Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-gqfp-2982-4j8v | KYOCERA Net Admin 3.4.0906 contains a cross-site request forgery vulnerability that allows attacker… | 2025-12-24T21:30:34Z | 2025-12-24T21:30:34Z |
| ghsa-c2rc-wwm8-hc57 | Riello UPS NetMan 208 Application before 1.12 allows cgi-bin/login.cgi username SQL Injection. For … | 2025-12-24T21:30:34Z | 2025-12-24T21:30:34Z |
| ghsa-9r3c-f6xf-qhfq | Fujitsu / Fsas Technologies ETERNUS SF ACM/SC/Express (DX / AF Management Software) before 16.8-16.… | 2025-12-24T21:30:34Z | 2025-12-24T21:30:34Z |
| ghsa-9gpx-4hwh-g499 | ONLYOFFICE Docs before 9.2.1 allows XSS in the textarea of the comment editing form. This is relate… | 2025-12-24T21:30:34Z | 2025-12-24T21:30:34Z |
| ghsa-8q4f-5f8r-vp4w | Teradek VidiU Pro 3.0.3 contains a server-side request forgery vulnerability in the management inte… | 2025-12-24T21:30:34Z | 2025-12-24T21:30:34Z |
| ghsa-54pw-8jmv-p9rc | A remote unauthenticated attacker may be able to bypass authentication by utilizing a specific API… | 2025-12-24T21:30:34Z | 2025-12-24T21:30:34Z |
| ghsa-4hfm-3834-w3r8 | Riello UPS NetMan 208 Application before 1.12 allows cgi-bin/loginbanner_w.cgi XSS via a crafted banner. | 2025-12-24T21:30:34Z | 2025-12-24T21:30:34Z |
| ghsa-2gg3-j2hg-72f4 | VideoFlow Digital Video Protection DVP 2.10 contains an authenticated directory traversal vulnerabi… | 2025-12-24T21:30:34Z | 2025-12-24T21:30:34Z |
| ghsa-x3j6-h5jv-f97w | Rifatron 5brid DVR contains an unauthenticated vulnerability in the animate.cgi script that allows … | 2025-12-24T21:30:33Z | 2025-12-24T21:30:33Z |
| ghsa-vq8q-pgj7-r79w | Devolo dLAN 500 AV Wireless+ 3.1.0-1 contains a cross-site request forgery vulnerability that allow… | 2025-12-24T21:30:33Z | 2025-12-24T21:30:33Z |
| ghsa-rc3h-p7vv-v9x3 | Beward N100 H.264 VGA IP Camera M2.1.6 contains a cross-site request forgery vulnerability that all… | 2025-12-24T21:30:33Z | 2025-12-24T21:30:33Z |
| ghsa-qmhc-vf98-cwmf | Ross Video DashBoard 8.5.1 contains an elevation of privileges vulnerability that allows authentica… | 2025-12-24T21:30:33Z | 2025-12-24T21:30:33Z |
| ghsa-pmc3-hmfh-583m | iSeeQ Hybrid DVR WH-H4 1.03R contains an unauthenticated vulnerability in the get_jpeg script that … | 2025-12-24T21:30:33Z | 2025-12-24T21:30:33Z |
| ghsa-p8qm-v86v-r6gq | FaceSentry Access Control System 6.4.8 contains a critical authentication vulnerability with hard-c… | 2025-12-24T21:30:33Z | 2025-12-24T21:30:33Z |
| ghsa-p7cm-25mc-8h96 | SmartHouse Webapp 6.5.33 contains multiple cross-site request forgery and cross-site scripting vuln… | 2025-12-24T21:30:33Z | 2025-12-24T21:30:33Z |
| ghsa-p782-2pf9-qvmm | devolo dLAN 500 AV Wireless+ 3.1.0-1 contains an authentication bypass vulnerability that allows at… | 2025-12-24T21:30:33Z | 2025-12-24T21:30:33Z |
| ghsa-p43h-75mm-qgfv | FaceSentry Access Control System 6.4.8 contains a cross-site request forgery vulnerability that all… | 2025-12-24T21:30:33Z | 2025-12-24T21:30:33Z |
| ghsa-mfqx-6pfv-xp5p | Beward N100 H.264 VGA IP Camera M2.1.6 contains an authenticated file disclosure vulnerability that… | 2025-12-24T21:30:33Z | 2025-12-24T21:30:33Z |
| ghsa-cfpm-r69w-j97p | V-SOL GPON/EPON OLT Platform 2.03 contains a cross-site request forgery vulnerability that allows a… | 2025-12-24T21:30:33Z | 2025-12-24T21:30:33Z |
| ghsa-8cmh-3qph-fccm | FaceSentry 6.4.8 contains an authenticated remote command injection vulnerability in pingTest.php a… | 2025-12-24T21:30:33Z | 2025-12-24T21:30:33Z |
| ghsa-6fff-m75x-hprm | Legrand BTicino Driver Manager F454 1.0.51 contains multiple web vulnerabilities that allow attacke… | 2025-12-24T21:30:33Z | 2025-12-24T21:30:33Z |
| ghsa-4h7f-qwj6-qpx3 | Beward N100 M2.1.6.04C014 contains an unauthenticated vulnerability that allows remote attackers to… | 2025-12-24T21:30:33Z | 2025-12-24T21:30:33Z |
| ghsa-46cm-29f3-f9rv | V-SOL GPON/EPON OLT Platform v2.03 contains a privilege escalation vulnerability that allows normal… | 2025-12-24T21:30:33Z | 2025-12-24T21:30:33Z |
| ghsa-43qf-qj5j-5r47 | V-SOL GPON/EPON OLT Platform 2.03 contains an unauthenticated information disclosure vulnerability … | 2025-12-24T21:30:33Z | 2025-12-24T21:30:33Z |
| ghsa-2gww-fh48-p92f | Smartwares HOME easy 1.0.9 contains an authentication bypass vulnerability that allows unauthentica… | 2025-12-24T21:30:33Z | 2025-12-24T21:30:33Z |
| ghsa-r64v-2m5c-fmx7 | Microhard Systems IPn4G 1.1.0 contains hardcoded default credentials that cannot be changed through… | 2025-12-24T21:30:32Z | 2025-12-24T21:30:32Z |
| ghsa-m2m8-9ppp-q3c7 | Teradek Cube 7.3.6 contains a cross-site request forgery vulnerability that allows attackers to cha… | 2025-12-24T21:30:32Z | 2025-12-24T21:30:32Z |
| ghsa-jmmc-j836-r5v7 | Microhard Systems IPn4G 1.1.0 contains multiple authenticated remote code execution vulnerabilities… | 2025-12-24T21:30:32Z | 2025-12-24T21:30:32Z |
| ghsa-jj2g-vwxg-qv6m | AVE DOMINAplus 1.10.x contains cross-site request forgery and cross-site scripting vulnerabilities … | 2025-12-24T21:30:32Z | 2025-12-24T21:30:33Z |
| ghsa-g4f4-x2rq-h8g8 | Ecessa ShieldLink SL175EHQ 10.7.4 contains a cross-site request forgery vulnerability that allows a… | 2025-12-24T21:30:32Z | 2025-12-24T21:30:32Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-68914 | 6.5 (v3.1) | Riello UPS NetMan 208 Application before 1.12 all… |
Riello |
NetMan |
2025-12-24T19:37:14.535Z | 2025-12-24T20:03:44.090Z |
| cve-2019-25258 | 7.1 (v4.0) 7.5 (v3.1) | LogicalDOC Enterprise 7.7.4 Multiple Post-Authenticati… |
LogicalDOC Srl |
LogicalDOC Enterprise |
2025-12-24T19:28:06.519Z | 2025-12-24T20:21:23.564Z |
| cve-2019-25257 | 8.7 (v4.0) 6.5 (v3.1) | LogicalDOC Enterprise 7.7.4 Authenticated Command Exec… |
LogicalDOC Srl |
LogicalDOC Enterprise |
2025-12-24T19:28:06.119Z | 2025-12-24T20:21:30.648Z |
| cve-2019-25256 | 7.1 (v4.0) 6.5 (v3.1) | VideoFlow Digital Video Protection DVP 2.10 Authentica… |
VideoFlow Ltd. |
Digital Video Protection DVP |
2025-12-24T19:28:05.689Z | 2025-12-24T20:21:37.347Z |
| cve-2019-25255 | 8.7 (v4.0) 4.3 (v3.1) | VideoFlow Digital Video Protection DVP 2.10 Authentica… |
VideoFlow Ltd. |
VideoFlow Digital Video Protection DVP |
2025-12-24T19:28:05.284Z | 2025-12-24T20:21:43.515Z |
| cve-2019-25254 | 5.1 (v4.0) 5.3 (v3.1) | KYOCERA Net Admin 3.4.0906 Cross-Site Request Forgery … |
KYOCERA Corporation |
KYOCERA Net Admin |
2025-12-24T19:28:04.889Z | 2025-12-24T20:21:49.801Z |
| cve-2019-25253 | 7.1 (v4.0) 7.5 (v3.1) | KYOCERA Net Admin 3.4.0906 Unauthenticated XML Externa… |
KYOCERA Corporation |
KYOCERA Net Admin |
2025-12-24T19:28:04.490Z | 2025-12-24T20:21:56.818Z |
| cve-2019-25252 | 5.1 (v4.0) 5.3 (v3.1) | Teradek VidiU Pro 3.0.3 Cross-Site Request Forgery via… |
Teradek |
VidiU Pro |
2025-12-24T19:28:04.078Z | 2025-12-24T20:22:04.713Z |
| cve-2019-25251 | 6.9 (v4.0) 5.3 (v3.1) | Teradek VidiU Pro 3.0.3 Server-Side Request Forgery vi… |
Teradek, LLC |
VidiU Pro |
2025-12-24T19:28:03.642Z | 2025-12-24T20:22:13.312Z |
| cve-2019-25250 | 5.1 (v4.0) 5.3 (v3.1) | Devolo dLAN 500 AV Wireless+ 3.1.0-1 Cross-Site Reques… |
devolo AG |
dLAN 550 duo+ Starter Kit |
2025-12-24T19:28:03.241Z | 2025-12-24T20:22:20.223Z |
| cve-2019-25249 | 8.7 (v4.0) 9.8 (v3.1) | devolo dLAN 500 AV Wireless+ 3.1.0-1 Remote Code Execu… |
devolo AG |
dLAN 550 duo+ Starter Kit |
2025-12-24T19:28:02.779Z | 2025-12-24T20:22:26.831Z |
| cve-2019-25248 | 8.7 (v4.0) 7.5 (v3.1) | Beward N100 M2.1.6 Unauthenticated RTSP Video Stream D… |
Beward |
N100 H.264 VGA IP Camera |
2025-12-24T19:28:02.157Z | 2025-12-24T20:22:33.063Z |
| cve-2019-25247 | 5.1 (v4.0) 5.3 (v3.1) | Beward N100 H.264 VGA IP Camera M2.1.6 CSRF Add Admin … |
Beward R&D Co., Ltd |
N100 H.264 VGA IP Camera |
2025-12-24T19:28:00.994Z | 2025-12-24T20:22:39.710Z |
| cve-2019-25246 | 7.1 (v4.0) 8.8 (v3.1) | Beward N100 H.264 VGA IP Camera M2.1.6 Authenticated F… |
Beward R&D Co., Ltd |
N100 H.264 VGA IP Camera |
2025-12-24T19:28:00.474Z | 2025-12-24T20:22:45.916Z |
| cve-2019-25245 | 8.5 (v4.0) 8.8 (v3.1) | Ross Video DashBoard 8.5.1 Privilege Escalation via In… |
Ross Video Ltd. |
DashBoard |
2025-12-24T19:27:59.816Z | 2025-12-24T20:22:52.203Z |
| cve-2019-25244 | 5.1 (v4.0) 5.3 (v3.1) | Legrand BTicino Driver Manager F454 1.0.51 CSRF and St… |
BTicino S.p.A. |
Legrand BTicino Driver Manager F454 |
2025-12-24T19:27:59.384Z | 2025-12-24T20:22:58.420Z |
| cve-2019-25243 | 8.7 (v4.0) 8.8 (v3.1) | FaceSentry 6.4.8 Authenticated Remote Command Injectio… |
iWT Ltd. |
FaceSentry Access Control System |
2025-12-24T19:27:58.965Z | 2025-12-24T20:23:05.664Z |
| cve-2019-25242 | 5.1 (v4.0) 4.3 (v3.1) | FaceSentry Access Control System 6.4.8 Cross-Site Requ… |
iWT Ltd. |
FaceSentry Access Control System |
2025-12-24T19:27:58.523Z | 2025-12-24T20:23:12.300Z |
| cve-2019-25241 | 9.3 (v4.0) 7.5 (v3.1) | FaceSentry Access Control System 6.4.8 Remote SSH Root… |
iWT Ltd. |
FaceSentry Access Control System |
2025-12-24T19:27:58.126Z | 2025-12-24T20:23:18.700Z |
| cve-2019-25240 | 8.7 (v4.0) 9.8 (v3.1) | Rifatron 5brid DVR 5brid DVR (HD6-532/516, DX6-516/508… |
Rifatron Co., Ltd. |
DVR |
2025-12-24T19:27:57.698Z | 2025-12-24T20:23:25.132Z |
| cve-2019-25239 | 8.7 (v4.0) 7.5 (v3.1) | V-SOL GPON/EPON OLT Platform 2.03 Unauthenticated Conf… |
Guangzhou V-SOLUTION Electronic Technology |
GPON/EPON OLT Platform |
2025-12-24T19:27:57.201Z | 2025-12-24T20:23:32.107Z |
| cve-2019-25238 | 5.1 (v4.0) 4.3 (v3.1) | V-SOL GPON/EPON OLT Platform 2.03 Cross-Site Request F… |
Guangzhou V-SOLUTION Electronic Technology Co., Ltd. |
SOL GPON/EPON OLT Platform |
2025-12-24T19:27:56.801Z | 2025-12-24T20:23:38.963Z |
| cve-2019-25237 | 8.7 (v4.0) 9.8 (v3.1) | V-SOL GPON/EPON OLT Platform 2.03 Privilege Escalation… |
Guangzhou V-SOLUTION Electronic Technology Co., Ltd. |
SOL GPON/EPON OLT Platform |
2025-12-24T19:27:56.411Z | 2025-12-24T20:23:45.916Z |
| cve-2019-25236 | 8.7 (v4.0) 9.8 (v3.1) | iSeeQ Hybrid DVR WH-H4 1.03R Unauthenticated Live Stre… |
iSeeQ |
Hybrid DVR WH-H4 |
2025-12-24T19:27:55.979Z | 2025-12-24T20:23:52.108Z |
| cve-2019-25235 | 8.8 (v4.0) 9.8 (v3.1) | Smartwares HOME easy 1.0.9 Client-Side Authentication … |
Smartwares |
Smartwares HOME easy |
2025-12-24T19:27:55.565Z | 2025-12-24T20:23:58.323Z |
| cve-2019-25234 | 5.1 (v4.0) 5.3 (v3.1) | Carlo Gavazzi SmartHouse Webapp 6.5.33 Cross-Site Requ… |
Carlo Gavazzi AB |
SmartHouse Webapp |
2025-12-24T19:27:55.152Z | 2025-12-24T20:24:05.780Z |
| cve-2019-25233 | 5.1 (v4.0) 5.3 (v3.1) | AVE DOMINAplus 1.10.x Cross-Site Request Forgery and X… |
AVE S.p.A. |
DOMINAplus |
2025-12-24T19:27:54.735Z | 2025-12-24T20:24:12.386Z |
| cve-2018-25156 | 5.1 (v4.0) 5.3 (v3.1) | Teradek Cube 7.3.6 Cross-Site Request Forgery Password… |
Teradek, LLC |
Cube |
2025-12-24T19:27:54.324Z | 2025-12-24T20:24:19.107Z |
| cve-2018-25155 | 5.1 (v4.0) 5.3 (v3.1) | Teradek Slice 7.3.15 Cross-Site Request Forgery via Pa… |
Teradek, LLC |
Slice |
2025-12-24T19:27:53.919Z | 2025-12-24T20:24:25.555Z |
| cve-2018-25154 | 8.5 (v4.0) 9.8 (v3.1) | GNU Barcode 0.99 Buffer Overflow in Code 93 Encoding M… |
The GNU Project | Free Software Foundation, Inc. |
GNU Barcode |
