Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-jr4h-hc9r-9rr3 | Windows LSA Spoofing Vulnerability. | 2022-05-11T00:00:57Z | 2025-10-22T00:32:32Z |
| ghsa-j9xf-76vv-4wcg | Active Directory Domain Services Elevation of Privilege Vulnerability. | 2022-05-11T00:00:58Z | 2025-10-22T00:32:32Z |
| ghsa-9pf5-f78q-q36r | SolarView Compact ver.6.00 was discovered to contain a command injection vulnerability via conf_mail.php. | 2022-05-13T00:00:53Z | 2025-10-22T00:32:33Z |
| ghsa-987m-9prq-3p7m | A OS command injection vulnerability in the CGI program of Zyxel USG FLEX 100(W) firmware versions … | 2022-05-13T00:00:56Z | 2025-10-22T00:32:33Z |
| ghsa-xvxq-hq48-xphm | Sandbox bypass in Script Security Plugin | 2022-05-13T01:00:55Z | 2025-10-22T17:41:05Z |
| ghsa-hhpm-5cp2-hg4x | Deserialization of Untrusted Data in Jenkins | 2022-05-13T01:01:00Z | 2025-10-22T17:35:50Z |
| ghsa-26wc-3wqp-g3rp | Deserialization of Untrusted Data in Jenkins | 2022-05-13T01:01:03Z | 2025-10-22T17:30:59Z |
| ghsa-f6x6-gf9m-8cc3 | Adobe Flash Player version 27.0.0.159 and earlier has a flawed bytecode verification procedure, whi… | 2022-05-13T01:02:16Z | 2025-10-22T00:31:29Z |
| ghsa-2rf4-mpg3-phjw | A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnera… | 2022-05-13T01:02:18Z | 2025-11-17T21:31:17Z |
| ghsa-f87x-hp4c-9cvw | A vulnerability has been identified in SIMATIC CP 1543-1 (All versions < V2.0.28), SIPLUS NET CP 15… | 2022-05-13T01:02:35Z | 2025-10-22T00:31:17Z |
| ghsa-6vrj-w635-63jg | An integer overflow in xmlmemory.c in libxml2 before 2.9.5, as used in Google Chrome prior to 62.0.… | 2022-05-13T01:02:39Z | 2025-12-04T00:30:57Z |
| ghsa-g97f-3hrx-c447 | Type confusion in V8 in Google Chrome prior to 59.0.3071.86 for Linux, Windows, and Mac, and 59.0.3… | 2022-05-13T01:02:43Z | 2025-10-22T00:31:29Z |
| ghsa-qpgr-mp84-gp92 | ThinkPHP before 3.2.4, as used in Open Source BMS v1.1.1 and other products, allows Remote Command … | 2022-05-13T01:02:54Z | 2025-12-08T18:30:24Z |
| ghsa-j68w-7qm9-fjqq | Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to g… | 2022-05-13T01:03:08Z | 2025-11-04T18:30:34Z |
| ghsa-cmh7-cfjq-p92g | Use-after-free vulnerability in Microsoft Internet Explorer 6, 7, and 8 allows remote attackers to … | 2022-05-13T01:03:30Z | 2025-10-22T03:30:28Z |
| ghsa-fr34-8fhg-2m6q | The Widget Connector macro in Atlassian Confluence Server before version 6.6.12 (the fixed version … | 2022-05-13T01:04:38Z | 2025-10-22T00:31:37Z |
| ghsa-mgfm-9xxf-m8pm | Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier allows remote attackers to e… | 2022-05-13T01:04:49Z | 2025-11-17T21:31:17Z |
| ghsa-6493-28fj-f93w | GNU Bash through 4.3 bash43-026 does not properly parse function definitions in the values of envir… | 2022-05-13T01:05:13Z | 2025-10-22T03:30:42Z |
| ghsa-6hfc-grwp-2p9c | GNU Bash through 4.3 processes trailing strings after function definitions in the values of environ… | 2022-05-13T01:05:13Z | 2025-10-22T03:30:41Z |
| ghsa-f7j6-xrjp-vffg | GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definit… | 2022-05-13T01:05:13Z | 2025-10-22T03:30:43Z |
| ghsa-w62w-9g5v-w3p4 | Adobe Flash Player before 13.0.0.258 and 14.x and 15.x before 15.0.0.239 on Windows and OS X and be… | 2022-05-13T01:05:54Z | 2025-10-22T03:30:41Z |
| ghsa-3cfr-rpp6-j86f | Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before … | 2022-05-13T01:06:46Z | 2025-10-22T03:30:30Z |
| ghsa-6hpg-rw47-66vr | Use-after-free vulnerability in the BitmapData class in the ActionScript 3 (AS3) implementation in … | 2022-05-13T01:06:52Z | 2025-11-17T21:31:16Z |
| ghsa-9h3m-vp3m-35pw | Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 (AS3) implementation … | 2022-05-13T01:06:52Z | 2025-11-18T00:30:17Z |
| ghsa-x2r9-jfjp-jvp9 | The glob implementation in the GNU C Library (aka glibc or libc6) allows remote authenticated users… | 2022-05-13T01:06:55Z | 2025-11-04T00:30:27Z |
| ghsa-9cq3-gr97-qxf7 | Microsoft Outlook 2010 SP2, Outlook 2013 SP1 and RT SP1, and Outlook 2016 allow an attacker to exec… | 2022-05-13T01:06:59Z | 2025-10-22T00:31:29Z |
| ghsa-gfx2-wv94-38hv | The social-warfare plugin before 3.5.3 for WordPress has stored XSS via the wp-admin/admin-post.php… | 2022-05-13T01:07:40Z | 2025-10-22T00:31:37Z |
| ghsa-w9rc-q752-88hf | In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker or prefork, code execut… | 2022-05-13T01:09:38Z | 2025-10-22T00:31:38Z |
| ghsa-jxf6-fx3m-8x2r | Apache httpd allows remote attackers to read secret data from process memory if the Limit directive… | 2022-05-13T01:09:40Z | 2025-11-04T18:30:34Z |
| ghsa-9mgw-4qp5-wrrj | In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, use of the ap_get_basic_auth_pw() by t… | 2022-05-13T01:09:44Z | 2025-11-04T18:30:34Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2017-0147 | N/A | The SMBv1 server in Microsoft Windows Vista SP2; … |
Microsoft Corporation |
Windows SMB |
2017-03-17T00:00:00.000Z | 2025-10-21T23:55:44.104Z |
| cve-2017-0148 | N/A | The SMBv1 server in Microsoft Windows Vista SP2; … |
Microsoft Corporation |
Windows SMB |
2017-03-17T00:00:00.000Z | 2025-10-21T23:55:43.849Z |
| cve-2017-0149 | N/A | Microsoft Internet Explorer 9 through 11 allow re… |
Microsoft Corporation |
Internet Explorer |
2017-03-17T00:00:00.000Z | 2025-10-21T23:55:43.703Z |
| cve-2017-3881 | N/A | A vulnerability in the Cisco Cluster Management P… |
n/a |
Cisco IOS and IOS XE Software |
2017-03-17T22:00:00.000Z | 2025-10-21T23:55:43.556Z |
| cve-2017-7269 | N/A | Buffer overflow in the ScStoragePathFromUrl funct… |
n/a |
n/a |
2017-03-27T01:55:00.000Z | 2025-10-21T23:55:43.335Z |
| cve-2014-3931 | N/A | fastping.c in MRLG (aka Multi-Router Looking Glas… |
n/a |
n/a |
2017-03-31T15:00:00.000Z | 2025-10-21T23:55:43.153Z |
| cve-2014-9114 | N/A | Blkid in util-linux before 2.26rc-1 allows local … |
n/a |
n/a |
2017-03-31T15:00:00.000Z | 2025-12-04T20:21:07.498Z |
| cve-2017-5950 | N/A | The SingleDocParser::HandleNode function in yaml-… |
n/a |
n/a |
2017-04-03T05:44:00.000Z | 2025-11-03T21:44:04.287Z |
| cve-2017-6884 | N/A | A command injection vulnerability was discovered … |
n/a |
n/a |
2017-04-06T17:00:00.000Z | 2025-10-21T23:55:42.908Z |
| cve-2016-8735 | N/A | Remote code execution is possible with Apache Tom… |
Apache Software Foundation |
Apache Tomcat |
2017-04-06T21:00:00.000Z | 2025-10-21T23:55:42.758Z |
| cve-2017-0199 | N/A | Microsoft Office 2007 SP3, Microsoft Office 2010 … |
Microsoft Corporation |
Office/WordPad |
2017-04-12T14:00:00.000Z | 2025-10-21T23:55:42.609Z |
| cve-2017-0210 | N/A | An elevation of privilege vulnerability exists wh… |
Microsoft Corporation |
Internet Explorer |
2017-04-12T14:00:00.000Z | 2025-10-21T23:55:42.425Z |
| cve-2017-7938 | N/A | Stack-based buffer overflow in DMitry (Deepmagic … |
n/a |
n/a |
2017-04-20T00:00:00.000Z | 2025-11-03T21:44:05.774Z |
| cve-2016-1555 | N/A | (1) boardData102.php, (2) boardData103.php, (3) b… |
n/a |
n/a |
2017-04-21T15:00:00.000Z | 2025-10-21T23:55:42.264Z |
| cve-2017-3506 | N/A | Vulnerability in the Oracle WebLogic Server compo… |
Oracle Corporation |
WebLogic Server |
2017-04-24T19:00:00.000Z | 2025-10-21T23:55:42.100Z |
| cve-2017-5030 | N/A | Incorrect handling of complex species in V8 in Go… |
n/a |
Google Chrome prior to 57.0.2987.98 for Linux, Windows and Mac, and 57.0.2987.108 for Android |
2017-04-24T23:00:00.000Z | 2025-10-21T23:55:41.948Z |
| cve-2017-8291 | N/A | Artifex Ghostscript through 2017-04-26 allows -dS… |
n/a |
n/a |
2017-04-27T01:41:00.000Z | 2025-10-21T23:55:41.773Z |
| cve-2017-3066 | N/A | Adobe ColdFusion 2016 Update 3 and earlier, ColdF… |
n/a |
Adobe ColdFusion ColdFusion 2016 Update 3 and earlier, ColdFusion 11 update 11 and earlier, ColdFusion 10 Update 22 and earlier |
2017-04-27T14:00:00.000Z | 2025-10-21T23:55:41.607Z |
| cve-2017-6519 | N/A | avahi-daemon in Avahi through 0.6.32 and 0.7 inad… |
n/a |
n/a |
2017-05-01T01:00:00.000Z | 2025-12-03T21:57:30.030Z |
| cve-2017-5689 | N/A | An unprivileged network attacker could gain syste… |
Intel Corporation |
Intel Active Mangement Technology, Intel Small Business Technology, Intel Standard Manageability |
2017-05-02T14:00:00.000Z | 2025-10-21T23:55:41.384Z |
| cve-2017-8872 | N/A | The htmlParseTryOrFinish function in HTMLparser.c… |
n/a |
n/a |
2017-05-10T05:14:00.000Z | 2025-12-17T21:59:08.413Z |
| cve-2017-0213 | N/A | Windows COM Aggregate Marshaler in Microsoft Wind… |
Microsoft Corporation |
Windows COM |
2017-05-12T14:00:00.000Z | 2025-10-21T23:55:41.209Z |
| cve-2017-0222 | N/A | A remote code execution vulnerability exists when… |
Microsoft Corporation |
Internet Explorer |
2017-05-12T14:00:00.000Z | 2025-10-21T23:55:41.048Z |
| cve-2017-0261 | N/A | Microsoft Office 2010 SP2, Office 2013 SP1, and O… |
Microsoft Corporation |
Microsoft Office |
2017-05-12T14:00:00.000Z | 2025-10-21T23:55:40.908Z |
| cve-2017-0262 | N/A | Microsoft Office 2010 SP2, Office 2013 SP1, and O… |
Microsoft Corporation |
Microsoft Office |
2017-05-12T14:00:00.000Z | 2025-10-21T23:55:40.758Z |
| cve-2017-0263 | N/A | The kernel-mode drivers in Microsoft Windows Serv… |
Microsoft Corporation |
Microsoft Windows |
2017-05-12T14:00:00.000Z | 2025-10-21T23:55:40.588Z |
| cve-2017-9048 | N/A | libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable… |
n/a |
n/a |
2017-05-18T06:13:00.000Z | 2025-12-18T11:40:50.027Z |
| cve-2017-9049 | N/A | libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable… |
n/a |
n/a |
2017-05-18T06:13:00.000Z | 2025-12-18T14:20:32.345Z |
| cve-2017-9050 | N/A | libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable… |
n/a |
n/a |
2017-05-18T06:13:00.000Z | 2025-12-17T22:10:56.955Z |
| cve-2016-9842 | N/A | The inflateMark function in inflate.c in zlib 1.2… |
n/a |
n/a |
2017-05-23T03:56:00.000Z | 2025-12-04T16:36:07.397Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2015-7645 | N/A | Adobe Flash Player 18.x through 18.0.0.252 and 19… |
n/a |
n/a |
2015-10-15T10:00:00.000Z | 2025-10-21T23:55:57.550Z |
| cve-2015-4902 | N/A | Unspecified vulnerability in Oracle Java SE 6u101… |
n/a |
n/a |
2015-10-21T23:00:00.000Z | 2025-10-21T23:55:57.316Z |
| cve-2015-6867 | N/A | The vertica-udx-zygote process in HP Vertica 7.1.… |
n/a |
n/a |
2015-11-04T02:00:00 | 2024-08-06T07:36:34.421Z |
| cve-2015-4852 | N/A | The WLS Security component in Oracle WebLogic Ser… |
n/a |
n/a |
2015-11-18T15:00:00.000Z | 2025-10-21T23:55:57.062Z |
| cve-2015-5317 | N/A | The Fingerprints pages in Jenkins before 1.638 an… |
n/a |
n/a |
2015-11-25T20:00:00.000Z | 2025-10-21T23:55:56.897Z |
| cve-2015-6175 | N/A | The kernel in Microsoft Windows 10 Gold allows lo… |
n/a |
n/a |
2015-12-09T11:00:00.000Z | 2025-10-21T23:55:56.760Z |
| cve-2015-7755 | N/A | Juniper ScreenOS 6.2.0r15 through 6.2.0r18, 6.3.0… |
n/a |
n/a |
2015-12-19T11:00:00.000Z | 2025-10-21T23:55:56.610Z |
| cve-2015-7928 | N/A | eWON devices with firmware before 10.1s0 do not h… |
n/a |
n/a |
2015-12-23T11:00:00.000Z | 2025-11-04T16:09:06.301Z |
| cve-2015-8651 | N/A | Integer overflow in Adobe Flash Player before 18.… |
n/a |
n/a |
2015-12-28T23:00:00.000Z | 2025-10-21T23:55:56.425Z |
| cve-2015-7450 | N/A | Serialized-object interfaces in certain IBM analy… |
n/a |
n/a |
2016-01-02T21:00:00.000Z | 2025-10-21T23:55:56.246Z |
| cve-2016-0034 | N/A | Microsoft Silverlight 5 before 5.1.41212.0 mishan… |
n/a |
n/a |
2016-01-13T02:00:00.000Z | 2025-10-21T23:55:56.096Z |
| cve-2016-0040 | N/A | The kernel in Microsoft Windows Vista SP2, Window… |
n/a |
n/a |
2016-02-10T11:00:00.000Z | 2025-10-21T23:55:55.948Z |
| cve-2016-0984 | N/A | Use-after-free vulnerability in Adobe Flash Playe… |
n/a |
n/a |
2016-02-10T20:00:00.000Z | 2025-10-21T23:55:55.589Z |
| cve-2016-0752 | N/A | Directory traversal vulnerability in Action View … |
n/a |
n/a |
2016-02-16T02:00:00.000Z | 2025-10-21T23:55:55.440Z |
| cve-2016-2386 | N/A | SQL injection vulnerability in the UDDI server in… |
n/a |
n/a |
2016-02-16T15:00:00.000Z | 2025-10-21T23:55:55.277Z |
| cve-2016-2388 | N/A | The Universal Worklist Configuration in SAP NetWe… |
n/a |
n/a |
2016-02-16T15:00:00.000Z | 2025-10-21T23:55:55.132Z |
| cve-2016-0099 | N/A | The Secondary Logon Service in Microsoft Windows … |
n/a |
n/a |
2016-03-09T11:00:00.000Z | 2025-10-21T23:55:54.947Z |
| cve-2016-1010 | N/A | Integer overflow in Adobe Flash Player before 18.… |
n/a |
n/a |
2016-03-12T15:00:00.000Z | 2025-10-21T23:55:54.744Z |
| cve-2016-1762 | N/A | The xmlNextChar function in libxml2 before 2.9.4 … |
n/a |
n/a |
2016-03-24T01:00:00.000Z | 2025-12-17T22:04:31.761Z |
| cve-2016-1646 | N/A | The Array.prototype.concat implementation in buil… |
n/a |
n/a |
2016-03-29T10:00:00.000Z | 2025-10-21T23:55:54.355Z |
| cve-2016-1019 | N/A | Adobe Flash Player 21.0.0.197 and earlier allows … |
n/a |
n/a |
2016-04-07T10:00:00.000Z | 2025-11-17T19:47:42.867Z |
| cve-2016-3976 | N/A | Directory traversal vulnerability in SAP NetWeave… |
n/a |
n/a |
2016-04-07T23:00:00.000Z | 2025-10-21T23:55:54.035Z |
| cve-2016-0151 | N/A | The Client-Server Run-time Subsystem (CSRSS) in M… |
n/a |
n/a |
2016-04-12T23:00:00.000Z | 2025-10-21T23:55:53.897Z |
| cve-2016-0162 | N/A | Microsoft Internet Explorer 9 through 11 allows r… |
n/a |
n/a |
2016-04-12T23:00:00.000Z | 2025-10-21T23:55:53.729Z |
| cve-2016-0165 | N/A | The kernel-mode driver in Microsoft Windows Vista… |
n/a |
n/a |
2016-04-12T23:00:00.000Z | 2025-10-21T23:55:53.587Z |
| cve-2016-0167 | N/A | The kernel-mode driver in Microsoft Windows Vista… |
n/a |
n/a |
2016-04-12T23:00:00.000Z | 2025-10-21T23:55:53.432Z |
| cve-2016-2002 | N/A | The validateAdminConfig handler in the Analytics … |
n/a |
n/a |
2016-04-20T17:00:00 | 2024-08-05T23:17:49.986Z |
| cve-2016-3427 | N/A | Unspecified vulnerability in Oracle Java SE 6u113… |
n/a |
n/a |
2016-04-21T10:00:00.000Z | 2025-10-21T23:55:53.262Z |
| cve-2016-3714 | N/A | The (1) EPHEMERAL, (2) HTTPS, (3) MVG, (4) MSL, (… |
n/a |
n/a |
2016-05-05T18:00:00.000Z | 2025-10-21T23:55:53.098Z |
| cve-2016-3715 | N/A | The EPHEMERAL coder in ImageMagick before 6.9.3-1… |
n/a |
n/a |
2016-05-05T18:00:00.000Z | 2025-10-21T23:55:52.910Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-0000-kam193-7e897d020793f301 | Malicious code in pytbon (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-7f95afc528196356 | Malicious code in eetherium (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-7fab4b6cf69d7c69 | Malicious code in openwsaa (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-80a513e68a44e2a6 | Malicious code in openxsa (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-821e1f5c73d72855 | Malicious code in pythun (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-8270d33345f780af | Malicious code in wev3 (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-832f04764c41182e | Malicious code in openaes (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-837090f72f6ea44d | Malicious code in pytnon (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-85610f88cf599523 | Malicious code in 3web (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-85d9b03d3818f926 | Malicious code in openasea (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-869889538443f449 | Malicious code in pytiob (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-884f0800583432f7 | Malicious code in etheruim (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-884f6f4fbc61dd87 | Malicious code in w3eb (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-8858656c457f17f9 | Malicious code in opensa (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-88a9b4460da86e95 | Malicious code in pytgon (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-890f155b37db4fc8 | Malicious code in ethreium (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-8a906b9d7e8a74ae | Malicious code in etheeruimm (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-8b2df8d34fa691b4 | Malicious code in etherreumm (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-8b341e2f737b2cda | Malicious code in openasea (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-8c03833563045a71 | Malicious code in etheruum (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-8ce6b25bc7a4b02d | Malicious code in wweb3-py (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-8d0d1e7ae15538d2 | Malicious code in etherum (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-8dedc19d271c98d3 | Malicious code in etherrium (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-8e11c1b834212c3c | Malicious code in ewb3-py (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-8e22199b705a5656 | Malicious code in wweb3 (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-8ebcd6c0f0e1566c | Malicious code in etherreum (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-8f1fedd40789305e | Malicious code in etherumm (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-8f30965706080e29 | Malicious code in web3-p7 (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-8f5fc2d78c4bfe86 | Malicious code in openesa (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-8f63200f77290b44 | Malicious code in web3-pyu (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-2361 | Oracle Communications: Mehrere Schwachstellen | 2025-10-21T22:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-2363 | Oracle MySQL: Mehrere Schwachstellen | 2025-10-21T22:00:00.000+00:00 | 2025-11-20T23:00:00.000+00:00 |
| wid-sec-w-2025-2365 | Oracle Java SE: Mehrere Schwachstellen | 2025-10-21T22:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2370 | Oracle Systems: Mehrere Schwachstellen | 2025-10-21T22:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-2375 | Google Chrome: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2025-10-21T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2379 | Dell BIOS: Schwachstelle ermöglicht Manipulation von Daten | 2025-10-21T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2385 | Drupal Module: Mehrere Schwachstellen | 2025-10-22T22:00:00.000+00:00 | 2025-10-29T23:00:00.000+00:00 |
| wid-sec-w-2025-2386 | Unbound: Schwachstelle ermöglicht Manipulation von Dateien | 2025-10-22T22:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2025-2388 | MongoDB: Schwachstelle ermöglicht Privilegieneskalation | 2025-10-22T22:00:00.000+00:00 | 2025-10-23T22:00:00.000+00:00 |
| wid-sec-w-2025-2390 | PowerDNS Recursor: Mehrere Schwachstellen ermöglichen Manipulation von Dateien | 2025-10-22T22:00:00.000+00:00 | 2025-10-29T23:00:00.000+00:00 |
| wid-sec-w-2025-2391 | OpenBao: Mehrere Schwachstellen | 2025-10-22T22:00:00.000+00:00 | 2025-10-23T22:00:00.000+00:00 |
| wid-sec-w-2025-2392 | Internet Systems Consortium BIND: Mehrere Schwachstellen | 2025-10-22T22:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2394 | Linux Kernel: Mehrere Schwachstellen | 2025-10-22T22:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2025-2395 | Rancher Manager: Mehrere Schwachstellen | 2025-10-23T22:00:00.000+00:00 | 2025-10-29T23:00:00.000+00:00 |
| wid-sec-w-2025-2396 | Hashicorp Vault: Mehrere Schwachstellen | 2025-10-23T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2398 | Moxa Switch: Mehrere Schwachstellen | 2025-10-23T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2403 | Ubiquiti UniFi: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-10-23T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2404 | AMD “Zen 5” Prozessoren: Schwachstelle gefährdet Vertraulichkeit und Integrität | 2025-10-23T22:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2407 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-10-26T23:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2409 | Xen: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-10-26T23:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2416 | Proxmox Backup Server: Mehrere Schwachstellen | 2025-10-26T23:00:00.000+00:00 | 2025-11-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2420 | Apache Tomcat: Mehrere Schwachstellen | 2025-10-27T23:00:00.000+00:00 | 2025-10-28T23:00:00.000+00:00 |
| wid-sec-w-2025-2427 | strongSwan (eap-mschapv2 plugin): Schwachstelle ermöglicht Codeausführung und DoS | 2025-10-27T23:00:00.000+00:00 | 2025-11-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2431 | Linux Kernel: Mehrere Schwachstellen | 2025-10-28T23:00:00.000+00:00 | 2025-12-08T23:00:00.000+00:00 |
| wid-sec-w-2025-2436 | Xwayland und X.Org X11: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2025-10-28T23:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2441 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-10-29T23:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2025-2444 | Dell Secure Connect Gateway: Mehrere Schwachstellen | 2025-10-29T23:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2445 | Google Chrome/Microsoft Edge: Mehrere Schwachstellen | 2025-10-29T23:00:00.000+00:00 | 2025-11-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2449 | GIMP: Schwachstelle ermöglicht Codeausführung | 2025-10-29T23:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2450 | Linux Kernel: Mehrere Schwachstellen | 2025-10-29T23:00:00.000+00:00 | 2025-12-08T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| ssa-698820 | SSA-698820: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.4 on RUGGEDCOM APE1808 Devices | 2024-07-09T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-723487 | SSA-723487: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SCALANCE, RUGGEDCOM and Related Products | 2024-07-09T00:00:00Z | 2025-12-09T00:00:00Z |
| ssa-750499 | SSA-750499: Weak Encryption Vulnerability in SIPROTEC 5 Devices | 2024-07-09T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-103653 | SSA-103653: Denial-of-Service Vulnerability in Automation License Manager | 2024-09-10T00:00:00Z | 2025-05-13T00:00:00Z |
| ssa-629254 | SSA-629254: Remote Code Execution Vulnerability in SIMATIC SCADA and PCS 7 systems | 2024-09-10T00:00:00Z | 2025-01-14T00:00:00Z |
| ssa-673996 | SSA-673996: Buffer Overflow Vulnerability in Third-Party Component in SICAM and SITIPE Products | 2024-09-10T00:00:00Z | 2025-12-09T00:00:00Z |
| ssa-773256 | SSA-773256: Impact of Socket.IO CVE-2024-38355 on Siemens Industrial Products | 2024-09-10T00:00:00Z | 2025-01-14T00:00:00Z |
| ssa-583523 | SSA-583523: Multiple WRL File Parsing Vulnerabilities in Tecnomatix Plant Simulation | 2024-10-08T00:00:00Z | 2024-12-10T00:00:00Z |
| ssa-871035 | SSA-871035: Session-Memory Deserialization Vulnerability in Siemens Engineering Platforms Before V19 | 2024-11-12T00:00:00Z | 2025-01-14T00:00:00Z |
| ssa-128393 | SSA-128393: Firmware Decryption Vulnerability in SICAM A8000 CP-8031 and CP-8050 | 2024-12-10T00:00:00Z | 2024-12-10T00:00:00Z |
| ssa-384652 | SSA-384652: Cross-Site Request Forgery (CSRF) Vulnerability in RUGGEDCOM ROX II | 2024-12-10T00:00:00Z | 2024-12-10T00:00:00Z |
| ssa-392859 | SSA-392859: Local Arbitrary Code Execution Vulnerability in Siemens Engineering Platforms before V20 | 2024-12-10T00:00:00Z | 2025-12-09T00:00:00Z |
| ssa-645131 | SSA-645131: Multiple WRL File Parsing Vulnerabilities in Teamcenter Visualization | 2024-12-10T00:00:00Z | 2024-12-10T00:00:00Z |
| ssa-701627 | SSA-701627: XXE Injection Vulnerabilities in COMOS | 2024-12-10T00:00:00Z | 2024-12-10T00:00:00Z |
| ssa-730188 | SSA-730188: Multiple File Parsing Vulnerabilities in Solid Edge V2024 | 2024-12-10T00:00:00Z | 2024-12-10T00:00:00Z |
| ssa-800126 | SSA-800126: Deserialization Vulnerability in Siemens Engineering Platforms before V20 | 2024-12-10T00:00:00Z | 2025-12-09T00:00:00Z |
| ssa-881356 | SSA-881356: Multiple Memory Corruption Vulnerabilities in Simcenter Femap | 2024-12-10T00:00:00Z | 2024-12-10T00:00:00Z |
| ssa-979056 | SSA-979056: Out of Bounds Write Vulnerability in Parasolid | 2024-12-10T00:00:00Z | 2024-12-12T00:00:00Z |
| ssa-928984 | SSA-928984: Heap-based Buffer Overflow Vulnerability in User Management Component (UMC) | 2024-12-16T00:00:00Z | 2025-06-10T00:00:00Z |
| ssa-194557 | SSA-194557: Improper Limitation of Filesystem Access through Web Server Vulnerability in SIPROTEC 5 | 2025-01-14T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-314390 | SSA-314390: LDAP Injection Vulnerability in Mendix LDAP Module | 2025-01-14T00:00:00Z | 2025-01-14T00:00:00Z |
| ssa-404759 | SSA-404759: Information Disclosure Vulnerability in Siveillance Video Camera Drivers | 2025-01-14T00:00:00Z | 2025-01-15T00:00:00Z |
| ssa-416411 | SSA-416411: Cross-Site Scripting Vulnerability in Industrial Edge Management | 2025-01-14T00:00:00Z | 2025-01-14T00:00:00Z |
| ssa-717113 | SSA-717113: Cross-Site Request Forgery (CSRF) Vulnerability in SIMATIC S7-1200 CPUs before V4.7 | 2025-01-14T00:00:00Z | 2025-01-14T00:00:00Z |
| ssa-111547 | SSA-111547: Cleartext Storage of Sensitive Information Vulnerability in SIPROTEC 5 | 2025-02-11T00:00:00Z | 2025-02-11T00:00:00Z |
| ssa-195895 | SSA-195895: User Enumeration Vulnerability in the Webserver of SIMATIC Products | 2025-02-11T00:00:00Z | 2025-04-08T00:00:00Z |
| ssa-224824 | SSA-224824: Denial of Service Vulnerabilities in SIMATIC S7-1200 CPU Family Before V4.7 | 2025-02-11T00:00:00Z | 2025-02-11T00:00:00Z |
| ssa-246355 | SSA-246355: Multiple Vulnerabilities in Tableau Server Component of Opcenter Intelligence | 2025-02-11T00:00:00Z | 2025-02-14T00:00:00Z |
| ssa-342348 | SSA-342348: Insufficient Session Expiration Vulnerability in Siemens Products | 2025-02-11T00:00:00Z | 2025-02-11T00:00:00Z |
| ssa-369369 | SSA-369369: Weak Registry Permission Vulnerability in SIMATIC IPC DiagBase and SIMATIC IPC DiagMonitor | 2025-02-11T00:00:00Z | 2025-04-08T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2003:281 | Red Hat Security Advisory: : Updated MySQL packages fix vulnerability | 2003-10-09T08:56:00+00:00 | 2025-11-21T17:26:30+00:00 |
| rhsa-2003:301 | Red Hat Security Advisory: mod_ssl security update for Stronghold | 2003-10-15T08:18:00+00:00 | 2025-11-21T17:26:35+00:00 |
| rhsa-2003:163 | Red Hat Security Advisory: mozilla security update | 2003-10-15T20:09:00+00:00 | 2025-11-21T17:26:04+00:00 |
| rhsa-2003:275 | Red Hat Security Advisory: : Updated CUPS packages fix denial of service | 2003-11-03T09:25:00+00:00 | 2025-11-21T17:26:28+00:00 |
| rhsa-2003:309 | Red Hat Security Advisory: : Updated fileutils/coreutils package fix ls vulnerabilities | 2003-11-03T15:26:00+00:00 | 2025-11-21T17:26:36+00:00 |
| rhsa-2003:323 | Red Hat Security Advisory: : Updated Ethereal packages fix security issues | 2003-11-10T17:53:00+00:00 | 2025-11-21T17:26:39+00:00 |
| rhsa-2003:324 | Red Hat Security Advisory: ethereal security update | 2003-11-12T14:05:00+00:00 | 2025-11-21T17:26:39+00:00 |
| rhsa-2003:297 | Red Hat Security Advisory: stunnel security update | 2003-11-12T14:06:00+00:00 | 2025-11-21T17:26:35+00:00 |
| rhsa-2003:310 | Red Hat Security Advisory: fileutils security update | 2003-11-12T14:06:00+00:00 | 2025-11-21T17:26:36+00:00 |
| rhsa-2003:305 | Red Hat Security Advisory: zebra security update | 2003-11-12T14:08:00+00:00 | 2025-11-21T17:26:35+00:00 |
| rhsa-2003:317 | Red Hat Security Advisory: iproute security update | 2003-11-12T14:08:00+00:00 | 2025-11-21T17:26:43+00:00 |
| rhsa-2003:289 | Red Hat Security Advisory: XFree86 security update | 2003-11-12T14:12:00+00:00 | 2025-11-21T17:26:33+00:00 |
| rhsa-2003:314 | Red Hat Security Advisory: postgresql security update | 2003-11-12T14:13:00+00:00 | 2025-11-21T17:26:37+00:00 |
| rhsa-2003:315 | Red Hat Security Advisory: quagga security update | 2003-11-12T14:16:00+00:00 | 2025-11-21T17:26:38+00:00 |
| rhsa-2003:325 | Red Hat Security Advisory: : Updated glibc packages provide security and bug fixes | 2003-11-12T16:19:00+00:00 | 2025-11-21T17:26:40+00:00 |
| rhsa-2003:313 | Red Hat Security Advisory: : Updated PostgreSQL packages fix buffer overflow | 2003-11-13T08:33:00+00:00 | 2025-11-21T17:26:37+00:00 |
| rhsa-2003:307 | Red Hat Security Advisory: : Updated zebra packages fix security vulnerabilities | 2003-11-13T08:34:00+00:00 | 2025-11-21T17:26:35+00:00 |
| rhsa-2003:288 | Red Hat Security Advisory: : Updated XFree86 packages provide security and bug fixes | 2003-11-17T20:25:00+00:00 | 2025-11-21T17:26:33+00:00 |
| rhsa-2003:342 | Red Hat Security Advisory: : Updated EPIC packages fix security vulnerability | 2003-11-17T20:48:00+00:00 | 2025-11-21T17:26:41+00:00 |
| rhsa-2003:316 | Red Hat Security Advisory: : Updated iproute packages fix local security vulnerability | 2003-11-24T08:39:00+00:00 | 2025-11-21T17:26:38+00:00 |
| rhsa-2003:296 | Red Hat Security Advisory: : Updated stunnel packages available | 2003-11-24T08:44:00+00:00 | 2025-11-21T17:26:35+00:00 |
| rhsa-2003:311 | Red Hat Security Advisory: : Updated Pan packages fix denial of service vulnerability | 2003-11-24T08:51:00+00:00 | 2025-11-21T17:26:36+00:00 |
| rhsa-2003:286 | Red Hat Security Advisory: : Updated XFree86 packages provide security and bug fixes | 2003-11-25T09:22:00+00:00 | 2025-11-21T17:26:33+00:00 |
| rhsa-2003:287 | Red Hat Security Advisory: : Updated XFree86 packages provide security and bug fixes | 2003-11-25T09:54:00+00:00 | 2025-11-21T17:26:33+00:00 |
| rhsa-2003:389 | Red Hat Security Advisory: kernel security update | 2003-12-01T19:18:00+00:00 | 2025-11-21T17:26:47+00:00 |
| rhba-2003:308 | Red Hat Bug Fix Advisory: Updated kernel resolves 32-bit address space issue on AMD64 | 2003-12-02T00:00:00+00:00 | 2025-11-21T17:20:45+00:00 |
| rhsa-2003:335 | Red Hat Security Advisory: : Updated Net-SNMP packages fix security and other bugs | 2003-12-02T17:35:00+00:00 | 2025-11-21T17:26:40+00:00 |
| rhsa-2003:398 | Red Hat Security Advisory: : : : New rsync packages fix remote security vulnerability | 2003-12-04T21:09:00+00:00 | 2025-11-21T17:26:45+00:00 |
| rhsa-2003:399 | Red Hat Security Advisory: rsync security update | 2003-12-04T21:14:00+00:00 | 2025-11-21T17:26:46+00:00 |
| rhsa-2003:372 | Red Hat Security Advisory: wget security update | 2003-12-10T16:51:00+00:00 | 2025-11-21T17:26:46+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2016-10739 | In the GNU C Library (aka glibc or libc6) through 2.28 the getaddrinfo function would successfully parse a string that contained an IPv4 address followed by whitespace and arbitrary characters which could lead applications to incorrectly assume that it had parsed a valid string without the possibility of embedded HTTP headers or other potentially dangerous substrings. | 2019-01-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2018-16864 | An allocation of memory without limits that could result in the stack clashing with another memory region was discovered in systemd-journald when a program with long command line arguments calls syslog. A local attacker may use this flaw to crash systemd-journald or escalate his privileges. Versions through v240 are vulnerable. | 2019-01-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2018-16865 | An allocation of memory without limits that could result in the stack clashing with another memory region was discovered in systemd-journald when many entries are sent to the journal socket. A local attacker or a remote one if systemd-journal-remote is used may use this flaw to crash systemd-journald or execute code with journald privileges. Versions through v240 are vulnerable. | 2019-01-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2018-16866 | An out of bounds read was discovered in systemd-journald in the way it parses log messages that terminate with a colon ':'. A local attacker can use this flaw to disclose process memory data. Versions from v221 to v239 are vulnerable. | 2019-01-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2018-16880 | A flaw was found in the Linux kernel's handle_rx() function in the [vhost_net] driver. A malicious virtual guest under specific conditions can trigger an out-of-bounds write in a kmalloc-8 slab on a virtual host which may lead to a kernel memory corruption and a system panic. Due to the nature of the flaw privilege escalation cannot be fully ruled out. Versions from v4.16 and newer are vulnerable. | 2019-01-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2019-3819 | A flaw was found in the Linux kernel in the function hid_debug_events_read() in drivers/hid/hid-debug.c file which may enter an infinite loop with certain parameters passed from a userspace. A local privileged user ("root") can cause a system lock up and a denial of service. Versions from v4.18 and newer are vulnerable. | 2019-01-02T00:00:00.000Z | 2024-08-15T00:00:00.000Z |
| msrc_cve-2019-6285 | The SingleDocParser::HandleFlowSequence function in yaml-cpp (aka LibYaml-C++) 0.6.2 allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted YAML file. | 2019-01-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2019-6290 | An infinite recursion issue was discovered in eval.c in Netwide Assembler (NASM) through 2.14.02. There is a stack exhaustion problem resulting from infinite recursion in the functions expr, rexp, bexpr and cexpr in certain scenarios involving lots of '{' characters. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted asm file. | 2019-01-02T00:00:00.000Z | 2025-09-03T22:16:25.000Z |
| msrc_cve-2019-6292 | An issue was discovered in singledocparser.cpp in yaml-cpp (aka LibYaml-C++) 0.6.2. Stack Exhaustion occurs in YAML::SingleDocParser and there is a stack consumption problem caused by recursive stack frames: HandleCompactMap HandleMap HandleFlowSequence HandleSequence HandleNode. Remote attackers could leverage this vulnerability to cause a denial-of-service via a cpp file. | 2019-01-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2019-6293 | An issue was discovered in the function mark_beginning_as_normal in nfa.c in flex 2.6.4. There is a stack exhaustion problem caused by the mark_beginning_as_normal function making recursive calls to itself in certain scenarios involving lots of '*' characters. Remote attackers could leverage this vulnerability to cause a denial-of-service. | 2019-01-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2019-6461 | An issue was discovered in cairo 1.16.0. There is an assertion problem in the function _cairo_arc_in_direction in the file cairo-arc.c. | 2019-01-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2019-6462 | An issue was discovered in cairo 1.16.0. There is an infinite loop in the function _arc_error_normalized in the file cairo-arc.c related to _arc_max_angle_for_tolerance_normalized. | 2019-01-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2019-6486 | Go before 1.10.8 and 1.11.x before 1.11.5 mishandles P-521 and P-384 elliptic curves, which allows attackers to cause a denial of service (CPU consumption) or possibly conduct ECDH private key recovery attacks. | 2019-01-02T00:00:00.000Z | 2025-09-03T21:29:11.000Z |
| msrc_cve-2019-6488 | The string component in the GNU C Library (aka glibc or libc6) through 2.28 when running on the x32 architecture incorrectly attempts to use a 64-bit register for size_t in assembly codes which can lead to a segmentation fault or possibly unspecified other impact as demonstrated by a crash in __memmove_avx_unaligned_erms in sysdeps/x86_64/multiarch/memmove-vec-unaligned-erms.S during a memcpy. | 2019-01-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2019-6706 | Lua 5.3.5 has a use-after-free in lua_upvaluejoin in lapi.c. For example a crash outcome might be achieved by an attacker who is able to trigger a debug.upvaluejoin call in which the arguments have certain relationships. | 2019-01-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2018-20796 | In the GNU C Library (aka glibc or libc6) through 2.29 check_dst_limits_calc_pos_1 in posix/regexec.c has Uncontrolled Recursion as demonstrated by '(\227|)(\\1\\1|t1|\\\2537)+' in grep. | 2019-02-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2019-1003010 | A cross-site request forgery vulnerability exists in Jenkins Git Plugin 3.9.1 and earlier | 2019-02-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2019-5736 | runc through 1.0-rc6 as used in Docker before 18.09.2 and other products allows attackers to overwrite the host runc binary (and consequently obtain host root access) by leveraging the ability to execute a command as root within one of these types of containers: (1) a new container with an attacker-controlled image or (2) an existing container to which the attacker previously had write access that can be attached with docker exec. This occurs because of file-descriptor mishandling related to /proc/self/exe. | 2019-02-02T00:00:00.000Z | 2021-07-16T00:00:00.000Z |
| msrc_cve-2019-7309 | In the GNU C Library (aka glibc or libc6) through 2.29 the memcmp function for the x32 architecture can incorrectly return zero (indicating that the inputs are equal) because the RDX most significant bit is mishandled. | 2019-02-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2019-7317 | png_image_free in png.c in libpng 1.6.x before 1.6.37 has a use-after-free because png_image_free_function is called under png_safe_execute. | 2019-02-02T00:00:00.000Z | 2025-03-14T00:00:00.000Z |
| msrc_cve-2019-9070 | An issue was discovered in GNU libiberty as distributed in GNU Binutils 2.32. It is a heap-based buffer over-read in d_expression_1 in cp-demangle.c after many recursive calls. | 2019-02-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2019-9071 | An issue was discovered in GNU libiberty as distributed in GNU Binutils 2.32. It is a stack consumption issue in d_count_templates_scopes in cp-demangle.c after many recursive calls. | 2019-02-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2019-9072 | An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd) as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in setup_group in elf.c. | 2019-02-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2019-9073 | An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd) as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in _bfd_elf_slurp_version_tables in elf.c. | 2019-02-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2019-9074 | An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd) as distributed in GNU Binutils 2.32. It is an out-of-bounds read leading to a SEGV in bfd_getl32 in libbfd.c when called from pex64_get_runtime_function in pei-x86_64.c. | 2019-02-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2019-9075 | An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd) as distributed in GNU Binutils 2.32. It is a heap-based buffer overflow in _bfd_archive_64_bit_slurp_armap in archive64.c. | 2019-02-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2019-9076 | An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd) as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in elf_read_notes in elf.c. | 2019-02-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2019-9077 | An issue was discovered in GNU Binutils 2.32. It is a heap-based buffer overflow in process_mips_specific in readelf.c via a malformed MIPS option section. | 2019-02-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2019-9169 | In the GNU C Library (aka glibc or libc6) through 2.29 proceed_next_node in posix/regexec.c has a heap-based buffer over-read via an attempted case-insensitive regular-expression match. | 2019-02-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2019-9192 | In the GNU C Library (aka glibc or libc6) through 2.29, check_dst_limits_calc_pos_1 in posix/regexec.c has Uncontrolled Recursion | 2019-02-02T00:00:00.000Z | 2025-10-01T23:11:03.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2008-000005 | Multiple Yamaha routers vulnerable to cross-site request forgery | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2008-000006 | Cross-site scripting vulnerabilities in multiple Hal Networks shopping cart products | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2008-000007 | RaidenHTTPD cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2008-000008 | PC2M cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2008-000009 | Apache Tomcat fails to properly handle cookie value | 2008-05-21T00:00+09:00 | 2010-01-05T12:14+09:00 |
| jvndb-2008-000010 | Google Desktop cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T11:31+09:00 |
| jvndb-2008-000011 | Internet Scanner reporting engine vulnerable to cross-site scripting | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2008-000012 | Cross-site scripting vulnerability in multiple Tor World CGI scripts | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2008-000013 | FTP bounce vulnerability in multiple Canon digital multifunction copiers and laser beam printers | 2008-05-21T00:00+09:00 | 2008-05-21T11:31+09:00 |
| jvndb-2008-000014 | Nagios cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2008-000015 | BFup ActiveX Control buffer overflow vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T11:32+09:00 |
| jvndb-2008-000016 | Sun Java Runtime Environment (JRE) contains a vulnerability in processing XSLT transformations | 2008-05-21T00:00+09:00 | 2008-10-09T13:35+09:00 |
| jvndb-2008-000017 | Multiple I-O DATA DEVICE wireless LAN routers default configuration does not set authentication | 2008-05-21T00:00+09:00 | 2008-05-21T11:32+09:00 |
| jvndb-2008-000018 | Namazu cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2009-10-27T13:43+09:00 |
| jvndb-2008-000019 | PerlMailer cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T11:33+09:00 |
| jvndb-2008-000020 | DesignForm cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T11:33+09:00 |
| jvndb-2008-000021 | Mozilla Firefox cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-07-29T14:54+09:00 |
| jvndb-2008-000022 | Lhaplus buffer overflow vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T11:33+09:00 |
| jvndb-2008-000023 | Sony mylo COM-2 does not verify server SSL certificate | 2008-05-21T00:00+09:00 | 2008-05-21T11:34+09:00 |
| jvndb-2008-000027 | Cross-site scripting vulnerabilities in multiple Bluemoon Inc. XOOPS modules | 2008-05-21T00:00+09:00 | 2008-05-21T11:34+09:00 |
| jvndb-2008-001096 | EUR Print Manager Denial of Service Vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2008-001097 | SEWB3/PLATFORM Denial of Service Vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2008-001150 | JP1/HIBUN Encryption/Decryption and Removable Media Control Malfunction Problems | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2008-001311 | Symantec Backup Exec for Windows Server ActiveX Control Multiple Buffer Overflow Vulnerabilities | 2008-05-21T00:00+09:00 | 2008-11-21T12:20+09:00 |
| jvndb-2008-001312 | Symantec Backup Exec for Windows Server ActiveX Control Multiple Vulnerabilities | 2008-05-21T00:00+09:00 | 2008-11-21T12:20+09:00 |
| jvndb-2008-001313 | JP1/Cm2/Network Node Manager Denial of Service Vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T11:34+09:00 |
| jvndb-2008-001347 | JP1/Cm2/Network Node Manager Web Coordinated Function Multiple Vulnerabilities | 2008-06-06T12:00+09:00 | 2008-06-06T12:00+09:00 |
| jvndb-2008-001348 | Groupmax World Wide Web Desktop/BUNSHOKANRI(=DocumentManagement) Cross-Site Scripting Vulnerability | 2008-06-06T12:00+09:00 | 2008-06-06T12:00+09:00 |
| jvndb-2008-001349 | XMAP3 Denial of Service (DoS) Vulneability | 2008-06-06T12:00+09:00 | 2008-06-06T12:00+09:00 |
| jvndb-2008-001350 | Hitachi Groupmax Collaboration Products Cross-Site Scripting Vulnerability | 2008-06-06T12:00+09:00 | 2008-06-06T12:00+09:00 |
| ID | Description | Updated |
|---|