Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-g2jw-fqx3-5mwq | The mkostemp function in login-utils in util-linux when used incorrectly allows remote attackers to… | 2022-05-13T01:16:19Z | 2022-05-13T01:16:19Z |
| ghsa-jpw5-97m6-c8m2 | procps-ng before version 3.3.15 is vulnerable to a stack buffer overflow in pgrep. This vulnerabili… | 2022-05-13T01:16:28Z | 2025-12-18T00:34:04Z |
| ghsa-mhp7-xhx6-9x45 | Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u3… | 2022-05-13T01:16:29Z | 2025-10-22T00:31:11Z |
| ghsa-6q5r-8qc5-j49x | Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows … | 2022-05-13T01:17:05Z | 2025-11-05T00:31:12Z |
| ghsa-php4-mj74-f79r | Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRock… | 2022-05-13T01:17:09Z | 2025-10-22T00:31:13Z |
| ghsa-69xw-2hhx-gvfg | Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60 allows remote attackers to affect… | 2022-05-13T01:17:14Z | 2025-10-22T00:31:11Z |
| ghsa-4w6g-87mh-x63x | A vulnerability in the Smart Install feature of Cisco IOS Software and Cisco IOS XE Software could … | 2022-05-13T01:17:28Z | 2025-10-22T00:31:30Z |
| ghsa-7f45-f5vf-rrpw | A vulnerability in the DHCP option 82 encapsulation functionality of Cisco IOS Software and Cisco I… | 2022-05-13T01:17:28Z | 2025-10-22T00:31:30Z |
| ghsa-qmg7-32mc-92p9 | A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco Cat… | 2022-05-13T01:17:28Z | 2025-10-22T00:31:30Z |
| ghsa-2ccw-7gjg-m467 | A vulnerability in Java deserialization used by Cisco Secure Access Control System (ACS) prior to r… | 2022-05-13T01:17:29Z | 2025-10-22T00:31:30Z |
| ghsa-4gvr-xfhg-jc8f | Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 an… | 2022-05-13T01:17:37Z | 2025-10-22T00:31:36Z |
| ghsa-h2mj-pqgp-xmmj | A vulnerability in the web interface of the Cisco Adaptive Security Appliance (ASA) could allow an … | 2022-05-13T01:17:37Z | 2025-10-22T00:31:35Z |
| ghsa-p86w-qv2x-rf6j | Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have a… | 2022-05-13T01:17:38Z | 2025-10-22T00:31:35Z |
| ghsa-7cc9-8vjg-gpp8 | Adobe ColdFusion 2016 Update 3 and earlier, ColdFusion 11 update 11 and earlier, ColdFusion 10 Upda… | 2022-05-13T01:17:39Z | 2025-10-22T00:31:21Z |
| ghsa-25w3-v3vx-g29w | A vulnerability in the Smart Install feature of Cisco IOS Software and Cisco IOS XE Software could … | 2022-05-13T01:17:43Z | 2025-10-22T00:31:30Z |
| ghsa-j7mw-7crr-658v | Richfaces vulnerable to arbitrary code execution | 2022-05-13T01:17:53Z | 2025-10-22T17:36:28Z |
| ghsa-ww72-35h4-5v84 | The recv_and_process_client_pkt function in networking/ntpd.c in busybox allows remote attackers to… | 2022-05-13T01:17:59Z | 2022-05-13T01:17:59Z |
| ghsa-4prc-qxrc-76p6 | Equation Editor in Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microso… | 2022-05-13T01:18:28Z | 2025-10-22T00:31:30Z |
| ghsa-x323-9hmm-gv8q | Equation Editor in Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microso… | 2022-05-13T01:18:29Z | 2025-10-22T00:31:29Z |
| ghsa-c8qw-h3f6-fv63 | OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an… | 2022-05-13T01:19:10Z | 2025-12-18T00:34:04Z |
| ghsa-jjm4-89hr-gf27 | Incorrect side effect annotation in V8 in Google Chrome prior to 70.0.3538.64 allowed a remote atta… | 2022-05-13T01:19:25Z | 2025-10-22T00:31:36Z |
| ghsa-wg2v-fx2j-3jrr | The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before… | 2022-05-13T01:19:46Z | 2025-10-22T00:31:36Z |
| ghsa-28hp-2gv6-gjp8 | In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restric… | 2022-05-13T01:19:56Z | 2025-12-18T00:34:04Z |
| ghsa-3rj8-qvqp-3335 | Adobe Flash Player versions 29.0.0.171 and earlier have a Stack-based buffer overflow vulnerability… | 2022-05-13T01:20:18Z | 2025-11-17T21:31:17Z |
| ghsa-q2cr-9xxc-h8jx | An integer overflow vulnerability in the Skia library when allocating memory for edge builders on s… | 2022-05-13T01:20:18Z | 2025-11-25T18:32:11Z |
| ghsa-mc9q-rpjx-f8px | Sites can bypass security checks on permissions to install lightweight themes by manipulating the "… | 2022-05-13T01:20:19Z | 2025-11-25T18:32:13Z |
| ghsa-cw7c-4r65-xf9h | Integer overflow in computing the required allocation size when instantiating a new javascript obje… | 2022-05-13T01:20:24Z | 2025-10-22T00:31:36Z |
| ghsa-5cv8-848m-hmm2 | A remote code execution vulnerability exists in the way that the VBScript engine handles objects in… | 2022-05-13T01:20:41Z | 2025-10-22T00:31:35Z |
| ghsa-wgw2-wwq8-c7wf | ChakraCore RCE Vulnerability | 2022-05-13T01:20:46Z | 2025-10-22T17:37:09Z |
| ghsa-9qm8-3m9q-ghgq | A remote code execution vulnerability exists in the way that the scripting engine handles objects i… | 2022-05-13T01:20:49Z | 2025-10-22T00:31:36Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2017-11317 | N/A | Telerik.Web.UI in Progress Telerik UI for ASP.NET… |
n/a |
n/a |
2017-08-23T17:00:00.000Z | 2025-10-21T23:55:35.342Z |
| cve-2017-11357 | N/A | Progress Telerik UI for ASP.NET AJAX before R2 20… |
n/a |
n/a |
2017-08-23T17:00:00.000Z | 2025-10-21T23:55:35.158Z |
| cve-2015-1325 | N/A | Race condition in Apport before 2.17.2-0ubuntu1.1… |
n/a |
n/a |
2017-08-25T18:00:00.000Z | 2025-11-03T19:25:16.928Z |
| cve-2015-3976 | 6.8 (v2.0) | GE Multilink Cross-site Scripting |
GE |
Multilink ML800/1200/1600/2400 |
2017-08-28T15:00:00 | 2025-11-04T23:33:49.742Z |
| cve-2017-6627 | N/A | A vulnerability in the UDP processing code of Cis… |
n/a |
Cisco IOS and Cisco IOS XE |
2017-09-07T21:00:00.000Z | 2025-10-21T23:55:34.940Z |
| cve-2017-14227 | N/A | In MongoDB libbson 1.7.0, the bson_iter_codewscop… |
n/a |
n/a |
2017-09-09T08:00:00.000Z | 2025-11-03T19:25:19.804Z |
| cve-2017-8759 | N/A | Microsoft .NET Framework 2.0, 3.5, 3.5.1, 4.5.2, … |
Microsoft Corporation |
Microsoft .NET Framework |
2017-09-13T01:00:00.000Z | 2025-10-21T23:55:34.790Z |
| cve-2017-12893 | N/A | The SMB/CIFS parser in tcpdump before 4.9.2 has a… |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:40:48.688Z |
| cve-2017-12894 | N/A | Several protocol parsers in tcpdump before 4.9.2 … |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:40:48.921Z |
| cve-2017-12895 | N/A | The ICMP parser in tcpdump before 4.9.2 has a buf… |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:40:49.113Z |
| cve-2017-12896 | N/A | The ISAKMP parser in tcpdump before 4.9.2 has a b… |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:40:49.539Z |
| cve-2017-12897 | N/A | The ISO CLNS parser in tcpdump before 4.9.2 has a… |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:40:49.751Z |
| cve-2017-12898 | N/A | The NFS parser in tcpdump before 4.9.2 has a buff… |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:40:49.919Z |
| cve-2017-12899 | N/A | The DECnet parser in tcpdump before 4.9.2 has a b… |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:40:50.059Z |
| cve-2017-12901 | N/A | The EIGRP parser in tcpdump before 4.9.2 has a bu… |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:40:50.305Z |
| cve-2017-12902 | N/A | The Zephyr parser in tcpdump before 4.9.2 has a b… |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:40:50.447Z |
| cve-2017-12985 | N/A | The IPv6 parser in tcpdump before 4.9.2 has a buf… |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:40:50.576Z |
| cve-2017-12990 | N/A | The ISAKMP parser in tcpdump before 4.9.2 could e… |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:40:50.714Z |
| cve-2017-12992 | N/A | The RIPng parser in tcpdump before 4.9.2 has a bu… |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:40:50.862Z |
| cve-2017-12993 | N/A | The Juniper protocols parser in tcpdump before 4.… |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:40:51.015Z |
| cve-2017-12994 | N/A | The BGP parser in tcpdump before 4.9.2 has a buff… |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:40:51.188Z |
| cve-2017-12995 | N/A | The DNS parser in tcpdump before 4.9.2 could ente… |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:40:51.346Z |
| cve-2017-12996 | N/A | The PIMv2 parser in tcpdump before 4.9.2 has a bu… |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:40:51.495Z |
| cve-2017-12997 | N/A | The LLDP parser in tcpdump before 4.9.2 could ent… |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:40:51.642Z |
| cve-2017-13000 | N/A | The IEEE 802.15.4 parser in tcpdump before 4.9.2 … |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:30:47.322Z |
| cve-2017-13001 | N/A | The NFS parser in tcpdump before 4.9.2 has a buff… |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:30:47.471Z |
| cve-2017-13002 | N/A | The AODV parser in tcpdump before 4.9.2 has a buf… |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:30:47.611Z |
| cve-2017-13006 | N/A | The L2TP parser in tcpdump before 4.9.2 has a buf… |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:30:47.739Z |
| cve-2017-13010 | N/A | The BEEP parser in tcpdump before 4.9.2 has a buf… |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:30:47.879Z |
| cve-2017-13013 | N/A | The ARP parser in tcpdump before 4.9.2 has a buff… |
n/a |
n/a |
2017-09-14T06:00:00.000Z | 2025-12-04T15:30:47.997Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2016-5597 | N/A | Unspecified vulnerability in Oracle Java SE 6u121… |
n/a |
n/a |
2016-10-25T14:00:00.000Z | 2025-11-04T21:08:07.929Z |
| cve-2016-7855 | N/A | Use-after-free vulnerability in Adobe Flash Playe… |
n/a |
n/a |
2016-11-01T22:46:00.000Z | 2025-10-21T23:55:49.007Z |
| cve-2016-7200 | N/A | The Chakra JavaScript scripting engine in Microso… |
n/a |
n/a |
2016-11-10T06:16:00.000Z | 2025-10-21T23:55:48.860Z |
| cve-2016-7201 | N/A | The Chakra JavaScript scripting engine in Microso… |
n/a |
n/a |
2016-11-10T06:16:00.000Z | 2025-10-21T23:55:48.707Z |
| cve-2016-7255 | N/A | The kernel-mode drivers in Microsoft Windows Vist… |
n/a |
n/a |
2016-11-10T06:16:00.000Z | 2025-10-21T23:55:48.547Z |
| cve-2016-7256 | N/A | atmfd.dll in the Windows font library in Microsof… |
n/a |
n/a |
2016-11-10T06:16:00.000Z | 2025-10-21T23:55:48.377Z |
| cve-2016-5195 | N/A | Race condition in mm/gup.c in the Linux kernel 2.… |
n/a |
n/a |
2016-11-10T21:00:00.000Z | 2025-11-04T16:09:08.278Z |
| cve-2016-9318 | N/A | libxml2 2.9.4 and earlier, as used in XMLSec 1.2.… |
n/a |
n/a |
2016-11-16T00:00:00.000Z | 2025-12-04T16:39:57.327Z |
| cve-2016-8562 | N/A | A vulnerability has been identified in SIMATIC CP… |
n/a |
n/a |
2016-11-18T21:00:00.000Z | 2025-10-21T23:55:48.030Z |
| cve-2016-9563 | N/A | BC-BMT-BPM-DSK in SAP NetWeaver AS JAVA 7.5 allow… |
n/a |
n/a |
2016-11-23T02:00:00.000Z | 2025-10-21T23:55:47.851Z |
| cve-2016-6301 | N/A | The recv_and_process_client_pkt function in netwo… |
n/a |
n/a |
2016-12-09T20:00:00.000Z | 2025-12-04T16:45:40.416Z |
| cve-2016-6277 | N/A | NETGEAR R6250 before 1.0.4.6.Beta, R6400 before 1… |
n/a |
n/a |
2016-12-14T16:00:00.000Z | 2025-10-21T23:55:47.695Z |
| cve-2016-7892 | N/A | Adobe Flash Player versions 23.0.0.207 and earlie… |
n/a |
Adobe Flash Player 23.0.0.207 and earlier, 11.2.202.644 and earlier |
2016-12-15T06:31:00.000Z | 2025-10-21T23:55:47.528Z |
| cve-2016-7262 | N/A | Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2… |
n/a |
n/a |
2016-12-20T05:54:00.000Z | 2025-10-21T23:55:47.352Z |
| cve-2016-10033 | N/A | The mailSend function in the isMail transport in … |
n/a |
n/a |
2016-12-30T19:00:00.000Z | 2025-10-21T23:55:47.202Z |
| cve-2017-5521 | N/A | An issue was discovered on NETGEAR R8500, R8300, … |
n/a |
n/a |
2017-01-17T09:22:00.000Z | 2025-10-21T23:55:47.051Z |
| cve-2016-5198 | N/A | V8 in Google Chrome prior to 54.0.2840.90 for Lin… |
n/a |
Google Chrome prior to 54.0.2840.90 for Linux, and 54.0.2840.85 for Android, and 54.0.2840.87 for Windows and Mac |
2017-01-19T05:43:00.000Z | 2025-10-21T23:55:46.892Z |
| cve-2016-7037 | N/A | The verify function in Encryption/Symmetric.php i… |
n/a |
n/a |
2017-01-23T21:00:00 | 2024-08-06T01:50:46.876Z |
| cve-2016-10174 | N/A | The NETGEAR WNR2000v5 router contains a buffer ov… |
n/a |
n/a |
2017-01-30T04:24:00.000Z | 2025-10-21T23:55:46.735Z |
| cve-2017-6077 | N/A | ping.cgi on NETGEAR DGN2200 devices with firmware… |
n/a |
n/a |
2017-02-22T23:00:00.000Z | 2025-10-21T23:55:46.583Z |
| cve-2017-0037 | N/A | Microsoft Internet Explorer 10 and 11 and Microso… |
Microsoft Corporation |
Internet Browser |
2017-02-26T23:30:00.000Z | 2025-10-21T23:55:46.410Z |
| cve-2016-7406 | N/A | Format string vulnerability in Dropbear SSH befor… |
n/a |
n/a |
2017-03-03T16:00:00.000Z | 2025-11-04T16:09:09.268Z |
| cve-2017-6334 | N/A | dnslookup.cgi on NETGEAR DGN2200 devices with fir… |
n/a |
n/a |
2017-03-06T02:00:00.000Z | 2025-10-21T23:55:46.266Z |
| cve-2017-5638 | N/A | The Jakarta Multipart parser in Apache Struts 2 2… |
Apache Software Foundation |
Apache Struts |
2017-03-11T02:11:00.000Z | 2025-10-21T23:55:46.106Z |
| cve-2016-10196 | N/A | Stack-based buffer overflow in the evutil_parse_s… |
n/a |
n/a |
2017-03-15T15:00:00 | 2024-08-06T03:14:42.884Z |
| cve-2017-0001 | N/A | The Graphics Device Interface (GDI) in Microsoft … |
Microsoft Corporation |
Windows GDI |
2017-03-17T00:00:00.000Z | 2025-10-21T23:55:45.958Z |
| cve-2017-0005 | N/A | The Graphics Device Interface (GDI) in Microsoft … |
Microsoft Corporation |
Windows GDI |
2017-03-17T00:00:00.000Z | 2025-10-21T23:55:45.802Z |
| cve-2017-0022 | N/A | Microsoft XML Core Services (MSXML) in Windows 10… |
Microsoft Corporation |
XML Core Services |
2017-03-17T00:00:00.000Z | 2025-10-21T23:55:45.619Z |
| cve-2017-0059 | N/A | Microsoft Internet Explorer 9 through 11 allow re… |
Microsoft Corporation |
Internet Explorer |
2017-03-17T00:00:00.000Z | 2025-10-21T23:55:45.352Z |
| cve-2017-0101 | N/A | The kernel-mode drivers in Transaction Manager in… |
Microsoft Corporation |
Windows |
2017-03-17T00:00:00.000Z | 2025-10-21T23:55:44.984Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-0000-kam193-a9ddf6cb683f7f6f | Malicious code in etheum (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-a9e997f282a7bc6d | Malicious code in etherun (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-ab46f4f86bbd42fe | Malicious code in ethereium (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-ab73ced34d74e18d | Malicious code in etheerem (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-ab81544af36d64ee | Malicious code in ethereumm (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-acef97d0e82f1725 | Malicious code in oepenwea (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-ad01fca6ff3d0eb2 | Malicious code in w3b-py (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-ad1edd772f8f718e | Malicious code in pythun (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-ad9c9ad0fe77fff4 | Malicious code in sghsuzeghuisehguihdrhffdhfdh (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-ae854e0b59b28ca1 | Malicious code in web3-po (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-af36f5925aeb0170 | Malicious code in eethereum (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-b0542d402b845211 | Malicious code in ethereim (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-b36449f918a76092 | Malicious code in openwse (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-b3fe2bb177ce02d8 | Malicious code in oenesea (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-b41936686650e468 | Malicious code in openwsea (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-b66e9f0e24495441 | Malicious code in opesnea (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-b8dc2a0b1a9fe6af | Malicious code in ethererum (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-ba014d10ce18be25 | Malicious code in etheriumm (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-bb43a8865c5902de | Malicious code in openseae (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-bc39cb336ad6dd3d | Malicious code in opemsea (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-bcb680823df39a32 | Malicious code in pythom (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-bcd25aef758d5b4f | Malicious code in theerum (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-bcf78c3125a0f3ac | Malicious code in etheeruimm (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-bd2b34fcc3a14163 | Malicious code in pytiom (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-bd8f518df8aff786 | Malicious code in w3b-py (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-beca9931858955ff | Malicious code in etheereum (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-bede4aab64bec141 | Malicious code in openresa (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-bf2ebfbb8590fd5d | Malicious code in opensew (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-c01eff0f71e284c6 | Malicious code in openseaz (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-c0bfeeda6adc4ddd | Malicious code in openzsea (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-2608 | Golang Go: Schwachstelle ermöglicht Denial of Service | 2025-11-16T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2609 | IBM SAN Volume Controller, Storwize und FlashSystem: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-11-16T23:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-2612 | M-Files M-Files Server: Schwachstelle ermöglicht Denial of Service | 2025-11-16T23:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-2613 | Google Chrome/Microsoft Edge: Mehrere Schwachstellen ermöglichen Codeausführung oder DoS | 2025-11-17T23:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2635 | Red Hat Ansible Automation Platform: Schwachstelle ermöglicht Denial of Service | 2025-11-18T23:00:00.000+00:00 | 2025-11-20T23:00:00.000+00:00 |
| wid-sec-w-2025-2636 | OpenVPN: Mehrere Schwachstellen | 2025-11-18T23:00:00.000+00:00 | 2025-12-01T23:00:00.000+00:00 |
| wid-sec-w-2025-2637 | Rsync: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2025-11-18T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2638 | Grub: Mehrere Schwachstellen | 2025-11-18T23:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2025-2640 | SonicWall SSL-VPN: Schwachstelle ermöglicht Denial of Service | 2025-11-19T23:00:00.000+00:00 | 2025-11-20T23:00:00.000+00:00 |
| wid-sec-w-2025-2643 | Wireshark: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-11-19T23:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2645 | Golang Go: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-11-19T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2647 | SonicWall Email Security: Mehrere Schwachstellen | 2025-11-19T23:00:00.000+00:00 | 2025-11-20T23:00:00.000+00:00 |
| wid-sec-w-2025-2649 | Google Cloud Platform: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-11-19T23:00:00.000+00:00 | 2025-11-20T23:00:00.000+00:00 |
| wid-sec-w-2025-2651 | GnuTLS: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2025-11-19T23:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2652 | Red Hat Satellite: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-11-20T23:00:00.000+00:00 | 2025-11-20T23:00:00.000+00:00 |
| wid-sec-w-2025-2653 | Microsoft Visual Studio Code: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-11-20T23:00:00.000+00:00 | 2025-11-20T23:00:00.000+00:00 |
| wid-sec-w-2025-2654 | MongoDB (Server): Schwachstelle ermöglicht Denial of Service | 2025-11-20T23:00:00.000+00:00 | 2025-11-20T23:00:00.000+00:00 |
| wid-sec-w-2025-2655 | CUPS-Filters: Schwachstelle ermöglicht Codeausführung | 2025-11-20T23:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2657 | WebKitGTK: Mehrere Schwachstellen | 2025-11-20T23:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2661 | Google Cloud Platform (Looker): Schwachstelle ermöglicht Ausführen von beliebigem Programmcode | 2025-11-23T23:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2663 | libpng: Mehrere Schwachstellen | 2025-11-23T23:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2666 | vllm und PyTorch: Schwachstelle ermöglicht DoS und potenzielle Codeausführung | 2025-11-23T23:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2667 | Janitza UMG 96-PA und UMG 96-PA-MID+: Schwachstelle ermöglicht Denial of Service | 2025-11-23T23:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2670 | Fluent Bit: Mehrere Schwachstellen | 2025-11-24T23:00:00.000+00:00 | 2025-11-25T23:00:00.000+00:00 |
| wid-sec-w-2025-2676 | GeoServer: Mehrere Schwachstellen | 2025-11-25T23:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2025-2677 | OPNsense: Schwachstelle ermöglicht Manipulation von Dateien | 2025-11-25T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2687 | Apache CloudStack: Mehrere Schwachstellen | 2025-11-26T23:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2025-2694 | MariaDB: Schwachstelle ermöglicht Codeausführung | 2025-11-27T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2697 | Devolutions Remote Desktop Manager und Server: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-11-30T23:00:00.000+00:00 | 2025-11-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2700 | CODESYS Control und Development System: Mehrere Schwachstellen | 2025-11-30T23:00:00.000+00:00 | 2025-12-01T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| ssa-222768 | SSA-222768: Multiple Vulnerabilities in SIRIUS 3SK2 Safety Relays and 3RK3 Modular Safety Systems | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| ssa-301229 | SSA-301229: Client-Side Enforcement of Server-Side Security Vulnerabilities in RUGGEDCOM ROX II | 2025-05-13T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-339086 | SSA-339086: Insufficient Session Expiration Vulnerability in SIMATIC PCS neo | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| ssa-523418 | SSA-523418: Information Disclosure Vulnerability in Desigo CC | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| ssa-542540 | SSA-542540: Out of Bounds Read Vulnerability in Teamcenter Visualization | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| ssa-668154 | SSA-668154: Denial of Service Vulnerability in MS/TP Point Pickup Module | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| ssa-718393 | SSA-718393: Partial Denial of Service Vulnerability in APOGEE PXC and TALON TC Series (BACnet) Devices | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| ssa-726617 | SSA-726617: Incorrect Privilege Assignment Vulnerability in Mendix OIDC SSO Module | 2025-05-13T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-794185 | SSA-794185: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SIPROTEC, SICAM and Related Products | 2025-05-13T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-828116 | SSA-828116: Denial of Service Vulnerability in BACnet ATEC Devices | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| ssa-864900 | SSA-864900: Multiple Vulnerabilities in Fortigate NGFW on RUGGEDCOM APE1808 Devices | 2025-05-13T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-901508 | SSA-901508: Multiple Vulnerabilities in INTRALOG WMS Before V5 | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| ssa-552330 | SSA-552330: System Configuration Password Reset in Siveillance Video V2024 R1 | 2025-05-14T00:00:00Z | 2025-05-14T00:00:00Z |
| ssa-041082 | SSA-041082: Out of Bounds Read Vulnerability in SiPass Integrated Before V2.95.3.18 | 2025-05-23T00:00:00Z | 2025-05-23T00:00:00Z |
| ssa-633269 | SSA-633269: Incorrect Authorization Check Vulnerability in Industrial Communication Devices based on SINEC OS before V3.1 | 2025-06-10T00:00:00Z | 2025-06-10T00:00:00Z |
| ssa-693776 | SSA-693776: Multiple Vulnerabilities in Industrial Communication Devices based on SINEC OS before V3.2 | 2025-06-10T00:00:00Z | 2025-06-10T00:00:00Z |
| ssa-282044 | SSA-282044: DLL Hijacking Vulnerability in Siemens Web Installer used by the Online Software Delivery | 2025-08-12T00:00:00Z | 2025-12-09T00:00:00Z |
| ssa-493396 | SSA-493396: Deserialization Vulnerability in Siemens Engineering Platforms | 2025-08-12T00:00:00Z | 2025-12-09T00:00:00Z |
| ssa-693808 | SSA-693808: Deserialization Vulnerability in Siemens Engineering Platforms | 2025-08-12T00:00:00Z | 2025-12-09T00:00:00Z |
| ssa-978177 | SSA-978177: Vulnerability in Nozomi Guardian/CMC Before 25.4.0 on RUGGEDCOM APE1808 Devices | 2025-08-12T00:00:00Z | 2025-11-17T00:00:00Z |
| ssa-201498 | SSA-201498: Multiple Vulnerabilities in the Web Server of SICAM P850 and SICAM P855 Devices Before V3.11 | 2025-11-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-267056 | SSA-267056: Multiple Vulnerabilities in LOGO! 8 BM Devices | 2025-11-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-339694 | SSA-339694: Multiple Vulnerabilities in Spectrum Power 4 Before v4.70 SP12 Security Patch 2 | 2025-11-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-365596 | SSA-365596: DLL Hijacking Vulnerability in Siemens Software Center and Solid Edge | 2025-11-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-514895 | SSA-514895: Multiple Vulnerabilities in Altair Grid Engine V2025.1.0 | 2025-11-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-522291 | SSA-522291: Improper Certificate Validation Vulnerability in Solid Edge | 2025-11-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-682326 | SSA-682326: Multiple Vulnerabilities in COMOS before V10.4.5 | 2025-11-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-190588 | SSA-190588: Cross-Site Scripting Vulnerability in Mendix Rich Text Widget | 2025-11-17T00:00:00Z | 2025-11-17T00:00:00Z |
| ssa-241605 | SSA-241605: Out of Bounds Read in PS/IGES Parasolid Translator Component Before V29.0.258 | 2025-11-17T00:00:00Z | 2025-11-17T00:00:00Z |
| ssa-202008 | SSA-202008: Multiple Vulnerabilities in Ruggedcom Rox Before V2.17.0 | 2025-12-09T00:00:00Z | 2025-12-09T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2004:031 | Red Hat Security Advisory: netpbm security update | 2004-02-03T08:26:00+00:00 | 2025-11-21T17:26:55+00:00 |
| rhsa-2004:056 | Red Hat Security Advisory: util-linux security update | 2004-02-03T08:26:00+00:00 | 2025-11-21T17:27:00+00:00 |
| rhsa-2004:035 | Red Hat Security Advisory: mc security update | 2004-02-03T08:27:00+00:00 | 2025-11-21T17:26:56+00:00 |
| rhsa-2004:044 | Red Hat Security Advisory: kernel security update | 2004-02-03T20:06:00+00:00 | 2025-11-21T17:26:58+00:00 |
| rhsa-2004:030 | Red Hat Security Advisory: : Updated NetPBM packages fix multiple temporary file vulnerabilities | 2004-02-05T08:50:00+00:00 | 2025-11-21T17:26:54+00:00 |
| rhsa-2004:020 | Red Hat Security Advisory: : Updated mailman packages close cross-site scripting vulnerabilities | 2004-02-05T08:51:00+00:00 | 2025-11-21T17:26:53+00:00 |
| rhsa-2004:045 | Red Hat Security Advisory: gaim security update | 2004-02-09T18:36:00+00:00 | 2025-11-21T17:26:58+00:00 |
| rhsa-2004:019 | Red Hat Security Advisory: mailman security update | 2004-02-09T18:37:00+00:00 | 2025-11-21T17:26:53+00:00 |
| rhsa-2004:050 | Red Hat Security Advisory: mutt security update | 2004-02-11T13:58:00+00:00 | 2025-11-21T17:26:59+00:00 |
| rhsa-2004:051 | Red Hat Security Advisory: : Updated mutt packages fix remotely-triggerable crash | 2004-02-11T13:59:00+00:00 | 2025-11-21T17:26:59+00:00 |
| rhsa-2004:059 | Red Hat Security Advisory: : Updated XFree86 packages fix privilege escalation vulnerability | 2004-02-13T08:51:00+00:00 | 2025-11-21T17:27:01+00:00 |
| rhsa-2004:048 | Red Hat Security Advisory: : Updated PWLib packages fix protocol security issues | 2004-02-13T08:52:00+00:00 | 2025-11-21T17:26:58+00:00 |
| rhsa-2004:060 | Red Hat Security Advisory: XFree86 security update | 2004-02-13T21:14:00+00:00 | 2025-11-21T17:27:01+00:00 |
| rhsa-2004:061 | Red Hat Security Advisory: XFree86 security update | 2004-02-13T23:44:00+00:00 | 2025-11-21T17:27:01+00:00 |
| rhsa-2004:047 | Red Hat Security Advisory: pwlib security update | 2004-02-18T10:31:00+00:00 | 2025-11-21T17:26:58+00:00 |
| rhsa-2004:064 | Red Hat Security Advisory: samba security update | 2004-02-18T10:36:00+00:00 | 2025-11-21T17:27:03+00:00 |
| rhsa-2004:065 | Red Hat Security Advisory: : : : Updated kernel packages resolve security vulnerabilities | 2004-02-18T12:03:00+00:00 | 2025-11-21T17:27:03+00:00 |
| rhsa-2004:073 | Red Hat Security Advisory: metamail security update | 2004-02-18T12:04:00+00:00 | 2025-11-21T17:27:04+00:00 |
| rhsa-2004:069 | Red Hat Security Advisory: kernel security update | 2004-02-18T18:14:00+00:00 | 2025-11-21T17:27:03+00:00 |
| rhsa-2004:066 | Red Hat Security Advisory: kernel security update | 2004-02-19T17:12:00+00:00 | 2025-11-21T17:27:03+00:00 |
| rhsa-2004:063 | Red Hat Security Advisory: : Updated mod_python packages fix denial of service vulnerability | 2004-02-26T07:36:00+00:00 | 2025-11-21T17:27:02+00:00 |
| rhsa-2004:091 | Red Hat Security Advisory: : Updated libxml2 packages fix security vulnerability | 2004-02-26T07:36:00+00:00 | 2025-11-21T17:27:07+00:00 |
| rhsa-2004:058 | Red Hat Security Advisory: mod_python security update | 2004-02-26T20:36:00+00:00 | 2025-11-21T17:27:01+00:00 |
| rhsa-2004:090 | Red Hat Security Advisory: libxml2 security update | 2004-02-26T20:38:00+00:00 | 2025-11-21T17:27:06+00:00 |
| rhsa-2004:096 | Red Hat Security Advisory: wu-ftpd security update | 2004-03-08T16:55:00+00:00 | 2025-11-21T17:27:09+00:00 |
| rhsa-2004:093 | Red Hat Security Advisory: : Updated sysstat packages fix security vulnerabilities | 2004-03-10T14:34:00+00:00 | 2025-11-21T17:27:07+00:00 |
| rhsa-2004:102 | Red Hat Security Advisory: : Updated gdk-pixbuf packages fix denial of service vulnerability | 2004-03-10T14:34:00+00:00 | 2025-11-21T17:27:08+00:00 |
| rhsa-2004:074 | Red Hat Security Advisory: kdelibs security update | 2004-03-10T14:36:00+00:00 | 2025-11-21T17:27:05+00:00 |
| rhsa-2004:075 | Red Hat Security Advisory: : Updated kdelibs packages resolve cookie security issue | 2004-03-10T14:37:00+00:00 | 2025-11-21T17:27:08+00:00 |
| rhsa-2004:103 | Red Hat Security Advisory: gdk-pixbuf security update | 2004-03-10T16:19:00+00:00 | 2025-11-21T17:27:08+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2019-12749 | dbus before 1.10.28 1.12.x before 1.12.16 and 1.13.x before 1.13.12 as used in DBusServer in Canonical Upstart in Ubuntu 14.04 (and in some less common uses of dbus-daemon) allows cookie spoofing because of symlink mishandling in the reference implementation of DBUS_COOKIE_SHA1 in the libdbus library. (This only affects the DBUS_COOKIE_SHA1 authentication mechanism.) A malicious client with write access to its own home directory could manipulate a ~/.dbus-keyrings symlink to cause a DBusServer with a different uid to read and write in unintended locations. In the worst case this could result in the DBusServer reusing a cookie that is known to the malicious client and treating that cookie as evidence that a subsequent client connection came from an attacker-chosen uid allowing authentication bypass. | 2019-06-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2019-12855 | In words.protocols.jabber.xmlstream in Twisted through 19.2.1 XMPP support did not verify certificates when used with TLS allowing an attacker to MITM connections. | 2019-06-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2019-12900 | BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors. | 2019-06-02T00:00:00.000Z | 2022-06-28T00:00:00.000Z |
| msrc_cve-2019-12972 | An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd) as distributed in GNU Binutils 2.32. There is a heap-based buffer over-read in _bfd_doprnt in bfd.c because elf_object_p in elfcode.h mishandles an e_shstrndx section of type SHT_GROUP by omitting a trailing '\0' character. | 2019-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2019-13012 | The keyfile settings backend in GNOME GLib (aka glib2.0) before 2.60.0 creates directories using g_file_make_directory_with_parents (kfsb->dir NULL NULL) and files using g_file_replace_contents (kfsb->file contents length NULL FALSE G_FILE_CREATE_REPLACE_DESTINATION NULL NULL NULL). Consequently it does not properly restrict directory (and file) permissions. Instead for directories 0777 permissions are used; for files default file permissions are used. This is similar to CVE-2019-12450. | 2019-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2019-13045 | Irssi has a use after free when sending SASL login to the server | 2019-06-02T00:00:00.000Z | 2025-05-15T00:00:00.000Z |
| msrc_cve-2019-9755 | An integer underflow issue exists in ntfs-3g 2017.3.23. A local attacker could potentially exploit this by running /bin/ntfs-3g with specially crafted arguments from a specially crafted directory to cause a heap buffer overflow resulting in a crash or the ability to execute arbitrary code. In installations where /bin/ntfs-3g is a setuid-root binary this could lead to a local escalation of privileges. | 2019-06-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2017-12652 | libpng before 1.6.32 does not properly check the length of chunks against the user limit. | 2019-07-02T00:00:00.000Z | 2025-03-14T00:00:00.000Z |
| msrc_cve-2019-1010180 | GNU gdb All versions is affected by: Buffer Overflow - Out of bound memory access. The impact is: Deny of Service, Memory Disclosure, and Possible Code Execution. The component is: The main gdb module. The attack vector is: Open an ELF for debugging. The fixed version is: Not fixed yet. | 2019-07-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2019-1010238 | Gnome Pango 1.42 and later is affected by: Buffer Overflow. The impact is: The heap based buffer overflow can be used to get code execution. The component is: function name: pango_log2vis_get_embedding_levels, assignment of nchars and the loop condition. The attack vector is: Bug can be used when application pass invalid utf-8 strings to functions like pango_itemize. | 2019-07-02T00:00:00.000Z | 2022-04-07T00:00:00.000Z |
| msrc_cve-2019-10638 | In the Linux kernel before 5.1.7 a device can be tracked by an attacker using the IP ID values the kernel produces for connection-less protocols (e.g. UDP and ICMP). When such traffic is sent to multiple destination IP addresses it is possible to obtain hash collisions (of indices to the counter array) and thereby obtain the hashing key (via enumeration). An attack may be conducted by hosting a crafted web page that uses WebRTC or gQUIC to force UDP traffic to attacker-controlled IP addresses. | 2019-07-02T00:00:00.000Z | 2024-08-15T00:00:00.000Z |
| msrc_cve-2019-13232 | Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP container leading to denial of service (resource consumption) aka a "better zip bomb" issue. | 2019-07-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2019-13504 | There is an out-of-bounds read in Exiv2::MrwImage::readMetadata in mrwimage.cpp in Exiv2 through 0.27.2. | 2019-07-02T00:00:00.000Z | 2022-01-19T00:00:00.000Z |
| msrc_cve-2019-13509 | In Docker CE and EE before 18.09.8 (as well as Docker EE before 17.06.2-ee-23 and 18.x before 18.03.1-ee-10) Docker Engine in debug mode may sometimes add secrets to the debug log. This applies to a scenario where docker stack deploy is run to redeploy a stack that includes (non external) secrets. It potentially applies to other API users of the stack API if they resend the secret. | 2019-07-02T00:00:00.000Z | 2021-07-16T00:00:00.000Z |
| msrc_cve-2019-13636 | In GNU patch through 2.7.6 the following of symlinks is mishandled in certain cases other than input files. This affects inp.c and util.c. | 2019-07-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2019-13638 | GNU patch through 2.7.6 is vulnerable to OS shell command injection that can be exploited by opening a crafted patch file that contains an ed style diff payload with shell metacharacters. The ed editor does not need to be present on the vulnerable system. This is different from CVE-2018-1000156. | 2019-07-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2019-14192 | An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an nc_input_packet call. | 2019-07-02T00:00:00.000Z | 2025-09-04T05:15:40.000Z |
| msrc_cve-2019-14193 | An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with an unvalidated length at nfs_readlink_reply, in the "if" block after calculating the new path length. | 2019-07-02T00:00:00.000Z | 2025-09-03T22:33:58.000Z |
| msrc_cve-2019-14194 | An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv2 case. | 2019-07-02T00:00:00.000Z | 2025-09-04T04:41:53.000Z |
| msrc_cve-2019-14195 | An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with unvalidated length at nfs_readlink_reply in the "else" block after calculating the new path length. | 2019-07-02T00:00:00.000Z | 2025-09-04T02:20:01.000Z |
| msrc_cve-2019-14196 | An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_lookup_reply. | 2019-07-02T00:00:00.000Z | 2025-09-04T02:36:43.000Z |
| msrc_cve-2019-14197 | An issue was discovered in Das U-Boot through 2019.07. There is a read of out-of-bounds data at nfs_read_reply. | 2019-07-02T00:00:00.000Z | 2025-09-03T22:13:52.000Z |
| msrc_cve-2019-14198 | An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv3 case. | 2019-07-02T00:00:00.000Z | 2025-09-04T05:33:49.000Z |
| msrc_cve-2019-14199 | An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an *udp_packet_handler call. | 2019-07-02T00:00:00.000Z | 2025-09-04T04:30:22.000Z |
| msrc_cve-2019-14200 | An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: rpc_lookup_reply. | 2019-07-02T00:00:00.000Z | 2025-09-04T05:40:11.000Z |
| msrc_cve-2019-14201 | An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_lookup_reply. | 2019-07-02T00:00:00.000Z | 2025-09-04T04:35:28.000Z |
| msrc_cve-2019-14202 | An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_readlink_reply. | 2019-07-02T00:00:00.000Z | 2025-09-04T02:25:42.000Z |
| msrc_cve-2019-14203 | An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_mount_reply. | 2019-07-02T00:00:00.000Z | 2025-09-03T22:42:12.000Z |
| msrc_cve-2019-14204 | An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_umountall_reply. | 2019-07-02T00:00:00.000Z | 2025-09-04T02:52:16.000Z |
| msrc_cve-2019-14249 | dwarf_elf_load_headers.c in libdwarf before 2019-07-05 allows attackers to cause a denial of service | 2019-07-02T00:00:00.000Z | 2025-09-03T20:23:20.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2008-000055 | Blogn vulnerable to cross-site scripting | 2008-09-02T17:22+09:00 | 2008-09-02T17:22+09:00 |
| jvndb-2008-001575 | Fujitsu Interstage Application Server Single Sign-On Buffer Overflow Vulnerability | 2008-09-03T12:33+09:00 | 2008-09-03T12:33+09:00 |
| jvndb-2008-001576 | Fujitsu Interstage Application Server Interstage Management Console Arbitrary File Read/Delete Vulnerability | 2008-09-03T12:34+09:00 | 2012-02-15T18:13+09:00 |
| jvndb-2008-001584 | Hitachi JP1/File Transmission Server/FTP Transmission Failure Problem | 2008-09-05T12:23+09:00 | 2008-09-05T12:23+09:00 |
| jvndb-2008-001585 | Hitachi JP1/File Transmission Server/FTP Unauthorized File Permission Change Vulnerability | 2008-09-05T12:24+09:00 | 2008-09-05T12:24+09:00 |
| jvndb-2008-000052 | Webservice-DIC shop_v50 and shop_v52 vulnerable to cross-site scripting | 2008-09-08T17:01+09:00 | 2008-09-08T17:01+09:00 |
| jvndb-2008-001613 | Fujitsu Interstage Application Server Access Control Update Problem | 2008-09-09T16:21+09:00 | 2008-09-09T16:21+09:00 |
| jvndb-2008-001614 | JP1/NETM/DM SubManager and JP1/NETM/DM Client Process Termination Vulnerability | 2008-09-09T16:21+09:00 | 2008-09-09T16:21+09:00 |
| jvndb-2008-000056 | Movable Type vulnerable to cross-site scripting | 2008-09-10T11:28+09:00 | 2008-09-10T11:28+09:00 |
| jvndb-2008-000057 | Sound Master 2nd from High Norm vulnerable to cross-site scripting | 2008-09-10T11:28+09:00 | 2008-09-10T11:28+09:00 |
| jvndb-2008-000058 | Multiple Tor World CGI scripts vulnerable to arbitrary script execution | 2008-09-18T11:48+09:00 | 2008-09-18T11:48+09:00 |
| jvndb-2008-001647 | Jasmine WebLink Template Multiple Vulnerabilities | 2008-09-18T11:48+09:00 | 2009-03-30T14:29+09:00 |
| jvndb-2008-000059 | Kantan WEB Server directory traversal vulnerability | 2008-09-22T12:26+09:00 | 2008-09-22T12:26+09:00 |
| jvndb-2008-000060 | Kantan WEB Server cross-site scripting vulnerability | 2008-09-22T12:26+09:00 | 2008-09-22T12:26+09:00 |
| jvndb-2008-001665 | Data Transfer Control Process Cessation Issue in XFIT/S/JCA and XFIT/S/ZGN | 2008-09-24T12:03+09:00 | 2008-09-24T12:03+09:00 |
| jvndb-2008-000061 | phpMyAdmin cross-site scripting vulnerability | 2008-09-26T16:37+09:00 | 2008-09-26T16:37+09:00 |
| jvndb-2008-000064 | EC-CUBE cross-site scripting vulnerability | 2008-10-01T16:31+09:00 | 2008-10-01T16:31+09:00 |
| jvndb-2008-000065 | EC-CUBE vulnerable to SQL injection | 2008-10-01T16:31+09:00 | 2008-10-01T16:31+09:00 |
| jvndb-2008-000062 | EC-CUBE cross-site scripting vulnerability | 2008-10-01T16:32+09:00 | 2008-10-01T16:32+09:00 |
| jvndb-2008-000063 | EC-CUBE cross-site scripting vulnerability | 2008-10-01T16:32+09:00 | 2008-10-01T16:32+09:00 |
| jvndb-2008-000066 | Nucleus EUC-JP Japanese Edition vulnerable to cross-site scripting | 2008-10-06T15:24+09:00 | 2008-10-06T15:24+09:00 |
| jvndb-2008-000069 | Apache Tomcat allows access from a non-permitted IP address | 2008-10-10T15:44+09:00 | 2009-07-08T11:38+09:00 |
| jvndb-2008-000073 | Blosxom vulnerable to cross-site scripting | 2008-10-20T17:30+09:00 | 2008-10-20T17:30+09:00 |
| jvndb-2008-000068 | hisa_cart information disclosure vulnerability | 2008-10-21T19:25+09:00 | 2008-10-21T19:25+09:00 |
| jvndb-2008-000072 | Movable Type cross-site scripting vulnerability | 2008-10-21T19:25+09:00 | 2011-05-31T10:57+09:00 |
| jvndb-2008-000070 | Internet Explorer vulnerable in handling CDO protocol | 2008-10-22T17:49+09:00 | 2008-10-22T17:49+09:00 |
| jvndb-2008-000071 | MyNETS cross-site scripting vulnerability | 2008-10-22T17:49+09:00 | 2008-10-22T17:49+09:00 |
| jvndb-2008-000074 | Snoopy command injection vulnerability | 2008-10-28T15:34+09:00 | 2008-11-28T13:54+09:00 |
| jvndb-2008-001778 | BrightStor ARCserve and eTrust Antivirus Arbitrary Code Execution Vulnerability | 2008-10-30T12:19+09:00 | 2008-10-30T12:19+09:00 |
| jvndb-2008-001779 | CA ARCserver Backup and CA ARCserve Backup Client Agent Denial of Service (DoS) Vulnerability | 2008-10-30T12:20+09:00 | 2008-10-30T12:20+09:00 |
| ID | Description | Updated |
|---|