Recent vulnerabilities

ID	Description	Published	Updated
ghsa-4hfm-3834-w3r8	Riello UPS NetMan 208 Application before 1.12 allows cgi-bin/loginbanner_w.cgi XSS via a crafted banner.	2025-12-24T21:30:34Z	2025-12-24T21:30:34Z
ghsa-2gg3-j2hg-72f4	VideoFlow Digital Video Protection DVP 2.10 contains an authenticated directory traversal vulnerabi…	2025-12-24T21:30:34Z	2025-12-24T21:30:34Z
ghsa-x3j6-h5jv-f97w	Rifatron 5brid DVR contains an unauthenticated vulnerability in the animate.cgi script that allows …	2025-12-24T21:30:33Z	2025-12-24T21:30:33Z
ghsa-vq8q-pgj7-r79w	Devolo dLAN 500 AV Wireless+ 3.1.0-1 contains a cross-site request forgery vulnerability that allow…	2025-12-24T21:30:33Z	2025-12-24T21:30:33Z
ghsa-rc3h-p7vv-v9x3	Beward N100 H.264 VGA IP Camera M2.1.6 contains a cross-site request forgery vulnerability that all…	2025-12-24T21:30:33Z	2025-12-24T21:30:33Z
ghsa-qmhc-vf98-cwmf	Ross Video DashBoard 8.5.1 contains an elevation of privileges vulnerability that allows authentica…	2025-12-24T21:30:33Z	2025-12-24T21:30:33Z
ghsa-pmc3-hmfh-583m	iSeeQ Hybrid DVR WH-H4 1.03R contains an unauthenticated vulnerability in the get_jpeg script that …	2025-12-24T21:30:33Z	2025-12-24T21:30:33Z
ghsa-p8qm-v86v-r6gq	FaceSentry Access Control System 6.4.8 contains a critical authentication vulnerability with hard-c…	2025-12-24T21:30:33Z	2025-12-24T21:30:33Z
ghsa-p7cm-25mc-8h96	SmartHouse Webapp 6.5.33 contains multiple cross-site request forgery and cross-site scripting vuln…	2025-12-24T21:30:33Z	2025-12-24T21:30:33Z
ghsa-p782-2pf9-qvmm	devolo dLAN 500 AV Wireless+ 3.1.0-1 contains an authentication bypass vulnerability that allows at…	2025-12-24T21:30:33Z	2025-12-24T21:30:33Z
ghsa-p43h-75mm-qgfv	FaceSentry Access Control System 6.4.8 contains a cross-site request forgery vulnerability that all…	2025-12-24T21:30:33Z	2025-12-24T21:30:33Z
ghsa-mfqx-6pfv-xp5p	Beward N100 H.264 VGA IP Camera M2.1.6 contains an authenticated file disclosure vulnerability that…	2025-12-24T21:30:33Z	2025-12-24T21:30:33Z
ghsa-jj2g-vwxg-qv6m	AVE DOMINAplus 1.10.x contains cross-site request forgery and cross-site scripting vulnerabilities …	2025-12-24T21:30:32Z	2025-12-24T21:30:33Z
ghsa-cfpm-r69w-j97p	V-SOL GPON/EPON OLT Platform 2.03 contains a cross-site request forgery vulnerability that allows a…	2025-12-24T21:30:33Z	2025-12-24T21:30:33Z
ghsa-8cmh-3qph-fccm	FaceSentry 6.4.8 contains an authenticated remote command injection vulnerability in pingTest.php a…	2025-12-24T21:30:33Z	2025-12-24T21:30:33Z
ghsa-6fff-m75x-hprm	Legrand BTicino Driver Manager F454 1.0.51 contains multiple web vulnerabilities that allow attacke…	2025-12-24T21:30:33Z	2025-12-24T21:30:33Z
ghsa-4h7f-qwj6-qpx3	Beward N100 M2.1.6.04C014 contains an unauthenticated vulnerability that allows remote attackers to…	2025-12-24T21:30:33Z	2025-12-24T21:30:33Z
ghsa-46cm-29f3-f9rv	V-SOL GPON/EPON OLT Platform v2.03 contains a privilege escalation vulnerability that allows normal…	2025-12-24T21:30:33Z	2025-12-24T21:30:33Z
ghsa-43qf-qj5j-5r47	V-SOL GPON/EPON OLT Platform 2.03 contains an unauthenticated information disclosure vulnerability …	2025-12-24T21:30:33Z	2025-12-24T21:30:33Z
ghsa-2gww-fh48-p92f	Smartwares HOME easy 1.0.9 contains an authentication bypass vulnerability that allows unauthentica…	2025-12-24T21:30:33Z	2025-12-24T21:30:33Z
ghsa-x8gg-ghxq-c254	Microhard Systems IPn4G 1.1.0 contains a service vulnerability that allows authenticated users to e…	2025-12-24T21:30:31Z	2025-12-24T21:30:32Z
ghsa-r64v-2m5c-fmx7	Microhard Systems IPn4G 1.1.0 contains hardcoded default credentials that cannot be changed through…	2025-12-24T21:30:32Z	2025-12-24T21:30:32Z
ghsa-m2m8-9ppp-q3c7	Teradek Cube 7.3.6 contains a cross-site request forgery vulnerability that allows attackers to cha…	2025-12-24T21:30:32Z	2025-12-24T21:30:32Z
ghsa-jmmc-j836-r5v7	Microhard Systems IPn4G 1.1.0 contains multiple authenticated remote code execution vulnerabilities…	2025-12-24T21:30:32Z	2025-12-24T21:30:32Z
ghsa-gpch-6qpg-rp8g	Microhard Systems IPn4G 1.1.0 contains an authentication bypass vulnerability in the hidden system-…	2025-12-24T21:30:31Z	2025-12-24T21:30:32Z
ghsa-g4f4-x2rq-h8g8	Ecessa ShieldLink SL175EHQ 10.7.4 contains a cross-site request forgery vulnerability that allows a…	2025-12-24T21:30:32Z	2025-12-24T21:30:32Z
ghsa-fv28-hc36-43g9	GNU Barcode 0.99 contains a buffer overflow vulnerability in its code 93 encoding process that allo…	2025-12-24T21:30:32Z	2025-12-24T21:30:32Z
ghsa-cm58-6j6x-c433	Microhard Systems IPn4G 1.1.0 contains a configuration file disclosure vulnerability that allows au…	2025-12-24T21:30:32Z	2025-12-24T21:30:32Z
ghsa-9wqg-38fc-34m9	Microhard Systems IPn4G 1.1.0 contains an undocumented vulnerability that allows authenticated atta…	2025-12-24T21:30:31Z	2025-12-24T21:30:32Z
ghsa-86rg-f667-jpq7	Teradek Slice 7.3.15 contains a cross-site request forgery vulnerability that allows attackers to c…	2025-12-24T21:30:32Z	2025-12-24T21:30:32Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2018-25135	9.3 (v4.0) 9.8 (v3.1)	Anviz AIM CrossChex Standard 4.3.6.0 CSV Injection via…	Anviz Biometric Technology Co., Ltd.	Anviz AIM CrossChex Standard	2025-12-24T19:27:45.375Z	2025-12-24T20:26:41.287Z
cve-2018-25136	8.7 (v4.0) 7.5 (v3.1)	FLIR Brickstream 3D+ 2.1.742.1842 Unauthenticated RTSP…	FLIR Systems, Inc.	Brickstream 3D+	2025-12-24T19:27:45.779Z	2025-12-24T20:26:35.205Z
cve-2018-25137	8.7 (v4.0) 7.5 (v3.1)	FLIR Brickstream 3D+ 2.1.742.1842 Unauthenticated Conf…	FLIR Systems, Inc.	FLIR Brickstream 3D+	2025-12-24T19:27:46.300Z	2025-12-24T20:26:28.490Z
cve-2018-25138	9.3 (v4.0) 7.5 (v3.1)	FLIR AX8 Thermal Camera 1.32.16 Hard-Coded Credentials…	FLIR Systems	FLIR AX8 Thermal Camera	2025-12-24T19:27:46.730Z	2025-12-24T20:26:22.231Z
cve-2018-25139	8.7 (v4.0) 7.5 (v3.1)	FLIR AX8 Thermal Camera 1.32.16 Unauthenticated RTSP S…	FLIR Systems, Inc.	FLIR AX8 Thermal Camera	2025-12-24T19:27:47.117Z	2025-12-24T20:26:15.968Z
cve-2018-25140	9.3 (v4.0) 7.5 (v3.1)	FLIR Thermal Traffic Cameras V1.01-0bb5b27 Unauthentic…	FLIR Systems, Inc.	Thermal Traffic Cameras	2025-12-24T19:27:47.524Z	2025-12-24T20:26:09.413Z
cve-2018-25141	8.7 (v4.0) 7.5 (v3.1)	FLIR Thermal Traffic Cameras V1.01-0bb5b27 Unauthentic…	FLIR	FLIR Thermal Traffic Cameras	2025-12-24T19:27:47.928Z	2025-12-24T20:26:01.745Z
cve-2018-25142	7.1 (v4.0) 9.8 (v3.1)	NovaRad NovaPACS Diagnostics Viewer 8.5 XML External E…	NovaRad Corporation	NovaPACS Diagnostics Viewer	2025-12-24T19:27:48.350Z	2025-12-24T20:25:54.871Z
cve-2018-25143	8.7 (v4.0) 8.8 (v3.1)	Microhard Systems IPn4G 1.1.0 Backdoor Jailbreak via M…	Microhard Systems	Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Backdoor Jailbreak	2025-12-24T19:27:48.742Z	2025-12-24T20:25:48.441Z
cve-2018-25144	8.7 (v4.0) 5.5 (v3.1)	Microhard Systems IPn4G 1.1.0 Arbitrary File Access vi…	Microhard Systems	Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Arbitrary File Attacks	2025-12-24T19:27:49.167Z	2025-12-24T20:25:41.747Z
cve-2018-25145	7.1 (v4.0) 6.5 (v3.1)	Microhard Systems IPn4G 1.1.0 Configuration Disclosure…	Microhard Systems	Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Configuration Download	2025-12-24T19:27:49.597Z	2025-12-24T20:25:35.251Z
cve-2018-25146	7.1 (v4.0) 6.5 (v3.1)	Microhard Systems IPn4G 1.1.0 Service Control Denial o…	Microhard Systems	Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Service Control DoS	2025-12-24T19:27:50.006Z	2025-12-24T20:25:28.526Z
cve-2018-25147	9.3 (v4.0) 7.5 (v3.1)	Microhard Systems IPn4G 1.1.0 Default Credentials Auth…	Microhard Systems	Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Default Credentials	2025-12-24T19:27:50.490Z	2025-12-24T20:25:21.195Z
cve-2018-25148	8.7 (v4.0) 8.8 (v3.1)	Microhard Systems IPn4G 1.1.0 Remote Code Execution vi…	Microhard Systems	Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Remote Root Exploit	2025-12-24T19:27:50.947Z	2025-12-24T20:25:14.760Z
cve-2018-25149	5.1 (v4.0) 4.3 (v3.1)	Microhard Systems IPn4G 1.1.0 Cross-Site Request Forge…	Microhard Systems	Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway CSRF Vulnerabilities	2025-12-24T19:27:51.383Z	2025-12-24T20:25:07.980Z
cve-2018-25150	5.1 (v4.0) 5.3 (v3.1)	Ecessa ShieldLink SL175EHQ 10.7.4 Cross-Site Request F…	Ecessa Corporation	Ecessa ShieldLink SL175EHQ	2025-12-24T19:27:51.814Z	2025-12-24T20:24:59.684Z
cve-2018-25151	5.1 (v4.0) 4.3 (v3.1)	Ecessa WANWorx WVR-30 < 10.7.4 Cross-Site Request Forg…	Ecessa Corporation	WANWorx WVR-30	2025-12-24T19:27:52.222Z	2025-12-24T20:24:53.133Z
cve-2018-25152	5.1 (v4.0) 5.3 (v3.1)	Ecessa Edge EV150 10.7.4 Cross-Site Request Forgery vi…	Ecessa Corporation	Ecessa Edge EV150	2025-12-24T19:27:52.680Z	2025-12-24T20:24:45.919Z
cve-2018-25153	6.9 (v4.0) 7.5 (v3.1)	GNU Barcode 0.99 Memory Leak Vulnerability in Command …	The GNU Project \| Free Software Foundation, Inc.	GNU Barcode	2025-12-24T19:27:53.062Z	2025-12-24T20:24:39.099Z
cve-2018-25154	8.5 (v4.0) 9.8 (v3.1)	GNU Barcode 0.99 Buffer Overflow in Code 93 Encoding M…	The GNU Project \| Free Software Foundation, Inc.	GNU Barcode	2025-12-24T19:27:53.486Z	2025-12-24T20:24:32.336Z
cve-2018-25155	5.1 (v4.0) 5.3 (v3.1)	Teradek Slice 7.3.15 Cross-Site Request Forgery via Pa…	Teradek, LLC	Slice	2025-12-24T19:27:53.919Z	2025-12-24T20:24:25.555Z
cve-2018-25156	5.1 (v4.0) 5.3 (v3.1)	Teradek Cube 7.3.6 Cross-Site Request Forgery Password…	Teradek, LLC	Cube	2025-12-24T19:27:54.324Z	2025-12-24T20:24:19.107Z
cve-2019-25233	5.1 (v4.0) 5.3 (v3.1)	AVE DOMINAplus 1.10.x Cross-Site Request Forgery and X…	AVE S.p.A.	DOMINAplus	2025-12-24T19:27:54.735Z	2025-12-24T20:24:12.386Z
cve-2019-25234	5.1 (v4.0) 5.3 (v3.1)	Carlo Gavazzi SmartHouse Webapp 6.5.33 Cross-Site Requ…	Carlo Gavazzi AB	SmartHouse Webapp	2025-12-24T19:27:55.152Z	2025-12-24T20:24:05.780Z
cve-2019-25235	8.8 (v4.0) 9.8 (v3.1)	Smartwares HOME easy 1.0.9 Client-Side Authentication …	Smartwares	Smartwares HOME easy	2025-12-24T19:27:55.565Z	2025-12-24T20:23:58.323Z
cve-2019-25236	8.7 (v4.0) 9.8 (v3.1)	iSeeQ Hybrid DVR WH-H4 1.03R Unauthenticated Live Stre…	iSeeQ	Hybrid DVR WH-H4	2025-12-24T19:27:55.979Z	2025-12-24T20:23:52.108Z
cve-2019-25237	8.7 (v4.0) 9.8 (v3.1)	V-SOL GPON/EPON OLT Platform 2.03 Privilege Escalation…	Guangzhou V-SOLUTION Electronic Technology Co., Ltd.	SOL GPON/EPON OLT Platform	2025-12-24T19:27:56.411Z	2025-12-24T20:23:45.916Z
cve-2019-25238	5.1 (v4.0) 4.3 (v3.1)	V-SOL GPON/EPON OLT Platform 2.03 Cross-Site Request F…	Guangzhou V-SOLUTION Electronic Technology Co., Ltd.	SOL GPON/EPON OLT Platform	2025-12-24T19:27:56.801Z	2025-12-24T20:23:38.963Z
cve-2019-25239	8.7 (v4.0) 7.5 (v3.1)	V-SOL GPON/EPON OLT Platform 2.03 Unauthenticated Conf…	Guangzhou V-SOLUTION Electronic Technology	GPON/EPON OLT Platform	2025-12-24T19:27:57.201Z	2025-12-24T20:23:32.107Z
cve-2019-25240	8.7 (v4.0) 9.8 (v3.1)	Rifatron 5brid DVR 5brid DVR (HD6-532/516, DX6-516/508…	Rifatron Co., Ltd.	DVR	2025-12-24T19:27:57.698Z	2025-12-24T20:23:25.132Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2019-25250	5.1 (v4.0) 5.3 (v3.1)	Devolo dLAN 500 AV Wireless+ 3.1.0-1 Cross-Site Reques…	devolo AG	dLAN 550 duo+ Starter Kit	2025-12-24T19:28:03.241Z	2025-12-24T20:22:20.223Z
cve-2019-25249	8.7 (v4.0) 9.8 (v3.1)	devolo dLAN 500 AV Wireless+ 3.1.0-1 Remote Code Execu…	devolo AG	dLAN 550 duo+ Starter Kit	2025-12-24T19:28:02.779Z	2025-12-24T20:22:26.831Z
cve-2019-25248	8.7 (v4.0) 7.5 (v3.1)	Beward N100 M2.1.6 Unauthenticated RTSP Video Stream D…	Beward	N100 H.264 VGA IP Camera	2025-12-24T19:28:02.157Z	2025-12-24T20:22:33.063Z
cve-2019-25247	5.1 (v4.0) 5.3 (v3.1)	Beward N100 H.264 VGA IP Camera M2.1.6 CSRF Add Admin …	Beward R&D Co., Ltd	N100 H.264 VGA IP Camera	2025-12-24T19:28:00.994Z	2025-12-24T20:22:39.710Z
cve-2019-25246	7.1 (v4.0) 8.8 (v3.1)	Beward N100 H.264 VGA IP Camera M2.1.6 Authenticated F…	Beward R&D Co., Ltd	N100 H.264 VGA IP Camera	2025-12-24T19:28:00.474Z	2025-12-24T20:22:45.916Z
cve-2019-25245	8.5 (v4.0) 8.8 (v3.1)	Ross Video DashBoard 8.5.1 Privilege Escalation via In…	Ross Video Ltd.	DashBoard	2025-12-24T19:27:59.816Z	2025-12-24T20:22:52.203Z
cve-2019-25244	5.1 (v4.0) 5.3 (v3.1)	Legrand BTicino Driver Manager F454 1.0.51 CSRF and St…	BTicino S.p.A.	Legrand BTicino Driver Manager F454	2025-12-24T19:27:59.384Z	2025-12-24T20:22:58.420Z
cve-2019-25243	8.7 (v4.0) 8.8 (v3.1)	FaceSentry 6.4.8 Authenticated Remote Command Injectio…	iWT Ltd.	FaceSentry Access Control System	2025-12-24T19:27:58.965Z	2025-12-24T20:23:05.664Z
cve-2019-25242	5.1 (v4.0) 4.3 (v3.1)	FaceSentry Access Control System 6.4.8 Cross-Site Requ…	iWT Ltd.	FaceSentry Access Control System	2025-12-24T19:27:58.523Z	2025-12-24T20:23:12.300Z
cve-2019-25241	9.3 (v4.0) 7.5 (v3.1)	FaceSentry Access Control System 6.4.8 Remote SSH Root…	iWT Ltd.	FaceSentry Access Control System	2025-12-24T19:27:58.126Z	2025-12-24T20:23:18.700Z
cve-2019-25240	8.7 (v4.0) 9.8 (v3.1)	Rifatron 5brid DVR 5brid DVR (HD6-532/516, DX6-516/508…	Rifatron Co., Ltd.	DVR	2025-12-24T19:27:57.698Z	2025-12-24T20:23:25.132Z
cve-2019-25239	8.7 (v4.0) 7.5 (v3.1)	V-SOL GPON/EPON OLT Platform 2.03 Unauthenticated Conf…	Guangzhou V-SOLUTION Electronic Technology	GPON/EPON OLT Platform	2025-12-24T19:27:57.201Z	2025-12-24T20:23:32.107Z
cve-2019-25238	5.1 (v4.0) 4.3 (v3.1)	V-SOL GPON/EPON OLT Platform 2.03 Cross-Site Request F…	Guangzhou V-SOLUTION Electronic Technology Co., Ltd.	SOL GPON/EPON OLT Platform	2025-12-24T19:27:56.801Z	2025-12-24T20:23:38.963Z
cve-2019-25237	8.7 (v4.0) 9.8 (v3.1)	V-SOL GPON/EPON OLT Platform 2.03 Privilege Escalation…	Guangzhou V-SOLUTION Electronic Technology Co., Ltd.	SOL GPON/EPON OLT Platform	2025-12-24T19:27:56.411Z	2025-12-24T20:23:45.916Z
cve-2019-25236	8.7 (v4.0) 9.8 (v3.1)	iSeeQ Hybrid DVR WH-H4 1.03R Unauthenticated Live Stre…	iSeeQ	Hybrid DVR WH-H4	2025-12-24T19:27:55.979Z	2025-12-24T20:23:52.108Z
cve-2019-25235	8.8 (v4.0) 9.8 (v3.1)	Smartwares HOME easy 1.0.9 Client-Side Authentication …	Smartwares	Smartwares HOME easy	2025-12-24T19:27:55.565Z	2025-12-24T20:23:58.323Z
cve-2019-25234	5.1 (v4.0) 5.3 (v3.1)	Carlo Gavazzi SmartHouse Webapp 6.5.33 Cross-Site Requ…	Carlo Gavazzi AB	SmartHouse Webapp	2025-12-24T19:27:55.152Z	2025-12-24T20:24:05.780Z
cve-2019-25233	5.1 (v4.0) 5.3 (v3.1)	AVE DOMINAplus 1.10.x Cross-Site Request Forgery and X…	AVE S.p.A.	DOMINAplus	2025-12-24T19:27:54.735Z	2025-12-24T20:24:12.386Z
cve-2018-25156	5.1 (v4.0) 5.3 (v3.1)	Teradek Cube 7.3.6 Cross-Site Request Forgery Password…	Teradek, LLC	Cube	2025-12-24T19:27:54.324Z	2025-12-24T20:24:19.107Z
cve-2018-25155	5.1 (v4.0) 5.3 (v3.1)	Teradek Slice 7.3.15 Cross-Site Request Forgery via Pa…	Teradek, LLC	Slice	2025-12-24T19:27:53.919Z	2025-12-24T20:24:25.555Z
cve-2018-25149	5.1 (v4.0) 4.3 (v3.1)	Microhard Systems IPn4G 1.1.0 Cross-Site Request Forge…	Microhard Systems	Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway CSRF Vulnerabilities	2025-12-24T19:27:51.383Z	2025-12-24T20:25:07.980Z
cve-2018-25148	8.7 (v4.0) 8.8 (v3.1)	Microhard Systems IPn4G 1.1.0 Remote Code Execution vi…	Microhard Systems	Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Remote Root Exploit	2025-12-24T19:27:50.947Z	2025-12-24T20:25:14.760Z
cve-2018-25147	9.3 (v4.0) 7.5 (v3.1)	Microhard Systems IPn4G 1.1.0 Default Credentials Auth…	Microhard Systems	Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Default Credentials	2025-12-24T19:27:50.490Z	2025-12-24T20:25:21.195Z
cve-2018-25146	7.1 (v4.0) 6.5 (v3.1)	Microhard Systems IPn4G 1.1.0 Service Control Denial o…	Microhard Systems	Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Service Control DoS	2025-12-24T19:27:50.006Z	2025-12-24T20:25:28.526Z
cve-2018-25145	7.1 (v4.0) 6.5 (v3.1)	Microhard Systems IPn4G 1.1.0 Configuration Disclosure…	Microhard Systems	Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Configuration Download	2025-12-24T19:27:49.597Z	2025-12-24T20:25:35.251Z
cve-2018-25144	8.7 (v4.0) 5.5 (v3.1)	Microhard Systems IPn4G 1.1.0 Arbitrary File Access vi…	Microhard Systems	Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Arbitrary File Attacks	2025-12-24T19:27:49.167Z	2025-12-24T20:25:41.747Z
cve-2018-25143	8.7 (v4.0) 8.8 (v3.1)	Microhard Systems IPn4G 1.1.0 Backdoor Jailbreak via M…	Microhard Systems	Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Backdoor Jailbreak	2025-12-24T19:27:48.742Z	2025-12-24T20:25:48.441Z
cve-2018-25142	7.1 (v4.0) 9.8 (v3.1)	NovaRad NovaPACS Diagnostics Viewer 8.5 XML External E…	NovaRad Corporation	NovaPACS Diagnostics Viewer	2025-12-24T19:27:48.350Z	2025-12-24T20:25:54.871Z
cve-2018-25141	8.7 (v4.0) 7.5 (v3.1)	FLIR Thermal Traffic Cameras V1.01-0bb5b27 Unauthentic…	FLIR	FLIR Thermal Traffic Cameras	2025-12-24T19:27:47.928Z	2025-12-24T20:26:01.745Z
cve-2018-25140	9.3 (v4.0) 7.5 (v3.1)	FLIR Thermal Traffic Cameras V1.01-0bb5b27 Unauthentic…	FLIR Systems, Inc.	Thermal Traffic Cameras	2025-12-24T19:27:47.524Z	2025-12-24T20:26:09.413Z

ID	Description	Published	Updated
fkie_cve-2019-25250	Devolo dLAN 500 AV Wireless+ 3.1.0-1 contains a cross-site request forgery vulnerability that allow…	2025-12-24T20:15:53.403	2025-12-24T21:16:03.003
fkie_cve-2019-25249	devolo dLAN 500 AV Wireless+ 3.1.0-1 contains an authentication bypass vulnerability that allows at…	2025-12-24T20:15:53.247	2025-12-24T21:16:02.890
fkie_cve-2019-25248	Beward N100 M2.1.6.04C014 contains an unauthenticated vulnerability that allows remote attackers to…	2025-12-24T20:15:53.093	2025-12-24T21:16:02.770
fkie_cve-2019-25247	Beward N100 H.264 VGA IP Camera M2.1.6 contains a cross-site request forgery vulnerability that all…	2025-12-24T20:15:52.937	2025-12-24T21:16:02.657
fkie_cve-2019-25246	Beward N100 H.264 VGA IP Camera M2.1.6 contains an authenticated file disclosure vulnerability that…	2025-12-24T20:15:52.780	2025-12-24T21:16:02.543
fkie_cve-2019-25245	Ross Video DashBoard 8.5.1 contains an elevation of privileges vulnerability that allows authentica…	2025-12-24T20:15:52.623	2025-12-24T21:16:02.430
fkie_cve-2019-25244	Legrand BTicino Driver Manager F454 1.0.51 contains multiple web vulnerabilities that allow attacke…	2025-12-24T20:15:52.473	2025-12-24T21:16:02.313
fkie_cve-2019-25243	FaceSentry 6.4.8 contains an authenticated remote command injection vulnerability in pingTest.php a…	2025-12-24T20:15:52.310	2025-12-24T21:16:02.200
fkie_cve-2019-25242	FaceSentry Access Control System 6.4.8 contains a cross-site request forgery vulnerability that all…	2025-12-24T20:15:52.150	2025-12-24T21:16:02.087
fkie_cve-2019-25241	FaceSentry Access Control System 6.4.8 contains a critical authentication vulnerability with hard-c…	2025-12-24T20:15:51.993	2025-12-24T21:16:01.973
fkie_cve-2019-25240	Rifatron 5brid DVR contains an unauthenticated vulnerability in the animate.cgi script that allows …	2025-12-24T20:15:51.840	2025-12-24T21:16:01.867
fkie_cve-2019-25239	V-SOL GPON/EPON OLT Platform 2.03 contains an unauthenticated information disclosure vulnerability …	2025-12-24T20:15:51.690	2025-12-24T21:16:01.760
fkie_cve-2019-25238	V-SOL GPON/EPON OLT Platform 2.03 contains a cross-site request forgery vulnerability that allows a…	2025-12-24T20:15:51.543	2025-12-24T21:16:01.650
fkie_cve-2019-25237	V-SOL GPON/EPON OLT Platform v2.03 contains a privilege escalation vulnerability that allows normal…	2025-12-24T20:15:51.380	2025-12-24T21:16:01.540
fkie_cve-2019-25236	iSeeQ Hybrid DVR WH-H4 1.03R contains an unauthenticated vulnerability in the get_jpeg script that …	2025-12-24T20:15:51.223	2025-12-24T21:16:01.427
fkie_cve-2019-25235	Smartwares HOME easy 1.0.9 contains an authentication bypass vulnerability that allows unauthentica…	2025-12-24T20:15:51.070	2025-12-24T21:16:01.317
fkie_cve-2019-25234	SmartHouse Webapp 6.5.33 contains multiple cross-site request forgery and cross-site scripting vuln…	2025-12-24T20:15:50.913	2025-12-24T21:16:01.207
fkie_cve-2019-25233	AVE DOMINAplus 1.10.x contains cross-site request forgery and cross-site scripting vulnerabilities …	2025-12-24T20:15:50.750	2025-12-24T21:16:01.100
fkie_cve-2018-25156	Teradek Cube 7.3.6 contains a cross-site request forgery vulnerability that allows attackers to cha…	2025-12-24T20:15:50.587	2025-12-24T21:16:00.973
fkie_cve-2018-25155	Teradek Slice 7.3.15 contains a cross-site request forgery vulnerability that allows attackers to c…	2025-12-24T20:15:50.430	2025-12-24T21:16:00.873
fkie_cve-2018-25149	Microhard Systems IPn4G 1.1.0 contains a cross-site request forgery vulnerability that allows attac…	2025-12-24T20:15:49.517	2025-12-24T21:16:00.500
fkie_cve-2018-25148	Microhard Systems IPn4G 1.1.0 contains multiple authenticated remote code execution vulnerabilities…	2025-12-24T20:15:49.367	2025-12-24T21:16:00.397
fkie_cve-2018-25147	Microhard Systems IPn4G 1.1.0 contains hardcoded default credentials that cannot be changed through…	2025-12-24T20:15:49.210	2025-12-24T21:16:00.280
fkie_cve-2018-25146	Microhard Systems IPn4G 1.1.0 contains an undocumented vulnerability that allows authenticated atta…	2025-12-24T20:15:49.057	2025-12-24T21:16:00.167
fkie_cve-2018-25145	Microhard Systems IPn4G 1.1.0 contains a configuration file disclosure vulnerability that allows au…	2025-12-24T20:15:48.903	2025-12-24T21:16:00.053
fkie_cve-2018-25144	Microhard Systems IPn4G 1.1.0 contains an authentication bypass vulnerability in the hidden system-…	2025-12-24T20:15:48.750	2025-12-24T21:15:59.947
fkie_cve-2018-25143	Microhard Systems IPn4G 1.1.0 contains a service vulnerability that allows authenticated users to e…	2025-12-24T20:15:48.590	2025-12-24T21:15:59.823
fkie_cve-2018-25142	NovaRad NovaPACS Diagnostics Viewer 8.5.19.75 contains an unauthenticated XML External Entity (XXE)…	2025-12-24T20:15:48.430	2025-12-24T21:15:59.720
fkie_cve-2018-25141	FLIR thermal traffic cameras contain an unauthenticated vulnerability that allows remote attackers …	2025-12-24T20:15:48.270	2025-12-24T21:15:59.607
fkie_cve-2018-25140	FLIR thermal traffic cameras contain an unauthenticated device manipulation vulnerability in their …	2025-12-24T20:15:48.113	2025-12-24T21:15:59.497

ID	Description	Package	Published	Updated
pysec-2025-53	vLLM is an inference and serving engine for large language models (LLMs). Prior to versio…	vllm	2025-05-29T17:15:21+00:00	2025-06-26T21:23:06.231251+00:00
pysec-2025-51	Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) v…	apache-airflow-providers-snowflake	2025-06-24T08:15:24+00:00	2025-06-26T21:23:03.132527+00:00
pysec-2025-50	vLLM, an inference and serving engine for large language models (LLMs), has a Regular Exp…	vllm	2025-05-30T18:15:32+00:00	2025-06-19T03:02:28.572160+00:00
pysec-2024-255	Gradio before 4.20 allows credential leakage on Windows.	gradio	2024-05-05T20:15:07+00:00	2025-06-17T19:21:48.983901+00:00
pysec-2024-254	A session fixation vulnerability exists in the zenml-io/zenml application, where JWT toke…	zenml	2024-04-16T00:15:11+00:00	2025-06-13T00:48:41.806476+00:00
pysec-2025-49	setuptools is a package that allows users to download, build, install, upgrade, and unins…	setuptools	2025-05-17T16:15:19+00:00	2025-06-12T22:23:11.115559+00:00
pysec-2025-48	Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm…	mobsf	2025-03-31T17:15:42+00:00	2025-06-12T22:23:10.476087+00:00
pysec-2024-253	pretix before 2024.1.1 mishandles file validation.	pretix	2024-02-26T16:28:00+00:00	2025-06-11T15:23:51.683422+00:00
pysec-2024-252	PyTorch before v2.2.0 was discovered to contain a heap buffer overflow vulnerability in t…	torch	2024-04-17T19:15:07+00:00	2025-06-10T19:22:08.948962+00:00
pysec-2024-251	Pytorch before version v2.2.0 was discovered to contain a use-after-free vulnerability in…	torch	2024-04-17T19:15:07+00:00	2025-06-10T03:12:59.077932+00:00
pysec-2025-47	An issue was discovered in Django 5.2 before 5.2.2, 5.1 before 5.1.10, and 4.2 before 4.2…	django	2025-06-05T03:15:25+00:00	2025-06-05T05:23:28.296596+00:00
pysec-2025-46	A vulnerability was found in erdogant pypickle up to 1.1.5. It has been classified as cri…	pypickle	2025-05-26T08:15:19+00:00	2025-06-03T17:36:58.579358+00:00
pysec-2025-45	A vulnerability was found in erdogant pypickle up to 1.1.5 and classified as problematic.…	pypickle	2025-05-26T07:15:26+00:00	2025-06-03T17:36:58.528116+00:00
pysec-2024-250	Pytorch before v2.2.0 has an Out-of-bounds Read vulnerability via the component torch/csr…	torch	2024-04-19T21:15:08+00:00	2025-06-03T15:23:56.072490+00:00
pysec-2023-312	Redis before 6cbea7d allows a replica to cause an assertion failure in a primary server b…	redis	2023-07-15T23:15:09Z	2025-06-02T11:48:06.372423Z
pysec-2025-44	django-helpdesk before 1.0.0 allows Sensitive Data Exposure because of os.umask(0) in mod…	django-helpdesk	2025-05-31T01:15:19+00:00	2025-05-31T03:09:35.357757+00:00
pysec-2025-43	vLLM is an inference and serving engine for large language models (LLMs). In versions sta…	vllm	2025-05-29T17:15:21+00:00	2025-05-29T19:21:01.611587+00:00
pysec-2025-42	vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Ver…	vllm	2025-04-30T01:15:51+00:00	2025-05-28T21:23:12.396609+00:00
pysec-2025-41	PyTorch is a Python package that provides tensor computation with strong GPU acceleration…	torch	2025-04-18T16:15:23+00:00	2025-05-28T15:23:37.843138+00:00
pysec-2025-40	A vulnerability in the `preprocess_string()` function of the `transformers.testing_utils`…	transformers	2025-05-19T12:15:19+00:00	2025-05-21T19:22:10.801823+00:00
pysec-2024-249	### Summary On all Label Studio versions prior to 1.11.0, data imported via file upload f…	label-studio	2024-02-22T22:15:47+00:00	2025-05-19T11:22:35.312280+00:00
pysec-2024-248	OpenCanary, a multi-protocol network honeypot, directly executed commands taken from its …	opencanary	2024-10-14T21:15:12+00:00	2025-05-16T14:23:05.150356+00:00
pysec-2025-39	motionEye is an online interface for the software motion, a video surveillance program wi…	motioneye	2025-05-14T16:15:29+00:00	2025-05-14T17:22:51.050788+00:00
pysec-2025-38	OpenStack Ironic before 29.0.1 can write unintended files to a target node disk during im…	ironic	2025-05-08T17:16:01Z	2025-05-13T04:24:03.083929Z
pysec-2024-247	A directory traversal vulnerability exists in the zenml-io/zenml repository, specifically…	zenml	2024-04-16T00:15:11+00:00	2025-05-12T15:23:53.861001+00:00
pysec-2025-37	An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2…	django	2025-05-08T04:17:18+00:00	2025-05-08T05:23:16.210893+00:00
pysec-2025-36	Langflow versions prior to 1.3.0 are susceptible to code injection in the /api/v1/valida…	langflow	2025-04-07T15:15:44+00:00	2025-05-07T19:22:44.993642+00:00
pysec-2024-246	Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. Starting in…	vyper	2024-04-25T17:15:50+00:00	2025-05-05T19:21:20.899426+00:00
pysec-2024-111	A path traversal vulnerability exists in the `getFullPath` method of langchain-ai/langcha…	langchain	2024-10-29T13:15:00Z	2025-05-02T18:39:47.588215Z
pysec-2024-245	Apache Airflow, versions before 2.8.2, has a vulnerability that allows authenticated user…	apache-airflow	2024-02-29T11:15:08+00:00	2025-05-01T21:22:38.598048+00:00

ID	Description	Updated
gsd-2024-33874	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.959238Z
gsd-2024-33861	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.958057Z
gsd-2024-33850	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.952536Z
gsd-2024-33856	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.944669Z
gsd-2024-33870	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.943118Z
gsd-2024-33849	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.924449Z
gsd-2024-33854	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.916266Z
gsd-2024-33868	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.896638Z
gsd-2024-33881	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.886591Z
gsd-2024-33880	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.882744Z
gsd-2024-33877	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.871220Z
gsd-2024-33873	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.870402Z
gsd-2024-33859	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.867340Z
gsd-2024-33875	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.862083Z
gsd-2024-33878	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.850311Z
gsd-2024-33858	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.848478Z
gsd-2024-33872	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.839468Z
gsd-2024-33857	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.834866Z
gsd-2024-33853	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.825026Z
gsd-2024-33863	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.824810Z
gsd-2024-33852	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.824312Z
gsd-2024-33866	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.819755Z
gsd-2024-33867	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.808129Z
gsd-2024-33882	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.803998Z
gsd-2024-33871	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.800751Z
gsd-2024-33862	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.799465Z
gsd-2024-33864	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.792101Z
gsd-2024-33865	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.790923Z
gsd-2024-33869	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.784255Z
gsd-2024-33860	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.777612Z

ID	Description	Published	Updated
mal-2025-191814	Malicious code in perfviewer (PyPI)	2025-11-16T21:33:31Z	2025-12-24T10:09:32Z
mal-2025-191813	Malicious code in peptest2 (PyPI)	2025-11-20T14:01:54Z	2025-12-24T10:09:32Z
mal-2025-191812	Malicious code in peptest (PyPI)	2025-11-20T11:33:54Z	2025-12-24T10:09:32Z
mal-2025-191794	Malicious code in mongland (PyPI)	2025-11-24T06:37:26Z	2025-12-24T10:09:32Z
mal-2025-191792	Malicious code in minizip (PyPI)	2025-11-23T12:20:46Z	2025-12-24T10:09:32Z
mal-2025-191791	Malicious code in minemeld-core (PyPI)	2025-11-14T17:22:38Z	2025-12-24T10:09:32Z
mal-2025-191790	Malicious code in mescouilles (PyPI)	2025-11-23T23:19:36Z	2025-12-24T10:09:32Z
mal-2025-191760	Malicious code in hooktest1 (PyPI)	2025-11-23T16:26:36Z	2025-12-24T10:09:32Z
mal-2025-191758	Malicious code in hexdecnet (PyPI)	2025-11-23T00:42:49Z	2025-12-24T10:09:32Z
mal-2025-191757	Malicious code in hexdeclink (PyPI)	2025-12-01T07:04:01Z	2025-12-24T10:09:32Z
mal-2025-191753	Malicious code in hexadec (PyPI)	2025-11-14T07:58:44Z	2025-12-24T10:09:32Z
mal-2025-191742	Malicious code in gptall (PyPI)	2025-11-27T07:07:24Z	2025-12-24T10:09:32Z
mal-2025-191718	Malicious code in discord-selfsbotsx (PyPI)	2025-11-27T23:24:51Z	2025-12-24T10:09:32Z
mal-2025-191717	Malicious code in dev-server-python (PyPI)	2025-11-27T07:09:15Z	2025-12-24T10:09:32Z
mal-2025-191702	Malicious code in chromifypro (PyPI)	2025-11-07T22:43:23Z	2025-12-24T10:09:32Z
mal-2025-191700	Malicious code in chicopute (PyPI)	2025-11-24T21:59:47Z	2025-12-24T10:09:32Z
mal-2025-191699	Malicious code in chat-prompt-logger (PyPI)	2025-11-30T00:34:30Z	2025-12-24T10:09:32Z
mal-2025-191686	Malicious code in aws-enumerateiam (PyPI)	2025-11-18T23:47:36Z	2025-12-24T10:09:32Z
mal-2025-191682	Malicious code in aounitaounit2 (PyPI)	2025-11-24T22:02:21Z	2025-12-24T10:09:32Z
mal-2025-191675	Malicious code in aiostreams (PyPI)	2025-11-24T21:58:24Z	2025-12-24T10:09:32Z
mal-2025-191674	Malicious code in aiogram-msgeffect (PyPI)	2025-11-22T16:25:53Z	2025-12-24T10:09:32Z
mal-2025-191535	Malicious code in tableate (PyPI)	2025-11-25T11:06:37Z	2025-12-24T10:09:32Z
mal-2025-191534	Malicious code in tablates (PyPI)	2025-11-26T10:20:42Z	2025-12-24T10:09:32Z
mal-2024-6103	Malicious code in termcolour (PyPI)	2024-06-25T13:43:19Z	2025-12-24T10:09:32Z
mal-2024-5721	Malicious code in pyhttpproxifier (PyPI)	2024-06-25T13:40:09Z	2025-12-24T10:09:32Z
mal-2024-5326	Malicious code in libsocks5 (PyPI)	2024-06-25T13:36:56Z	2025-12-24T10:09:32Z
mal-2024-5325	Malicious code in libsock (PyPI)	2024-06-25T13:36:56Z	2025-12-24T10:09:32Z
mal-2024-5323	Malicious code in libproxy (PyPI)	2024-06-25T13:36:55Z	2025-12-24T10:09:32Z
mal-2024-5221	Malicious code in httprequesthub (PyPI)	2024-06-25T13:36:05Z	2025-12-24T10:09:32Z
mal-2024-5101	Malicious code in easyhttprequest (PyPI)	2024-06-25T13:35:06Z	2025-12-24T10:09:32Z

ID	Description	Published	Updated
wid-sec-w-2025-2449	GIMP: Schwachstelle ermöglicht Codeausführung	2025-10-29T23:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2246	Linux Kernel: Mehrere Schwachstellen	2025-10-08T22:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2230	Python (CPython Zipfile Module): Schwachstelle ermöglicht Manipulation von Dateien	2025-10-07T22:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2227	Golang Go: Mehrere Schwachstellen	2025-10-07T22:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2166	OpenSSL und LibreSSL: Mehrere Schwachstellen	2025-09-30T22:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2129	GIMP: Mehrere Schwachstellen ermöglichen Codeausführung	2025-09-24T22:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2092	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-09-18T22:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2087	Linux Kernel: Mehrere Schwachstellen	2025-09-17T22:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2083	Ruby: Schwachstelle ermöglicht Denial of Service	2025-09-17T22:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2077	Linux Kernel: Mehrere Schwachstellen	2025-09-16T22:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2053	Linux Kernel: Mehrere Schwachstellen	2025-09-15T22:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2040	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-09-11T22:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-1976	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-09-04T22:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-1529	Apache HTTP Server: Mehrere Schwachstellen	2025-07-10T22:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-1472	Ruby: Schwachstelle ermöglicht Denial of Service	2025-07-07T22:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-0754	Red Hat Enterprise Linux (opentelemetry-collector): Schwachstelle ermöglicht Denial of Service	2025-04-08T22:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-0633	Gitea: Mehrere Schwachstellen	2025-03-25T23:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-0084	Rsync: Mehrere Schwachstellen	2025-01-14T23:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2024-2040	OpenSSL: Schwachstelle ermöglicht Denial of Service	2024-09-03T22:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2024-0585	Grafana: Schwachstelle ermöglicht Privilegieneskalation	2024-03-07T23:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2905	MongoDB: Schwachstelle ermöglicht Offenlegung von Informationen	2025-12-18T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2904	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-18T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2887	PHP: Mehrere Schwachstellen	2025-12-18T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2885	Mozilla Firefox: Mehrere Schwachstellen	2025-12-18T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2881	Red Hat Enterprise Linux (multicluster global hub): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-12-17T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2868	Linux Kernel: Mehrere Schwachstellen	2025-12-16T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2866	Dropbear SSH: Schwachstelle ermöglicht Erlangen von Administratorrechten	2025-12-16T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2858	Google Chrome/Microsoft Edge: Mehrere Schwachstellen	2025-12-16T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2854	Roundcube: Mehrere Schwachstellen	2025-12-15T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2849	Red Hat Enterprise Linux (Keylime): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-12-15T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00

ID	Description	Published	Updated
ssa-750499	SSA-750499: Weak Encryption Vulnerability in SIPROTEC 5 Devices	2024-07-09T00:00:00Z	2025-11-11T00:00:00Z
ssa-726617	SSA-726617: Incorrect Privilege Assignment Vulnerability in Mendix OIDC SSO Module	2025-05-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-711309	SSA-711309: Denial of Service Vulnerability in the OPC UA Implementations of SIMATIC Products	2023-09-12T00:00:00Z	2025-11-11T00:00:00Z
ssa-698820	SSA-698820: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.4 on RUGGEDCOM APE1808 Devices	2024-07-09T00:00:00Z	2025-11-11T00:00:00Z
ssa-687955	SSA-687955: Accessible Development Shell via Physical Interface in SIPROTEC 5	2025-02-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-682326	SSA-682326: Multiple Vulnerabilities in COMOS before V10.4.5	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-631336	SSA-631336: Multiple Web Server Vulnerabilities in SICAM GridEdge Before V2.6.6	2022-06-14T00:00:00Z	2025-11-11T00:00:00Z
ssa-552874	SSA-552874: Denial of Service Vulnerability in SIPROTEC 5 Devices	2022-12-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-522291	SSA-522291: Improper Certificate Validation Vulnerability in Solid Edge	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-514895	SSA-514895: Multiple Vulnerabilities in Altair Grid Engine V2025.1.0	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-365596	SSA-365596: DLL Hijacking Vulnerability in Siemens Software Center and Solid Edge	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-339694	SSA-339694: Multiple Vulnerabilities in Spectrum Power 4 Before v4.70 SP12 Security Patch 2	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-322980	SSA-322980: Denial of Service Vulnerability in SIPROTEC 5 Devices	2023-04-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-301229	SSA-301229: Client-Side Enforcement of Server-Side Security Vulnerabilities in RUGGEDCOM ROX II	2025-05-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-267056	SSA-267056: Multiple Vulnerabilities in LOGO! 8 BM Devices	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-225578	SSA-225578: Improper Access Control Vulnerability in SICAM GridEdge Before V2.7.3	2022-07-12T00:00:00Z	2025-11-11T00:00:00Z
ssa-216014	SSA-216014: Vulnerabilities in EFI variable of SIMATIC IPCs, SIMATIC Tablet PCs, and SIMATIC Field PGs	2025-03-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-201498	SSA-201498: Multiple Vulnerabilities in the Web Server of SICAM P850 and SICAM P855 Devices Before V3.11	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-194557	SSA-194557: Improper Limitation of Filesystem Access through Web Server Vulnerability in SIPROTEC 5	2025-01-14T00:00:00Z	2025-11-11T00:00:00Z
ssa-876787	SSA-876787: Open Redirect Vulnerability in SIMATIC S7-1500 and S7-1200 CPUs	2024-10-08T00:00:00Z	2025-10-14T00:00:00Z
ssa-722410	SSA-722410: Multiple Vulnerabilities in User Management Component (UMC)	2025-09-09T00:00:00Z	2025-10-14T00:00:00Z
ssa-625789	SSA-625789: Multiple Vulnerabilities in SIMATIC S7-1200 CPU V1/V2 Devices	2011-06-10T00:00:00Z	2025-10-14T00:00:00Z
ssa-614723	SSA-614723: Denial of Service Vulnerabilities in User Management Component (UMC)	2025-05-13T00:00:00Z	2025-10-14T00:00:00Z
ssa-599451	SSA-599451: Multiple Vulnerabilities in SiPass integrated Before V3.0	2025-10-14T00:00:00Z	2025-10-14T00:00:00Z
ssa-541582	SSA-541582: Multiple File Parsing Vulnerabilities in Solid Edge	2025-10-14T00:00:00Z	2025-10-14T00:00:00Z
ssa-513708	SSA-513708: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 Devices	2025-06-10T00:00:00Z	2025-10-14T00:00:00Z
ssa-486936	SSA-486936: Authentication Vulnerability in SIMATIC ET 200SP Communication Processors	2025-10-14T00:00:00Z	2025-10-14T00:00:00Z
ssa-373591	SSA-373591: Buffer Overflow Vulnerability in RUGGEDCOM ROS Devices	2021-07-13T00:00:00Z	2025-10-14T00:00:00Z
ssa-367714	SSA-367714: Improper Integrity Check of Firmware Updates in SiPass integrated AC5102 / ACC-G2 and ACC-AP	2025-05-23T00:00:00Z	2025-10-14T00:00:00Z
ssa-365200	SSA-365200: Google Chrome Type Confusion Vulnerability in Siemens Products	2025-10-14T00:00:00Z	2025-10-14T00:00:00Z

ID	Description	Published	Updated
rhsa-2025:8267	Red Hat Security Advisory: osbuild-composer security update	2025-05-28T15:24:18+00:00	2025-11-29T06:54:51+00:00
rhsa-2025:8244	Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.21.0 release	2025-05-28T02:39:39+00:00	2025-11-29T06:54:51+00:00
rhsa-2025:8224	Red Hat Security Advisory: Red Hat OpenShift for Windows Containers 10.18.1 product release	2025-05-27T17:21:15+00:00	2025-11-29T06:54:49+00:00
rhsa-2025:8075	Red Hat Security Advisory: osbuild-composer security update	2025-05-21T15:37:30+00:00	2025-11-29T06:54:49+00:00
rhsa-2025:7863	Red Hat Security Advisory: OpenShift Container Platform 4.18.14 bug fix and security update	2025-05-20T17:17:48+00:00	2025-11-29T06:54:49+00:00
rhsa-2025:8059	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17.7 Bug Fix Update	2025-05-21T06:13:16+00:00	2025-11-29T06:54:48+00:00
rhsa-2025:7967	Red Hat Security Advisory: osbuild-composer security update	2025-05-19T09:52:50+00:00	2025-11-29T06:54:47+00:00
rhsa-2025:7753	Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.15.2 security update	2025-05-15T17:09:32+00:00	2025-11-29T06:54:46+00:00
rhsa-2025:7702	Red Hat Security Advisory: OpenShift Container Platform 4.14.52 bug fix and security update	2025-05-21T14:54:27+00:00	2025-11-29T06:54:45+00:00
rhsa-2025:7698	Red Hat Security Advisory: OpenShift Container Platform 4.15.51 bug fix and security update	2025-05-21T14:00:14+00:00	2025-11-29T06:54:45+00:00
rhsa-2025:7669	Red Hat Security Advisory: OpenShift Container Platform 4.17.30 bug fix and security update	2025-05-21T13:50:02+00:00	2025-11-29T06:54:45+00:00
rhsa-2025:7616	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.18.3 Bug Fix Update	2025-05-14T14:49:22+00:00	2025-11-29T06:54:44+00:00
rhsa-2025:7503	Red Hat Security Advisory: osbuild-composer security update	2025-05-13T17:31:03+00:00	2025-11-29T06:54:43+00:00
rhsa-2025:7484	Red Hat Security Advisory: gvisor-tap-vsock security update	2025-05-13T16:00:36+00:00	2025-11-29T06:54:43+00:00
rhsa-2025:7479	Red Hat Security Advisory: opentelemetry-collector security update	2025-05-13T17:18:27+00:00	2025-11-29T06:54:42+00:00
rhsa-2025:7475	Red Hat Security Advisory: grafana security update	2025-05-13T16:00:56+00:00	2025-11-29T06:54:42+00:00
rhsa-2025:7425	Red Hat Security Advisory: osbuild-composer security update	2025-05-13T13:57:39+00:00	2025-11-29T06:54:42+00:00
rhsa-2025:7467	Red Hat Security Advisory: skopeo security update	2025-05-13T17:18:51+00:00	2025-11-29T06:54:41+00:00
rhsa-2025:7462	Red Hat Security Advisory: podman security update	2025-05-13T16:04:06+00:00	2025-11-29T06:54:41+00:00
rhsa-2025:7459	Red Hat Security Advisory: buildah security update	2025-05-13T17:19:11+00:00	2025-11-29T06:54:40+00:00
rhsa-2025:7416	Red Hat Security Advisory: gvisor-tap-vsock security update	2025-05-13T13:59:06+00:00	2025-11-29T06:54:39+00:00
rhsa-2025:7407	Red Hat Security Advisory: opentelemetry-collector security update	2025-05-13T13:53:53+00:00	2025-11-29T06:54:39+00:00
rhsa-2025:7397	Red Hat Security Advisory: skopeo security update	2025-05-13T13:31:37+00:00	2025-11-29T06:54:38+00:00
rhsa-2025:7404	Red Hat Security Advisory: grafana security update	2025-05-13T13:59:07+00:00	2025-11-29T06:54:37+00:00
rhsa-2025:7391	Red Hat Security Advisory: podman security update	2025-05-13T13:31:19+00:00	2025-11-29T06:54:37+00:00
rhsa-2025:7389	Red Hat Security Advisory: buildah security update	2025-05-13T13:28:19+00:00	2025-11-29T06:54:36+00:00
rhsa-2025:4810	Red Hat Security Advisory: RHSA: Submariner 0.18.5 - bug and security update	2025-05-12T15:04:37+00:00	2025-11-29T06:54:34+00:00
rhsa-2025:4731	Red Hat Security Advisory: OpenShift Container Platform 4.16.40 bug fix and security update	2025-05-15T00:44:29+00:00	2025-11-29T06:54:34+00:00
rhsa-2025:4712	Red Hat Security Advisory: OpenShift Container Platform 4.18.13 bug fix and security update	2025-05-14T02:10:27+00:00	2025-11-29T06:54:34+00:00
rhsa-2025:4677	Red Hat Security Advisory: OpenShift Container Platform 4.13.58 bug fix and security update	2025-05-15T16:34:38+00:00	2025-11-29T06:54:33+00:00

ID	Description	Published	Updated
msrc_cve-2025-55319	Agentic AI and Visual Studio Code Remote Code Execution Vulnerability	2025-09-09T07:00:00.000Z	2025-12-23T08:00:00.000Z
msrc_cve-2025-66471	urllib3 Streaming API improperly handles highly compressed data	2025-12-02T00:00:00.000Z	2025-12-23T01:38:16.000Z
msrc_cve-2025-66418	urllib3 allows an unbounded number of links in the decompression chain	2025-12-02T00:00:00.000Z	2025-12-23T01:38:10.000Z
msrc_cve-2025-65637	A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer() to log a single-line payload larger than 64KB without newline characters.	2025-12-02T00:00:00.000Z	2025-12-23T01:37:58.000Z
msrc_cve-2025-12819	Untrusted search path in auth_query connection in PgBouncer	2025-12-02T00:00:00.000Z	2025-12-23T01:37:37.000Z
msrc_cve-2025-68114	Capstone doesn't check vsnprintf return in SStream_concat, allows stack buffer underflow and overflow	2025-12-02T00:00:00.000Z	2025-12-23T01:37:34.000Z
msrc_cve-2025-68161	Apache Log4j Core: Missing TLS hostname verification in Socket appender	2025-12-02T00:00:00.000Z	2025-12-23T01:37:29.000Z
msrc_cve-2025-59529	simple protocol server ignores accepts unlimited connections and logs failures without limit	2025-12-02T00:00:00.000Z	2025-12-23T01:37:23.000Z
msrc_cve-2025-64437	KubeVirt Isolation Detection Flaw Allows Arbitrary File Permission Changes	2025-11-02T00:00:00.000Z	2025-12-23T01:37:16.000Z
msrc_cve-2025-68390	Elasticsearch Allocation of Resources Without Limits or Throttling	2025-12-02T00:00:00.000Z	2025-12-23T01:37:15.000Z
msrc_cve-2025-68384	Elasticsearch Allocation of Resources Without Limits or Throttling	2025-12-02T00:00:00.000Z	2025-12-23T01:37:09.000Z
msrc_cve-2025-64435	KubeVirt VMI Denial-of-Service (DoS) Using Pod Impersonation	2025-11-02T00:00:00.000Z	2025-12-23T01:37:09.000Z
msrc_cve-2025-64433	KubeVirt Arbitrary Container File Read	2025-11-02T00:00:00.000Z	2025-12-23T01:37:02.000Z
msrc_cve-2025-38347	f2fs: fix to do sanity check on ino and xnid	2025-07-02T00:00:00.000Z	2025-12-23T01:37:01.000Z
msrc_cve-2025-38331	net: ethernet: cortina: Use TOE/TSO on all TCP	2025-07-02T00:00:00.000Z	2025-12-23T01:36:56.000Z
msrc_cve-2025-64432	KubeVirt Affected by an Authentication Bypass in Kubernetes Aggregation Layer	2025-11-02T00:00:00.000Z	2025-12-23T01:36:55.000Z
msrc_cve-2025-38300	crypto: sun8i-ce-cipher - fix error handling in sun8i_ce_cipher_prepare()	2025-07-02T00:00:00.000Z	2025-12-23T01:36:50.000Z
msrc_cve-2025-37938	tracing: Verify event formats that have "%*p.."	2025-05-02T00:00:00.000Z	2025-12-23T01:36:45.000Z
msrc_cve-2025-37932	sch_htb: make htb_qlen_notify() idempotent	2025-05-02T00:00:00.000Z	2025-12-23T01:36:40.000Z
msrc_cve-2025-37931	btrfs: adjust subpage bit start based on sectorsize	2025-05-02T00:00:00.000Z	2025-12-23T01:36:34.000Z
msrc_cve-2025-66382	In libexpat through 2.7.3, a crafted file with an approximate size of 2 MiB can lead to dozens of seconds of processing time.	2025-11-02T00:00:00.000Z	2025-12-23T01:36:29.000Z
msrc_cve-2025-2296	Un-verified kernel bypass Secure Boot mechanism in direct boot mode	2025-12-02T00:00:00.000Z	2025-12-23T01:35:11.000Z
msrc_cve-2025-7424	Libxslt: type confusion in xmlnode.psvi between stylesheet and source nodes	2025-07-02T00:00:00.000Z	2025-12-22T14:35:05.000Z
msrc_cve-2025-55753	Apache HTTP Server: mod_md (ACME), unintended retry intervals	2025-12-02T00:00:00.000Z	2025-12-20T14:35:58.000Z
msrc_cve-2025-58098	Apache HTTP Server: Server Side Includes adds query string to #exec cmd=...	2025-12-02T00:00:00.000Z	2025-12-20T14:35:52.000Z
msrc_cve-2025-66200	Apache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo	2025-12-02T00:00:00.000Z	2025-12-20T14:35:45.000Z
msrc_cve-2025-65082	Apache HTTP Server: CGI environment variable override	2025-12-02T00:00:00.000Z	2025-12-20T14:35:39.000Z
msrc_cve-2025-14512	Glib: integer overflow in glib gio attribute escaping causes heap buffer overflow	2025-12-02T00:00:00.000Z	2025-12-20T01:40:40.000Z
msrc_cve-2025-14087	Glib: glib: buffer underflow in gvariant parser leads to heap corruption	2025-12-02T00:00:00.000Z	2025-12-20T01:40:29.000Z
msrc_cve-2025-7068	HDF5 H5FL.c H5FL__malloc memory leak	2025-07-02T00:00:00.000Z	2025-12-20T01:38:05.000Z

ID	Description	Published	Updated
icsa-25-345-06	Siemens SINEMA Remote Connect Server	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-345-05	Siemens Advanced Licensing (SALT) Toolkit	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-345-04	Siemens IAM Client	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-226-22	Siemens Web Installer (SSA-282044)	2025-08-12T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-226-11	Siemens SIMATIC S7-PLCSIM	2025-08-12T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-226-03	Siemens SIMATIC S7-PLCSIM	2025-08-12T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-24-347-02	Siemens Engineering Platforms	2024-12-10T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-24-256-16	Siemens Third-Party Component in SICAM and SITIPE Products	2024-09-10T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-24-193-05	Siemens SCALANCE, RUGGEDCOM	2024-07-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-22-349-09	Siemens OpenSSL 3.0 Affecting Products	2022-12-13T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-338-07	Advantech iView	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-06	SolisCloud Monitoring Platform	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-05	Sunbird DCIM dcTrack and Power IQ	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-04	Johnson Controls iSTAR	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-03	Johnson Controls OpenBlue Mobile Web Application for OpenBlue Workplace	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-02	MAXHUB Pivot	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-01	Mitsubishi Electric GX Works2	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-219-02	Johnson Controls FX Server, FX80 and FX90 (Update A)	2025-08-07T06:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-148-03	Consilium Safety CS5000 Fire Panel (Update A)	2025-05-29T06:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsma-25-336-01	Mirion Medical EC2 Software NMIS BioDose	2025-12-02T07:00:00.000000Z	2025-12-02T07:00:00.000000Z
icsa-25-336-02	Iskra iHUB and iHUB Lite	2025-12-02T07:00:00.000000Z	2025-12-02T07:00:00.000000Z
icsa-25-336-01	Industrial Video & Control Longwatch	2025-12-02T07:00:00.000000Z	2025-12-02T07:00:00.000000Z
icsa-25-205-01	Mitsubishi Electric CNC Series (Update A)	2025-07-24T06:00:00.000000Z	2025-12-02T07:00:00.000000Z
icsa-23-157-02	Mitsubishi Electric MELSEC iQ-R Series/iQ-F Series (Update C)	2023-06-06T06:00:00.000000Z	2025-12-02T07:00:00.000000Z
icsa-25-329-06	SiRcom SMART Alert (SiSA)	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-05	Festo Compact Vision System, Control Block, Controller, and Operator Unit products	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-03	Zenitel TCIV-3+	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-02	Rockwell Automation Arena Simulation	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-01	Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-22-333-05	Mitsubishi Electric FA Engineering Software (Update C)	2022-12-05T07:00:00.000000Z	2025-11-25T07:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-ios-invalid-url-dos-nvxszf6u	Cisco IOS Software Industrial Ethernet Switch Device Manager Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-ios-cli-eb7cz6yo	Cisco IOS and IOS XE Software CLI Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-defaultacl-psjk9nvf	Cisco SD-WAN vEdge Software Access Control List Bypass Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-cat9k-acl-l4k7vxgd	Cisco IOS XE Software on Cisco Catalyst 9500X and 9600X Series Switches Virtual Interface Access Control List Bypass Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-action-frame-inj-qqcncz8h	Cisco Wireless Access Point Software Device Analytics Action Frame Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-9800cl-openscep-sb4xtxzp	Cisco IOS XE Software for Catalyst 9800 Series Wireless Controller for Cloud Unauthenticated Access to Certificate Enrollment Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-snmp-bypass-hhuvujdn	Cisco IOS XE SD-WAN Software Packet Filtering Bypass Vulnerability	2025-05-07T16:00:00+00:00	2025-09-22T14:12:28+00:00
cisco-sa-xrsig-uy4zrucg	Cisco IOS XR Software Image Verification Bypass Vulnerability	2025-09-10T16:00:00+00:00	2025-09-10T16:00:00+00:00
cisco-sa-iosxr-arp-storm-ejuu55ym	Cisco IOS XR ARP Broadcast Storm Denial of Service Vulnerability	2025-09-10T16:00:00+00:00	2025-09-10T16:00:00+00:00
cisco-sa-acl-packetio-swjhhbtz	Cisco IOS XR Software Management Interface ACL Bypass Vulnerability	2025-09-10T16:00:00+00:00	2025-09-10T16:00:00+00:00
cisco-sa-fp2k-ipsec-dos-tjwgdzco	Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software for Firepower 2100 Series IPv6 over IPsec Denial of Service Vulnerability	2025-08-14T16:00:00+00:00	2025-09-09T21:22:34+00:00
cisco-sa-webex-xss-55bv8hhm	Cisco Webex Meetings Cross-Site Scripting Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-webex-urlredirect-uk8ddjsz	Cisco Webex Meetings URL Redirection Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-phone-write-g3kcc5df	Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Software Vulnerabilities	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-imp-xss-xqgu4hsg	Cisco Unified Communications Manager IM & Presence Service Cross-Site Scripting Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-epnm-pi-stored-xss-xjqzsycp	Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Stored Cross-Site Scripting Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-epnm-info-dis-zhppmfgz	Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Information Disclosure Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-epni-arb-file-upload-jjdm2p83	Cisco Evolved Programmable Network Manager Arbitrary File Upload Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-cucm-csrf-w762pryd	Cisco Unified Communications Manager Cross-Site Request Forgery Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-3100_4200_tlsdos-2ynscd54	Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software for Firepower 3100 and 4200 Series TLS 1.3 Cipher Denial of Service Vulnerability	2025-08-14T16:00:00+00:00	2025-09-03T13:37:50+00:00
cisco-sa-ucs-xss-ey6xhyps	Cisco UCS Manager Software Stored Cross-Site Scripting Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-ucs-vkvmorv-cnkrv7hk	Cisco Integrated Management Controller Virtual Keyboard Video Monitor Open Redirect Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-ucs-multi-cmdinj-e4ukjyrz	Cisco UCS Manager Software Command Injection Vulnerabilities	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-ucs-kvmsxss-6h7anuyk	Cisco Integrated Management Controller Virtual Keyboard Video Monitor Stored Cross-Site Scripting Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-nxospc-pim6-vg4jfph	Cisco Nexus 3000 and 9000 Series Switches Protocol Independent Multicast Version 6 Denial of Service Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-nxos-infodis-tectysfg	Cisco NX-OS Software Sensitive Log Information Disclosure Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-nxos-cmdinj-qhnze5ss	Cisco NX-OS Software Command Injection Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-nshs-urapi-gjubvfpu	Cisco Nexus Dashboard and Nexus Dashboard Fabric Controller Unauthorized REST API Vulnerabilities	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-nd-ptrs-xu2fm2wb	Cisco Nexus Dashboard Path Traversal Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-n39k-isis-dos-jhja8rfx	Cisco Nexus 3000 and 9000 Series Switches Intermediate System-to-Intermediate System Denial of Service Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00

ID	Description	Published	Updated
SCA-2023-0009	Vulnerability in Wibu-Systems CodeMeter Runtime affects multiple SICK products	2023-09-29T10:00:00.000Z	2023-09-29T10:00:00.000Z
sca-2023-0007	Vulnerabilities in SICK LMS5xx	2023-08-25T11:00:00.000Z	2023-08-25T11:00:00.000Z
SCA-2023-0007	Vulnerabilities in SICK LMS5xx	2023-08-25T11:00:00.000Z	2023-08-25T11:00:00.000Z
sca-2023-0006	Vulnerabilities in SICK ICR890-4	2023-07-10T13:00:00.000Z	2023-07-10T13:00:00.000Z
SCA-2023-0006	Vulnerabilities in SICK ICR890-4	2023-07-10T13:00:00.000Z	2023-07-10T13:00:00.000Z
sca-2023-0005	Vulnerabilities in SICK EventCam App	2023-06-19T11:00:00.000Z	2023-06-19T11:00:00.000Z
SCA-2023-0005	Vulnerabilities in SICK EventCam App	2023-06-19T11:00:00.000Z	2023-06-19T11:00:00.000Z
sca-2023-0004	Vulnerabilities in SICK FTMg	2023-05-11T13:00:00.000Z	2023-05-11T13:00:00.000Z
SCA-2023-0004	Vulnerabilities in SICK FTMg	2023-05-11T13:00:00.000Z	2023-05-11T13:00:00.000Z
sca-2023-0003	Vulnerability in SICK Flexi Soft and Flexi Classic Gateways	2023-05-03T13:00:00.000Z	2023-05-03T13:00:00.000Z
SCA-2023-0003	Vulnerability in SICK Flexi Soft and Flexi Classic Gateways	2023-05-03T13:00:00.000Z	2023-05-03T13:00:00.000Z
sca-2023-0002	Use of Telnet in multiple SICK Flexi Soft and Flexi Classic Gateways	2023-04-11T10:00:00.000Z	2023-04-11T10:00:00.000Z
SCA-2023-0002	Use of Telnet in multiple SICK Flexi Soft and Flexi Classic Gateways	2023-04-11T10:00:00.000Z	2023-04-11T10:00:00.000Z
sca-2023-0001	Bootloader mode vulnerability in Flexi Soft Gateways v3	2023-02-20T14:00:00.000Z	2023-02-20T14:00:00.000Z
SCA-2023-0001	Bootloader mode vulnerability in Flexi Soft Gateways v3	2023-02-20T14:00:00.000Z	2023-02-20T14:00:00.000Z
sca-2022-0015	Use of a Broken or Risky Cryptographic Algorithm in SICK RFU6xx RADIO FREQUEN. SENSOR	2022-12-08T16:00:00.000Z	2022-12-08T16:00:00.000Z
SCA-2022-0015	Use of a Broken or Risky Cryptographic Algorithm in SICK RFU6xx RADIO FREQUEN. SENSOR	2022-12-08T16:00:00.000Z	2022-12-08T16:00:00.000Z
sca-2022-0013	Password recovery vulnerability affects multiple SICK SIMs	2022-10-21T13:00:00.000Z	2022-11-04T14:00:00.000Z
SCA-2022-0013	Password recovery vulnerability affects multiple SICK SIMs	2022-10-21T13:00:00.000Z	2022-11-04T14:00:00.000Z
sca-2022-0014	SICK FlexiCompact affected by Denial of Service vulnerability	2022-10-31T11:00:00.000Z	2022-10-31T11:00:00.000Z
SCA-2022-0014	SICK FlexiCompact affected by Denial of Service vulnerability	2022-10-31T11:00:00.000Z	2022-10-31T11:00:00.000Z
sca-2022-0012	OpenSSL vulnerability affects multiple SICK SIMs	2022-08-08T13:00:00.000Z	2022-08-03T13:00:00.000Z
SCA-2022-0012	OpenSSL vulnerability affects multiple SICK SIMs	2022-08-08T13:00:00.000Z	2022-08-03T13:00:00.000Z
sca-2022-0010	Vulnerability in SICK Flexi Soft Designer & Safety Designer	2022-05-16T10:00:00.000Z	2022-07-19T10:00:00.000Z
SCA-2022-0010	Vulnerability in SICK Flexi Soft Designer & Safety Designer	2022-05-16T10:00:00.000Z	2022-07-19T10:00:00.000Z
sca-2022-0011	Vulnerabilities in SICK Package Analytics	2022-06-08T15:00:00.000Z	2022-06-08T15:00:00.000Z
SCA-2022-0011	Vulnerabilities in SICK Package Analytics	2022-06-08T15:00:00.000Z	2022-06-08T15:00:00.000Z
sca-2022-0009	Vulnerability in SICK Flexi Soft PROFINET IO Gateway FX0-GPNT and SICK microScan3 PROFINET	2022-04-29T15:00:00.000Z	2022-04-29T15:00:00.000Z
sca-2022-0008	Vulnerability in SICK Gateways for Flexi Soft, Flexi Compact, SICK EFI Gateway UE4740, SICK microScan3 and outdoorScan3	2022-04-29T15:00:00.000Z	2022-04-29T15:00:00.000Z
SCA-2022-0009	Vulnerability in SICK Flexi Soft PROFINET IO Gateway FX0-GPNT and SICK microScan3 PROFINET	2022-04-29T15:00:00.000Z	2022-04-29T15:00:00.000Z

ID	Description	Published	Updated
nn-2023_10-01	DoS on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023:9-01	Authenticated SQL Injection on Query functionality in Guardian/CMC before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023:8-01	Session Fixation in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023:7-01	DoS via SAML configuration in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023:6-01	Partial DoS on Reports section due to null report name in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023:4-01	Stored Cross-Site Scripting (XSS) in Threat Intelligence rules in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023:3-01	Authenticated Blind SQL Injection on alerts count in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023:2-01	Authenticated Blind SQL Injection on sorting in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023:17-01	Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1	2024-04-10T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023:15-01	Sensitive data exfiltration via unsafe permissions on Windows systems in Arc before v1.6.0	2024-05-15T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023:12-01	Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0	2024-01-15T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023:11-01	SQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023:10-01	DoS on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2022_2-02	Authenticated RCE on project configuration import in Guardian/CMC before 22.0.0	2022-02-14T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2022_2-01	Authenticated RCE on logo report upload in Guardian/CMC before 22.0.0	2022-02-14T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2022:2-02	Authenticated RCE on project configuration import in Guardian/CMC before 22.0.0	2022-02-14T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2022:2-01	Authenticated RCE on logo report upload in Guardian/CMC before 22.0.0	2022-02-14T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2024:2-01	Incorrect authorization for Reports configuration in Guardian/CMC before 24.2.0	2024-09-11T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2024:1-01	DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1	2024-04-10T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:9-01	Authenticated SQL Injection on Query functionality in Guardian/CMC before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:8-01	Session Fixation in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:7-01	DoS via SAML configuration in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:6-01	Partial DoS on Reports section due to null report name in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:4-01	Stored Cross-Site Scripting (XSS) in Threat Intelligence rules in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:3-01	Authenticated Blind SQL Injection on alerts count in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:2-01	Authenticated Blind SQL Injection on sorting in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:17-01	Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1	2024-04-10T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:15-01	Sensitive data exfiltration via unsafe permissions on Windows systems in Arc before v1.6.0	2024-05-15T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:12-01	Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0	2024-01-15T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:11-01	SQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2024-09-19T11:00:00.000Z

ID	Description	Published	Updated
OXAS-ADV-2023-0006	OX App Suite Security Advisory OXAS-ADV-2023-0006	2023-09-25T00:00:00+02:00	2024-01-22T00:00:00+00:00
OXAS-ADV-2023-0005	OX App Suite Security Advisory OXAS-ADV-2023-0005	2023-09-19T00:00:00+02:00	2024-01-22T00:00:00+00:00
OXAS-ADV-2023-0004	OX App Suite Security Advisory OXAS-ADV-2023-0004	2023-08-01T00:00:00+02:00	2024-01-22T00:00:00+00:00
OXAS-ADV-2023-0003	OX App Suite Security Advisory OXAS-ADV-2023-0003	2023-05-02T00:00:00+02:00	2024-01-22T00:00:00+00:00
OXAS-ADV-2023-0002	OX App Suite Security Advisory OXAS-ADV-2023-0002	2023-03-20T00:00:00+01:00	2024-01-22T00:00:00+00:00
OXAS-ADV-2023-0001	OX App Suite Security Advisory OXAS-ADV-2023-0001	2023-02-06T00:00:00+01:00	2024-01-22T00:00:00+00:00
OXAS-ADV-2022-0002	OX App Suite Security Advisory OXAS-ADV-2022-0002	2022-11-02T00:00:00+01:00	2024-01-22T00:00:00+00:00
OXAS-ADV-2022-0001	OX App Suite Security Advisory OXAS-ADV-2022-0001	2022-08-10T00:00:00+02:00	2024-01-22T00:00:00+00:00

ID	Description	Updated
var-201801-0152	An Untrusted Pointer Dereference issue was discovered in Advantech WebAccess versions pri…	2024-11-29T22:49:44.989000Z
var-202004-0077	There are multiple ways an unauthenticated attacker could perform SQL injection on WebAcc…	2024-11-29T22:49:10.471000Z
var-202411-1369	A parameter within a command does not properly validate input within myPRO Manager which …	2024-11-29T22:48:08.493000Z
var-202411-1372	The web application uses a weak authentication mechanism to verify that a request is comi…	2024-11-29T22:48:08.477000Z
var-202411-1370	An OS Command Injection vulnerability exists within myPRO Manager. A parameter within a c…	2024-11-29T22:48:08.461000Z
var-202411-1371	The administrative interface listens by default on all interfaces on a TCP port and does …	2024-11-29T22:48:08.445000Z
var-202411-1373	The back-end does not sufficiently verify the user-controlled filename parameter which ma…	2024-11-29T22:48:08.429000Z
var-200512-0300	Heap-based buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to exe…	2024-11-29T22:47:57.596000Z
var-200512-0643	Heap-based buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to exe…	2024-11-29T22:47:55.749000Z
var-200512-0297	Integer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbit…	2024-11-29T22:47:55.685000Z
var-200512-0611	Multiple heap-based buffer overflows in QuickTime.qts in Apple QuickTime Player 7.0.3 and…	2024-11-29T22:47:55.607000Z
var-200512-0294	Buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitr…	2024-11-29T22:47:55.530000Z
var-201112-0097	Stack-based buffer overflow in the CmpWebServer component in 3S CoDeSys 3.4 SP4 Patch 2 a…	2024-11-29T22:47:02.572000Z
var-201805-1143	In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and pr…	2024-11-29T22:46:30.150000Z
var-201805-1144	In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and pr…	2024-11-29T22:46:30.043000Z
var-201806-1058	Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC, and TSW-560-NC devices befo…	2024-11-29T22:46:29.795000Z
var-201902-0647	LCDS Laquis SCADA prior to version 4.1.0.4150 allows execution of script code by opening …	2024-11-29T22:46:28.037000Z
var-200202-0006	Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause…	2024-11-29T22:46:09.598000Z
var-200107-0035	slapd in OpenLDAP 1.x before 1.2.12, and 2.x before 2.0.8, allows remote attackers to cau…	2024-11-29T22:45:37.258000Z
var-200607-0396	Multiple stack-based buffer overflows in eIQnetworks Enterprise Security Analyzer (ESA) b…	2024-11-29T22:45:25.291000Z
var-201601-0038	Multiple stack-based buffer overflows in Advantech WebAccess before 8.1 allow remote atta…	2024-11-29T22:42:17.893000Z
var-201801-0394	TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbi…	2024-11-29T22:41:34.504000Z
var-201805-1147	WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length heap buffe…	2024-11-29T22:41:28.661000Z
var-201904-0181	Advantech WebAccess/SCADA, Versions 8.3.5 and prior. Multiple stack-based buffer overflow…	2024-11-29T22:41:17.815000Z
var-202001-0833	A Denial of Service vulnerability exists in the WRITE_C function in the msg_server.exe mo…	2024-11-29T22:41:12.131000Z
var-202001-0832	A Buffer Overflow vulnerability exists in the Message Server service _MsJ2EE_AddStatistic…	2024-11-29T22:41:12.054000Z
var-201208-0222	Multiple stack-based buffer overflows in msg_server.exe in SAP NetWeaver ABAP 7.x allow r…	2024-11-29T22:41:11.980000Z
var-202005-0008	Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple heap-based buf…	2024-11-29T22:41:10.312000Z
var-202007-0395	Advantech iView, versions 5.6 and prior, contains multiple SQL injection vulnerabilities …	2024-11-29T22:41:08.364000Z
var-202106-0542	A CWE-287: Improper Authentication vulnerability exists in PowerLogic PM55xx, PowerLogic …	2024-11-29T22:41:05.439000Z

ID	Description	Published	Updated
jvndb-2025-000100	Multiple Roboticsware products register Windows services with unquoted file paths	2025-11-04T14:17+09:00	2025-11-04T14:17+09:00
jvndb-2025-000098	Optical Disc Archive Software (for Windows) registers a Windows service with an unquoted file path	2025-11-04T13:51+09:00	2025-11-04T13:51+09:00
jvndb-2025-000099	Progress Flowmon vulnerable to authenticated OS command injection	2025-11-04T12:47+09:00	2025-11-04T12:47+09:00
jvndb-2025-000096	Installer of WTW EAGLE (for Windows) may insecurely load Dynamic Link Libraries	2025-10-29T14:17+09:00	2025-10-29T14:17+09:00
jvndb-2025-000095	MZK-DP300N uses hard-coded credentials	2025-10-28T14:04+09:00	2025-10-28T14:04+09:00
jvndb-2025-014793	NIHON KOHDEN Central Monitor CNS-6201 vulnerable to NULL pointer dereference	2025-10-01T11:35+09:00	2025-10-27T12:28+09:00
jvndb-2025-000093	Multiple stored cross-site scripting vulnerabilities in Pleasanter	2025-10-24T15:11+09:00	2025-10-24T15:11+09:00
jvndb-2025-000084	GROWI vulnerable to cross-site scripting	2025-10-22T15:44+09:00	2025-10-22T15:44+09:00
jvndb-2025-000090	Multiple stored cross-site scripting vulnerabilities in Movable Type	2025-10-22T13:54+09:00	2025-10-22T13:54+09:00
jvndb-2025-000088	Lanscope Endpoint Manager (On-Premises) vulnerable to improper verification of source of a communication channel	2025-10-20T16:17+09:00	2025-10-22T10:06+09:00
jvndb-2025-000092	ETERNUS SF vulnerable to incorrect default permissions	2025-10-20T14:20+09:00	2025-10-20T14:20+09:00
jvndb-2025-000089	Installer of AutoDownloader may insecurely load Dynamic Link Libraries	2025-10-17T13:38+09:00	2025-10-17T13:38+09:00
jvndb-2025-000074	Multiple vulnerabilities in desknet's NEO	2025-10-16T17:30+09:00	2025-10-16T17:30+09:00
jvndb-2025-000076	Multiple vulnerabilities in ChatLuck	2025-10-16T17:17+09:00	2025-10-16T17:17+09:00
jvndb-2025-000087	Ruijie Networks RG-EST300 undocumented SSH functionality	2025-10-16T14:19+09:00	2025-10-16T14:19+09:00
jvndb-2025-016124	Buffalo Wi-Fi router WXR9300BE6P series vulnerable to path traversal	2025-10-16T11:16+09:00	2025-10-16T11:16+09:00
jvndb-2025-000085	Multiple RSUPPORT products may insecurely load Dynamic Link Libraries	2025-10-15T15:55+09:00	2025-10-15T15:55+09:00
jvndb-2025-000086	Phoenix Contact CHARX SEC-3xxx vulnerable to code injection	2025-10-15T15:54+09:00	2025-10-15T15:54+09:00
jvndb-2025-000083	BUFFALO NAS Navigator2 registers a Windows service with an unquoted file path	2025-10-10T13:56+09:00	2025-10-10T13:56+09:00
jvndb-2025-015451	Multiple vulnerabilities in FUJI Electric V-SFT	2025-10-09T13:39+09:00	2025-10-09T13:39+09:00
jvndb-2025-000081	DataSpider Servista improper restriction of XML external entity references	2025-09-29T14:44+09:00	2025-10-07T16:54+09:00
jvndb-2025-000082	The installers of DENSO TEN drive recorder viewer may insecurely load Dynamic Link Libraries	2025-10-06T15:38+09:00	2025-10-06T15:38+09:00
jvndb-2025-015061	Trend Micro Antivirus for Mac vulnerable to Local Privilege Escalation	2025-10-06T13:52+09:00	2025-10-06T13:52+09:00
jvndb-2025-000044	Denial-of-service (DoS) vulnerabilities in multiple Apache products	2025-06-26T14:41+09:00	2025-10-01T14:18+09:00
jvndb-2025-014642	Multiple vulnerabilities in Canon Printer Drivers for Production Printers, Office/Small Office Multifunction Printers and Laser Printers	2025-09-30T11:50+09:00	2025-09-30T11:50+09:00
jvndb-2025-000066	Improper file access permission settings in multiple i-FILTER products	2025-08-27T19:50+09:00	2025-09-29T13:45+09:00
jvndb-2025-000077	RICOH Streamline NX vulnerable to tampering with operation history	2025-09-08T13:42+09:00	2025-09-24T16:53+09:00
jvndb-2025-007519	Multiple vulnerabilities in multiple BROTHER products	2025-06-26T18:15+09:00	2025-09-22T10:16+09:00
jvndb-2025-014105	OMRON SOCIAL SOLUTIONS Uninterruptible Power Supply (UPS) management application registers a Windows service with an unquoted file path	2025-09-19T16:21+09:00	2025-09-19T16:21+09:00
jvndb-2025-014104	Multiple vulnerabilities in I-O DATA wireless LAN routers	2025-09-19T14:58+09:00	2025-09-19T14:58+09:00

ID	Description	Updated
ts-2022-005	TS-2022-005	2022-11-21T00:00
ts-2022-004	TS-2022-004	2022-11-21T00:00
ts-2022-003	TS-2022-003	2022-06-14T00:00
ts-2022-002	TS-2022-002	2022-05-11T00:00
ts-2022-001	TS-2022-001	2022-02-07T00:00

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated