Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-0692	7.5 (3.1)	BlueSnap Payment Gateway for WooCommerce <= 3.3.0 - Mi…	bluesnap	BlueSnap Payment Gateway for WooCommerce	2026-02-14T04:35:43.208Z	2026-02-14T04:35:43.208Z
CVE-2026-1983	4.3 (3.1)	SEATT: Simple Event Attendance <= 1.5.0 - Cross-Site R…	sourcez	SEATT: Simple Event Attendance	2026-02-14T04:35:42.467Z	2026-02-14T04:35:42.467Z
CVE-2026-1912	6.4 (3.1)	Citations tools <= 0.3.2 - Authenticated (Contributor+…	ulaulaman	Citations tools	2026-02-14T04:35:42.851Z	2026-02-14T04:35:42.851Z
CVE-2026-1164	6.1 (3.1)	Easy Voice Mail <= 1.2.5 - Unauthenticated Stored Cros…	phoenixstudiodz	Easy Voice Mail	2026-02-14T04:35:42.022Z	2026-02-14T04:35:42.022Z
CVE-2026-1904	6.4 (3.1)	Simple Wp colorfull Accordion <= 1.0 - Authenticated (…	nayon46	Simple Wp colorfull Accordion	2026-02-14T04:35:41.605Z	2026-02-14T04:35:41.605Z
CVE-2026-1754	6.1 (3.1)	personal-authors-category <= 0.3 - Reflected Cross-Sit…	alexeyknyazev	personal-authors-category	2026-02-14T04:35:41.228Z	2026-02-14T04:35:41.228Z
CVE-2026-2144	8.1 (3.1)	Magic Login Mail or QR Code <= 2.05 - Unauthenticated …	katsushi-kawamori	Magic Login Mail or QR Code	2026-02-14T04:35:40.772Z	2026-02-14T04:35:40.772Z
CVE-2026-2027	4.4 (3.1)	AMP Enhancer <= 1.0.49 - Authenticated (Administrator+…	ampenhancer	AMP Enhancer – Compatibility Layer for Official AMP Plugin	2026-02-14T04:35:39.847Z	2026-02-14T04:35:39.847Z
CVE-2025-14608	5.3 (3.1)	WP Last Modified Info <= 1.9.5 - Insecure Direct Objec…	infosatech	WP Last Modified Info	2026-02-14T03:25:28.248Z	2026-02-14T03:25:28.248Z
CVE-2025-14067	5.3 (3.1)	Easy Form Builder <= 3.9.3 - Missing Authorization to …	hassantafreshi	Easy Form Builder by WhiteStudio — Drag & Drop Form Builder	2026-02-14T03:25:27.883Z	2026-02-14T03:25:27.883Z
CVE-2025-13973	5.3 (3.1)	StickEasy Protected Contact Form <= 1.0.1 - Unauthenti…	kasuga16	StickEasy Protected Contact Form	2026-02-14T03:25:27.497Z	2026-02-14T03:25:27.497Z
CVE-2025-13681	4.9 (3.1)	BFG Tools – Extension Zipper <= 1.0.7 - Authenticated …	thebaldfatguy	BFG Tools – Extension Zipper	2026-02-14T03:25:26.938Z	2026-02-14T03:25:26.938Z
CVE-2026-24853	8.1 (3.1)	Caido has an insufficient patch for DNS rebind leading…	caido	caido	2026-02-13T22:19:47.142Z	2026-02-13T22:19:47.142Z
CVE-2026-26273	9.8 (3.0)	Known affected by Account Takeover via Password Reset …	idno	known	2026-02-13T21:45:41.610Z	2026-02-13T21:45:41.610Z
CVE-2026-1841	7.2 (3.1)	PixelYourSite <= 11.2.0 - Unauthenticated Stored Cross…	pixelyoursite	PixelYourSite – Your smart PIXEL (TAG) & API Manager	2026-02-13T21:23:05.247Z	2026-02-13T21:23:05.247Z
CVE-2026-1844	7.2 (3.1)	PixelYourSite PRO <= 12.4.0.2 - Unauthenticated Stored…	pixelyoursite	PixelYourSite Pro – Your smart PIXEL (TAG) Manager	2026-02-13T21:23:04.880Z	2026-02-13T21:23:04.880Z
CVE-2025-15157	8.8 (3.1)	Starfish Review Generation & Marketing for WordPress <…	starfishwp	Starfish Review Generation & Marketing for WordPress	2026-02-13T21:23:04.343Z	2026-02-13T21:23:04.343Z
CVE-2026-26334	8.5 (4.0)	Calero VeraSMART < 2026 R1 Hardcoded Static AES Keys A…	Calero	VeraSMART	2026-02-13T20:53:18.909Z	2026-02-13T21:23:26.220Z
CVE-2026-26333	10 (4.0)	Calero VeraSMART < 2022 R1 .NET Remoting Arbitrary Fil…	Calero	VeraSMART	2026-02-13T20:51:57.479Z	2026-02-13T21:25:25.994Z
CVE-2026-26335	9.3 (4.0)	Calero VeraSMART < 2022 R1 Static IIS Machine Keys Ena…	Calero	VeraSMART	2026-02-13T20:51:26.374Z	2026-02-13T21:27:16.720Z
CVE-2026-26269	5.4 (3.1)	Vim has a Netbeans specialKeys Stack Buffer Overflow	vim	vim	2026-02-13T19:18:41.662Z	2026-02-13T21:11:26.275Z
CVE-2026-26208	7.8 (3.1)	ADB Explorer Vulnerable to Remote Code Execution via I…	Alex4SSB	ADB-Explorer	2026-02-13T18:48:56.398Z	2026-02-13T19:21:56.476Z
CVE-2026-26190	9.8 (3.1)	Milvus Allows Unauthenticated Access to Restful API on…	milvus-io	milvus	2026-02-13T18:44:33.465Z	2026-02-13T19:37:40.553Z
CVE-2026-26187	8.1 (3.1)	lakeFS vulnerable to path traversal in local block ada…	treeverse	lakeFS	2026-02-13T18:34:10.937Z	2026-02-13T19:53:32.197Z
CVE-2026-25991	7.7 (3.1)	Tandoor Recipes affected by Blind SSRF with Internal N…	TandoorRecipes	recipes	2026-02-13T18:29:10.900Z	2026-02-13T19:58:00.752Z
CVE-2026-2441	8.8 (3.1)	Use after free in CSS in Google Chrome prior to 1…	Google	Chrome	2026-02-13T18:27:48.355Z	2026-02-14T04:55:25.729Z
CVE-2026-25964	4.9 (3.1)	Tandoor Recipes Affected by Authenticated Local File D…	TandoorRecipes	recipes	2026-02-13T18:27:08.973Z	2026-02-13T20:01:40.545Z
CVE-2026-26264	7.8 (4.0)	BACnet Stack WriteProperty decoding length underflow l…	bacnet-stack	bacnet-stack	2026-02-13T18:14:30.232Z	2026-02-13T18:50:30.367Z
CVE-2026-21878	7.5 (3.1)	BACnet Stack Improperly Limits Pathnames to a Restrict…	bacnet-stack	bacnet-stack	2026-02-13T18:10:26.325Z	2026-02-13T18:53:59.648Z
CVE-2026-21870	5.5 (3.1)	The BACnet Protocol Stack library has an Off-by-one St…	bacnet-stack	bacnet-stack	2026-02-13T17:58:37.205Z	2026-02-13T18:19:36.183Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-2144	8.1 (3.1)	Magic Login Mail or QR Code <= 2.05 - Unauthenticated …	katsushi-kawamori	Magic Login Mail or QR Code	2026-02-14T04:35:40.772Z	2026-02-14T04:35:40.772Z
CVE-2026-2027	4.4 (3.1)	AMP Enhancer <= 1.0.49 - Authenticated (Administrator+…	ampenhancer	AMP Enhancer – Compatibility Layer for Official AMP Plugin	2026-02-14T04:35:39.847Z	2026-02-14T04:35:39.847Z
CVE-2026-1983	4.3 (3.1)	SEATT: Simple Event Attendance <= 1.5.0 - Cross-Site R…	sourcez	SEATT: Simple Event Attendance	2026-02-14T04:35:42.467Z	2026-02-14T04:35:42.467Z
CVE-2026-1912	6.4 (3.1)	Citations tools <= 0.3.2 - Authenticated (Contributor+…	ulaulaman	Citations tools	2026-02-14T04:35:42.851Z	2026-02-14T04:35:42.851Z
CVE-2026-1904	6.4 (3.1)	Simple Wp colorfull Accordion <= 1.0 - Authenticated (…	nayon46	Simple Wp colorfull Accordion	2026-02-14T04:35:41.605Z	2026-02-14T04:35:41.605Z
CVE-2026-1754	6.1 (3.1)	personal-authors-category <= 0.3 - Reflected Cross-Sit…	alexeyknyazev	personal-authors-category	2026-02-14T04:35:41.228Z	2026-02-14T04:35:41.228Z
CVE-2026-1164	6.1 (3.1)	Easy Voice Mail <= 1.2.5 - Unauthenticated Stored Cros…	phoenixstudiodz	Easy Voice Mail	2026-02-14T04:35:42.022Z	2026-02-14T04:35:42.022Z
CVE-2026-0692	7.5 (3.1)	BlueSnap Payment Gateway for WooCommerce <= 3.3.0 - Mi…	bluesnap	BlueSnap Payment Gateway for WooCommerce	2026-02-14T04:35:43.208Z	2026-02-14T04:35:43.208Z
CVE-2026-26303	N/A	Not used	N/A	N/A		2026-02-14T03:55:05.907Z
CVE-2026-26302	N/A	Not used	N/A	N/A		2026-02-14T03:55:06.462Z
CVE-2026-26301	N/A	Not used	N/A	N/A		2026-02-14T03:55:06.945Z
CVE-2026-26300	N/A	Not used	N/A	N/A		2026-02-14T03:55:07.406Z
CVE-2026-26299	N/A	Not used	N/A	N/A		2026-02-14T03:55:07.938Z
CVE-2026-26298	N/A	Not used	N/A	N/A		2026-02-14T03:55:08.453Z
CVE-2026-26297	N/A	Not used	N/A	N/A		2026-02-14T03:55:08.914Z
CVE-2026-26296	N/A	Not used	N/A	N/A		2026-02-14T03:55:09.395Z
CVE-2026-26295	N/A	Not used	N/A	N/A		2026-02-14T03:55:09.951Z
CVE-2025-14608	5.3 (3.1)	WP Last Modified Info <= 1.9.5 - Insecure Direct Objec…	infosatech	WP Last Modified Info	2026-02-14T03:25:28.248Z	2026-02-14T03:25:28.248Z
CVE-2025-14067	5.3 (3.1)	Easy Form Builder <= 3.9.3 - Missing Authorization to …	hassantafreshi	Easy Form Builder by WhiteStudio — Drag & Drop Form Builder	2026-02-14T03:25:27.883Z	2026-02-14T03:25:27.883Z
CVE-2025-13973	5.3 (3.1)	StickEasy Protected Contact Form <= 1.0.1 - Unauthenti…	kasuga16	StickEasy Protected Contact Form	2026-02-14T03:25:27.497Z	2026-02-14T03:25:27.497Z
CVE-2025-13681	4.9 (3.1)	BFG Tools – Extension Zipper <= 1.0.7 - Authenticated …	thebaldfatguy	BFG Tools – Extension Zipper	2026-02-14T03:25:26.938Z	2026-02-14T03:25:26.938Z
CVE-2026-24853	8.1 (3.1)	Caido has an insufficient patch for DNS rebind leading…	caido	caido	2026-02-13T22:19:47.142Z	2026-02-13T22:19:47.142Z
CVE-2026-26273	9.8 (3.0)	Known affected by Account Takeover via Password Reset …	idno	known	2026-02-13T21:45:41.610Z	2026-02-13T21:45:41.610Z
CVE-2026-1844	7.2 (3.1)	PixelYourSite PRO <= 12.4.0.2 - Unauthenticated Stored…	pixelyoursite	PixelYourSite Pro – Your smart PIXEL (TAG) Manager	2026-02-13T21:23:04.880Z	2026-02-13T21:23:04.880Z
CVE-2026-1841	7.2 (3.1)	PixelYourSite <= 11.2.0 - Unauthenticated Stored Cross…	pixelyoursite	PixelYourSite – Your smart PIXEL (TAG) & API Manager	2026-02-13T21:23:05.247Z	2026-02-13T21:23:05.247Z
CVE-2025-70957	N/A	A Denial of Service (DoS) vulnerability was disco…	n/a	n/a	2026-02-13T00:00:00.000Z	2026-02-13T21:38:42.391Z
CVE-2025-70956	N/A	A State Pollution vulnerability was discovered in…	n/a	n/a	2026-02-13T00:00:00.000Z	2026-02-13T21:15:43.685Z
CVE-2025-70955	N/A	A Stack Overflow vulnerability was discovered in …	n/a	n/a	2026-02-13T00:00:00.000Z	2026-02-13T21:36:34.624Z
CVE-2025-70954	N/A	A Null Pointer Dereference vulnerability exists i…	n/a	n/a	2026-02-13T00:00:00.000Z	2026-02-13T21:22:03.090Z
CVE-2025-70866	N/A	LavaLite CMS 10.1.0 is vulnerable to Incorrect Ac…	n/a	n/a	2026-02-13T00:00:00.000Z	2026-02-13T21:27:59.032Z

ID	Description	Published	Updated
fkie_cve-2025-67825	An issue was discovered in Nitro PDF Pro for Windows before 14.42.0.34. In certain cases, it displa…	2026-01-08T18:15:58.957	2026-02-02T17:16:16.047
fkie_cve-2026-22522	Missing Authorization vulnerability in Munir Kamal Block Slider allows Exploiting Incorrectly Confi…	2026-01-08T17:15:52.240	2026-01-08T18:08:18.457
fkie_cve-2026-22521	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2026-01-08T17:15:52.100	2026-01-08T18:08:18.457
fkie_cve-2026-22519	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-01-08T17:15:51.960	2026-01-08T18:08:18.457
fkie_cve-2026-22518	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-01-08T17:15:51.810	2026-01-08T18:08:18.457
fkie_cve-2026-22517	Missing Authorization vulnerability in Passionate Brains GA4WP: Google Analytics for WordPress allo…	2026-01-08T17:15:51.663	2026-01-08T18:08:18.457
fkie_cve-2026-22492	Missing Authorization vulnerability in Nawawi Jamili Docket Cache allows Exploiting Incorrectly Con…	2026-01-08T17:15:51.520	2026-01-08T18:08:18.457
fkie_cve-2026-22490	Missing Authorization vulnerability in niklaslindemann Bulk Landing Page Creator for WordPress LPag…	2026-01-08T17:15:51.370	2026-01-08T18:08:18.457
fkie_cve-2026-22489	Authorization Bypass Through User-Controlled Key vulnerability in Wptexture Image Slider Slideshow …	2026-01-08T17:15:51.220	2026-01-08T18:08:18.457
fkie_cve-2026-22488	Missing Authorization vulnerability in IdeaBox Creations Dashboard Welcome for Beaver Builder allow…	2026-01-08T17:15:51.070	2026-01-08T18:08:18.457
fkie_cve-2026-22487	Missing Authorization vulnerability in baqend Speed Kit allows Exploiting Incorrectly Configured Ac…	2026-01-08T17:15:50.923	2026-01-08T18:08:18.457
fkie_cve-2026-22486	Missing Authorization vulnerability in Hakob Re Gallery & Responsive Photo Gallery Plugin allows Ex…	2026-01-08T17:15:50.777	2026-01-08T18:08:18.457
fkie_cve-2026-21639	A malicious actor in Wi-Fi range of the affected product could leverage a vulnerability in the airM…	2026-01-08T17:15:50.483	2026-01-14T21:06:35.607
fkie_cve-2026-21638	A malicious actor in Wi-Fi range of the affected product could leverage a vulnerability in the airM…	2026-01-08T17:15:50.357	2026-01-14T21:06:07.787
fkie_cve-2026-0671	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera…	2026-01-08T17:15:50.240	2026-01-15T21:50:54.297
fkie_cve-2025-61550	Cross-Site Scripting (XSS) is present on the ctl00_Content01_fieldValue parameters on the /psp/appN…	2026-01-08T17:15:48.940	2026-02-10T18:16:20.377
fkie_cve-2025-61549	Cross-Site Scripting (XSS) is present on the LoginID parameter on the /PSP/app/web/reg/reg_display.…	2026-01-08T17:15:48.830	2026-02-10T18:16:20.230
fkie_cve-2025-61548	SQL Injection is present on the hfInventoryDistFormID parameter in the /PSP/appNET/Store/CartV12.as…	2026-01-08T17:15:48.727	2026-02-10T18:16:20.083
fkie_cve-2025-61547	Cross-Site Request Forgery (CSRF) is present on all functions in edu Business Solutions Print Shop …	2026-01-08T17:15:48.620	2026-02-10T18:16:19.923
fkie_cve-2025-61546	There is an issue on the /PSP/appNET/Store/CartV12.aspx/GetUnitPrice endpoint in edu Business Solut…	2026-01-08T17:15:48.510	2026-02-10T18:16:19.737
fkie_cve-2025-61246	indieka900 online-shopping-system-php 1.0 is vulnerable to SQL Injection in master/review_action.ph…	2026-01-08T17:15:48.400	2026-01-16T21:31:24.953
fkie_cve-2025-59470	This vulnerability allows a Backup Operator to perform remote code execution (RCE) as the postgres …	2026-01-08T17:15:48.290	2026-01-14T20:59:08.753
fkie_cve-2025-59469	This vulnerability allows a Backup or Tape Operator to write files as root.	2026-01-08T17:15:48.183	2026-01-14T20:58:51.930
fkie_cve-2025-59468	This vulnerability allows a Backup Administrator to perform remote code execution (RCE) as the post…	2026-01-08T17:15:48.067	2026-01-14T20:58:35.693
fkie_cve-2025-56425	An issue was discovered in the AppConnector component version 10.10.0.183 and earlier of enaio 10.1…	2026-01-08T17:15:47.957	2026-01-23T02:15:57.013
fkie_cve-2025-56424	An issue in Insiders Technologies GmbH e-invoice pro before release 1 Service Pack 2 allows a remot…	2026-01-08T17:15:47.840	2026-01-12T17:15:32.863
fkie_cve-2025-55125	This vulnerability allows a Backup or Tape Operator to perform remote code execution (RCE) as root …	2026-01-08T17:15:47.730	2026-01-12T16:44:01.677
fkie_cve-2025-50334	An issue in Technitium DNS Server v.13.5 allows a remote attacker to cause a denial of service via …	2026-01-08T17:15:47.603	2026-01-12T18:39:30.937
fkie_cve-2026-22255	iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and appl…	2026-01-08T16:16:03.110	2026-01-14T18:48:22.507
fkie_cve-2026-22246	Mastodon is a free, open-source social network server based on ActivityPub. Mastodon 4.3 added noti…	2026-01-08T16:16:02.957	2026-01-22T13:52:28.883

ID	Severity	Description	Published	Updated
ghsa-9pqx-6794-4f2c	8.1 (3.1)	The Magic Login Mail or QR Code plugin for WordPress is vulnerable to Privilege Escalation in all v…	2026-02-14T06:30:58Z	2026-02-14T06:30:58Z
ghsa-7vxf-c7r5-6293	6.4 (3.1)	The Simple Wp colorfull Accordion plugin for WordPress is vulnerable to Stored Cross-Site Scripting…	2026-02-14T06:30:58Z	2026-02-14T06:30:58Z
ghsa-72q5-4qh8-7556	6.1 (3.1)	The Easy Voice Mail plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘mess…	2026-02-14T06:30:58Z	2026-02-14T06:30:58Z
ghsa-3fvr-9rw3-q3hc	6.4 (3.1)	The Citations tools plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'code…	2026-02-14T06:30:58Z	2026-02-14T06:30:58Z
ghsa-335p-m75m-6r4h	6.1 (3.1)	The personal-authors-category plugin for WordPress is vulnerable to Reflected Cross-Site Scripting …	2026-02-14T06:30:58Z	2026-02-14T06:30:58Z
ghsa-26cj-h8gp-hcf9	4.4 (3.1)	The AMP Enhancer – Compatibility Layer for Official AMP Plugin for WordPress is vulnerable to Store…	2026-02-14T06:30:58Z	2026-02-14T06:30:58Z
ghsa-xv85-h7cp-9wff		Rejected reason: Not used	2026-02-14T06:30:57Z	2026-02-14T06:30:57Z
ghsa-w5rw-6rc6-433j		Rejected reason: Not used	2026-02-14T06:30:57Z	2026-02-14T06:30:57Z
ghsa-v88q-2f34-49rp		Rejected reason: Not used	2026-02-14T06:30:57Z	2026-02-14T06:30:57Z
ghsa-rfmq-rw5v-3vw4		Rejected reason: Not used	2026-02-14T06:30:57Z	2026-02-14T06:30:57Z
ghsa-pxrw-3687-548v		Rejected reason: Not used	2026-02-14T06:30:57Z	2026-02-14T06:30:57Z
ghsa-mx27-m68w-fph6	5.3 (3.1)	The WP Last Modified Info plugin for WordPress is vulnerable to Insecure Direct Object Reference in…	2026-02-14T06:30:57Z	2026-02-14T06:30:57Z
ghsa-jf9w-ph66-r34h		Rejected reason: Not used	2026-02-14T06:30:57Z	2026-02-14T06:30:57Z
ghsa-c9mq-hmrx-pjr6		Rejected reason: Not used	2026-02-14T06:30:57Z	2026-02-14T06:30:57Z
ghsa-6v8j-fjm8-rx99		Rejected reason: Not used	2026-02-14T06:30:57Z	2026-02-14T06:30:57Z
ghsa-mq9w-94xx-6xxh	5.3 (3.1)	The Easy Form Builder plugin for WordPress is vulnerable to unauthorized access of data due to a mi…	2026-02-14T06:30:56Z	2026-02-14T06:30:56Z
ghsa-9xq4-wg7p-wrhx	5.3 (3.1)	The StickEasy Protected Contact Form plugin for WordPress is vulnerable to Sensitive Information Di…	2026-02-14T06:30:56Z	2026-02-14T06:30:56Z
ghsa-7254-7x79-hj7p	4.9 (3.1)	The BFG Tools – Extension Zipper plugin for WordPress is vulnerable to Path Traversal in all versio…	2026-02-14T06:30:56Z	2026-02-14T06:30:56Z
ghsa-rvhp-mghq-8mvw		A Denial of Service (DoS) vulnerability was discovered in the TON Lite Server before v2024.09. The …	2026-02-14T00:32:42Z	2026-02-14T00:32:42Z
ghsa-qm6w-97m7-3844	8.8 (3.1)	The Starfish Review Generation & Marketing for WordPress plugin for WordPress is vulnerable to unau…	2026-02-14T00:32:42Z	2026-02-14T00:32:42Z
ghsa-g989-fg9h-96pr		A Null Pointer Dereference vulnerability exists in the TON Virtual Machine (TVM) within the TON Blo…	2026-02-14T00:32:42Z	2026-02-14T00:32:42Z
ghsa-9xqh-f8h9-23pv		A State Pollution vulnerability was discovered in the TON Virtual Machine (TVM) before v2025.04. Th…	2026-02-14T00:32:42Z	2026-02-14T00:32:42Z
ghsa-964f-vc2f-ch6j		A Stack Overflow vulnerability was discovered in the TON Virtual Machine (TVM) before v2024.10. The…	2026-02-14T00:32:42Z	2026-02-14T00:32:42Z
ghsa-7vwv-5gmf-fwq5		A SQL Injection vulnerability in the Advanced Popup Creator (advancedpopupcreator) module for Prest…	2026-02-14T00:32:42Z	2026-02-14T00:32:42Z
ghsa-7j93-6xm6-qf2c	7.2 (3.1)	The PixelYourSite PRO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'py…	2026-02-14T00:32:42Z	2026-02-14T00:32:42Z
ghsa-38xg-3ffm-68p7		LavaLite CMS 10.1.0 is vulnerable to Incorrect Access Control. An authenticated user with low-level…	2026-02-14T00:32:42Z	2026-02-14T00:32:42Z
ghsa-28cf-2j8g-v8mv	7.2 (3.1)	The PixelYourSite – Your smart PIXEL (TAG) & API Manager plugin for WordPress is vulnerable to Stor…	2026-02-14T00:32:42Z	2026-02-14T00:32:42Z
ghsa-78wq-6gcv-w28r	9.8 (3.1)	Known affected by Account Takeover via Password Reset Token Leakage	2026-02-13T22:49:27Z	2026-02-13T22:49:27Z
ghsa-vc34-g972-8h6w		Rejected reason: reserved but not needed	2026-02-13T21:31:40Z	2026-02-13T21:31:40Z
ghsa-pw8j-97jq-cw6g	9.3 (4.0)	Calero VeraSMART versions prior to 2022 R1 use static ASP.NET/IIS machineKey values configured for …	2026-02-13T21:31:40Z	2026-02-13T21:31:40Z

ID	Severity	Description	Package	Published	Updated
pysec-2024-32	4.3 (3.1)	The vantage6 technology enables to manage and deploy privacy enhancing technologies like …	vantage6	2024-01-30T16:15:00+00:00	2024-02-08T18:22:28.342089+00:00
pysec-2024-31	3.7 (3.1)	The vantage6 technology enables to manage and deploy privacy enhancing technologies like …	vantage6	2024-01-30T16:15:00+00:00	2024-02-08T18:22:28.276390+00:00
pysec-2024-30	8.8 (3.1)	The vantage6 technology enables to manage and deploy privacy enhancing technologies like …	vantage6	2024-01-30T16:15:00+00:00	2024-02-08T18:22:28.210087+00:00
pysec-2024-25	9.8 (3.1)	DuckDB <=0.9.2 and DuckDB extension-template <=0.9.2 are vulnerable to malicious extensio…	duckdb	2024-01-30T01:16:00+00:00	2024-02-06T00:25:51.550516+00:00
pysec-2024-27	9.8 (3.1)	CrateDB 5.5.1 is contains an authentication bypass vulnerability in the Admin UI componen…	crate	2024-01-30T01:15:00Z	2025-01-30T22:47:57.847403Z
pysec-2024-26	6.5 (3.1)	aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. Security-…	aiohttp	2024-01-29T23:15:00+00:00	2024-02-06T20:20:18.162431+00:00
pysec-2024-24	7.5 (3.1)	aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. When usin…	aiohttp	2024-01-29T23:15:00+00:00	2024-02-05T20:20:47.716944+00:00
pysec-2024-21	8.8 (3.1)	A vulnerability classified as critical was found in van_der_Schaar LAB TemporAI 0.0.3. Af…	temporai	2024-01-26T17:15:00+00:00	2024-02-01T18:22:23.971296+00:00
pysec-2024-14		Apache Airflow, versions before 2.8.1, have a vulnerability that allows an authenticated …	apache-airflow	2024-01-24T13:15:00+00:00	2024-01-24T16:22:57.416385+00:00
pysec-2024-13		Apache Airflow, versions before 2.8.1, have a vulnerability that allows a potential attac…	apache-airflow	2024-01-24T13:15:00+00:00	2024-01-24T16:22:57.352530+00:00
pysec-2024-128	6.1 (3.1)	Label Studio, an open source data labeling tool had a remote import feature allowed users…	label-studio	2024-01-24T00:15:00+00:00	2024-11-21T14:22:53.406222+00:00
pysec-2024-126	5.4 (3.1)	Label Studio is an a popular open source data labeling tool. Versions prior to 1.9.2 have…	label-studio	2024-01-23T23:15:00+00:00	2024-11-21T14:22:53.235341+00:00
pysec-2024-23	5.3 (3.1)	Whoogle Search is a self-hosted metasearch engine. Versions 0.8.3 and prior have a limite…	whoogle-search	2024-01-23T18:15:00+00:00	2024-02-02T07:18:33.382718+00:00
pysec-2024-22	6.1 (3.1)	TuiTse-TsuSin is a package for organizing the comparative corpus of Taiwanese Chinese cha…	tuitse-tsusin	2024-01-23T18:15:00+00:00	2024-02-01T22:21:01.486817+00:00
pysec-2024-20	9.8 (3.1)	Whoogle Search is a self-hosted metasearch engine. In versions prior to 0.8.4, the `eleme…	whoogle-search	2024-01-23T18:15:00+00:00	2024-01-30T18:22:32.803340+00:00
pysec-2024-19	6.1 (3.1)	Whoogle Search is a self-hosted metasearch engine. In versions 0.8.3 and prior, the `elem…	whoogle-search	2024-01-23T18:15:00+00:00	2024-01-29T22:21:01.226431+00:00
pysec-2024-18	9.8 (3.1)	Whoogle Search is a self-hosted metasearch engine. In versions 0.8.3 and prior, the `wind…	whoogle-search	2024-01-23T18:15:00+00:00	2024-01-29T22:21:01.170723+00:00
pysec-2024-16	5.4 (3.1)	Nautobot is a Network Source of Truth and Network Automation Platform built as a web appl…	nautobot	2024-01-23T00:15:00+00:00	2024-01-29T20:20:58.065227+00:00
pysec-2024-9		MetaGPT through 0.6.4 allows the QaEngineer role to execute arbitrary code because RunCod…	metagpt	2024-01-22T01:15:00+00:00	2024-01-22T07:20:28.329958+00:00
pysec-2024-12		LlamaIndex (aka llama_index) through 0.9.34 allows SQL injection via the Text-to-SQL feat…	llama-index	2024-01-22T01:15:00Z	2024-02-10T01:22:25.611009Z
pysec-2024-8		The JSON loader in Embedchain before 0.1.57 allows a ReDoS (regular expression denial of …	embedchain	2024-01-21T17:15:00+00:00	2024-01-21T20:21:00.544327+00:00
pysec-2024-7		The OpenAPI loader in Embedchain before 0.1.57 allows attackers to execute arbitrary code…	embedchain	2024-01-21T17:15:00+00:00	2024-01-21T20:21:00.484037+00:00
pysec-2024-15	3.7 (3.1)	changedetection.io is an open source tool designed to monitor websites for content chang…	changedetection-io	2024-01-19T20:15:00+00:00	2024-01-26T22:21:10.756741+00:00
pysec-2024-103	9.8 (3.1)	Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. The `concat…	vyper	2024-01-18T19:15:00+00:00	2024-10-09T23:22:49.818476+00:00
pysec-2024-17	8.8 (3.1)	pyLoad is a free and open-source Download Manager written in pure Python. The `pyload` AP…	pyload-ng	2024-01-18T00:15:00+00:00	2024-01-29T20:20:58.389168+00:00
pysec-2024-11	9.8 (3.1)	Remote Code Execution vulnerability in Apache IoTDB.This issue affects Apache IoTDB: from…	apache-iotdb	2024-01-15T11:15:00+00:00	2024-01-22T22:21:02.620877+00:00
pysec-2024-10	9.8 (3.1)	In Gentoo Portage before 3.0.47, there is missing PGP validation of executed code: the st…	portage	2024-01-12T03:15:00+00:00	2024-01-22T18:22:47.599296+00:00
pysec-2024-6	2.8 (3.1)	cdo-local-uuid project provides a specialized UUID-generating function that can, on user …	cdo-local-uuid	2024-01-11T03:15:00+00:00	2024-01-19T22:21:07.454006+00:00
pysec-2024-5	2.8 (3.1)	cdo-local-uuid project provides a specialized UUID-generating function that can, on user …	case-utils	2024-01-11T03:15:00Z	2024-01-25T14:03:52.279077Z
pysec-2024-4	7.8 (3.1)	GitPython is a python library used to interact with Git repositories. There is an incompl…	gitpython	2024-01-11T02:15:00+00:00	2024-01-18T16:22:52.190857+00:00

ID	Description	Updated

ID	Description	Published	Updated
mal-2026-657	Malicious code in react-dnd-legacy-html5-backend (npm)	2026-02-03T02:23:48Z	2026-02-06T03:05:26Z
mal-2026-656	Malicious code in jshint-groups (npm)	2026-02-03T01:59:02Z	2026-02-06T03:05:24Z
mal-2026-655	Malicious code in pipeline-poision-test (PyPI)	2026-02-02T21:53:29Z	2026-02-02T21:53:29Z
mal-2026-651	Malicious code in cat-admin-tool (PyPI)	2026-02-02T14:44:25Z	2026-02-02T14:44:25Z
mal-2026-652	Malicious code in chia-pool-reference (PyPI)	2026-02-02T14:43:22Z	2026-02-02T14:43:22Z
mal-2026-653	Malicious code in credit-decision-metrics (PyPI)	2026-02-02T14:42:50Z	2026-02-02T14:42:50Z
mal-2026-654	Malicious code in zabitog (PyPI)	2026-02-02T14:41:04Z	2026-02-02T14:41:04Z
mal-2026-650	Malicious code in tableapy (PyPI)	2026-02-02T12:56:55Z	2026-02-02T12:56:55Z
mal-2026-649	Malicious code in callapirequests (PyPI)	2026-02-02T09:08:10Z	2026-02-02T09:08:10Z
mal-2026-646	Malicious code in picking-miniapp (npm)	2026-02-02T08:30:53Z	2026-02-02T18:50:26Z
mal-2026-647	Malicious code in react-native-expofp (npm)	2026-02-02T08:30:15Z	2026-02-02T18:50:26Z
mal-2026-644	Malicious code in dise-pkt (npm)	2026-02-02T08:29:38Z	2026-02-02T18:50:24Z
mal-2026-643	Malicious code in @hemanshu_patil/xcode-windows-x64 (npm)	2026-02-02T08:28:43Z	2026-02-02T18:50:22Z
mal-2026-642	Malicious code in @hemanshu_patil/xcode (npm)	2026-02-02T08:28:43Z	2026-02-02T18:50:22Z
mal-2026-648	Malicious code in yazxzpedia (npm)	2026-02-02T08:27:24Z	2026-02-02T18:50:28Z
mal-2026-645	Malicious code in libsignal-yazxzpedia (npm)	2026-02-02T08:27:24Z	2026-02-02T18:50:25Z
mal-2026-641	Malicious code in connections-api-requests (PyPI)	2026-02-02T06:54:40Z	2026-02-02T06:54:40Z
mal-2026-640	Malicious code in connections-api-request (PyPI)	2026-02-02T06:52:24Z	2026-02-02T06:52:24Z
mal-2026-639	Malicious code in connection-api-requests (PyPI)	2026-02-02T06:49:31Z	2026-02-02T06:49:31Z
mal-2026-638	Malicious code in solhint-plugin-hyperlane (npm)	2026-02-02T05:19:43Z	2026-02-03T08:27:44Z
mal-2026-637	Malicious code in launchdarkly-cpp-networking (npm)	2026-02-02T05:19:43Z	2026-02-03T03:16:52Z
mal-2026-636	Malicious code in idv-script (npm)	2026-02-02T05:19:43Z	2026-02-04T05:37:04Z
mal-2026-635	Malicious code in finnairshop (npm)	2026-02-02T05:19:43Z	2026-02-02T05:19:43Z
mal-2026-634	Malicious code in eslint-config-minecraft-scripting (npm)	2026-02-02T05:19:43Z	2026-02-03T08:27:41Z
mal-2026-633	Malicious code in cowsay-fancy (npm)	2026-02-02T05:19:43Z	2026-02-02T05:19:43Z
mal-2026-632	Malicious code in cowsay-deluxe (npm)	2026-02-02T05:19:43Z	2026-02-02T05:19:43Z
mal-2026-631	Malicious code in cowsay-caps (npm)	2026-02-02T05:19:43Z	2026-02-02T05:19:43Z
mal-2026-630	Malicious code in cowsay-allcaps (npm)	2026-02-02T05:19:43Z	2026-02-02T05:19:43Z
mal-2026-629	Malicious code in client-desktop-web-installer (npm)	2026-02-02T05:19:43Z	2026-02-02T05:19:43Z
mal-2026-628	Malicious code in @casaverso/frontend-core (npm)	2026-02-02T05:19:43Z	2026-02-04T15:31:04Z

ID	Description	Published	Updated
wid-sec-w-2025-2433	Google Cloud Platform (Envoy Proxy):: Mehrere Schwachstellen ermöglichen Denial of Service	2025-10-28T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2431	Linux Kernel: Mehrere Schwachstellen	2025-10-28T23:00:00.000+00:00	2026-02-15T23:00:00.000+00:00
wid-sec-w-2025-2430	Linux Kernel: Mehrere Schwachstellen	2025-10-27T23:00:00.000+00:00	2026-02-15T23:00:00.000+00:00
wid-sec-w-2025-2427	strongSwan (eap-mschapv2 plugin): Schwachstelle ermöglicht Codeausführung und DoS	2025-10-27T23:00:00.000+00:00	2025-10-30T23:00:00.000+00:00
wid-sec-w-2025-2420	Apache Tomcat: Mehrere Schwachstellen	2025-10-27T23:00:00.000+00:00	2026-01-07T23:00:00.000+00:00
wid-sec-w-2025-2416	Proxmox Backup Server: Mehrere Schwachstellen	2025-10-26T23:00:00.000+00:00	2025-11-04T23:00:00.000+00:00
wid-sec-w-2025-2409	Xen: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-10-26T23:00:00.000+00:00	2026-01-28T23:00:00.000+00:00
wid-sec-w-2025-2407	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-10-26T23:00:00.000+00:00	2026-02-15T23:00:00.000+00:00
wid-sec-w-2025-2404	AMD “Zen 5” Prozessoren: Schwachstelle gefährdet Vertraulichkeit und Integrität	2025-10-23T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2403	Ubiquiti UniFi: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-10-23T22:00:00.000+00:00	2025-10-30T23:00:00.000+00:00
wid-sec-w-2025-2398	Moxa Switch: Mehrere Schwachstellen	2025-10-23T22:00:00.000+00:00	2025-10-30T23:00:00.000+00:00
wid-sec-w-2025-2396	Hashicorp Vault: Mehrere Schwachstellen	2025-10-23T22:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2395	Rancher Manager: Mehrere Schwachstellen	2025-10-23T22:00:00.000+00:00	2025-10-29T23:00:00.000+00:00
wid-sec-w-2025-2394	Linux Kernel: Mehrere Schwachstellen	2025-10-22T22:00:00.000+00:00	2026-02-15T23:00:00.000+00:00
wid-sec-w-2025-2392	Internet Systems Consortium BIND: Mehrere Schwachstellen	2025-10-22T22:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2391	OpenBao: Mehrere Schwachstellen	2025-10-22T22:00:00.000+00:00	2025-10-23T22:00:00.000+00:00
wid-sec-w-2025-2390	PowerDNS Recursor: Mehrere Schwachstellen ermöglichen Manipulation von Dateien	2025-10-22T22:00:00.000+00:00	2025-10-29T23:00:00.000+00:00
wid-sec-w-2025-2388	MongoDB: Schwachstelle ermöglicht Privilegieneskalation	2025-10-22T22:00:00.000+00:00	2025-10-23T22:00:00.000+00:00
wid-sec-w-2025-2386	Unbound: Schwachstelle ermöglicht Manipulation von Dateien	2025-10-22T22:00:00.000+00:00	2026-01-07T23:00:00.000+00:00
wid-sec-w-2025-2385	Drupal Module: Mehrere Schwachstellen	2025-10-22T22:00:00.000+00:00	2025-10-29T23:00:00.000+00:00
wid-sec-w-2025-2380	Xen: Mehrere Schwachstellen	2025-10-21T22:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2379	Dell BIOS: Schwachstelle ermöglicht Manipulation von Daten	2025-10-21T22:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2375	Google Chrome: Schwachstelle ermöglicht nicht spezifizierten Angriff	2025-10-21T22:00:00.000+00:00	2025-10-30T23:00:00.000+00:00
wid-sec-w-2025-2370	Oracle Systems: Mehrere Schwachstellen	2025-10-21T22:00:00.000+00:00	2025-11-17T23:00:00.000+00:00
wid-sec-w-2025-2365	Oracle Java SE: Mehrere Schwachstellen	2025-10-21T22:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2363	Oracle MySQL: Mehrere Schwachstellen	2025-10-21T22:00:00.000+00:00	2025-11-20T23:00:00.000+00:00
wid-sec-w-2025-2361	Oracle Communications: Mehrere Schwachstellen	2025-10-21T22:00:00.000+00:00	2025-11-17T23:00:00.000+00:00
wid-sec-w-2025-2360	Oracle Communications Applications: Mehrere Schwachstellen	2025-10-21T22:00:00.000+00:00	2025-11-17T23:00:00.000+00:00
wid-sec-w-2025-2350	Linux Kernel: Mehrere Schwachstellen	2025-10-20T22:00:00.000+00:00	2026-02-15T23:00:00.000+00:00
wid-sec-w-2025-2344	Checkmk: Schwachstelle ermöglicht Cross-Site Scripting	2025-10-20T22:00:00.000+00:00	2025-10-30T23:00:00.000+00:00

ID	Description	Published	Updated
ncsc-2025-0199	Kwetsbaarheid verholpen in Cisco AnyConnect VPN voor Meraki MX en Z	2025-06-19T08:42:22.673078Z	2025-06-19T08:42:22.673078Z
ncsc-2025-0198	Kwetsbaarheden verholpen in Veeam Backup	2025-06-18T12:18:39.049977Z	2025-06-18T12:18:39.049977Z
ncsc-2025-0197	Kwetsbaarheid verholpen in GeoServer	2025-06-18T10:17:42.472544Z	2025-06-18T10:17:42.472544Z
ncsc-2025-0196	Kwetsbaarheden verholpen in Citrix NetScaler ADC en NetScaler Gateway	2025-06-18T08:32:32.792202Z	2025-07-18T09:51:52.738778Z
ncsc-2025-0195	Kwetsbaarheden verholpen in Apache Tomcat	2025-06-18T08:01:06.984131Z	2025-06-18T08:01:06.984131Z
ncsc-2025-0194	Kwetsbaarheden verholpen in Trend Micro Apex One en Apex Central	2025-06-12T11:12:33.408725Z	2025-06-12T11:12:33.408725Z
ncsc-2025-0193	Kwetsbaarheden verholpen in Ivanti Workspace Control	2025-06-12T11:08:41.247215Z	2025-06-12T11:08:41.247215Z
ncsc-2025-0192	Kwetsbaarheden verholpen in Fortinet FortiOS	2025-06-12T11:04:45.167843Z	2025-06-12T11:04:45.167843Z
ncsc-2025-0191	Kwetsbaarheden verholpen in Adobe Commerce en Magento	2025-06-11T06:58:19.840921Z	2025-06-11T06:58:19.840921Z
ncsc-2025-0190	Kwetsbaarheden verholpen in Microsoft Developer Tools	2025-06-10T18:46:10.932182Z	2025-06-10T18:46:10.932182Z
ncsc-2025-0189	Kwetsbaarheden verholpen in Microsoft Office	2025-06-10T18:45:25.061778Z	2025-06-10T18:45:25.061778Z
ncsc-2025-0188	Kwetsbaarheden verholpen in Microsoft Windows	2025-06-10T18:43:18.187461Z	2025-06-10T18:43:18.187461Z
ncsc-2025-0187	Kwetsbaarheden verholpen in Siemens producten	2025-06-10T13:11:56.672768Z	2025-06-10T13:11:56.672768Z
ncsc-2025-0186	Kwetsbaarheden verholpen in SAP Producten	2025-06-10T10:15:56.898255Z	2025-06-10T10:15:56.898255Z
ncsc-2025-0185	Kwetsbaarheden verholpen in Google Android en Samsung Mobile	2025-06-10T07:19:02.701613Z	2025-06-10T07:19:02.701613Z
ncsc-2025-0184	Kwetsbaarheden verholpen in HPE StoreOnce Software	2025-06-05T10:37:04.196801Z	2025-06-05T10:37:04.196801Z
ncsc-2025-0183	Kwetsbaarheid verholpen in Cisco Identity Services Engine voor cloudplatformen	2025-06-05T10:25:46.291683Z	2025-06-05T10:25:46.291683Z
ncsc-2025-0182	Kwetsbaarheden verholpen in Google Chrome en Microsoft Edge	2025-06-03T07:52:36.009178Z	2025-06-10T18:44:36.060357Z
ncsc-2025-0181	Kwetsbaarheid verholpen in Roundcube Webmail	2025-06-02T09:04:58.900416Z	2025-06-05T14:19:00.303593Z
ncsc-2025-0180	Kwetsbaarheid verholpen in IBM Tivoli Monitoring	2025-06-02T09:00:25.515472Z	2025-06-02T09:00:25.515472Z
ncsc-2025-0179	Kwetsbaarheid verholpen in Siemens SiPass Integrated	2025-05-27T11:42:46.878569Z	2025-05-27T11:42:46.878569Z
ncsc-2025-0178	Kwetsbaarheden verholpen in Infoblox NETMRI	2025-05-23T08:55:37.586046Z	2025-05-23T08:55:37.586046Z
ncsc-2025-0177	Kwetsbaarheden verholpen in ABB ASPECT-productlijn	2025-05-23T08:40:56.272804Z	2025-05-23T08:40:56.272804Z
ncsc-2025-0176	Kwetsbaarheden verholpen in GitLab	2025-05-23T08:38:34.688022Z	2025-05-23T08:38:34.688022Z
ncsc-2025-0175	Kwetsbaarheden verholpen in Trend Micro Apex Central	2025-05-23T08:28:52.215347Z	2025-05-23T08:28:52.215347Z
ncsc-2025-0174	Kwetsbaarheden verholpen in Cisco Unified Intelligence Center	2025-05-22T08:14:14.245836Z	2025-05-22T08:14:14.245836Z
ncsc-2025-0173	Kwetsbaarheid verholpen in Cisco Identity Services Engine	2025-05-22T08:14:06.046824Z	2025-05-22T08:14:06.046824Z
ncsc-2025-0172	Kwetsbaarheden verholpen in Cisco Webex	2025-05-22T08:13:51.228348Z	2025-05-22T08:13:51.228348Z
ncsc-2025-0171	Kwetsbaarheden verholpen in VMware producten	2025-05-21T13:08:22.714183Z	2025-05-21T13:08:22.714183Z
ncsc-2025-0170	Kwetsbaarheden verholpen in VMware Cloud Foundation	2025-05-21T09:12:05.676292Z	2025-05-21T09:12:05.676292Z

ID	Description	Published	Updated
ssa-885980	SSA-885980: Multiple Vulnerabilities in Scalance W1750D	2024-04-09T00:00:00Z	2024-04-09T00:00:00Z
ssa-822518	SSA-822518: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW Before V11.0.1 on RUGGEDCOM APE1808 Devices	2024-04-09T00:00:00Z	2024-12-10T00:00:00Z
ssa-730482	SSA-730482: Denial of Service Vulnerability in SIMATIC WinCC	2024-04-09T00:00:00Z	2025-01-14T00:00:00Z
ssa-556635	SSA-556635: Multiple Vulnerabilities in Telecontrol Server Basic before V3.1.2.0	2024-04-09T00:00:00Z	2024-04-09T00:00:00Z
ssa-455250	SSA-455250: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 Devices Before V11.1.2-h3	2024-04-09T00:00:00Z	2025-05-13T00:00:00Z
ssa-265688	SSA-265688: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 TM MFP V1.1	2024-04-09T00:00:00Z	2026-02-10T00:00:00Z
ssa-222019	SSA-222019: X_T File Parsing Vulnerabilities in Parasolid	2024-04-09T00:00:00Z	2024-04-09T00:00:00Z
ssa-128433	SSA-128433: Multiple Vulnerabilities in SINEC NMS before V2.0 SP2	2024-04-09T00:00:00Z	2024-04-09T00:00:00Z
ssa-918992	SSA-918992: Unused HTTP Service on SENTRON 3KC ATC6 Ethernet Module	2024-03-12T00:00:00Z	2024-03-12T00:00:00Z
ssa-832273	SSA-832273: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.3 on RUGGEDCOM APE1808 Devices	2024-03-12T00:00:00Z	2026-01-13T00:00:00Z
ssa-792319	SSA-792319: Missing Read Out Protection in SENTRON 7KM PAC3x20 Devices	2024-03-12T00:00:00Z	2024-09-10T00:00:00Z
ssa-770721	SSA-770721: Multiple Vulnerabilities in SIMATIC RF160B before V2.2	2024-03-12T00:00:00Z	2024-03-12T00:00:00Z
ssa-653855	SSA-653855: Information Disclosure vulnerability in SINEMA Remote Connect Client before V3.1 SP1	2024-03-12T00:00:00Z	2024-03-12T00:00:00Z
ssa-576771	SSA-576771: Multiple Vulnerabilities in SINEMA Remote Connect Server before V3.2	2024-03-12T00:00:00Z	2024-03-12T00:00:00Z
ssa-382651	SSA-382651: File Parsing Vulnerability in Solid Edge	2024-03-12T00:00:00Z	2024-05-14T00:00:00Z
ssa-366067	SSA-366067: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.1 on RUGGEDCOM APE1808 Devices	2024-03-12T00:00:00Z	2026-01-13T00:00:00Z
ssa-353002	SSA-353002: Multiple Vulnerabilities in SCALANCE XB-200 / XC-200 / XP-200 / XF-200BA / XR-300WG Family	2024-03-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-225840	SSA-225840: Vulnerabilities in the Network Communication Stack in Sinteso EN and Cerberus PRO EN Fire Protection Systems	2024-03-12T00:00:00Z	2024-05-14T00:00:00Z
ssa-145196	SSA-145196: Authorization Bypass Vulnerability in Siveillance Control	2024-03-12T00:00:00Z	2024-03-12T00:00:00Z
ssa-943925	SSA-943925: Multiple Vulnerabilities in SINEC NMS before V2.0 SP1	2024-02-13T00:00:00Z	2024-03-12T00:00:00Z
ssa-871717	SSA-871717: Multiple Vulnerabilities in Polarion ALM	2024-02-13T00:00:00Z	2024-05-14T00:00:00Z
ssa-806742	SSA-806742: Multiple Vulnerabilities in SCALANCE XCM-/XRM-300 before V2.4	2024-02-13T00:00:00Z	2024-02-13T00:00:00Z
ssa-797296	SSA-797296: XT File Parsing Vulnerability in Parasolid	2024-02-13T00:00:00Z	2024-02-13T00:00:00Z
ssa-753746	SSA-753746: Denial of Service Vulnerabilities in SIMATIC WinCC Affecting Other SIMATIC Software Products	2024-02-13T00:00:00Z	2024-09-10T00:00:00Z
ssa-716164	SSA-716164: Multiple Vulnerabilities in Scalance W1750D	2024-02-13T00:00:00Z	2024-04-09T00:00:00Z
ssa-665034	SSA-665034: Vulnerability in Nozomi Guardian/CMC before 23.3.0 on RUGGEDCOM APE1808 devices	2024-02-13T00:00:00Z	2024-05-14T00:00:00Z
ssa-647068	SSA-647068: Ripple20 in SIMATIC RTLS Gateways	2024-02-13T00:00:00Z	2024-02-13T00:00:00Z
ssa-602936	SSA-602936: Multiple Vulnerabilities in SCALANCE SC-600 Family before V3.1	2024-02-13T00:00:00Z	2024-02-13T00:00:00Z
ssa-580228	SSA-580228: Use of Hard-Coded Credentials Vulnerability in Location Intelligence before V4.3	2024-02-13T00:00:00Z	2024-02-13T00:00:00Z
ssa-543502	SSA-543502: Local Privilege Escalation Vulnerability in Unicam FX	2024-02-13T00:00:00Z	2024-02-13T00:00:00Z

ID	Description	Published	Updated
rhsa-2026:1813	Red Hat Security Advisory: golang security update	2026-02-03T14:57:18+00:00	2026-02-17T00:05:51+00:00
rhsa-2026:1823	Red Hat Security Advisory: JMC bug fix and enhancement update	2026-02-03T13:51:18+00:00	2026-02-04T18:56:06+00:00
rhsa-2026:1815	Red Hat Security Advisory: openssh security update	2026-02-03T13:31:42+00:00	2026-02-03T20:56:58+00:00
rhsa-2026:1814	Red Hat Security Advisory: golang security update	2026-02-03T12:29:57+00:00	2026-02-17T00:05:51+00:00
rhsa-2026:1805	Red Hat Security Advisory: resource-agents security update	2026-02-03T10:17:28+00:00	2026-02-16T22:27:30+00:00
rhsa-2026:1803	Red Hat Security Advisory: fence-agents security update	2026-02-03T09:45:07+00:00	2026-02-16T22:27:27+00:00
rhsa-2026:1795	Red Hat Security Advisory: resource-agents security update	2026-02-03T07:28:32+00:00	2026-02-16T21:34:34+00:00
rhsa-2026:1792	Red Hat Security Advisory: fence-agents security update	2026-02-03T07:25:42+00:00	2026-02-16T22:27:24+00:00
rhsa-2026:1791	Red Hat Security Advisory: fence-agents security update	2026-02-03T07:21:33+00:00	2026-02-16T22:27:23+00:00
rhsa-2026:1794	Red Hat Security Advisory: resource-agents security update	2026-02-03T07:18:11+00:00	2026-02-16T22:27:25+00:00
rhsa-2026:1793	Red Hat Security Advisory: resource-agents security update	2026-02-03T07:17:26+00:00	2026-02-16T22:27:25+00:00
rhsa-2026:1790	Red Hat Security Advisory: openssh security update	2026-02-03T07:04:31+00:00	2026-02-03T20:56:58+00:00
rhsa-2026:1773	Red Hat Security Advisory: iperf3 security update	2026-02-03T01:32:30+00:00	2026-02-10T19:02:40+00:00
rhsa-2026:1760	Red Hat Security Advisory: iperf3 security update	2026-02-02T22:02:25+00:00	2026-02-10T19:02:38+00:00
rhsa-2026:1606	Red Hat Security Advisory: OpenJDK 25.0.2 Security Update for Windows Builds	2026-02-02T20:20:07+00:00	2026-02-03T02:44:10+00:00
rhsa-2026:1735	Red Hat Security Advisory: fence-agents security update	2026-02-02T17:50:59+00:00	2026-02-16T22:27:22+00:00
rhsa-2026:1734	Red Hat Security Advisory: fence-agents security update	2026-02-02T17:45:39+00:00	2026-02-16T22:27:23+00:00
rhsa-2026:1733	Red Hat Security Advisory: openssl security update	2026-02-02T17:33:59+00:00	2026-02-12T19:28:18+00:00
rhsa-2026:1736	Red Hat Security Advisory: A Subscription Management tool for finding and reporting Red Hat product usage	2026-02-02T17:31:06+00:00	2026-02-16T22:27:23+00:00
rhsa-2026:1730	Red Hat Security Advisory: Red Hat Quay 3.12.13	2026-02-02T15:52:56+00:00	2026-02-16T22:27:21+00:00
rhsa-2026:1729	Red Hat Security Advisory: python-urllib3 security update	2026-02-02T15:49:34+00:00	2026-02-16T22:27:20+00:00
rhsa-2026:1727	Red Hat Security Advisory: kernel security update	2026-02-02T15:41:49+00:00	2026-02-16T23:40:43+00:00
rhsa-2026:1726	Red Hat Security Advisory: python-urllib3 security update	2026-02-02T15:25:44+00:00	2026-02-16T22:27:18+00:00
rhsa-2026:1720	Red Hat Security Advisory: openssl security update	2026-02-02T14:43:39+00:00	2026-02-04T01:03:36+00:00
rhsa-2026:1717	Red Hat Security Advisory: fence-agents security update	2026-02-02T14:17:19+00:00	2026-02-16T22:27:18+00:00
rhsa-2026:1719	Red Hat Security Advisory: gnupg2 security update	2026-02-02T14:09:38+00:00	2026-02-11T15:13:29+00:00
rhsa-2026:1715	Red Hat Security Advisory: golang-github-openprinting-ipp-usb security update	2026-02-02T13:10:53+00:00	2026-02-17T00:05:51+00:00
rhsa-2026:1712	Red Hat Security Advisory: python3.11-urllib3 security update	2026-02-02T13:10:47+00:00	2026-02-16T22:27:17+00:00
rhsa-2026:1714	Red Hat Security Advisory: wireshark security update	2026-02-02T13:03:43+00:00	2026-02-16T19:42:13+00:00
rhsa-2026:1706	Red Hat Security Advisory: fence-agents security update	2026-02-02T12:38:43+00:00	2026-02-16T22:27:16+00:00

ID	Description	Published	Updated
icsa-25-226-12	Siemens SIPROTEC 4 and SIPROTEC 4 Compact	2025-08-12T00:00:00.000000Z	2025-08-12T00:00:00.000000Z
icsa-25-226-11	Siemens SIMATIC S7-PLCSIM	2025-08-12T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-226-10	Siemens SIPROTEC 5	2025-08-12T00:00:00.000000Z	2025-08-12T00:00:00.000000Z
icsa-25-226-09	Siemens RUGGEDCOM APE1808	2025-08-12T00:00:00.000000Z	2026-01-14T22:05:42.880807Z
icsa-25-226-08	Siemens RUGGEDCOM CROSSBOW Station Access Controller	2025-08-12T00:00:00.000000Z	2025-08-12T00:00:00.000000Z
icsa-25-226-07	Siemens Third-Party Components in SINEC OS	2025-08-12T00:00:00.000000Z	2025-08-12T00:00:00.000000Z
icsa-25-226-06	Siemens Opcenter Quality	2025-08-12T00:00:00.000000Z	2025-08-12T00:00:00.000000Z
icsa-25-226-05	Siemens WIBU CodeMeter Runtime	2025-08-12T00:00:00.000000Z	2025-09-09T00:00:00.000000Z
icsa-25-226-04	Siemens Simcenter Femap	2025-08-12T00:00:00.000000Z	2025-08-12T00:00:00.000000Z
icsa-25-226-03	Siemens SIMATIC S7-PLCSIM	2025-08-12T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-226-02	Siemens COMOS	2025-08-12T00:00:00.000000Z	2025-08-12T00:00:00.000000Z
icsa-25-226-01	Siemens SIMATIC RTLS Locating Manager	2025-08-12T00:00:00.000000Z	2025-08-12T00:00:00.000000Z
icsa-25-219-08	Yealink IP Phones and RPS (Redirect and Provisioning Service)	2025-08-07T06:00:00.000000Z	2025-08-07T06:00:00.000000Z
icsa-25-219-07	EG4 Electronics EG4 Inverters (Update B)	2025-08-07T06:00:00.000000Z	2025-09-09T06:00:00.000000Z
icsa-25-219-05	Packet Power EMX and EG	2025-08-07T06:00:00.000000Z	2025-08-07T06:00:00.000000Z
icsa-25-219-04	Rockwell Automation Arena	2025-08-07T06:00:00.000000Z	2025-08-07T06:00:00.000000Z
icsa-25-219-03	Burk Technology ARC Solo	2025-08-07T06:00:00.000000Z	2025-08-07T06:00:00.000000Z
icsa-25-219-02	Johnson Controls FX Server, FX80 and FX90 (Update A)	2025-08-07T06:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-219-01	Delta Electronics DIAView	2025-08-07T06:00:00.000000Z	2025-08-07T06:00:00.000000Z
icsa-25-219-06	Dreame Technology iOS and Android Mobile Applications	2025-08-07T04:00:00.000000Z	2025-08-07T04:00:00.000000Z
va-25-219-01	Tyler Technologies ERP Pro 9	2025-08-07T00:00:00Z	2025-08-07T00:00:00Z
icsa-25-217-02	Tigo Energy Cloud Connect Advanced (Update A)	2025-08-05T06:00:00.000000Z	2025-08-19T06:00:00.000000Z
icsa-25-217-01	Mitsubishi Electric Iconics Digital Solutions Multiple Products (Update A)	2025-08-05T05:00:00.000000Z	2025-09-04T05:00:00.000000Z
icsa-25-247-01	Honeywell OneWireless Wireless Device Manager (WDM)	2025-08-04T06:00:00.000000Z	2025-08-04T06:00:00.000000Z
va-25-174-01	OPEXUS FOIAXpress Public Access Link (PAL) multiple vulnerabilities	2025-07-31T17:01:09Z	2025-09-09T21:12:34Z
icsa-25-212-02	Rockwell Automation Lifecycle Services with VMware	2025-07-31T06:00:00.000000Z	2025-07-31T06:00:00.000000Z
icsa-25-212-01	Güralp Systems FMUS Series and MIN Series Devices (Update B)	2025-07-31T06:00:00.000000Z	2026-01-13T07:00:00.000000Z
icsa-25-210-03	Delta Electronics DTN Soft	2025-07-29T06:00:00.000000Z	2025-07-29T06:00:00.000000Z
icsa-25-210-02	Samsung HVAC DMS	2025-07-29T06:00:00.000000Z	2025-07-29T06:00:00.000000Z
icsa-25-210-01	National Instruments LabVIEW	2025-07-29T06:00:00.000000Z	2025-07-29T06:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-sdwan-utd-dos-hdatqxs	Cisco Catalyst SD-WAN Routers Denial of Service Vulnerability	2024-09-25T16:00:00+00:00	2024-09-25T16:00:00+00:00
cisco-sa-sdw-vedos-kqffhps3	Cisco SD-WAN vEdge Software UDP Packet Validation Denial of Service Vulnerability	2024-09-25T16:00:00+00:00	2024-09-25T16:00:00+00:00
cisco-sa-rsvp-dos-oypvgvzf	Cisco IOS and IOS XE Software Resource Reservation Protocol Denial of Service Vulnerability	2024-09-25T16:00:00+00:00	2024-09-25T16:00:00+00:00
cisco-sa-repacl-9exgnbpd	Cisco IOS Software on Cisco Industrial Ethernet Series Switches Access Control List Bypass Vulnerability	2024-09-25T16:00:00+00:00	2024-09-25T16:00:00+00:00
cisco-sa-pim-apbvfysj	Cisco IOS XE Software Protocol Independent Multicast Denial of Service Vulnerability	2024-09-25T16:00:00+00:00	2024-09-25T16:00:00+00:00
cisco-sa-ios-xe-sda-edge-dos-mbcbg9k	Cisco IOS XE Software SD-Access Fabric Edge Node Denial of Service Vulnerability	2024-09-25T16:00:00+00:00	2024-09-25T16:00:00+00:00
cisco-sa-ios-webui-hfwnrgk	Cisco IOS and IOS XE Software Web UI Cross-Site Request Forgery Vulnerability	2024-09-25T16:00:00+00:00	2024-09-25T16:00:00+00:00
cisco-sa-httpsrvr-dos-yozthut	Cisco IOS XE Software HTTP Server Telephony Services Denial of Service Vulnerability	2024-09-25T16:00:00+00:00	2024-09-25T16:00:00+00:00
cisco-sa-dnac-ssh-e4uodasj	Cisco Catalyst Center Static SSH Host Key Vulnerability	2024-09-25T16:00:00+00:00	2024-09-25T16:00:00+00:00
cisco-sa-cpp-vfr-dos-nhhkggo	Cisco IOS XE Software IPv4 Fragmentation Reassembly Denial of Service Vulnerability	2024-09-25T16:00:00+00:00	2024-09-25T16:00:00+00:00
cisco-sa-c9800-cwa-acl-npsbhsna	Cisco IOS XE Software for Wireless Controllers CWA Pre-Authentication ACL Bypass Vulnerability	2024-09-25T16:00:00+00:00	2024-09-25T16:00:00+00:00
cisco-sa-pak-mem-exhst-3ke9fefy	Cisco IOS XR Software UDP Packet Memory Exhaustion Vulnerability	2024-09-11T16:00:00+00:00	2024-09-11T16:00:00+00:00
cisco-sa-nso-auth-bypass-qnteesp	Multiple Cisco Products Web-Based Management Interface Privilege Escalation Vulnerability	2024-09-11T16:00:00+00:00	2024-09-25T13:05:54+00:00
cisco-sa-l2services-2mvhdnuc	Cisco IOS XR Software Network Convergence System Denial of Service Vulnerability	2024-09-11T16:00:00+00:00	2024-09-11T16:00:00+00:00
cisco-sa-isis-xehpbvne	Cisco IOS XR Software Segment Routing for Intermediate System-to-Intermediate System Denial of Service Vulnerability	2024-09-11T16:00:00+00:00	2024-09-11T16:00:00+00:00
cisco-sa-iosxr-xml-tcpdos-zexvru2s	Cisco IOS XR Software Dedicated XML Agent TCP Denial of Service Vulnerability	2024-09-11T16:00:00+00:00	2024-09-11T16:00:00+00:00
cisco-sa-iosxr-shellutil-hcb278wd	Cisco IOS XR Software CLI Arbitrary File Read Vulnerability	2024-09-11T16:00:00+00:00	2024-09-11T16:00:00+00:00
cisco-sa-iosxr-priv-esc-crg5vhcq	Cisco IOS XR Software CLI Privilege Escalation Vulnerability	2024-09-11T16:00:00+00:00	2024-09-11T16:00:00+00:00
cisco-sa-iosxr-ponctlr-ci-ohchmsfl	Cisco Routed Passive Optical Network Controller Vulnerabilities	2024-09-11T16:00:00+00:00	2024-09-11T16:00:00+00:00
cisco-sa-meraki-agent-dll-hj-ptn7ptke	Cisco Meraki Systems Manager Agent for Windows Privilege Escalation Vulnerability	2024-09-04T16:00:00+00:00	2024-09-04T16:00:00+00:00
cisco-sa-ise-injection-6kn9tsxm	Cisco Identity Services Engine Command Injection Vulnerability	2024-09-04T16:00:00+00:00	2024-09-04T16:00:00+00:00
cisco-sa-expressway-auth-kdfrcz2j	Cisco Expressway Edge Improper Authorization Vulnerability	2024-09-04T16:00:00+00:00	2024-09-04T16:00:00+00:00
cisco-sa-duo-epic-info-sdlv6h8y	Cisco Duo Epic for Hyperdrive Information Disclosure Vulnerability	2024-09-04T16:00:00+00:00	2024-09-04T16:00:00+00:00
cisco-sa-cslu-7ghmzwmw	Cisco Smart Licensing Utility Vulnerabilities	2024-09-04T16:00:00+00:00	2025-04-04T17:44:00+00:00
cisco-sa-nxos-psbe-ce-yvbtn5du	Cisco NX-OS Software Python Sandbox Escape Vulnerabilities	2024-08-28T16:00:00+00:00	2024-08-28T16:00:00+00:00
cisco-sa-nxos-dhcp6-relay-dos-zneaa6xn	Cisco NX-OS Software DHCPv6 Relay Agent Denial of Service Vulnerability	2024-08-28T16:00:00+00:00	2024-08-28T16:00:00+00:00
cisco-sa-nxos-cmdinj-lq6jszhh	Cisco NX-OS Software Command Injection Vulnerability	2024-08-28T16:00:00+00:00	2024-08-28T16:00:00+00:00
cisco-sa-nxos-bshacepe-bapehsx7	Cisco NX-OS Software Bash Arbitrary Code Execution and Privilege Escalation Vulnerabilities	2024-08-28T16:00:00+00:00	2024-08-28T16:00:00+00:00
cisco-sa-capic-priv-esc-uyqjjnuu	Cisco Application Policy Infrastructure Controller Privilege Escalation Vulnerability	2024-08-28T16:00:00+00:00	2024-08-28T16:00:00+00:00
cisco-sa-apic-cousmo-ubpbygbq	Cisco Application Policy Infrastructure Controller Unauthorized Policy Actions Vulnerability	2024-08-28T16:00:00+00:00	2024-08-28T16:00:00+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2025-68733	smack: fix bug: unprivileged task can create labels	2025-12-02T00:00:00.000Z	2025-12-26T14:38:50.000Z
msrc_cve-2025-68732	gpu: host1x: Fix race in syncpt alloc/free	2025-12-02T00:00:00.000Z	2025-12-26T14:36:21.000Z
msrc_cve-2025-68729	wifi: ath12k: Fix MSDU buffer types handling in RX error path	2025-12-02T00:00:00.000Z	2026-01-08T01:40:01.000Z
msrc_cve-2025-68728	ntfs3: fix uninit memory after failed mi_read in mi_format_new	2025-12-02T00:00:00.000Z	2025-12-26T14:37:38.000Z
msrc_cve-2025-68727	ntfs3: Fix uninit buffer allocated by __getname()	2025-12-02T00:00:00.000Z	2025-12-26T14:38:22.000Z
msrc_cve-2025-68725	bpf: Do not let BPF test infra emit invalid GSO types to stack	2025-12-02T00:00:00.000Z	2025-12-26T14:37:33.000Z
msrc_cve-2025-68724	crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id	2025-12-02T00:00:00.000Z	2025-12-26T14:38:41.000Z
msrc_cve-2025-68615	Net-SNMP snmptrapd crash	2025-12-02T00:00:00.000Z	2025-12-31T01:37:13.000Z
msrc_cve-2025-68476	KEDA has Arbitrary File Read via Insufficient Path Validation in HashiCorp Vault Service Account Credential	2025-12-02T00:00:00.000Z	2026-01-08T01:39:41.000Z
msrc_cve-2025-68390	Elasticsearch Allocation of Resources Without Limits or Throttling	2025-12-02T00:00:00.000Z	2025-12-23T01:37:15.000Z
msrc_cve-2025-68384	Elasticsearch Allocation of Resources Without Limits or Throttling	2025-12-02T00:00:00.000Z	2025-12-23T01:37:09.000Z
msrc_cve-2025-68380	wifi: ath11k: fix peer HE MCS assignment	2025-12-02T00:00:00.000Z	2026-01-08T01:40:16.000Z
msrc_cve-2025-68379	RDMA/rxe: Fix null deref on srq->rq.queue after resize failure	2025-12-02T00:00:00.000Z	2025-12-26T14:38:07.000Z
msrc_cve-2025-68378	bpf: Fix stackmap overflow check in __bpf_get_stackid()	2025-12-02T00:00:00.000Z	2025-12-26T14:38:26.000Z
msrc_cve-2025-68376	coresight: ETR: Fix ETR buffer use-after-free issue	2025-12-02T00:00:00.000Z	2025-12-26T14:38:31.000Z
msrc_cve-2025-68374	md: fix rcu protection in md_wakeup_thread	2025-12-02T00:00:00.000Z	2025-12-26T14:38:46.000Z
msrc_cve-2025-68372	nbd: defer config put in recv_work	2025-12-02T00:00:00.000Z	2025-12-26T14:37:43.000Z
msrc_cve-2025-68371	scsi: smartpqi: Fix device resources accessed after device removal	2025-12-02T00:00:00.000Z	2025-12-26T14:35:51.000Z
msrc_cve-2025-68367	macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse	2025-12-02T00:00:00.000Z	2026-01-08T01:40:06.000Z
msrc_cve-2025-68366	nbd: defer config unlock in nbd_genl_connect	2025-12-02T00:00:00.000Z	2025-12-26T14:36:35.000Z
msrc_cve-2025-68365	fs/ntfs3: Initialize allocated memory before use	2025-12-02T00:00:00.000Z	2025-12-26T14:37:29.000Z
msrc_cve-2025-68364	ocfs2: relax BUG() to ocfs2_error() in __ocfs2_move_extent()	2025-12-02T00:00:00.000Z	2025-12-26T14:38:17.000Z
msrc_cve-2025-68363	bpf: Check skb->transport_header is set in bpf_skb_check_mtu	2025-12-02T00:00:00.000Z	2025-12-26T14:38:02.000Z
msrc_cve-2025-68362	wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb()	2025-12-02T00:00:00.000Z	2025-12-26T14:36:06.000Z
msrc_cve-2025-68358	btrfs: fix racy bitfield write in btrfs_clear_space_info_full()	2025-12-02T00:00:00.000Z	2025-12-26T14:37:48.000Z
msrc_cve-2025-68357	iomap: allocate s_dio_done_wq for async reads as well	2025-12-02T00:00:00.000Z	2025-12-26T14:36:30.000Z
msrc_cve-2025-68356	gfs2: Prevent recursive memory reclaim	2025-12-02T00:00:00.000Z	2025-12-26T14:37:14.000Z
msrc_cve-2025-68354	regulator: core: Protect regulator_supply_alias_list with regulator_list_mutex	2025-12-02T00:00:00.000Z	2025-12-26T14:36:01.000Z
msrc_cve-2025-68349	NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid	2025-12-02T00:00:00.000Z	2025-12-26T14:35:56.000Z
msrc_cve-2025-68347	ALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events	2025-12-02T00:00:00.000Z	2025-12-26T14:37:00.000Z

ID	Description	Published	Updated

ID	Description	Published	Updated
opensuse-su-2025:15832-1	coredns-for-k8s1.35-1.13.1-2.1 on GA media	2025-12-19T00:00:00Z	2025-12-19T00:00:00Z
opensuse-su-2025:15831-1	chromedriver-143.0.7499.146-1.1 on GA media	2025-12-19T00:00:00Z	2025-12-19T00:00:00Z
opensuse-su-2025:15830-1	alloy-1.12.0-2.1 on GA media	2025-12-19T00:00:00Z	2025-12-19T00:00:00Z
opensuse-su-2025:15829-1	ImageMagick-7.1.2.10-2.1 on GA media	2025-12-19T00:00:00Z	2025-12-19T00:00:00Z
opensuse-su-2025:20171-1	Security update for qemu	2025-12-18T12:42:03Z	2025-12-18T12:42:03Z
opensuse-su-2025:20177-1	Security update for cheat	2025-12-18T00:17:52Z	2025-12-18T00:17:52Z
opensuse-su-2025:15828-1	libruby3_4-3_4-3.4.8-1.1 on GA media	2025-12-18T00:00:00Z	2025-12-18T00:00:00Z
opensuse-su-2025:15827-1	rsync-3.4.1-4.1 on GA media	2025-12-18T00:00:00Z	2025-12-18T00:00:00Z
opensuse-su-2025:15826-1	coredns-for-k8s1.34-1.12.1-2.1 on GA media	2025-12-18T00:00:00Z	2025-12-18T00:00:00Z
opensuse-su-2025:15825-1	coredns-for-k8s1.33-1.12.0-2.1 on GA media	2025-12-18T00:00:00Z	2025-12-18T00:00:00Z
opensuse-su-2025:15824-1	netty-4.1.130-1.1 on GA media	2025-12-17T00:00:00Z	2025-12-17T00:00:00Z
opensuse-su-2025:15823-1	clair-4.9.0-1.1 on GA media	2025-12-17T00:00:00Z	2025-12-17T00:00:00Z
opensuse-su-2025:20164-1	Security update for openssl-3	2025-12-15T18:16:15Z	2025-12-15T18:16:15Z
opensuse-su-2025:20163-1	Security update for grub2	2025-12-15T12:52:50Z	2025-12-15T12:52:50Z
opensuse-su-2025:20162-1	Security update for ImageMagick	2025-12-15T09:55:25Z	2025-12-15T09:55:25Z
opensuse-su-2025:15822-1	strongswan-6.0.4-1.1 on GA media	2025-12-15T00:00:00Z	2025-12-15T00:00:00Z
opensuse-su-2025:15821-1	qemu-10.1.3-1.1 on GA media	2025-12-15T00:00:00Z	2025-12-15T00:00:00Z
opensuse-su-2025:15820-1	chromedriver-143.0.7499.109-1.1 on GA media	2025-12-13T00:00:00Z	2025-12-13T00:00:00Z
opensuse-su-2025:20150-1	Security update for binutils	2025-12-12T15:58:27Z	2025-12-12T15:58:27Z
opensuse-su-2025:20161-1	Security update for chromium	2025-12-12T15:30:17Z	2025-12-12T15:30:17Z
opensuse-su-2025:20160-1	Security update for hauler	2025-12-12T13:20:11Z	2025-12-12T13:20:11Z
opensuse-su-2025:20159-1	Security update for keylime	2025-12-12T09:46:01Z	2025-12-12T09:46:01Z
opensuse-su-2025:20158-1	Security update for go1.24	2025-12-12T07:45:01Z	2025-12-12T07:45:01Z
opensuse-su-2025:20157-1	Security update for go1.25	2025-12-12T07:23:58Z	2025-12-12T07:23:58Z
opensuse-su-2025:15819-1	libruby4_0-4_0-4.0.0~preview2-1.1 on GA media	2025-12-12T00:00:00Z	2025-12-12T00:00:00Z
opensuse-su-2025:15818-1	pgadmin4-9.11-1.1 on GA media	2025-12-12T00:00:00Z	2025-12-12T00:00:00Z
opensuse-su-2025:15817-1	buildpacks-cli-0.39.1-1.1 on GA media	2025-12-12T00:00:00Z	2025-12-12T00:00:00Z
opensuse-su-2025:15816-1	ImageMagick-7.1.2.10-1.1 on GA media	2025-12-12T00:00:00Z	2025-12-12T00:00:00Z
opensuse-su-2025:15815-1	xkbcomp-1.5.0-1.1 on GA media	2025-12-11T00:00:00Z	2025-12-11T00:00:00Z
opensuse-su-2025:15814-1	MozillaThunderbird-140.6.0-1.1 on GA media	2025-12-11T00:00:00Z	2025-12-11T00:00:00Z

ID	Description	Published	Updated

ID	Description	Published	Updated
osv-2024-1348	Heap-buffer-overflow in glslang::HlslGrammar::acceptDeclaration	2024-12-10T00:00:50.788Z	2025-12-23T15:50:48.626100Z
osv-2024-1346	UNKNOWN READ in glslang::HlslTokenStream::advanceToken	2024-12-10T00:00:20.380006Z	2025-12-23T15:50:47.126469Z
osv-2024-1343	Container-overflow in glslang::HlslParseContext::decomposeIntrinsic	2024-11-27T00:13:21.103465Z	2025-12-23T15:50:45.708425Z
osv-2024-1336	Security exception in org.checkerframework.checker.formatter.util.FormatUtil.formatParameterCategories	2024-11-26T00:01:25.736998Z	2024-11-26T00:01:25.737632Z
osv-2024-1332	Negative-size-param in extract_mr_data	2024-11-21T00:04:16.535838Z	2024-11-21T00:04:16.536469Z
osv-2024-1330	Heap-buffer-overflow in zoom_search_again	2024-11-20T00:15:27.562125Z	2024-11-20T14:27:37.875526Z
osv-2024-1326	Heap-buffer-overflow in ndpi_search_mikrotik	2024-11-18T00:12:17.790747Z	2024-11-18T00:12:17.791146Z
osv-2024-1324	Heap-buffer-overflow in Assimp::FBXExporter::WriteObjects	2024-11-18T00:01:13.979270Z	2024-11-18T00:01:13.979758Z
osv-2024-1322	Security exception in com.alibaba.fastjson2.JSONReader.readObject	2024-11-18T00:00:16.618504Z	2025-03-18T00:24:17.881614Z
osv-2024-1320	Heap-buffer-overflow in process_page_	2024-11-17T00:15:09.627790Z	2024-11-17T00:15:09.628193Z
osv-2024-1312	Heap-buffer-overflow in jv_string_vfmt	2024-11-15T00:16:08.928897Z	2025-03-05T14:20:12.622041Z
osv-2024-1310	Use-of-uninitialized-value in decompress_yuv.cc	2024-11-15T00:03:32.569897Z	2024-11-15T00:03:32.570195Z
osv-2024-1297	Heap-buffer-overflow in rijndaelSetupEncrypt	2024-11-09T00:13:03.370689Z	2024-11-09T00:13:03.371200Z
osv-2024-1293	Use-of-uninitialized-value in k5_hashtab_add	2024-11-08T00:16:09.025852Z	2024-11-08T00:16:09.026399Z
osv-2024-1282	Segv on unknown address in udiv	2024-11-05T00:16:47.572692Z	2024-11-05T00:16:47.573042Z
osv-2024-1279	Heap-buffer-overflow in opj_j2k_read_tile_header	2024-11-05T00:12:57.052133Z	2024-11-05T00:12:57.052585Z
osv-2024-1274	Segv on unknown address in yara_yyparse	2024-11-05T00:04:03.220856Z	2025-06-03T14:42:15.782999Z
osv-2024-1272	Segv on unknown address in std::__1::ios_base::~ios_base	2024-11-05T00:03:30.787980Z	2025-04-17T14:38:30.981292Z
osv-2022-1288	Stack-buffer-overflow in bool SmilesParseOps::parser::parse_atom_props<std::__1::__wrap_iter<char const*>	2024-11-04T00:16:22.516312Z	2026-01-30T14:23:19.786593Z
osv-2024-1266	UNKNOWN READ in llama_output_reserve	2024-11-03T00:14:31.568857Z	2024-11-03T00:14:31.569247Z
osv-2024-1261	Stack-buffer-overflow in _pcre2_compile_class_not_nested_16	2024-11-02T00:11:51.445365Z	2024-11-02T00:11:51.445768Z
osv-2024-1254	Security exception in org.apache.lucene.util.ArrayUtil.growExact	2024-11-01T00:07:39.301298Z	2025-11-17T14:52:40.058935Z
osv-2024-1253	Segv on unknown address in llama_output_reserve	2024-11-01T00:03:18.217276Z	2024-11-01T00:03:18.217677Z
osv-2023-1398	Heap-buffer-overflow in load_1	2024-11-01T00:02:38.719507Z	2024-11-01T00:02:38.719949Z
osv-2024-1251	UNKNOWN WRITE in s_DCTD_process	2024-11-01T00:02:31.749497Z	2025-04-29T14:29:01.935923Z
osv-2024-1249	Heap-buffer-overflow in extract_ice_option	2024-10-30T00:15:55.709182Z	2025-03-18T00:40:00.171776Z
osv-2024-1244	Heap-buffer-overflow in extract_fmtp	2024-10-27T00:10:45.337287Z	2024-11-06T14:24:14.483448Z
osv-2024-1241	Heap-buffer-overflow in polygonToCellsExperimental	2024-10-25T00:13:57.330581Z	2024-10-25T00:13:57.331154Z
osv-2024-1239	Heap-buffer-overflow in convsamp	2024-10-24T00:06:22.931512Z	2024-10-25T14:18:35.097668Z
osv-2024-1237	Use-of-uninitialized-value in jit_compile	2024-10-22T00:13:19.495791Z	2024-10-22T00:13:19.496460Z

ID	Description	Published	Updated
rustsec-2024-0419	gtk-rs GTK3 bindings - no longer maintained	2024-03-04T12:00:00Z	2024-12-09T12:29:00Z
rustsec-2024-0418	gtk-rs GTK3 bindings - no longer maintained	2024-03-04T12:00:00Z	2024-12-09T12:29:00Z
rustsec-2024-0417	gtk-rs GTK3 bindings - no longer maintained	2024-03-04T12:00:00Z	2024-12-09T12:29:00Z
rustsec-2024-0416	gtk-rs GTK3 bindings - no longer maintained	2024-03-04T12:00:00Z	2024-12-09T12:29:00Z
rustsec-2024-0415	gtk-rs GTK3 bindings - no longer maintained	2024-03-04T12:00:00Z	2024-12-09T12:29:00Z
rustsec-2024-0414	gtk-rs GTK3 bindings - no longer maintained	2024-03-04T12:00:00Z	2024-12-09T12:29:00Z
rustsec-2024-0413	gtk-rs GTK3 bindings - no longer maintained	2024-03-04T12:00:00Z	2024-12-09T12:29:00Z
rustsec-2024-0412	gtk-rs GTK3 bindings - no longer maintained	2024-03-04T12:00:00Z	2024-12-09T12:29:00Z
rustsec-2024-0411	gtk-rs GTK3 bindings - no longer maintained	2024-03-04T12:00:00Z	2024-12-09T12:29:00Z
rustsec-2024-0410	gtk-rs GTK3 bindings - no longer maintained	2024-03-04T12:00:00Z	2024-12-09T12:29:00Z
rustsec-2024-0019	Tokens for named pipes may be delivered after deregistration	2024-03-04T12:00:00Z	2024-03-04T17:51:31Z
rustsec-2024-0020	Stack buffer overflow with whoami on several Unix platforms	2024-02-28T12:00:00Z	2024-04-11T16:16:20Z
rustsec-2024-0017	Non-idiomatic use of iterators leads to use after free	2024-02-28T12:00:00Z	2024-04-11T16:16:20Z
rustsec-2024-0018	ObjectPool creates uninitialized memory when freeing objects	2024-02-27T12:00:00Z	2024-04-11T16:16:20Z
rustsec-2024-0016	dav1d AV1 decoder integer overflow	2024-02-19T12:00:00Z	2024-04-11T16:16:20Z
rustsec-2024-0014	`generational-arena` is unmaintained	2024-02-11T12:00:00Z	2024-02-18T04:06:15Z
rustsec-2024-0013	Memory corruption, denial of service, and arbitrary code execution in libgit2	2024-02-06T12:00:00Z	2024-02-15T01:22:49Z
rustsec-2024-0010	Improper comparison of different-length signatures	2024-02-06T12:00:00Z	2024-02-15T01:22:49Z
rustsec-2024-0397	`conrod` is unmaintained	2024-01-26T12:00:00Z	2024-11-10T14:25:35Z
rustsec-2024-0396	`conrod_core` is unmaintained	2024-01-26T12:00:00Z	2024-11-10T14:25:35Z
rustsec-2024-0015	filesystem-rs may be implicitly unmaintained	2024-01-25T12:00:00Z	2024-02-18T04:23:45Z
rustsec-2024-0012	Stack overflow during recursive JSON parsing	2024-01-24T12:00:00Z	2025-10-28T06:02:18Z
rustsec-2024-0011	Unauthenticated Nonce Increment in snow	2024-01-23T12:00:00Z	2025-10-28T06:02:18Z
rustsec-2024-0009	Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting')	2024-01-23T12:00:00Z	2024-01-24T17:00:49Z
rustsec-2024-0008	Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting')	2024-01-23T12:00:00Z	2024-01-24T17:00:49Z
rustsec-2024-0006	Multiple issues involving quote API	2024-01-21T12:00:00Z	2025-10-28T06:02:18Z
rustsec-2024-0004	`cosmwasm` is unmaintained	2024-01-20T12:00:00Z	2024-01-21T14:51:38Z
rustsec-2024-0007	Use-after-free when setting the locale	2024-01-19T12:00:00Z	2024-02-10T15:57:43Z
rustsec-2024-0003	Resource exhaustion vulnerability in h2 may lead to Denial of Service (DoS)	2024-01-17T12:00:00Z	2024-02-10T15:57:43Z
rustsec-2024-0001	Unsound use of str::from_utf8_unchecked on bytes which are not UTF-8	2024-01-13T12:00:00Z	2024-02-10T15:57:43Z

ID	Description	Published	Updated
bit-activemq-2020-26217	Remote Code Execution in XStream	2025-12-03T14:35:16.352Z	2025-12-03T15:08:24.036Z
bit-activemq-2020-1941		2025-12-03T14:35:14.779Z	2025-12-03T15:08:24.036Z
bit-activemq-2020-13947		2025-12-03T14:35:13.393Z	2025-12-03T15:08:24.036Z
bit-activemq-2020-13920		2025-12-03T14:35:12.171Z	2025-12-03T15:08:24.036Z
bit-activemq-2020-11998		2025-12-03T14:35:10.504Z	2025-12-03T15:08:24.036Z
bit-flux-2022-39272	Flux2 vulnerable to Denial of Service due to Improper use of metav1.Duration	2025-12-02T17:37:01.043Z	2025-12-02T18:06:28.296Z
bit-flux-2022-36049	Flux2 Helm Controller denial of service	2025-12-02T17:36:59.799Z	2025-12-02T18:06:28.296Z
bit-flux-2022-36035	Flux CLI Workload Injection	2025-12-02T17:36:58.339Z	2025-12-02T18:06:28.296Z
bit-flux-2022-24878	Improper path handling in Kustomization files allows for denial of service	2025-12-02T17:36:56.954Z	2025-12-02T18:06:28.296Z
bit-flux-2022-24877	Improper path handling in kustomization files allows path traversal	2025-12-02T17:36:55.459Z	2025-12-02T18:06:28.296Z
bit-flux-2022-24817	Improper kubeconfig validation allows arbitrary code execution	2025-12-02T17:36:53.808Z	2025-12-02T18:06:28.296Z
bit-gitlab-2025-7449	Allocation of Resources Without Limits or Throttling in GitLab	2025-12-02T12:05:42.978Z	2025-12-11T12:06:55.559Z
bit-gitlab-2025-6195	Direct Request ('Forced Browsing') in GitLab	2025-12-02T12:05:25.518Z	2025-12-11T12:06:55.559Z
bit-gitlab-2025-13611	Insertion of Sensitive Information into Log File in GitLab	2025-12-02T12:03:48.649Z	2025-12-11T12:06:55.559Z
bit-gitlab-2025-12653	Authentication Bypass by Spoofing in GitLab	2025-12-02T12:03:41.060Z	2025-12-11T12:06:55.559Z
bit-gitlab-2025-12571	Allocation of Resources Without Limits or Throttling in GitLab	2025-12-02T12:03:39.208Z	2025-12-11T12:06:55.559Z
bit-cilium-2025-64715	Cilium with misconfigured toGroups in policies can lead to unrestricted egress traffic	2025-12-02T11:35:57.032Z	2025-12-06T12:06:23.267Z
bit-gitlab-2025-9825	Missing Authorization in GitLab	2025-11-25T18:25:02.547Z	2025-12-03T12:08:06.927Z
bit-drupal-2025-13083	Drupal core - Moderately critical - Information disclosure - SA-CORE-2025-008	2025-11-25T17:56:46.824Z	2026-01-10T12:08:11.327Z
bit-drupal-2025-13082	Drupal core - Moderately critical - Defacement - SA-CORE-2025-007	2025-11-25T17:56:45.040Z	2025-11-25T18:26:29.568Z
bit-drupal-2025-13081	Drupal core - Moderately critical - Gadget chain - SA-CORE-2025-006	2025-11-25T17:56:43.353Z	2025-11-25T18:26:29.568Z
bit-drupal-2025-13080	Drupal core - Moderately critical - Denial of Service - SA-CORE-2025-005	2025-11-25T17:56:41.671Z	2025-11-25T18:26:29.568Z
bit-gitlab-2025-7000	Insertion of Sensitive Information Into Sent Data in GitLab	2025-11-21T09:04:35.128Z	2025-11-21T09:06:15.683Z
bit-gitlab-2025-6945	Improper Neutralization of Special Elements used in a Command ('Command Injection') in GitLab	2025-11-21T09:04:31.573Z	2025-11-21T09:06:15.683Z
bit-gitlab-2025-6171	Missing Authorization in GitLab	2025-11-21T09:04:22.209Z	2025-11-21T09:06:15.683Z
bit-postgresql-2025-12818	PostgreSQL libpq undersizes allocations, via integer wraparound	2025-11-21T08:47:38.070Z	2025-11-21T09:06:15.683Z
bit-postgresql-2025-12817	PostgreSQL CREATE STATISTICS does not check for schema CREATE privilege	2025-11-21T08:47:36.690Z	2025-11-21T09:06:15.683Z
bit-gitlab-2025-7736	Incorrect Authorization in GitLab	2025-11-20T09:05:14.844Z	2025-11-21T09:06:15.683Z
bit-gitlab-2025-2615	Insertion of Sensitive Information Into Sent Data in GitLab	2025-11-20T09:04:09.576Z	2025-11-21T09:06:15.683Z
bit-gitlab-2025-12983	Memory Allocation with Excessive Size Value in GitLab	2025-11-20T09:03:27.972Z	2025-11-21T09:06:15.683Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Updated
var-200106-0170	Buffer overflow in ntpd ntp daemon 4.0.99k and earlier (aka xntpd and xntp3) allows remot…	2024-07-23T21:52:30.595000Z
var-201403-0508	The sctp_sf_do_5_1D_ce function in net/sctp/sm_statefuns.c in the Linux kernel through 3.…	2024-07-23T21:52:28.560000Z
var-202205-1319	A use after free issue was addressed with improved memory management. This issue is fixed…	2024-07-23T21:52:24.897000Z
var-201804-1186	An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari be…	2024-07-23T21:52:24.271000Z
var-201102-0095	Google Chrome before 9.0.597.94 does not properly perform event handling for animations, …	2024-07-23T21:52:24.603000Z
var-200107-0019	Cisco routers and switches running IOS 12.0 through 12.2.1 allows a remote attacker to ca…	2024-07-23T21:51:49.898000Z
var-202002-1480	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-07-23T21:51:05.518000Z
var-201503-0389	The build_tablename function in pgsql.c in the PostgreSQL (aka pgsql) extension in PHP th…	2024-07-23T21:51:05.137000Z
var-202109-1805	Malformed requests may cause the server to dereference a NULL pointer. This issue affects…	2024-07-23T21:51:04.963000Z
var-201803-0086	LibTIFF 4.0.3 allows remote attackers to cause a denial of service (out-of-bounds write) …	2024-07-23T21:51:04.545000Z
var-202206-1186	Incomplete cleanup of microarchitectural fill buffers on some Intel(R) Processors may all…	2024-07-23T21:51:00.840000Z
var-201912-1853	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-07-23T21:50:27.591000Z
var-201912-0123	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-07-23T21:50:27.004000Z
var-201904-0756	A memory corruption issue was addressed with improved memory handling. This issue affecte…	2024-07-23T21:50:26.406000Z
var-200907-0717	WebKit in Apple Safari before 4.0.2, as used on iPhone OS before 3.1, iPhone OS before 3.…	2024-07-23T21:50:25.062000Z
var-202205-1304	A use after free issue was addressed with improved memory management. This issue is fixed…	2024-07-23T21:50:24.904000Z
var-200810-0142	The Postfix configuration file in Mac OS X 10.5.5 causes Postfix to be network-accessible…	2024-07-23T21:50:24.464000Z
var-201107-0125	The Curl_input_negotiate function in http_negotiate.c in libcurl 7.10.6 through 7.21.6, a…	2024-07-23T21:50:23.993000Z
var-202006-1651	A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.5 a…	2024-07-23T21:50:22.831000Z
var-200809-0008	Finder in Apple Mac OS X 10.5 through 10.5.4 does not properly update permission data in …	2024-07-23T21:50:10.607000Z
var-201203-0191	Use-after-free vulnerability in Google Chrome before 17.0.963.65 allows remote attackers …	2024-07-23T21:50:08.937000Z
var-201206-0064	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-07-23T21:49:37.613000Z
var-202004-2202	A memory corruption issue was addressed with improved memory handling. This issue is fixe…	2024-07-23T21:49:25.052000Z
var-202207-1485	An out-of-bounds write issue was addressed with improved input validation. This issue is …	2024-07-23T21:49:20.877000Z
var-201007-0321	Use-after-free vulnerability in WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 thro…	2024-07-23T21:49:20.293000Z
var-201803-0099	The _TIFFmalloc function in tif_unix.c in LibTIFF 4.0.3 does not reject a zero size, whic…	2024-07-23T21:49:16.122000Z
var-200505-0359	Apple Terminal 1.4.4 allows attackers to execute arbitrary commands via terminal escape s…	2024-07-23T21:49:11.998000Z
var-202003-1782	FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between seriali…	2024-07-23T21:48:40.941000Z
var-201806-1486	An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari be…	2024-07-23T21:48:39.044000Z
var-200705-0670	The png_handle_tRNS function in pngrutil.c in libpng before 1.0.25 and 1.2.x before 1.2.1…	2024-07-23T21:48:39.239000Z

ID	Description	Published	Updated
jvndb-2024-000097	WordPress Plugin "Forminator" vulnerable to cross-site scripting	2024-09-09T13:51+09:00	2024-09-09T13:51+09:00
jvndb-2024-000098	Multiple products from KINGSOFT JAPAN vulnerable to path traversal	2024-09-06T15:07+09:00	2024-09-06T15:07+09:00
jvndb-2024-000090	Secure Boot bypass Vulnerability in PRIMERGY	2024-09-06T14:39+09:00	2024-09-06T14:39+09:00
jvndb-2024-000093	WordPress Plugin "Advanced Custom Fields" vulnerable to cross-site scripting	2024-09-04T13:01+09:00	2024-09-04T13:01+09:00
jvndb-2024-007002	Panasonic Control FPWIN Pro7 vulnerable to stack-based buffer overflow	2024-09-02T14:57+09:00	2024-09-02T14:57+09:00
jvndb-2024-000091	IPCOM vulnerable to information disclosure	2024-08-30T14:56+09:00	2024-08-30T14:56+09:00
jvndb-2024-000092	Multiple vulnerabilities in WordPress plugin "Carousel Slider"	2024-08-30T13:58+09:00	2024-08-30T13:58+09:00
jvndb-2024-000089	WindLDR and WindO/I-NV4 store sensitive information in cleartext	2024-08-29T15:08+09:00	2024-09-24T17:14+09:00
jvndb-2024-006787	xfpt vulnerable to stack-based buffer overflow	2024-08-29T14:07+09:00	2024-08-29T14:07+09:00
jvndb-2024-000088	Multiple vulnerabilities in ELECOM wireless LAN routers and access points	2024-08-27T14:40+09:00	2024-11-26T15:17+09:00
jvndb-2024-006646	Authentication Bypass Vulnerability in Hitachi Ops Center Common Services	2024-08-27T12:01+09:00	2024-08-27T12:01+09:00
jvndb-2024-006367	Unquoted Service Path in Hitachi Device Manager	2024-08-26T16:27+09:00	2024-08-26T16:27+09:00
jvndb-2024-000087	BUFFALO wireless LAN routers and wireless LAN repeaters vulnerable to OS command injection	2024-08-23T14:17+09:00	2024-08-23T14:17+09:00
jvndb-2024-000086	Multiple Safie products vulnerable to improper server certificate verification	2024-08-22T13:51+09:00	2024-08-29T12:23+09:00
jvndb-2020-007305	Installer of Trend Micro Security 2020 (Consumer) may insecurely load Dynamic Link Libraries	2024-08-22T11:33+09:00	2024-08-22T11:33+09:00
jvndb-2017-009536	Packetbeat vulnerable to denial-of-service (DoS)	2024-08-21T17:54+09:00	2024-08-21T17:54+09:00
jvndb-2018-009127	Multiple vulnerabilities in LogonTracer	2024-08-21T17:37+09:00	2024-08-21T17:37+09:00
jvndb-2020-002957	A vulnerability in TOYOTA MOTOR's DCU (Display Control Unit)	2024-08-20T18:12+09:00	2024-08-20T18:12+09:00
jvndb-2020-007306	Trend Micro Security (Consumer) Driver vulnerable to Out-of-bounds Read	2024-08-20T17:52+09:00	2024-08-20T17:52+09:00
jvndb-2024-000085	"Rakuten Ichiba App" fails to restrict custom URL schemes properly	2024-08-20T16:56+09:00	2024-08-20T16:56+09:00
jvndb-2024-005167	EL Injection Vulnerability in Hitachi Tuning Manager	2024-08-15T09:38+09:00	2024-08-15T09:38+09:00
jvndb-2016-000124	WAON service app for Android fails to verify SSL server certificates	2024-08-15T09:36+09:00	2024-08-15T09:36+09:00
jvndb-2024-000083	Firmware update for RICOH JavaTM Platform resets the TLS configuration	2024-08-06T15:13+09:00	2024-08-06T15:13+09:00
jvndb-2024-000079	Cybozu Office vulnerable to bypass browsing restrictions in Custom App	2024-08-06T14:59+09:00	2024-08-06T14:59+09:00
jvndb-2024-000082	Pimax Play and PiTool accept WebSocket connections from unintended endpoints	2024-08-05T13:58+09:00	2024-08-05T13:58+09:00
jvndb-2024-000084	Multiple vulnerabilities in ZEXELON ZWX-2000CSW2-HN	2024-08-05T13:46+09:00	2024-08-05T13:46+09:00
jvndb-2024-000077	FFRI AMC vulnerable to OS command injection	2024-07-30T16:40+09:00	2024-07-30T16:40+09:00
jvndb-2024-000078	Multiple vulnerabilities in ELECOM wireless LAN routers	2024-07-30T15:34+09:00	2026-02-03T15:35+09:00
jvndb-2024-000081	EC-CUBE plugin (for EC-CUBE 4 series) "EC-CUBE Web API Plugin" vulnerable to stored cross-site scripting	2024-07-30T14:06+09:00	2024-07-30T14:06+09:00
jvndb-2024-000080	EC-CUBE 4 Series improper input validation when installing plugins	2024-07-30T13:56+09:00	2024-07-30T13:56+09:00

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2026:0117-1	Security update for util-linux	2026-01-13T04:33:43Z	2026-01-13T04:33:43Z
suse-su-2026:0116-1	Security update for util-linux	2026-01-13T02:33:45Z	2026-01-13T02:33:45Z
suse-su-2026:0115-1	Security update for util-linux	2026-01-12T15:03:44Z	2026-01-12T15:03:44Z
suse-su-2026:20053-1	Security update for libsoup	2026-01-12T12:03:42Z	2026-01-12T12:03:42Z
suse-su-2026:20051-1	Security update for libtasn1	2026-01-12T12:00:27Z	2026-01-12T12:00:27Z
suse-su-2026:20031-1	Security update for MozillaFirefox	2026-01-12T12:00:16Z	2026-01-12T12:00:16Z
suse-su-2026:20074-1	Security update for glib2	2026-01-12T11:58:25Z	2026-01-12T11:58:25Z
suse-su-2026:20032-1	Security update for glib2	2026-01-12T11:58:25Z	2026-01-12T11:58:25Z
suse-su-2026:20072-1	Security update for libmicrohttpd	2026-01-12T11:15:02Z	2026-01-12T11:15:02Z
suse-su-2026:20029-1	Security update for libmicrohttpd	2026-01-12T11:15:02Z	2026-01-12T11:15:02Z
suse-su-2026:20073-1	Security update for libpng16	2026-01-12T11:15:01Z	2026-01-12T11:15:01Z
suse-su-2026:20030-1	Security update for libpng16	2026-01-12T11:15:01Z	2026-01-12T11:15:01Z
suse-su-2026:0099-1	Security update for ImageMagick	2026-01-12T10:37:47Z	2026-01-12T10:37:47Z
suse-su-2026:0107-1	Security update for the Linux Kernel (Live Patch 31 for SUSE Linux Enterprise 15 SP5)	2026-01-12T10:34:47Z	2026-01-12T10:34:47Z
suse-su-2026:0090-1	Security update for the Linux Kernel (Live Patch 24 for SUSE Linux Enterprise 15 SP5)	2026-01-12T10:34:10Z	2026-01-12T10:34:10Z
suse-su-2026:20071-1	Security update for python-tornado6	2026-01-12T10:30:08Z	2026-01-12T10:30:08Z
suse-su-2026:20028-1	Security update for python-tornado6	2026-01-12T10:30:08Z	2026-01-12T10:30:08Z
suse-su-2026:20070-1	Security update for avahi	2026-01-11T16:54:30Z	2026-01-11T16:54:30Z
suse-su-2026:20027-1	Security update for avahi	2026-01-11T16:54:30Z	2026-01-11T16:54:30Z
suse-su-2026:0087-1	Security update for libheif	2026-01-09T15:19:44Z	2026-01-09T15:19:44Z
suse-su-2026:0086-1	Security update for php8	2026-01-09T15:01:56Z	2026-01-09T15:01:56Z
suse-su-2026:0085-1	Security update for libpng16	2026-01-09T15:01:38Z	2026-01-09T15:01:38Z
suse-su-2026:20050-1	Security update for libvirt	2026-01-09T11:04:23Z	2026-01-09T11:04:23Z
suse-su-2026:20049-1	Security update for openvswitch	2026-01-09T10:54:58Z	2026-01-09T10:54:58Z
suse-su-2026:0083-1	Security update for gimp	2026-01-09T09:12:59Z	2026-01-09T09:12:59Z
suse-su-2026:0082-1	Security update for python-filelock	2026-01-09T09:12:48Z	2026-01-09T09:12:48Z
suse-su-2026:0081-1	Security update for poppler	2026-01-09T08:02:02Z	2026-01-09T08:02:02Z
suse-su-2026:0080-1	Security update for libvirt	2026-01-09T08:01:44Z	2026-01-09T08:01:44Z
suse-su-2026:0079-1	Security update for libvirt	2026-01-09T08:01:29Z	2026-01-09T08:01:29Z
suse-su-2026:0078-1	Security update for curl	2026-01-09T07:07:10Z	2026-01-09T07:07:10Z

ID	Description	Published	Updated
cnvd-2025-31113	WordPress Events Manager Plugin信息泄露漏洞	2025-12-22	2025-12-23
cnvd-2026-05361	ChurchCRM legacy端点SQL注入漏洞	2025-12-19	2026-01-19
cnvd-2026-04239	Apple macOS Tahoe安全绕过漏洞（CNVD-2026-04239）	2025-12-19	2026-01-16
cnvd-2025-31154	Apple macOS Tahoe权限问题漏洞	2025-12-19	2025-12-22
cnvd-2025-31153	Apple macOS Tahoe符号链接处理不当漏洞（CNVD-2025-3115302）	2025-12-19	2025-12-22
cnvd-2025-31152	Apple macOS Tahoe注入漏洞	2025-12-19	2025-12-22
cnvd-2025-31151	Apple macOS Tahoe内存处理不当漏洞	2025-12-19	2025-12-22
cnvd-2025-31150	Apple macOS Tahoe沙盒限制不足漏洞	2025-12-19	2025-12-22
cnvd-2025-31149	Apple macOS Tahoe逻辑限制不足漏洞	2025-12-19	2025-12-23
cnvd-2025-31148	Apple macOS Tahoe符号链接验证不足漏洞	2025-12-19	2025-12-23
cnvd-2025-31147	Apple macOS Tahoe验证不足漏洞	2025-12-19	2025-12-23
cnvd-2025-31146	Apple macOS Tahoe检查不足漏洞（CNVD-2025-3114612）	2025-12-19	2025-12-23
cnvd-2025-31145	Apple macOS Tahoe权限限制不足漏洞	2025-12-19	2025-12-23
cnvd-2025-31144	Apple macOS Tahoe检查不足漏洞	2025-12-19	2025-12-23
cnvd-2026-03712	TOTOLINK X5000R代码执行漏洞	2025-12-18	2026-01-15
cnvd-2026-02696	Google Pixel权限提升漏洞（CNVD-2026-0269620）	2025-12-18	2026-01-09
cnvd-2026-02695	Google Pixel权限提升漏洞（CNVD-2026-0269521）	2025-12-18	2026-01-09
cnvd-2026-02694	Google Pixel权限提升漏洞（CNVD-2026-0269422）	2025-12-18	2026-01-09
cnvd-2026-02693	Google Pixel权限提升漏洞（CNVD-2026-0269323）	2025-12-18	2026-01-09
cnvd-2026-00840	Student File Management System update_user.php文件跨站脚本漏洞	2025-12-18	2026-01-05
cnvd-2026-00839	Student File Management System user_id参数SQL注入漏洞	2025-12-18	2026-01-05
cnvd-2026-00796	UTT 进取 512W缓冲区溢出漏洞（CNVD-2026-0079609）	2025-12-18	2026-01-08
cnvd-2026-00795	UTT 进取 512W缓冲区溢出漏洞（CNVD-2026-0079510）	2025-12-18	2026-01-08
cnvd-2026-00696	Simple Attendance Record System check.php文件SQL注入漏洞	2025-12-18	2026-01-07
cnvd-2026-00695	Computer Laboratory System admin_pic.php文件文件上传漏洞	2025-12-18	2026-01-07
cnvd-2026-00656	D-Link DIR-803信息泄露漏洞	2025-12-18	2026-01-07
cnvd-2026-00446	Class and Exam Timetable Management /index.php文件SQL注入漏洞	2025-12-18	2026-01-05
cnvd-2026-00445	Class and Exam Timetable Management /preview7.php文件SQL注入漏洞	2025-12-18	2026-01-05
cnvd-2025-31547	IBM Aspera Orchestrator拒绝服务漏洞	2025-12-18	2025-12-30
cnvd-2025-31546	IBM Aspera Orchestrator未验证的密码更改漏洞	2025-12-18	2025-12-30

ID	Description	Published	Updated
certfr-2025-avi-1101	Multiples vulnérabilités dans les produits Netgate	2025-12-12T00:00:00.000000	2025-12-12T00:00:00.000000
certfr-2025-avi-1100	Multiples vulnérabilités dans les produits Atlassian	2025-12-12T00:00:00.000000	2025-12-12T00:00:00.000000
CERTFR-2025-AVI-1108	Multiples vulnérabilités dans les produits IBM	2025-12-12T00:00:00.000000	2025-12-12T00:00:00.000000
CERTFR-2025-AVI-1107	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-12-12T00:00:00.000000	2025-12-12T00:00:00.000000
CERTFR-2025-AVI-1106	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2025-12-12T00:00:00.000000	2025-12-12T00:00:00.000000
CERTFR-2025-AVI-1105	Multiples vulnérabilités dans le noyau Linux de Red Hat	2025-12-12T00:00:00.000000	2025-12-12T00:00:00.000000
CERTFR-2025-AVI-1104	Vulnérabilité dans Microsoft Windows Admin Center	2025-12-12T00:00:00.000000	2025-12-12T00:00:00.000000
CERTFR-2025-AVI-1103	Multiples vulnérabilités dans Microsoft Edge	2025-12-12T00:00:00.000000	2025-12-15T00:00:00.000000
CERTFR-2025-AVI-1102	Multiples vulnérabilités dans les produits NetApp	2025-12-12T00:00:00.000000	2025-12-12T00:00:00.000000
CERTFR-2025-AVI-1101	Multiples vulnérabilités dans les produits Netgate	2025-12-12T00:00:00.000000	2025-12-12T00:00:00.000000
CERTFR-2025-AVI-1100	Multiples vulnérabilités dans les produits Atlassian	2025-12-12T00:00:00.000000	2025-12-12T00:00:00.000000
certfr-2025-avi-1099	Multiples vulnérabilités dans les produits Mozilla	2025-12-11T00:00:00.000000	2025-12-11T00:00:00.000000
certfr-2025-avi-1098	Vulnérabilité dans Broadcom Carbon Black Cloud	2025-12-11T00:00:00.000000	2025-12-11T00:00:00.000000
certfr-2025-avi-1097	Vulnérabilité dans les produits Mitel	2025-12-11T00:00:00.000000	2026-01-06T00:00:00.000000
certfr-2025-avi-1096	Multiples vulnérabilités dans Google Chrome	2025-12-11T00:00:00.000000	2025-12-15T00:00:00.000000
certfr-2025-avi-1095	Multiples vulnérabilités dans GitLab	2025-12-11T00:00:00.000000	2025-12-11T00:00:00.000000
CERTFR-2025-AVI-1099	Multiples vulnérabilités dans les produits Mozilla	2025-12-11T00:00:00.000000	2025-12-11T00:00:00.000000
CERTFR-2025-AVI-1098	Vulnérabilité dans Broadcom Carbon Black Cloud	2025-12-11T00:00:00.000000	2025-12-11T00:00:00.000000
CERTFR-2025-AVI-1097	Vulnérabilité dans les produits Mitel	2025-12-11T00:00:00.000000	2026-01-06T00:00:00.000000
CERTFR-2025-AVI-1096	Multiples vulnérabilités dans Google Chrome	2025-12-11T00:00:00.000000	2025-12-15T00:00:00.000000
CERTFR-2025-AVI-1095	Multiples vulnérabilités dans GitLab	2025-12-11T00:00:00.000000	2025-12-11T00:00:00.000000
certfr-2025-avi-1094	Multiples vulnérabilités dans les produits Microsoft	2025-12-10T00:00:00.000000	2025-12-10T00:00:00.000000
certfr-2025-avi-1093	Vulnérabilité dans Microsoft Azure Monitor Agent	2025-12-10T00:00:00.000000	2025-12-10T00:00:00.000000
certfr-2025-avi-1092	Multiples vulnérabilités dans Microsoft Windows	2025-12-10T00:00:00.000000	2025-12-10T00:00:00.000000
certfr-2025-avi-1091	Multiples vulnérabilités dans Microsoft Office	2025-12-10T00:00:00.000000	2025-12-10T00:00:00.000000
certfr-2025-avi-1090	Vulnérabilité dans les produits Moxa	2025-12-10T00:00:00.000000	2025-12-10T00:00:00.000000
certfr-2025-avi-1089	Vulnérabilité dans les produits Bitdefender	2025-12-10T00:00:00.000000	2025-12-10T00:00:00.000000
certfr-2025-avi-1088	Multiples vulnérabilités dans Ivanti Endpoint Manager (EPM)	2025-12-10T00:00:00.000000	2025-12-10T00:00:00.000000
certfr-2025-avi-1087	Multiples vulnérabilités dans les produits Mozilla	2025-12-10T00:00:00.000000	2025-12-10T00:00:00.000000
certfr-2025-avi-1086	Multiples vulnérabilités dans les produits Intel	2025-12-10T00:00:00.000000	2025-12-10T00:00:00.000000

ID	Description	Published	Updated
CERTFR-2017-ALE-019	Vulnérabilité d'usurpation d'identité dans plusieurs clients de messagerie	2017-12-05T00:00:00.000000	2018-03-07T00:00:00.000000
certfr-2017-ale-018	Vulnérabilité dans Apple MacOS High Sierra	2017-11-29T00:00:00.000000	2017-11-30T00:00:00.000000
CERTFR-2017-ALE-018	Vulnérabilité dans Apple MacOS High Sierra	2017-11-29T00:00:00.000000	2017-11-30T00:00:00.000000
certfr-2017-ale-017	Vulnérabilité dans le serveur de messagerie Exim	2017-11-27T00:00:00.000000	2018-02-01T00:00:00.000000
CERTFR-2017-ALE-017	Vulnérabilité dans le serveur de messagerie Exim	2017-11-27T00:00:00.000000	2018-02-01T00:00:00.000000
certfr-2017-ale-016	Campagne de rançongiciel Bad Rabbit	2017-10-25T00:00:00.000000	2017-10-27T00:00:00.000000
CERTFR-2017-ALE-016	Campagne de rançongiciel Bad Rabbit	2017-10-25T00:00:00.000000	2017-10-27T00:00:00.000000
certfr-2017-ale-014	Vulnérabilité dans le protocole WPA/WPA2	2017-10-18T00:00:00.000000	2017-10-19T00:00:00.000000
CERTFR-2017-ALE-014	Vulnérabilité dans le protocole WPA/WPA2	2017-10-18T00:00:00.000000	2017-10-19T00:00:00.000000
certfr-2017-ale-015	Vulnérabilités dans la bibliothèque Infineon RSA	2017-10-16T00:00:00.000000	2017-10-17T00:00:00.000000
CERTFR-2017-ALE-015	Vulnérabilités dans la bibliothèque Infineon RSA	2017-10-16T00:00:00.000000	2017-10-17T00:00:00.000000
certfr-2017-ale-013	Présence de code malveillant dans Piriform CCleaner	2017-09-18T00:00:00.000000	2017-10-09T00:00:00.000000
CERTFR-2017-ALE-013	Présence de code malveillant dans Piriform CCleaner	2017-09-18T00:00:00.000000	2017-10-09T00:00:00.000000
certfr-2017-ale-012	Campagne de maliciels prenant l'apparence d'un rançongiciel à multiples capacités de propagation	2017-06-27T00:00:00.000000	2017-08-03T00:00:00.000000
CERTFR-2017-ALE-012	Campagne de maliciels prenant l'apparence d'un rançongiciel à multiples capacités de propagation	2017-06-27T00:00:00.000000	2017-08-03T00:00:00.000000
certfr-2017-ale-011	Campagne de messages électroniques non sollicités de type Jaff	2017-05-14T00:00:00.000000	2017-06-27T00:00:00.000000
CERTFR-2017-ALE-011	Campagne de messages électroniques non sollicités de type Jaff	2017-05-14T00:00:00.000000	2017-06-27T00:00:00.000000
certfr-2017-ale-010	Propagation d'un rançongiciel exploitant les vulnérabilités MS17-010	2017-05-12T00:00:00.000000	2017-06-27T00:00:00.000000
CERTFR-2017-ALE-010	Propagation d'un rançongiciel exploitant les vulnérabilités MS17-010	2017-05-12T00:00:00.000000	2017-06-27T00:00:00.000000
certfr-2017-ale-009	Vulnérabilité dans Microsoft Malware Protection Engine	2017-05-09T00:00:00.000000	2017-05-15T00:00:00.000000
CERTFR-2017-ALE-009	Vulnérabilité dans Microsoft Malware Protection Engine	2017-05-09T00:00:00.000000	2017-05-15T00:00:00.000000
certfr-2017-ale-008	Multiples vulnérabilités dans Microsoft Windows XP et Windows Server 2003	2017-04-14T00:00:00.000000	2017-09-06T00:00:00.000000
CERTFR-2017-ALE-008	Multiples vulnérabilités dans Microsoft Windows XP et Windows Server 2003	2017-04-14T00:00:00.000000	2017-09-06T00:00:00.000000
certfr-2017-ale-007	Vulnérabilité dans Microsoft Office	2017-04-10T00:00:00.000000	2017-04-12T00:00:00.000000
CERTFR-2017-ALE-007	Vulnérabilité dans Microsoft Office	2017-04-10T00:00:00.000000	2017-04-12T00:00:00.000000
certfr-2017-ale-006	Multiples vulnérabilités dans SCADA Siemens RUGGEDCOM ROX I	2017-03-29T00:00:00.000000	2017-03-29T00:00:00.000000
CERTFR-2017-ALE-006	Multiples vulnérabilités dans SCADA Siemens RUGGEDCOM ROX I	2017-03-29T00:00:00.000000	2017-03-29T00:00:00.000000
certfr-2017-ale-005	Vulnérabilité dans les commutateurs Cisco	2017-03-20T00:00:00.000000	2017-05-10T00:00:00.000000
CERTFR-2017-ALE-005	Vulnérabilité dans les commutateurs Cisco	2017-03-20T00:00:00.000000	2017-05-10T00:00:00.000000
certfr-2017-ale-004	Vulnérabilité dans Apache Struts	2017-03-10T00:00:00.000000	2017-05-10T00:00:00.000000

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated