaarheden verholpen in Ivanti Endpoint Manager Mobile	2026-01-29T19:15:04.575371Z	2026-02-04T16:31:15.157108Z
ncsc-2026-0042	Kwetsbaarheden verholpen in SolarWinds Web Help Desk	2026-01-28T16:37:21.114054Z	2026-02-02T09:47:54.857445Z
ncsc-2025-0386	Kwetsbaarheden verholpen in Fortinet producten	2025-12-10T09:51:34.918202Z	2026-01-28T15:46:10.814803Z
ncsc-2026-0041	Kwetsbaarheid verholpen in Fortinet producten	2026-01-28T09:32:41.752905Z	2026-01-28T09:32:41.752905Z
ncsc-2026-0039	ZeroDay kwetsbaarheid verholpen in Microsoft Office	2026-01-27T07:27:52.867415Z	2026-01-27T07:27:52.867415Z
ncsc-2026-0038	Kwetsbaarheid verholpen in BIND 9	2026-01-23T08:54:43.506215Z	2026-01-23T08:54:43.506215Z
ncsc-2026-0037	Kwetsbaarheden verholpen in GitLab Community Edition en Enterprise Edition	2026-01-22T12:35:30.505659Z	2026-01-22T12:35:30.505659Z

ID	Description	Published	Updated
ssa-613116	SSA-613116: Multiple Vulnerabilities in Third-Party Components in SINEC OS before V3.1	2025-08-12T00:00:00Z	2026-02-12T00:00:00Z
ssa-355557	SSA-355557: Multiple Vulnerabilities in Third-Party Components in SINEC OS before V3.2	2025-08-12T00:00:00Z	2026-02-12T00:00:00Z
ssa-965753	SSA-965753: Multiple File Parsing Vulnerabilities in Simcenter Femap and Nastran Before V2512	2026-02-10T00:00:00Z	2026-02-10T00:00:00Z
ssa-864900	SSA-864900: Multiple Vulnerabilities in Fortigate NGFW on RUGGEDCOM APE1808 Devices	2025-05-13T00:00:00Z	2026-02-10T00:00:00Z
ssa-783261	SSA-783261: Denial of Service Vulnerability in Automation License Manager (ALM) Before V5.2	2012-12-12T00:00:00Z	2026-02-10T00:00:00Z
ssa-674753	SSA-674753: Denial-of-Service Vulnerability in ET 200 Devices	2026-01-13T00:00:00Z	2026-02-10T00:00:00Z
ssa-625934	SSA-625934: Improper Access Control Vulnerability in the Webhooks Implementation of Siveillance Video Management Servers	2026-02-10T00:00:00Z	2026-02-10T00:00:00Z
ssa-599451	SSA-599451: Multiple Vulnerabilities in SiPass integrated	2025-10-14T00:00:00Z	2026-02-10T00:00:00Z
ssa-535115	SSA-535115: Data Validation Vulnerability in NX Before V2512	2026-02-10T00:00:00Z	2026-02-10T00:00:00Z
ssa-513708	SSA-513708: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 Devices	2025-06-10T00:00:00Z	2026-02-10T00:00:00Z
ssa-507364	SSA-507364: Heap Based Buffer Overflow Vulnerability in WIBU CodeMeter Runtime Affecting the Desigo CC Product Family and SENTRON Powermanager	2026-02-10T00:00:00Z	2026-02-10T00:00:00Z
ssa-445819	SSA-445819: Out of Bounds Read in PS/IGES Parasolid Translator Component in Solid Edge	2026-02-10T00:00:00Z	2026-02-10T00:00:00Z
ssa-311973	SSA-311973: Multiple Local Privilege Escalation Vulnerabilities in SINEC NMS and User Management Component (UMC)	2026-02-10T00:00:00Z	2026-02-10T00:00:00Z
ssa-282044	SSA-282044: DLL Hijacking Vulnerability in Siemens Web Installer used by the Online Software Delivery	2025-08-12T00:00:00Z	2026-02-10T00:00:00Z
ssa-265688	SSA-265688: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 TM MFP V1.1	2024-04-09T00:00:00Z	2026-02-10T00:00:00Z
ssa-216014	SSA-216014: Vulnerabilities in EFI variable of SIMATIC IPCs, SIMATIC Tablet PCs, and SIMATIC Field PGs	2025-03-11T00:00:00Z	2026-02-10T00:00:00Z
ssa-212953	SSA-212953: Multiple Vulnerabilities in COMOS	2025-12-09T00:00:00Z	2026-02-10T00:00:00Z
ssa-130874	SSA-130874: Buffer Overflow Vulnerability in SCALANCE X Switches	2012-04-05T00:00:00Z	2026-02-10T00:00:00Z
ssa-082556	SSA-082556: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1.5	2025-06-10T00:00:00Z	2026-02-10T00:00:00Z
ssa-035571	SSA-035571: Cross Site Scripting Vulnerability in Polarion Before V2506	2026-02-10T00:00:00Z	2026-02-10T00:00:00Z
ssa-089022	SSA-089022: Multiple Vulnerabilities in Third-Party Components in SINEC OS before V3.3	2026-01-28T00:00:00Z	2026-01-28T00:00:00Z
ssa-978177	SSA-978177: Vulnerability in Nozomi Guardian/CMC Before 25.4.0 on RUGGEDCOM APE1808 Devices	2025-08-12T00:00:00Z	2026-01-13T00:00:00Z
ssa-928984	SSA-928984: Heap-based Buffer Overflow Vulnerability in User Management Component (UMC)	2024-12-16T00:00:00Z	2026-01-13T00:00:00Z
ssa-912274	SSA-912274: Multiple Vulnerabilities in RUGGEDCOM ROX Before V2.17	2025-12-09T00:00:00Z	2026-01-13T00:00:00Z
ssa-858251	SSA-858251: Authentication Bypass Vulnerabilities in OPC UA	2025-03-11T00:00:00Z	2026-01-13T00:00:00Z
ssa-832273	SSA-832273: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.3 on RUGGEDCOM APE1808 Devices	2024-03-12T00:00:00Z	2026-01-13T00:00:00Z
ssa-827968	SSA-827968: Vulnerability in Nozomi Guardian/CMC on RUGGEDCOM APE1808 Devices	2026-01-13T00:00:00Z	2026-01-13T00:00:00Z
ssa-698820	SSA-698820: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.4 on RUGGEDCOM APE1808 Devices	2024-07-09T00:00:00Z	2026-01-13T00:00:00Z
ssa-693776	SSA-693776: Multiple Vulnerabilities in Industrial Communication Devices based on SINEC OS before V3.2	2025-06-10T00:00:00Z	2026-01-13T00:00:00Z
ssa-366067	SSA-366067: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.1 on RUGGEDCOM APE1808 Devices	2024-03-12T00:00:00Z	2026-01-13T00:00:00Z

ID	Description	Published	Updated
rhsa-2026:2925	Red Hat Security Advisory: RHTAS 1.2.2 - Red Hat Trusted Artifact Signer Release	2026-02-18T12:44:08+00:00	2026-02-18T12:45:10+00:00
rhsa-2026:2924	Red Hat Security Advisory: RHTAS 1.2.2 - Red Hat Trusted Artifact Signer Release	2026-02-18T12:35:32+00:00	2026-02-18T12:42:22+00:00
rhsa-2026:2922	Red Hat Security Advisory: RHTAS 1.2.2 - Red Hat Trusted Artifact Signer Release	2026-02-18T12:26:00+00:00	2026-02-18T12:42:22+00:00
rhsa-2026:2919	Red Hat Security Advisory: RHTAS 1.2.2 - Red Hat Trusted Artifact Signer Release	2026-02-18T12:11:20+00:00	2026-02-18T12:42:22+00:00
rhsa-2026:2900	Red Hat Security Advisory: Network Observability 1.11.0 for OpenShift	2026-02-18T08:39:41+00:00	2026-02-18T12:42:19+00:00
rhsa-2026:2852	Red Hat Security Advisory: OpenShift Security Profiles Operator bug fix and enhancement update	2026-02-17T23:04:21+00:00	2026-02-18T12:42:19+00:00
rhsa-2026:2800	Red Hat Security Advisory: Red Hat Ceph Storage	2026-02-17T09:23:04+00:00	2026-02-18T12:42:19+00:00
rhsa-2026:2765	Red Hat Security Advisory: Satellite 6.16.6.1 Async Update	2026-02-16T21:33:28+00:00	2026-02-18T12:42:18+00:00
rhsa-2026:2764	Red Hat Security Advisory: Satellite 6.17.6.3 Async Update	2026-02-16T19:06:28+00:00	2026-02-18T12:42:17+00:00
rhsa-2026:2762	Red Hat Security Advisory: Red Hat Quay 3.10.18	2026-02-16T17:44:31+00:00	2026-02-18T12:42:17+00:00
rhsa-2026:2695	Red Hat Security Advisory: RHOAI 2.25.2 - Red Hat OpenShift AI	2026-02-12T22:43:13+00:00	2026-02-18T12:42:17+00:00
rhsa-2026:2760	Red Hat Security Advisory: Satellite 6.18.3 Async Update	2026-02-16T16:52:18+00:00	2026-02-18T12:42:16+00:00
rhsa-2026:2754	Red Hat Security Advisory: Red Hat Quay 3.9.18	2026-02-16T15:43:51+00:00	2026-02-18T12:42:16+00:00
rhsa-2026:2737	Red Hat Security Advisory: Red Hat Ceph Storage	2026-02-16T12:56:05+00:00	2026-02-18T12:42:16+00:00
rhsa-2026:2728	Red Hat Security Advisory: python-urllib3 security update	2026-02-16T11:56:59+00:00	2026-02-18T12:42:15+00:00
rhsa-2026:2723	Red Hat Security Advisory: python-urllib3 security update	2026-02-16T11:26:37+00:00	2026-02-18T12:42:15+00:00
rhsa-2026:2718	Red Hat Security Advisory: python-urllib3 security update	2026-02-16T11:40:57+00:00	2026-02-18T12:42:14+00:00
rhsa-2026:2717	Red Hat Security Advisory: python-urllib3 security update	2026-02-16T11:34:12+00:00	2026-02-18T12:42:14+00:00
rhsa-2026:2681	Red Hat Security Advisory: Red Hat Quay 3.16.2	2026-02-12T17:29:21+00:00	2026-02-18T12:42:13+00:00
rhsa-2026:2568	Red Hat Security Advisory: RHACS 4.9.3 security and bug fix update	2026-02-11T15:09:41+00:00	2026-02-18T12:42:13+00:00
rhsa-2026:2563	Red Hat Security Advisory: Red Hat Update Infrastructure 5 security update	2026-02-11T14:34:45+00:00	2026-02-18T12:42:13+00:00
rhsa-2026:2500	Red Hat Security Advisory: Red Hat multicluster global hub 1.4.4 security update	2026-02-11T05:02:44+00:00	2026-02-18T12:42:12+00:00
rhsa-2026:2456	Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.26.0 Release.	2026-02-10T17:06:01+00:00	2026-02-18T12:42:11+00:00
rhsa-2026:2350	Red Hat Security Advisory: RHACS 4.9.3 security and bug fix update	2026-02-09T15:50:42+00:00	2026-02-18T12:42:11+00:00
rhsa-2026:2279	Red Hat Security Advisory: fence-agents security update	2026-02-09T09:01:45+00:00	2026-02-18T12:42:11+00:00
rhsa-2026:1805	Red Hat Security Advisory: resource-agents security update	2026-02-03T10:17:28+00:00	2026-02-18T12:42:11+00:00
rhsa-2026:2256	Red Hat Security Advisory: Red Hat multicluster global hub 1.5.3 security update	2026-02-09T01:49:44+00:00	2026-02-18T12:42:10+00:00
rhsa-2026:2144	Red Hat Security Advisory: RHTAS 1.3.2 - Red Hat Trusted Artifact Signer Release	2026-02-05T15:45:43+00:00	2026-02-18T12:42:09+00:00
rhsa-2026:2139	Red Hat Security Advisory: RHTAS 1.3.2 - Red Hat Trusted Artifact Signer Release	2026-02-05T15:35:09+00:00	2026-02-18T12:42:09+00:00
rhsa-2026:2137	Red Hat Security Advisory: RHTAS 1.3.2 - Red Hat Trusted Artifact Signer Release	2026-02-05T15:26:20+00:00	2026-02-18T12:42:09+00:00

ID	Description	Published	Updated
icsa-26-048-04	Honeywell CCTV Products	2026-02-17T07:00:00.000000Z	2026-02-17T07:00:00.000000Z
icsa-26-048-03	GE Vernova Enervista UR Setup	2026-02-17T07:00:00.000000Z	2026-02-17T07:00:00.000000Z
icsa-26-048-02	Delta Electronics ASDA-Soft	2026-02-17T07:00:00.000000Z	2026-02-17T07:00:00.000000Z
icsa-26-048-01	Siemens Simcenter Femap and Nastran	2026-02-10T00:00:00.000000Z	2026-02-17T07:00:00.000000Z
icsa-26-043-10	Airleader Master	2026-02-12T07:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsa-26-043-09	Hitachi Energy SuprOS	2026-01-27T00:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsa-26-043-08	Siemens NX	2026-02-10T00:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsa-26-043-07	Siemens Siveillance Video Management Servers	2026-02-10T00:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsa-26-043-06	Siemens SINEC OS	2026-01-28T00:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsa-26-043-05	Siemens Solid Edge	2026-02-10T00:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsa-26-043-04	Siemens Desigo CC Product Family and SENTRON Powermanager	2026-02-10T00:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsa-26-043-03	Siemens COMOS	2025-12-09T00:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsa-26-043-02	Siemens Polarion	2026-02-10T00:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsa-26-043-01	Siemens SINEC NMS	2026-02-10T00:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsa-26-015-04	Siemens SIMATIC and SIPLUS products	2026-01-13T00:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsa-25-289-06	Siemens SiPass Integrated	2025-10-14T00:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsa-25-254-03	Siemens SINAMICS Drives	2025-09-09T00:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsa-25-226-22	Siemens Web Installer	2025-08-12T00:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsa-25-162-05	Siemens SIMATIC S7-1500 CPU Family	2025-06-10T00:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsa-25-162-02	Siemens RUGGEDCOM APE1808	2025-06-10T00:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsa-25-135-01	Siemens RUGGEDCOM APE1808 Devices	2025-05-13T00:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsa-25-072-11	Siemens SIMATIC IPC Family, ITP1000, and Field PGs	2025-03-11T00:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsa-24-102-01	Siemens SIMATIC S7-1500	2024-04-09T00:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsa-12-349-01	Siemens Automation License Manager Uncontrolled Resource Consumption	2012-12-12T00:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsa-25-140-04	Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electric Products (Update E)	2025-05-20T04:00:00.000000Z	2026-02-12T05:00:00.000000Z
icsa-26-036-01	TP-Link Systems Inc. VIGI Series IP Camera	2026-02-05T06:00:00.000000Z	2026-02-11T06:00:00.000000Z
icsma-26-041-01	ZOLL ePCR IOS Mobile Application	2026-02-10T07:00:00.000000Z	2026-02-10T07:00:00.000000Z
icsa-26-041-04	AVEVA PI to CONNECT Agent	2026-02-10T07:00:00.000000Z	2026-02-10T07:00:00.000000Z
icsa-26-041-03	AVEVA PI Data Archive	2026-02-10T07:00:00.000000Z	2026-02-10T07:00:00.000000Z
icsa-26-041-02	ZLAN Information Technology Co. ZLAN5143D	2026-02-10T07:00:00.000000Z	2026-02-10T07:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-voice-rce-morhqy4b	Cisco Unified Communications Products Remote Code Execution Vulnerability	2026-01-21T16:00:00+00:00	2026-02-13T15:21:01+00:00
cisco-sa-snort3-mime-vulns-ttl8pgvh	Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerabilities	2025-10-15T16:00:00+00:00	2026-02-12T18:38:13+00:00
cisco-sa-tce-roomos-dos-9v9jrc2q	Cisco TelePresence Collaboration Endpoint Software and RoomOS Software Denial of Service Vulnerability	2026-02-04T16:00:00+00:00	2026-02-12T17:37:39+00:00
cisco-sa-snort3-dcerpc-vulns-j9hnf4th	Multiple Cisco Products Snort 3 Distributed Computing Environment/Remote Procedure Call Vulnerabilities	2026-01-07T16:00:00+00:00	2026-02-10T20:42:07+00:00
cisco-sa-wsa-archive-bypass-scx2e8zf	Cisco Secure Web Appliance Real-Time Scanning Archive File Bypass Vulnerability	2026-02-04T16:00:00+00:00	2026-02-04T16:00:00+00:00
cisco-sa-pi-xss-byevkcd	Cisco Prime Infrastructure Stored Cross-Site Scripting Vulnerability	2026-02-04T16:00:00+00:00	2026-02-04T16:00:00+00:00
cisco-sa-epnm-pi-redirect-6sx82dn	Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Open Redirect Vulnerability	2026-02-04T16:00:00+00:00	2026-02-04T16:00:00+00:00
cisco-sa-cmm-file-up-ky47n8kk	Cisco Meeting Management Arbitrary File Upload Vulnerability	2026-02-04T16:00:00+00:00	2026-02-04T16:00:00+00:00
cisco-sa-ucce-pcce-xss-2jvyg3ud	Cisco Packaged Contact Center Enterprise and Cisco Unified Contact Center Enterprise Cross-Site Scripting Vulnerabilities	2026-01-21T16:00:00+00:00	2026-01-21T16:00:00+00:00
cisco-sa-intersight-privesc-p6tbm6jk	Cisco Intersight Virtual Appliance Privilege Escalation Vulnerability	2026-01-21T16:00:00+00:00	2026-01-21T16:00:00+00:00
cisco-sa-iec6400-pem5uq7v	Cisco IEC6400 Wireless Backhaul Edge Compute Software SSH Denial of Service Vulnerability	2026-01-21T16:00:00+00:00	2026-01-21T16:00:00+00:00
cisco-sa-sma-attack-n9bf4	Reports About Cyberattacks Against Cisco Secure Email Gateway And Cisco Secure Email and Web Manager	2025-12-17T16:00:00+00:00	2026-01-15T16:01:43+00:00
cisco-sa-ise-xss-9tdh2kx	Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability	2026-01-15T16:00:00+00:00	2026-01-15T16:00:00+00:00
cisco-sa-ise-xss-964cdxw5	Cisco Identity Services Engine Cross-Site Scripting Vulnerability	2026-01-15T16:00:00+00:00	2026-01-15T16:00:00+00:00
cisco-sa-epnm-pi-stored-xss-gekx8ywk	Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Stored Cross-Site Scripting Vulnerability	2026-01-15T16:00:00+00:00	2026-01-15T16:00:00+00:00
cisco-sa-ise-xxe-jwsbsdkt	Cisco Identity Services Engine XML External Entity Processing Information Disclosure Vulnerability	2026-01-07T16:00:00+00:00	2026-01-07T16:00:00+00:00
cisco-sa-react-flight-tyw32ddb	Remote Code Execution Vulnerability in React and Next.js Frameworks: December 2025	2025-12-04T16:00:00+00:00	2025-12-17T22:37:17+00:00
cisco-sa-ise-multiple-vulns-o9beswjh	Cisco Identity Services Engine Reflected Cross-Site Scripting and Information Disclosure Vulnerabilities	2025-11-05T16:00:00+00:00	2025-12-04T14:23:54+00:00
cisco-sa-cc-mult-vuln-gk4tfxsn	Multiple Cisco Contact Center Products Vulnerabilities	2025-11-05T16:00:00+00:00	2025-11-18T14:49:09+00:00
cisco-sa-privesc-catc-ryjreelu	Cisco Catalyst Center Privilege Escalation Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-dnac-xss-wextvz59	Cisco Catalyst Center Cross-Site Scripting Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-dnac-ci-zwlqvswt	Cisco Catalyst Center REST API Command Injection Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-catc-priv-esc-vs8eecux	Cisco Catalyst Center Virtual Appliance Privilege Escalation Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-catc-open-redirect-3w5bk3je	Cisco Catalyst Center Virtual Appliance HTTP Open Redirect Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-cc-unauth-rce-qen8h7mq	Cisco Unified Contact Center Express Remote Code Execution Vulnerabilities	2025-11-05T16:00:00+00:00	2025-11-13T12:48:42+00:00
cisco-sa-asaftd-webvpn-yrootuw	Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Unauthorized Access Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:55+00:00
cisco-sa-asaftd-webvpn-z5xp8eub	Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:54+00:00
cisco-sa-http-code-exec-wmfp3h3o	Cisco Secure Firewall Adaptive Security Appliance Software, Secure Firewall Threat Defense Software, IOS Software, IOS XE Software, and IOS XR Software Web Services Remote Code Execution Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:51+00:00
cisco-sa-ise-radsupress-dos-8yf3jthh	Cisco Identity Services Engine RADIUS Suppression Denial of Service Vulnerability	2025-11-05T16:00:00+00:00	2025-11-05T16:00:00+00:00
cisco-sa-broadworks-xss-o696ymra	Cisco BroadWorks CommPilot Application Software Cross-Site Scripting Vulnerability	2025-07-02T16:00:00+00:00	2025-10-21T15:13:31+00:00

ID	Description	Published	Updated
sca-2026-0004	Eclipse Cyclone DDS Vulnerabilities have no impact on SICK picoScan150 & SICK picoScan120 products	2026-02-13T14:00:00.000Z	2026-02-13T14:00:00.000Z
sca-2026-0003	Vulnerability affecting SICK nanoScan3 and microScan3	2026-01-26T14:00:00.000Z	2026-01-26T14:00:00.000Z
sca-2026-0002	Vulnerabilities affecting SICK Incoming Goods Suite	2026-01-15T14:00:00.000Z	2026-01-22T19:00:00.000Z
sca-2026-0001	Vulnerabilities affecting SICK TDC-X401GL	2026-01-15T14:00:00.000Z	2026-01-15T14:00:00.000Z
sca-2025-0013	Vulnerabilities affecting SICK TLOC100-100	2025-10-27T14:00:00.000Z	2025-11-11T14:00:00.000Z
sca-2025-0014	CodeMeter vulnerablity affects SICK CODE-LOC and SICK LIDAR-LOC	2025-11-03T11:00:00.000Z	2025-11-03T14:00:00.000Z
sca-2025-0012	Sudo vulnerability affects SICK SID products	2025-10-27T11:00:00.000Z	2025-10-27T14:00:00.000Z
sca-2025-0011	Vulnerabilities affecting Endress+Hauser SSG-E210GC	2025-10-02T13:00:00.000Z	2025-10-02T13:00:00.000Z
sca-2025-0010	Multiple vulnerabilities in SICK Enterprise Analytics and SICK Logistic Analytics Products	2025-10-02T13:00:00.000Z	2025-10-02T13:00:00.000Z
sca-2025-0009	Vulnerabilities affecting SICK TDC-E210GC	2025-08-01T13:00:00.000Z	2025-08-01T13:00:00.000Z
sca-2025-0008	Multiple vulnerabilities in Endress+Hauser MEAC300-FNADE4	2025-07-03T13:00:00.000Z	2025-07-03T13:00:00.000Z
sca-2025-0007	Multiple vulnerabilities in SICK Field Analytics and SICK Media Server	2025-06-12T13:00:00.000Z	2025-06-12T13:00:00.000Z
sca-2025-0003	FreeRTOS Vulnerabilities have no impact on SICK Products	2025-02-28T00:00:00.000Z	2025-05-20T11:00:00.000Z
sca-2025-0006	Vulnerability affecting picoScan and multiScan	2025-04-28T13:00:00.000Z	2025-04-28T13:00:00.000Z
sca-2025-0005	Vulnerabilities in SICK Flexi Compact	2025-04-28T10:00:00.000Z	2025-04-28T10:00:00.000Z
sca-2025-0004	Critical vulnerabilities in SICK DL100-2xxxxxxx	2025-03-14T11:00:00.000Z	2025-03-14T11:00:00.000Z
sca-2025-0001	Multiple vulnerabilities in SICK MEAC300	2025-02-14T14:00:00.000Z	2025-02-21T14:00:00.000Z
sca-2025-0002	Vulnerability in SICK Lector8xx and SICK InspectorP8xx	2025-02-14T10:19:00.000Z	2025-02-14T10:19:00.000Z
sca-2024-0007	Vulnerability in SICK OLM	2024-12-31T00:00:00.000Z	2024-12-31T00:00:00.000Z
sca-2024-0006	Critical vulnerabilities in SICK InspectorP61x, InspectorP62x and TiM3xx	2024-12-06T00:00:00.000Z	2024-12-06T00:00:00.000Z
sca-2024-0005	Vulnerability in SICK Incoming Goods Suite	2024-11-19T00:00:00.000Z	2024-11-19T00:00:00.000Z
sca-2024-0004	Third party vulnerabilities in SICK CDE-100	2024-11-07T12:00:00.000Z	2024-11-07T12:00:00.000Z
sca-2024-0003	Critical vulnerability in multiple SICK products	2024-10-17T13:00:00.000Z	2024-10-17T13:00:00.000Z
sca-2024-0002	Vulnerability in SICK MSC800	2024-09-11T23:00:00.000Z	2024-09-11T23:00:00.000Z
sca-2024-0001	Vulnerability in SICK Logistics Analytics Products and SICK Field Analytics	2024-01-29T00:00:00.000Z	2024-01-29T00:00:00.000Z
sca-2023-0011	Vulnerability in multiple SICK Flexi Soft Gateways	2023-10-23T11:00:00.000Z	2023-10-23T11:00:00.000Z
SCA-2023-0011	Vulnerability in multiple SICK Flexi Soft Gateways	2023-10-23T11:00:00.000Z	2023-10-23T11:00:00.000Z
sca-2023-0010	Vulnerabilities in SICK Application Processing Unit	2023-10-09T11:00:00.000Z	2023-10-09T11:00:00.000Z
SCA-2023-0010	Vulnerabilities in SICK Application Processing Unit	2023-10-09T11:00:00.000Z	2023-10-09T11:00:00.000Z
sca-2023-0008	Vulnerability in SICK SIM1012	2023-09-29T13:00:00.000Z	2023-09-29T13:00:00.000Z

ID	Description	Published	Updated
nn-2025:15-01	Path traversal in Import Arc data archive functionality in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:14-01	HTML injection in Asset List in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:13-01	Stored Cross-Site Scripting (XSS) in Reports in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:12-01	HTML injection in in Time Machine functionality in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:11-01	Stored Cross-Site Scripting (XSS) in Dashboards in Guardian/CMC before 25.4.0	2025-11-25T11:00:00.000Z	2025-11-26T11:00:00.000Z
nn-2025:9-01	Path traversal in Time Machine functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:8-01	Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:7-01	Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:6-01	Authenticated SQL Injection on Smart Polling functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:5-01	Incorrect authorization for CLI in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:4-01	Client-side path traversal in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:10-01	Authenticated SQL Injection on CLI functionality in Guardian/CMC before 25.3.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:3-01	Incorrect authorization for traces request/download in CMC before 25.1.0	2025-08-26T11:00:00.000Z	2025-08-26T11:00:00.000Z
nn-2025:2-01	Privilege escalation in Guardian/CMC before 24.6.0	2025-06-10T11:00:00.000Z	2025-06-10T11:00:00.000Z
nn-2025:1-01	Authenticated RCE in update functionality in Guardian/CMC before 24.6.0	2025-06-10T11:00:00.000Z	2025-06-10T11:00:00.000Z
nn-2023_17-01	Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-11T11:00:00.000Z
nn-2023:17-01	Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-11T11:00:00.000Z
nn-2024_1-01	DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-10T11:00:00.000Z
nn-2024:1-01	DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-10T11:00:00.000Z
nn-2023_12-01	Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0	2024-01-15T11:00:00.000Z	2024-01-16T11:00:00.000Z
nn-2023:12-01	Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0	2024-01-15T11:00:00.000Z	2024-01-16T11:00:00.000Z
nn-2023_9-01	Authenticated SQL Injection on Query functionality in Guardian/CMC before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_8-01	Session Fixation in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_7-01	DoS via SAML configuration in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_6-01	Partial DoS on Reports section due to null report name in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_5-01	Information disclosure via the debug function in assertions in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_4-01	Stored Cross-Site Scripting (XSS) in Threat Intelligence rules in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_3-01	Authenticated Blind SQL Injection on alerts count in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_2-01	Authenticated Blind SQL Injection on sorting in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_11-01	SQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2023-11-16T11:00:00.000Z

ID	Description	Published	Updated
oxdc-adv-2025-0001	OX Dovecot Pro Security Advisory OXDC-ADV-2025-0001	2025-10-31T00:00:00+00:00	2025-11-27T00:00:00+00:00
oxas-adv-2025-0003	OX App Suite Security Advisory OXAS-ADV-2025-0003	2025-09-24T00:00:00+02:00	2025-11-27T00:00:00+00:00
oxas-adv-2025-0002	OX App Suite Security Advisory OXAS-ADV-2025-0002	2025-08-12T00:00:00+02:00	2025-10-31T00:00:00+00:00
oxas-adv-2025-0001	OX App Suite Security Advisory OXAS-ADV-2025-0001	2025-01-27T00:00:00+01:00	2025-04-07T00:00:00+00:00
oxdc-adv-2024-0003	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0003	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
oxdc-adv-2024-0002	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0002	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
oxas-adv-2024-0005	OX App Suite Security Advisory OXAS-ADV-2024-0005	2024-07-08T00:00:00+02:00	2024-09-09T00:00:00+00:00
oxdc-adv-2024-0001	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0001	2024-09-02T00:00:00+02:00	2024-09-06T00:00:00+00:00
oxas-adv-2024-0004	OX App Suite Security Advisory OXAS-ADV-2024-0004	2024-06-13T00:00:00+02:00	2024-08-19T00:00:00+00:00
oxas-adv-2024-0003	OX App Suite Security Advisory OXAS-ADV-2024-0003	2024-04-24T00:00:00+02:00	2024-08-19T00:00:00+00:00
oxas-adv-2024-0002	OX App Suite Security Advisory OXAS-ADV-2024-0002	2024-03-06T00:00:00+01:00	2024-05-06T00:00:00+00:00
oxas-adv-2024-0001	OX App Suite Security Advisory OXAS-ADV-2024-0001	2024-02-08T00:00:00+01:00	2024-04-25T00:00:00+00:00
oxas-adv-2023-0007	OX App Suite Security Advisory OXAS-ADV-2023-0007	2023-12-11T00:00:00+01:00	2024-02-16T00:00:00+00:00
oxas-adv-2023-0006	OX App Suite Security Advisory OXAS-ADV-2023-0006	2023-09-25T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0005	OX App Suite Security Advisory OXAS-ADV-2023-0005	2023-09-19T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0004	OX App Suite Security Advisory OXAS-ADV-2023-0004	2023-08-01T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0003	OX App Suite Security Advisory OXAS-ADV-2023-0003	2023-05-02T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0002	OX App Suite Security Advisory OXAS-ADV-2023-0002	2023-03-20T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0001	OX App Suite Security Advisory OXAS-ADV-2023-0001	2023-02-06T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2022-0002	OX App Suite Security Advisory OXAS-ADV-2022-0002	2022-11-02T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2022-0001	OX App Suite Security Advisory OXAS-ADV-2022-0001	2022-08-10T00:00:00+02:00	2024-01-22T00:00:00+00:00

ID	Description	Published	Updated
msrc_cve-2024-23307	Integer overflow in raid5_cache_count in Linux kernel	2024-01-01T08:00:00.000Z	2026-02-18T03:24:29.000Z
msrc_cve-2023-40546	Shim: out-of-bounds read printing error messages	2024-01-01T08:00:00.000Z	2026-02-18T03:24:18.000Z
msrc_cve-2023-46343	In the Linux kernel before 6.5.9 there is a NULL pointer dereference in send_acknowledge in net/nfc/nci/spi.c.	2024-01-01T08:00:00.000Z	2026-02-18T03:23:55.000Z
msrc_cve-2023-51043	In the Linux kernel before 6.4.5 drivers/gpu/drm/drm_atomic.c has a use-after-free during a race condition between a nonblocking atomic commit and a driver unload.	2024-01-01T08:00:00.000Z	2026-02-18T03:23:49.000Z
msrc_cve-2024-23850	In btrfs_get_root_ref in fs/btrfs/disk-io.c in the Linux kernel through 6.7.1 there can be an assertion failure and crash because a subvolume can be read out too soon after its root item is inserted upon subvolume creation.	2024-01-01T08:00:00.000Z	2026-02-18T03:23:44.000Z
msrc_cve-2024-0775	Kernel: use-after-free while changing the mount option in __ext4_remount leading	2024-01-01T08:00:00.000Z	2026-02-18T03:23:34.000Z
msrc_cve-2023-51042	In the Linux kernel before 6.4.12 amdgpu_cs_wait_all_fences in drivers/gpu/drm/amd/amdgpu/amdgpu_cs.c has a fence use-after-free.	2024-01-01T08:00:00.000Z	2026-02-18T03:23:29.000Z
msrc_cve-2024-23848	In the Linux kernel through 6.7.1, there is a use-after-free in cec_queue_msg_fh, related to drivers/media/cec/core/cec-adap.c and drivers/media/cec/core/cec-api.c.	2024-01-01T08:00:00.000Z	2026-02-18T03:23:23.000Z
msrc_cve-2024-23851	copy_params in drivers/md/dm-ioctl.c in the Linux kernel through 6.7.1 can attempt to allocate more than INT_MAX bytes and crash because of a missing param_kernel->data_size check. This is related to ctl_ioctl.	2024-01-01T08:00:00.000Z	2026-02-18T03:23:16.000Z
msrc_cve-2023-6531	Kernel: gc's deletion of an skb races with unix_stream_read_generic() leading to uaf	2024-01-01T08:00:00.000Z	2026-02-18T03:23:07.000Z
msrc_cve-2024-23849	In rds_recv_track_latency in net/rds/af_rds.c in the Linux kernel through 6.7.1 there is an off-by-one error for an RDS_MSG_RX_DGRAM_TRACE_MAX comparison resulting in out-of-bounds access.	2024-01-01T08:00:00.000Z	2026-02-18T03:22:58.000Z
msrc_cve-2024-22705	An issue was discovered in ksmbd in the Linux kernel before 6.6.10. smb2_get_data_area_len in fs/smb/server/smb2misc.c can cause an smb_strndup_from_utf16 out-of-bounds access because the relationship between Name data and CreateContexts data is mishandled.	2024-01-01T08:00:00.000Z	2026-02-18T03:22:49.000Z
msrc_cve-2024-0727	PKCS12 Decoding crashes	2024-01-01T08:00:00.000Z	2026-02-18T03:22:42.000Z
msrc_cve-2024-0607	Kernel: nf_tables: pointer math issue in nft_byteorder_eval()	2024-01-01T08:00:00.000Z	2026-02-18T03:21:33.000Z
msrc_cve-2023-51258	A memory leak issue discovered in YASM v.1.3.0 allows a local attacker to cause a denial of service via the new_Token function in the modules/preprocs/nasm/nasm-pp:1512.	2024-01-01T08:00:00.000Z	2026-02-18T03:21:25.000Z
msrc_cve-2024-0741	An out of bounds write in ANGLE could have allowed an attacker to corrupt memory leading to a potentially exploitable crash. This vulnerability affects Firefox < 122, Firefox ESR < 115.7, and Thunderbird < 115.7.	2024-01-01T08:00:00.000Z	2026-02-18T03:21:16.000Z
msrc_cve-2023-49568	Maliciously crafted Git server replies can cause DoS on go-git clients	2024-01-01T08:00:00.000Z	2026-02-18T03:21:11.000Z
msrc_cve-2023-49569	Maliciously crafted Git server replies can lead to path traversal and RCE on go-git clients	2024-01-01T08:00:00.000Z	2026-02-18T03:21:02.000Z
msrc_cve-2024-0646	Kernel: ktls overwrites readonly memory pages when using function splice with a ktls socket as destination	2024-01-01T08:00:00.000Z	2026-02-18T03:20:53.000Z
msrc_cve-2024-0639	Kernel: potential deadlock on &net->sctp.addr_wq_lock leading to dos	2024-01-01T08:00:00.000Z	2026-02-18T03:20:44.000Z
msrc_cve-2024-0641	Kernel: deadlock leading to denial of service in tipc_crypto_key_revoke	2024-01-01T08:00:00.000Z	2026-02-18T03:20:38.000Z
msrc_cve-2024-0565	Kernel: cifs filesystem decryption improper input validation remote code execution vulnerability in function receive_encrypted_standard of client	2024-01-01T08:00:00.000Z	2026-02-18T03:20:32.000Z
msrc_cve-2024-0562	Kernel: use-after-free after removing device in wb_inode_writeback_end in mm/page-writeback.c	2024-01-01T08:00:00.000Z	2026-02-18T03:20:18.000Z
msrc_cve-2022-21698	Uncontrolled Resource Consumption in promhttp	2022-02-02T00:00:00.000Z	2026-02-18T03:19:01.000Z
msrc_cve-2023-32067	0-byte UDP payload DoS in c-ares	2023-05-01T00:00:00.000Z	2026-02-18T03:15:32.000Z
msrc_cve-2023-31130	Buffer Underwrite in ares_inet_net_pton()	2023-05-01T00:00:00.000Z	2026-02-18T03:15:20.000Z
msrc_cve-2020-22217	Buffer overflow vulnerability in c-ares before 1_16_1 thru 1_17_0 via function ares_parse_soa_reply in ares_parse_soa_reply.c.	2023-08-01T00:00:00.000Z	2026-02-18T03:14:59.000Z
msrc_cve-2023-31147	Insufficient randomness in generation of DNS query IDs in c-ares	2023-05-01T00:00:00.000Z	2026-02-18T03:14:44.000Z
msrc_cve-2022-4904	A flaw was found in the c-ares package. The ares_set_sortlist is missing checks about the validity of the input string which allows a possible arbitrary length stack overflow. This issue may cause a denial of service or a limited impact on confidentiality and integrity.	2023-03-10T00:00:00.000Z	2026-02-18T03:14:26.000Z
msrc_cve-2022-1941	Out of Memory issue in ProtocolBuffers for cpp and python	2022-09-02T00:00:00.000Z	2026-02-18T03:14:14.000Z

ID	Description	Published	Updated
sa25p007	B&R Automation Studio Update of SQLite version	2026-02-18T00:30:00.000Z	2026-02-18T00:30:00.000Z
sa26p001	PVI Insertion of Sensitive Information into Logfile	2026-01-29T00:30:00.000Z	2026-01-29T00:30:00.000Z
sa24p003	B&R PCs vulnerable to PixieFail attack	2026-01-29T00:30:00.000Z	2026-01-29T00:30:00.000Z
7paa013309	System 800xA SECURITY Advisory - ABB 800xA Base 6.0.x, 6.1.x CSLib communication DoS vulnerability	2024-06-05T00:30:00.000Z	2026-01-23T00:30:00.000Z
sa25p005	B&R Automation Runtime Improper Handling of Flooding conditions on ANSL Server	2026-01-19T00:30:00.000Z	2026-01-19T00:30:00.000Z
sa25p004	Automation Studio Insufficient Server Certificate Validation	2026-01-19T00:30:00.000Z	2026-01-19T00:30:00.000Z
9akk108472a1331	ABB Ability™ OPTIMAX® Authentication Bypass in Single-Sign On with Azure Active Directory	2026-01-16T00:30:00.000Z	2026-01-16T00:30:00.000Z
2crt000009	WebPro SNMP Card PowerValue Multiple Vulnerabilities	2026-01-07T00:30:00.000Z	2026-01-07T00:30:00.000Z
9akk108471a8107	Terra AC wallbox Heap Memory Corruption Vulnerability	2025-09-16T00:30:00.000Z	2025-11-28T08:00:00.000Z
4hzm000603	ABB Ability Camera Connect Vulnerabilities in outdated 3rd party component (VLC)	2025-11-27T00:30:00.000Z	2025-11-28T00:30:00.000Z
7paa022088	Edgenius Management Portal Authentication Bypass	2025-11-20T00:30:00.000Z	2025-11-20T00:30:00.000Z
2nga002813	PCM600 SharpZip library vulnerability	2025-11-03T00:30:00.000Z	2025-11-03T00:30:00.000Z
4tz00000006007	ALS-mini-S4/S8 IP Missing Authentication Vulnerability and its Mitigations	2025-10-20T00:30:00.000Z	2025-10-23T00:30:00.000Z
9akk108471a8948	Terra AC wallbox Heap Memory Corruption Vulnerability	2025-10-20T00:30:00.000Z	2025-10-21T00:30:00.000Z
3kxg200000r4801	CoreSense™ HM and CoreSense™ M10 File Path Traversal Vulnerability	2025-04-16T00:30:00.000Z	2025-10-20T00:30:00.000Z
sa25p003	B&R Automation Runtime Vulnerabilities in System Diagnostic Manager (SDM)	2025-10-07T00:30:00.000Z	2025-10-14T00:30:00.000Z
4tz00000006008	LVS MConfig Insecure memory handling	2025-10-08T00:30:00.000Z	2025-10-08T00:30:00.000Z
sa25p002	B&R Automation Runtime DoS Vulnerability in System Diagnostics Manager (SDM)	2025-10-07T00:30:00.000Z	2025-10-07T00:30:00.000Z
9akk108471a7808	EIBPORT Reflected XSS	2025-10-07T00:30:00.000Z	2025-10-07T00:30:00.000Z
9akk108471a7121	FLXeon Controllers Multiple vulnerabilities	2025-09-09T00:30:00.000Z	2025-09-18T00:30:00.000Z
9akk108471a4462	ELSB/BLBA ASPECT advisory several CVEs	2025-08-11T00:30:00.000Z	2025-09-04T00:30:00.000Z
9akk108471a3623	RMC - 100 Vulnerabilities in web UI (REST Interface)	2025-07-03T00:30:00.000Z	2025-08-18T00:30:00.000Z
2nga002743	ABB AbilityTM zenon Remote Transport Vulnerability	2025-08-12T00:30:00.000Z	2025-08-12T00:30:00.000Z
3adr011407	ABB Automation Builder Vulnerabilities in user management and access control	2025-04-30T00:00:00.000Z	2025-07-25T00:00:00.000Z
3adr011432	AC500 V2 Buffer overread on Modbus protocol	2025-07-23T00:30:00.000Z	2025-07-23T00:30:00.000Z
9akk108471a4556	Busch-Welcome® 2 wire Door opener actuator by default in compatibility mode.	2025-07-21T00:30:00.000Z	2025-07-21T00:30:00.000Z
2crt000008	Lite Panel Pro Vulnerability in Session Management	2025-06-26T00:30:00.000Z	2025-06-26T00:30:00.000Z
9akk108470a8948	ELSB/Home Solutions Outdated SW Components in ABB Welcome IP-Gateway.	2025-05-29T00:30:00.000Z	2025-06-05T00:30:00.000Z
9akk108471a1621	EIBPORT Session Management Fail	2025-06-02T00:30:00.000Z	2025-06-04T00:30:00.000Z
9akk108471a0021	ELSB/BLBA ASPECT advisory several CVEs	2025-05-22T00:30:00.000Z	2025-05-23T10:30:00.000Z

ID	Description	Published	Updated
opensuse-su-2026:10210-1	python311-pip-26.0.1-1.1 on GA media	2026-02-16T00:00:00Z	2026-02-16T00:00:00Z
opensuse-su-2026:10209-1	libsoup-2_4-1-2.74.3-16.1 on GA media	2026-02-16T00:00:00Z	2026-02-16T00:00:00Z
opensuse-su-2026:10208-1	libsoup-3_0-0-3.6.5-13.1 on GA media	2026-02-16T00:00:00Z	2026-02-16T00:00:00Z
opensuse-su-2026:10207-1	frr-10.2.1-4.1 on GA media	2026-02-16T00:00:00Z	2026-02-16T00:00:00Z
opensuse-su-2026:10200-1	python310-3.10.19-4.1 on GA media	2026-02-13T00:00:00Z	2026-02-13T00:00:00Z
opensuse-su-2026:10199-1	python311-pymssql-2.3.12-1.1 on GA media	2026-02-13T00:00:00Z	2026-02-13T00:00:00Z
opensuse-su-2026:10198-1	python311-Pillow-12.1.1-1.1 on GA media	2026-02-13T00:00:00Z	2026-02-13T00:00:00Z
opensuse-su-2026:10197-1	libecpg6-18.2-1.1 on GA media	2026-02-13T00:00:00Z	2026-02-13T00:00:00Z
opensuse-su-2026:10196-1	matrix-synapse-1.147.1-1.1 on GA media	2026-02-13T00:00:00Z	2026-02-13T00:00:00Z
opensuse-su-2026:10195-1	gimp-3.0.8-2.1 on GA media	2026-02-13T00:00:00Z	2026-02-13T00:00:00Z
opensuse-su-2026:10194-1	cargo-audit-advisory-db-20260213-1.1 on GA media	2026-02-13T00:00:00Z	2026-02-13T00:00:00Z
opensuse-su-2026:10182-1	snpguest-0.10.0-2.1 on GA media	2026-02-11T00:00:00Z	2026-02-11T00:00:00Z
opensuse-su-2026:10181-1	sccache-0.13.0~1-2.1 on GA media	2026-02-11T00:00:00Z	2026-02-11T00:00:00Z
opensuse-su-2026:10180-1	rustup-1.28.2~0-3.1 on GA media	2026-02-11T00:00:00Z	2026-02-11T00:00:00Z
opensuse-su-2026:10179-1	python311-maturin-1.11.5-1.1 on GA media	2026-02-11T00:00:00Z	2026-02-11T00:00:00Z
opensuse-su-2026:10178-1	libmunge2-0.5.18-1.1 on GA media	2026-02-11T00:00:00Z	2026-02-11T00:00:00Z
opensuse-su-2026:10177-1	gnutls-3.8.12-1.1 on GA media	2026-02-11T00:00:00Z	2026-02-11T00:00:00Z
opensuse-su-2026:10176-1	freerdp2-2.11.7-4.1 on GA media	2026-02-11T00:00:00Z	2026-02-11T00:00:00Z
opensuse-su-2026:10175-1	cargo-audit-0.22.1~git0.efcde93-2.1 on GA media	2026-02-11T00:00:00Z	2026-02-11T00:00:00Z
opensuse-su-2026:10174-1	assimp-devel-6.0.4-1.1 on GA media	2026-02-11T00:00:00Z	2026-02-11T00:00:00Z
opensuse-su-2026:10173-1	apptainer-1.4.5-2.1 on GA media	2026-02-11T00:00:00Z	2026-02-11T00:00:00Z
opensuse-su-2026:20193-1	Security update for orthanc, gdcm, orthanc-authorization, orthanc-dicomweb, orthanc-gdcm, orthanc-indexer, orthanc-mysql, orthanc-neuro, orthanc-postgresql, orthanc-python, orthanc-stl, orthanc-tcia, orthanc-wsi, python-pyorthanc	2026-02-10T22:29:40Z	2026-02-10T22:29:40Z
opensuse-su-2026:20191-1	Security update for trivy	2026-02-10T21:52:10Z	2026-02-10T21:52:10Z
opensuse-su-2026:20192-1	Security update for tailscale	2026-02-10T21:45:05Z	2026-02-10T21:45:05Z
opensuse-su-2026:20183-1	Security update for chromium	2026-02-07T14:42:36Z	2026-02-07T14:42:36Z
opensuse-su-2026:20184-1	Security update for python-Django	2026-02-07T13:45:17Z	2026-02-07T13:45:17Z
opensuse-su-2026:20182-1	Security update for cockpit	2026-02-06T03:08:03Z	2026-02-06T03:08:03Z
opensuse-su-2026:20181-1	Security update for cockpit-subscriptions	2026-02-06T02:48:38Z	2026-02-06T02:48:38Z
opensuse-su-2026:10161-1	python311-azure-core-1.38.0-2.1 on GA media	2026-02-06T00:00:00Z	2026-02-06T00:00:00Z
opensuse-su-2026:10160-1	python311-Django-5.2.11-1.1 on GA media	2026-02-06T00:00:00Z	2026-02-06T00:00:00Z

ID	Description	Published	Updated
sevd-2026-041-02	Multiple Vulnerabilities on EcoStruxure™ Building Operation Workstation and EcoStruxure™ Building Operation Webstation	2026-02-10T08:00:00.000Z	2026-02-10T08:00:00.000Z
sevd-2026-041-01	Improper Check for Unusual or Exceptional Conditions on Multiple Products	2026-02-10T08:00:00.000Z	2026-02-10T08:00:00.000Z
sevd-2025-343-01	EcoStruxure™ Foxboro DCS	2025-12-09T08:00:00.000Z	2026-02-10T08:00:00.000Z
sevd-2025-189-03	EcoStruxure™ Power Operation	2025-07-08T04:00:00.000Z	2026-02-10T08:00:00.000Z
sevd-2025-042-02	Improper Input Validation Vulnerability in Uni-Telway Driver	2025-02-11T05:00:00.000Z	2026-02-10T08:00:00.000Z
sevd-2026-013-04	Multiple Vulnerabilities on EcoStruxure Power Build Rapsody	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
sevd-2026-013-03	Multiple Vulnerabilities on Zigbee Products	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
sevd-2026-013-02	Incorrect Default Permissions Vulnerability on EcoStruxure™ Process Expert	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
sevd-2026-013-01	Multiple Third-Party Vulnerabilities on ProLeiT Plant iT/Brewmaxx	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
sevd-2025-014-06	RemoteConnect and SCADAPack™ x70 Utilities	2025-01-14T00:00:00.000Z	2026-01-13T08:00:00.000Z
sevd-2024-317-03	Modicon Controllers M340 / Momentum / MC80	2024-11-12T05:00:00.000Z	2026-01-13T08:00:00.000Z
sevd-2025-343-02	EcoStruxure™ Foxboro DCS Advisor	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
sevd-2025-252-01	Multiple Altivar Process Drives and Communication Modules	2025-09-09T04:00:00.000Z	2025-12-09T08:00:00.000Z
sevd-2023-192-04	CODESYS Runtime Vulnerabilities	2023-07-11T07:15:18.000Z	2025-12-09T08:00:00.000Z
sevd-2021-159-04	ISaGRAF Vulnerabilities in IEC 61131-3 Programming and Engineering Tools	2021-06-08T04:36:25.000Z	2025-11-15T00:00:00.000Z
sevd-2022-284-03	ISaGRAF Workbench for SAGE RTU	2022-10-10T22:13:16.000Z	2025-11-14T06:30:00.000Z
sevd-2025-315-02	EcoStruxure™ Machine SCADA Expert & Pro-face BLUE Open Studio	2025-11-11T08:00:00.000Z	2025-11-11T08:00:00.000Z
sevd-2025-315-01	PowerChute™ Serial Shutdown	2025-11-11T08:00:00.000Z	2025-11-11T08:00:00.000Z
sevd-2025-224-02	EcoStruxure™ Power Monitoring Expert Software & EcoStruxure™ Power Operation (EPO) and EcoStruxure™ Power SCADA Operation (PSO)	2025-08-12T04:00:00.000Z	2025-11-11T08:00:00.000Z
sevd-2025-224-01	Saitel DR & Saitel DP Remote Terminal Unit	2025-08-12T04:00:00.000Z	2025-11-11T08:00:00.000Z
sevd-2025-014-07	FlexNet Publisher Vulnerability	2025-01-14T07:00:00.000Z	2025-11-11T08:00:00.000Z
sevd-2025-287-01	EcoStruxure™ OPC UA Server Expert and EcoStruxure™ Modicon Communication Server	2025-10-14T07:00:00.000Z	2025-10-14T07:00:00.000Z
sevd-2025-133-01	Modicon Controllers M241/M251/M258/LMC058	2025-05-13T04:00:00.000Z	2025-10-14T07:00:00.000Z
sevd-2024-345-03	Modicon M241 / M251 / M258 / LMC058	2024-12-10T05:00:00.000Z	2025-10-14T07:00:00.000Z
sevd-2024-191-04	Modicon Controllers M241/ M251, M258 / LMC058 and M262	2024-07-09T00:00:00.000Z	2025-10-14T07:00:00.000Z
sevd-2025-133-05	Galaxy VS, Galaxy VL, Galaxy VXL	2025-05-13T04:00:00.000Z	2025-09-24T04:00:00.000Z
sevd-2025-252-02	Saitel DR & Saitel DP Remote Terminal Unit	2025-09-09T04:00:00.000Z	2025-09-09T04:00:00.000Z
sevd-2025-224-04	EcoStruxure™ Building Operation Enterprise Server, EcoStruxure™ Building Operation Enterprise Central, and EcoStruxure™ Workstation	2025-08-12T04:00:00.000Z	2025-09-09T04:00:00.000Z
sevd-2025-224-03	Schneider Electric Software Update	2025-08-12T04:00:00.000Z	2025-09-09T04:00:00.000Z
sevd-2025-014-02	Pro-face GP-Pro EX and Remote HMI	2025-01-14T00:00:00.000Z	2025-09-09T04:00:00.000Z

ID	Description	Published	Updated
osv-2026-259	Use-of-uninitialized-value in tsip_parse_input	2026-02-18T00:14:29.378028Z	2026-02-18T00:14:29.378341Z
osv-2023-96	Heap-buffer-overflow in load_buffer	2023-02-23T13:00:28.515290Z	2026-02-17T14:26:31.096424Z
osv-2023-35	Heap-buffer-overflow in parse_classes_64	2023-01-29T13:01:45.762871Z	2026-02-17T14:24:57.461377Z
osv-2022-993	Stack-use-after-return in check_buffer	2022-09-29T00:02:10.256639Z	2026-02-17T14:24:32.097178Z
osv-2023-819	Heap-buffer-overflow in ucl_object_dtor_unref_single	2023-09-09T14:01:07.368928Z	2026-02-17T14:21:16.973749Z
osv-2023-78	Heap-buffer-overflow in ucl_object_dtor_unref_single	2023-02-18T13:01:01.445224Z	2026-02-17T14:21:11.808505Z
osv-2022-1137	Heap-buffer-overflow in io_memory_read	2022-11-05T00:00:44.243862Z	2026-02-17T14:20:32.701723Z
osv-2021-1261	UNKNOWN READ in kh_get_ucl_hash_node	2021-09-15T00:00:41.384284Z	2026-02-17T14:15:50.348749Z
osv-2026-255	UNKNOWN WRITE in nmeaid_to_prn	2026-02-17T00:17:19.574579Z	2026-02-17T00:17:19.574905Z
osv-2021-525	Use-of-uninitialized-value in void edge_filtering_chroma_internal<unsigned char>	2021-03-16T00:00:19.176877Z	2026-02-15T14:06:52.827050Z
osv-2026-244	Use-of-uninitialized-value in ihevcd_fmt_conv	2026-02-15T00:03:36.246033Z	2026-02-15T00:03:36.246568Z
osv-2025-202	UNKNOWN READ in _blit_xrgb32_lerp_spans	2025-03-15T00:01:51.127135Z	2026-02-14T14:23:16.397918Z
osv-2024-679	Heap-buffer-overflow in readImage4v2	2024-07-25T00:14:34.485446Z	2026-02-14T14:21:51.563139Z
osv-2023-800	Heap-buffer-overflow in XCFImageFormat::loadTileRLE	2023-09-07T14:00:27.693270Z	2026-02-14T14:17:47.015069Z
osv-2023-55	Index-out-of-bounds in LibRaw::apply_tiff	2023-02-07T13:00:07.438565Z	2026-02-14T14:17:36.706876Z
osv-2022-1018	Index-out-of-bounds in LibRaw::kodak_radc_load_raw	2022-10-06T00:02:27.511658Z	2026-02-14T14:12:58.520590Z
osv-2021-972	UNKNOWN READ in void mc_chroma<unsigned short>	2021-07-13T00:00:16.631711Z	2026-02-14T14:12:55.748229Z
osv-2021-948	Use-of-uninitialized-value in residual_coding	2021-07-10T00:01:12.890029Z	2026-02-14T14:12:54.887987Z
osv-2021-735	Use-of-uninitialized-value in decode_CABAC_FL_bypass	2021-05-08T00:00:14.355747Z	2026-02-14T14:12:52.068226Z
osv-2021-586	Use-of-uninitialized-value in void intra_prediction_angular<unsigned short>	2021-03-31T00:01:03.787831Z	2026-02-14T14:12:51.015354Z
osv-2020-876	Use-of-uninitialized-value in XCFImageFormat::mergeRGBToRGB	2020-07-14T22:13:55.541274Z	2026-02-14T14:12:21.660620Z
osv-2020-868	Use-of-uninitialized-value in fetchARGB32ToRGBA64PM_avx2	2020-07-14T22:13:50.828646Z	2026-02-14T14:12:19.230130Z
osv-2026-240	Use-of-uninitialized-value in packet_get1	2026-02-14T00:09:50.559032Z	2026-02-14T00:09:50.559326Z
osv-2023-390	Heap-buffer-overflow in sdhci_write	2023-05-12T14:00:08.854823Z	2026-02-13T14:56:42.122885Z
osv-2022-581	Heap-buffer-overflow in megasas_map_sgl	2022-07-14T00:00:45.644503Z	2026-02-13T14:29:03.475Z
osv-2021-820	UNKNOWN READ in virtio_gpu_disable_scanout	2021-06-02T00:00:31.619765Z	2026-02-13T14:27:16.057293Z
osv-2022-1259	Heap-buffer-overflow in dwg_decode_INSERT_private	2022-12-13T13:00:46.870838Z	2026-02-13T14:08:55.760270Z
osv-2024-451	Use-of-uninitialized-value in XpackDynamicTable::_make_space	2024-05-08T00:14:48.544622Z	2026-02-12T14:18:05.600525Z
osv-2023-307	Heap-buffer-overflow in bit_read_BB	2023-04-13T14:02:09.774988Z	2026-02-12T14:12:00.262856Z
osv-2023-1267	Heap-buffer-overflow in dwg_free_object	2023-12-08T00:11:02.971903Z	2026-02-12T14:11:51.775549Z

ID	Description	Published	Updated
rustsec-2026-0013	Type confusion when accessing data from sublasses of subclasses of native types with `abi3` feature targeting Python 3.12 and up	2026-02-18T12:00:00Z	2026-02-18T12:13:46Z
rustsec-2026-0012	Unsoundness in opt-in ARMv8 assembly backend for `keccak`	2026-02-12T12:00:00Z	2026-02-17T22:02:59Z
rustsec-2026-0011	`polymarket-client-sdks` was removed from crates.io for malicious code	2026-02-13T12:00:00Z	2026-02-14T08:13:56Z
rustsec-2025-0152	`finch_cli_rust` was removed from crates.io for malicious code	2025-12-09T12:00:00Z	2026-02-13T04:43:42Z
rustsec-2025-0151	`sha-rst` was removed from crates.io for malicious code	2025-12-09T12:00:00Z	2026-02-13T04:43:42Z
rustsec-2025-0150	`finch-rst` was removed from crates.io for malicious code	2025-12-09T12:00:00Z	2026-02-13T04:43:42Z
rustsec-2025-0142	Segmentation fault and invalid memory read in `mnl::cb_run`	2025-10-18T12:00:00Z	2026-02-10T13:23:41Z
rustsec-2025-0149	World Writable Directory in /var/log/below Allows Local Privilege Escalation	2025-03-12T12:00:00Z	2026-02-08T07:26:28Z
rustsec-2026-0010	`polymarket-clients-sdk` was removed from crates.io for malicious code	2026-02-06T12:00:00Z	2026-02-06T18:14:09Z
rustsec-2025-0148	`finch-rust` was removed from crates.io for malicious code	2025-12-05T12:00:00Z	2026-02-06T16:15:51Z
rustsec-2025-0147	`evm-units` was removed from crates.io for malicious code	2025-12-03T12:00:00Z	2026-02-06T16:15:51Z
rustsec-2025-0146	`sha-rust` was removed from crates.io for malicious code	2025-12-05T12:00:00Z	2026-02-06T16:15:51Z
rustsec-2025-0145	`uniswap-utils` was removed from crates.io for malicious code	2025-12-03T12:00:00Z	2026-02-06T16:15:51Z
rustsec-2026-0009	Denial of Service via Stack Exhaustion	2026-02-05T12:00:00Z	2026-02-06T09:12:16Z
rustsec-2026-0008	Potential undefined behavior when dereferencing Buf struct	2026-02-02T12:00:00Z	2026-02-05T06:08:13Z
rustsec-2026-0007	Integer overflow in `BytesMut::reserve`	2026-02-03T12:00:00Z	2026-02-04T06:56:11Z
rustsec-2025-0140	Non-utf8 String can be created with `TimeBuf::as_str`	2025-12-29T12:00:00Z	2026-02-04T06:56:11Z
rustsec-2026-0006	Wasmtime segfault or unused out-of-sandbox load with `f64.copysign` operator on x86-64	2026-01-26T12:00:00Z	2026-01-30T05:41:11Z
rustsec-2025-0143	Unsound APIs of public `constant::Reader` and `StructSchema`	2025-12-24T12:00:00Z	2026-01-29T05:56:50Z
rustsec-2025-0144	Timing side-channel in ML-DSA decomposition	2025-12-12T12:00:00Z	2026-01-27T22:28:37Z
rustsec-2024-0436	paste - no longer maintained	2024-10-07T12:00:00Z	2026-01-27T21:51:15Z
rustsec-2026-0005	Potential use-after-free in `oneshot` when used asynchronously	2026-01-25T12:00:00Z	2026-01-27T05:50:51Z
rustsec-2026-0004	Triton VM Soundness Vulnerability due to Improper Sampling of Randomness	2026-01-21T12:00:00Z	2026-01-23T05:50:29Z
rustsec-2021-0155	Use After Free in lucet-runtime	2021-11-30T12:00:00Z	2026-01-17T19:50:19Z
rustsec-2025-0111	`tokio-tar` parses PAX extended headers incorrectly, allows file smuggling	2025-10-21T12:00:00Z	2026-01-17T07:44:05Z
rustsec-2025-0141	Bincode is unmaintained	2025-12-16T12:00:00Z	2026-01-16T11:04:42Z
rustsec-2026-0003	Non-constant-time code generation on ARM32 targets	2026-01-14T12:00:00Z	2026-01-15T17:45:42Z
rustsec-2026-0002	`IterMut` violates Stacked Borrows by invalidating internal pointer	2026-01-07T12:00:00Z	2026-01-08T05:46:06Z
rustsec-2026-0001	Potential Undefined Behaviors in `Arc<T>`/`Rc<T>` impls of `from_value` on OOM	2026-01-05T12:00:00Z	2026-01-06T15:33:19Z
rustsec-2025-0139	theshit vulnerable to unsafe loading of user-owned Python rules when running as root	2025-12-30T12:00:00Z	2026-01-04T20:34:25Z

ID	Description	Published	Updated
bit-python-2026-1299	email BytesGenerator header injection due to unquoted newlines	2026-02-03T08:53:00.053Z	2026-02-16T16:32:40.318Z
bit-python-2026-0865	wsgiref.headers.Headers allows header newline injection	2026-01-26T14:50:04.789Z	2026-02-16T16:32:40.318Z
bit-postgresql-2026-2007	PostgreSQL pg_trgm heap buffer overflow writes pattern onto server memory	2026-02-16T16:03:46.313Z	2026-02-16T16:32:40.318Z
bit-postgresql-2026-2006	PostgreSQL missing validation of multibyte character length executes arbitrary code	2026-02-16T16:03:41.880Z	2026-02-16T16:32:40.318Z
bit-postgresql-2026-2005	PostgreSQL pgcrypto heap buffer overflow executes arbitrary code	2026-02-16T16:03:36.943Z	2026-02-16T16:32:40.318Z
bit-postgresql-2026-2004	PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code	2026-02-16T16:03:32.935Z	2026-02-16T16:32:40.318Z
bit-postgresql-2026-2003	PostgreSQL oidvector discloses a few bytes of memory	2026-02-16T16:03:27.354Z	2026-02-16T16:32:40.318Z
bit-pip-2026-1703	Limited path traversal when installing wheel archives	2026-02-16T15:59:06.080Z	2026-02-16T16:32:40.318Z
bit-pillow-2026-25990	Pillow has an out-of-bounds write when loading PSD images	2026-02-16T16:02:06.871Z	2026-02-16T16:32:40.318Z
bit-libpython-2026-1299	email BytesGenerator header injection due to unquoted newlines	2026-02-03T08:45:06.015Z	2026-02-16T16:32:40.318Z
bit-libpython-2026-0865	wsgiref.headers.Headers allows header newline injection	2026-01-26T14:43:33.890Z	2026-02-16T16:32:40.318Z
bit-gitlab-2026-1458	Allocation of Resources Without Limits or Throttling in GitLab	2026-02-16T16:31:06.973Z	2026-02-16T16:32:40.318Z
bit-gitlab-2026-1456	Allocation of Resources Without Limits or Throttling in GitLab	2026-02-16T16:31:05.146Z	2026-02-16T16:32:40.318Z
bit-gitlab-2026-1282	Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in GitLab	2026-02-16T16:31:03.017Z	2026-02-16T16:32:40.318Z
bit-gitlab-2026-1094	Improper Validation of Unsafe Equivalence in Input in GitLab	2026-02-16T16:30:59.417Z	2026-02-16T16:32:40.318Z
bit-gitlab-2026-0958	Interpretation Conflict in GitLab	2026-02-16T16:30:57.233Z	2026-02-16T16:32:40.318Z
bit-gitlab-2026-0595	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab	2026-02-16T16:30:53.679Z	2026-02-16T16:32:40.318Z
bit-gitlab-2025-8099	Allocation of Resources Without Limits or Throttling in GitLab	2026-02-16T16:30:40.312Z	2026-02-16T16:32:40.318Z
bit-gitlab-2025-7659	Origin Validation Error in GitLab	2026-02-16T16:30:29.449Z	2026-02-16T16:32:40.318Z
bit-gitlab-2025-14594	Authorization Bypass Through User-Controlled Key in GitLab	2026-02-16T16:28:35.547Z	2026-02-16T16:32:40.318Z
bit-gitlab-2025-14592	Missing Authorization in GitLab	2026-02-16T16:28:33.785Z	2026-02-16T16:32:40.318Z
bit-gitlab-2025-14560	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab	2026-02-16T16:28:32.048Z	2026-02-16T16:32:40.318Z
bit-gitlab-2025-12073	Server-Side Request Forgery (SSRF) in GitLab	2026-02-16T16:27:53.661Z	2026-02-16T16:32:40.318Z
bit-dotnet-2026-21218	.NET Spoofing Vulnerability	2026-02-16T15:58:16.593Z	2026-02-16T16:32:40.318Z
bit-moodle-2025-67857	Moodle: moodle: data exposure of user identifiers in urls	2026-02-12T08:51:13.591Z	2026-02-12T09:10:24.600Z
bit-moodle-2025-67856	Moodle: moodle: privilege escalation via incomplete role checks in badge awarding	2026-02-12T08:51:12.105Z	2026-02-12T09:10:24.600Z
bit-moodle-2025-67855	Mooodle: mooodle: information disclosure and script execution via reflected cross-site scripting	2026-02-12T08:51:10.563Z	2026-02-12T09:10:24.600Z
bit-moodle-2025-67853	Moodle: moodle: brute-force facilitation due to missing rate limiting in confirmation email service	2026-02-12T08:51:08.996Z	2026-02-12T09:10:24.600Z
bit-moodle-2025-67852	Moodle: moodle: open redirect vulnerability in oauth login flow allows redirection to malicious sites.	2026-02-12T08:51:07.525Z	2026-02-12T09:10:24.600Z
bit-moodle-2025-67851	Moodle: moodle: formula injection allows arbitrary formula execution via unescaped data export	2026-02-12T08:51:05.950Z	2026-02-12T09:10:24.600Z

ID	Description	Published	Updated
cleanstart-2026-xv54160	Within HostnameError	2026-02-17T00:41:15.330012Z	2026-02-16T09:23:22Z
cleanstart-2026-vg57433	Within HostnameError	2026-02-17T00:39:45.599344Z	2026-02-16T09:23:22Z
cleanstart-2026-uh39784	SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process	2026-02-17T00:40:45.017480Z	2026-02-16T09:23:22Z
cleanstart-2026-jr03360	Within HostnameError	2026-02-17T00:39:45.300172Z	2026-02-16T09:23:22Z
cleanstart-2026-gg58376	Within HostnameError	2026-02-17T00:41:15.939977Z	2026-02-16T09:23:22Z
cleanstart-2026-bs57244	Within HostnameError	2026-02-17T00:39:44.907078Z	2026-02-16T09:23:22Z
cleanstart-2026-pr84319	Security fixes for GHSA-2gh3-rmm4-6rq5, GHSA-r6v5-fh4h-64xc, GHSA-rhfx-m35p-ff5j, GHSA-xwfj-jgwm-7wp5 applied in versions: 1.27.5-r1, 1.27.6-r0	2026-02-14T00:37:23.085740Z	2026-02-13T12:28:27Z
cleanstart-2026-kk07808	issue has been found in third-party PNM decoding associated with libpng 1	2026-02-14T00:37:45.311656Z	2026-02-13T12:28:27Z
cleanstart-2026-tr92727	During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed handshake, the resumed handshake may succ...	2026-02-13T00:41:14.875956Z	2026-02-12T13:07:54Z
cleanstart-2026-qi35149	SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process	2026-02-13T00:39:44.259950Z	2026-02-12T13:07:54Z
cleanstart-2026-jb30245	Security fixes for GHSA-f6x5-jh6r-wrfv, GHSA-j5w8-q4qc-rx2x applied in versions: 0.47.2-r0	2026-02-13T00:39:45.274258Z	2026-02-12T13:07:54Z
cleanstart-2026-gv85693	SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process	2026-02-13T00:40:14.240914Z	2026-02-12T13:07:54Z
cleanstart-2026-fi29887	During the TLS 1	2026-02-13T00:39:44.225771Z	2026-02-12T13:07:54Z
cleanstart-2026-ca79883	Security fixes for GHSA-6v2p-p943-phr9, GHSA-c6gw-w398-hv78, GHSA-f6x5-jh6r-wrfv, GHSA-hcg3-p754-cr77, GHSA-j5w8-q4qc-rx2x, GHSA-qxp5-gw88-xv66, GHSA-v778-237x-gjrc, GHSA-vvgc-356p-c3xw applied in versions: 1.15.0-r1	2026-02-13T00:40:14.901695Z	2026-02-12T13:07:54Z
cleanstart-2026-xb34574	excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate	2026-02-11T00:40:59.223419Z	2026-02-10T22:11:02Z
cleanstart-2026-im73098	excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate	2026-02-11T00:40:59.052841Z	2026-02-10T22:11:02Z
cleanstart-2026-cv28298	SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption	2026-02-11T00:41:59.034081Z	2026-02-10T22:11:02Z
cleanstart-2026-by71381	SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption	2026-02-11T00:41:59.117560Z	2026-02-10T22:11:02Z
cleanstart-2026-gp14462	Security fixes for ghsa-vvgc-356p-c3xw applied in versions: 0.18.0-r0	2026-02-10T00:39:23.397354Z	2026-02-09T12:51:17Z
cleanstart-2026-wk88787	SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption	2026-02-06T00:41:29.451524Z	2026-02-05T12:20:16Z
cleanstart-2026-rr78450	Within HostnameError	2026-02-06T00:39:29.463576Z	2026-02-05T12:20:16Z
cleanstart-2026-jn44153	Security fixes for GHSA-f6x5-jh6r-wrfv, GHSA-gx3x-vq4p-mhhv, GHSA-j5w8-q4qc-rx2x applied in versions: 1.18.0-r0, 1.19.0-r1	2026-02-06T00:39:29.662228Z	2026-02-05T12:20:16Z
cleanstart-2026-tc95380	vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device	2026-02-06T01:06:01.062694Z	2026-02-03T13:35:45Z
cleanstart-2026-qn16013	Cancelling a query (e	2026-02-03T16:02:29.512503Z	2026-02-03T11:13:56Z
cleanstart-2026-nb26505	Security fixes for GHSA-F6X5-JH6R-WRFV, GHSA-J5W8-Q4QC-RX2X applied in versions: 4.5.1-r0	2026-02-03T16:02:27.744077Z	2026-02-03T11:13:56Z
cleanstart-2026-am95501	When using the RemoteIpFilter with requests received from a reverse proxy via HTTP that include the X-Forwarded-Proto header set to https, session cookies created by Apache Tomcat 11	2026-02-03T00:37:00.849369Z	2026-02-02T12:32:10Z
cleanstart-2026-zr62045	attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing	2026-01-30T16:56:56.696859Z	2026-01-29T18:58:54Z
cleanstart-2025-zr62045	attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing	2026-01-30T16:56:56.696859Z	2026-01-29T18:58:54Z
cleanstart-2025-us16386	Security fixes for GHSA-qxp5-gwg8-xv66, GHSA-vvgc-356p-c3xw applied in versions: 1.7.2-r0	2026-01-16T11:58:18.007779Z	2025-12-23T06:02:25Z
cleanstart-2025-ob44035	Security fixes for CVE-2025-61729, GHSA-f6x5-jh6r-wrfv, GHSA-j5w8-q4qc-rx2x applied in versions: 1.16.2-r2	2026-01-16T11:28:43.176297Z	2025-12-13T08:34:16Z

ID	Description	Published	Updated
drupal-contrib-2026-008		2026-02-04T17:23:40.000Z	2026-02-04T17:23:40.000Z

ID	Description	Updated
var-202407-2188	Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digita…	2024-07-23T22:46:32.699000Z
var-202406-3119	Beijing StarNet Ruijie Network Technology Co., Ltd. EG3220 is a new generation of multi-s…	2024-07-23T22:46:22.685000Z
var-202407-1740	NBR6135-E is a router. Beijing Xingwang Ruijie Network Technology Co., Ltd. NBR6135-E ha…	2024-07-23T22:46:18.378000Z
var-202407-1417	Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digita…	2024-07-23T22:46:07.784000Z
var-202407-1103	Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digita…	2024-07-23T22:46:01.992000Z
var-202407-0957	WinCC is a SCADA system suitable for all walks of life. It can access devices from mobile…	2024-07-23T22:45:59.391000Z
var-202407-0819	SIMATIC S7-1500 is a modular control system suitable for various automation applications …	2024-07-23T22:45:56.958000Z
var-202407-0818	NBR6210-E is a router product. Beijing Xingwang Ruijie Network Technology Co., Ltd. NBR6…	2024-07-23T22:45:56.946000Z
var-202407-0779	Tenda i29V1.0 V1.0.0.5 was discovered to contain a hardcoded password for root. Tenda of …	2024-07-23T22:45:56.150000Z
var-202407-0778	Tenda AC18 V15.03.3.10_EN was discovered to contain a stack-based buffer overflow vulnera…	2024-07-23T22:45:56.131000Z
var-202407-0745	Tenda AC18 V15.03.3.10_EN was discovered to contain a stack-based buffer overflow vulnera…	2024-07-23T22:45:55.498000Z
var-202305-1479	D-Link DIR-2150 SetTriggerPPPoEValidate Username Command Injection Remote Code Execution …	2024-07-23T22:45:09.335000Z
var-202108-1158	A race condition was addressed with improved locking. This issue is fixed in macOS Monter…	2024-07-23T22:44:06.976000Z
var-201109-0089	Multiple unspecified vulnerabilities in Cisco Unified Service Monitor before 8.6, as used…	2024-07-23T22:43:49.590000Z
var-200702-0378	Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 …	2024-07-23T22:43:25.614000Z
var-201011-0225	Multiple stack-based buffer overflows in agent.exe in Setup Manager in Cisco Intelligent …	2024-07-23T22:41:43.584000Z
var-201112-0297	Multiple cross-site scripting (XSS) vulnerabilities in the Virus Scan Interface in SAP Ne…	2024-07-23T22:41:20.004000Z
var-201507-0645	D-Link is an internationally renowned provider of network equipment and solutions, includ…	2024-07-23T22:41:18.832000Z
var-201803-1810	A Stack-based Buffer Overflow issue was discovered in Delta Electronics Delta Industrial …	2024-07-23T22:41:17.171000Z
var-201809-0087	WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple stack-based buffer overflow vul…	2024-07-23T22:41:16.554000Z
var-200607-0396	Multiple stack-based buffer overflows in eIQnetworks Enterprise Security Analyzer (ESA) b…	2024-07-23T22:41:04.279000Z
var-201702-0423	An issue was discovered in Delta Electronics WPLSoft, Versions prior to V2.42.11, ISPSoft…	2024-07-23T22:40:53.160000Z
var-202305-1588	D-Link DIR-2150 SetNTPServerSettings Command Injection Remote Code Execution Vulnerabilit…	2024-07-23T22:40:05.297000Z
var-201112-0173	The default configuration of the HP CM8060 Color MFP with Edgeline; Color LaserJet 3xxx, …	2024-07-23T22:39:32.535000Z
var-201103-0371	SAP Crystal Reports Server is a complete reporting solution for creating, managing, and d…	2024-07-23T22:39:32.874000Z
var-201706-0017	In FortiClientWindows 5.4.1 and 5.4.2, an attacker may escalate privilege via a FortiClie…	2024-07-23T22:38:34.494000Z
var-202305-1520	D-Link DIR-2150 SetSysEmailSettings EmailFrom Command Injection Remote Code Execution Vul…	2024-07-23T22:38:26.576000Z
var-202407-0490	A vulnerability has been identified in SIMATIC PCS neo V4.0 (All versions), SIMATIC STEP …	2024-07-23T22:38:24.768000Z
var-201810-0396	Advantech WebAccess 8.3.1 and earlier has several stack-based buffer overflow vulnerabili…	2024-07-23T22:37:44.850000Z
var-202001-0833	A Denial of Service vulnerability exists in the WRITE_C function in the msg_server.exe mo…	2024-07-23T22:37:43.471000Z

ID	Description	Published	Updated
jvndb-2026-003912	Vulnerability in Cosminexus HTTP Server and Hitachi Web Server	2026-02-17T20:46+09:00	2026-02-17T20:46+09:00
jvndb-2026-003911	Vulnerability in Cosminexus HTTP Server	2026-02-17T20:46+09:00	2026-02-17T20:46+09:00
jvndb-2026-003910	Multiple Vulnerabilities in Cosminexus HTTP Server	2026-02-17T20:46+09:00	2026-02-17T20:46+09:00
jvndb-2026-003909	Multiple Vulnerabilities in Hitachi Command Suite products	2026-02-17T20:46+09:00	2026-02-17T20:46+09:00
jvndb-2026-003908	Multiple Vulnerabilities in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center	2026-02-17T20:46+09:00	2026-02-17T20:46+09:00
jvndb-2026-003907	Multiple Vulnerabilities in JP1	2026-02-17T20:46+09:00	2026-02-17T20:46+09:00
jvndb-2026-003906	Multiple Vulnerabilities in Cosminexus	2026-02-17T20:46+09:00	2026-02-17T20:46+09:00
jvndb-2026-003905	Multiple Vulnerabilities in Cosminexus HTTP Server and Hitachi Web Server	2026-02-17T20:46+09:00	2026-02-17T20:46+09:00
jvndb-2026-000025	Joomla! CMS vulnerable to cross-site scripting	2026-02-17T12:46+09:00	2026-02-17T12:46+09:00
jvndb-2026-000023	FileZen vulnerable to OS command injection	2026-02-13T16:51+09:00	2026-02-13T17:08+09:00
jvndb-2026-000024	Installer of M-Audio M-Track Duo HD may insecurely load Dynamic Link Libraries	2026-02-12T13:32+09:00	2026-02-12T13:32+09:00
jvndb-2026-000022	Oki Electric Industry products and OEM products register Windows services with unquoted file paths	2026-02-09T15:21+09:00	2026-02-09T15:21+09:00
jvndb-2026-000021	web2py vulnerable to open redirect	2026-02-05T15:01+09:00	2026-02-05T15:01+09:00
jvndb-2026-000017	Improper file access permission settings in Mitsubishi Small-Capacity UPS Shutdown Software FREQSHIP-mini for Windows	2026-02-03T14:57+09:00	2026-02-05T14:41+09:00
jvndb-2026-000020	Multiple vulnerabilities in Movable Type	2026-02-04T16:15+09:00	2026-02-04T16:15+09:00
jvndb-2026-000016	Installer for Roland Cloud Manager may insecurely load Dynamic Link Libraries	2026-02-03T14:57+09:00	2026-02-04T12:39+09:00
jvndb-2024-002831	ELECOM wireless LAN routers vulnerable to OS command injection	2024-02-22T08:15+09:00	2026-02-04T12:02+09:00
jvndb-2025-000041	Multiple vulnerabilities in ELECOM wireless LAN routers	2025-06-24T14:50+09:00	2026-02-03T15:35+09:00
jvndb-2024-000078	Multiple vulnerabilities in ELECOM wireless LAN routers	2024-07-30T15:34+09:00	2026-02-03T15:35+09:00
jvndb-2026-000019	Multiple vulnerabilities in ELECOM wireless LAN products	2026-02-03T14:57+09:00	2026-02-03T14:57+09:00
jvndb-2026-000015	Sonatype Nexus Repository vulnerable to server-side request forgery	2026-02-02T15:18+09:00	2026-02-02T15:18+09:00
jvndb-2026-000014	OS command injection in raspap-webgui	2026-02-02T15:18+09:00	2026-02-02T15:18+09:00
jvndb-2026-000013	Multiple Microsoft Office products vulnerable to untrusted search path	2026-02-02T15:18+09:00	2026-02-02T15:18+09:00
jvndb-2026-000012	Multiple vulnerabilities in Cybozu Garoon	2026-02-02T15:18+09:00	2026-02-02T15:18+09:00
jvndb-2026-000018	Undocumented "TelnetEnable" functionality of End of Service NETGEAR products	2026-01-30T14:23+09:00	2026-01-30T14:23+09:00
jvndb-2026-002119	Multiple vulnerabilities in BROTHER MFPs (multifunction printers)	2026-01-30T11:26+09:00	2026-01-30T11:26+09:00
jvndb-2026-002030	Multiple Vulnerabilities in Cosminexus	2026-01-29T10:32+09:00	2026-01-29T10:32+09:00
jvndb-2026-001972	Archer MR600 vulnerable to OS command injection	2026-01-28T10:41+09:00	2026-01-28T10:41+09:00
jvndb-2026-000011	beat-access for Windows may insecurely load Dynamic Link Libraries	2026-01-27T18:22+09:00	2026-01-27T18:22+09:00
jvndb-2026-001732	Multiple Brother software installers may insecurely load Dynamic Link Libraries	2026-01-26T16:04+09:00	2026-01-26T16:04+09:00

ID	Description	Updated
ts-2026-001	TS-2026-001	2026-01-15T00:00
ts-2025-008	TS-2025-008	2025-11-19T00:00
ts-2025-007	TS-2025-007	2025-11-07T00:00
ts-2025-006	TS-2025-006	2025-10-28T00:00
ts-2025-005	TS-2025-005	2025-08-07T00:00
ts-2025-004	TS-2025-004	2025-05-27T00:00
ts-2025-003	TS-2025-003	2025-05-21T00:00
ts-2025-002	TS-2025-002	2025-05-15T00:00
ts-2025-001	TS-2025-001	2025-03-07T00:00
ts-2024-013	TS-2024-013	2024-12-04T00:00
ts-2024-012	TS-2024-012	2024-10-02T00:00
ts-2024-011	TS-2024-011	2024-07-22T00:00
ts-2024-010	TS-2024-010	2024-07-19T00:00
ts-2024-009	TS-2024-009	2024-06-27T00:00
ts-2024-008	TS-2024-008	2024-06-14T00:00
ts-2024-007	TS-2024-007	2024-06-12T00:00
ts-2024-006	TS-2024-006	2024-05-22T00:00
ts-2024-005	TS-2024-005	2024-05-08T00:00
ts-2024-004	TS-2024-004	2024-05-06T00:00
ts-2024-003	TS-2024-003	2024-04-23T00:00
ts-2024-002	TS-2024-002	2024-01-30T00:00
ts-2024-001	TS-2024-001	2024-01-08T00:00
ts-2023-009	TS-2023-009	2023-12-22T00:00
ts-2023-008	TS-2023-008	2023-11-01T00:00
ts-2023-007	TS-2023-007	2023-10-26T00:00
ts-2023-006	TS-2023-006	2023-08-22T00:00
ts-2023-005	TS-2023-005	2023-04-28T00:00
ts-2023-004	TS-2023-004	2023-04-04T00:00
ts-2023-003	TS-2023-003	2023-03-22T00:00
ts-2023-002	TS-2023-002	2023-01-24T00:00

ID	Description	Published	Updated
suse-su-2026:0573-1	Security update for kubernetes-old	2026-02-17T18:47:26Z	2026-02-17T18:47:26Z
suse-su-2026:0572-1	Security update for kubernetes	2026-02-17T18:47:08Z	2026-02-17T18:47:08Z
suse-su-2026:0571-1	Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer	2026-02-17T18:46:54Z	2026-02-17T18:46:54Z
suse-su-2026:0570-1	Security update for libxml2	2026-02-17T16:38:51Z	2026-02-17T16:38:51Z
suse-su-2026:0561-1	Security update for the Linux Kernel (Live Patch 5 for SUSE Linux Enterprise 15 SP7)	2026-02-16T12:33:41Z	2026-02-16T12:33:41Z
suse-su-2026:0560-1	Security update for the Linux Kernel (Live Patch 1 for SUSE Linux Enterprise 15 SP7)	2026-02-16T12:03:47Z	2026-02-16T12:03:47Z
suse-su-2026:0559-1	Security update for freerdp	2026-02-16T11:43:04Z	2026-02-16T11:43:04Z
suse-su-2026:0558-1	Security update for libnvidia-container	2026-02-16T11:42:25Z	2026-02-16T11:42:25Z
suse-su-2026:0557-1	Security update for the Linux Kernel (Live Patch 4 for SUSE Linux Enterprise 15 SP7)	2026-02-16T10:33:36Z	2026-02-16T10:33:36Z
suse-su-2026:0556-1	Security update for the Linux Kernel (Live Patch 2 for SUSE Linux Enterprise 15 SP7)	2026-02-16T10:03:47Z	2026-02-16T10:03:47Z
suse-su-2026:0555-1	Security update for the Linux Kernel (Live Patch 3 for SUSE Linux Enterprise 15 SP7)	2026-02-16T09:04:29Z	2026-02-16T09:04:29Z
suse-su-2026:0554-1	Security update for the Linux Kernel (Live Patch 0 for SUSE Linux Enterprise 15 SP7)	2026-02-16T08:33:36Z	2026-02-16T08:33:36Z
suse-su-2026:0551-1	Security update for the Linux Kernel (Live Patch 15 for SUSE Linux Enterprise 15 SP6)	2026-02-16T06:33:35Z	2026-02-16T06:33:35Z
suse-su-2026:0550-1	Security update for the Linux Kernel (Live Patch 14 for SUSE Linux Enterprise 15 SP6)	2026-02-16T05:33:34Z	2026-02-16T05:33:34Z
suse-su-2026:0548-1	Security update for the Linux Kernel (Live Patch 10 for SUSE Linux Enterprise 15 SP6)	2026-02-16T03:33:34Z	2026-02-16T03:33:34Z
suse-su-2026:0546-1	Security update for the Linux Kernel (Live Patch 13 for SUSE Linux Enterprise 15 SP6)	2026-02-15T19:33:42Z	2026-02-15T19:33:42Z
suse-su-2026:0544-1	Security update for the Linux Kernel (Live Patch 31 for SUSE Linux Enterprise 15 SP5)	2026-02-15T18:03:51Z	2026-02-15T18:03:51Z
suse-su-2026:0543-1	Security update for the Linux Kernel (Live Patch 7 for SUSE Linux Enterprise 15 SP6)	2026-02-15T17:33:36Z	2026-02-15T17:33:36Z
suse-su-2026:0542-1	Security update for the Linux Kernel (Live Patch 30 for SUSE Linux Enterprise 15 SP5)	2026-02-15T16:03:51Z	2026-02-15T16:03:51Z
suse-su-2026:0539-1	Security update for the Linux Kernel (Live Patch 26 for SUSE Linux Enterprise 15 SP5)	2026-02-15T13:33:40Z	2026-02-15T13:33:40Z
suse-su-2026:0535-1	Security update for the Linux Kernel (Live Patch 28 for SUSE Linux Enterprise 15 SP5)	2026-02-15T11:04:06Z	2026-02-15T11:04:06Z
suse-su-2026:0528-1	Security update for the Linux Kernel (Live Patch 24 for SUSE Linux Enterprise 15 SP5)	2026-02-15T06:33:50Z	2026-02-15T06:33:50Z
suse-su-2026:0533-1	Security update for the Linux Kernel (Live Patch 45 for SUSE Linux Enterprise 15 SP4)	2026-02-15T06:33:38Z	2026-02-15T06:33:38Z
suse-su-2026:0526-1	Security update for the Linux Kernel (Live Patch 35 for SUSE Linux Enterprise 15 SP4)	2026-02-14T19:33:43Z	2026-02-14T19:33:43Z
suse-su-2026:0525-1	Security update for the Linux Kernel (Live Patch 73 for SUSE Linux Enterprise 12 SP5)	2026-02-14T17:04:03Z	2026-02-14T17:04:03Z
suse-su-2026:0524-1	Security update for the Linux Kernel (Live Patch 72 for SUSE Linux Enterprise 12 SP5)	2026-02-14T17:03:57Z	2026-02-14T17:03:57Z
suse-su-2026:0514-1	Security update for cargo-auditable	2026-02-13T14:57:18Z	2026-02-13T14:57:18Z
suse-su-2026:0510-1	Security update for util-linux	2026-02-13T14:52:46Z	2026-02-13T14:52:46Z
suse-su-2026:0508-1	Security update for curl	2026-02-13T14:50:33Z	2026-02-13T14:50:33Z
suse-su-2026:0506-1	Security update for cargo-auditable	2026-02-13T14:32:17Z	2026-02-13T14:32:17Z

ID	Description	Published	Updated
cnvd-2026-10895	WordPress插件Pixel Manager for WooCommerce信息泄露漏洞	2025-11-20	2026-02-14
cnvd-2026-10894	WordPress插件Quiz Maker信息泄露漏洞	2025-11-21	2026-02-14
cnvd-2026-10893	WordPress插件WP FullCalendar信息泄露漏洞	2026-01-30	2026-02-14
cnvd-2026-10892	WordPress插件WP Directory Kit信息泄露漏洞	2026-01-30	2026-02-14
cnvd-2026-10891	WordPress插件CubeWP – All-in-One Dynamic Content Framework信息泄露漏洞	2026-01-30	2026-02-14
cnvd-2026-10890	WordPress插件Contact Form 7 GetResponse Extension信息泄露漏洞	2026-01-30	2026-02-14
cnvd-2026-10889	WordPress插件Cargus信息泄露漏洞	2026-01-30	2026-02-14
cnvd-2026-10888	WordPress插件Booking Ultra Pro信息泄露漏洞	2026-01-30	2026-02-14
cnvd-2026-10887	MailEnable存在未明漏洞（CNVD-2026-10887）	2025-12-18	2026-02-14
cnvd-2026-10885	FRRouting拒绝服务漏洞（CNVD-2026-10885）	2025-10-31	2026-02-14
cnvd-2026-06351	用友网络科技股份有限公司U8+渠道管理(高级版)存在SQL注入漏洞（CNVD-C-2025-1245200）	2025-12-31	2026-02-14
cnvd-2026-10886	MailEnable存在未明漏洞	2025-12-18	2026-02-13
cnvd-2026-10884	FRRouting拒绝服务漏洞（CNVD-2026-10884）	2025-10-31	2026-02-13
cnvd-2026-10883	FRRouting拒绝服务漏洞（CNVD-2026-10883）	2025-10-31	2026-02-13
cnvd-2026-10882	FRRouting拒绝服务漏洞	2025-10-31	2026-02-13
cnvd-2026-10881	mall-swarm授权问题漏洞（CNVD-2026-10881）	2025-11-18	2026-02-13
cnvd-2026-10880	mall-swarm存在未明漏洞	2025-11-18	2026-02-13
cnvd-2026-10879	mall-swarm授权问题漏洞（CNVD-2026-10879）	2025-11-18	2026-02-13
cnvd-2026-10878	mall-swarm授权问题漏洞（CNVD-2026-10878）	2025-11-18	2026-02-13
cnvd-2026-10877	mall-swarm授权问题漏洞（CNVD-2026-10877）	2025-11-18	2026-02-13
cnvd-2026-10876	mall-swarm授权问题漏洞	2025-12-10	2026-02-13
cnvd-2026-10875	Huawei HarmonyOS卡框架模块多线程竞争条件漏洞	2026-01-19	2026-02-13
cnvd-2026-10874	Huawei HarmonyOS和EMUI克隆模块中间人攻击漏洞	2026-01-19	2026-02-13
cnvd-2026-10873	Huawei HarmonyOS和EMUI媒体库模块权限验证绕过漏洞（CNVD-2026-10873）	2026-01-19	2026-02-13
cnvd-2026-10872	Huawei HarmonyOS和EMUI媒体库模块权限验证绕过漏洞	2026-01-19	2026-02-13
cnvd-2026-10871	WordPress插件metasync存在未明漏洞	2026-02-04	2026-02-12
cnvd-2026-10870	WordPress插件Simple User Registration访问控制错误漏洞	2026-02-04	2026-02-12
cnvd-2026-10859	Adobe Substance 3D Modeler越界写入漏洞（CNVD-2026-10859）	2026-01-19	2026-02-12
cnvd-2026-10858	Adobe Substance 3D Modeler越界写入漏洞（CNVD-2026-10858）	2026-01-19	2026-02-12
cnvd-2026-10857	Rockwell Automation FactoryTalk Linx权限提升漏洞（CNVD-2026-10857）	2025-10-17	2026-02-12

ID	Description	Published	Updated
certfr-2026-avi-0177	Multiples vulnérabilités dans Moodle	2026-02-17T00:00:00.000000	2026-02-17T00:00:00.000000
certfr-2026-avi-0176	Vulnérabilité dans Mattermost Server	2026-02-17T00:00:00.000000	2026-02-17T00:00:00.000000
certfr-2026-avi-0175	Multiples vulnérabilités dans les produits Mozilla	2026-02-17T00:00:00.000000	2026-02-17T00:00:00.000000
certfr-2026-avi-0174	Multiples vulnérabilités dans LibreNMS	2026-02-17T00:00:00.000000	2026-02-17T00:00:00.000000
certfr-2024-avi-0858	Multiples vulnérabilités dans Mitel Micollab	2024-10-10T00:00:00.000000	2026-02-17T00:00:00.000000
certfr-2026-avi-0173	Multiples vulnérabilités dans les produits Mattermost	2026-02-16T00:00:00.000000	2026-02-16T00:00:00.000000
certfr-2026-avi-0172	Vulnérabilité dans Google Chrome	2026-02-16T00:00:00.000000	2026-02-16T00:00:00.000000
certfr-2026-avi-0052	Multiples vulnérabilités dans Mattermost Server	2026-01-16T00:00:00.000000	2026-02-16T00:00:00.000000
CERTFR-2026-AVI-0173	Multiples vulnérabilités dans les produits Mattermost	2026-02-16T00:00:00.000000	2026-02-16T00:00:00.000000
CERTFR-2026-AVI-0172	Vulnérabilité dans Google Chrome	2026-02-16T00:00:00.000000	2026-02-16T00:00:00.000000
CERTFR-2026-AVI-0052	Multiples vulnérabilités dans Mattermost Server	2026-01-16T00:00:00.000000	2026-02-16T00:00:00.000000
certfr-2026-avi-0171	Multiples vulnérabilités dans les produits IBM	2026-02-13T00:00:00.000000	2026-02-13T00:00:00.000000
certfr-2026-avi-0170	Multiples vulnérabilités dans le noyau Linux de SUSE	2026-02-13T00:00:00.000000	2026-02-13T00:00:00.000000
certfr-2026-avi-0169	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2026-02-13T00:00:00.000000	2026-02-13T00:00:00.000000
certfr-2026-avi-0168	Multiples vulnérabilités dans le noyau Linux de Red Hat	2026-02-13T00:00:00.000000	2026-02-13T00:00:00.000000
certfr-2026-avi-0167	Multiples vulnérabilités dans le noyau Linux de Debian LTS	2026-02-13T00:00:00.000000	2026-02-13T00:00:00.000000
certfr-2026-avi-0166	Multiples vulnérabilités dans le noyau Linux de Debian	2026-02-13T00:00:00.000000	2026-02-13T00:00:00.000000
certfr-2026-avi-0165	Vulnérabilité dans Mattermost Server	2026-02-13T00:00:00.000000	2026-02-13T00:00:00.000000
certfr-2026-avi-0164	Multiples vulnérabilités dans PostgreSQL	2026-02-13T00:00:00.000000	2026-02-13T00:00:00.000000
certfr-2026-avi-0163	Multiples vulnérabilités dans HAProxy	2026-02-13T00:00:00.000000	2026-02-13T00:00:00.000000
certfr-2026-avi-0162	Multiples vulnérabilités dans Juniper Networks Secure Analytics	2026-02-13T00:00:00.000000	2026-02-13T00:00:00.000000
certfr-2026-avi-0161	Vulnérabilité dans Tenable Nessus Agent	2026-02-13T00:00:00.000000	2026-02-13T00:00:00.000000
certfr-2026-avi-0144	Multiples vulnérabilités dans Ivanti Endpoint Manager	2026-02-11T00:00:00.000000	2026-02-13T00:00:00.000000
CERTFR-2026-AVI-0171	Multiples vulnérabilités dans les produits IBM	2026-02-13T00:00:00.000000	2026-02-13T00:00:00.000000
CERTFR-2026-AVI-0170	Multiples vulnérabilités dans le noyau Linux de SUSE	2026-02-13T00:00:00.000000	2026-02-13T00:00:00.000000
CERTFR-2026-AVI-0169	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2026-02-13T00:00:00.000000	2026-02-13T00:00:00.000000
CERTFR-2026-AVI-0168	Multiples vulnérabilités dans le noyau Linux de Red Hat	2026-02-13T00:00:00.000000	2026-02-13T00:00:00.000000
CERTFR-2026-AVI-0167	Multiples vulnérabilités dans le noyau Linux de Debian LTS	2026-02-13T00:00:00.000000	2026-02-13T00:00:00.000000
CERTFR-2026-AVI-0166	Multiples vulnérabilités dans le noyau Linux de Debian	2026-02-13T00:00:00.000000	2026-02-13T00:00:00.000000
CERTFR-2026-AVI-0165	Vulnérabilité dans Mattermost Server	2026-02-13T00:00:00.000000	2026-02-13T00:00:00.000000

ID	Description	Published	Updated
certfr-2025-ale-014	[MàJ] Vulnérabilité dans React Server Components	2025-12-05T00:00:00.000000	2026-02-12T00:00:00.000000
CERTFR-2025-ALE-014	[MàJ] Vulnérabilité dans React Server Components	2025-12-05T00:00:00.000000	2026-02-12T00:00:00.000000
certfr-2026-ale-001	[MàJ] Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile	2026-01-30T00:00:00.000000	2026-02-03T00:00:00.000000
CERTFR-2026-ALE-001	[MàJ] Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile	2026-01-30T00:00:00.000000	2026-02-03T00:00:00.000000
certfr-2025-ale-013	[MàJ] Multiples vulnérabilités dans Cisco ASA et FTD	2025-09-25T00:00:00.000000	2025-10-06T00:00:00.000000
CERTFR-2025-ALE-013	[MàJ] Multiples vulnérabilités dans Cisco ASA et FTD	2025-09-25T00:00:00.000000	2025-10-06T00:00:00.000000
certfr-2025-ale-012	Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway	2025-08-26T00:00:00.000000	2025-09-26T00:00:00.000000
CERTFR-2025-ALE-012	Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway	2025-08-26T00:00:00.000000	2025-09-26T00:00:00.000000
certfr-2025-ale-010	[MàJ] Multiples vulnérabilités dans Microsoft SharePoint	2025-07-21T00:00:00.000000	2025-08-26T00:00:00.000000
CERTFR-2025-ALE-010	[MàJ] Multiples vulnérabilités dans Microsoft SharePoint	2025-07-21T00:00:00.000000	2025-08-26T00:00:00.000000
certfr-2025-ale-011	Incidents de sécurité dans les pare-feux SonicWall	2025-08-05T00:00:00.000000	2025-08-18T00:00:00.000000
certfr-2025-ale-009	Multiples vulnérabilités dans Citrix NetScaler ADC et NetScaler Gateway	2025-07-01T00:00:00.000000	2025-07-17T00:00:00.000000
CERTFR-2025-ALE-011	Incidents de sécurité dans les pare-feux SonicWall	2025-08-05T00:00:00.000000	2025-08-18T00:00:00.000000
CERTFR-2025-ALE-009	Multiples vulnérabilités dans Citrix NetScaler ADC et NetScaler Gateway	2025-07-01T00:00:00.000000	2025-07-17T00:00:00.000000
certfr-2025-ale-004	Activités de post-exploitation dans Fortinet FortiGate	2025-04-11T00:00:00.000000	2025-08-07T00:00:00.000000
CERTFR-2025-ALE-004	Activités de post-exploitation dans Fortinet FortiGate	2025-04-11T00:00:00.000000	2025-08-07T00:00:00.000000
certfr-2025-ale-008	[MàJ] Vulnérabilité dans Roundcube	2025-06-05T00:00:00.000000	2025-07-21T00:00:00.000000
CERTFR-2025-ALE-008	[MàJ] Vulnérabilité dans Roundcube	2025-06-05T00:00:00.000000	2025-07-21T00:00:00.000000
certfr-2025-ale-007	Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile (EPMM)	2025-05-14T00:00:00.000000	2025-06-24T00:00:00.000000
certfr-2025-ale-006	Vulnérabilité dans les produits Fortinet	2025-05-13T00:00:00.000000	2025-06-24T00:00:00.000000
certfr-2025-ale-005	Vulnérabilité dans SAP NetWeaver	2025-04-28T00:00:00.000000	2025-06-24T00:00:00.000000
certfr-2025-ale-003	[MàJ] Vulnérabilité dans les produits Ivanti	2025-04-04T00:00:00.000000	2025-04-11T00:00:00.000000
CERTFR-2025-ALE-007	Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile (EPMM)	2025-05-14T00:00:00.000000	2025-06-24T00:00:00.000000
CERTFR-2025-ALE-006	Vulnérabilité dans les produits Fortinet	2025-05-13T00:00:00.000000	2025-06-24T00:00:00.000000
CERTFR-2025-ALE-005	Vulnérabilité dans SAP NetWeaver	2025-04-28T00:00:00.000000	2025-06-24T00:00:00.000000
CERTFR-2025-ALE-003	[MàJ] Vulnérabilité dans les produits Ivanti	2025-04-04T00:00:00.000000	2025-04-11T00:00:00.000000
certfr-2025-ale-002	[MàJ] Vulnérabilité dans les produits Fortinet	2025-05-07T00:00:00.000000	2025-01-14T00:00:00.000000
certfr-2025-ale-001	[MàJ] Vulnérabilité dans les produits Ivanti	2025-01-09T00:00:00.000000	2025-04-01T00:00:00.000000
CERTFR-2025-ALE-002	[MàJ] Vulnérabilité dans les produits Fortinet	2025-05-07T00:00:00.000000	2025-01-14T00:00:00.000000
CERTFR-2025-ALE-001	[MàJ] Vulnérabilité dans les produits Ivanti	2025-01-09T00:00:00.000000	2025-04-01T00:00:00.000000

ID	CVSS	Description	Vendor	Product	Published	Updated
GCVE-1-2026-0015	7.2 (4.0)	Threat actors use FortiCloud SSO bypass to collect LDA…	fortinet	fortios	2026-02-09T09:09:00.000Z	2026-02-09T09:14:59.004089Z
GCVE-1-2026-0014	7.4 (4.0)	Missing Authorization Check Allows Unauthorized Modifi…	vulnerability-lookup	vulnerability-lookup	2026-02-04T19:32:14.341383Z	2026-02-04T19:32:14.341383Z
GCVE-1-2026-0013	2.1 (4.0)	Flask Application Username Route Collision Allows Rese…	vulnerability-lookup	vulnerability-lookup	2026-02-04T19:27:00.000Z	2026-02-04T19:32:49.787763Z
GCVE-1-2026-0012	2.1 (4.0)	Authentication Error Message Allows Email Address Enum…	vulnerability-lookup	vulnerability-lookup	2026-02-04T19:21:34.411344Z	2026-02-04T19:21:34.411344Z
GCVE-1-2026-0011	8.7 (4.0)	Out-of-bounds memory write in the network packet …	EA Games	Command & Conquer: Generals	2026-01-29T14:37:00.000Z	2026-01-29T14:39:17.728822Z
GCVE-1-2026-0010	9.3 (4.0)	Improper input validation in the file transfer ha…	EA Games	Command & Conquer: Generals	2026-01-29T14:33:18.822829Z	2026-01-29T14:33:18.822829Z
GCVE-1-2026-0009	9.3 (4.0)	Stack-based buffer overflow in the multiplayer ne…	EA Games	Command & Conquer: Generals	2026-01-29T14:30:38.596928Z	2026-01-29T14:30:38.596928Z
GCVE-1-2026-0008	10 (4.0)	gpg-agent stack buffer overflow in pkdecrypt using KEM	gnupg	gpg-agent	2026-01-28T13:48:12.350509Z	2026-01-28T13:48:12.350509Z
GCVE-1-2026-0007	10 (4.0)	GNU InetUtils Security Advisory: remote authentication…	gnu	InetUtils	2026-01-20T20:57:00.000Z	2026-01-26T16:32:40.831364Z
GCVE-1-2026-0006	8.5 (4.0)	Improper Access Control in Cerebrate AuthKey and Encry…	cerebrate	cerebrate	2026-01-13T15:37:17.337254Z	2026-01-13T15:37:17.337254Z
GCVE-1-2026-0005	8.5 (4.0)	Improper Access Control in Cerebrate Alignment Model A…	cerebrate	cerebrate	2026-01-13T15:31:00.000Z	2026-01-13T15:38:02.888546Z
GCVE-1-2026-0004	8.5 (4.0)	Authorization Bypass in Cerebrate IndividualsControlle…	cerebrate	cerebrate	2026-01-13T15:28:00.000Z	2026-01-13T15:38:37.744618Z
GCVE-1-2026-0003	6.3 (4.0)	Stored/Reflected XSS via Unsanitized Parameters in URL…	misp	misp	2026-01-13T10:50:00.000Z	2026-01-13T10:54:13.659223Z
GCVE-1-2026-0002	10 (4.0)	Heap-buffer-overflow in EXIF writer for extra IFD tags	ffmpeg	ffmpeg	2026-01-02T19:50:00.000Z	2026-01-02T20:05:27.269877Z
GCVE-1-2026-0001	N/A	Bundle reference to gpg.fail	gnupg	gnupg	2026-01-02T10:20:00.000Z	2026-01-02T13:31:14.359346Z
GCVE-1-2025-0041	6.4 (4.0)	[online services] Reflected Cross-Site Scripting (XSS)…	typo3	typo3	2025-12-19T14:25:00.000Z	2025-12-19T14:54:51.594645Z
GCVE-1-2025-0031	7.1 (4.0)	A cross-site scripting (XSS) vulnerability was identif…	misp	misp	2025-12-03T10:58:00.000Z	2025-12-16T09:36:09.594750Z
GCVE-1-2025-0040	7.2 (4.0)	A cross-site scripting (XSS) vulnerability was id…	misp	misp	2025-12-13T08:44:32.378924Z	2025-12-13T08:44:32.378924Z
GCVE-1-2025-0039	8.5 (4.0)	XSS Reintroduced in MISP Dashboard World Map Widget Du…	misp	misp	2025-12-10T14:33:52.856734Z	2025-12-10T14:33:52.856734Z
GCVE-1-2025-0038	5 (4.0)	Reflected XSS in MISP Template Tag Removal and MISP Ad…	misp	misp	2025-12-10T14:10:00.000Z	2025-12-10T14:16:55.918270Z
GCVE-1-2025-0037	7 (4.0)	Reflected XSS in MISP Dashboard Widgets via Unescaped …	misp	misp	2025-12-10T14:01:03.200804Z	2025-12-10T14:01:03.200804Z
GCVE-1-2025-0036	8.3 (4.0)	A reflected cross-site scripting (XSS) vulnerability w…	misp	misp	2025-12-10T13:46:07.170083Z	2025-12-10T13:46:07.170083Z
GCVE-1-2025-0035	8.3 (4.0)	Insufficient sanitization of bundle metadata (availabl…	CIRCL	vulnerability-lookup	2025-12-08T10:25:00.000Z	2025-12-08T12:14:06.307298Z
GCVE-1-2025-0034	7 (4.0)	Missing CSRF protection on state-changing endpoints in…	CIRCL	vulnerability-lookup	2025-12-08T10:19:00.000Z	2025-12-08T12:13:24.197294Z
GCVE-1-2025-0033	8.1 (4.0)	Vulnerability-lookup did not track or limit failed One…	CIRCL	vulnerability-lookup	2025-12-08T10:11:00.000Z	2025-12-08T12:12:53.235996Z
GCVE-1-2025-0032	10 (4.0)	The default configuration of WatchGuard Firebox device…	watchguard	firebox	2025-12-03T16:25:00.000Z	2025-12-19T13:48:34.570799Z
GCVE-1-2025-0030	6.2 (4.0)	A cross-site scripting (XSS) vulnerability in the MISP…	misp	misp	2025-12-03T10:53:00.000Z	2025-12-03T10:58:55.845341Z
GCVE-1-2025-0019	4 (4.0)	Path traversal vulnerability in EventReport for site-admin	misp	misp	2025-11-26T14:47:00.000Z	2025-11-28T07:27:42.721350Z
GCVE-1-2025-0017	9.4 (4.0)	Privilege escalation in Cerebrate allows an authentica…	cerebrate	cerebrate	2025-11-12T08:15:00.000Z	2025-11-28T07:22:08.205835Z
GCVE-1-2025-0029	6.3 (4.0)	Reflected cross-site scripting (XSS) vulnerabilities i…	misp	misp	2025-11-27T12:41:00.000Z	2025-11-27T12:48:51.085860Z

ID	CVSS	Description	Vendor	Product	Published	Updated
GCVE-1337-2025-00000000000000000000000000000000000000000000000000111111111111111111111111000000000000000000000000000000000000000000000000000000011	9.1 (3.1)	HexStrike AI MCP Server Command Injection	0x4m4	HexStrike AI	2025-11-30T21:27:56.057Z	2025-11-30T21:27:56.057Z
GCVE-1337-2025-00000000000000000000000000000000000000000000000001011111111111011111111110000000000000000000000000000000000000000000000000000000100	6.5 (3.1)	Abilis CPX Fallback Shell Connection Relay	Abilis	CPX	2025-11-04T00:23:23.924Z	2025-11-04T00:23:23.924Z
GCVE-1337-2025-00000000000000000000000000000000000000000000000001011011111110011111111110000000000000000000000000000000000000000000000000000000010	7.3 (3.1)	Unitree Multiple Robotic Products Command Injection	Unitree	Go2	2025-09-26T06:53:49.585Z	2025-09-26T15:16:57.586Z
GCVE-1337-2025-00000000000000000000000000000000000000000000000001011111011111010111111001000000000000000000000000000000000000000000000000000000001	4.3 (3.1)	Unauthenticated leak of sensitive information affectin…	Brother Industries, Ltd	HL-L8260CDN	2025-08-12T15:23:00.577Z	2025-08-15T05:53:23.017Z