2025-12-24T19:27:53.486Z | 2025-12-24T20:24:32.336Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2019-25258 | 7.1 (v4.0) 7.5 (v3.1) | LogicalDOC Enterprise 7.7.4 Multiple Post-Authenticati… |
LogicalDOC Srl |
LogicalDOC Enterprise |
2025-12-24T19:28:06.519Z | 2025-12-24T20:21:23.564Z |
| cve-2019-25257 | 8.7 (v4.0) 6.5 (v3.1) | LogicalDOC Enterprise 7.7.4 Authenticated Command Exec… |
LogicalDOC Srl |
LogicalDOC Enterprise |
2025-12-24T19:28:06.119Z | 2025-12-24T20:21:30.648Z |
| cve-2019-25256 | 7.1 (v4.0) 6.5 (v3.1) | VideoFlow Digital Video Protection DVP 2.10 Authentica… |
VideoFlow Ltd. |
Digital Video Protection DVP |
2025-12-24T19:28:05.689Z | 2025-12-24T20:21:37.347Z |
| cve-2019-25255 | 8.7 (v4.0) 4.3 (v3.1) | VideoFlow Digital Video Protection DVP 2.10 Authentica… |
VideoFlow Ltd. |
VideoFlow Digital Video Protection DVP |
2025-12-24T19:28:05.284Z | 2025-12-24T20:21:43.515Z |
| cve-2019-25254 | 5.1 (v4.0) 5.3 (v3.1) | KYOCERA Net Admin 3.4.0906 Cross-Site Request Forgery … |
KYOCERA Corporation |
KYOCERA Net Admin |
2025-12-24T19:28:04.889Z | 2025-12-24T20:21:49.801Z |
| cve-2019-25253 | 7.1 (v4.0) 7.5 (v3.1) | KYOCERA Net Admin 3.4.0906 Unauthenticated XML Externa… |
KYOCERA Corporation |
KYOCERA Net Admin |
2025-12-24T19:28:04.490Z | 2025-12-24T20:21:56.818Z |
| cve-2019-25252 | 5.1 (v4.0) 5.3 (v3.1) | Teradek VidiU Pro 3.0.3 Cross-Site Request Forgery via… |
Teradek |
VidiU Pro |
2025-12-24T19:28:04.078Z | 2025-12-24T20:22:04.713Z |
| cve-2019-25251 | 6.9 (v4.0) 5.3 (v3.1) | Teradek VidiU Pro 3.0.3 Server-Side Request Forgery vi… |
Teradek, LLC |
VidiU Pro |
2025-12-24T19:28:03.642Z | 2025-12-24T20:22:13.312Z |
| cve-2019-25250 | 5.1 (v4.0) 5.3 (v3.1) | Devolo dLAN 500 AV Wireless+ 3.1.0-1 Cross-Site Reques… |
devolo AG |
dLAN 550 duo+ Starter Kit |
2025-12-24T19:28:03.241Z | 2025-12-24T20:22:20.223Z |
| cve-2019-25249 | 8.7 (v4.0) 9.8 (v3.1) | devolo dLAN 500 AV Wireless+ 3.1.0-1 Remote Code Execu… |
devolo AG |
dLAN 550 duo+ Starter Kit |
2025-12-24T19:28:02.779Z | 2025-12-24T20:22:26.831Z |
| cve-2019-25248 | 8.7 (v4.0) 7.5 (v3.1) | Beward N100 M2.1.6 Unauthenticated RTSP Video Stream D… |
Beward |
N100 H.264 VGA IP Camera |
2025-12-24T19:28:02.157Z | 2025-12-24T20:22:33.063Z |
| cve-2019-25247 | 5.1 (v4.0) 5.3 (v3.1) | Beward N100 H.264 VGA IP Camera M2.1.6 CSRF Add Admin … |
Beward R&D Co., Ltd |
N100 H.264 VGA IP Camera |
2025-12-24T19:28:00.994Z | 2025-12-24T20:22:39.710Z |
| cve-2019-25246 | 7.1 (v4.0) 8.8 (v3.1) | Beward N100 H.264 VGA IP Camera M2.1.6 Authenticated F… |
Beward R&D Co., Ltd |
N100 H.264 VGA IP Camera |
2025-12-24T19:28:00.474Z | 2025-12-24T20:22:45.916Z |
| cve-2019-25245 | 8.5 (v4.0) 8.8 (v3.1) | Ross Video DashBoard 8.5.1 Privilege Escalation via In… |
Ross Video Ltd. |
DashBoard |
2025-12-24T19:27:59.816Z | 2025-12-24T20:22:52.203Z |
| cve-2019-25244 | 5.1 (v4.0) 5.3 (v3.1) | Legrand BTicino Driver Manager F454 1.0.51 CSRF and St… |
BTicino S.p.A. |
Legrand BTicino Driver Manager F454 |
2025-12-24T19:27:59.384Z | 2025-12-24T20:22:58.420Z |
| cve-2019-25243 | 8.7 (v4.0) 8.8 (v3.1) | FaceSentry 6.4.8 Authenticated Remote Command Injectio… |
iWT Ltd. |
FaceSentry Access Control System |
2025-12-24T19:27:58.965Z | 2025-12-24T20:23:05.664Z |
| cve-2019-25242 | 5.1 (v4.0) 4.3 (v3.1) | FaceSentry Access Control System 6.4.8 Cross-Site Requ… |
iWT Ltd. |
FaceSentry Access Control System |
2025-12-24T19:27:58.523Z | 2025-12-24T20:23:12.300Z |
| cve-2019-25241 | 9.3 (v4.0) 7.5 (v3.1) | FaceSentry Access Control System 6.4.8 Remote SSH Root… |
iWT Ltd. |
FaceSentry Access Control System |
2025-12-24T19:27:58.126Z | 2025-12-24T20:23:18.700Z |
| cve-2019-25240 | 8.7 (v4.0) 9.8 (v3.1) | Rifatron 5brid DVR 5brid DVR (HD6-532/516, DX6-516/508… |
Rifatron Co., Ltd. |
DVR |
2025-12-24T19:27:57.698Z | 2025-12-24T20:23:25.132Z |
| cve-2019-25239 | 8.7 (v4.0) 7.5 (v3.1) | V-SOL GPON/EPON OLT Platform 2.03 Unauthenticated Conf… |
Guangzhou V-SOLUTION Electronic Technology |
GPON/EPON OLT Platform |
2025-12-24T19:27:57.201Z | 2025-12-24T20:23:32.107Z |
| cve-2019-25238 | 5.1 (v4.0) 4.3 (v3.1) | V-SOL GPON/EPON OLT Platform 2.03 Cross-Site Request F… |
Guangzhou V-SOLUTION Electronic Technology Co., Ltd. |
SOL GPON/EPON OLT Platform |
2025-12-24T19:27:56.801Z | 2025-12-24T20:23:38.963Z |
| cve-2019-25237 | 8.7 (v4.0) 9.8 (v3.1) | V-SOL GPON/EPON OLT Platform 2.03 Privilege Escalation… |
Guangzhou V-SOLUTION Electronic Technology Co., Ltd. |
SOL GPON/EPON OLT Platform |
2025-12-24T19:27:56.411Z | 2025-12-24T20:23:45.916Z |
| cve-2019-25236 | 8.7 (v4.0) 9.8 (v3.1) | iSeeQ Hybrid DVR WH-H4 1.03R Unauthenticated Live Stre… |
iSeeQ |
Hybrid DVR WH-H4 |
2025-12-24T19:27:55.979Z | 2025-12-24T20:23:52.108Z |
| cve-2019-25235 | 8.8 (v4.0) 9.8 (v3.1) | Smartwares HOME easy 1.0.9 Client-Side Authentication … |
Smartwares |
Smartwares HOME easy |
2025-12-24T19:27:55.565Z | 2025-12-24T20:23:58.323Z |
| cve-2019-25234 | 5.1 (v4.0) 5.3 (v3.1) | Carlo Gavazzi SmartHouse Webapp 6.5.33 Cross-Site Requ… |
Carlo Gavazzi AB |
SmartHouse Webapp |
2025-12-24T19:27:55.152Z | 2025-12-24T20:24:05.780Z |
| cve-2019-25233 | 5.1 (v4.0) 5.3 (v3.1) | AVE DOMINAplus 1.10.x Cross-Site Request Forgery and X… |
AVE S.p.A. |
DOMINAplus |
2025-12-24T19:27:54.735Z | 2025-12-24T20:24:12.386Z |
| cve-2018-25156 | 5.1 (v4.0) 5.3 (v3.1) | Teradek Cube 7.3.6 Cross-Site Request Forgery Password… |
Teradek, LLC |
Cube |
2025-12-24T19:27:54.324Z | 2025-12-24T20:24:19.107Z |
| cve-2018-25155 | 5.1 (v4.0) 5.3 (v3.1) | Teradek Slice 7.3.15 Cross-Site Request Forgery via Pa… |
Teradek, LLC |
Slice |
2025-12-24T19:27:53.919Z | 2025-12-24T20:24:25.555Z |
| cve-2018-25154 | 8.5 (v4.0) 9.8 (v3.1) | GNU Barcode 0.99 Buffer Overflow in Code 93 Encoding M… |
The GNU Project | Free Software Foundation, Inc. |
GNU Barcode |
2025-12-24T19:27:53.486Z | 2025-12-24T20:24:32.336Z |
| cve-2018-25153 | 6.9 (v4.0) 7.5 (v3.1) | GNU Barcode 0.99 Memory Leak Vulnerability in Command … |
The GNU Project | Free Software Foundation, Inc. |
GNU Barcode |
2025-12-24T19:27:53.062Z | 2025-12-24T20:24:39.099Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-192924 | Malicious code in u2f_client (RubyGems) | 2025-12-23T08:41:13Z | 2025-12-23T08:41:13Z |
| mal-2025-192923 | Malicious code in test_gem_978483406ebb19126a2e8c001649a4eb (RubyGems) | 2025-12-23T08:41:12Z | 2025-12-23T08:41:12Z |
| mal-2025-192922 | Malicious code in stripe-server (RubyGems) | 2025-12-23T08:41:12Z | 2025-12-23T08:41:12Z |
| mal-2025-192921 | Malicious code in stripe-rubocop (RubyGems) | 2025-12-23T08:41:11Z | 2025-12-23T08:41:11Z |
| mal-2025-192920 | Malicious code in stripe-backup (RubyGems) | 2025-12-23T08:41:10Z | 2025-12-23T08:41:10Z |
| mal-2025-192919 | Malicious code in sq-samsa (RubyGems) | 2025-12-23T08:41:10Z | 2025-12-23T08:41:10Z |
| mal-2025-192918 | Malicious code in sq-mdc (RubyGems) | 2025-12-23T08:41:09Z | 2025-12-23T08:41:09Z |
| mal-2025-192917 | Malicious code in space-commander (RubyGems) | 2025-12-23T08:41:09Z | 2025-12-23T08:41:09Z |
| mal-2025-192916 | Malicious code in redis_connectable (RubyGems) | 2025-12-23T08:41:07Z | 2025-12-23T08:41:07Z |
| mal-2025-192915 | Malicious code in rails-structured-logging (RubyGems) | 2025-12-23T08:41:05Z | 2025-12-23T08:41:05Z |
| mal-2025-192914 | Malicious code in queenbee-plugin (RubyGems) | 2025-12-23T08:41:05Z | 2025-12-23T08:41:05Z |
| mal-2025-192913 | Malicious code in prometheus_gcstat (RubyGems) | 2025-12-23T08:41:04Z | 2025-12-23T08:41:04Z |
| mal-2025-192912 | Malicious code in prometheus_client_ruby (RubyGems) | 2025-12-23T08:41:03Z | 2025-12-23T08:41:03Z |
| mal-2025-192699 | Malicious code in lanchain-openai (PyPI) | 2025-12-23T08:41:02Z | 2025-12-23T08:41:02Z |
| mal-2025-192911 | Malicious code in md_confluence (RubyGems) | 2025-12-23T08:41:00Z | 2025-12-23T08:41:00Z |
| mal-2025-192910 | Malicious code in macklemore (RubyGems) | 2025-12-23T08:40:58Z | 2025-12-23T08:40:58Z |
| mal-2025-192909 | Malicious code in html_scrubber (RubyGems) | 2025-12-23T08:40:57Z | 2025-12-23T08:40:57Z |
| mal-2025-192908 | Malicious code in hola_rreichel3github (RubyGems) | 2025-12-23T08:40:56Z | 2025-12-23T08:40:56Z |
| mal-2025-192907 | Malicious code in hockeystick (RubyGems) | 2025-12-23T08:40:55Z | 2025-12-23T08:40:55Z |
| mal-2025-192906 | Malicious code in haybales (RubyGems) | 2025-12-23T08:40:55Z | 2025-12-23T08:40:55Z |
| mal-2025-192905 | Malicious code in critter (RubyGems) | 2025-12-23T08:40:54Z | 2025-12-23T08:40:54Z |
| mal-2025-192904 | Malicious code in cocoapod (RubyGems) | 2025-12-23T08:40:53Z | 2025-12-23T08:40:53Z |
| mal-2025-192903 | Malicious code in chalk-thrift (RubyGems) | 2025-12-23T08:40:52Z | 2025-12-23T08:40:52Z |
| mal-2025-192902 | Malicious code in chalk-service (RubyGems) | 2025-12-23T08:40:51Z | 2025-12-23T08:40:51Z |
| mal-2025-192901 | Malicious code in chalk-sentry (RubyGems) | 2025-12-23T08:40:50Z | 2025-12-23T08:40:50Z |
| mal-2025-192900 | Malicious code in chalk-interface (RubyGems) | 2025-12-23T08:40:50Z | 2025-12-23T08:40:50Z |
| mal-2025-192899 | Malicious code in chalk-hostname (RubyGems) | 2025-12-23T08:40:50Z | 2025-12-23T08:40:50Z |
| mal-2025-192898 | Malicious code in chalk-henson (RubyGems) | 2025-12-23T08:40:49Z | 2025-12-23T08:40:49Z |
| mal-2025-192897 | Malicious code in chalk-consul (RubyGems) | 2025-12-23T08:40:49Z | 2025-12-23T08:40:49Z |
| mal-2025-192896 | Malicious code in chalk-cli (RubyGems) | 2025-12-23T08:40:48Z | 2025-12-23T08:40:48Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-2741 | cPython: Schwachstelle ermöglicht Denial of Service | 2025-12-03T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2738 | Vercel Next.js und React Server Components (React2Shell): Schwachstelle ermöglicht Codeausführung | 2025-12-03T23:00:00.000+00:00 | 2025-12-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2737 | libpng: Schwachstelle ermöglicht Denial of Service und Offenlegung von Informationen | 2025-12-03T23:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2730 | Wireshark: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-12-02T23:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2729 | WebKitGTK: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-12-02T23:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2718 | Google Chrome/Microsoft Edge: Mehrere Schwachstellen | 2025-12-02T23:00:00.000+00:00 | 2025-12-15T23:00:00.000+00:00 |
| wid-sec-w-2025-2717 | Django: Mehrere Schwachstellen | 2025-12-02T23:00:00.000+00:00 | 2025-12-02T23:00:00.000+00:00 |
| wid-sec-w-2025-2711 | Android Patchday Dezember 2025: Mehrere Schwachstellen | 2025-12-01T23:00:00.000+00:00 | 2025-12-08T23:00:00.000+00:00 |
| wid-sec-w-2025-2706 | Python: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-12-01T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2703 | Zabbix: Mehrere Schwachstellen | 2025-11-30T23:00:00.000+00:00 | 2025-12-01T23:00:00.000+00:00 |
| wid-sec-w-2025-2701 | xwiki (XJetty): Schwachstelle ermöglicht Offenlegung von Informationen | 2025-11-30T23:00:00.000+00:00 | 2025-12-01T23:00:00.000+00:00 |
| wid-sec-w-2025-2700 | CODESYS Control und Development System: Mehrere Schwachstellen | 2025-11-30T23:00:00.000+00:00 | 2025-12-01T23:00:00.000+00:00 |
| wid-sec-w-2025-2697 | Devolutions Remote Desktop Manager und Server: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-11-30T23:00:00.000+00:00 | 2025-11-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2694 | MariaDB: Schwachstelle ermöglicht Codeausführung | 2025-11-27T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2687 | Apache CloudStack: Mehrere Schwachstellen | 2025-11-26T23:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2025-2677 | OPNsense: Schwachstelle ermöglicht Manipulation von Dateien | 2025-11-25T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2676 | GeoServer: Mehrere Schwachstellen | 2025-11-25T23:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2025-2670 | Fluent Bit: Mehrere Schwachstellen | 2025-11-24T23:00:00.000+00:00 | 2025-11-25T23:00:00.000+00:00 |
| wid-sec-w-2025-2667 | Janitza UMG 96-PA und UMG 96-PA-MID+: Schwachstelle ermöglicht Denial of Service | 2025-11-23T23:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2666 | vllm und PyTorch: Schwachstelle ermöglicht DoS und potenzielle Codeausführung | 2025-11-23T23:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2663 | libpng: Mehrere Schwachstellen | 2025-11-23T23:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2661 | Google Cloud Platform (Looker): Schwachstelle ermöglicht Ausführen von beliebigem Programmcode | 2025-11-23T23:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2657 | WebKitGTK: Mehrere Schwachstellen | 2025-11-20T23:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2655 | CUPS-Filters: Schwachstelle ermöglicht Codeausführung | 2025-11-20T23:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2654 | MongoDB (Server): Schwachstelle ermöglicht Denial of Service | 2025-11-20T23:00:00.000+00:00 | 2025-11-20T23:00:00.000+00:00 |
| wid-sec-w-2025-2653 | Microsoft Visual Studio Code: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-11-20T23:00:00.000+00:00 | 2025-11-20T23:00:00.000+00:00 |
| wid-sec-w-2025-2652 | Red Hat Satellite: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-11-20T23:00:00.000+00:00 | 2025-11-20T23:00:00.000+00:00 |
| wid-sec-w-2025-2651 | GnuTLS: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2025-11-19T23:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2649 | Google Cloud Platform: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-11-19T23:00:00.000+00:00 | 2025-11-20T23:00:00.000+00:00 |
| wid-sec-w-2025-2647 | SonicWall Email Security: Mehrere Schwachstellen | 2025-11-19T23:00:00.000+00:00 | 2025-11-20T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| ssa-041082 | SSA-041082: Out of Bounds Read Vulnerability in SiPass Integrated Before V2.95.3.18 | 2025-05-23T00:00:00Z | 2025-05-23T00:00:00Z |
| ssa-552330 | SSA-552330: System Configuration Password Reset in Siveillance Video V2024 R1 | 2025-05-14T00:00:00Z | 2025-05-14T00:00:00Z |
| ssa-901508 | SSA-901508: Multiple Vulnerabilities in INTRALOG WMS Before V5 | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| ssa-864900 | SSA-864900: Multiple Vulnerabilities in Fortigate NGFW on RUGGEDCOM APE1808 Devices | 2025-05-13T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-828116 | SSA-828116: Denial of Service Vulnerability in BACnet ATEC Devices | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| ssa-794185 | SSA-794185: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SIPROTEC, SICAM and Related Products | 2025-05-13T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-726617 | SSA-726617: Incorrect Privilege Assignment Vulnerability in Mendix OIDC SSO Module | 2025-05-13T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-718393 | SSA-718393: Partial Denial of Service Vulnerability in APOGEE PXC and TALON TC Series (BACnet) Devices | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| ssa-668154 | SSA-668154: Denial of Service Vulnerability in MS/TP Point Pickup Module | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| ssa-542540 | SSA-542540: Out of Bounds Read Vulnerability in Teamcenter Visualization | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| ssa-523418 | SSA-523418: Information Disclosure Vulnerability in Desigo CC | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| ssa-339086 | SSA-339086: Insufficient Session Expiration Vulnerability in SIMATIC PCS neo | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| ssa-301229 | SSA-301229: Client-Side Enforcement of Server-Side Security Vulnerabilities in RUGGEDCOM ROX II | 2025-05-13T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-222768 | SSA-222768: Multiple Vulnerabilities in SIRIUS 3SK2 Safety Relays and 3RK3 Modular Safety Systems | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| ssa-162255 | SSA-162255: Multiple Vulnerabilities in Polarion Before V2410 | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| ssa-047424 | SSA-047424: Code Execution and SQL Injection Vulnerabilities in OZW Web Servers | 2025-05-13T00:00:00Z | 2025-05-13T00:00:00Z |
| ssa-443402 | SSA-443402: Multiple SQL Injection Vulnerabilities in TeleControl Server Basic before V3.1.2.2 | 2025-04-16T00:00:00Z | 2025-04-16T00:00:00Z |
| ssa-395348 | SSA-395348: Improper Handling of Length Parameter Inconsistency Vulnerability in TeleControl Server Basic before V3.1.2.2 | 2025-04-16T00:00:00Z | 2025-04-16T00:00:00Z |
| ssa-874353 | SSA-874353: Entity Enumeration Vulnerability in Mendix Runtime | 2025-04-08T00:00:00Z | 2025-06-10T00:00:00Z |
| ssa-819629 | SSA-819629: Weak Authentication Vulnerability in Industrial Edge Device Kit | 2025-04-08T00:00:00Z | 2025-05-13T00:00:00Z |
| ssa-817234 | SSA-817234: Multiple Kubernetes Ingress NGINX Controller Vulnerabilities in Insights Hub Private Cloud | 2025-04-08T00:00:00Z | 2025-04-08T00:00:00Z |
| ssa-672923 | SSA-672923: Out of Bounds Write Vulnerability in Solid Edge | 2025-04-08T00:00:00Z | 2025-04-08T00:00:00Z |
| ssa-525431 | SSA-525431: Privilege Escalation Vulnerabilities in Siemens License Server Before V4.3 | 2025-04-08T00:00:00Z | 2025-04-08T00:00:00Z |
| ssa-277137 | SSA-277137: Multiple Vulnerabilities in SIDIS Prime Before V4.0.700 | 2025-04-08T00:00:00Z | 2025-04-08T00:00:00Z |
| ssa-187636 | SSA-187636: Multiple Vulnerabilities in SENTRON 7KT PAC1260 Data Manager | 2025-04-08T00:00:00Z | 2025-04-08T00:00:00Z |
| ssa-920092 | SSA-920092: Memory Corruption Vulnerability in Simcenter Femap | 2025-03-13T00:00:00Z | 2025-03-13T00:00:00Z |
| ssa-858251 | SSA-858251: Authentication Bypass Vulnerabilities in OPC UA | 2025-03-11T00:00:00Z | 2025-06-10T00:00:00Z |
| ssa-787280 | SSA-787280: Unlocked Bootloader Vulnerability in SINAMICS S200 | 2025-03-11T00:00:00Z | 2025-03-11T00:00:00Z |
| ssa-615740 | SSA-615740: Multiple Vulnerabilities in SINEMA Remote Connect Client Before V3.2 SP3 | 2025-03-11T00:00:00Z | 2025-03-11T00:00:00Z |
| ssa-515903 | SSA-515903: Multiple Vulnerabilities in SiPass integrated AC5102 / ACC-G2 and ACC-AP | 2025-03-11T00:00:00Z | 2025-03-11T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:22066 | Red Hat Security Advisory: kernel security update | 2025-11-25T10:41:59+00:00 | 2025-11-25T21:29:39+00:00 |
| rhsa-2025:22063 | Red Hat Security Advisory: cups security update | 2025-11-25T10:25:49+00:00 | 2025-11-26T15:30:32+00:00 |
| rhsa-2025:22058 | Red Hat Security Advisory: RHTAS 1.3.1 - Tech Preview Release Of the Policy Controller Operator | 2025-11-25T08:59:13+00:00 | 2025-11-25T09:00:41+00:00 |
| rhsa-2025:22051 | Red Hat Security Advisory: tigervnc security update | 2025-11-25T08:39:49+00:00 | 2025-11-26T09:25:17+00:00 |
| rhsa-2025:22055 | Red Hat Security Advisory: tigervnc security update | 2025-11-25T08:31:09+00:00 | 2025-11-26T09:25:14+00:00 |
| rhsa-2025:22056 | Red Hat Security Advisory: tigervnc security update | 2025-11-25T08:24:14+00:00 | 2025-11-26T09:25:14+00:00 |
| rhsa-2025:22033 | Red Hat Security Advisory: expat security update | 2025-11-25T08:03:54+00:00 | 2025-11-26T15:30:39+00:00 |
| rhsa-2025:22030 | Red Hat Security Advisory: podman security update | 2025-11-25T08:02:25+00:00 | 2025-11-27T23:59:22+00:00 |
| rhsa-2025:22040 | Red Hat Security Advisory: xorg-x11-server security update | 2025-11-25T07:57:39+00:00 | 2025-11-26T09:25:12+00:00 |
| rhsa-2025:22041 | Red Hat Security Advisory: tigervnc security update | 2025-11-25T07:56:54+00:00 | 2025-11-26T09:25:20+00:00 |
| rhsa-2025:22034 | Red Hat Security Advisory: expat security update | 2025-11-25T07:36:20+00:00 | 2025-11-26T15:30:40+00:00 |
| rhsa-2025:22035 | Red Hat Security Advisory: expat security update | 2025-11-25T07:17:39+00:00 | 2025-11-26T15:32:44+00:00 |
| rhsa-2025:22019 | Red Hat Security Advisory: pam security update | 2025-11-25T06:23:39+00:00 | 2025-11-25T10:22:50+00:00 |
| rhsa-2025:22011 | Red Hat Security Advisory: buildah security update | 2025-11-25T05:23:44+00:00 | 2025-11-27T23:59:23+00:00 |
| rhsa-2025:22013 | Red Hat Security Advisory: libsoup security update | 2025-11-25T05:12:59+00:00 | 2025-11-25T10:23:10+00:00 |
| rhsa-2025:22014 | Red Hat Security Advisory: cert-manager Operator for Red Hat OpenShift 1.15.2 | 2025-11-25T05:10:51+00:00 | 2025-11-29T06:53:25+00:00 |
| rhsa-2025:22012 | Red Hat Security Advisory: buildah security update | 2025-11-25T05:03:24+00:00 | 2025-11-27T23:59:21+00:00 |
| rhsa-2025:21148 | Red Hat Security Advisory: Red Hat build of Cryostat 4.1.0: new RHEL 9 container image security update | 2025-11-25T02:09:04+00:00 | 2025-11-26T15:51:11+00:00 |
| rhsa-2025:22005 | Red Hat Security Advisory: go-rpm-macros security update | 2025-11-25T01:21:20+00:00 | 2025-11-26T21:27:42+00:00 |
| rhsa-2025:22004 | Red Hat Security Advisory: go-rpm-macros security update | 2025-11-25T01:11:08+00:00 | 2025-11-26T21:27:38+00:00 |
| rhsa-2025:22006 | Red Hat Security Advisory: kernel security update | 2025-11-25T00:47:13+00:00 | 2025-11-25T21:29:44+00:00 |
| rhsa-2025:21994 | Red Hat Security Advisory: A Subscription Management tool for finding and reporting Red Hat product usage | 2025-11-24T19:34:28+00:00 | 2025-11-27T03:24:38+00:00 |
| rhsa-2025:21988 | Red Hat Security Advisory: RHTAS 1.3.1 - Red Hat Trusted Artifact Signer Release | 2025-11-24T17:31:18+00:00 | 2025-11-25T09:00:41+00:00 |
| rhsa-2025:21984 | Red Hat Security Advisory: RHTAS 1.3.1 - Red Hat Trusted Artifact Signer Release | 2025-11-24T17:11:01+00:00 | 2025-11-25T09:00:41+00:00 |
| rhsa-2025:21977 | Red Hat Security Advisory: libssh security update | 2025-11-24T17:08:07+00:00 | 2025-11-25T21:29:36+00:00 |
| rhsa-2025:21981 | Red Hat Security Advisory: RHTAS 1.3.1 - Red Hat Trusted Artifact Signer Release | 2025-11-24T16:47:41+00:00 | 2025-11-25T09:00:39+00:00 |
| rhsa-2025:21974 | Red Hat Security Advisory: mingw-expat security update | 2025-11-24T16:17:17+00:00 | 2025-11-26T15:32:43+00:00 |
| rhsa-2025:21976 | Red Hat Security Advisory: RHTAS 1.3.1 - Red Hat Trusted Artifact Signer Release | 2025-11-24T16:14:59+00:00 | 2025-11-25T09:00:39+00:00 |
| rhsa-2025:21968 | Red Hat Security Advisory: gimp security update | 2025-11-24T15:50:17+00:00 | 2025-11-24T21:03:29+00:00 |
| rhsa-2025:21964 | Red Hat Security Advisory: buildah security update | 2025-11-24T15:01:52+00:00 | 2025-11-27T23:59:20+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-62560 | Microsoft Excel Remote Code Execution Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-17T08:00:00.000Z |
| msrc_cve-2025-62559 | Microsoft Word Remote Code Execution Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-17T08:00:00.000Z |
| msrc_cve-2025-62558 | Microsoft Word Remote Code Execution Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-17T08:00:00.000Z |
| msrc_cve-2025-62557 | Microsoft Office Remote Code Execution Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-17T08:00:00.000Z |
| msrc_cve-2025-62556 | Microsoft Excel Remote Code Execution Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-17T08:00:00.000Z |
| msrc_cve-2025-62555 | Microsoft Word Remote Code Execution Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-17T08:00:00.000Z |
| msrc_cve-2025-62554 | Microsoft Office Remote Code Execution Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-17T08:00:00.000Z |
| msrc_cve-2025-62553 | Microsoft Excel Remote Code Execution Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-62552 | Microsoft Access Remote Code Execution Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-62550 | Azure Monitor Agent Remote Code Execution Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-62549 | Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-62474 | Windows Remote Access Connection Manager Elevation of Privilege Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-62473 | Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-62472 | Windows Remote Access Connection Manager Elevation of Privilege Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-62470 | Windows Common Log File System Driver Elevation of Privilege Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-62469 | Microsoft Brokering File System Elevation of Privilege Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-62468 | Windows Defender Firewall Service Information Disclosure Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-12T08:00:00.000Z |
| msrc_cve-2025-62467 | Windows Projected File System Elevation of Privilege Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-62466 | Windows Client-Side Caching Elevation of Privilege Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-62465 | DirectX Graphics Kernel Denial of Service Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-62464 | Windows Projected File System Elevation of Privilege Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-62463 | DirectX Graphics Kernel Denial of Service Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-62462 | Windows Projected File System Elevation of Privilege Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-62461 | Windows Projected File System Elevation of Privilege Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-62458 | Win32k Elevation of Privilege Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-62457 | Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-62456 | Windows Resilient File System (ReFS) Remote Code Execution Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-62455 | Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-62454 | Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-62221 | Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-25-338-06 | SolisCloud Monitoring Platform | 2025-12-04T07:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-338-05 | Sunbird DCIM dcTrack and Power IQ | 2025-12-04T07:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-338-04 | Johnson Controls iSTAR | 2025-12-04T07:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-338-03 | Johnson Controls OpenBlue Mobile Web Application for OpenBlue Workplace | 2025-12-04T07:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-338-02 | MAXHUB Pivot | 2025-12-04T07:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-338-01 | Mitsubishi Electric GX Works2 | 2025-12-04T07:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsma-25-336-01 | Mirion Medical EC2 Software NMIS BioDose | 2025-12-02T07:00:00.000000Z | 2025-12-02T07:00:00.000000Z |
| icsa-25-336-02 | Iskra iHUB and iHUB Lite | 2025-12-02T07:00:00.000000Z | 2025-12-02T07:00:00.000000Z |
| icsa-25-336-01 | Industrial Video & Control Longwatch | 2025-12-02T07:00:00.000000Z | 2025-12-02T07:00:00.000000Z |
| icsa-25-329-06 | SiRcom SMART Alert (SiSA) | 2025-11-25T07:00:00.000000Z | 2025-11-25T07:00:00.000000Z |
| icsa-25-329-05 | Festo Compact Vision System, Control Block, Controller, and Operator Unit products | 2025-11-25T07:00:00.000000Z | 2025-11-25T07:00:00.000000Z |
| icsa-25-329-03 | Zenitel TCIV-3+ | 2025-11-25T07:00:00.000000Z | 2025-11-25T07:00:00.000000Z |
| icsa-25-329-02 | Rockwell Automation Arena Simulation | 2025-11-25T07:00:00.000000Z | 2025-11-25T07:00:00.000000Z |
| icsa-25-329-01 | Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share | 2025-11-25T07:00:00.000000Z | 2025-11-25T07:00:00.000000Z |
| icsa-25-329-04 | Opto 22 groov View | 2025-11-25T06:00:00.000000Z | 2025-11-25T06:00:00.000000Z |
| icsa-25-324-06 | Emerson Appleton UPSMON-PRO | 2025-11-20T07:00:00.000000Z | 2025-11-20T07:00:00.000000Z |
| icsa-25-324-01 | Automated Logic WebCTRL Premium Server | 2025-11-20T07:00:00.000000Z | 2025-11-20T07:00:00.000000Z |
| icsa-25-324-03 | Opto 22 GRV-EPIC and groov RIO | 2025-11-20T06:00:00.000000Z | 2025-11-20T06:00:00.000000Z |
| icsa-25-324-02 | ICAM365 CCTV Camera Multiple Models | 2025-11-20T06:00:00.000000Z | 2025-11-20T06:00:00.000000Z |
| icsa-25-322-05 | METZ CONNECT EWIO2 | 2025-11-18T12:00:00.000000Z | 2025-11-18T12:00:00.000000Z |
| icsa-25-322-03 | Shelly Pro 3EM | 2025-11-18T07:00:00.000000Z | 2025-11-18T07:00:00.000000Z |
| icsa-25-322-02 | Shelly Pro 4PM | 2025-11-18T07:00:00.000000Z | 2025-11-18T07:00:00.000000Z |
| icsa-25-317-12 | Siemens Spectrum Power 4 | 2025-11-13T07:00:00.000000Z | 2025-11-13T07:00:00.000000Z |
| icsa-25-317-11 | Siemens SICAM P850 family and SICAM P855 family | 2025-11-13T07:00:00.000000Z | 2025-11-13T07:00:00.000000Z |
| icsa-25-317-10 | *Rockwell Automation AADvance-Trusted SIS Workstation * | 2025-11-13T07:00:00.000000Z | 2025-11-13T07:00:00.000000Z |
| icsa-25-317-09 | Rockwell Automation FactoryTalk Policy Manager | 2025-11-13T07:00:00.000000Z | 2025-11-13T07:00:00.000000Z |
| icsa-25-317-07 | Rockwell Automation FactoryTalk DataMosaix Private Cloud | 2025-11-13T07:00:00.000000Z | 2025-11-13T07:00:00.000000Z |
| icsa-25-317-06 | Rockwell Automation Studio 5000 Simulation Interface | 2025-11-13T07:00:00.000000Z | 2025-11-13T07:00:00.000000Z |
| icsa-25-317-05 | Rockwell Automation Verve Asset Manager | 2025-11-13T07:00:00.000000Z | 2025-11-13T07:00:00.000000Z |
| icsa-25-317-04 | Brightpick Mission Control / Internal Logic Control | 2025-11-13T07:00:00.000000Z | 2025-11-13T07:00:00.000000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2025-000095 | MZK-DP300N uses hard-coded credentials | 2025-10-28T14:04+09:00 | 2025-10-28T14:04+09:00 |
| jvndb-2025-000093 | Multiple stored cross-site scripting vulnerabilities in Pleasanter | 2025-10-24T15:11+09:00 | 2025-10-24T15:11+09:00 |
| jvndb-2025-000084 | GROWI vulnerable to cross-site scripting | 2025-10-22T15:44+09:00 | 2025-10-22T15:44+09:00 |
| jvndb-2025-000091 | Multiple I-O DATA NAS management applications register Windows services with unquoted file paths | 2025-10-22T15:04+09:00 | 2025-12-10T16:20+09:00 |
| jvndb-2025-000090 | Multiple stored cross-site scripting vulnerabilities in Movable Type | 2025-10-22T13:54+09:00 | 2025-10-22T13:54+09:00 |
| jvndb-2025-000088 | Lanscope Endpoint Manager (On-Premises) vulnerable to improper verification of source of a communication channel | 2025-10-20T16:17+09:00 | 2025-10-22T10:06+09:00 |
| jvndb-2025-000092 | ETERNUS SF vulnerable to incorrect default permissions | 2025-10-20T14:20+09:00 | 2025-10-20T14:20+09:00 |
| jvndb-2025-000089 | Installer of AutoDownloader may insecurely load Dynamic Link Libraries | 2025-10-17T13:38+09:00 | 2025-10-17T13:38+09:00 |
| jvndb-2025-000074 | Multiple vulnerabilities in desknet's NEO | 2025-10-16T17:30+09:00 | 2025-10-16T17:30+09:00 |
| jvndb-2025-000076 | Multiple vulnerabilities in ChatLuck | 2025-10-16T17:17+09:00 | 2025-10-16T17:17+09:00 |
| jvndb-2025-000087 | Ruijie Networks RG-EST300 undocumented SSH functionality | 2025-10-16T14:19+09:00 | 2025-10-16T14:19+09:00 |
| jvndb-2025-016124 | Buffalo Wi-Fi router WXR9300BE6P series vulnerable to path traversal | 2025-10-16T11:16+09:00 | 2025-10-16T11:16+09:00 |
| jvndb-2025-000085 | Multiple RSUPPORT products may insecurely load Dynamic Link Libraries | 2025-10-15T15:55+09:00 | 2025-10-15T15:55+09:00 |
| jvndb-2025-000086 | Phoenix Contact CHARX SEC-3xxx vulnerable to code injection | 2025-10-15T15:54+09:00 | 2025-10-15T15:54+09:00 |
| jvndb-2025-000083 | BUFFALO NAS Navigator2 registers a Windows service with an unquoted file path | 2025-10-10T13:56+09:00 | 2025-10-10T13:56+09:00 |
| jvndb-2025-015451 | Multiple vulnerabilities in FUJI Electric V-SFT | 2025-10-09T13:39+09:00 | 2025-10-09T13:39+09:00 |
| jvndb-2025-000082 | The installers of DENSO TEN drive recorder viewer may insecurely load Dynamic Link Libraries | 2025-10-06T15:38+09:00 | 2025-10-06T15:38+09:00 |
| jvndb-2025-015061 | Trend Micro Antivirus for Mac vulnerable to Local Privilege Escalation | 2025-10-06T13:52+09:00 | 2025-10-06T13:52+09:00 |
| jvndb-2025-014967 | Multiple vulnerabilities in multiple Keyence products | 2025-10-03T11:19+09:00 | 2025-12-23T14:36+09:00 |
| jvndb-2025-014793 | NIHON KOHDEN Central Monitor CNS-6201 vulnerable to NULL pointer dereference | 2025-10-01T11:35+09:00 | 2025-10-27T12:28+09:00 |
| jvndb-2025-014642 | Multiple vulnerabilities in Canon Printer Drivers for Production Printers, Office/Small Office Multifunction Printers and Laser Printers | 2025-09-30T11:50+09:00 | 2025-09-30T11:50+09:00 |
| jvndb-2025-000081 | DataSpider Servista improper restriction of XML external entity references | 2025-09-29T14:44+09:00 | 2025-10-07T16:54+09:00 |
| jvndb-2025-014105 | OMRON SOCIAL SOLUTIONS Uninterruptible Power Supply (UPS) management application registers a Windows service with an unquoted file path | 2025-09-19T16:21+09:00 | 2025-09-19T16:21+09:00 |
| jvndb-2025-014104 | Multiple vulnerabilities in I-O DATA wireless LAN routers | 2025-09-19T14:58+09:00 | 2025-09-19T14:58+09:00 |
| jvndb-2025-014081 | Multiple Brother and its OEM products with weak initial administrator passwords | 2025-09-19T10:52+09:00 | 2025-09-19T10:52+09:00 |
| jvndb-2025-000079 | UNIVERGE IX/IX-R/IX-V series routers provided by NEC Corporation vulnerable to cross-site scripting | 2025-09-18T17:43+09:00 | 2025-09-18T17:43+09:00 |
| jvndb-2025-000078 | Century HW RAID Manager registers a Windows service with an unquoted file path | 2025-09-17T13:45+09:00 | 2025-09-17T13:45+09:00 |
| jvndb-2025-000048 | WTW-EAGLE App vulnerable to improper server certificate validation | 2025-09-12T13:57+09:00 | 2025-09-12T13:57+09:00 |
| jvndb-2025-000077 | RICOH Streamline NX vulnerable to tampering with operation history | 2025-09-08T13:42+09:00 | 2025-09-24T16:53+09:00 |
| jvndb-2025-000072 | Obsidian GitHub Copilot Plugin stores sensitive information in cleartext | 2025-09-05T16:52+09:00 | 2025-09-05T16:52+09:00 |
| ID | Description | Updated |
|---|