Recent vulnerabilities

ID	Description	Published	Updated
ghsa-4gfv-wqf7-r3g7	In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Prevent handling…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-2jvw-hf8m-phpv	In the Linux kernel, the following vulnerability has been resolved: net: phy: xgmiitorgmii: Fix re…	2025-12-24T15:30:35Z	2025-12-24T15:30:35Z
ghsa-xpg5-5j2p-2g3r	In the Linux kernel, the following vulnerability has been resolved: acct: fix potential integer ov…	2025-12-24T15:30:33Z	2025-12-24T15:30:34Z
ghsa-xp8v-ff5g-65c6	In the Linux kernel, the following vulnerability has been resolved: crypto: marvell/octeontx - pre…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-v749-pfxc-qfwj	In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Avoid UBSAN error on…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-mx2m-7wfj-355r	In the Linux kernel, the following vulnerability has been resolved: netdevsim: fix memory leak in …	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-m38r-m4xr-gxwh	In the Linux kernel, the following vulnerability has been resolved: rcu: Fix __this_cpu_read() loc…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-j2wx-wqf4-px3j	In the Linux kernel, the following vulnerability has been resolved: nvme-pci: fix mempool alloc si…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-hhxv-6gp3-rvmc	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix PCI device ref…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-h32w-qx2f-cqqg	In the Linux kernel, the following vulnerability has been resolved: media: i2c: ov5648: Free V4L2 …	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-gvc9-3fj4-7qr5	In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: Fix several us…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-grmr-47cc-4gc2	In the Linux kernel, the following vulnerability has been resolved: ipv6/sit: use DEV_STATS_INC() …	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-gg2j-w22v-f248	In the Linux kernel, the following vulnerability has been resolved: md/raid5: Remove unnecessary b…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-g5hv-6pvx-45rj	In the Linux kernel, the following vulnerability has been resolved: media: camss: Clean up receive…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-fx2h-pcqr-7fq9	In the Linux kernel, the following vulnerability has been resolved: apparmor: fix a memleak in mul…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-cxg4-pr38-gg9p	In the Linux kernel, the following vulnerability has been resolved: ALSA: mts64: fix possible null…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-c8hr-j464-wc7x	In the Linux kernel, the following vulnerability has been resolved: mmc: mxcmmc: fix return value …	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-9rwv-33pv-xm7g	In the Linux kernel, the following vulnerability has been resolved: RISC-V: kexec: Fix memory leak…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-9498-f72m-xmv4	In the Linux kernel, the following vulnerability has been resolved: x86/xen: Fix memory leak in xe…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-83fq-277g-4r9j	In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check o…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-7x4j-mxw3-3v9g	In the Linux kernel, the following vulnerability has been resolved: scsi: smartpqi: Correct device…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-7px2-rh6v-wcpc	In the Linux kernel, the following vulnerability has been resolved: configfs: fix possible memory …	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-65xq-q38h-gcrc	In the Linux kernel, the following vulnerability has been resolved: btrfs: set generation before c…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-5phr-qvw5-5rg9	In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix memory leak in ocfs…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-4xw5-xvv7-qcv6	In the Linux kernel, the following vulnerability has been resolved: udf: Avoid double brelse() in …	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-4vj6-mf2w-wx4x	In the Linux kernel, the following vulnerability has been resolved: drm/panel/panel-sitronix-st770…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-35g5-mqjg-qfr4	In the Linux kernel, the following vulnerability has been resolved: staging: vt6655: fix potential…	2025-12-24T15:30:34Z	2025-12-24T15:30:34Z
ghsa-x7fv-mvjx-m6c8	In the Linux kernel, the following vulnerability has been resolved: erofs: Fix pcluster memleak wh…	2025-12-24T15:30:33Z	2025-12-24T15:30:33Z
ghsa-v23g-73pc-f58m	In the Linux kernel, the following vulnerability has been resolved: staging: rtl8192u: Fix use aft…	2025-12-24T15:30:33Z	2025-12-24T15:30:33Z
ghsa-r5vj-594q-443q	In the Linux kernel, the following vulnerability has been resolved: media: imx-jpeg: Disable usele…	2025-12-24T15:30:33Z	2025-12-24T15:30:33Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2023-54156	N/A	sfc: fix crash when reading stats while NIC is resetting	Linux	Linux	2025-12-24T13:07:06.043Z	2025-12-24T13:07:06.043Z
cve-2023-54155	N/A	net: core: remove unnecessary frame_sz check in bpf_xd…	Linux	Linux	2025-12-24T13:07:05.385Z	2025-12-24T13:07:05.385Z
cve-2023-54154	N/A	scsi: target: core: Fix target_cmd_counter leak	Linux	Linux	2025-12-24T13:07:04.721Z	2025-12-24T13:07:04.721Z
cve-2023-54153	N/A	ext4: turn quotas off if mount failed after enabling quotas	Linux	Linux	2025-12-24T13:07:04.007Z	2025-12-24T13:07:04.007Z
cve-2023-54152	N/A	can: j1939: prevent deadlock by moving j1939_sk_errqueue()	Linux	Linux	2025-12-24T13:07:03.310Z	2025-12-24T13:07:03.310Z
cve-2023-54151	N/A	f2fs: Fix system crash due to lack of free space in LFS	Linux	Linux	2025-12-24T13:07:02.600Z	2025-12-24T13:07:02.600Z
cve-2023-54150	N/A	drm/amd: Fix an out of bounds error in BIOS parser	Linux	Linux	2025-12-24T13:07:01.754Z	2025-12-24T13:07:01.754Z
cve-2023-54149	N/A	net: dsa: avoid suspicious RCU usage for synced VLAN-a…	Linux	Linux	2025-12-24T13:07:00.977Z	2025-12-24T13:07:00.977Z
cve-2023-54148	N/A	net/mlx5e: Move representor neigh cleanup to profile c…	Linux	Linux	2025-12-24T13:07:00.260Z	2025-12-24T13:07:00.260Z
cve-2023-54147	N/A	media: platform: mtk-mdp3: Add missing check and free …	Linux	Linux	2025-12-24T13:06:59.566Z	2025-12-24T13:06:59.566Z
cve-2023-54146	N/A	x86/kexec: Fix double-free of elf header buffer	Linux	Linux	2025-12-24T13:06:58.904Z	2025-12-24T13:06:58.904Z
cve-2023-54145	N/A	bpf: drop unnecessary user-triggerable WARN_ONCE in ve…	Linux	Linux	2025-12-24T13:06:58.227Z	2025-12-24T13:06:58.227Z
cve-2023-54144	N/A	drm/amdkfd: Fix kernel warning during topology setup	Linux	Linux	2025-12-24T13:06:57.546Z	2025-12-24T13:06:57.546Z
cve-2023-54143	N/A	media: mediatek: vcodec: fix resource leaks in vdec_ms…	Linux	Linux	2025-12-24T13:06:56.869Z	2025-12-24T13:06:56.869Z
cve-2023-54142	N/A	gtp: Fix use-after-free in __gtp_encap_destroy().	Linux	Linux	2025-12-24T13:06:56.204Z	2025-12-24T13:06:56.204Z
cve-2023-54141	N/A	wifi: ath11k: Add missing hw_ops->get_ring_selector() …	Linux	Linux	2025-12-24T13:06:55.468Z	2025-12-24T13:06:55.468Z
cve-2023-54140	N/A	nilfs2: fix WARNING in mark_buffer_dirty due to discar…	Linux	Linux	2025-12-24T13:06:54.784Z	2025-12-24T13:06:54.784Z
cve-2023-54139	N/A	tracing/user_events: Ensure write index cannot be negative	Linux	Linux	2025-12-24T13:06:54.094Z	2025-12-24T13:06:54.094Z
cve-2023-54138	N/A	drm/msm: fix NULL-deref on irq uninstall	Linux	Linux	2025-12-24T13:06:53.365Z	2025-12-24T13:06:53.365Z
cve-2023-54137	N/A	vfio/type1: fix cap_migration information leak	Linux	Linux	2025-12-24T13:06:52.689Z	2025-12-24T13:06:52.689Z
cve-2023-54136	N/A	serial: sprd: Fix DMA buffer leak issue	Linux	Linux	2025-12-24T13:06:51.989Z	2025-12-24T13:06:51.989Z
cve-2023-54135	N/A	maple_tree: fix potential out-of-bounds access in mas_…	Linux	Linux	2025-12-24T13:06:51.329Z	2025-12-24T13:06:51.329Z
cve-2023-54134	N/A	autofs: fix memory leak of waitqueues in autofs_catato…	Linux	Linux	2025-12-24T13:06:50.627Z	2025-12-24T13:06:50.627Z
cve-2023-54133	N/A	nfp: clean mc addresses in application firmware when c…	Linux	Linux	2025-12-24T13:06:49.919Z	2025-12-24T13:06:49.919Z
cve-2023-54132	N/A	erofs: stop parsing non-compact HEAD index if clustero…	Linux	Linux	2025-12-24T13:06:49.030Z	2025-12-24T13:06:49.030Z
cve-2023-54131	N/A	wifi: rt2x00: Fix memory leak when handling surveys	Linux	Linux	2025-12-24T13:06:48.227Z	2025-12-24T13:06:48.227Z
cve-2023-54130	N/A	hfs/hfsplus: avoid WARN_ON() for sanity check, use pro…	Linux	Linux	2025-12-24T13:06:47.502Z	2025-12-24T13:06:47.502Z
cve-2023-54129	N/A	octeontx2-af: Add validation for lmac type	Linux	Linux	2025-12-24T13:06:46.817Z	2025-12-24T13:06:46.817Z
cve-2023-54128	N/A	fs: drop peer group ids under namespace lock	Linux	Linux	2025-12-24T13:06:46.056Z	2025-12-24T13:06:46.056Z
cve-2023-54127	N/A	fs/jfs: prevent double-free in dbUnmount() after faile…	Linux	Linux	2025-12-24T13:06:45.380Z	2025-12-24T13:06:45.380Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-68568	N/A	WordPress Popup Builder: Exit-Intent pop-up, Spin the …	integrationclaspo	Popup Builder: Exit-Intent pop-up, Spin the Wheel, Newsletter signup, Email Capture & Lead Generation forms maker	2025-12-24T13:10:36.357Z	2025-12-24T19:30:40.727Z
cve-2025-68567	N/A	WordPress My auctions allegro plugin <= 3.6.32 - Cross…	wphocus	My auctions allegro	2025-12-24T13:10:36.094Z	2025-12-24T19:30:46.741Z
cve-2025-68566	N/A	WordPress My auctions allegro plugin <= 3.6.32 - Cross…	wphocus	My auctions allegro	2025-12-24T13:10:35.820Z	2025-12-24T19:30:51.874Z
cve-2025-68565	N/A	WordPress Twitch Player plugin <= 2.1.3 - Broken Acces…	JayBee	Twitch Player	2025-12-24T13:10:35.534Z	2025-12-24T19:30:57.378Z
cve-2025-68563	N/A	WordPress Subscribe to Unlock Lite plugin <= 1.3.0 - L…	WP Shuffle	Subscribe to Unlock Lite	2025-12-24T12:31:30.996Z	2025-12-24T19:32:56.561Z
cve-2025-68540	N/A	WordPress Fana theme <= 1.1.35 - Local File Inclusion …	thembay	Fana	2025-12-24T12:31:27.748Z	2025-12-24T19:33:03.430Z
cve-2025-68537	N/A	WordPress Zota theme <= 1.3.14 - Local File Inclusion …	thembay	Zota	2025-12-24T12:31:27.277Z	2025-12-24T19:33:09.770Z
cve-2025-68535	N/A	WordPress Sunshine Photo Cart plugin <= 3.5.7.1 - Brok…	sunshinephotocart	Sunshine Photo Cart	2025-12-24T12:31:27.019Z	2025-12-24T19:33:16.139Z
cve-2025-68533	N/A	WordPress WC Builder plugin <= 1.2.0 - Cross Site Scri…	HasThemes	WC Builder	2025-12-24T12:31:26.717Z	2025-12-24T19:33:21.875Z
cve-2025-68532	N/A	WordPress ModelTheme Addons for WPBakery and Elementor…	modeltheme	ModelTheme Addons for WPBakery and Elementor	2025-12-24T12:31:26.464Z	2025-12-24T19:33:27.734Z
cve-2025-68530	N/A	WordPress Bookory theme <= 2.2.7 - Local File Inclusio…	pavothemes	Bookory	2025-12-24T12:31:26.200Z	2025-12-24T19:33:33.446Z
cve-2025-68529	N/A	WordPress WP Email Capture plugin <= 3.12.5 - Cross Si…	Rhys Wynne	WP Email Capture	2025-12-24T12:31:25.832Z	2025-12-24T19:33:39.814Z
cve-2025-68528	N/A	WordPress Free Shipping Bar: Amount Left for Free Ship…	WPFactory	Free Shipping Bar: Amount Left for Free Shipping for WooCommerce	2025-12-24T12:31:25.572Z	2025-12-24T19:33:45.822Z
cve-2025-68527	N/A	WordPress Academy LMS plugin <= 3.4.0 - Cross Site Scr…	Kodezen LLC	Academy LMS	2025-12-24T12:31:25.030Z	2025-12-24T19:33:51.387Z
cve-2025-68525	N/A	WordPress Category Icon plugin <= 1.0.2 - Cross Site S…	pixelgrade	Category Icon	2025-12-24T12:31:24.777Z	2025-12-24T19:33:57.712Z
cve-2025-68523	N/A	WordPress Spiffy Calendar plugin <= 5.0.7 - Broken Acc…	Spiffy Plugins	Spiffy Calendar	2025-12-24T12:31:24.167Z	2025-12-24T19:34:04.466Z
cve-2025-68522	N/A	WordPress WpStream plugin <= 4.9.5 - Broken Access Con…	wpstream	WpStream	2025-12-24T12:31:23.576Z	2025-12-24T19:34:11.231Z
cve-2025-68521	N/A	WordPress WpStream plugin <= 4.9.5 - Broken Access Con…	wpstream	WpStream	2025-12-24T12:31:23.159Z	2025-12-24T19:34:17.589Z
cve-2025-68519	N/A	WordPress Brands for WooCommerce plugin <= 3.8.6.3 - S…	BeRocket	Brands for WooCommerce	2025-12-24T12:31:22.910Z	2025-12-24T19:34:23.198Z
cve-2025-68517	N/A	WordPress Tablesome plugin <= 1.1.35.1 - Broken Access…	Essekia	Tablesome	2025-12-24T12:31:22.624Z	2025-12-24T19:34:29.179Z
cve-2025-68516	N/A	WordPress Tablesome plugin <= 1.1.35.1 - Sensitive Dat…	Essekia	Tablesome	2025-12-24T12:31:22.368Z	2025-12-24T19:34:35.531Z
cve-2025-68513	N/A	WordPress Bold Timeline Lite plugin <= 1.2.7 - Cross S…	boldthemes	Bold Timeline Lite	2025-12-24T12:31:22.085Z	2025-12-24T19:34:41.584Z
cve-2025-68512	N/A	WordPress Real 3D FlipBook plugin <= 4.11.4 - Cross Si…	creativeinteractivemedia	Real 3D FlipBook	2025-12-24T12:31:21.792Z	2025-12-24T19:34:47.922Z
cve-2025-68511	N/A	WordPress Gutenverse Form plugin <= 2.3.1 - Broken Acc…	Jegstudio	Gutenverse Form	2025-12-24T12:31:21.523Z	2025-12-24T19:34:53.452Z
cve-2025-68509	N/A	WordPress User Submitted Posts plugin <= 20251121 - Op…	Jeff Starr	User Submitted Posts	2025-12-24T12:31:21.266Z	2025-12-24T19:34:59.356Z
cve-2025-68508	N/A	WordPress Brave plugin <= 0.8.3 - Broken Access Contro…	Brave	Brave	2025-12-24T12:31:20.967Z	2025-12-24T19:35:06.869Z
cve-2025-68506	N/A	WordPress Docket Cache plugin <= 24.07.03 - Local File…	Nawawi Jamili	Docket Cache	2025-12-24T13:10:26.727Z	2025-12-24T19:31:03.840Z
cve-2025-68505	N/A	WordPress H5P plugin <= 1.16.1 - Broken Access Control…	icc0rz	H5P	2025-12-24T12:31:20.714Z	2025-12-24T19:35:13.288Z
cve-2025-68500	N/A	WordPress Prime Slider – Addons For Elementor plugin <…	bdthemes	Prime Slider – Addons For Elementor	2025-12-24T12:31:20.426Z	2025-12-24T19:35:20.294Z
cve-2025-68497	N/A	WordPress Astra Widgets plugin <= 1.2.16 - Cross Site …	Brainstorm Force	Astra Widgets	2025-12-24T12:31:19.996Z	2025-12-24T19:35:27.005Z

ID	Description	Published	Updated
fkie_cve-2025-68566	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:23.470	2025-12-29T15:58:13.147
fkie_cve-2025-68565	Missing Authorization vulnerability in JayBee Twitch Player ttv-easy-embed-player allows Exploiting…	2025-12-24T13:16:23.340	2025-12-29T15:58:13.147
fkie_cve-2025-68563	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-24T13:16:23.223	2025-12-29T15:58:13.147
fkie_cve-2025-68540	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-24T13:16:23.093	2025-12-29T15:58:13.147
fkie_cve-2025-68537	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-24T13:16:22.970	2025-12-29T15:58:13.147
fkie_cve-2025-68535	Missing Authorization vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart al…	2025-12-24T13:16:22.850	2025-12-29T15:58:13.147
fkie_cve-2025-68533	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:22.727	2025-12-29T15:58:13.147
fkie_cve-2025-68532	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:22.603	2025-12-29T15:58:13.147
fkie_cve-2025-68530	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-24T13:16:22.480	2025-12-29T15:58:13.147
fkie_cve-2025-68529	Cross-Site Request Forgery (CSRF) vulnerability in Rhys Wynne WP Email Capture wp-email-capture all…	2025-12-24T13:16:22.357	2025-12-29T15:58:13.147
fkie_cve-2025-68528	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:22.233	2025-12-29T15:58:13.147
fkie_cve-2025-68527	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:22.117	2025-12-29T15:58:13.147
fkie_cve-2025-68525	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:21.997	2025-12-29T15:58:13.147
fkie_cve-2025-68523	Missing Authorization vulnerability in Spiffy Plugins Spiffy Calendar spiffy-calendar allows Exploi…	2025-12-24T13:16:21.877	2025-12-29T15:58:13.147
fkie_cve-2025-68522	Missing Authorization vulnerability in wpstream WpStream wpstream allows Exploiting Incorrectly Con…	2025-12-24T13:16:21.763	2025-12-29T15:58:13.147
fkie_cve-2025-68521	Missing Authorization vulnerability in wpstream WpStream wpstream allows Exploiting Incorrectly Con…	2025-12-24T13:16:21.637	2025-12-29T15:58:13.147
fkie_cve-2025-68519	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2025-12-24T13:16:21.517	2025-12-29T15:58:13.147
fkie_cve-2025-68517	Missing Authorization vulnerability in Essekia Tablesome tablesome allows Exploiting Incorrectly Co…	2025-12-24T13:16:21.393	2025-12-29T15:58:13.147
fkie_cve-2025-68516	Insertion of Sensitive Information Into Sent Data vulnerability in Essekia Tablesome tablesome allo…	2025-12-24T13:16:21.270	2025-12-29T15:58:13.147
fkie_cve-2025-68513	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:21.143	2025-12-29T15:58:13.147
fkie_cve-2025-68512	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:21.020	2025-12-29T15:58:13.147
fkie_cve-2025-68511	Missing Authorization vulnerability in Jegstudio Gutenverse Form gutenverse-form allows Exploiting …	2025-12-24T13:16:20.900	2025-12-29T15:58:13.147
fkie_cve-2025-68509	URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Jeff Starr User Submitted Post…	2025-12-24T13:16:20.777	2025-12-29T15:58:13.147
fkie_cve-2025-68508	Missing Authorization vulnerability in Brave Brave brave-popup-builder allows Exploiting Incorrectl…	2025-12-24T13:16:20.650	2025-12-29T15:58:13.147
fkie_cve-2025-68506	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-24T13:16:20.527	2025-12-29T15:58:13.147
fkie_cve-2025-68505	Missing Authorization vulnerability in icc0rz H5P h5p allows Exploiting Incorrectly Configured Acce…	2025-12-24T13:16:20.400	2025-12-29T15:58:13.147
fkie_cve-2025-68500	Server-Side Request Forgery (SSRF) vulnerability in bdthemes Prime Slider – Addons For Elementor bd…	2025-12-24T13:16:20.283	2025-12-29T15:58:13.147
fkie_cve-2025-68497	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:20.160	2025-12-29T15:58:13.147
fkie_cve-2025-68496	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2025-12-24T13:16:20.043	2025-12-29T15:58:13.147
fkie_cve-2025-68494	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Leap13 …	2025-12-24T13:16:19.927	2025-12-29T15:58:13.147

ID	Description	Package	Published	Updated
pysec-2024-46	Apache Airflow, versions 2.8.0 through 2.8.2, has a vulnerability that allows an authenti…	apache-airflow	2024-03-14T09:15:00+00:00	2024-03-14T11:19:09.515892+00:00
pysec-2024-45	LangChain through 0.1.10 allows ../ directory traversal by an actor who is able to contro…	langchain-core	2024-03-04T00:15:00+00:00	2024-03-13T23:20:07.486731+00:00
pysec-2024-44	In RPyC before 6.0.0, when a server exposes a method that calls the attribute named __arr…	rpyc	2024-03-12T16:15:00+00:00	2024-03-12T19:19:21.886478+00:00
pysec-2024-43	LangChain through 0.1.10 allows ../ directory traversal by an actor who is able to contro…	langchain	2024-03-04T00:15:00+00:00	2024-03-05T10:22:15.555734+00:00
pysec-2024-42	Apache Airflow, versions before 2.8.2, has a vulnerability that allows authenticated Ops …	apache-airflow	2024-03-01T11:15:00+00:00	2024-03-01T14:20:34.498842+00:00
pysec-2023-259	A vulnerability, which was classified as critical, has been found in MicroPython 1.21.0/1…	micropython-select	2023-12-29T05:15:00+00:00	2024-02-29T07:20:31.851255+00:00
pysec-2023-258	A vulnerability, which was classified as critical, has been found in MicroPython 1.21.0/1…	micropython-os	2023-12-29T05:15:00+00:00	2024-02-29T07:20:31.721783+00:00
pysec-2023-257	A vulnerability, which was classified as critical, has been found in MicroPython 1.21.0/1…	micropython-io	2023-12-29T05:15:00+00:00	2024-02-29T07:20:31.603749+00:00
pysec-2023-256	A vulnerability, which was classified as critical, has been found in MicroPython 1.21.0/1…	micropython-copy	2023-12-29T05:15:00+00:00	2024-02-29T07:20:31.464203+00:00
pysec-2023-255	Command Injection in GitHub repository gradio-app/gradio prior to main.	gradio	2023-12-14T14:15:00+00:00	2024-02-28T16:22:37.359017+00:00
pysec-2024-41	diffoscope before 256 allows directory traversal via an embedded filename in a GPG file. …	diffoscope	2024-02-27T02:15:00+00:00	2024-02-27T07:20:27.954412+00:00
pysec-2024-40	orjson.loads in orjson before 3.9.15 does not limit recursion for deeply nested JSON documents.	orjson	2024-02-26T16:28:00+00:00	2024-02-26T18:22:26.039698+00:00
pysec-2024-39	Versions of the package fastecdsa before 2.3.2 are vulnerable to Use of Uninitialized Var…	fastecdsa	2024-02-24T05:15:00+00:00	2024-02-24T07:19:09.418536+00:00
pysec-2023-254	cryptography is a package designed to expose cryptographic primitives and recipes to Pyth…	cryptography	2023-11-29T19:15:00+00:00	2024-02-17T07:18:27.688636+00:00
pysec-2024-38	FastAPI is a web framework for building APIs with Python 3.8+ based on standard Python ty…	fastapi	2024-02-05T15:15:00+00:00	2024-02-16T18:22:32.607118+00:00
pysec-2024-37	nonebot2 is a cross-platform Python asynchronous chatbot framework written in Python. Thi…	nonebot2	2024-02-09T23:15:00+00:00	2024-02-16T16:22:37.389642+00:00
pysec-2022-43059	AIOHTTP 3.8.1 can report a "ValueError: Invalid IPv6 URL" outcome, which can lead to a De…	aiohttp	2022-06-23T17:15:00Z	2024-02-16T13:47:54.655573Z
pysec-2024-36	An information disclosure flaw was found in ansible-core due to a failure to respect the …	ansible-core	2024-02-06T12:15:00+00:00	2024-02-14T07:20:09.911618+00:00
pysec-2023-253	Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.9.2.	mlflow	2023-12-15T01:15:00+00:00	2024-02-14T00:26:12.242703+00:00
pysec-2024-35	Versions of the package dash-core-components before 2.13.0; all versions of the package d…	dash	2024-02-02T05:15:00+00:00	2024-02-10T07:18:43.563257+00:00
pysec-2024-12	LlamaIndex (aka llama_index) through 0.9.34 allows SQL injection via the Text-to-SQL feat…	llama-index	2024-01-22T01:15:00Z	2024-02-10T01:22:25.611009Z
pysec-2024-34	The vantage6 technology enables to manage and deploy privacy enhancing technologies like …	vantage6-server	2024-01-30T16:15:00+00:00	2024-02-08T20:20:16.896186+00:00
pysec-2024-33	The vantage6 technology enables to manage and deploy privacy enhancing technologies like …	vantage6-node	2024-01-30T16:15:00+00:00	2024-02-08T20:20:16.842528+00:00
pysec-2024-32	The vantage6 technology enables to manage and deploy privacy enhancing technologies like …	vantage6	2024-01-30T16:15:00+00:00	2024-02-08T18:22:28.342089+00:00
pysec-2024-31	The vantage6 technology enables to manage and deploy privacy enhancing technologies like …	vantage6	2024-01-30T16:15:00+00:00	2024-02-08T18:22:28.276390+00:00
pysec-2024-30	The vantage6 technology enables to manage and deploy privacy enhancing technologies like …	vantage6	2024-01-30T16:15:00+00:00	2024-02-08T18:22:28.210087+00:00
pysec-2024-29	OctoPrint is a web interface for 3D printer.s OctoPrint versions up until and including 1…	octoprint	2024-01-31T18:15:00+00:00	2024-02-08T07:19:40.535297+00:00
pysec-2024-28	An issue was discovered in Django 3.2 before 3.2.24, 4.2 before 4.2.10, and Django 5.0 be…	django	2024-02-06T22:16:00+00:00	2024-02-07T00:25:46.826634+00:00
pysec-2023-252	Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.9.2.	mlflow	2023-12-18T04:15:00+00:00	2024-02-06T22:20:23.832000+00:00
pysec-2024-26	aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. Security-…	aiohttp	2024-01-29T23:15:00+00:00	2024-02-06T20:20:18.162431+00:00

ID	Description	Updated
gsd-2024-33161	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.747995Z
gsd-2024-33423	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.747796Z
gsd-2024-33248	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.747603Z
gsd-2024-33447	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.747407Z
gsd-2024-33001	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.747211Z
gsd-2024-33238	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.747012Z
gsd-2024-33157	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.746799Z
gsd-2024-33038	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.746582Z
gsd-2024-33366	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.746377Z
gsd-2024-33195	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.746132Z
gsd-2024-33277	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.745937Z
gsd-2024-33485	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.745744Z
gsd-2024-33286	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.745545Z
gsd-2024-33169	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.745339Z
gsd-2024-33029	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.745140Z
gsd-2024-33399	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.744940Z
gsd-2024-33249	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.744741Z
gsd-2024-33016	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.744543Z
gsd-2024-33373	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.744340Z
gsd-2024-33524	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.744149Z
gsd-2024-33380	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.743956Z
gsd-2024-33237	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.743713Z
gsd-2024-33437	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.743513Z
gsd-2024-33404	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.743316Z
gsd-2024-33113	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.743114Z
gsd-2024-33473	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.742910Z
gsd-2024-33078	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.742686Z
gsd-2024-33064	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.742494Z
gsd-2024-33081	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.742295Z
gsd-2024-33206	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.742097Z

ID	Description	Published	Updated
mal-2025-192876	Malicious code in suntik-tiktok (npm)	2025-12-23T08:32:05Z	2025-12-23T08:32:05Z
mal-2025-192875	Malicious code in sturdyfetch9 (npm)	2025-12-23T08:31:59Z	2025-12-23T08:31:59Z
mal-2025-192874	Malicious code in sturdyfetch5 (npm)	2025-12-23T08:31:52Z	2025-12-23T08:31:52Z
mal-2025-192873	Malicious code in sturdyfetch4 (npm)	2025-12-23T08:31:51Z	2025-12-23T08:31:51Z
mal-2025-192872	Malicious code in sturdyfetch3 (npm)	2025-12-23T08:31:50Z	2025-12-23T08:31:50Z
mal-2025-192871	Malicious code in sturdyfetch22 (npm)	2025-12-23T08:31:49Z	2025-12-23T08:31:49Z
mal-2025-192870	Malicious code in sturdyfetch21 (npm)	2025-12-23T08:31:48Z	2025-12-23T08:31:48Z
mal-2025-192869	Malicious code in sturdyfetch19 (npm)	2025-12-23T08:31:47Z	2025-12-23T08:31:47Z
mal-2025-192868	Malicious code in sturdyfetch18 (npm)	2025-12-23T08:31:47Z	2025-12-23T08:31:47Z
mal-2025-192867	Malicious code in sturdyfetch17 (npm)	2025-12-23T08:31:46Z	2025-12-23T08:31:46Z
mal-2025-192866	Malicious code in sturdyfetch15 (npm)	2025-12-23T08:31:45Z	2025-12-23T08:31:45Z
mal-2025-192865	Malicious code in streamlinear (npm)	2025-12-23T08:31:32Z	2025-12-23T08:31:32Z
mal-2025-192864	Malicious code in stream-chain-xor (npm)	2025-12-23T08:31:31Z	2025-12-23T08:31:31Z
mal-2025-192863	Malicious code in smart-parser (npm)	2025-12-23T08:30:35Z	2025-12-23T08:30:35Z
mal-2025-192862	Malicious code in session-parse (npm)	2025-12-23T08:30:06Z	2025-12-23T08:30:06Z
mal-2025-192861	Malicious code in session-keeper (npm)	2025-12-23T08:30:05Z	2025-12-23T08:30:05Z
mal-2025-192860	Malicious code in security-testing-research99 (npm)	2025-12-23T08:29:51Z	2025-12-23T08:29:51Z
mal-2025-192859	Malicious code in security-testing-research- (npm)	2025-12-23T08:29:51Z	2025-12-23T08:29:51Z
mal-2025-192858	Malicious code in resethp (npm)	2025-12-23T08:28:15Z	2025-12-23T08:28:15Z
mal-2025-192857	Malicious code in redux-motion (npm)	2025-12-23T08:27:50Z	2025-12-23T08:27:50Z
mal-2025-192856	Malicious code in react-resizable-text (npm)	2025-12-23T08:27:17Z	2025-12-23T08:27:17Z
mal-2025-192855	Malicious code in react-flex-tools (npm)	2025-12-23T08:26:31Z	2025-12-23T08:26:31Z
mal-2025-192854	Malicious code in react-confetti-enhanced (npm)	2025-12-23T08:26:19Z	2025-12-23T08:26:19Z
mal-2025-192853	Malicious code in portal-aes (npm)	2025-12-23T08:24:49Z	2025-12-23T08:24:49Z
mal-2025-192852	Malicious code in polyfill-corejs2 (npm)	2025-12-23T08:24:47Z	2025-12-23T08:24:47Z
mal-2025-192851	Malicious code in petco-test (npm)	2025-12-23T08:24:29Z	2025-12-23T08:24:29Z
mal-2025-192850	Malicious code in pentestlyio-testpackage (npm)	2025-12-23T08:24:20Z	2025-12-23T08:24:20Z
mal-2025-192849	Malicious code in oneday-worm-research (npm)	2025-12-23T08:23:15Z	2025-12-23T08:23:15Z
mal-2025-192848	Malicious code in nokaca (npm)	2025-12-23T08:22:46Z	2025-12-23T08:22:46Z
mal-2025-192847	Malicious code in node-calculator-x7k9-grabber (npm)	2025-12-23T08:22:31Z	2025-12-23T08:22:31Z

ID	Description	Published	Updated
wid-sec-w-2025-0188	Linux Kernel: Schwachstelle ermöglicht Denial of Service	2025-01-23T23:00:00.000+00:00	2025-08-31T22:00:00.000+00:00
wid-sec-w-2024-3692	Apple macOS: Mehrere Schwachstellen	2024-12-11T23:00:00.000+00:00	2025-08-31T22:00:00.000+00:00
wid-sec-w-2024-2057	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service oder unspezifischer Angriff	2024-09-04T22:00:00.000+00:00	2025-08-31T22:00:00.000+00:00
wid-sec-w-2024-1548	Node.js: Mehrere Schwachstellen	2024-07-08T22:00:00.000+00:00	2025-08-31T22:00:00.000+00:00
wid-sec-w-2024-0776	Node.js: Mehrere Schwachstellen	2024-04-03T22:00:00.000+00:00	2025-08-31T22:00:00.000+00:00
wid-sec-w-2024-0393	Node.js: Mehrere Schwachstellen	2024-02-14T23:00:00.000+00:00	2025-08-31T22:00:00.000+00:00
wid-sec-w-2023-1689	Intel Prozessoren: Mehrere Schwachstellen	2019-11-12T23:00:00.000+00:00	2025-08-31T22:00:00.000+00:00
wid-sec-w-2025-1910	Citrix Systems ADC und NetScaler Gateway: Mehrere Schwachstellen	2025-08-26T22:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2025-1905	IBM QRadar SIEM Komponente: Mehrere Schwachstellen	2025-08-25T22:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2025-1831	Kubernetes: Schwachstelle ermöglicht Manipulation von Dateien	2025-08-13T22:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2025-0477	Android Patchday März 2025: Mehrere Schwachstellen	2025-03-03T23:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2024-3710	Red Hat Enterprise Linux (unbound und mpg123): Mehrere Schwachstellen	2024-12-16T23:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2024-3570	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2024-12-01T23:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2024-1722	Linux Kernel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff	2024-07-29T22:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2024-1451	Linux Kernel: Mehrere Schwachstellen	2024-06-25T22:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2022-0049	Linux Kernel: Mehrere Schwachstellen	2022-01-10T23:00:00.000+00:00	2025-08-27T22:00:00.000+00:00
wid-sec-w-2025-1912	Shibboleth Identity Provider: Schwachstelle ermöglicht Cross-Site Scripting	2025-08-26T22:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2025-1911	ILIAS: Mehrere Schwachstellen	2025-08-26T22:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2025-1909	Nagios Enterprises Nagios XI: Schwachstelle ermöglicht Cross-Site Scripting	2025-08-26T22:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2025-1908	TeamViewer: Schwachstelle ermöglicht Manipulation von Dateien	2025-08-25T22:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2025-1907	QNAP NAS (File Station 5): Mehrere Schwachstellen	2025-08-25T22:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2025-1903	Microsoft GitHub Enterprise: Mehrere Schwachstellen	2025-08-25T22:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2025-1543	binutils: Mehrere Schwachstellen ermöglichen Denial of Service	2025-07-13T22:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2025-1349	Citrix Systems ADC: Mehrere Schwachstellen	2025-06-17T22:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2025-0427	Linux Kernel: Schwachstelle ermöglichen nicht spezifizierten Angriff	2025-02-23T23:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2025-0320	Apache Cassandra: Schwachstelle ermöglicht Privilegieneskalation	2025-02-11T23:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2024-1474	Red Hat OpenShift Container Platform: Mehrere Schwachstellen	2024-06-27T22:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2023-3019	HAProxy Enterprise: Schwachstelle ermöglicht Offenlegung von Informationen	2023-11-28T23:00:00.000+00:00	2025-08-26T22:00:00.000+00:00
wid-sec-w-2025-1902	D-LINK Router DI-7400G+ und DIR-650IN: Mehrere Schwachstellen	2025-08-25T22:00:00.000+00:00	2025-08-25T22:00:00.000+00:00
wid-sec-w-2025-1899	OpenText Enterprise Security Manager: Schwachstelle ermöglicht Offenlegung von Informationen	2025-08-24T22:00:00.000+00:00	2025-08-25T22:00:00.000+00:00

ID	Description	Published	Updated
ssa-988345	SSA-988345: Local Privilege Escalation Vulnerability in Xpedition Designer	2022-06-14T00:00:00Z	2023-06-13T00:00:00Z
ssa-887249	SSA-887249: Multiple Vulnerabilities in the Web Interface of SICAM Q200 Devices	2023-06-13T00:00:00Z	2023-06-13T00:00:00Z
ssa-824231	SSA-824231: Unauthenticated Firmware Upload Vulnerability in Desigo PX Controllers	2018-01-24T00:00:00Z	2023-06-13T00:00:00Z
ssa-731916	SSA-731916: Multiple Vulnerabilities in CPCI85 Firmware of SICAM A8000 Devices	2023-06-13T00:00:00Z	2023-06-13T00:00:00Z
ssa-572005	SSA-572005: Vulnerabilities in the Web Server of SICAM P850 and SICAM P855 Devices	2022-10-11T00:00:00Z	2023-06-13T00:00:00Z
ssa-538795	SSA-538795: Multiple File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go	2023-06-13T00:00:00Z	2023-06-13T00:00:00Z
ssa-508677	SSA-508677: Use of Obsolete Function Vulnerability in SIMATIC WinCC before V8	2023-06-13T00:00:00Z	2023-06-13T00:00:00Z
ssa-482956	SSA-482956: Information Disclosure Vulnerability in SIMOTION before V5.5	2023-06-13T00:00:00Z	2023-06-13T00:00:00Z
ssa-120378	SSA-120378: Multiple File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go	2022-11-08T00:00:00Z	2023-06-13T00:00:00Z
ssa-789345	SSA-789345: Code Execution Vulnerabilities in Siveillance Video Event and Management Servers	2023-05-09T00:00:00Z	2023-05-09T00:00:00Z
ssa-632164	SSA-632164: External Entity Injection Vulnerability in Polarion ALM	2023-04-11T00:00:00Z	2023-05-09T00:00:00Z
ssa-592007	SSA-592007: Denial of Service Vulnerability in Industrial Products	2018-03-20T00:00:00Z	2023-05-09T00:00:00Z
ssa-555292	SSA-555292: Security Vulnerabilities Fixed in SIMATIC Cloud Connect 7 V2.1	2023-05-09T00:00:00Z	2023-05-09T00:00:00Z
ssa-480230	SSA-480230: Denial of Service Vulnerability in Webserver of Industrial Products	2019-04-09T00:00:00Z	2023-05-09T00:00:00Z
ssa-325383	SSA-325383: Multiple Vulnerabilities in SCALANCE LPE9403 before V2.1	2023-05-09T00:00:00Z	2023-05-09T00:00:00Z
ssa-113131	SSA-113131: Denial of Service Vulnerabilities in SIMATIC S7-400 CPUs	2018-11-13T00:00:00Z	2023-05-09T00:00:00Z
ssa-978220	SSA-978220: Denial of Service Vulnerability over SNMP in Multiple Industrial Products	2020-02-11T00:00:00Z	2023-04-11T00:00:00Z
ssa-840188	SSA-840188: Multiple Vulnerabilities in SIMATIC WinCC Affecting Other SIMATIC Software Products	2021-11-09T00:00:00Z	2023-04-11T00:00:00Z
ssa-838121	SSA-838121: Multiple Denial of Service Vulnerabilities in Industrial Products	2022-02-08T00:00:00Z	2023-04-11T00:00:00Z
ssa-792594	SSA-792594: Host Header Injection Vulnerability in Polarion ALM	2022-12-13T00:00:00Z	2023-04-11T00:00:00Z
ssa-700053	SSA-700053: Multiple File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go	2022-12-13T00:00:00Z	2023-04-11T00:00:00Z
ssa-699404	SSA-699404: Observable Response Discrepancy in Mendix Forgot Password Module	2023-04-11T00:00:00Z	2023-04-11T00:00:00Z
ssa-676336	SSA-676336: OpenSSH Vulnerabilities in SCALANCE X-200 and X-300/X408 Switches	2021-09-14T00:00:00Z	2023-04-11T00:00:00Z
ssa-320629	SSA-320629: Security Vulnerabilities Fixed in RUGGEDCOM CROSSBOW V5.3	2023-03-14T00:00:00Z	2023-03-14T00:00:00Z
ssa-260625	SSA-260625: Security Vulnerabilities Fixed in RUGGEDCOM CROSSBOW V5.2	2023-03-14T00:00:00Z	2023-03-14T00:00:00Z
ssa-997779	SSA-997779: File Parsing Vulnerability in Solid Edge before V2023 MP1	2023-01-10T00:00:00Z	2023-01-10T00:00:00Z
ssa-547714	SSA-547714: Argument Injection Vulnerability in SIMATIC WinCC OA Ultralight Client	2022-12-13T00:00:00Z	2023-01-10T00:00:00Z
ssa-431678	SSA-431678: Denial of Service Vulnerability in SIMATIC S7 CPU Families	2020-02-11T00:00:00Z	2023-01-10T00:00:00Z
ssa-678983	SSA-678983: Vulnerabilities in Industrial PCs and CNC devices using Intel CPUs (November 2020)	2021-05-11T00:00:00Z	2022-12-13T00:00:00Z
ssa-638652	SSA-638652: Authentication Bypass Vulnerability in Mendix SAML Module	2022-09-13T00:00:00Z	2022-12-13T00:00:00Z

ID	Description	Published	Updated
rhsa-2024:8318	Red Hat Security Advisory: Logging for Red Hat OpenShift - 5.6.25	2024-10-23T17:15:39+00:00	2025-11-28T12:47:24+00:00
rhsa-2024:8315	Red Hat Security Advisory: Logging for Red Hat OpenShift - 5.9.8	2024-10-23T16:52:10+00:00	2025-11-28T12:47:24+00:00
rhsa-2024:8317	Red Hat Security Advisory: Logging for Red Hat OpenShift - 5.8.14	2024-10-23T18:05:42+00:00	2025-11-28T12:47:23+00:00
rhsa-2024:8314	Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.0.1	2024-10-23T17:26:40+00:00	2025-11-28T12:47:22+00:00
rhsa-2024:8263	Red Hat Security Advisory: OpenShift Container Platform 4.16.18 packages and security update	2024-10-24T11:11:28+00:00	2025-11-28T12:47:20+00:00
rhsa-2024:8260	Red Hat Security Advisory: OpenShift Container Platform 4.16.18 bug fix and security update	2024-10-24T10:44:45+00:00	2025-11-28T12:47:20+00:00
rhsa-2024:8232	Red Hat Security Advisory: OpenShift Container Platform 4.17.2 packages and security update	2024-10-23T05:52:08+00:00	2025-11-28T12:47:20+00:00
rhsa-2024:8229	Red Hat Security Advisory: OpenShift Container Platform 4.17.2 bug fix and security update	2024-10-23T05:29:09+00:00	2025-11-28T12:47:19+00:00
rhsa-2024:8219	Red Hat Security Advisory: Secondary Scheduler Operator for Red Hat OpenShift 1.2.2 for RHEL 9	2024-11-18T00:47:08+00:00	2025-11-28T12:47:17+00:00
rhsa-2024:8112	Red Hat Security Advisory: buildah security update	2024-10-15T15:46:46+00:00	2025-11-28T12:47:17+00:00
rhsa-2024:8039	Red Hat Security Advisory: podman security update	2024-10-14T02:05:16+00:00	2025-11-28T12:47:17+00:00
rhsa-2024:8038	Red Hat Security Advisory: container-tools:rhel8 security update	2024-10-14T02:22:32+00:00	2025-11-28T12:47:16+00:00
rhsa-2024:8014	Red Hat Security Advisory: Network Observability 1.7.0 for OpenShift	2024-10-22T01:05:39+00:00	2025-11-28T12:47:15+00:00
rhsa-2024:6913	Red Hat Security Advisory: golang security update	2024-09-23T01:53:11+00:00	2025-11-28T12:47:15+00:00
rhsa-2024:6908	Red Hat Security Advisory: go-toolset:rhel8 security update	2024-09-23T01:53:18+00:00	2025-11-28T12:47:15+00:00
rhsa-2024:10906	Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.5 security and bug fix update	2024-12-10T01:37:19+00:00	2025-11-28T12:47:13+00:00
rhsa-2024:10895	Red Hat Security Advisory: Cost Management Metrics Operator Update	2024-12-09T19:09:42+00:00	2025-11-28T12:47:12+00:00
rhsa-2024:10883	Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 (osp-director-operator) security update	2024-12-09T12:11:16+00:00	2025-11-28T12:47:12+00:00
rhsa-2024:10236	Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.17.0 release	2024-11-25T19:44:38+00:00	2025-11-28T12:47:12+00:00
rhsa-2025:21916	Red Hat Security Advisory: valkey security update	2025-11-24T02:05:30+00:00	2025-11-28T11:33:07+00:00
rhsa-2025:20955	Red Hat Security Advisory: redis:7 security update	2025-11-11T15:07:28+00:00	2025-11-28T11:33:05+00:00
rhsa-2025:19345	Red Hat Security Advisory: redis:7 security update	2025-10-30T14:18:20+00:00	2025-11-28T11:33:05+00:00
rhsa-2025:19399	Red Hat Security Advisory: redis:6 security update	2025-11-03T01:42:07+00:00	2025-11-28T11:33:03+00:00
rhsa-2025:19238	Red Hat Security Advisory: redis:6 security update	2025-10-29T09:38:04+00:00	2025-11-28T11:33:03+00:00
rhsa-2025:19318	Red Hat Security Advisory: redis:6 security update	2025-10-30T10:22:17+00:00	2025-11-28T11:33:01+00:00
rhsa-2025:19239	Red Hat Security Advisory: redis:6 security update	2025-10-29T09:46:44+00:00	2025-11-28T11:33:01+00:00
rhsa-2025:21936	Red Hat Security Advisory: valkey security update	2025-11-24T09:46:26+00:00	2025-11-28T11:32:59+00:00
rhsa-2025:19237	Red Hat Security Advisory: redis security update	2025-10-29T09:45:44+00:00	2025-11-28T11:32:59+00:00
rhsa-2025:18997	Red Hat Security Advisory: redis security update	2025-10-23T08:32:16+00:00	2025-11-28T11:32:57+00:00
rhsa-2025:19675	Red Hat Security Advisory: valkey security update	2025-11-04T14:45:57+00:00	2025-11-28T11:32:56+00:00

ID	Description	Published	Updated
msrc_cve-2025-22125	md/raid1,raid10: don't ignore IO flags	2025-04-02T00:00:00.000Z	2025-12-07T01:45:58.000Z
msrc_cve-2025-40247	drm/msm: Fix pgtable prealloc error path	2025-12-02T00:00:00.000Z	2025-12-07T01:45:55.000Z
msrc_cve-2025-37861	scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue	2025-05-02T00:00:00.000Z	2025-12-07T01:45:47.000Z
msrc_cve-2025-22124	md/md-bitmap: fix wrong bitmap_limit for clustermd when write sb	2025-04-02T00:00:00.000Z	2025-12-07T01:45:45.000Z
msrc_cve-2025-21907	mm: memory-failure: update ttu flag inside unmap_poisoned_folio	2025-04-02T00:00:00.000Z	2025-12-07T01:45:35.000Z
msrc_cve-2025-38311	iavf: get rid of the crit lock	2025-07-02T00:00:00.000Z	2025-12-07T01:45:31.000Z
msrc_cve-2024-38595	net/mlx5: Fix peer devlink set for SF representor devlink port	2024-06-02T07:00:00.000Z	2025-12-07T01:45:25.000Z
msrc_cve-2025-38272	net: dsa: b53: do not enable EEE on bcm63xx	2025-07-02T00:00:00.000Z	2025-12-07T01:45:20.000Z
msrc_cve-2025-40264	be2net: pass wrb_params in case of OS2BMC	2025-12-02T00:00:00.000Z	2025-12-07T01:45:19.000Z
msrc_cve-2025-22070	fs/9p: fix NULL pointer dereference on mkdir	2025-04-02T00:00:00.000Z	2025-12-07T01:45:17.000Z
msrc_cve-2025-40099	cifs: parse_dfs_referrals: prevent oob on malformed input	2025-10-02T00:00:00.000Z	2025-12-07T01:45:14.000Z
msrc_cve-2025-46327	Go Snowflake Driver has race condition when checking access to Easy Logging configuration file	2025-04-02T00:00:00.000Z	2025-12-07T01:45:07.000Z
msrc_cve-2025-38269	btrfs: exit after state insertion failure at btrfs_convert_extent_bit()	2025-07-02T00:00:00.000Z	2025-12-07T01:45:06.000Z
msrc_cve-2025-40105	vfs: Don't leak disconnected dentries on umount	2025-10-02T00:00:00.000Z	2025-12-07T01:45:03.000Z
msrc_cve-2025-37860	sfc: fix NULL dereferences in ef100_process_design_param()	2025-04-02T00:00:00.000Z	2025-12-07T01:44:56.000Z
msrc_cve-2024-49920	drm/amd/display: Check null pointers before multiple uses	2024-10-01T07:00:00.000Z	2025-12-07T01:44:52.000Z
msrc_cve-2025-40100	btrfs: do not assert we found block group item when creating free space tree	2025-10-02T00:00:00.000Z	2025-12-07T01:44:51.000Z
msrc_cve-2025-38279	bpf: Do not include stack ptr register in precision backtracking bookkeeping	2025-07-02T00:00:00.000Z	2025-12-07T01:44:51.000Z
msrc_cve-2025-46394	In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences.	2025-04-02T00:00:00.000Z	2025-12-07T01:44:46.000Z
msrc_cve-2024-49893	drm/amd/display: Check stream_status before it is used	2024-10-01T07:00:00.000Z	2025-12-07T01:44:42.000Z
msrc_cve-2025-40248	vsock: Ignore signal/timeout on connect() if already established	2025-12-02T00:00:00.000Z	2025-12-07T01:44:41.000Z
msrc_cve-2025-38303	Bluetooth: eir: Fix possible crashes on eir_create_adv_data	2025-07-02T00:00:00.000Z	2025-12-07T01:44:41.000Z
msrc_cve-2025-40102	KVM: arm64: Prevent access to vCPU events before init	2025-10-02T00:00:00.000Z	2025-12-07T01:44:40.000Z
msrc_cve-2024-58251	In netstat in BusyBox through 1.37.0, local users can launch of network application with an argv[0] containing an ANSI terminal escape sequence, leading to a denial of service (terminal locked up) when netstat is used by a victim.	2025-04-02T00:00:00.000Z	2025-12-07T01:44:36.000Z
msrc_cve-2025-40252	net: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end()	2025-12-02T00:00:00.000Z	2025-12-07T01:44:31.000Z
msrc_cve-2025-40096	drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies	2025-10-02T00:00:00.000Z	2025-12-07T01:44:30.000Z
msrc_cve-2023-26819	cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as {"a": true, "b": [ null,9999999999999999999999999999999999999999999999912345678901234567]}.	2025-04-02T00:00:00.000Z	2025-12-07T01:44:25.000Z
msrc_cve-2025-38333	f2fs: fix to bail out in get_new_segment()	2025-07-02T00:00:00.000Z	2025-12-07T01:44:24.000Z
msrc_cve-2024-49922	drm/amd/display: Check null pointers before using them	2024-10-01T07:00:00.000Z	2025-12-07T01:44:21.000Z
msrc_cve-2025-40087	NFSD: Define a proc_layoutcommit for the FlexFiles layout type	2025-10-02T00:00:00.000Z	2025-12-07T01:44:18.000Z

ID	Description	Published	Updated
icsa-14-269-02	Fox DataDiode Proxy Server CSRF Vulnerability	2014-06-29T06:00:00.000000Z	2025-06-06T22:49:50.228012Z
icsa-14-261-01	Advantech WebAccess Vulnerabilities	2014-06-21T06:00:00.000000Z	2025-06-06T22:48:58.295004Z
icsa-14-260-01a	Yokogawa CENTUM and Exaopc Vulnerability (Update A)	2014-06-20T06:00:00.000000Z	2025-06-06T22:48:51.805857Z
icsa-14-259-01a	Schneider Electric SCADA Expert ClearSCADA Vulnerabilities (Update A)	2014-06-19T06:00:00.000000Z	2025-06-06T22:48:32.407633Z
icsa-14-254-02	Rockwell Micrologix 1400 DNP3 DOS Vulnerability	2014-06-14T06:00:00.000000Z	2025-06-06T22:48:25.978305Z
icsa-14-254-01	Schneider Electric VAMPSET Buffer Overflow	2014-06-14T06:00:00.000000Z	2025-06-06T22:48:19.541393Z
icsa-14-247-01a	Sensys Networks Traffic Sensor Vulnerabilities (Update A)	2014-06-07T06:00:00.000000Z	2025-06-06T22:48:06.463498Z
icsa-14-238-01	CG Automation Improper Input Validation	2014-05-29T06:00:00.000000Z	2025-06-06T22:47:53.555337Z
icsa-14-226-01	Siemens SIMATIC S7-1500 CPU Denial of Service	2014-05-17T06:00:00.000000Z	2025-06-06T22:47:47.106108Z
icsa-14-224-01	Ecava Integraxor SCADA Server Vulnerabilities	2014-05-15T06:00:00.000000Z	2025-06-06T22:47:21.277370Z
icsa-14-203-01	Omron NS Series HMI Vulnerabilities	2014-04-24T06:00:00.000000Z	2025-06-06T22:46:35.467432Z
icsa-14-198-02	Advantech WebAccess Vulnerabilities	2014-04-19T06:00:00.000000Z	2025-06-06T22:46:03.132898Z
icsa-14-198-01	Cogent DataHub Code Injection Vulnerability	2014-04-19T06:00:00.000000Z	2025-06-06T22:45:56.681631Z
icsa-14-196-01	SubSTATION Server Telegyr 8979 Master Vulnerabilities	2014-04-17T06:00:00.000000Z	2025-06-06T22:45:50.215260Z
icsa-14-189-02	Innominate mGuard Unauthorized Leakage of System Data	2014-04-10T06:00:00.000000Z	2025-06-06T22:45:43.410774Z
icsa-13-077-01b	Schneider Electric PLCs Vulnerabilities	2013-12-20T07:00:00.000000Z	2025-06-06T22:40:07.027146Z
icsa-13-016-01	Schneider Electric Authenticated Communication Risk Vulnerability	2013-10-20T06:00:00.000000Z	2025-06-06T22:39:47.591594Z
icsa-13-014-01	Siemens SIMATIC RF Manager ActiveX Buffer Overflow	2013-10-18T06:00:00.000000Z	2025-06-06T22:39:41.115500Z
icsa-13-011-03	Rockwell Automation ControlLogix PLC Vulnerabilities	2013-10-15T06:00:00.000000Z	2025-06-06T22:38:48.956870Z
icsa-12-349-01	Siemens Automation License Manager Uncontrolled Resource Consumption	2012-09-17T06:00:00.000000Z	2025-06-06T22:38:35.719268Z
icsa-12-205-02	Siemens SIMATIC STEP 7 DLL Vulnerability	2012-04-26T06:00:00.000000Z	2025-06-06T22:38:22.736168Z
icsa-12-185-01	WellinTech KingView Multiple Vulnerabilities	2012-04-06T06:00:00.000000Z	2025-06-06T22:37:50.390140Z
icsa-12-177-02	Invensys Wonderware InTouch 10 DLL Hijack	2012-03-29T06:00:00.000000Z	2025-06-06T22:37:43.923140Z
icsa-12-167-01	Innominate MGuard Weak HTTPS and SSH Keys	2012-03-19T06:00:00.000000Z	2025-06-06T22:37:37.465622Z
icsa-12-137-02	Advantech Studio ISSymbol ActiveX Buffer Overflow	2012-02-17T07:00:00.000000Z	2025-06-06T22:37:31.006003Z
icsa-12-131-01	Progea Movicon Memory Corruption Vulnerability	2012-02-11T07:00:00.000000Z	2025-06-06T22:37:24.554697Z
icsa-15-069-04a	Elipse E3 Process Control Vulnerability (Update A)	2015-12-11T07:00:00.000000Z	2025-06-06T22:37:18.082701Z
icsa-15-069-04	Elipse E3 Process Control Vulnerability	2015-12-11T07:00:00.000000Z	2025-06-06T22:37:11.175255Z
icsa-15-069-03	SCADA Engine BACnet OPC Server Vulnerabilities	2015-12-11T07:00:00.000000Z	2025-06-06T22:36:51.449296Z
icsa-15-069-02	ABB HART Device DTM Vulnerability	2015-12-11T07:00:00.000000Z	2025-06-06T22:36:45.007018Z

ID	Description	Published	Updated
cisco-sa-pi-epnm-wkzjeyeq	Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Vulnerabilities	2024-01-10T16:00:00+00:00	2024-01-10T16:00:00+00:00
cisco-sa-pi-epnm-wkZJeyeq	Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Vulnerabilities	2024-01-10T16:00:00+00:00	2024-01-10T16:00:00+00:00
cisco-sa-ise-xss-bl4vtml	Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability	2024-01-10T16:00:00+00:00	2024-01-10T16:00:00+00:00
cisco-sa-ISE-XSS-bL4VTML	Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability	2024-01-10T16:00:00+00:00	2024-01-10T16:00:00+00:00
cisco-sa-ise-priv-esc-kjlp2aw	Cisco Identity Services Engine Privilege Escalation Vulnerabilities	2023-09-06T16:00:00+00:00	2024-01-08T19:01:50+00:00
cisco-sa-ise-priv-esc-KJLp2Aw	Cisco Identity Services Engine Privilege Escalation Vulnerabilities	2023-09-06T16:00:00+00:00	2024-01-08T19:01:50+00:00
cisco-sa-struts-c2kcmkmt	Apache Struts Vulnerability Affecting Cisco Products: December 2023	2023-12-12T16:00:00+00:00	2023-12-21T22:23:04+00:00
cisco-sa-struts-C2kCMkmT	Apache Struts Vulnerability Affecting Cisco Products: December 2023	2023-12-12T16:00:00+00:00	2023-12-21T22:23:04+00:00
cisco-sa-http2-reset-d8kf32vz	HTTP/2 Rapid Reset Attack Affecting Cisco Products: October 2023	2023-10-16T16:00:00+00:00	2023-12-21T17:09:38+00:00
cisco-sa-http2-reset-d8Kf32vZ	HTTP/2 Rapid Reset Attack Affecting Cisco Products: October 2023	2023-10-16T16:00:00+00:00	2023-12-21T17:09:38+00:00
cisco-sa-asa-ssl-vpn-y88qom77	Cisco Adaptive Security Appliance and Firepower Threat Defense Software VPN Packet Validation Vulnerability	2023-12-05T16:00:00+00:00	2023-12-05T16:00:00+00:00
cisco-sa-asa-ssl-vpn-Y88QOm77	Cisco Adaptive Security Appliance and Firepower Threat Defense Software VPN Packet Validation Vulnerability	2023-12-05T16:00:00+00:00	2023-12-05T16:00:00+00:00
cisco-sa-ftd-icmpv6-dos-4emklun	Cisco Firepower Threat Defense Software and Cisco FirePOWER Services ICMPv6 with Snort 2 Denial of Service Vulnerability	2023-11-01T16:00:00+00:00	2023-11-16T21:10:27+00:00
cisco-sa-ftd-icmpv6-dos-4eMkLuN	Cisco Firepower Threat Defense Software and Cisco FirePOWER Services ICMPv6 with Snort 2 Denial of Service Vulnerability	2023-11-01T16:00:00+00:00	2023-11-16T21:10:27+00:00
cisco-sa-uipphone-xss-ncmuykqa	Cisco IP Phone Stored Cross-Site Scripting Vulnerability	2023-11-15T16:00:00+00:00	2023-11-15T16:00:00+00:00
cisco-sa-uipphone-xss-NcmUykqA	Cisco IP Phone Stored Cross-Site Scripting Vulnerability	2023-11-15T16:00:00+00:00	2023-11-15T16:00:00+00:00
cisco-sa-secure-endpoint-dos-rzogfknd	Cisco Secure Endpoint for Windows Scanning Evasion Vulnerability	2023-11-15T16:00:00+00:00	2023-11-15T16:00:00+00:00
cisco-sa-secure-endpoint-dos-RzOgFKnd	Cisco Secure Endpoint for Windows Scanning Evasion Vulnerability	2023-11-15T16:00:00+00:00	2023-11-15T16:00:00+00:00
cisco-sa-ise-mult-j-kxpnynr	Cisco Identity Services Engine Vulnerabilities	2023-11-15T16:00:00+00:00	2023-11-15T16:00:00+00:00
cisco-sa-ise-mult-j-KxpNynR	Cisco Identity Services Engine Vulnerabilities	2023-11-15T16:00:00+00:00	2023-11-15T16:00:00+00:00
cisco-sa-appd-php-authpriv-gebwtvu5	Cisco AppDynamics PHP Agent Privilege Escalation Vulnerability	2023-11-15T16:00:00+00:00	2023-11-15T16:00:00+00:00
cisco-sa-appd-php-authpriv-gEBwTvu5	Cisco AppDynamics PHP Agent Privilege Escalation Vulnerability	2023-11-15T16:00:00+00:00	2023-11-15T16:00:00+00:00
cisco-sa-accsc-dos-9slzkz8	Cisco Secure Client Software Denial of Service Vulnerabilities	2023-11-15T16:00:00+00:00	2023-11-15T16:00:00+00:00
cisco-sa-accsc-dos-9SLzkZ8	Cisco Secure Client Software Denial of Service Vulnerabilities	2023-11-15T16:00:00+00:00	2023-11-15T16:00:00+00:00
cisco-sa-asa-icmpv6-t5tzqwnd	Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software ICMPv6 Message Processing Denial of Service Vulnerability	2023-11-01T16:00:00+00:00	2023-11-02T13:50:35+00:00
cisco-sa-asa-icmpv6-t5TzqwNd	Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software ICMPv6 Message Processing Denial of Service Vulnerability	2023-11-01T16:00:00+00:00	2023-11-02T13:50:35+00:00
cisco-sa-asa-webvpn-dos-3ghzqbas	Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Remote Access VPN Denial of Service Vulnerability	2023-11-01T16:00:00+00:00	2023-11-02T13:47:35+00:00
cisco-sa-asa-webvpn-dos-3GhZQBAS	Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Remote Access VPN Denial of Service Vulnerability	2023-11-01T16:00:00+00:00	2023-11-02T13:47:35+00:00
cisco-sa-asa-webvpn-loeksnmo	Cisco Adaptive Security Appliance and Firepower Threat Defense Software VPN Web Client Services Client-Side Request Smuggling Vulnerability	2022-08-10T16:00:00+00:00	2023-11-01T16:00:01+00:00
cisco-sa-asa-webvpn-LOeKsNmO	Cisco Adaptive Security Appliance and Firepower Threat Defense Software VPN Web Client Services Client-Side Request Smuggling Vulnerability	2022-08-10T16:00:00+00:00	2023-11-01T16:00:01+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Updated
var-201109-0211	Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers…	2024-11-29T21:27:44.798000Z
var-201410-1217	Use-after-free vulnerability in the ProcessingInstruction::setXSLStyleSheet function in c…	2024-11-29T21:27:44.466000Z
var-201710-1400	An issue was discovered in certain Apple products. iOS before 11 is affected. Safari befo…	2024-11-29T21:27:44.178000Z
var-201904-1444	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-11-29T21:27:41.719000Z
var-201205-0311	php-wrapper.fcgi does not properly handle command-line arguments, which allows remote att…	2024-11-29T21:27:26.106000Z
var-202205-0881	Buffer Over-read in function find_next_quote in GitHub repository vim/vim prior to 8.2.49…	2024-11-29T21:27:25.754000Z
var-201205-0246	sapi/cgi/cgi_main.c in PHP before 5.3.13 and 5.4.x before 5.4.3, when configured as a CGI…	2024-11-29T21:27:25.479000Z
var-201605-0076	Integer overflow in the EVP_EncryptUpdate function in crypto/evp/evp_enc.c in OpenSSL bef…	2024-11-29T21:27:24.983000Z
var-200608-0028	AFP Server in Apple Mac OS X 10.3.9 and 10.4.7 stores reconnect keys in a world-readable …	2024-11-29T21:27:24.869000Z
var-201203-0195	Use-after-free vulnerability in Google Chrome before 17.0.963.65 allows remote attackers …	2024-11-29T21:27:24.435000Z
var-201912-0597	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-11-29T21:27:23.737000Z
var-201702-0868	An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari …	2024-11-29T21:27:23.270000Z
var-202103-0920	An issue was discovered in the Linux kernel through 5.11.3. A kernel pointer leak can be …	2024-11-29T21:27:19.481000Z
var-201912-1864	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-11-29T21:27:13.504000Z
var-200102-0075	IPSwitch IMail 6.0.5 allows remote attackers to cause a denial of service using the SMTP …	2024-11-29T21:27:13.092000Z
var-202004-0983	Apache CXF has the ability to integrate with JMX by registering an InstrumentationManager…	2024-11-29T21:27:12.507000Z
var-200608-0041	Buffer overflow in Apple Mac OS X 10.4.7 allows user-assisted attackers to cause a denial…	2024-11-29T21:27:11.251000Z
var-200703-0026	The SSH key generation process in OpenSSH in Apple Mac OS X 10.3.9 and 10.4 through 10.4.…	2024-11-29T21:27:11.102000Z
var-200102-0005	HTTP server on the WatchGuard SOHO firewall does not properly restrict access to administ…	2024-11-29T21:27:09.681000Z
var-200705-0681	Apache httpd 1.3.37, 2.0.59, and 2.2.4 with the Prefork MPM module, allows local users to…	2024-11-29T21:27:08.901000Z
var-201908-0261	Some HTTP/2 implementations are vulnerable to a flood of empty frames, potentially leadin…	2024-11-29T21:27:08.371000Z
var-202108-2039	A logic issue was addressed with improved state management. This issue is fixed in macOS …	2024-11-29T21:26:25.199000Z
var-200512-0634	passwd in Directory Services in Mac OS X 10.3.x before 10.3.9 and 10.4.x before 10.4.5 al…	2024-11-29T21:26:21.606000Z
var-201504-0166	Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier, and 5.6.23 and earli…	2024-11-29T21:26:21.341000Z
var-201806-1468	An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS bef…	2024-11-29T21:26:20.304000Z
var-200810-0137	Integer overflow in the WriteProlog function in texttops in CUPS before 1.3.9 allows remo…	2024-11-29T21:26:18.667000Z
var-202212-2277	An integer underflow in Organization Specific TLV was found in various versions of OpenvS…	2024-11-29T21:26:18.271000Z
var-201404-0288	Apache Commons BeanUtils, as distributed in lib/commons-beanutils-1.8.0.jar in Apache Str…	2024-11-29T21:26:04.405000Z
var-201007-0318	WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before…	2024-11-29T21:26:03.210000Z
var-200707-0577	Integer overflow in the StreamPredictor::StreamPredictor function in xpdf 3.02, as used i…	2024-11-29T21:26:02.978000Z

ID	Description	Published	Updated
jvndb-2024-000009	Improper restriction of XML external entity references (XXE) in Electronic Deliverables Creation Support Tool provided by Ministry of Defense	2024-01-23T15:13+09:00	2024-03-13T17:46+09:00
jvndb-2024-000008	Improper restriction of XML external entity references (XXE) in MLIT "Electronic Delivery Check System" and "Electronic delivery item Inspection Support System"	2024-01-23T16:57+09:00	2024-03-13T17:40+09:00
jvndb-2024-000012	Access analysis CGI An-Analyzer vulnerable to open redirect	2024-01-22T15:57+09:00	2024-03-13T17:34+09:00
jvndb-2023-006199	Multiple security updates for Trend Micro Apex One and Apex One as a Service (November 2023)	2023-11-13T17:28+09:00	2024-03-13T17:28+09:00
jvndb-2024-001062	Yamaha wireless LAN access point devices vulnerable to active debug code	2024-01-24T17:16+09:00	2024-03-13T17:24+09:00
jvndb-2024-002961	Information Exposure Vulnerability in Cosminexus Component Container	2024-03-13T12:10+09:00	2024-03-13T12:10+09:00
jvndb-2024-000004	Drupal vulnerable to improper handling of structural elements	2024-01-16T13:41+09:00	2024-03-12T17:33+09:00
jvndb-2024-000006	FusionPBX vulnerable to cross-site scripting	2024-01-19T12:30+09:00	2024-03-12T17:31+09:00
jvndb-2024-000002	Thermal camera TMC series vulnerable to insufficient technical documentation	2024-01-15T15:19+09:00	2024-03-11T18:17+09:00
jvndb-2024-000016	Group Office vulnerable to cross-site scripting	2024-02-01T13:48+09:00	2024-03-11T18:04+09:00
jvndb-2024-001785	Incorrect permission assignment vulnerability in Trend Micro uiAirSupport	2024-02-06T14:46+09:00	2024-03-11T17:42+09:00
jvndb-2024-000015	Payment EX vulnerable to information disclosure	2024-02-01T13:41+09:00	2024-03-11T17:42+09:00
jvndb-2024-001160	File and Directory Permissions Vulnerability in Hitachi Storage Plug-in for VMware vCenter	2024-01-31T15:25+09:00	2024-03-11T17:41+09:00
jvndb-2024-001804	Multiple buffer overflow vulnerabilities in HOME SPOT CUBE2	2024-02-06T15:02+09:00	2024-03-11T17:32+09:00
jvndb-2024-002050	Multiple out-of-bounds write vulnerabilities in Canon Office/Small Office Multifunction Printers and Laser Printers	2024-02-07T15:39+09:00	2024-03-08T18:05+09:00
jvndb-2024-000030	a-blog cms vulnerable to directory traversal	2024-03-08T15:27+09:00	2024-03-08T15:27+09:00
jvndb-2024-002942	OMRON NJ/NX series vulnerable to path traversal	2024-03-08T14:16+09:00	2024-03-08T14:16+09:00
jvndb-2024-000027	FUJIFILM Business Innovation Corp. printers vulnerable to cross-site request forgery	2024-03-06T18:24+09:00	2024-03-06T18:24+09:00
jvndb-2024-000026	Multiple vulnerabilities in printers and scanners which implement BROTHER Web Based Management	2024-03-06T18:12+09:00	2024-03-06T18:12+09:00
jvndb-2024-000029	Toyoko Inn official App vulnerable to improper server certificate verification	2024-03-06T13:53+09:00	2024-03-06T13:53+09:00
jvndb-2024-000005	"Mercari" App for Android fails to restrict custom URL schemes properly	2024-01-24T13:46+09:00	2024-03-04T18:01+09:00
jvndb-2024-000025	Protection mechanism failure in RevoWorks	2024-02-29T15:40+09:00	2024-02-29T15:40+09:00
jvndb-2024-000024	OET-213H-BTS1 missing authorization check in the initial configuration	2024-02-29T14:59+09:00	2024-02-29T14:59+09:00
jvndb-2024-000023	OpenPNE plugin "opTimelinePlugin" vulnerable to cross-site scripting	2024-02-29T13:12+09:00	2024-02-29T13:12+09:00
jvndb-2024-000022	Multiple vulnerabilities in baserCMS	2024-02-27T14:25+09:00	2024-02-27T14:25+09:00
jvndb-2024-002832	EL Injection Vulnerability in Hitachi Global Link Manager	2024-02-21T15:53+09:00	2024-02-21T15:53+09:00
jvndb-2024-002560	Android App "Mopria Print Service" vulnerable to improper intent handling	2024-02-15T15:26+09:00	2024-02-15T15:26+09:00
jvndb-2024-000019	a-blog cms vulnerable to URL spoofing	2024-02-15T14:12+09:00	2024-02-15T14:12+09:00
jvndb-2022-002775	Multiple vulnerabilities in Buffalo network devices	2022-12-12T15:28+09:00	2024-02-14T15:45+09:00
jvndb-2020-013805	Zeroshell vulnerable to OS command injection	2024-02-07T13:38+09:00	2024-02-07T13:38+09:00

ID	Description	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated