Recent vulnerabilities

ID	Description	Published	Updated
ghsa-9rmp-2568-59rv	rPGP Panics on Malformed Untrusted Input	2024-12-05T17:30:52Z	2025-12-26T16:30:25Z
ghsa-pcqx-8qww-7f4v	OpenShift GitOps authenticated attackers can obtain cluster root access through forged ArgoCD custo…	2025-12-15T18:30:39Z	2025-12-26T16:30:12Z
ghsa-v82x-ghcg-c238	A cross-site scripting (XSS) vulnerability was identified in FluentCMS 1.2.3. After logging in as a…	2025-12-26T15:30:17Z	2025-12-26T15:30:17Z
ghsa-rh9m-3jjg-79rv	IBM Aspera Faspex 5 5.0.0 through 5.0.14.1 is vulnerable to HTML injection. A remote attacker could…	2025-12-26T15:30:17Z	2025-12-26T15:30:17Z
ghsa-mrrq-9gcx-wv49	IBM Concert 1.0.0 through 2.1.0 could allow a remote attacker to obtain sensitive information from …	2025-12-26T15:30:17Z	2025-12-26T15:30:17Z
ghsa-jv72-59wq-8rxm	A vulnerability exists in the libxmljs 1.0.11 when parsing a specially crafted XML document. Access…	2025-12-26T15:30:17Z	2025-12-26T15:30:17Z
ghsa-hjxw-q6qf-prmj	IBM Concert 1.0.0 through 2.1.0 could allow a local user to escalate their privileges due to a race…	2025-12-26T15:30:17Z	2025-12-26T15:30:17Z
ghsa-gp88-9wrc-jxf5	IBM API Connect 10.0.8.0 through 10.0.8.5, and 10.0.11.0 could allow a remote attacker to bypass au…	2025-12-26T15:30:17Z	2025-12-26T15:30:17Z
ghsa-fmqj-pm68-cqq4	SQL injection vulnerability in krishanmuraiji SMS v.1.0, within the /studentms/admin/edit-class-det…	2025-12-26T15:30:17Z	2025-12-26T15:30:17Z
ghsa-cqcr-6gvh-8xmg	IBM Aspera Faspex 5 5.0.0 through 5.0.14.1 may allow inconsistent permissions between the user inte…	2025-12-26T15:30:17Z	2025-12-26T15:30:17Z
ghsa-cjc8-9v4p-h4r5	IBM Db2 Intelligence Center 1.1.0, 1.1.1, 1.1.2 could allow an authenticated user to perform unauth…	2025-12-26T15:30:17Z	2025-12-26T15:30:17Z
ghsa-chq3-v87j-fwq5	An issue was discovered in the Delight Custom Firmware (CFW) for Nokia Symbian Belle devices on Nok…	2025-12-26T15:30:17Z	2025-12-26T15:30:17Z
ghsa-737v-mrx7-86p3	IBM Concert 1.0.0 through 2.1.0 is vulnerable to a stack-based buffer overflow, caused by improper …	2025-12-26T15:30:17Z	2025-12-26T15:30:17Z
ghsa-4gh5-5w79-82mv	IBM DS8A00( R10.1) 10.10.106.0 and IBM DS8A00 ( R10.0) 10.1.3.010.2.45.0 and IBM DS8900F ( R9.4) 89…	2025-12-26T15:30:17Z	2025-12-26T15:30:17Z
ghsa-28p8-98p7-q6xq	IBM Aspera Faspex 5 5.0.0 through 5.0.14.1 could allow authenticated users to enumerate sensitive i…	2025-12-26T15:30:17Z	2025-12-26T15:30:17Z
ghsa-x3r8-2hmh-89f5	Mattermost has an Invite Token Replay Vulnerability via Channel Membership Manipulation	2025-12-17T21:30:48Z	2025-12-26T15:17:57Z
ghsa-wjc4-73q6-gv3m	plotly.js prototype pollution vulnerability	2024-01-03T06:30:27Z	2025-12-26T15:16:48Z
ghsa-vpq5-q5gw-c89v	Due to insecure library loading in the Eaton UPS Companion software executable, an attacker with ac…	2025-12-26T09:30:17Z	2025-12-26T09:30:17Z
ghsa-ccr5-cv34-54fp	Improper authentication of library files in the Eaton UPS Companion software installer could lead t…	2025-12-26T09:30:17Z	2025-12-26T09:30:17Z
ghsa-c447-7qcm-fmv2	Improper quotation in search paths in the Eaton UPS Companion software installer could lead to arbi…	2025-12-26T09:30:17Z	2025-12-26T09:30:17Z
ghsa-p8g3-7r42-x5c9	DVP-12SE - Modbus/TCP Cleartext Transmission of Sensitive Information	2025-12-26T06:30:28Z	2025-12-26T06:30:28Z
ghsa-mjv5-8wf2-6rhp	Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Sy…	2025-12-26T06:30:28Z	2025-12-26T06:30:28Z
ghsa-m4g6-6v9m-6q6x	Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Sy…	2025-12-26T06:30:27Z	2025-12-26T06:30:27Z
ghsa-jhx5-4vr4-f327	Gitea before 1.21.8 inadvertently discloses users' login times by allowing (for example) the lastlo…	2025-12-26T06:30:27Z	2025-12-26T06:30:27Z
ghsa-hq57-c72x-4774	In Gitea before 1.20.1, a forbidden URL scheme such as javascript: can be used for a link, aka XSS.	2025-12-26T06:30:27Z	2025-12-26T06:30:27Z
ghsa-f85h-c7m6-cfpm	Gitea before 1.22.2 sometimes mishandles the propagation of token scope for access control within o…	2025-12-26T06:30:27Z	2025-12-26T06:30:27Z
ghsa-7xq4-mwcp-q8fx	In Gitea before 1.21.2, an anonymous user can visit a private user's project.	2025-12-26T06:30:27Z	2025-12-26T06:30:27Z
ghsa-7954-xqv5-fh2r	Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Sy…	2025-12-26T06:30:27Z	2025-12-26T06:30:27Z
ghsa-5j73-c8q2-cfqp	Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Sy…	2025-12-26T06:30:27Z	2025-12-26T06:30:27Z
ghsa-3679-62vm-qq5r	Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Sy…	2025-12-26T06:30:27Z	2025-12-26T06:30:27Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-13158	9.3 (v4.0)	apidoc-core - prototype pollution in api_group.js, api…	apiDoc	apidoc-core	2025-12-26T16:00:27.208Z	2025-12-26T16:00:27.208Z
cve-2025-57403	N/A	Cola Dnslog v1.3.2 is vulnerable to Directory Tra…	n/a	n/a	2025-12-26T00:00:00.000Z	2025-12-26T15:58:30.143Z
cve-2024-29720	N/A	An issue in Terra Informatica Software, Inc Scite…	n/a	n/a	2025-12-26T00:00:00.000Z	2025-12-26T15:54:14.868Z
cve-2025-62578	7.2 (v4.0)	DVP-12SE - Modbus/TCP Cleartext Transmission of Sensit…	Delta Electronics	DVP-12SE	2025-12-26T06:05:01.035Z	2025-12-26T15:53:17.972Z
cve-2025-7195	5.2 (v3.1)	Operator-sdk: privilege escalation due to incorrect pe…	operator-framework	operator-sdk	2025-08-07T19:05:08.756Z	2025-12-26T15:46:18.401Z
cve-2025-59887	8.6 (v3.1)	Improper authentication of library files in the E…	Eaton	Eaton UPS Companion Software	2025-12-26T06:48:08.086Z	2025-12-26T15:45:28.715Z
cve-2025-59888	6.7 (v3.1)	Improper quotation in search paths in the Eaton U…	Eaton	UPS Companion software	2025-12-26T06:53:33.887Z	2025-12-26T15:37:43.044Z
cve-2025-67014	N/A	Incorrect access control in DEV Systemtechnik Gmb…	n/a	n/a	2025-12-26T00:00:00.000Z	2025-12-26T15:22:06.869Z
cve-2025-67015	N/A	Incorrect access control in Comtech EF Data CDM-6…	n/a	n/a	2025-12-26T00:00:00.000Z	2025-12-26T15:16:26.807Z
cve-2025-52598	6.3 (v4.0)	Insufficient certificate validation	Hanwha Vision Co., Ltd.	QNV-C8012	2025-12-26T04:07:19.958Z	2025-12-26T15:15:22.694Z
cve-2025-52599	6.3 (v4.0)	Inadequate account permissions management	Hanwha Vision Co., Ltd.	QNV-C8012	2025-12-26T04:12:37.550Z	2025-12-26T15:15:17.385Z
cve-2025-36192	6.7 (v3.1)	Missing Authorization with the DS8900F and DS8A00 Hard…	IBM	DS8A00( R10.1)	2025-12-26T13:58:51.713Z	2025-12-26T15:15:11.888Z
cve-2025-36228	3.8 (v3.1)	Incorrect Execution-Assigned Permissions in IBM Aspera…	IBM	Aspera Faspex 5	2025-12-26T14:11:45.492Z	2025-12-26T15:15:06.304Z
cve-2025-36229	3.1 (v3.1)	Exposure of Sensitive System Information to an Unautho…	IBM	Aspera Faspex 5	2025-12-26T14:15:03.417Z	2025-12-26T15:14:58.269Z
cve-2025-36230	5.4 (v3.1)	XSS in IBM Aspera Faspex	IBM	Aspera Faspex 5	2025-12-26T14:22:46.035Z	2025-12-26T15:14:53.108Z
cve-2025-64645	7.7 (v3.1)	Time-of-check Time-of-use (TOCTOU) in IBM Concert Software.	IBM	Concert	2025-12-26T14:24:57.880Z	2025-12-26T15:14:47.822Z
cve-2025-67013	N/A	The web management interface in ETL Systems Ltd D…	n/a	n/a	2025-12-26T00:00:00.000Z	2025-12-26T15:11:36.358Z
cve-2025-15091		UTT 进取 512W formPictureUrl strcpy buffer overflow	UTT	进取 512W	2025-12-25T23:32:06.493Z	2025-12-26T15:07:08.514Z
cve-2025-15092		UTT 进取 512W ConfigExceptMSN strcpy buffer overflow	UTT	进取 512W	2025-12-26T00:02:06.954Z	2025-12-26T15:06:18.525Z
cve-2025-15093		sunkaifei FlyCMS Admin Login IndexAdminController.java…	sunkaifei	FlyCMS	2025-12-26T01:02:06.516Z	2025-12-26T15:05:12.137Z
cve-2025-15099		simstudioai sim CRON Secret internal.ts improper authe…	simstudioai	sim	2025-12-26T04:02:07.111Z	2025-12-26T15:04:35.405Z
cve-2025-25341	N/A	A vulnerability exists in the libxmljs 1.0.11 whe…	n/a	n/a	2025-12-26T00:00:00.000Z	2025-12-26T14:59:04.114Z
cve-2025-67450	7.8 (v3.1)	Due to insecure library loading in the Eaton UPS …	Eaton	UPS Companion software	2025-12-26T06:59:41.375Z	2025-12-26T14:55:51.712Z
cve-2025-66947	N/A	SQL injection vulnerability in krishanmuraiji SMS…	n/a	n/a	2025-12-26T00:00:00.000Z	2025-12-26T14:53:07.508Z
cve-2025-68922	7.4 (v3.1)	OpenOps before 0.6.11 allows remote code executio…	OpenOps	OpenOps	2025-12-24T23:05:18.982Z	2025-12-26T14:52:36.571Z
cve-2025-32095		Pexip Infinity before 37.0 has improper input val…	Pexip	Infinity	2025-12-25T00:00:00.000Z	2025-12-26T14:52:31.389Z
cve-2025-32096		Pexip Infinity 33.0 through 37.0 before 37.1 has …	Pexip	Infinity	2025-12-25T00:00:00.000Z	2025-12-26T14:52:25.811Z
cve-2025-49088		Pexip Infinity 32.0 through 37.1 before 37.2, in …	Pexip	Infinity	2025-12-25T00:00:00.000Z	2025-12-26T14:52:20.811Z
cve-2025-66379		Pexip Infinity before 39.0 has Improper Input Val…	Pexip	Infinity	2025-12-25T00:00:00.000Z	2025-12-26T14:52:15.154Z
cve-2025-66443		Pexip Infinity 35.0 through 38.1 before 39.0, in …	Pexip	Infinity	2025-12-25T00:00:00.000Z	2025-12-26T14:52:09.843Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-67015	N/A	Incorrect access control in Comtech EF Data CDM-6…	n/a	n/a	2025-12-26T00:00:00.000Z	2025-12-26T15:16:26.807Z
cve-2025-67014	N/A	Incorrect access control in DEV Systemtechnik Gmb…	n/a	n/a	2025-12-26T00:00:00.000Z	2025-12-26T15:22:06.869Z
cve-2025-67013	N/A	The web management interface in ETL Systems Ltd D…	n/a	n/a	2025-12-26T00:00:00.000Z	2025-12-26T15:11:36.358Z
cve-2025-57403	N/A	Cola Dnslog v1.3.2 is vulnerable to Directory Tra…	n/a	n/a	2025-12-26T00:00:00.000Z	2025-12-26T15:58:30.143Z
cve-2025-13158	9.3 (v4.0)	apidoc-core - prototype pollution in api_group.js, api…	apiDoc	apidoc-core	2025-12-26T16:00:27.208Z	2025-12-26T16:00:27.208Z
cve-2024-29720	N/A	An issue in Terra Informatica Software, Inc Scite…	n/a	n/a	2025-12-26T00:00:00.000Z	2025-12-26T15:54:14.868Z
cve-2023-53974	8.8 (v4.0) 7.5 (v3.1)	D-Link DSL-124 ME_1.00 Backup Configuration File Discl…	D-Link	DSL-124 Wireless N300 ADSL2+	2025-12-22T21:35:33.805Z	2025-12-22T22:04:36.405Z
cve-2023-53979	8.6 (v4.0) 8.8 (v3.1)	MyBB 1.8.32 Authenticated Remote Code Execution via Ch…	Mybb	MyBB	2025-12-22T21:35:35.951Z	2025-12-22T22:04:08.541Z
cve-2023-53978	5.1 (v4.0) 6.4 (v3.1)	myBB Forums 1.8.26 Stored Cross-Site Scripting via For…	Mybb	myBB forums	2025-12-22T21:35:35.555Z	2025-12-22T22:04:14.008Z
cve-2023-53977	5.1 (v4.0) 6.4 (v3.1)	myBB Forums 1.8.26 Stored Cross-Site Scripting via For…	Mybb	myBB forums	2025-12-22T21:35:35.141Z	2025-12-22T22:04:19.313Z
cve-2023-53976	5.1 (v4.0) 6.4 (v3.1)	myBB Forums 1.8.26 Stored Cross-Site Scripting via Tem…	Mybb	myBB forums	2025-12-22T21:35:34.716Z	2025-12-22T22:04:24.557Z
cve-2023-53930	7.1 (v4.0) 9.8 (v3.1)	ProjectSend r1605 Insecure Direct Object Reference Fil…	projectSend	projectSend	2025-12-17T22:44:57.996Z	2025-12-18T15:02:09.609Z
cve-2023-53906	5.1 (v4.0) 4.6 (v3.1)	ProjectSend r1605 Stored Cross-Site Scripting via Cust…	projectSend	projectSend	2025-12-17T22:44:45.325Z	2025-12-18T15:05:37.725Z
cve-2023-53905	6.2 (v4.0) 8.8 (v3.1)	ProjectSend r1605 CSV Injection via User Account Expor…	projectSend	projectSend	2025-12-17T22:44:44.505Z	2025-12-18T15:05:47.850Z
cve-2023-53980	8.7 (v4.0) 9.8 (v3.1)	ProjectSend r1605 Remote Code Execution via File Exten…	ProjectSend	projectSend	2025-12-22T21:35:36.344Z	2025-12-22T22:04:02.619Z
cve-2025-56086	N/A	OS Command Injection vulnerability in Ruijie RG-E…	n/a	n/a	2025-12-11T00:00:00.000Z	2025-12-12T17:35:49.110Z
cve-2025-56085	N/A	OS Command Injection vulnerability in Ruijie RG-E…	n/a	n/a	2025-12-11T00:00:00.000Z	2025-12-12T17:35:49.231Z
cve-2025-67349	N/A	A cross-site scripting (XSS) vulnerability was id…	n/a	n/a	2025-12-26T00:00:00.000Z	2025-12-26T14:48:00.731Z
cve-2025-66947	N/A	SQL injection vulnerability in krishanmuraiji SMS…	n/a	n/a	2025-12-26T00:00:00.000Z	2025-12-26T14:53:07.508Z
cve-2025-65885	N/A	An issue was discovered in the Delight Custom Fir…	n/a	n/a	2025-12-26T00:00:00.000Z	2025-12-26T14:40:24.359Z
cve-2025-64645	7.7 (v3.1)	Time-of-check Time-of-use (TOCTOU) in IBM Concert Software.	IBM	Concert	2025-12-26T14:24:57.880Z	2025-12-26T15:14:47.822Z
cve-2025-36230	5.4 (v3.1)	XSS in IBM Aspera Faspex	IBM	Aspera Faspex 5	2025-12-26T14:22:46.035Z	2025-12-26T15:14:53.108Z
cve-2025-36229	3.1 (v3.1)	Exposure of Sensitive System Information to an Unautho…	IBM	Aspera Faspex 5	2025-12-26T14:15:03.417Z	2025-12-26T15:14:58.269Z
cve-2025-36228	3.8 (v3.1)	Incorrect Execution-Assigned Permissions in IBM Aspera…	IBM	Aspera Faspex 5	2025-12-26T14:11:45.492Z	2025-12-26T15:15:06.304Z
cve-2025-25341	N/A	A vulnerability exists in the libxmljs 1.0.11 whe…	n/a	n/a	2025-12-26T00:00:00.000Z	2025-12-26T14:59:04.114Z
cve-2025-15099		simstudioai sim CRON Secret internal.ts improper authe…	simstudioai	sim	2025-12-26T04:02:07.111Z	2025-12-26T15:04:35.405Z
cve-2025-15093		sunkaifei FlyCMS Admin Login IndexAdminController.java…	sunkaifei	FlyCMS	2025-12-26T01:02:06.516Z	2025-12-26T15:05:12.137Z
cve-2025-15092		UTT 进取 512W ConfigExceptMSN strcpy buffer overflow	UTT	进取 512W	2025-12-26T00:02:06.954Z	2025-12-26T15:06:18.525Z
cve-2025-15091		UTT 进取 512W formPictureUrl strcpy buffer overflow	UTT	进取 512W	2025-12-25T23:32:06.493Z	2025-12-26T15:07:08.514Z

ID	Description	Published	Updated
fkie_cve-2025-56087	OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR600W allowing attackers to execute arbitr…	2025-12-11T18:16:20.883	2025-12-26T14:47:06.663
fkie_cve-2025-56107	OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR600W allowing attackers to execute arbitr…	2025-12-11T19:15:56.323	2025-12-26T14:46:27.400
fkie_cve-2025-56096	OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR600W allowing attackers to execute arbitr…	2025-12-11T19:15:55.510	2025-12-26T14:45:51.057
fkie_cve-2025-56082	OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR600W allowing attackers to execute arbitr…	2025-12-11T18:16:20.297	2025-12-26T14:43:32.910
fkie_cve-2025-56077	OS Command Injection vulnerability in Ruijie RG-RAP2200(E) 247 2200 allowing attackers to execute a…	2025-12-11T18:16:20.077	2025-12-26T14:40:28.237
fkie_cve-2025-56079	OS Command Injection vulnerability in Ruijie RG-EW1300G EW1300G V1.00/V2.00/V4.00 allowing attacker…	2025-12-11T18:16:20.190	2025-12-26T14:32:23.270
fkie_cve-2025-36192	IBM DS8A00( R10.1) 10.10.106.0 and IBM DS8A00 ( R10.0) 10.1.3.010.2.45.0 and IBM DS8900F ( R9.4) 89…	2025-12-26T14:15:58.507	2025-12-26T14:15:58.507
fkie_cve-2025-14687	IBM Db2 Intelligence Center 1.1.0, 1.1.1, 1.1.2 could allow an authenticated user to perform unauth…	2025-12-26T14:15:58.347	2025-12-26T14:15:58.347
fkie_cve-2025-13915	IBM API Connect 10.0.8.0 through 10.0.8.5, and 10.0.11.0 could allow a remote attacker to bypass au…	2025-12-26T14:15:58.193	2025-12-26T14:15:58.193
fkie_cve-2025-13489	IBM UCD - IBM DevOps Deploy 8.1 through 8.1.2.3 IBM DevOps Deploy transmits data in clear text that…	2025-12-15T20:15:48.763	2025-12-26T14:15:57.590
fkie_cve-2025-1721	IBM Concert 1.0.0 through 2.1.0 could allow a remote attacker to obtain sensitive information from …	2025-12-26T13:15:46.440	2025-12-26T13:15:46.440
fkie_cve-2025-12771	IBM Concert 1.0.0 through 2.1.0 is vulnerable to a stack-based buffer overflow, caused by improper …	2025-12-26T13:15:45.407	2025-12-26T13:15:45.407
fkie_cve-2025-67450	Due to insecure library loading in the Eaton UPS Companion software executable, an attacker with ac…	2025-12-26T07:15:45.850	2025-12-26T07:15:45.850
fkie_cve-2025-59888	Improper quotation in search paths in the Eaton UPS Companion software installer could lead to arbi…	2025-12-26T07:15:45.693	2025-12-26T07:15:45.693
fkie_cve-2025-59887	Improper authentication of library files in the Eaton UPS Companion software installer could lead t…	2025-12-26T07:15:45.047	2025-12-26T07:15:45.047
fkie_cve-2025-62578	DVP-12SE - Modbus/TCP Cleartext Transmission of Sensitive Information	2025-12-26T06:15:39.980	2025-12-26T06:15:39.980
fkie_cve-2025-8075	Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Sy…	2025-12-26T05:16:12.223	2025-12-26T05:16:12.223
fkie_cve-2025-68946	In Gitea before 1.20.1, a forbidden URL scheme such as javascript: can be used for a link, aka XSS.	2025-12-26T05:16:11.590	2025-12-26T05:16:11.590
fkie_cve-2025-52601	Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Sy…	2025-12-26T05:16:11.450	2025-12-26T05:16:11.450
fkie_cve-2025-52600	Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Sy…	2025-12-26T05:16:11.283	2025-12-26T05:16:11.283
fkie_cve-2025-52599	Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Sy…	2025-12-26T05:16:11.140	2025-12-26T05:16:11.140
fkie_cve-2025-52598	Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Sy…	2025-12-26T05:16:07.383	2025-12-26T05:16:07.383
fkie_cve-2025-68945	In Gitea before 1.21.2, an anonymous user can visit a private user's project.	2025-12-26T04:15:41.507	2025-12-26T04:15:41.507
fkie_cve-2025-68944	Gitea before 1.22.2 sometimes mishandles the propagation of token scope for access control within o…	2025-12-26T04:15:41.357	2025-12-26T04:15:41.357
fkie_cve-2025-68943	Gitea before 1.21.8 inadvertently discloses users' login times by allowing (for example) the lastlo…	2025-12-26T04:15:41.217	2025-12-26T04:15:41.217
fkie_cve-2025-15099	A vulnerability was identified in simstudioai sim up to 0.5.27. This vulnerability affects unknown …	2025-12-26T04:15:40.347	2025-12-26T04:15:40.347
fkie_cve-2025-68942	Gitea before 1.22.2 allows XSS because the search input box (for creating tags and branches) is v-h…	2025-12-26T03:15:51.117	2025-12-26T03:15:51.117
fkie_cve-2025-68941	Gitea before 1.22.3 mishandles access to a private resource upon receiving an API token with scope …	2025-12-26T03:15:50.967	2025-12-26T03:15:50.967
fkie_cve-2025-68940	In Gitea before 1.22.5, branch deletion permissions are not adequately enforced after merging a pul…	2025-12-26T03:15:50.810	2025-12-26T03:15:50.810
fkie_cve-2025-68939	Gitea before 1.23.0 allows attackers to add attachments with forbidden file extensions by editing a…	2025-12-26T03:15:50.653	2025-12-26T03:15:50.653

ID	Description	Package	Published	Updated
pysec-2024-85	Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsD…	mindsdb	2024-09-12T13:15:00Z	2025-12-16T15:05:59.978434Z
pysec-2024-84	Deserialization of untrusted data can occur in versions 23.10.3.0 and newer of the MindsD…	mindsdb	2024-09-12T13:15:00Z	2025-12-16T15:05:59.815196Z
pysec-2024-83	Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsD…	mindsdb	2024-09-12T13:15:00Z	2025-12-16T15:05:59.652331Z
pysec-2024-82	Deserialization of untrusted data can occur in versions 23.3.2.0 and newer of the MindsDB…	mindsdb	2024-09-12T13:15:00Z	2025-12-16T15:05:59.488172Z
pysec-2023-278	MindsDB connects artificial intelligence models to real time data. Versions prior to 23.1…	mindsdb	2023-12-11T21:15:00Z	2025-12-16T15:05:59.273145Z
pysec-2025-52	gateway_proxy_handler in MLflow before 3.1.0 lacks gateway_path validation.	mlflow	2025-06-23T15:15:29Z	2025-12-05T13:25:55.146081Z
pysec-2020-220	A flaw was found in Ansible Base when using the aws_ssm connection plugin as garbage coll…	ansible	2020-10-05T14:15:00Z	2025-10-31T04:43:53.616247Z
pysec-2025-72	The `num2words` project was compromised via a phishing attack and two new versions were u…	num2words		2025-07-31T14:34:47+00:00
pysec-2025-71	Cadwyn creates production-ready community-driven modern Stripe-like API versioning in Fas…	cadwyn	2025-07-21T21:15:25+00:00	2025-07-23T15:24:03.825615+00:00
pysec-2025-70	A Server-Side Request Forgery (SSRF) vulnerability exists in the RequestsToolkit componen…	langchain-community	2025-06-23T21:15:25+00:00	2025-07-16T21:23:40.211079+00:00
pysec-2024-259	In PyTorch <=2.4.1, the RemoteModule has Deserialization RCE. NOTE: this is disputed by m…	torch	2024-10-29T21:15:04+00:00	2025-07-16T03:09:57.748865+00:00
pysec-2024-258	In scrapy/scrapy, an issue was identified where the Authorization header is not removed d…	scrapy	2024-05-20T08:15:08+00:00	2025-07-15T17:37:50.051730+00:00
pysec-2025-69	In Roundup before 2.5.0, XSS can occur via interaction between URLs and issue tracker tem…	roundup	2025-07-13T20:15:25+00:00	2025-07-13T21:23:01.161315+00:00
pysec-2025-68	A vulnerability, which was classified as critical, has been found in Upsonic up to 0.55.6…	upsonic	2025-06-19T21:15:27+00:00	2025-07-08T19:22:27.449399+00:00
pysec-2025-67	A vulnerability classified as critical was found in Upsonic up to 0.55.6. This vulnerabil…	upsonic	2025-06-19T21:15:27+00:00	2025-07-08T19:22:27.385619+00:00
pysec-2025-66	Improper privilege management in a REST interface allowed registered users to access unau…	streampipes	2025-03-03T11:15:11+00:00	2025-07-08T15:23:46.628375+00:00
pysec-2025-65	A path traversal vulnerability exists in run-llama/llama_index versions 0.12.27 through 0…	llama-index	2025-07-07T13:15:28+00:00	2025-07-07T15:23:42.730681+00:00
pysec-2025-61	Pillow is a Python imaging library. In versions 11.2.0 to before 11.3.0, there is a heap …	pillow	2025-07-01T19:15:27Z	2025-07-07T14:12:46.226030Z
pysec-2025-64	A vulnerability classified as critical has been found in themanojdesai python-a2a up to 0…	python-a2a	2025-06-17T07:15:18+00:00	2025-07-02T21:23:13.806273+00:00
pysec-2025-63	vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Whe…	vllm	2025-03-19T16:15:32+00:00	2025-07-01T23:22:49.176005+00:00
pysec-2025-62	vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Mal…	vllm	2025-02-07T20:15:34+00:00	2025-07-01T23:22:49.083695+00:00
pysec-2025-60	Exposure of Sensitive Information to an Unauthorized Actor, Insertion of Sensitive Inform…	apache-iotdb	2025-05-14T11:16:28+00:00	2025-07-01T21:22:47.232036+00:00
pysec-2025-59	Remote Code Execution with untrusted URI of UDF vulnerability in Apache IoTDB. The attack…	apache-iotdb	2025-05-14T11:15:47+00:00	2025-07-01T21:22:47.177405+00:00
pysec-2024-257	Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm…	mobsf	2024-03-22T23:15:07+00:00	2025-06-30T15:23:50.085549+00:00
pysec-2025-58	vLLM is a library for LLM inference and serving. vllm/model_executor/weight_utils.py impl…	vllm	2025-01-27T18:15:41+00:00	2025-06-27T21:22:36.583615+00:00
pysec-2025-57	A Denial of Service (DoS) vulnerability in zenml-io/zenml version 0.66.0 allows unauthent…	zenml	2025-03-20T10:15:48+00:00	2025-06-27T17:22:55.175431+00:00
pysec-2025-56	OctoPrint provides a web interface for controlling consumer 3D printers. In versions up t…	octoprint	2025-04-22T18:15:59+00:00	2025-06-27T17:22:53.513680+00:00
pysec-2024-256	Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm…	mobsf	2024-12-03T16:15:24+00:00	2025-06-27T17:22:53.325430+00:00
pysec-2025-55	vLLM is an inference and serving engine for large language models (LLMs). Version 0.8.0 u…	vllm	2025-05-30T19:15:30+00:00	2025-06-26T21:23:06.407481+00:00
pysec-2025-54	vLLM is an inference and serving engine for large language models (LLMs). In versions 0.8…	vllm	2025-05-30T19:15:30+00:00	2025-06-26T21:23:06.319321+00:00

ID	Description	Updated
gsd-2024-33884	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.534455Z
gsd-2024-33901	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.525896Z
gsd-2024-33887	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.503613Z
gsd-2024-33895	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.493081Z
gsd-2024-33894	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.488420Z
gsd-2024-33902	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.486429Z
gsd-2024-33888	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.468423Z
gsd-2024-33885	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.441746Z
gsd-2024-33891	Delinea Secret Server before 11.7.000001 allows attackers to bypass authentication via th…	2024-04-29T05:02:07.412035Z
gsd-2024-33899	RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attackers to spoof the scr…	2024-04-29T05:02:07.400574Z
gsd-2024-33889	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.392587Z
gsd-2024-33893	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.381761Z
gsd-2024-33892	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.378170Z
gsd-2024-33890	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.344384Z
gsd-2024-33896	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.313250Z
gsd-2024-33903	In CARLA through 0.9.15.2, the collision sensor mishandles some situations involving pede…	2024-04-29T05:02:07.295775Z
gsd-2024-33900	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.290639Z
gsd-2024-33898	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.287632Z
gsd-2024-33886	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.287167Z
gsd-2024-33897	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.283756Z
gsd-2024-33883	The ejs (aka Embedded JavaScript templates) package before 3.1.10 for Node.js lacks certa…	2024-04-29T05:02:07.271727Z
gsd-2024-4303	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:05.716348Z
gsd-2024-4300	E-WEBInformationCo. FS-EZViewer(Web) exposes sensitive information in the service. A remo…	2024-04-29T05:02:05.715239Z
gsd-2024-4297	The system configuration interface of HGiga iSherlock (including MailSherlock, SpamSherlo…	2024-04-29T05:02:05.700888Z
gsd-2024-4301	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:05.678292Z
gsd-2024-4296	The account management interface of HGiga iSherlock (including MailSherlock, SpamSherlock…	2024-04-29T05:02:05.621428Z
gsd-2024-4299	The system configuration interface of HGiga iSherlock (including MailSherlock, SpamSheroc…	2024-04-29T05:02:05.606402Z
gsd-2024-4302	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:05.603637Z
gsd-2024-4298	The email search interface of HGiga iSherlock (including MailSherlock, SpamSherock, Audit…	2024-04-29T05:02:05.598531Z
gsd-2024-33876	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.990196Z

ID	Description	Published	Updated
mal-2025-192941	Malicious code in bola511 (npm)	2025-12-26T14:09:11Z	2025-12-26T14:09:11Z
mal-2025-192940	Malicious code in aiogram-3 (PyPI)	2025-12-26T04:33:18Z	2025-12-26T10:09:30Z
mal-2025-192939	Malicious code in magic-poc (npm)	2025-12-26T03:35:35Z	2025-12-26T03:35:35Z
mal-2025-192938	Malicious code in bettermode-icons (npm)	2025-12-25T21:52:38Z	2025-12-25T22:40:17Z
mal-2025-192937	Malicious code in bettermode-common (npm)	2025-12-25T19:41:57Z	2025-12-25T19:41:57Z
mal-2025-192934	Malicious code in ing-feat-kyc-consent (npm)	2025-12-25T18:55:12Z	2025-12-25T18:55:12Z
mal-2025-192933	Malicious code in ing-feat-auth-idin (npm)	2025-12-25T18:54:53Z	2025-12-25T18:54:53Z
mal-2025-192935	Malicious code in ing-feat-mortgage-consent-starter (npm)	2025-12-25T18:54:11Z	2025-12-25T18:54:11Z
mal-2025-192936	Malicious code in ing-feat-pis-single-payments (npm)	2025-12-25T18:54:07Z	2025-12-25T18:54:07Z
mal-2025-192932	Malicious code in cc-raiesy (npm)	2025-12-25T18:19:57Z	2025-12-25T18:19:57Z
mal-2025-192931	Malicious code in aiogram-sever-patch (PyPI)	2025-12-25T14:18:44Z	2025-12-25T17:08:16Z
mal-2025-192930	Malicious code in pxdbench (PyPI)	2025-12-25T11:04:53Z	2025-12-25T11:04:53Z
mal-2025-192686	Malicious code in runtimeutils (PyPI)	2025-12-21T14:03:13Z	2025-12-24T23:09:05Z
mal-2025-192929	Malicious code in envtoolsx (PyPI)	2025-12-24T22:45:19Z	2025-12-24T22:45:19Z
mal-2025-192928	Malicious code in livekit-agents-hedra (PyPI)	2025-12-24T20:38:01Z	2025-12-24T20:38:01Z
mal-2025-192927	Malicious code in adril7123 (npm)	2025-12-24T17:05:44Z	2025-12-24T17:05:45Z
mal-2025-192926	Malicious code in @airtel-web/clickstream (npm)	2025-12-24T12:20:46Z	2025-12-24T13:17:43Z
mal-2025-6629	Malicious code in webpack-dev-server (RubyGems)	2025-07-31T19:17:14Z	2025-12-24T10:09:32Z
mal-2025-6628	Malicious code in maventa_utils (RubyGems)	2025-07-31T19:17:12Z	2025-12-24T10:09:32Z
mal-2025-6627	Malicious code in maventa_common (RubyGems)	2025-07-31T19:17:11Z	2025-12-24T10:09:32Z
mal-2025-5129	Malicious code in requestsdev (PyPI)	2025-06-18T10:15:20Z	2025-12-24T10:09:32Z
mal-2025-5109	Malicious code in dbgpkg (PyPI)	2025-06-18T10:15:07Z	2025-12-24T10:09:32Z
mal-2025-5096	Malicious code in aliyun-ai-labs-snippets-sdk (PyPI)	2025-05-19T15:43:26Z	2025-12-24T10:09:32Z
mal-2025-5095	Malicious code in aliyun-ai-labs-sdk (PyPI)	2025-06-18T10:15:00Z	2025-12-24T10:09:32Z
mal-2025-5094	Malicious code in ai-labs-snippets-sdk (PyPI)	2025-05-19T15:43:26Z	2025-12-24T10:09:32Z
mal-2025-47815	Malicious code in sqlcommenter_rails (RubyGems)	2025-09-26T09:15:02Z	2025-12-24T10:09:32Z
mal-2025-41805	Malicious code in omniauth-pro-sante-connect (RubyGems)	2025-08-28T07:12:29Z	2025-12-24T10:09:32Z
mal-2025-192657	Malicious code in yt-smm (npm)	2025-12-19T08:41:06Z	2025-12-24T10:09:32Z
mal-2025-192349	Malicious code in qt-main (PyPI)	2025-12-05T22:52:28Z	2025-12-24T10:09:32Z
mal-2025-191940	Malicious code in zakuchienne (PyPI)	2025-11-24T06:34:51Z	2025-12-24T10:09:32Z

ID	Description	Published	Updated
wid-sec-w-2025-2910	Hitachi Ops Center: Mehrere Schwachstellen	2025-12-22T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2891	WebKitGTK: Mehrere Schwachstellen ermöglichen Codeausführung und DoS	2025-12-18T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2871	GIMP: Mehrere Schwachstellen ermöglichen Codeausführung	2025-12-17T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2830	Red Hat Enterprise Linux (libsoup): Schwachstelle ermöglicht Denial of Service	2025-12-11T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2741	cPython: Schwachstelle ermöglicht Denial of Service	2025-12-03T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2706	Python: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-01T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2694	MariaDB: Schwachstelle ermöglicht Codeausführung	2025-11-27T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2677	OPNsense: Schwachstelle ermöglicht Manipulation von Dateien	2025-11-25T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2645	Golang Go: Mehrere Schwachstellen ermöglichen Denial of Service	2025-11-19T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2637	Rsync: Schwachstelle ermöglicht nicht spezifizierten Angriff	2025-11-18T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2608	Golang Go: Schwachstelle ermöglicht Denial of Service	2025-11-16T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2466	QEMU e1000 Network Devices: Schwachstelle ermöglicht Denial of Service	2025-11-02T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2365	Oracle Java SE: Mehrere Schwachstellen	2025-10-21T22:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2193	QEMU: Schwachstelle ermöglicht Denial of Service	2025-10-05T22:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-1740	Golang Go: Mehrere Schwachstellen ermöglichen Manipulation von Dateien	2025-08-06T22:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-0935	Red Hat Enterprise Linux (libsoup): Mehrere Schwachstellen	2025-05-04T22:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-0627	Vercel Next.js: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-03-24T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-0606	Red Hat Enterprise Linux (Gatekeeper): Mehrere Schwachstellen ermöglichen Denial of Service	2025-03-19T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-0485	Golang Go: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-03-04T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-0123	Red Hat Enterprise Linux und and OpenShift (go-git): Mehrere Schwachstellen	2025-01-19T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2024-3281	expat: Schwachstelle ermöglicht Denial of Service	2024-10-27T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2024-1951	expat: Mehrere Schwachstellen ermöglichen Denial of Service	2024-08-29T22:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2023-3174	SSH Protokoll: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2023-12-18T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2909	IBM App Connect Enterprise: Mehrere Schwachstellen	2025-12-22T23:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2886	Red Hat Enterprise Linux (git-lfs, opentelemetry-collector): Mehrere Schwachstellen	2025-12-18T23:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2812	Mozilla Firefox: Mehrere Schwachstellen	2025-12-09T23:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2756	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-07T23:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2750	Apache HTTP Server: Mehrere Schwachstellen	2025-12-04T23:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2747	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-04T23:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2564	Microsoft Windows und Windows Server: Mehrere Schwachstellen	2025-11-11T23:00:00.000+00:00	2025-12-22T23:00:00.000+00:00

ID	Description	Published	Updated
ssa-512988	SSA-512988: File Parsing Vulnerability in Simcenter Femap Before V2512	2025-12-12T00:00:00Z	2025-12-12T00:00:00Z
ssa-915282	SSA-915282: Denial of service Vulnerability in Interniche IP-Stack based Industrial Devices	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-912274	SSA-912274: Multiple Vulnerabilities in RUGGEDCOM ROX Before V2.17	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-882673	SSA-882673: Multiple Vulnerabilities in SINEC Security Monitor before V4.10.0	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-868571	SSA-868571: Missing Server Certificate Validation in IAM Client	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-800126	SSA-800126: Deserialization Vulnerability in Siemens Engineering Platforms before V20	2024-12-10T00:00:00Z	2025-12-09T00:00:00Z
ssa-763474	SSA-763474: Denial of Service Vulnerability in Ruggedcom ROS devices before V5.10.1	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-734261	SSA-734261: Authentication Bypass Vulnerability in Energy Services Using Elspec G5DFR	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-723487	SSA-723487: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SCALANCE, RUGGEDCOM and Related Products	2024-07-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-710408	SSA-710408: Missing Server Certificate Validation in Siemens Advanced Licensing (SALT) Toolkit	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-693808	SSA-693808: Deserialization Vulnerability in Siemens Engineering Platforms	2025-08-12T00:00:00Z	2025-12-09T00:00:00Z
ssa-673996	SSA-673996: Buffer Overflow Vulnerability in Third-Party Component in SICAM and SITIPE Products	2024-09-10T00:00:00Z	2025-12-09T00:00:00Z
ssa-626856	SSA-626856: Multiple Vulnerabilities in SINEMA Remote Connect Sever Before V3.2 SP4	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-493396	SSA-493396: Deserialization Vulnerability in Siemens Engineering Platforms	2025-08-12T00:00:00Z	2025-12-09T00:00:00Z
ssa-471761	SSA-471761: Multiple Vulnerabilities in SICAM T Before V3.0	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-420375	SSA-420375: Improper Integrity Check of Firmware Updates in Building X - Security Manager Edge Controller (ACC-AP)	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-416652	SSA-416652: Multiple Vulnerabilities in SIMATIC CN 4100 Before V4.0.1	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-408105	SSA-408105: Buffer Overflow Vulnerabilities in OpenSSL 3.0 Affecting Siemens Products	2022-12-13T00:00:00Z	2025-12-09T00:00:00Z
ssa-392859	SSA-392859: Local Arbitrary Code Execution Vulnerability in Siemens Engineering Platforms before V20	2024-12-10T00:00:00Z	2025-12-09T00:00:00Z
ssa-356310	SSA-356310: Multiple Vulnerabilities in Gridscale X Prepay	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-282044	SSA-282044: DLL Hijacking Vulnerability in Siemens Web Installer used by the Online Software Delivery	2025-08-12T00:00:00Z	2025-12-09T00:00:00Z
ssa-212953	SSA-212953: Multiple Vulnerabilities in COMOS	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-202008	SSA-202008: Multiple Vulnerabilities in Ruggedcom Rox Before V2.17.0	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-978177	SSA-978177: Vulnerability in Nozomi Guardian/CMC Before 25.4.0 on RUGGEDCOM APE1808 Devices	2025-08-12T00:00:00Z	2025-11-17T00:00:00Z
ssa-241605	SSA-241605: Out of Bounds Read in PS/IGES Parasolid Translator Component Before V29.0.258	2025-11-17T00:00:00Z	2025-11-17T00:00:00Z
ssa-190588	SSA-190588: Cross-Site Scripting Vulnerability in Mendix Rich Text Widget	2025-11-17T00:00:00Z	2025-11-17T00:00:00Z
ssa-864900	SSA-864900: Multiple Vulnerabilities in Fortigate NGFW on RUGGEDCOM APE1808 Devices	2025-05-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-832273	SSA-832273: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.3 on RUGGEDCOM APE1808 Devices	2024-03-12T00:00:00Z	2025-11-11T00:00:00Z
ssa-794185	SSA-794185: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SIPROTEC, SICAM and Related Products	2025-05-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-770770	SSA-770770: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.7 on RUGGEDCOM APE1808 Devices	2025-02-11T00:00:00Z	2025-11-11T00:00:00Z

ID	Description	Published	Updated
rhsa-2025:21885	Red Hat Security Advisory: OpenShift Compliance Operator bug fix and enhancement update	2025-11-20T19:56:52+00:00	2025-11-29T08:07:16+00:00
rhsa-2025:21368	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.18 security, enhancement & bug fix update	2025-11-13T17:36:32+00:00	2025-11-29T08:07:14+00:00
rhsa-2025:19961	Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes 2.12.6 security update	2025-11-10T01:30:28+00:00	2025-11-29T08:07:14+00:00
rhsa-2025:19958	Red Hat Security Advisory: multicluster engine for Kubernetes v2.7.7 security update	2025-11-10T01:14:14+00:00	2025-11-29T08:07:14+00:00
rhsa-2025:19335	Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes 2.14.1 security update	2025-10-30T12:58:23+00:00	2025-11-29T08:07:14+00:00
rhsa-2025:19332	Red Hat Security Advisory: multicluster engine for Kubernetes 2.9.1 security update	2025-10-30T12:27:36+00:00	2025-11-29T08:07:14+00:00
rhsa-2025:9646	Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.3.7 security and bug fix update	2025-06-25T14:06:29+00:00	2025-11-29T06:55:12+00:00
rhsa-2025:9759	Red Hat Security Advisory: OpenShift Container Platform 4.14.53 bug fix and security update	2025-07-02T17:25:30+00:00	2025-11-29T06:55:11+00:00
rhsa-2025:9562	Red Hat Security Advisory: OpenShift Container Platform 4.20.0 bug fix and security update	2025-10-21T04:13:27+00:00	2025-11-29T06:55:08+00:00
rhsa-2025:9541	Red Hat Security Advisory: Submariner 0.17.6 bug fixes and container updates	2025-06-24T14:31:21+00:00	2025-11-29T06:55:08+00:00
rhsa-2025:9388	Red Hat Security Advisory: Red Hat Multicluster GlobalHub 1.2.3 bug fixes and container updates	2025-06-23T15:10:48+00:00	2025-11-29T06:55:06+00:00
rhsa-2025:9259	Red Hat Security Advisory: OpenShift Container Platform 4.15.53 bug fix and security update	2025-06-26T01:50:03+00:00	2025-11-29T06:55:06+00:00
rhsa-2025:9167	Red Hat Security Advisory: Red Hat build of OpenTelemetry 3.6.0 release	2025-06-17T09:27:34+00:00	2025-11-29T06:55:05+00:00
rhsa-2025:9136	Red Hat Security Advisory: Red Hat OpenShift for Windows Containers 10.16.2 product release	2025-06-16T18:32:02+00:00	2025-11-29T06:55:04+00:00
rhsa-2025:8704	Red Hat Security Advisory: Red Hat OpenShift for Windows Containers 10.17.1 product release	2025-06-09T16:42:07+00:00	2025-11-29T06:55:04+00:00
rhsa-2025:8552	Red Hat Security Advisory: OpenShift Container Platform 4.17.33 bug fix and security update	2025-06-11T12:02:51+00:00	2025-11-29T06:55:04+00:00
rhsa-2025:8691	Red Hat Security Advisory: RHSA: Submariner 0.20.1 - bug fix and enhancement update	2025-06-09T14:26:17+00:00	2025-11-29T06:55:02+00:00
rhsa-2025:8560	Red Hat Security Advisory: OpenShift Container Platform 4.18.17 bug fix and security update	2025-06-10T06:26:36+00:00	2025-11-29T06:55:01+00:00
rhsa-2025:8556	Red Hat Security Advisory: OpenShift Container Platform 4.16.42 bug fix and security update	2025-06-13T05:16:43+00:00	2025-11-29T06:55:00+00:00
rhsa-2025:8544	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.15.14 Bug Fix Update	2025-06-04T20:11:19+00:00	2025-11-29T06:55:00+00:00
rhsa-2025:8542	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.13.3 fixes and container updates	2025-06-04T21:17:49+00:00	2025-11-29T06:54:58+00:00
rhsa-2025:8510	Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.7 security and bug fix update	2025-06-04T12:26:00+00:00	2025-11-29T06:54:58+00:00
rhsa-2025:8479	Red Hat Security Advisory: RHODF-4.16-RHEL-9 security update	2025-06-04T01:58:44+00:00	2025-11-29T06:54:58+00:00
rhsa-2025:8392	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.9.9 bug fixes and container updates	2025-06-04T00:41:53+00:00	2025-11-29T06:54:57+00:00
rhsa-2025:8390	Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.4.9 security updates and bug fixes	2025-06-02T17:37:18+00:00	2025-11-29T06:54:55+00:00
rhsa-2025:8384	Red Hat Security Advisory: Red Hat multicluster global hub 1.4.1 bug fixes and container updates	2025-06-02T14:56:45+00:00	2025-11-29T06:54:54+00:00
rhsa-2025:8299	Red Hat Security Advisory: OpenShift Container Platform 4.15.52 bug fix and security update	2025-06-04T12:16:12+00:00	2025-11-29T06:54:54+00:00
rhsa-2025:8284	Red Hat Security Advisory: OpenShift Container Platform 4.18.16 bug fix and security update	2025-06-03T10:16:45+00:00	2025-11-29T06:54:53+00:00
rhsa-2025:8280	Red Hat Security Advisory: OpenShift Container Platform 4.17.32 bug fix and security update	2025-06-04T09:19:59+00:00	2025-11-29T06:54:52+00:00
rhsa-2025:8274	Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.14.4 security update	2025-05-28T20:39:49+00:00	2025-11-29T06:54:52+00:00

ID	Description	Published	Updated
msrc_cve-2025-7425	Libxslt: heap use-after-free in libxslt caused by atype corruption in xmlattrptr	2025-07-02T00:00:00.000Z	2025-12-26T01:01:24.000Z
msrc_cve-2025-3001	PyTorch torch.lstm_cell memory corruption	2025-03-02T00:00:00.000Z	2025-12-25T01:38:09.000Z
msrc_cve-2025-68615	Net-SNMP snmptrapd crash	2025-12-02T00:00:00.000Z	2025-12-25T01:38:02.000Z
msrc_cve-2025-68476	KEDA has Arbitrary File Read via Insufficient Path Validation in HashiCorp Vault Service Account Credential	2025-12-02T00:00:00.000Z	2025-12-25T01:37:57.000Z
msrc_cve-2023-54061	x86: fix clear_user_rep_good() exception handling annotation	2025-12-02T00:00:00.000Z	2025-12-25T01:06:07.000Z
msrc_cve-2025-68733	smack: fix bug: unprivileged task can create labels	2025-12-02T00:00:00.000Z	2025-12-25T01:06:01.000Z
msrc_cve-2025-68374	md: fix rcu protection in md_wakeup_thread	2025-12-02T00:00:00.000Z	2025-12-25T01:05:56.000Z
msrc_cve-2025-68724	crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id	2025-12-02T00:00:00.000Z	2025-12-25T01:05:51.000Z
msrc_cve-2025-68380	wifi: ath11k: fix peer HE MCS assignment	2025-12-02T00:00:00.000Z	2025-12-25T01:05:45.000Z
msrc_cve-2025-68376	coresight: ETR: Fix ETR buffer use-after-free issue	2025-12-02T00:00:00.000Z	2025-12-25T01:05:40.000Z
msrc_cve-2025-68378	bpf: Fix stackmap overflow check in __bpf_get_stackid()	2025-12-02T00:00:00.000Z	2025-12-25T01:05:35.000Z
msrc_cve-2025-68727	ntfs3: Fix uninit buffer allocated by __getname()	2025-12-02T00:00:00.000Z	2025-12-25T01:05:30.000Z
msrc_cve-2025-68364	ocfs2: relax BUG() to ocfs2_error() in __ocfs2_move_extent()	2025-12-02T00:00:00.000Z	2025-12-25T01:05:24.000Z
msrc_cve-2025-68346	ALSA: dice: fix buffer overflow in detect_stream_formats()	2025-12-02T00:00:00.000Z	2025-12-25T01:05:19.000Z
msrc_cve-2025-68379	RDMA/rxe: Fix null deref on srq->rq.queue after resize failure	2025-12-02T00:00:00.000Z	2025-12-25T01:05:14.000Z
msrc_cve-2025-68363	bpf: Check skb->transport_header is set in bpf_skb_check_mtu	2025-12-02T00:00:00.000Z	2025-12-25T01:05:08.000Z
msrc_cve-2025-68740	ima: Handle error code returned by ima_filter_rule_match()	2025-12-02T00:00:00.000Z	2025-12-25T01:05:03.000Z
msrc_cve-2023-54082	af_unix: Fix null-ptr-deref in unix_stream_sendpage().	2025-12-02T00:00:00.000Z	2025-12-25T01:04:58.000Z
msrc_cve-2025-68358	btrfs: fix racy bitfield write in btrfs_clear_space_info_full()	2025-12-02T00:00:00.000Z	2025-12-25T01:04:52.000Z
msrc_cve-2025-68372	nbd: defer config put in recv_work	2025-12-02T00:00:00.000Z	2025-12-25T01:04:47.000Z
msrc_cve-2025-68728	ntfs3: fix uninit memory after failed mi_read in mi_format_new	2025-12-02T00:00:00.000Z	2025-12-25T01:04:42.000Z
msrc_cve-2025-68725	bpf: Do not let BPF test infra emit invalid GSO types to stack	2025-12-02T00:00:00.000Z	2025-12-25T01:04:37.000Z
msrc_cve-2025-68365	fs/ntfs3: Initialize allocated memory before use	2025-12-02T00:00:00.000Z	2025-12-25T01:04:31.000Z
msrc_cve-2025-68367	macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse	2025-12-02T00:00:00.000Z	2025-12-25T01:04:26.000Z
msrc_cve-2025-68742	bpf: Fix invalid prog->stats access when update_effective_progs fails	2025-12-02T00:00:00.000Z	2025-12-25T01:04:21.000Z
msrc_cve-2025-68356	gfs2: Prevent recursive memory reclaim	2025-12-02T00:00:00.000Z	2025-12-25T01:04:16.000Z
msrc_cve-2025-68746	spi: tegra210-quad: Fix timeout handling	2025-12-02T00:00:00.000Z	2025-12-25T01:04:11.000Z
msrc_cve-2025-68344	ALSA: wavefront: Fix integer overflow in sample size validation	2025-12-02T00:00:00.000Z	2025-12-25T01:04:05.000Z
msrc_cve-2025-68347	ALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events	2025-12-02T00:00:00.000Z	2025-12-25T01:04:00.000Z
msrc_cve-2025-68744	bpf: Free special fields when update [lru_,]percpu_hash maps	2025-12-02T00:00:00.000Z	2025-12-25T01:03:54.000Z

ID	Description	Published	Updated
icsa-25-177-01	Mitsubishi Electric Air Conditioning Systems (Update B)	2025-06-26T06:00:00.000000Z	2025-12-23T07:00:00.000000Z
icsa-25-352-02	Schneider Electric EcoStruxure Foxboro DCS Advisor	2025-12-09T08:00:00.000000Z	2025-12-18T18:23:06.311869Z
icsa-25-352-05	Siemens Interniche IP-Stack	2025-12-09T00:00:00.000000Z	2025-12-18T18:13:59.515670Z
icsa-25-352-08	Axis Communications Camera Station Pro, Camera Station, and Device Manager	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-07	Rockwell Automation Micro820, Micro850, Micro870	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-06	Advantech WebAccess/SCADA	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-04	Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electrics Products	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-03	National Instruments LabView	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-01	Inductive Automation Ignition	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-24-291-03	Mitsubishi Electric CNC Series (Update C)	2024-10-17T06:00:00.000000Z	2025-12-18T07:00:00.000000Z
va-25-352-01	BullWall Ransomware Containment and Server Intrusion Protection multiple vulnerabilities	2025-12-18T00:00:00Z	2025-12-18T00:00:00Z
icsa-25-350-04	Mitsubishi Electric GT Designer3	2025-12-16T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-350-03	Hitachi Energy AFS, AFR and AFF Series	2025-12-16T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-350-02	Johnson Controls PowerG, IQPanel and IQHub	2025-12-16T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-350-01	Güralp Systems Fortimus Series, Minimus Series, and Certimus Series	2025-12-16T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-308-01	Fuji Electric Monitouch V-SFT-6 (Update A)	2025-11-04T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-224-02	Johnson Controls iSTAR Ultra, iSTAR Ultra SE, iSTAR Ultra G2, iSTAR Ultra G2 SE, iSTAR Edge G2 (Update A)	2025-08-12T06:00:00.000000Z	2025-12-16T07:00:00.000000Z
va-25-345-01	CISA Software Acquisition Guide Supplier Response Web Tool XSS	2025-12-12T20:27:47Z	2025-12-12T20:27:47Z
icsma-25-345-02	Varex Imaging Panoramic Dental Imaging Software	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsma-25-345-01	Grassroots DICOM (GDCM)	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsa-25-345-10	OpenPLC_V3	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsa-25-345-03	AzeoTech DAQFactory	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsa-25-345-02	Johnson Controls iSTAR Ultra	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsa-25-345-01	Johnson Controls iSTAR	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
va-25-343-01	Windscribe for Linux 'changeMTU' local privilege escalation	2025-12-10T16:46:41Z	2025-12-10T16:46:41Z
icsa-25-343-01	Universal Boot Loader (U-Boot)	2025-12-09T07:00:00.000000Z	2025-12-09T07:00:00.000000Z
icsa-25-343-03	Multiple India-based CCTV Cameras**	2025-12-09T05:00:00.000000Z	2025-12-09T05:00:00.000000Z
icsa-25-345-09	Siemens Gridscale X Prepay	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-345-08	Siemens Energy Services	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-345-07	Siemens Building X - Security Manager Edge Controller	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-react-flight-tyw32ddb	Remote Code Execution Vulnerability in React and Next.js Frameworks: December 2025	2025-12-04T16:00:00+00:00	2025-12-17T22:37:17+00:00
cisco-sa-sma-attack-n9bf4	Reports About Cyberattacks Against Cisco Secure Email Gateway And Cisco Secure Email and Web Manager	2025-12-17T16:00:00+00:00	2025-12-17T16:00:00+00:00
cisco-sa-ise-multiple-vulns-o9beswjh	Cisco Identity Services Engine Reflected Cross-Site Scripting and Information Disclosure Vulnerabilities	2025-11-05T16:00:00+00:00	2025-12-04T14:23:54+00:00
cisco-sa-cc-mult-vuln-gk4tfxsn	Multiple Cisco Contact Center Products Vulnerabilities	2025-11-05T16:00:00+00:00	2025-11-18T14:49:09+00:00
cisco-sa-privesc-catc-ryjreelu	Cisco Catalyst Center Privilege Escalation Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-dnac-xss-wextvz59	Cisco Catalyst Center Cross-Site Scripting Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-dnac-ci-zwlqvswt	Cisco Catalyst Center REST API Command Injection Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-catc-priv-esc-vs8eecux	Cisco Catalyst Center Virtual Appliance Privilege Escalation Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-catc-open-redirect-3w5bk3je	Cisco Catalyst Center Virtual Appliance HTTP Open Redirect Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-cc-unauth-rce-qen8h7mq	Cisco Unified Contact Center Express Remote Code Execution Vulnerabilities	2025-11-05T16:00:00+00:00	2025-11-13T12:48:42+00:00
cisco-sa-asaftd-webvpn-yrootuw	Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Unauthorized Access Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:55+00:00
cisco-sa-asaftd-webvpn-z5xp8eub	Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:54+00:00
cisco-sa-http-code-exec-wmfp3h3o	Cisco Secure Firewall Adaptive Security Appliance Software, Secure Firewall Threat Defense Software, IOS Software, IOS XE Software, and IOS XR Software Web Services Remote Code Execution Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:51+00:00
cisco-sa-ise-radsupress-dos-8yf3jthh	Cisco Identity Services Engine RADIUS Suppression Denial of Service Vulnerability	2025-11-05T16:00:00+00:00	2025-11-05T16:00:00+00:00
cisco-sa-broadworks-xss-o696ymra	Cisco BroadWorks CommPilot Application Software Cross-Site Scripting Vulnerability	2025-07-02T16:00:00+00:00	2025-10-21T15:13:31+00:00
cisco-sa-snort3-mime-vulns-ttl8pgvh	Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerabilities	2025-10-15T16:00:00+00:00	2025-10-15T16:00:00+00:00
cisco-sa-roomos-inf-disc-qggsbxam	Cisco TelePresence Collaboration Endpoint and RoomOS Software Information Disclosure Vulnerability	2025-10-15T16:00:00+00:00	2025-10-15T16:00:00+00:00
cisco-sa-phone-dos-fpyjlv7a	Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Software Vulnerabilities	2025-10-15T16:00:00+00:00	2025-10-15T16:00:00+00:00
cisco-sa-secboot-uqfd8avc	Cisco IOS XE Software Secure Boot Bypass Vulnerabilities	2025-09-24T16:00:00+00:00	2025-10-15T15:57:29+00:00
cisco-sa-snmp-x4lphte	Cisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerability	2025-09-24T16:00:00+00:00	2025-10-06T18:27:02+00:00
cisco-sa-ios-tacacs-hdb7thjw	Cisco IOS and IOS XE Software TACACS+ Authentication Bypass Vulnerability	2025-09-24T16:00:00+00:00	2025-10-01T16:39:50+00:00
cisco-sa-cv-xss-rwrakaj9	Cisco Cyber Vision Center Stored Cross-Site Scripting Vulnerabilities	2025-10-01T16:00:00+00:00	2025-10-01T16:00:00+00:00
cisco-sa-cucm-stored-xss-fnj66yly	Cisco Unified Communications Manager Stored Cross-Site Scripting Vulnerability	2025-10-01T16:00:00+00:00	2025-10-01T16:00:00+00:00
cisco-sa-cat9k-ptmd7bgy	Cisco IOS XE Software for Catalyst 9000 Series Switches Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-30T14:26:46+00:00
cisco-sa-ap-ipv6-gw-tuazpn9o	Cisco Access Point Software Intermittent IPv6 Gateway Change Vulnerability	2025-09-24T16:00:00+00:00	2025-09-26T16:35:51+00:00
cisco-sa-webui-xss-vwydgjou	Cisco IOS XE Software Web Authentication Reflected Cross-Site Scripting Vulnerability	2025-09-24T16:00:00+00:00	2025-09-26T16:35:50+00:00
cisco-sa-snmpwred-x3mjyf5m	Cisco IOS XE Software Simple Network Management Protocol Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-nbar-dos-lavwtmet	Cisco IOS XE Software Network-Based Application Recognition Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-iosxe-arg-inject-eyddbh4e	Cisco IOS XE Software CLI Argument Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-ios-xe-cmd-inject-rpjm8bgl	Cisco IOS XE Software HTTP API Command Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00

ID	Description	Published	Updated
sca-2025-0013	Vulnerabilities affecting SICK TLOC100-100	2025-10-27T14:00:00.000Z	2025-11-11T14:00:00.000Z
sca-2025-0014	CodeMeter vulnerablity affects SICK CODE-LOC and SICK LIDAR-LOC	2025-11-03T11:00:00.000Z	2025-11-03T14:00:00.000Z
sca-2025-0012	Sudo vulnerability affects SICK SID products	2025-10-27T11:00:00.000Z	2025-10-27T14:00:00.000Z
sca-2025-0011	Vulnerabilities affecting Endress+Hauser SSG-E210GC	2025-10-02T13:00:00.000Z	2025-10-02T13:00:00.000Z
sca-2025-0010	Multiple vulnerabilities in SICK Enterprise Analytics and SICK Logistic Analytics Products	2025-10-02T13:00:00.000Z	2025-10-02T13:00:00.000Z
sca-2025-0009	Vulnerabilities affecting SICK TDC-E210GC	2025-08-01T13:00:00.000Z	2025-08-01T13:00:00.000Z
sca-2025-0008	Multiple vulnerabilities in Endress+Hauser MEAC300-FNADE4	2025-07-03T13:00:00.000Z	2025-07-03T13:00:00.000Z
sca-2025-0007	Multiple vulnerabilities in SICK Field Analytics and SICK Media Server	2025-06-12T13:00:00.000Z	2025-06-12T13:00:00.000Z
sca-2025-0003	FreeRTOS Vulnerabilities have no impact on SICK Products	2025-02-28T00:00:00.000Z	2025-05-20T11:00:00.000Z
sca-2025-0006	Vulnerability affecting picoScan and multiScan	2025-04-28T13:00:00.000Z	2025-04-28T13:00:00.000Z
sca-2025-0005	Vulnerabilities in SICK Flexi Compact	2025-04-28T10:00:00.000Z	2025-04-28T10:00:00.000Z
sca-2025-0004	Critical vulnerabilities in SICK DL100-2xxxxxxx	2025-03-14T11:00:00.000Z	2025-03-14T11:00:00.000Z
sca-2025-0001	Multiple vulnerabilities in SICK MEAC300	2025-02-14T14:00:00.000Z	2025-02-21T14:00:00.000Z
sca-2025-0002	Vulnerability in SICK Lector8xx and SICK InspectorP8xx	2025-02-14T10:19:00.000Z	2025-02-14T10:19:00.000Z
sca-2024-0007	Vulnerability in SICK OLM	2024-12-31T00:00:00.000Z	2024-12-31T00:00:00.000Z
sca-2024-0006	Critical vulnerabilities in SICK InspectorP61x, InspectorP62x and TiM3xx	2024-12-06T00:00:00.000Z	2024-12-06T00:00:00.000Z
sca-2024-0005	Vulnerability in SICK Incoming Goods Suite	2024-11-19T00:00:00.000Z	2024-11-19T00:00:00.000Z
SCA-2024-0005	Vulnerability in SICK Incoming Goods Suite	2024-11-19T00:00:00.000Z	2024-11-19T00:00:00.000Z
sca-2024-0004	Third party vulnerabilities in SICK CDE-100	2024-11-07T12:00:00.000Z	2024-11-07T12:00:00.000Z
SCA-2024-0004	Third party vulnerabilities in SICK CDE-100	2024-11-07T12:00:00.000Z	2024-11-07T12:00:00.000Z
sca-2024-0003	Critical vulnerability in multiple SICK products	2024-10-17T13:00:00.000Z	2024-10-17T13:00:00.000Z
sca-2024-0002	Vulnerability in SICK MSC800	2024-09-11T23:00:00.000Z	2024-09-11T23:00:00.000Z
sca-2024-0001	Vulnerability in SICK Logistics Analytics Products and SICK Field Analytics	2024-01-29T00:00:00.000Z	2024-01-29T00:00:00.000Z
sca-2023-0011	Vulnerability in multiple SICK Flexi Soft Gateways	2023-10-23T11:00:00.000Z	2023-10-23T11:00:00.000Z
SCA-2023-0011	Vulnerability in multiple SICK Flexi Soft Gateways	2023-10-23T11:00:00.000Z	2023-10-23T11:00:00.000Z
sca-2023-0010	Vulnerabilities in SICK Application Processing Unit	2023-10-09T11:00:00.000Z	2023-10-09T11:00:00.000Z
SCA-2023-0010	Vulnerabilities in SICK Application Processing Unit	2023-10-09T11:00:00.000Z	2023-10-09T11:00:00.000Z
sca-2023-0008	Vulnerability in SICK SIM1012	2023-09-29T13:00:00.000Z	2023-09-29T13:00:00.000Z
SCA-2023-0008	Vulnerability in SICK SIM1012	2023-09-29T13:00:00.000Z	2023-09-29T13:00:00.000Z
sca-2023-0009	Vulnerability in Wibu-Systems CodeMeter Runtime affects multiple SICK products	2023-09-29T10:00:00.000Z	2023-09-29T10:00:00.000Z

ID	Description	Published	Updated
nn-2025:15-01	Path traversal in Import Arc data archive functionality in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:14-01	HTML injection in Asset List in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:13-01	Stored Cross-Site Scripting (XSS) in Reports in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:12-01	HTML injection in in Time Machine functionality in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:11-01	Stored Cross-Site Scripting (XSS) in Dashboards in Guardian/CMC before 25.4.0	2025-11-25T11:00:00.000Z	2025-11-26T11:00:00.000Z
nn-2025:9-01	Path traversal in Time Machine functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:8-01	Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:7-01	Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:6-01	Authenticated SQL Injection on Smart Polling functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:5-01	Incorrect authorization for CLI in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:4-01	Client-side path traversal in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:10-01	Authenticated SQL Injection on CLI functionality in Guardian/CMC before 25.3.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:3-01	Incorrect authorization for traces request/download in CMC before 25.1.0	2025-08-26T11:00:00.000Z	2025-08-26T11:00:00.000Z
nn-2025:2-01	Privilege escalation in Guardian/CMC before 24.6.0	2025-06-10T11:00:00.000Z	2025-06-10T11:00:00.000Z
nn-2025:1-01	Authenticated RCE in update functionality in Guardian/CMC before 24.6.0	2025-06-10T11:00:00.000Z	2025-06-10T11:00:00.000Z
nn-2024_2-01	Incorrect authorization for Reports configuration in Guardian/CMC before 24.2.0	2024-09-11T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2024_1-01	DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1	2024-04-10T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2024:2-01	Incorrect authorization for Reports configuration in Guardian/CMC before 24.2.0	2024-09-11T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2024:1-01	DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1	2024-04-10T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_9-01	Authenticated SQL Injection on Query functionality in Guardian/CMC before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_8-01	Session Fixation in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_7-01	DoS via SAML configuration in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_6-01	Partial DoS on Reports section due to null report name in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_4-01	Stored Cross-Site Scripting (XSS) in Threat Intelligence rules in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_3-01	Authenticated Blind SQL Injection on alerts count in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_2-01	Authenticated Blind SQL Injection on sorting in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_17-01	Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1	2024-04-10T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_15-01	Sensitive data exfiltration via unsafe permissions on Windows systems in Arc before v1.6.0	2024-05-15T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_12-01	Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0	2024-01-15T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_11-01	SQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2024-09-19T11:00:00.000Z

ID	Description	Published	Updated
oxdc-adv-2025-0001	OX Dovecot Pro Security Advisory OXDC-ADV-2025-0001	2025-10-31T00:00:00+00:00	2025-11-27T00:00:00+00:00
oxas-adv-2025-0003	OX App Suite Security Advisory OXAS-ADV-2025-0003	2025-09-24T00:00:00+02:00	2025-11-27T00:00:00+00:00
oxas-adv-2025-0002	OX App Suite Security Advisory OXAS-ADV-2025-0002	2025-08-12T00:00:00+02:00	2025-10-31T00:00:00+00:00
oxas-adv-2025-0001	OX App Suite Security Advisory OXAS-ADV-2025-0001	2025-01-27T00:00:00+01:00	2025-04-07T00:00:00+00:00
oxdc-adv-2024-0003	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0003	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
oxdc-adv-2024-0002	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0002	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
OXDC-ADV-2024-0003	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0003	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
OXDC-ADV-2024-0002	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0002	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
oxas-adv-2024-0005	OX App Suite Security Advisory OXAS-ADV-2024-0005	2024-07-08T00:00:00+02:00	2024-09-09T00:00:00+00:00
OXAS-ADV-2024-0005	OX App Suite Security Advisory OXAS-ADV-2024-0005	2024-07-08T00:00:00+02:00	2024-09-09T00:00:00+00:00
oxdc-adv-2024-0001	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0001	2024-09-02T00:00:00+02:00	2024-09-06T00:00:00+00:00
OXDC-ADV-2024-0001	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0001	2024-09-02T00:00:00+02:00	2024-09-06T00:00:00+00:00
oxas-adv-2024-0004	OX App Suite Security Advisory OXAS-ADV-2024-0004	2024-06-13T00:00:00+02:00	2024-08-19T00:00:00+00:00
oxas-adv-2024-0003	OX App Suite Security Advisory OXAS-ADV-2024-0003	2024-04-24T00:00:00+02:00	2024-08-19T00:00:00+00:00
OXAS-ADV-2024-0004	OX App Suite Security Advisory OXAS-ADV-2024-0004	2024-06-13T00:00:00+02:00	2024-08-19T00:00:00+00:00
OXAS-ADV-2024-0003	OX App Suite Security Advisory OXAS-ADV-2024-0003	2024-04-24T00:00:00+02:00	2024-08-19T00:00:00+00:00
oxas-adv-2024-0002	OX App Suite Security Advisory OXAS-ADV-2024-0002	2024-03-06T00:00:00+01:00	2024-05-06T00:00:00+00:00
OXAS-ADV-2024-0002	OX App Suite Security Advisory OXAS-ADV-2024-0002	2024-03-06T00:00:00+01:00	2024-05-06T00:00:00+00:00
oxas-adv-2024-0001	OX App Suite Security Advisory OXAS-ADV-2024-0001	2024-02-08T00:00:00+01:00	2024-04-25T00:00:00+00:00
OXAS-ADV-2024-0001	OX App Suite Security Advisory OXAS-ADV-2024-0001	2024-02-08T00:00:00+01:00	2024-04-25T00:00:00+00:00
oxas-adv-2023-0007	OX App Suite Security Advisory OXAS-ADV-2023-0007	2023-12-11T00:00:00+01:00	2024-02-16T00:00:00+00:00
OXAS-ADV-2023-0007	OX App Suite Security Advisory OXAS-ADV-2023-0007	2023-12-11T00:00:00+01:00	2024-02-16T00:00:00+00:00
oxas-adv-2023-0006	OX App Suite Security Advisory OXAS-ADV-2023-0006	2023-09-25T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0005	OX App Suite Security Advisory OXAS-ADV-2023-0005	2023-09-19T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0004	OX App Suite Security Advisory OXAS-ADV-2023-0004	2023-08-01T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0003	OX App Suite Security Advisory OXAS-ADV-2023-0003	2023-05-02T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0002	OX App Suite Security Advisory OXAS-ADV-2023-0002	2023-03-20T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0001	OX App Suite Security Advisory OXAS-ADV-2023-0001	2023-02-06T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2022-0002	OX App Suite Security Advisory OXAS-ADV-2022-0002	2022-11-02T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2022-0001	OX App Suite Security Advisory OXAS-ADV-2022-0001	2022-08-10T00:00:00+02:00	2024-01-22T00:00:00+00:00

ID	Description	Updated
var-202411-1650	D-LINK DI-8400 v16.07.26A1 was discovered to contain multiple remote command execution (R…	2024-11-29T23:10:19.240000Z
var-202411-1640	Linksys E3000 is a powerful dual-band Wireless-N router from Linksys, an American company…	2024-11-29T23:10:19.018000Z
var-202411-0543	A vulnerability has been identified in SIMATIC S7-PLCSIM V16 (All versions), SIMATIC S7-P…	2024-11-29T23:09:56.296000Z
var-201507-0645	D-Link is an internationally renowned provider of network equipment and solutions, includ…	2024-11-29T23:09:49.324000Z
var-201807-0341	ABB Panel Builder 800 all versions has an improper input validation vulnerability which m…	2024-11-29T23:09:47.475000Z
var-202411-1422	D-Link DI-8200 16.07.26A1 is vulnerable to remote command execution in the msp_info_htm f…	2024-11-29T23:09:36.483000Z
var-202411-1539	D-LINK DI-8003 v16.07.26A1 was discovered to contain a buffer overflow via the host_ip pa…	2024-11-29T23:08:33.376000Z
var-201103-0371	SAP Crystal Reports Server is a complete reporting solution for creating, managing, and d…	2024-11-29T23:08:28.292000Z
var-202410-3364	In TP-Link TL-WDR7660 v1.0, the guestRuleJsonToBin function handles the parameter string …	2024-11-29T23:07:43.747000Z
var-202411-1441	D-LINK DI-8003 v16.07.16A1 was discovered to contain a buffer overflow via the notify par…	2024-11-29T23:07:42.700000Z
var-201112-0173	The default configuration of the HP CM8060 Color MFP with Edgeline; Color LaserJet 3xxx, …	2024-11-29T23:07:06.630000Z
var-201011-0225	Multiple stack-based buffer overflows in agent.exe in Setup Manager in Cisco Intelligent …	2024-11-29T23:04:25.952000Z
var-202407-0046	mySCADA myPRO uses a hard-coded password which could allow an attacker to remotely exec…	2024-11-29T23:04:10.837000Z
var-202410-2013	In mm_GetMobileIdIndexForNsUpdate of mm_GmmPduCodec.c, there is a possible out of bounds …	2024-11-29T23:04:10.282000Z
var-201105-0156	Multiple buffer overflows in the ISSymbol ActiveX control in ISSymbol.ocx 61.6.0.0 and 30…	2024-11-29T22:59:31.553000Z
var-200702-0378	Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 …	2024-11-29T22:58:37.276000Z
var-201112-0297	Multiple cross-site scripting (XSS) vulnerabilities in the Virus Scan Interface in SAP Ne…	2024-11-29T22:57:57.328000Z
var-201407-0233	Multiple stack-based buffer overflows in Advantech WebAccess before 7.2 allow remote atta…	2024-11-29T22:56:23.397000Z
var-201809-0087	WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple stack-based buffer overflow vul…	2024-11-29T22:56:15.896000Z
var-202411-1458	Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink…	2024-11-29T22:56:03.034000Z
var-201109-0089	Multiple unspecified vulnerabilities in Cisco Unified Service Monitor before 8.6, as used…	2024-11-29T22:54:40.239000Z
var-201908-0863	Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain a USE…	2024-11-29T22:54:30.971000Z
var-201402-0027	The process_ra function in the router advertisement daemon (radvd) before 1.8.2 allows re…	2024-11-29T22:51:33.128000Z
var-201402-0028	The process_rs function in the router advertisement daemon (radvd) before 1.8.2, when Uni…	2024-11-29T22:51:32.785000Z
var-201402-0026	Buffer overflow in the process_ra function in the router advertisement daemon (radvd) bef…	2024-11-29T22:51:32.731000Z
var-201803-1810	A Stack-based Buffer Overflow issue was discovered in Delta Electronics Delta Industrial …	2024-11-29T22:51:22.051000Z
var-201810-0396	Advantech WebAccess 8.3.1 and earlier has several stack-based buffer overflow vulnerabili…	2024-11-29T22:51:21.315000Z
var-201906-1029	In WebAccess/SCADA Versions 8.3.5 and prior, multiple untrusted pointer dereference vulne…	2024-11-29T22:51:20.239000Z
var-201702-0423	An issue was discovered in Delta Electronics WPLSoft, Versions prior to V2.42.11, ISPSoft…	2024-11-29T22:49:47.108000Z
var-201801-0151	A Stack-based Buffer Overflow issue was discovered in Advantech WebAccess versions prior …	2024-11-29T22:49:45.101000Z

ID	Description	Published	Updated
jvndb-2025-022878	Media Player MP-01 vulnerable to Missing Authentication for Critical Function	2025-12-24T11:10+09:00	2025-12-24T11:10+09:00
jvndb-2025-019621	EPSON WebConfig / Epson Web Control for SEIKO EPSON Projector Products do not restrict excessive authentication attempts	2025-11-21T15:31+09:00	2025-12-24T10:54+09:00
jvndb-2025-014967	Multiple vulnerabilities in multiple Keyence products	2025-10-03T11:19+09:00	2025-12-23T14:36+09:00
jvndb-2025-000117	SEIKO EPSON printer Web Config vulnerable to stack-based buffer overflow	2025-12-16T15:31+09:00	2025-12-23T11:57+09:00
jvndb-2025-022400	Ruijie Networks AP180 Series vulnerable to OS command injection	2025-12-19T12:33+09:00	2025-12-19T12:33+09:00
jvndb-2025-000118	GROWI vulnerable to cross-site request forgery	2025-12-17T13:04+09:00	2025-12-17T13:04+09:00
jvndb-2025-022062	Multiple vulnerabilities in CHOCO TEI WATCHER mini	2025-12-17T11:28+09:00	2025-12-17T11:28+09:00
jvndb-2025-000115	QND vulnerable to privilege escalation	2025-12-11T14:33+09:00	2025-12-11T14:33+09:00
jvndb-2025-000113	Multiple vulnerabilities in GroupSession	2025-12-08T17:48+09:00	2025-12-11T11:30+09:00
jvndb-2025-000091	Multiple I-O DATA NAS management applications register Windows services with unquoted file paths	2025-10-22T15:04+09:00	2025-12-10T16:20+09:00
jvndb-2021-000081	Multiple vulnerabilities in Sharp NEC Display Solutions' public displays	2021-09-17T15:13+09:00	2025-12-10T10:24+09:00
jvndb-2025-021305	Android App "Brother iPrint&Scan" improper use of an external cache directory	2025-12-09T17:25+09:00	2025-12-09T17:25+09:00
jvndb-2025-000114	ELECOM Clone for Windows registers a Windows service with an unquoted file path	2025-12-09T17:16+09:00	2025-12-09T17:16+09:00
jvndb-2025-000116	GS Yuasa FULLBACK Manager Pro registers Windows services with unquoted file paths	2025-12-08T14:06+09:00	2025-12-08T14:06+09:00
jvndb-2025-000094	Multiple vulnerabilities in ABB Terra AC Wallbox	2025-12-05T14:12+09:00	2025-12-05T14:12+09:00
jvndb-2025-000112	Installer of INZONE Hub may insecurely load Dynamic Link Libraries	2025-11-28T13:36+09:00	2025-11-28T13:36+09:00
jvndb-2025-000111	SwitchBot Smart Video Doorbell vulnerable to active debug code	2025-11-26T14:35+09:00	2025-11-26T14:35+09:00
jvndb-2025-000110	Multiple vulnerabilities in Security Point (Windows) of MaLion	2025-11-25T17:17+09:00	2025-11-25T17:17+09:00
jvndb-2025-000109	Multiple vulnerabilities in SNC-CX600W	2025-11-25T14:59+09:00	2025-11-25T14:59+09:00
jvndb-2025-000108	"FOD" App uses hard-coded cryptographic keys	2025-11-25T14:15+09:00	2025-11-25T14:15+09:00
jvndb-2025-000106	Multiple vulnerabilities in LogStare Collector	2025-11-21T16:27+09:00	2025-11-21T16:27+09:00
jvndb-2025-000107	Installer of RakurakuMusen Start EX for Windows may insecurely load Dynamic Link Libraries	2025-11-19T16:22+09:00	2025-11-19T16:22+09:00
jvndb-2025-000097	"Dejira" App for iOS vulnerable to improper server certificate verification	2025-11-17T14:09+09:00	2025-11-17T14:09+09:00
jvndb-2025-000105	NCP-HG100 vulnerable to OS command injection	2025-11-14T15:26+09:00	2025-11-14T15:26+09:00
jvndb-2025-000104	Multiple vulnerabilities in GNU Libmicrohttpd	2025-11-10T15:07+09:00	2025-11-10T15:07+09:00
jvndb-2025-000103	Use of password hash with insufficient computational effort vulnerability in BUFFALO Wi-Fi router "WSR-1800AX4 series"	2025-11-07T15:39+09:00	2025-11-07T15:39+09:00
jvndb-2025-000102	CLUSTERPRO X and EXPRESSCLUSTER X vulnerable to OS command injection	2025-11-07T14:55+09:00	2025-11-07T14:55+09:00
jvndb-2025-000101	GROWI vulnerable to stored cross-site scripting	2025-11-06T13:45+09:00	2025-11-06T13:45+09:00
jvndb-2024-013260	Multiple vulnerabilities in Edgecross Basic Software for Windows	2024-11-22T10:59+09:00	2025-11-04T16:41+09:00
jvndb-2025-017972	Multiple vulnerabilities in Century Systems FutureNet MA and IP-K series	2025-11-04T16:37+09:00	2025-11-04T16:37+09:00

ID	Description	Updated
ts-2025-008	TS-2025-008	2025-11-19T00:00
ts-2025-007	TS-2025-007	2025-11-07T00:00
ts-2025-006	TS-2025-006	2025-10-28T00:00
ts-2025-005	TS-2025-005	2025-08-07T00:00
ts-2025-004	TS-2025-004	2025-05-27T00:00
ts-2025-003	TS-2025-003	2025-05-21T00:00
ts-2025-002	TS-2025-002	2025-05-15T00:00
ts-2025-001	TS-2025-001	2025-03-07T00:00
ts-2024-013	TS-2024-013	2024-12-04T00:00
ts-2024-012	TS-2024-012	2024-10-02T00:00
ts-2024-011	TS-2024-011	2024-07-22T00:00
ts-2024-010	TS-2024-010	2024-07-19T00:00
ts-2024-009	TS-2024-009	2024-06-27T00:00
ts-2024-008	TS-2024-008	2024-06-14T00:00
ts-2024-007	TS-2024-007	2024-06-12T00:00
ts-2024-006	TS-2024-006	2024-05-22T00:00
ts-2024-005	TS-2024-005	2024-05-08T00:00
ts-2024-004	TS-2024-004	2024-05-06T00:00
ts-2024-003	TS-2024-003	2024-04-23T00:00
ts-2024-002	TS-2024-002	2024-01-30T00:00
ts-2024-001	TS-2024-001	2024-01-08T00:00
ts-2023-009	TS-2023-009	2023-12-22T00:00
ts-2023-008	TS-2023-008	2023-11-01T00:00
ts-2023-007	TS-2023-007	2023-10-26T00:00
ts-2023-006	TS-2023-006	2023-08-22T00:00
ts-2023-005	TS-2023-005	2023-04-28T00:00
ts-2023-004	TS-2023-004	2023-04-04T00:00
ts-2023-003	TS-2023-003	2023-03-22T00:00
ts-2023-002	TS-2023-002	2023-01-24T00:00
ts-2023-001	TS-2023-001	2023-01-17T00:00

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated
gcve-1337-2025-00000000000000000000000000000000000000000000000001011011111110011111111110000000000000000000000000000000000000000000000000000000010	7.3 (v3.1)	Unitree Multiple Robotic Products Command Injection	Unitree	Go2	2025-09-26T06:53:49.585Z	2025-09-26T15:16:57.586Z
gcve-1337-2025-00000000000000000000000000000000000000000000000001011111011111010111111001000000000000000000000000000000000000000000000000000000001	4.3 (v3.1)	Unauthenticated leak of sensitive information affectin…	Brother Industries, Ltd	HL-L8260CDN	2025-08-12T15:23:00.577Z	2025-08-15T05:53:23.017Z