Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-3hff-6c4j-j2w5 | Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows … | 2022-05-14T02:30:49Z | 2025-10-22T03:30:41Z |
| ghsa-5rf9-j2cv-922c | Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7… | 2022-05-14T02:30:58Z | 2025-10-22T03:30:41Z |
| ghsa-2m74-3m4w-28q3 | Microsoft Internet Explorer 6 through 11 allows remote attackers to gain privileges via a crafted w… | 2022-05-14T02:31:31Z | 2025-10-22T03:30:37Z |
| ghsa-44fv-7jv8-5cpp | Use-after-free vulnerability in Microsoft Internet Explorer 6 through 11 allows remote attackers to… | 2022-05-14T02:32:18Z | 2025-10-22T03:30:37Z |
| ghsa-fc9q-h2h8-qq52 | Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to exe… | 2022-05-14T02:32:28Z | 2025-10-22T03:30:35Z |
| ghsa-gmpw-376j-24w5 | NDProxy.sys in the kernel in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows local user… | 2022-05-14T02:33:18Z | 2025-10-22T03:30:35Z |
| ghsa-5cv5-x27q-h8hq | Use-after-free vulnerability in the CDisplayPointer class in mshtml.dll in Microsoft Internet Explo… | 2022-05-14T02:33:20Z | 2025-10-22T03:30:35Z |
| ghsa-7mhx-7529-p5jc | GDI+ in Microsoft Windows Vista SP2 and Server 2008 SP2; Office 2003 SP3, 2007 SP3, and 2010 SP1 an… | 2022-05-14T02:33:20Z | 2025-10-22T03:30:35Z |
| ghsa-8wm7-83p7-m6fh | Microsoft Silverlight 5 before 5.1.20913.0 does not properly validate pointers during access to Sil… | 2022-05-14T02:33:20Z | 2025-10-22T03:30:34Z |
| ghsa-9pqv-9r37-hxh7 | Microsoft Internet Explorer 8 through 10 allows remote attackers to execute arbitrary code or cause… | 2022-05-14T02:33:57Z | 2025-10-22T03:30:34Z |
| ghsa-m5j6-8c2h-w4h7 | Use-after-free vulnerability in Microsoft Internet Explorer 6 through 10 allows remote attackers to… | 2022-05-14T02:34:33Z | 2025-10-22T03:30:33Z |
| ghsa-h8gm-f3pp-ppg9 | Buffer overflow in Microsoft Office 2003 SP3 and Office 2011 for Mac allows remote attackers to exe… | 2022-05-14T02:34:41Z | 2025-10-22T03:30:34Z |
| ghsa-x5wq-5f2r-gxw5 | Microsoft Word 2003 SP3, 2007 SP2 and SP3, and 2010 SP1; Word Viewer; Office Compatibility Pack SP2… | 2022-05-14T02:35:09Z | 2025-10-22T03:30:32Z |
| ghsa-v7xg-xv38-f34w | The NSPLookupServiceNext function in the client in Microsoft Forefront Threat Management Gateway (T… | 2022-05-14T02:35:50Z | 2025-10-22T03:30:29Z |
| ghsa-v6fx-3qcr-2mfg | Stack-based buffer overflow in the RtlQueryRegistryValues function in win32k.sys in Microsoft Windo… | 2022-05-14T02:36:07Z | 2025-10-22T03:30:29Z |
| ghsa-r838-75c6-gjj4 | Stack-based buffer overflow in Microsoft Office XP SP3, Office 2003 SP3, Office 2007 SP2, Office 20… | 2022-05-14T02:36:18Z | 2025-10-22T03:30:28Z |
| ghsa-qrqx-wqch-hjh4 | Buffer overflow in Microsoft PowerPoint 2002 SP3 and 2003 SP3 allows remote attackers to execute ar… | 2022-05-14T02:36:43Z | 2025-10-22T03:30:28Z |
| ghsa-xg99-mpwj-gf2c | A remote code execution vulnerability exists when the Windows Shell does not properly validate file… | 2022-05-14T02:36:53Z | 2025-10-22T00:31:36Z |
| ghsa-w7cc-jv4p-qccr | The snmp_pdu_parse function in snmp_api.c in net-snmp 5.7.2 and earlier does not remove the varBind… | 2022-05-14T02:45:32Z | 2025-12-04T18:30:27Z |
| ghsa-p836-389h-j692 | Improper Access Control in Apache Shiro | 2022-05-14T02:46:17Z | 2025-10-22T17:34:26Z |
| ghsa-q994-gg9f-3g56 | The (1) HTTP and (2) FTP coders in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allow remote … | 2022-05-14T02:46:19Z | 2025-10-22T00:31:14Z |
| ghsa-vmpp-w9w7-m326 | The EPHEMERAL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers t… | 2022-05-14T02:46:24Z | 2025-10-22T00:31:14Z |
| ghsa-4qv6-46qm-w9fg | Directory traversal vulnerability in TP-LINK Archer C5 (1.2) with firmware before 150317, C7 (2.0) … | 2022-05-14T02:48:54Z | 2025-10-22T00:31:09Z |
| ghsa-mxw3-h8f2-qrw5 | The libtremor library has the same flaw as CVE-2018-5146. This library is used by Firefox in place … | 2022-05-14T03:07:10Z | 2025-11-25T18:32:12Z |
| ghsa-2m94-7q7f-58gc | Default fonts on OS X display some Tibetan characters as whitespace. When used in the addressbar as… | 2022-05-14T03:07:23Z | 2025-11-25T18:32:08Z |
| ghsa-v3f8-p9hj-32cj | The Mozilla Windows updater modifies some files to be updated by reading the original file and appl… | 2022-05-14T03:07:23Z | 2025-11-25T18:32:08Z |
| ghsa-mc3w-fw7x-qrw7 | Characters from the "Canadian Syllabics" unicode block can be mixed with characters from other unic… | 2022-05-14T03:08:12Z | 2025-11-25T18:32:09Z |
| ghsa-mxf2-hfjf-3p4q | The Mozilla Maintenance Service can be invoked by an unprivileged user to read 32 bytes of any arbi… | 2022-05-14T03:08:12Z | 2025-11-25T18:32:09Z |
| ghsa-w4p4-6xh7-fhf6 | A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffe… | 2022-05-14T03:08:12Z | 2025-11-25T18:32:09Z |
| ghsa-hhcx-w758-8p3p | The content security policy (CSP) "sandbox" directive did not create a unique origin for the docume… | 2022-05-14T03:08:37Z | 2025-11-25T18:32:10Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2018-16300 | N/A | The BGP parser in tcpdump before 4.9.3 allows sta… |
n/a |
n/a |
2019-10-03T15:52:39.000Z | 2025-12-03T19:45:17.934Z |
| cve-2018-16451 | N/A | The SMB parser in tcpdump before 4.9.3 has buffer… |
n/a |
n/a |
2019-10-03T15:57:34.000Z | 2025-12-03T19:29:33.198Z |
| cve-2018-16452 | N/A | The SMB parser in tcpdump before 4.9.3 has stack … |
n/a |
n/a |
2019-10-03T15:58:44.000Z | 2025-12-03T19:15:43.318Z |
| cve-2019-15166 | lmp_print in tcpdump lacks certain boundary checks |
n/a |
n/a |
2019-10-03T16:01:34.000Z | 2025-12-03T18:47:27.498Z | |
| cve-2019-15165 | N/A | sf-pcapng.c in libpcap before 1.9.1 does not prop… |
n/a |
n/a |
2019-10-03T18:38:07.000Z | 2025-12-03T19:06:21.272Z |
| cve-2019-1315 | N/A | An elevation of privilege vulnerability exists wh… |
Microsoft |
Windows |
2019-10-10T13:28:40.000Z | 2025-10-21T23:45:29.583Z |
| cve-2019-1322 | N/A | An elevation of privilege vulnerability exists wh… |
Microsoft |
Windows |
2019-10-10T13:28:41.000Z | 2025-10-21T23:45:29.390Z |
| cve-2019-2215 | N/A | A use-after-free in binder.c allows an elevation … |
n/a |
Android |
2019-10-11T18:16:48.000Z | 2025-10-21T23:45:29.242Z |
| cve-2019-16278 | N/A | Directory Traversal in the function http_verify i… |
n/a |
n/a |
2019-10-14T16:06:03.000Z | 2025-10-21T23:45:29.067Z |
| cve-2019-3010 | N/A | Vulnerability in the Oracle Solaris product of Or… |
Oracle Corporation |
Solaris Operating System |
2019-10-16T17:40:59.000Z | 2025-10-21T23:45:28.835Z |
| cve-2019-11043 | Underflow in PHP-FPM can lead to RCE |
PHP |
PHP |
2019-10-28T14:19:04.252Z | 2025-10-21T23:45:28.408Z | |
| cve-2019-18187 | N/A | Trend Micro OfficeScan versions 11.0 and XG (12.0… |
Trend Micro |
Trend Micro OfficeScan |
2019-10-28T19:28:32.000Z | 2025-10-29T13:21:30.943Z |
| cve-2019-1385 | N/A | An elevation of privilege vulnerability exists wh… |
Microsoft |
Windows |
2019-11-12T18:52:54.000Z | 2025-10-21T23:35:58.416Z |
| cve-2019-1388 | N/A | An elevation of privilege vulnerability exists in… |
Microsoft |
Windows |
2019-11-12T18:52:54.000Z | 2025-10-21T23:35:58.261Z |
| cve-2019-1405 | N/A | An elevation of privilege vulnerability exists wh… |
Microsoft |
Windows |
2019-11-12T18:53:00.000Z | 2025-10-21T23:35:58.095Z |
| cve-2019-1429 | N/A | A remote code execution vulnerability exists in t… |
Microsoft |
Internet Explorer 9 |
2019-11-12T18:53:10.000Z | 2025-10-21T23:35:57.927Z |
| cve-2019-6693 | N/A | Use of a hard-coded cryptographic key to cipher s… |
Fortinet |
FortiGate |
2019-11-21T15:08:05.000Z | 2025-10-21T23:35:57.795Z |
| cve-2019-13720 | N/A | Use after free in WebAudio in Google Chrome prior… |
Google |
Chrome |
2019-11-25T14:22:55.000Z | 2025-10-21T23:35:57.638Z |
| cve-2019-5825 | N/A | Out of bounds write in JavaScript in Google Chrom… |
Google |
Chrome |
2019-11-25T19:41:18.000Z | 2025-10-21T23:35:57.478Z |
| cve-2019-15271 | Cisco Small Business RV016, RV042, RV042G, and RV082 R… |
Cisco |
Cisco Small Business RV Series Router Firmware |
2019-11-26T03:12:26.649Z | 2025-10-21T23:35:57.315Z | |
| cve-2019-19391 | N/A | In LuaJIT through 2.0.5, as used in Moonjit befor… |
n/a |
n/a |
2019-11-29T15:18:49.000Z | 2025-11-03T18:07:53.427Z |
| cve-2019-7192 | N/A | This improper access control vulnerability allows… |
n/a |
QNAP NAS devices running Photo Station |
2019-12-05T16:17:29.000Z | 2025-10-21T23:35:57.175Z |
| cve-2019-7193 | N/A | This improper input validation vulnerability allo… |
n/a |
QNAP NAS devices |
2019-12-05T16:22:19.000Z | 2025-10-21T23:35:57.020Z |
| cve-2019-7194 | N/A | This external control of file name or path vulner… |
n/a |
QNAP NAS devices running Photo Station |
2019-12-05T16:30:53.000Z | 2025-10-21T23:35:56.883Z |
| cve-2019-7195 | N/A | This external control of file name or path vulner… |
n/a |
QNAP NAS devices running Photo Station |
2019-12-05T16:34:38.000Z | 2025-10-21T23:35:56.749Z |
| cve-2019-5544 | N/A | OpenSLP as used in ESXi and the Horizon DaaS appl… |
n/a |
ESXi and Horizon DaaS |
2019-12-06T15:54:18.000Z | 2025-10-21T23:35:56.590Z |
| cve-2019-1458 | N/A | An elevation of privilege vulnerability exists in… |
Microsoft |
Windows |
2019-12-10T21:40:57.000Z | 2025-10-21T23:35:56.426Z |
| cve-2019-18935 | N/A | Progress Telerik UI for ASP.NET AJAX through 2019… |
n/a |
n/a |
2019-12-11T00:00:00.000Z | 2025-10-21T23:35:56.289Z |
| cve-2019-7481 | N/A | Vulnerability in SonicWall SMA100 allow unauthent… |
SonicWall |
SMA100 |
2019-12-17T22:25:16.000Z | 2025-10-21T23:35:56.139Z |
| cve-2018-1311 | N/A | The Apache Xerces-C 3.0.0 to 3.2.3 XML parser con… |
Apache Software Foundation |
Apache Xerces-C |
2019-12-18T00:00:00.000Z | 2025-11-04T18:14:14.531Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2017-5454 | N/A | A mechanism to bypass file system access protecti… |
Mozilla |
Thunderbird |
2018-06-11T21:00:00 | 2024-08-05T15:04:14.622Z |
| cve-2017-5455 | N/A | The internal feed reader APIs that crossed the sa… |
Mozilla |
Firefox ESR |
2018-06-11T21:00:00 | 2024-08-05T15:04:14.417Z |
| cve-2017-5456 | N/A | A mechanism to bypass file system access protecti… |
Mozilla |
Firefox ESR |
2018-06-11T21:00:00 | 2024-08-05T15:04:14.745Z |
| cve-2017-5459 | N/A | A buffer overflow in WebGL triggerable by web con… |
Mozilla |
Thunderbird |
2018-06-11T21:00:00 | 2024-08-05T15:04:14.987Z |
| cve-2017-5460 | N/A | A use-after-free vulnerability in frame selection… |
Mozilla |
Thunderbird |
2018-06-11T21:00:00 | 2024-08-05T15:04:14.885Z |
| cve-2017-5462 | N/A | A flaw in DRBG number generation within the Netwo… |
Mozilla |
Thunderbird |
2018-06-11T21:00:00 | 2024-08-05T15:04:14.697Z |
| cve-2017-5465 | N/A | An out-of-bounds read while processing SVG conten… |
Mozilla |
Thunderbird |
2018-06-11T21:00:00 | 2024-08-05T15:04:14.672Z |
| cve-2017-5466 | N/A | If a page is loaded from an original site through… |
Mozilla |
Thunderbird |
2018-06-11T21:00:00 | 2024-08-05T15:04:14.760Z |
| cve-2017-5469 | N/A | Fixed potential buffer overflows in generated Fir… |
Mozilla |
Thunderbird |
2018-06-11T21:00:00 | 2024-08-05T15:04:14.693Z |
| cve-2017-5470 | N/A | Memory safety bugs were reported in Firefox 53 an… |
Mozilla |
Firefox |
2018-06-11T21:00:00 | 2024-08-05T15:04:14.617Z |
| cve-2017-5472 | N/A | A use-after-free vulnerability with the frameload… |
Mozilla |
Firefox |
2018-06-11T21:00:00 | 2024-08-05T15:04:14.834Z |
| cve-2017-7749 | N/A | A use-after-free vulnerability when using an inco… |
Mozilla |
Firefox |
2018-06-11T21:00:00 | 2024-08-05T16:12:28.259Z |
| cve-2017-7750 | N/A | A use-after-free vulnerability during video contr… |
Mozilla |
Firefox |
2018-06-11T21:00:00 | 2024-08-05T16:12:28.319Z |
| cve-2017-7751 | N/A | A use-after-free vulnerability with content viewe… |
Mozilla |
Firefox |
2018-06-11T21:00:00 | 2024-08-05T16:12:28.407Z |
| cve-2017-7752 | N/A | A use-after-free vulnerability during specific us… |
Mozilla |
Firefox |
2018-06-11T21:00:00 | 2024-08-05T16:12:28.283Z |
| cve-2017-7753 | N/A | An out-of-bounds read occurs when applying style … |
Mozilla |
Thunderbird |
2018-06-11T21:00:00 | 2024-08-05T16:12:28.382Z |
| cve-2017-7754 | N/A | An out-of-bounds read in WebGL with a maliciously… |
Mozilla |
Firefox |
2018-06-11T21:00:00 | 2024-08-05T16:12:28.414Z |
| cve-2017-7755 | N/A | The Firefox installer on Windows can be made to l… |
Mozilla |
Firefox |
2018-06-11T21:00:00 | 2024-08-05T16:12:28.505Z |
| cve-2017-7756 | N/A | A use-after-free and use-after-scope vulnerabilit… |
Mozilla |
Firefox |
2018-06-11T21:00:00 | 2024-08-05T16:12:28.226Z |
| cve-2017-7757 | N/A | A use-after-free vulnerability in IndexedDB when … |
Mozilla |
Firefox |
2018-06-11T21:00:00 | 2024-08-05T16:12:28.358Z |
| cve-2017-7758 | N/A | An out-of-bounds read vulnerability with the Opus… |
Mozilla |
Firefox |
2018-06-11T21:00:00 | 2024-08-05T16:12:28.432Z |
| cve-2017-7760 | N/A | The Mozilla Windows updater modifies some files t… |
Mozilla |
Firefox ESR |
2018-06-11T21:00:00 | 2024-08-05T16:12:28.353Z |
| cve-2017-7761 | N/A | The Mozilla Maintenance Service "helper.exe" appl… |
Mozilla |
Firefox ESR |
2018-06-11T21:00:00 | 2024-08-05T16:12:28.276Z |
| cve-2017-7763 | N/A | Default fonts on OS X display some Tibetan charac… |
Mozilla |
Firefox |
2018-06-11T21:00:00 | 2024-08-05T16:12:28.417Z |
| cve-2017-7764 | N/A | Characters from the "Canadian Syllabics" unicode … |
Mozilla |
Firefox |
2018-06-11T21:00:00 | 2024-08-05T16:12:28.412Z |
| cve-2017-7765 | N/A | The "Mark of the Web" was not correctly saved on … |
Mozilla |
Firefox |
2018-06-11T21:00:00 | 2024-08-05T16:12:28.502Z |
| cve-2017-7766 | N/A | An attack using manipulation of "updater.ini" con… |
Mozilla |
Firefox ESR |
2018-06-11T21:00:00 | 2024-08-05T16:12:28.506Z |
| cve-2017-7767 | N/A | The Mozilla Maintenance Service can be invoked by… |
Mozilla |
Firefox ESR |
2018-06-11T21:00:00 | 2024-08-05T16:12:28.499Z |
| cve-2017-7768 | N/A | The Mozilla Maintenance Service can be invoked by… |
Mozilla |
Firefox ESR |
2018-06-11T21:00:00 | 2024-08-05T16:12:28.396Z |
| cve-2017-7778 | N/A | A number of security vulnerabilities in the Graph… |
Mozilla |
Firefox |
2018-06-11T21:00:00 | 2024-08-05T16:12:28.373Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2024-12337 | Malicious code in raydium-sdk (PyPI) | 2024-07-03T17:04:18Z | 2025-12-11T09:27:53Z |
| mal-2024-12347 | Malicious code in sol-instruct (PyPI) | 2024-07-03T17:04:18Z | 2025-12-11T09:27:54Z |
| mal-2024-12349 | Malicious code in spl-types (PyPI) | 2024-07-03T17:04:18Z | 2025-12-11T09:27:54Z |
| mal-0000-kam193-35f38cf082169958 | Pentesting or research code in incaperror (PyPI) | 2024-07-05T17:41:53Z | 2024-07-05T17:41:53Z |
| mal-0000-kam193-c646c262d2896f5e | Pentesting or research code in incaperror (PyPI) | 2024-07-05T17:41:53Z | 2024-07-05T17:41:53Z |
| mal-2025-41690 | Malicious code in incaperror (PyPI) | 2024-07-05T17:41:53Z | 2025-12-11T09:27:53Z |
| mal-0000-kam193-37be6fc8dcdf96c3 | Malicious code in whoisbuild (PyPI) | 2024-07-06T17:16:40Z | 2024-07-06T17:16:40Z |
| mal-0000-kam193-45cebe5c70c375a3 | Malicious code in discord-embedbuilder (PyPI) | 2024-07-06T17:16:40Z | 2024-07-06T17:16:40Z |
| mal-0000-kam193-5c88286ad87831ee | Malicious code in Discord-EmbedBuilder (PyPI) | 2024-07-06T17:16:40Z | 2024-07-06T17:16:40Z |
| mal-0000-kam193-61ee3d2a1011f83d | Malicious code in better-gradient (PyPI) | 2024-07-06T17:16:40Z | 2024-07-06T17:16:40Z |
| mal-0000-kam193-a0fd33ddaa4a655d | Malicious code in discord-embedbuilder (PyPI) | 2024-07-06T17:16:40Z | 2024-07-06T17:16:40Z |
| mal-0000-kam193-a7c3d0f466e2586b | Malicious code in better-gradient (PyPI) | 2024-07-06T17:16:40Z | 2024-07-06T17:16:40Z |
| mal-0000-kam193-b8f206b101a7dd5a | Malicious code in whoisbuild (PyPI) | 2024-07-06T17:16:40Z | 2024-07-06T17:16:40Z |
| mal-2024-12256 | Malicious code in discord-embedbuilder (PyPI) | 2024-07-06T17:16:40Z | 2025-12-11T09:27:52Z |
| mal-2024-12370 | Malicious code in whoisbuild (PyPI) | 2024-07-06T17:16:40Z | 2025-12-11T09:27:54Z |
| mal-2024-9949 | Malicious code in better-gradient (PyPI) | 2024-07-06T17:16:40Z | 2025-12-11T09:27:52Z |
| mal-0000-kam193-21a990a504294c90 | Malicious code in transformars (PyPI) | 2024-07-07T18:03:21Z | 2024-07-07T18:03:21Z |
| mal-0000-kam193-bf35525c005ef155 | Malicious code in transformars (PyPI) | 2024-07-07T18:03:21Z | 2024-07-07T18:03:21Z |
| mal-2024-12365 | Malicious code in transformars (PyPI) | 2024-07-07T18:03:21Z | 2025-12-11T09:27:54Z |
| mal-0000-kam193-e5d093c6ce26c2d6 | Malicious code in pystlete (PyPI) | 2024-07-09T18:46:41Z | 2024-07-09T18:46:41Z |
| mal-0000-kam193-eb30c86b3479508d | Malicious code in pystlete (PyPI) | 2024-07-09T18:46:41Z | 2024-07-09T18:46:41Z |
| mal-2024-10125 | Malicious code in pystlete (PyPI) | 2024-07-09T18:46:41Z | 2025-12-11T09:27:53Z |
| mal-0000-kam193-172ccaf532e98b4e | Malicious code in hugchats (PyPI) | 2024-07-09T18:52:06Z | 2024-07-09T18:52:06Z |
| mal-0000-kam193-1a9ead576c318549 | Malicious code in deepseek-api (PyPI) | 2024-07-09T18:52:06Z | 2024-07-09T18:52:06Z |
| mal-0000-kam193-32887a019aca436d | Malicious code in openai-py3 (PyPI) | 2024-07-09T18:52:06Z | 2024-07-09T18:52:06Z |
| mal-0000-kam193-96ca6d620b3741a6 | Malicious code in deepseek-api (PyPI) | 2024-07-09T18:52:06Z | 2024-07-09T18:52:06Z |
| mal-0000-kam193-a4a966b90654cbd3 | Malicious code in openai-py3 (PyPI) | 2024-07-09T18:52:06Z | 2024-07-09T18:52:06Z |
| mal-0000-kam193-e4bfbe9f2194cca2 | Malicious code in hugchats (PyPI) | 2024-07-09T18:52:06Z | 2024-07-09T18:52:06Z |
| mal-2024-12251 | Malicious code in deepseek-api (PyPI) | 2024-07-09T18:52:06Z | 2025-12-11T09:27:52Z |
| mal-2024-12289 | Malicious code in hugchats (PyPI) | 2024-07-09T18:52:06Z | 2025-12-11T09:27:53Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2005:434 | Red Hat Security Advisory: firefox security update | 2005-05-23T09:14:00+00:00 | 2025-11-21T17:29:07+00:00 |
| rhsa-2005:435 | Red Hat Security Advisory: mozilla security update | 2005-05-23T09:42:00+00:00 | 2025-11-21T17:29:07+00:00 |
| rhsa-2005:473 | Red Hat Security Advisory: lesstif security update | 2005-05-24T17:17:00+00:00 | 2025-11-21T17:29:08+00:00 |
| rhsa-2005:427 | Red Hat Security Advisory: ethereal security update | 2005-05-24T17:27:00+00:00 | 2025-11-21T17:29:06+00:00 |
| rhsa-2005:413 | Red Hat Security Advisory: ImageMagick security update | 2005-05-25T16:14:00+00:00 | 2025-11-21T17:29:04+00:00 |
| rhsa-2005:472 | Red Hat Security Advisory: kernel security update | 2005-05-25T16:42:00+00:00 | 2025-11-21T17:29:08+00:00 |
| rhsa-2005:430 | Red Hat Security Advisory: gnutls security update | 2005-06-01T13:11:00+00:00 | 2025-11-21T17:29:06+00:00 |
| rhsa-2005:433 | Red Hat Security Advisory: postgresql security update | 2005-06-01T13:24:00+00:00 | 2025-11-21T17:29:07+00:00 |
| rhsa-2005:476 | Red Hat Security Advisory: openssl security update | 2005-06-01T13:32:00+00:00 | 2025-11-21T17:29:09+00:00 |
| rhsa-2005:480 | Red Hat Security Advisory: ImageMagick security update | 2005-06-02T14:30:00+00:00 | 2025-11-21T17:29:09+00:00 |
| rhsa-2005:481 | Red Hat Security Advisory: openssh security update | 2005-06-02T14:31:00+00:00 | 2025-11-21T17:29:09+00:00 |
| rhsa-2005:416 | Red Hat Security Advisory: kdbg security update | 2005-06-02T14:32:00+00:00 | 2025-11-21T17:29:05+00:00 |
| rhsa-2005:102 | Red Hat Security Advisory: dbus security update. | 2005-06-08T15:00:00+00:00 | 2025-11-21T17:28:27+00:00 |
| rhsa-2005:165 | Red Hat Security Advisory: rsh security update | 2005-06-08T15:01:00+00:00 | 2025-11-21T17:28:36+00:00 |
| rhsa-2005:420 | Red Hat Security Advisory: Updated kernel packages available for Red Hat Enterprise Linux 4 Update 1 | 2005-06-08T15:12:00+00:00 | 2025-11-21T17:29:05+00:00 |
| rhsa-2005:198 | Red Hat Security Advisory: xorg-x11 security update | 2005-06-08T15:33:00+00:00 | 2025-11-21T17:28:38+00:00 |
| rhsa-2005:505 | Red Hat Security Advisory: tcpdump security update | 2005-06-13T12:03:00+00:00 | 2025-11-21T17:29:12+00:00 |
| rhsa-2005:410 | Red Hat Security Advisory: gftp security update | 2005-06-13T12:07:00+00:00 | 2025-11-21T17:29:03+00:00 |
| rhsa-2005:489 | Red Hat Security Advisory: squid security update | 2005-06-13T12:08:00+00:00 | 2025-11-21T17:29:10+00:00 |
| rhsa-2005:357 | Red Hat Security Advisory: gzip security update | 2005-06-13T12:12:00+00:00 | 2025-11-21T17:28:54+00:00 |
| rhsa-2005:506 | Red Hat Security Advisory: mikmod security update | 2005-06-13T12:18:00+00:00 | 2025-11-21T17:29:12+00:00 |
| rhsa-2005:502 | Red Hat Security Advisory: sysreport security update | 2005-06-13T12:22:00+00:00 | 2025-11-21T17:29:11+00:00 |
| rhsa-2005:495 | Red Hat Security Advisory: rsh security update | 2005-06-13T12:23:00+00:00 | 2025-11-21T17:29:10+00:00 |
| rhsa-2005:499 | Red Hat Security Advisory: gedit security update | 2005-06-13T12:28:00+00:00 | 2025-11-21T17:29:11+00:00 |
| rhsa-2005:415 | Red Hat Security Advisory: squid security update | 2005-06-14T19:40:00+00:00 | 2025-11-21T17:29:04+00:00 |
| rhsa-2005:474 | Red Hat Security Advisory: bzip2 security update | 2005-06-16T17:36:00+00:00 | 2025-11-21T17:29:08+00:00 |
| rhsa-2005:512 | Red Hat Security Advisory: mc security update | 2005-06-16T17:44:00+00:00 | 2025-11-21T17:29:13+00:00 |
| rhsa-2005:498 | Red Hat Security Advisory: spamassassin security update | 2005-06-23T19:19:00+00:00 | 2025-11-21T17:29:11+00:00 |
| rhsa-2005:523 | Red Hat Security Advisory: RealPlayer security update | 2005-06-23T19:21:00+00:00 | 2025-11-21T17:29:14+00:00 |
| rhsa-2005:524 | Red Hat Security Advisory: freeradius security update | 2005-06-23T19:25:00+00:00 | 2025-11-21T17:29:14+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2020-15115 | No minimum password length in etcd | 2020-08-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-15136 | Improper authentication in etcd | 2020-08-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-16092 | In QEMU through 5.0.0 an assertion failure can occur in the network packet processing. This issue affects the e1000e and vmxnet3 network devices. A malicious guest user/process could use this flaw to abort the QEMU process on the host resulting in a denial of service condition in net_tx_pkt_add_raw_fragment in hw/net/net_tx_pkt.c. | 2020-08-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-16845 | Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs. | 2020-08-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2020-17507 | An issue was discovered in Qt through 5.12.9 and 5.13.x through 5.15.x before 5.15.1. read_xbm_body in gui/image/qxbmhandler.cpp has a buffer over-read. | 2020-08-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-24241 | In Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in saa_wbytes in nasmlib/saa.c. | 2020-08-02T00:00:00.000Z | 2025-09-03T21:30:46.000Z |
| msrc_cve-2020-24330 | An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges instead of by the tss user it fails to drop the root gid privilege when no longer needed. | 2020-08-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-24331 | An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges the tss user still has read and write access to the /etc/tcsd.conf file (which contains various settings related to this daemon). | 2020-08-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-24332 | An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges the creation of the system.data file is prone to symlink attacks. The tss user can be used to create or corrupt existing files which could possibly lead to a DoS attack. | 2020-08-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-24342 | Lua through 5.4.0 allows a stack redzone cross in luaO_pushvfstring because a protection mechanism wrongly calls luaD_callnoyield twice in a row. | 2020-08-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2020-24347 | njs through 0.4.3, used in NGINX, has an out-of-bounds read in njs_lvlhsh_level_find in njs_lvlhsh.c. | 2020-08-02T00:00:00.000Z | 2025-09-03T19:57:39.000Z |
| msrc_cve-2020-24370 | ldebug.c in Lua 5.4.0 allows a negation overflow and segmentation fault in getlocal and setlocal as demonstrated by getlocal(32^31). | 2020-08-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2020-24371 | lgc.c in Lua 5.4.0 mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage. | 2020-08-02T00:00:00.000Z | 2025-09-03T22:25:53.000Z |
| msrc_cve-2020-24394 | In the Linux kernel before 5.7.8 fs/nfsd/vfs.c (in the NFS server) can set incorrect permissions on new filesystem objects when the filesystem lacks ACL support aka CID-22cf8419f131. This occurs because the current umask is not considered. | 2020-08-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2020-7019 | In Elasticsearch before 7.9.0 and 6.8.12 a field disclosure flaw was found when running a scrolling search with Field Level Security. If a user runs the same query another more privileged user recently ran the scrolling search can leak fields that should be hidden. This could result in an attacker gaining additional permissions against a restricted index. | 2020-08-02T00:00:00.000Z | 2021-12-01T00:00:00.000Z |
| msrc_cve-2020-8620 | In BIND 9.15.6 -> 9.16.5 9.17.0 -> 9.17.3 An attacker who can establish a TCP connection with the server and send data on that connection can exploit this to trigger the assertion failure causing the server to exit. | 2020-08-02T00:00:00.000Z | 2020-08-26T00:00:00.000Z |
| msrc_cve-2020-8621 | Attempting QNAME minimization after forwarding can lead to an assertion failure in resolver.c | 2020-08-02T00:00:00.000Z | 2020-08-26T00:00:00.000Z |
| msrc_cve-2020-8622 | A truncated TSIG response can lead to an assertion failure | 2020-08-02T00:00:00.000Z | 2020-08-26T00:00:00.000Z |
| msrc_cve-2020-8623 | A flaw in native PKCS#11 code can lead to a remotely triggerable assertion failure in pk11.c | 2020-08-02T00:00:00.000Z | 2020-08-26T00:00:00.000Z |
| msrc_cve-2020-8624 | update-policy rules of type "subdomain" are enforced incorrectly | 2020-08-02T00:00:00.000Z | 2020-08-26T00:00:00.000Z |
| msrc_cve-2020-9490 | Apache HTTP Server versions 2.4.20 to 2.4.43. A specially crafted value for the 'Cache-Digest' header in a HTTP/2 request would result in a crash when the server actually tries to HTTP/2 PUSH a resource afterwards. Configuring the HTTP/2 feature via "H2Push off" will mitigate this vulnerability for unpatched servers. | 2020-08-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2014-10402 | An issue was discovered in the DBI module through 1.643 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the f_dir attribute in the data source name (DSN). NOTE: this issue exists because of an incomplete fix for CVE-2014-10401. | 2020-09-02T00:00:00.000Z | 2025-09-03T21:16:29.000Z |
| msrc_cve-2019-20916 | The pip package before 19.2 for Python allows Directory Traversal when a URL is given in an install command because a Content-Disposition header can have ../ in a filename as demonstrated by overwriting the /root/.ssh/authorized_keys file. This occurs in _download_http_url in _internal/download.py. | 2020-09-02T00:00:00.000Z | 2020-12-21T00:00:00.000Z |
| msrc_cve-2020-0570 | Uncontrolled search path in the QT Library before 5.14.0 5.12.7 and 5.9.10 may allow an authenticated user to potentially enable elevation of privilege via local access. | 2020-09-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-10733 | The Windows installer for PostgreSQL 9.5 - 12 invokes system-provided executables that do not have fully-qualified paths. Executables in the directory where the installer loads or the current working directory take precedence over the intended executables. An attacker having permission to add files into one of those directories can use this to execute arbitrary code with the installer's administrative rights. | 2020-09-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2020-10766 | A logic bug flaw was found in Linux kernel before 5.8-rc1 in the implementation of SSBD. A bug in the logic handling allows an attacker with a local account to disable SSBD protection during a context switch when additional speculative execution mitigations are in place. This issue was introduced when the per task/process conditional STIPB switching was added on top of the existing SSBD switching. The highest threat from this vulnerability is to confidentiality. | 2020-09-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2020-10767 | A flaw was found in the Linux kernel before 5.8-rc1 in the implementation of the Enhanced IBPB (Indirect Branch Prediction Barrier). The IBPB mitigation will be disabled when STIBP is not available or when the Enhanced Indirect Branch Restricted Speculation (IBRS) is available. This flaw allows a local attacker to perform a Spectre V2 style attack when this configuration is active. The highest threat from this vulnerability is to confidentiality. | 2020-09-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2020-10768 | A flaw was found in the Linux Kernel before 5.8-rc1 in the prctl() function where it can be used to enable indirect branch speculation after it has been disabled. This call incorrectly reports it as being 'force disabled' when it is not and opens the system to Spectre v2 attacks. The highest threat from this vulnerability is to confidentiality. | 2020-09-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2020-10781 | A flaw was found in the Linux Kernel before 5.8-rc6 in the ZRAM kernel module where a user with a local account and the ability to read the /sys/class/zram-control/hot_add file can create ZRAM device nodes in the /dev/ directory. This read allocates kernel memory and is not accounted for a user that triggers the creation of that ZRAM device. With this vulnerability continually reading the device may consume a large amount of system memory and cause the Out-of-Memory (OOM) killer to activate and terminate random userspace processes possibly making the system inoperable. | 2020-09-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2020-14314 | A memory out-of-bounds read flaw was found in the Linux kernel before 5.9-rc2 with the ext3/ext4 file system in the way it accesses a directory with broken indexing. This flaw allows a local user to crash the system if the directory exists. The highest threat from this vulnerability is to system availability. | 2020-09-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2011-000056 | Plone vulnerable to cross-site scripting | 2011-07-27T16:17+09:00 | 2011-07-27T16:17+09:00 |
| jvndb-2011-000055 | Mozilla Firefox vulnerability in processing content-length header | 2011-07-28T16:24+09:00 | 2011-07-28T16:24+09:00 |
| jvndb-2011-000057 | Mozilla Firefox vulnerable to denial-of-service (DoS) | 2011-07-28T16:27+09:00 | 2011-07-28T16:27+09:00 |
| jvndb-2011-000058 | Mozilla Firefox vulnerable to cross-site scripting | 2011-07-28T16:29+09:00 | 2011-07-28T16:29+09:00 |
| jvndb-2011-000059 | Mozilla Firefox vulnerable to cross-site scripting | 2011-07-28T16:31+09:00 | 2011-07-28T16:31+09:00 |
| jvndb-2011-000053 | Android vulnerability where an incorrect SSL certificate is displayed | 2011-07-29T14:26+09:00 | 2014-05-19T17:19+09:00 |
| jvndb-2011-001927 | Arbitrary Code Execution Vulnerability in HiRDB Control Manager | 2011-08-09T10:10+09:00 | 2011-08-09T10:10+09:00 |
| jvndb-2011-001928 | JP1/Performance Management - Web Console Cross-Site Scripting Vulnerability | 2011-08-09T10:11+09:00 | 2011-08-09T10:11+09:00 |
| jvndb-2011-000060 | Windows URL Protocol Handler may insecurely load executable files | 2011-08-10T17:17+09:00 | 2011-08-10T17:17+09:00 |
| jvndb-2011-000061 | Internet Explorer window display vulnerability | 2011-08-12T14:06+09:00 | 2011-08-12T14:06+09:00 |
| jvndb-2011-000062 | Aipo vulnerable to cross-site request forgery | 2011-08-16T16:41+09:00 | 2011-08-16T16:41+09:00 |
| jvndb-2011-000063 | Aipo vulnerable to SQL injection | 2011-08-16T16:44+09:00 | 2011-08-16T16:44+09:00 |
| jvndb-2011-000064 | Microsoft Windows XP vulnerable to denial-of-service (DoS) | 2011-08-19T16:32+09:00 | 2011-08-19T16:32+09:00 |
| jvndb-2011-000067 | WebsiteBaker vulnerable to cross-site scripting | 2011-08-26T15:50+09:00 | 2011-08-26T15:50+09:00 |
| jvndb-2011-002110 | Samba Web Administration Tool vulnerable to cross-site request forgery | 2011-08-26T17:12+09:00 | 2012-12-26T11:37+09:00 |
| jvndb-2011-002111 | Samba Web Administration Tool vulnerable to cross-site scripting | 2011-08-26T17:14+09:00 | 2012-12-26T11:42+09:00 |
| jvndb-2011-000068 | Multiple vulnerabilities in Phorum | 2011-09-02T19:11+09:00 | 2011-09-02T19:11+09:00 |
| jvndb-2011-000069 | Sage vulnerable to arbitrary script execution | 2011-09-02T19:14+09:00 | 2011-09-02T19:14+09:00 |
| jvndb-2011-000070 | Sage vulnerable to arbitrary script execution | 2011-09-02T19:19+09:00 | 2011-09-02T19:19+09:00 |
| jvndb-2011-000071 | Juniper Networks IDP ACM vulnerable to cross-site scripting | 2011-09-02T19:22+09:00 | 2011-09-02T19:22+09:00 |
| jvndb-2011-000072 | GTK+ may insecurely load dynamic libraries | 2011-09-02T19:26+09:00 | 2011-09-02T19:26+09:00 |
| jvndb-2011-000073 | Megalith vulnerable to authentication bypass | 2011-09-12T09:19+09:00 | 2011-09-12T09:19+09:00 |
| jvndb-2011-000074 | SemanticScuttle vulnerable to cross-site scripting | 2011-09-16T18:08+09:00 | 2011-09-16T18:08+09:00 |
| jvndb-2011-000065 | BaserCMS vulnerable to cross-site scripting | 2011-09-30T18:39+09:00 | 2011-09-30T18:39+09:00 |
| jvndb-2011-000066 | BaserCMS vulnerable to access restriction | 2011-09-30T18:45+09:00 | 2011-09-30T18:45+09:00 |
| jvndb-2011-000077 | Enkai-kun vulnerable to cross-site scripting | 2011-10-11T09:00+09:00 | 2011-10-11T09:00+09:00 |
| jvndb-2011-000078 | A-Form vulnerable in restricting access | 2011-10-11T09:08+09:00 | 2011-10-11T09:08+09:00 |
| jvndb-2011-000079 | Cybozu Office vulnerable in restricting access | 2011-10-11T09:11+09:00 | 2011-11-28T16:48+09:00 |
| jvndb-2011-000080 | WEB FORUM vulnerable to cross-site scripting | 2011-10-11T19:24+09:00 | 2011-10-25T13:44+09:00 |
| jvndb-2011-000081 | WEB FORUM vulnerable to cross-site scripting | 2011-10-11T19:27+09:00 | 2011-10-25T13:45+09:00 |
| ID | Description | Updated |
|---|