Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2019-25349 |
4.6 (4.0)
7.5 (3.1)
|
scadaApp for iOS 1.1.4.0 - 'Servername' Denial of Service |
scadaapp |
scadaApp for iOS |
2026-02-18T21:54:56.070Z | 2026-02-19T15:10:23.796Z |
| CVE-2019-25326 |
4.6 (4.0)
6.2 (3.1)
|
ipPulse 1.92 - 'Enter Key' Denial of Service |
Northwest Performance Software, Inc. |
ipPulse |
2026-02-18T21:54:55.158Z | 2026-02-19T15:06:37.732Z |
| CVE-2026-2650 |
8.8 (3.1)
|
Heap buffer overflow in Media in Google Chrome pr… |
Google |
Chrome |
2026-02-18T21:39:04.464Z | 2026-02-19T04:55:53.151Z |
| CVE-2026-2649 |
8.8 (3.1)
|
Integer overflow in V8 in Google Chrome prior to … |
Google |
Chrome |
2026-02-18T21:39:03.873Z | 2026-02-19T04:55:52.326Z |
| CVE-2026-2648 |
8.8 (3.1)
|
Heap buffer overflow in PDFium in Google Chrome p… |
Google |
Chrome |
2026-02-18T21:39:03.100Z | 2026-02-19T11:18:50.122Z |
| CVE-2026-2672 |
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
|
Tsinghua Unigroup Electronic Archives System downLoad … |
Tsinghua Unigroup |
Electronic Archives System |
2026-02-18T21:32:07.412Z | 2026-02-19T15:03:03.632Z |
| CVE-2026-27181 |
8.7 (4.0)
7.5 (3.1)
|
MajorDoMo Unauthenticated Module Uninstall via Market … |
sergejey |
MajorDoMo |
2026-02-18T21:10:41.878Z | 2026-02-18T21:27:03.900Z |
| CVE-2026-27180 |
9.3 (4.0)
9.8 (3.1)
|
MajorDoMo Supply Chain Remote Code Execution via Updat… |
sergejey |
MajorDoMo |
2026-02-18T21:10:41.057Z | 2026-02-20T18:58:28.508Z |
| CVE-2026-27179 |
8.8 (4.0)
8.2 (3.1)
|
MajorDoMo Unauthenticated SQL Injection in Commands Module |
sergejey |
MajorDoMo |
2026-02-18T21:10:40.242Z | 2026-02-20T19:01:28.949Z |
| CVE-2026-27178 |
5.3 (4.0)
7.2 (3.1)
|
MajorDoMo Stored Cross-Site Scripting via Method Param… |
sergejey |
MajorDoMo |
2026-02-18T21:10:39.441Z | 2026-02-20T19:02:22.949Z |
| CVE-2026-27177 |
5.3 (4.0)
7.2 (3.1)
|
MajorDoMo Stored Cross-Site Scripting via Property Set… |
sergejey |
MajorDoMo |
2026-02-18T21:10:38.555Z | 2026-02-20T19:27:41.613Z |
| CVE-2026-27176 |
5.1 (4.0)
6.1 (3.1)
|
MajorDoMo Reflected Cross-Site Scripting in command.php |
sergejey |
MajorDoMo |
2026-02-18T21:10:37.784Z | 2026-02-20T19:31:22.056Z |
| CVE-2026-27175 |
9.2 (4.0)
9.8 (3.1)
|
MajorDoMo Command Injection in rc/index.php via Race C… |
sergejey |
MajorDoMo |
2026-02-18T21:10:36.987Z | 2026-02-18T21:10:36.987Z |
| CVE-2026-27174 |
9.3 (4.0)
9.8 (3.1)
|
MajorDoMo Unauthenticated Remote Code Execution via Ad… |
sergejey |
MajorDoMo |
2026-02-18T21:10:36.113Z | 2026-02-18T21:10:36.113Z |
| CVE-2026-2670 |
8.6 (4.0)
7.2 (3.1)
7.2 (3.0)
|
Advantech WISE-6610 Background Management openvpn_appl… |
Advantech |
WISE-6610 |
2026-02-18T21:02:08.426Z | 2026-02-20T19:32:51.761Z |
| CVE-2026-2669 |
6.9 (4.0)
6.5 (3.1)
6.5 (3.0)
|
Rongzhitong Visual Integrated Command and Dispatch Pla… |
Rongzhitong |
Visual Integrated Command and Dispatch Platform |
2026-02-18T21:02:06.522Z | 2026-02-20T19:34:16.364Z |
| CVE-2026-24744 |
5.7 (3.1)
|
InvoicePlane has a Stored Cross-Site Scripting (XSS) issue |
InvoicePlane |
InvoicePlane |
2026-02-18T21:01:27.566Z | 2026-02-20T19:35:24.797Z |
| CVE-2026-24743 |
5.7 (3.1)
|
InvoicePlane has a Stored Cross-Site Scripting (XSS) issue |
InvoicePlane |
InvoicePlane |
2026-02-18T20:59:16.103Z | 2026-02-19T14:58:46.031Z |
| CVE-2026-27182 |
8.6 (4.0)
8.4 (3.1)
|
Saturn Remote Mouse Server UDP Command Injection RCE |
saturnremote |
Saturn Remote Mouse Server |
2026-02-18T20:59:12.092Z | 2026-02-19T14:57:25.386Z |
| CVE-2019-25400 |
4.8 (4.0)
5.4 (3.1)
|
IPFire 2.21 Core Update 127 Multiple XSS via fwhosts.cgi |
Ipfire |
IPFire |
2026-02-18T20:59:11.293Z | 2026-02-19T14:55:01.065Z |
| CVE-2019-25399 |
5.1 (4.0)
6.4 (3.1)
|
IPFire 2.21 Core Update 127 Stored XSS via extrahd.cgi |
Ipfire |
IPFire |
2026-02-18T20:59:10.495Z | 2026-02-19T14:54:11.086Z |
| CVE-2019-25398 |
5.1 (4.0)
6.1 (3.1)
|
IPFire 2.21 Core Update 127 Cross-Site Scripting via o… |
Ipfire |
IPFire |
2026-02-18T20:59:09.712Z | 2026-02-19T14:43:29.706Z |
| CVE-2019-25397 |
5.1 (4.0)
6.1 (3.1)
|
IPFire 2.21 Core Update 127 Cross-Site Scripting via h… |
Ipfire |
IPFire |
2026-02-18T20:59:08.864Z | 2026-02-19T14:41:22.035Z |
| CVE-2019-25396 |
5.1 (4.0)
6.1 (3.1)
|
IPFire 2.21 Core Update 127 Reflected XSS via updatexl… |
Ipfire |
IPFire |
2026-02-18T20:59:07.991Z | 2026-02-19T14:39:20.005Z |
| CVE-2026-24746 |
5.7 (3.1)
|
InvoicePlane has a Stored Cross-Site Scripting (XSS) issue |
InvoicePlane |
InvoicePlane |
2026-02-18T20:51:20.813Z | 2026-02-18T21:23:14.039Z |
| CVE-2026-0665 |
6.5 (3.1)
|
Qemu-kvm: heap off-by-one in kvm xen physdevop_map_pirq |
|
|
2026-02-18T20:50:03.724Z | 2026-02-18T21:27:14.216Z |
| CVE-2025-8860 |
3.3 (3.1)
|
Qemu-kvm: uefi-vars: information disclosure vulnerabil… |
|
|
2026-02-18T20:49:06.186Z | 2026-02-19T14:35:51.033Z |
| CVE-2025-14876 |
5.5 (3.1)
|
Qemu-kvm: unbounded allocation in virtio-crypto |
|
|
2026-02-18T20:47:54.302Z | 2026-02-19T14:33:52.744Z |
| CVE-2026-1999 |
7.1 (4.0)
|
Incorrect Authorization vulnerability was identified i… |
GitHub |
Enterprise Server |
2026-02-18T20:44:51.396Z | 2026-02-19T14:32:12.248Z |
| CVE-2026-1355 |
6 (4.0)
|
Missing Authorization Check in GitHub Enterprise Serve… |
GitHub |
Enterprise Server |
2026-02-18T20:42:07.180Z | 2026-02-20T19:36:28.885Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-2672 |
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
|
Tsinghua Unigroup Electronic Archives System downLoad … |
Tsinghua Unigroup |
Electronic Archives System |
2026-02-18T21:32:07.412Z | 2026-02-19T15:03:03.632Z |
| CVE-2026-2670 |
8.6 (4.0)
7.2 (3.1)
7.2 (3.0)
|
Advantech WISE-6610 Background Management openvpn_appl… |
Advantech |
WISE-6610 |
2026-02-18T21:02:08.426Z | 2026-02-20T19:32:51.761Z |
| CVE-2026-2669 |
6.9 (4.0)
6.5 (3.1)
6.5 (3.0)
|
Rongzhitong Visual Integrated Command and Dispatch Pla… |
Rongzhitong |
Visual Integrated Command and Dispatch Platform |
2026-02-18T21:02:06.522Z | 2026-02-20T19:34:16.364Z |
| CVE-2026-27182 |
8.6 (4.0)
8.4 (3.1)
|
Saturn Remote Mouse Server UDP Command Injection RCE |
saturnremote |
Saturn Remote Mouse Server |
2026-02-18T20:59:12.092Z | 2026-02-19T14:57:25.386Z |
| CVE-2026-27181 |
8.7 (4.0)
7.5 (3.1)
|
MajorDoMo Unauthenticated Module Uninstall via Market … |
sergejey |
MajorDoMo |
2026-02-18T21:10:41.878Z | 2026-02-18T21:27:03.900Z |
| CVE-2026-27180 |
9.3 (4.0)
9.8 (3.1)
|
MajorDoMo Supply Chain Remote Code Execution via Updat… |
sergejey |
MajorDoMo |
2026-02-18T21:10:41.057Z | 2026-02-20T18:58:28.508Z |
| CVE-2026-2650 |
8.8 (3.1)
|
Heap buffer overflow in Media in Google Chrome pr… |
Google |
Chrome |
2026-02-18T21:39:04.464Z | 2026-02-19T04:55:53.151Z |
| CVE-2026-2649 |
8.8 (3.1)
|
Integer overflow in V8 in Google Chrome prior to … |
Google |
Chrome |
2026-02-18T21:39:03.873Z | 2026-02-19T04:55:52.326Z |
| CVE-2026-2648 |
8.8 (3.1)
|
Heap buffer overflow in PDFium in Google Chrome p… |
Google |
Chrome |
2026-02-18T21:39:03.100Z | 2026-02-19T11:18:50.122Z |
| CVE-2026-27179 |
8.8 (4.0)
8.2 (3.1)
|
MajorDoMo Unauthenticated SQL Injection in Commands Module |
sergejey |
MajorDoMo |
2026-02-18T21:10:40.242Z | 2026-02-20T19:01:28.949Z |
| CVE-2026-27178 |
5.3 (4.0)
7.2 (3.1)
|
MajorDoMo Stored Cross-Site Scripting via Method Param… |
sergejey |
MajorDoMo |
2026-02-18T21:10:39.441Z | 2026-02-20T19:02:22.949Z |
| CVE-2026-27177 |
5.3 (4.0)
7.2 (3.1)
|
MajorDoMo Stored Cross-Site Scripting via Property Set… |
sergejey |
MajorDoMo |
2026-02-18T21:10:38.555Z | 2026-02-20T19:27:41.613Z |
| CVE-2026-27176 |
5.1 (4.0)
6.1 (3.1)
|
MajorDoMo Reflected Cross-Site Scripting in command.php |
sergejey |
MajorDoMo |
2026-02-18T21:10:37.784Z | 2026-02-20T19:31:22.056Z |
| CVE-2026-27175 |
9.2 (4.0)
9.8 (3.1)
|
MajorDoMo Command Injection in rc/index.php via Race C… |
sergejey |
MajorDoMo |
2026-02-18T21:10:36.987Z | 2026-02-18T21:10:36.987Z |
| CVE-2026-27174 |
9.3 (4.0)
9.8 (3.1)
|
MajorDoMo Unauthenticated Remote Code Execution via Ad… |
sergejey |
MajorDoMo |
2026-02-18T21:10:36.113Z | 2026-02-18T21:10:36.113Z |
| CVE-2026-24744 |
5.7 (3.1)
|
InvoicePlane has a Stored Cross-Site Scripting (XSS) issue |
InvoicePlane |
InvoicePlane |
2026-02-18T21:01:27.566Z | 2026-02-20T19:35:24.797Z |
| CVE-2026-24743 |
5.7 (3.1)
|
InvoicePlane has a Stored Cross-Site Scripting (XSS) issue |
InvoicePlane |
InvoicePlane |
2026-02-18T20:59:16.103Z | 2026-02-19T14:58:46.031Z |
| CVE-2019-25401 |
8.7 (4.0)
7.5 (3.1)
|
Bematech Printer MP-4200 TH Denial of Service |
Bematech |
MP-4200 |
2026-02-18T21:55:11.819Z | 2026-02-19T20:08:28.965Z |
| CVE-2019-25400 |
4.8 (4.0)
5.4 (3.1)
|
IPFire 2.21 Core Update 127 Multiple XSS via fwhosts.cgi |
Ipfire |
IPFire |
2026-02-18T20:59:11.293Z | 2026-02-19T14:55:01.065Z |
| CVE-2019-25399 |
5.1 (4.0)
6.4 (3.1)
|
IPFire 2.21 Core Update 127 Stored XSS via extrahd.cgi |
Ipfire |
IPFire |
2026-02-18T20:59:10.495Z | 2026-02-19T14:54:11.086Z |
| CVE-2019-25398 |
5.1 (4.0)
6.1 (3.1)
|
IPFire 2.21 Core Update 127 Cross-Site Scripting via o… |
Ipfire |
IPFire |
2026-02-18T20:59:09.712Z | 2026-02-19T14:43:29.706Z |
| CVE-2019-25397 |
5.1 (4.0)
6.1 (3.1)
|
IPFire 2.21 Core Update 127 Cross-Site Scripting via h… |
Ipfire |
IPFire |
2026-02-18T20:59:08.864Z | 2026-02-19T14:41:22.035Z |
| CVE-2019-25396 |
5.1 (4.0)
6.1 (3.1)
|
IPFire 2.21 Core Update 127 Reflected XSS via updatexl… |
Ipfire |
IPFire |
2026-02-18T20:59:07.991Z | 2026-02-19T14:39:20.005Z |
| CVE-2019-25365 |
8.4 (4.0)
9.8 (3.1)
|
ChaosPro 2.0 - Buffer Overflow |
Chaospro |
ChaosPro |
2026-02-18T21:55:11.104Z | 2026-02-19T20:08:42.024Z |
| CVE-2019-25364 |
9.3 (4.0)
9.8 (3.1)
|
Win10 MailCarrier 2.51 - 'POP3 User' Remote Buffer Overflow |
TABS Laboratories Corporation |
Win10 MailCarrier |
2026-02-18T21:55:10.094Z | 2026-02-19T20:08:53.368Z |
| CVE-2019-25363 |
8.4 (4.0)
7.5 (3.1)
|
WMV to AVI MPEG DVD WMV Convertor 4.6.1217 - Denial of… |
Alloksoft |
WMV to AVI MPEG DVD WMV Convertor |
2026-02-18T21:55:09.268Z | 2026-02-19T20:09:07.038Z |
| CVE-2019-25362 |
9.3 (4.0)
9.8 (3.1)
|
WMV to AVI MPEG DVD WMV Convertor 4.6.1217 - Buffer OverFlow |
Alloksoft |
WMV to AVI MPEG DVD WMV Convertor |
2026-02-18T21:55:08.448Z | 2026-02-19T20:09:18.092Z |
| CVE-2019-25361 |
8.6 (4.0)
9.8 (3.1)
|
Ayukov NFTP client 1.71 - 'SYST' Buffer Overflow |
Ayukov |
Ayukov NFTP client |
2026-02-18T21:55:07.501Z | 2026-02-19T20:09:29.375Z |
| CVE-2019-25360 |
8.4 (4.0)
9.8 (3.1)
|
Aida64 6.10.5200 - Buffer Overflow |
FinalWire Ltd. |
Aida64 |
2026-02-18T21:55:06.734Z | 2026-02-19T20:09:41.717Z |
| CVE-2019-25359 |
8.8 (4.0)
8.2 (3.1)
|
SD.NET RIM 4.7.3c - 'idtyp' SQL Injection |
Sitzungsdienst |
SD.NET RIM |
2026-02-18T21:55:05.859Z | 2026-02-19T20:09:53.575Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2026-1507 | The affected products are vulnerable to an uncaught exception that could allow an unauthenticated a… | 2026-02-10T21:16:01.647 | 2026-02-10T21:51:48.077 |
| fkie_cve-2026-1495 | The vulnerability, if exploited, could allow an attacker with Event Log Reader (S-1-5-32-573) privi… | 2026-02-10T21:16:01.470 | 2026-02-10T21:51:48.077 |
| fkie_cve-2025-12699 | The ZOLL ePCR IOS application reflects unsanitized user input into a WebView. Attacker-controlled s… | 2026-02-10T21:15:59.187 | 2026-02-10T21:51:48.077 |
| fkie_cve-2026-2303 | The mongo-go-driver repository contains CGo bindings for GSSAPI (Kerberos) authentication on Linux … | 2026-02-10T20:17:00.757 | 2026-02-10T21:51:48.077 |
| fkie_cve-2026-21349 | Lightroom Desktop versions 15.1 and earlier are affected by an out-of-bounds write vulnerability th… | 2026-02-10T20:16:55.590 | 2026-02-19T17:50:30.293 |
| fkie_cve-2026-21348 | Substance3D - Modeler versions 1.22.5 and earlier are affected by an out-of-bounds read vulnerabili… | 2026-02-10T20:16:55.420 | 2026-02-12T19:07:46.840 |
| fkie_cve-2026-1763 | Vulnerability in GE Vernova Enervista UR Setup on Windows.This issue affects Enervista: 8.6 and pre… | 2026-02-10T20:16:53.073 | 2026-02-10T21:51:48.077 |
| fkie_cve-2026-1762 | A vulnerability in GE Vernova Enervista UR Setup on Windows allows File Manipulation.This issue aff… | 2026-02-10T20:16:52.940 | 2026-02-10T21:51:48.077 |
| fkie_cve-2025-54514 | Improper isolation of shared resources on a system on a chip by a malicious local attacker with hig… | 2026-02-10T20:16:46.473 | 2026-02-10T21:51:48.077 |
| fkie_cve-2025-52536 | Improper Prevention of Lock Bit Modification in SEV firmware could allow a privileged attacker to d… | 2026-02-10T20:16:46.320 | 2026-02-10T21:51:48.077 |
| fkie_cve-2025-52534 | Improper bound check within AMD CPU microcode can allow a malicious guest to write to host memory, … | 2026-02-10T20:16:46.063 | 2026-02-10T21:51:48.077 |
| fkie_cve-2025-48517 | Insufficient Granularity of Access Control in SEV firmware could allow a privileged user with a mal… | 2026-02-10T20:16:45.407 | 2026-02-10T21:51:48.077 |
| fkie_cve-2025-48515 | Insufficient parameter sanitization in AMD Secure Processor (ASP) Boot Loader could allow an attack… | 2026-02-10T20:16:45.250 | 2026-02-10T21:51:48.077 |
| fkie_cve-2025-48514 | Insufficient Granularity of Access Control in SEV firmware can allow a privileged attacker to creat… | 2026-02-10T20:16:45.097 | 2026-02-10T21:51:48.077 |
| fkie_cve-2025-48509 | Missing Checks in certain functions related to RMP initialization can allow a local admin privilege… | 2026-02-10T20:16:44.957 | 2026-02-10T21:51:48.077 |
| fkie_cve-2025-29952 | Improper Initialization within the AMD Secure Encrypted Virtualization (SEV) firmware can allow an … | 2026-02-10T20:16:44.767 | 2026-02-10T21:51:48.077 |
| fkie_cve-2025-29951 | A buffer overflow in the AMD Secure Processor (ASP) bootloader could allow an attacker to overwrite… | 2026-02-10T20:16:44.630 | 2026-02-10T21:51:48.077 |
| fkie_cve-2025-29950 | Improper input validation in system management mode (SMM) could allow a privileged attacker to over… | 2026-02-10T20:16:44.493 | 2026-02-10T21:51:48.077 |
| fkie_cve-2025-29949 | Insufficient input parameter sanitization in AMD Secure Processor (ASP) Boot Loader (legacy recover… | 2026-02-10T20:16:44.337 | 2026-02-10T21:51:48.077 |
| fkie_cve-2025-29948 | Improper access control in AMD Secure Encrypted Virtualization (SEV) firmware could allow a malicio… | 2026-02-10T20:16:44.197 | 2026-02-10T21:51:48.077 |
| fkie_cve-2025-29946 | Insufficient or Incomplete Data Removal in Hardware Component in SEV firmware doesn't fully flush I… | 2026-02-10T20:16:44.057 | 2026-02-10T21:51:48.077 |
| fkie_cve-2025-29939 | Improper access control in secure encrypted virtualization (SEV) could allow a privileged attacker … | 2026-02-10T20:16:43.910 | 2026-02-10T21:51:48.077 |
| fkie_cve-2025-0031 | A use after free in the SEV firmware could allow a malicous hypervisor to activate a migrated guest… | 2026-02-10T20:16:43.477 | 2026-02-10T21:51:48.077 |
| fkie_cve-2025-0029 | Improper handling of error condition during host-induced faults can allow a local high-privileged a… | 2026-02-10T20:16:43.337 | 2026-02-10T21:51:48.077 |
| fkie_cve-2025-0012 | Improper handling of overlap between the segmented reverse map table (RMP) and system management mo… | 2026-02-10T20:16:43.193 | 2026-02-10T21:51:48.077 |
| fkie_cve-2024-36355 | Improper input validation in the SMM handler could allow an attacker with Ring0 access to write to … | 2026-02-10T20:16:42.817 | 2026-02-12T18:16:06.423 |
| fkie_cve-2024-36311 | A Time-of-check time-of-use (TOCTOU) race condition in the SMM communications buffer could allow a … | 2026-02-10T20:16:42.687 | 2026-02-10T21:51:48.077 |
| fkie_cve-2024-36310 | Improper input validation in the SMM communications buffer could allow a privileged attacker to per… | 2026-02-10T20:16:42.550 | 2026-02-10T21:51:48.077 |
| fkie_cve-2024-21953 | Improper input validation in IOMMU could allow a malicious hypervisor to reconfigure IOMMU register… | 2026-02-10T20:16:42.407 | 2026-02-10T21:51:48.077 |
| fkie_cve-2021-26410 | Improper syscall input validation in ASP (AMD Secure Processor) may force the kernel into reading s… | 2026-02-10T20:16:42.227 | 2026-02-10T21:51:48.077 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-h437-rr98-fx56 |
|
In the Linux kernel, the following vulnerability has been resolved: xfs: fix UAF in xchk_btree_che… | 2026-02-18T18:30:40Z | 2026-02-18T18:30:40Z |
| ghsa-g3vh-wfh4-fp76 |
|
In the Linux kernel, the following vulnerability has been resolved: drm/exynos: vidi: use ctx->loc… | 2026-02-18T18:30:40Z | 2026-02-18T18:30:40Z |
| ghsa-f7pj-q7w5-89fg |
|
In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Validate sp bef… | 2026-02-18T18:30:40Z | 2026-02-19T18:31:44Z |
| ghsa-chpq-fr33-gp2m |
7.5 (3.1)
8.7 (4.0)
|
When BIG-IP AFM or BIG-IP DDoS is provisioned, undisclosed traffic can cause TMM to terminate. Not… | 2026-02-18T18:30:40Z | 2026-02-18T18:30:40Z |
| ghsa-9wwr-2jh3-482p |
|
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix infinite loop cause… | 2026-02-18T18:30:40Z | 2026-02-19T18:31:44Z |
| ghsa-8rqj-9226-cwx7 |
8.8 (3.1)
|
code-projects Scholars Tracking System 1.0 allows an authenticated attacker to achieve remote code … | 2026-02-18T18:30:40Z | 2026-02-18T21:31:22Z |
| ghsa-8j5g-3q2r-xfjh |
|
In the Linux kernel, the following vulnerability has been resolved: erofs: fix UAF issue for file-… | 2026-02-18T18:30:40Z | 2026-02-18T18:30:40Z |
| ghsa-876r-52fj-4pxf |
|
In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Delay module un… | 2026-02-18T18:30:40Z | 2026-02-19T18:31:43Z |
| ghsa-7p94-766c-hgjp |
10.0 (3.1)
|
NLTK has a Zip Slip Vulnerability | 2026-02-18T18:30:40Z | 2026-02-19T20:27:43Z |
| ghsa-7fjm-558r-4j8r |
7.5 (3.1)
|
Missing authentication and authorization in print_membership_card.php in CodeAstro Membership Manag… | 2026-02-18T18:30:40Z | 2026-02-18T18:30:40Z |
| ghsa-78xc-39m5-v2c6 |
|
In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: Avoid creating … | 2026-02-18T18:30:40Z | 2026-02-19T18:31:43Z |
| ghsa-6rjp-j8mc-4f57 |
3.3 (3.1)
1.9 (4.0)
|
A vulnerability has been found in wren-lang wren up to 0.4.0. This impacts the function printError … | 2026-02-18T18:30:40Z | 2026-02-18T18:30:40Z |
| ghsa-64jv-v62f-2xrg |
4.3 (3.1)
|
In Splunk Enterprise versions below 10.0.2, 10.0.3, 9.4.8, and 9.3.9, a low-privileged user who doe… | 2026-02-18T18:30:40Z | 2026-02-18T18:30:40Z |
| ghsa-5qf3-3gp9-pjx6 |
|
In the Linux kernel, the following vulnerability has been resolved: crypto: omap - Allocate OMAP_C… | 2026-02-18T18:30:40Z | 2026-02-19T18:31:44Z |
| ghsa-5q5x-wqxc-vv25 |
9.8 (3.1)
|
CodeAstro Membership Management System 1.0 contains a missing authentication vulnerability in delet… | 2026-02-18T18:30:40Z | 2026-02-18T18:30:40Z |
| ghsa-5pqm-c33h-22jc |
9.1 (3.1)
|
Missing authentication in multiple administrative action scripts under /admin/ in ProjectWorlds Onl… | 2026-02-18T18:30:40Z | 2026-02-18T21:31:22Z |
| ghsa-5jgq-pv8m-5cx7 |
|
In the Linux kernel, the following vulnerability has been resolved: ksmbd: add chann_lock to prote… | 2026-02-18T18:30:40Z | 2026-02-18T18:30:40Z |
| ghsa-55vh-w3p8-qq9g |
9.4 (3.1)
|
SourceCodester Customer Support System 1.0 contains an incorrect access control vulnerability in aj… | 2026-02-18T18:30:40Z | 2026-02-18T21:31:22Z |
| ghsa-4vmx-r9fj-4cm5 |
4.3 (3.1)
|
In Splunk Enterprise versions below 10.2.0, 10.0.2, 9.4.8, 9.3.9, and 9.2.12, and Splunk Cloud Plat… | 2026-02-18T18:30:40Z | 2026-02-19T21:30:44Z |
| ghsa-4v8p-q39m-4pj8 |
3.5 (3.1)
|
In Splunk Enterprise versions below 10.2.0, 10.0.3, 9.4.5, 9.3.7, and 9.2.9, and Splunk Cloud Platf… | 2026-02-18T18:30:40Z | 2026-02-18T18:30:40Z |
| ghsa-3w2g-4qx3-2mmw |
|
In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Free sp in erro… | 2026-02-18T18:30:40Z | 2026-02-19T18:31:43Z |
| ghsa-365g-rr2h-rx65 |
|
In the Linux kernel, the following vulnerability has been resolved: wifi: rtl8xxxu: fix slab-out-o… | 2026-02-18T18:30:40Z | 2026-02-18T18:30:40Z |
| ghsa-xw73-fccw-fgc4 |
9.8 (3.1)
|
ZoneMinder v1.36.34 is vulnerable to Command Injection in web/views/image.php. The application pass… | 2026-02-18T18:30:39Z | 2026-02-18T18:30:39Z |
| ghsa-w94g-pmcx-r454 |
|
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: Fix alignment fau… | 2026-02-18T18:30:39Z | 2026-02-18T18:30:39Z |
| ghsa-fqrv-m9rv-j33j |
9.8 (3.1)
|
UTT HiPER 810 / nv810v4 router firmware v1.5.0-140603 was discovered to contain insecure default cr… | 2026-02-18T18:30:39Z | 2026-02-18T18:30:39Z |
| ghsa-f2fg-5m3g-hqwv |
6.5 (3.1)
|
mayswind ezbookkeeping versions 1.2.0 and earlier contain a critical vulnerability in JSON and XML … | 2026-02-18T18:30:39Z | 2026-02-18T18:30:39Z |
| ghsa-6xrx-3vj8-2rjc |
|
In the Linux kernel, the following vulnerability has been resolved: hfs: ensure sb->s_fs_info is a… | 2026-02-18T18:30:39Z | 2026-02-18T18:30:39Z |
| ghsa-5qq8-6gv4-wmcc |
9.5 (4.0)
|
Deserialization of Untrusted Data vulnerability in OpenText™ Directory Services allows Object Injec… | 2026-02-18T18:30:39Z | 2026-02-18T18:30:39Z |
| ghsa-97f8-7cmv-76j2 |
7.1 (4.0)
|
Picklescan (scan_pytorch) Bypass via dynamic eval MAGIC_NUMBER | 2026-02-18T17:45:52Z | 2026-02-18T17:45:52Z |
| ghsa-h9g4-589h-68xv |
7.1 (3.1)
|
OpenClaw has an authentication bypass in sandbox browser bridge server | 2026-02-18T17:45:31Z | 2026-02-18T17:45:31Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2022-215 |
|
The ML-Scanner package in PyPI v0.1.0 to v0.1.5 was discovered to contain a code executio… | ml-scanner | 2022-06-24T21:15:00Z | 2022-07-05T20:33:43.190558Z |
| pysec-2022-214 |
|
The Beginner package in PyPI v0.0.2 to v0.0.4 was discovered to contain a code execution … | beginner | 2022-06-24T21:15:00Z | 2022-07-05T20:33:42.390810Z |
| pysec-2022-43162 |
7.5 (3.1)
|
Redis v7.0 was discovered to contain a memory leak via the component streamGetEdgeID. | redis | 2022-06-23T17:15:00Z | 2024-12-23T11:33:23.546447Z |
| pysec-2022-43059 |
5.5 (3.1)
|
AIOHTTP 3.8.1 can report a "ValueError: Invalid IPv6 URL" outcome, which can lead to a De… | aiohttp | 2022-06-23T17:15:00Z | 2024-02-16T13:47:54.655573Z |
| pysec-2022-210 |
|
An issue was discovered in SaltStack Salt in versions before 3002.9, 3003.5, 3004.2. PAM … | salt | 2022-06-23T17:15:00Z | 2022-06-23T18:47:26.936484Z |
| pysec-2022-211 |
|
Jupyter Server provides the backend (i.e. the core services, APIs, and REST endpoints) fo… | jupyter-server | 2022-06-14T21:15:00Z | 2022-06-24T18:46:20.115761Z |
| pysec-2022-212 |
|
Jupyter Notebook is a web-based notebook environment for interactive computing. Prior to … | notebook | 2022-06-14T18:15:00Z | 2022-08-24T20:50:33.251121Z |
| pysec-2022-209 |
|
Command Injection in GitHub repository nuitka/nuitka prior to 0.9. | nuitka | 2022-06-12T14:15:00Z | 2022-06-23T11:27:14.332916Z |
| pysec-2022-207 |
|
An issue was discovered in Couchbase Sync Gateway 3.x before 3.0.2. Admin credentials are… | couchbase | 2022-06-10T12:15:00Z | 2022-06-17T16:54:24.107616Z |
| pysec-2022-206 |
|
OAuthenticator is an OAuth token library for the JupyerHub login handler. CILogonOAuthent… | oauthenticator | 2022-06-09T13:15:00Z | 2022-06-16T05:33:11.901142Z |
| pysec-2022-43053 |
7.5 (3.1)
|
Vyper is a Pythonic Smart Contract Language for the ethereum virtual machine. In versions… | vyper | 2022-06-09T09:15:00+00:00 | 2023-08-02T18:28:00.437362+00:00 |
| pysec-2022-208 |
|
django-s3file is a lightweight file upload input for Django and Amazon S3 . In versions p… | django-s3file | 2022-06-09T04:15:00Z | 2022-06-17T16:54:24.425121Z |
| pysec-2022-43147 |
9.8 (3.1)
|
pyanxdns package in PyPI version 0.2 is vulnerable to code execution backdoor. The impact… | pyanxdns | 2022-06-08T20:15:00Z | 2024-11-21T14:22:59.309018Z |
| pysec-2022-43071 |
9.8 (3.1)
|
api-res-py package in PyPI 0.1 is vulnerable to a code execution backdoor in the request … | api-res-py | 2022-06-08T20:15:00Z | 2024-11-25T22:25:53.019921Z |
| pysec-2022-43056 |
9.8 (3.1)
|
The keep for python, as distributed on PyPI, included a code-execution backdoor inserted … | keep | 2022-06-08T18:15:00+00:00 | 2023-08-17T03:22:31.636090+00:00 |
| pysec-2022-204 |
|
The package cookiecutter before 2.1.1 are vulnerable to Command Injection via hg argument… | cookiecutter | 2022-06-08T08:15:00Z | 2022-06-08T10:35:31.256727Z |
| pysec-2022-42973 |
|
Flower, a web UI for the Celery Python RPC framework, all versions as of 05-02-2022 is vu… | flower | 2022-06-02T14:15:00Z | 2022-10-26T22:48:00Z |
| pysec-2022-227 |
|
Bottle before 0.12.20 mishandles errors during early request binding. | bottle | 2022-06-02T14:15:00Z | 2023-05-25T05:07:00Z |
| pysec-2022-205 |
|
Waitress is a Web Server Gateway Interface server for Python 2 and 3. Waitress versions 2… | waitress | 2022-05-31T23:15:00Z | 2022-06-14T20:37:51.457649Z |
| pysec-2022-43145 |
9.8 (3.1)
|
libImaging/TgaRleDecode.c in Pillow 9.1.0 has a heap buffer overflow in the processing of… | pillow | 2022-05-25T12:15:00Z | 2024-11-25T18:35:18.357593Z |
| pysec-2022-203 |
|
** DISPUTED ** Improper parsing of HTTP requests in Pallets Werkzeug v2.1.0 and below all… | werkzeug | 2022-05-25T01:15:00Z | 2022-06-07T22:30:02.873111Z |
| pysec-2022-199 |
|
The ctx hosted project on PyPI was taken over via user account compromise and replaced wi… | ctx | 2022-05-24T17:55:00.000000Z | 2022-05-24T17:55:00.000000Z |
| pysec-2022-202 |
|
PyJWT is a Python implementation of RFC 7519. PyJWT supports multiple different JWT signi… | pyjwt | 2022-05-24T15:15:00Z | 2022-06-07T16:57:16.566102Z |
| pysec-2022-43154 |
7.8 (3.1)
|
WASM3 v0.5.0 was discovered to contain a heap overflow via the component /wabt/bin/poc.wasm. | pywasm3 | 2022-05-20T19:15:00Z | 2024-11-25T18:35:18.357593Z |
| pysec-2022-201 |
|
Cross-site Scripting (XSS) - Generic in GitHub repository octoprint/octoprint prior to 1.8.0. | octoprint | 2022-05-18T14:15:00Z | 2022-05-25T22:34:11.424461Z |
| pysec-2022-200 |
|
Cross-site Scripting (XSS) - DOM in GitHub repository octoprint/octoprint prior to 1.8.0. | octoprint | 2022-05-18T14:15:00Z | 2022-05-25T22:34:11.363909Z |
| pysec-2022-185 |
|
marcador package in PyPI 0.1 through 0.13 included a code-execution backdoor. | marcador | 2022-05-08T20:15:00Z | 2022-05-17T18:33:00Z |
| pysec-2022-182 |
|
ADMesh through 0.98.4 has a heap-based buffer over-read in stl_update_connects_remove_1 (… | admesh | 2022-05-08T06:15:00Z | 2022-05-17T21:40:50.660206Z |
| pysec-2022-184 |
|
Keylime does not enforce that the agent registrar data is the same when the tenant uses i… | keylime | 2022-05-06T17:15:00Z | 2022-05-17T21:40:52.506546Z |
| pysec-2022-187 |
|
TkVideoplayer is a simple library to play video files in tkinter. Uncontrolled memory con… | tkvideoplayer | 2022-05-06T00:15:00Z | 2022-05-17T21:41:01.217686Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| MAL-2026-504 | Malicious code in researchpoc (PyPI) | 2026-01-25T10:54:30Z | 2026-01-25T10:54:30Z |
| mal-2026-501 | Malicious code in system-integration-toxi (PyPI) | 2026-01-25T10:15:36Z | 2026-01-25T10:15:36Z |
| MAL-2026-501 | Malicious code in system-integration-toxi (PyPI) | 2026-01-25T10:15:36Z | 2026-01-25T10:15:36Z |
| mal-2026-502 | Malicious code in test-poc-package-for-session (PyPI) | 2026-01-25T10:08:47Z | 2026-01-25T10:08:47Z |
| MAL-2026-502 | Malicious code in test-poc-package-for-session (PyPI) | 2026-01-25T10:08:47Z | 2026-01-25T10:08:47Z |
| mal-2026-503 | Malicious code in test-poc-package-for-session-2 (PyPI) | 2026-01-25T10:04:44Z | 2026-01-25T10:04:44Z |
| MAL-2026-503 | Malicious code in test-poc-package-for-session-2 (PyPI) | 2026-01-25T10:04:44Z | 2026-01-25T10:04:44Z |
| mal-2026-500 | Malicious code in zabittest11 (npm) | 2026-01-25T06:56:37Z | 2026-02-02T05:56:31Z |
| MAL-2026-500 | Malicious code in zabittest11 (npm) | 2026-01-25T06:56:37Z | 2026-02-02T05:56:31Z |
| mal-2026-499 | Malicious code in system-integration (PyPI) | 2026-01-25T00:57:28Z | 2026-01-25T10:42:32Z |
| MAL-2026-499 | Malicious code in system-integration (PyPI) | 2026-01-25T00:57:28Z | 2026-01-25T10:42:32Z |
| mal-2026-498 | Malicious code in instascan-pro (PyPI) | 2026-01-24T16:15:55Z | 2026-01-24T16:15:55Z |
| MAL-2026-498 | Malicious code in instascan-pro (PyPI) | 2026-01-24T16:15:55Z | 2026-01-24T16:15:55Z |
| mal-2026-515 | Malicious code in overstock-jenkins (npm) | 2026-01-23T21:37:36Z | 2026-02-02T05:56:29Z |
| MAL-2026-515 | Malicious code in overstock-jenkins (npm) | 2026-01-23T21:37:36Z | 2026-02-02T05:56:29Z |
| mal-2026-514 | Malicious code in overstock-health-express (npm) | 2026-01-23T21:00:46Z | 2026-02-02T05:56:29Z |
| MAL-2026-514 | Malicious code in overstock-health-express (npm) | 2026-01-23T21:00:46Z | 2026-02-02T05:56:29Z |
| mal-2026-497 | Malicious code in test-on-other (npm) | 2026-01-23T18:12:42Z | 2026-01-23T18:12:42Z |
| mal-2026-496 | Malicious code in hemi-btc-staking-actions (npm) | 2026-01-23T18:12:42Z | 2026-02-03T04:04:59Z |
| mal-2026-495 | Malicious code in h-jsencrypt (npm) | 2026-01-23T18:12:42Z | 2026-01-28T17:27:44Z |
| mal-2026-494 | Malicious code in eits (npm) | 2026-01-23T18:12:42Z | 2026-01-28T17:27:43Z |
| MAL-2026-497 | Malicious code in test-on-other (npm) | 2026-01-23T18:12:42Z | 2026-01-23T18:12:42Z |
| MAL-2026-496 | Malicious code in hemi-btc-staking-actions (npm) | 2026-01-23T18:12:42Z | 2026-02-03T04:04:59Z |
| MAL-2026-495 | Malicious code in h-jsencrypt (npm) | 2026-01-23T18:12:42Z | 2026-01-28T17:27:44Z |
| MAL-2026-494 | Malicious code in eits (npm) | 2026-01-23T18:12:42Z | 2026-01-28T17:27:43Z |
| mal-2026-493 | Malicious code in oxnoxon (npm) | 2026-01-23T17:23:01Z | 2026-01-28T17:27:46Z |
| MAL-2026-493 | Malicious code in oxnoxon (npm) | 2026-01-23T17:23:01Z | 2026-01-28T17:27:46Z |
| mal-2026-492 | Malicious code in tableates (PyPI) | 2026-01-23T13:57:05Z | 2026-01-28T19:13:29Z |
| MAL-2026-492 | Malicious code in tableates (PyPI) | 2026-01-23T13:57:05Z | 2026-01-28T19:13:29Z |
| mal-2026-491 | Malicious code in test-on-other-again (npm) | 2026-01-23T12:02:07Z | 2026-01-23T18:48:56Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-1091 | Netgate pfSense: Mehrere Schwachstellen ermöglichen Cross-Site Scripting | 2025-05-18T22:00:00.000+00:00 | 2025-05-18T22:00:00.000+00:00 |
| wid-sec-w-2025-1090 | WatchGuard Firebox: Mehrere Schwachstellen ermöglichen Cross-Site Scripting | 2025-05-18T22:00:00.000+00:00 | 2025-05-18T22:00:00.000+00:00 |
| wid-sec-w-2025-1089 | GNU libc: Schwachstelle ermöglicht Codeausführung | 2025-05-18T22:00:00.000+00:00 | 2026-01-21T23:00:00.000+00:00 |
| wid-sec-w-2025-1084 | ESRI ArcGIS: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-05-15T22:00:00.000+00:00 | 2025-05-18T22:00:00.000+00:00 |
| wid-sec-w-2025-1083 | Netgate pfSense: Mehrere Schwachstellen | 2025-05-15T22:00:00.000+00:00 | 2025-05-18T22:00:00.000+00:00 |
| wid-sec-w-2025-1082 | Nextcloud: Mehrere Schwachstellen | 2025-05-15T22:00:00.000+00:00 | 2025-05-18T22:00:00.000+00:00 |
| wid-sec-w-2025-1081 | Google Cloud Platform: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-05-15T22:00:00.000+00:00 | 2025-05-18T22:00:00.000+00:00 |
| wid-sec-w-2025-1080 | CPython: Schwachstelle ermöglicht Denial of Service | 2025-05-15T22:00:00.000+00:00 | 2025-07-27T22:00:00.000+00:00 |
| wid-sec-w-2025-1079 | Dell PowerScale OneFS: Mehrere Schwachstellen | 2025-05-15T22:00:00.000+00:00 | 2025-05-15T22:00:00.000+00:00 |
| wid-sec-w-2025-1078 | IBM Security Guardium: Schwachstelle ermöglicht Cross-Site Scripting | 2025-05-15T22:00:00.000+00:00 | 2025-05-15T22:00:00.000+00:00 |
| wid-sec-w-2025-1077 | VMware Tanzu Spring Framework: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-05-15T22:00:00.000+00:00 | 2025-10-08T22:00:00.000+00:00 |
| wid-sec-w-2025-1076 | Wibu-Systems CodeMeter: Schwachstelle ermöglicht Privilegieneskalation | 2025-05-15T22:00:00.000+00:00 | 2025-08-12T22:00:00.000+00:00 |
| wid-sec-w-2025-1075 | Dell Computer (Qualcomm Adreno GPU Display Driver): Schwachstelle ermöglicht nicht spezifizierten Angriff | 2025-05-15T22:00:00.000+00:00 | 2025-05-15T22:00:00.000+00:00 |
| wid-sec-w-2025-1074 | Red Hat Enterprise Linux (xdg-utils): Schwachstelle ermöglicht Umgehung von Sicherheitsvorkehrungen | 2025-05-15T22:00:00.000+00:00 | 2025-05-22T22:00:00.000+00:00 |
| wid-sec-w-2025-1073 | Microsoft Defender für Endpoint für Linux: Schwachstelle ermöglicht Privilegieneskalation | 2025-05-15T22:00:00.000+00:00 | 2025-05-15T22:00:00.000+00:00 |
| wid-sec-w-2025-1072 | Bootstrap: Schwachstelle ermöglicht Cross-Site Scripting | 2025-05-15T22:00:00.000+00:00 | 2025-06-01T22:00:00.000+00:00 |
| wid-sec-w-2025-1071 | IBM InfoSphere Information Server: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-05-15T22:00:00.000+00:00 | 2025-05-15T22:00:00.000+00:00 |
| wid-sec-w-2025-1070 | Checkmk: Mehrere Schwachstellen | 2025-05-15T22:00:00.000+00:00 | 2025-05-22T22:00:00.000+00:00 |
| wid-sec-w-2025-1069 | WebKitGTK: Mehrere Schwachstellen | 2025-05-14T22:00:00.000+00:00 | 2025-07-10T22:00:00.000+00:00 |
| wid-sec-w-2025-1068 | TIBCO ActiveMatrix BusinessWorks: Schwachstelle ermöglicht SQL Injection | 2025-05-14T22:00:00.000+00:00 | 2025-05-21T22:00:00.000+00:00 |
| wid-sec-w-2025-1067 | Red Hat Satellite: Schwachstelle ermöglicht Denial of Service | 2025-05-14T22:00:00.000+00:00 | 2025-05-29T22:00:00.000+00:00 |
| wid-sec-w-2025-1066 | Hitachi Ops Center: Mehrere Schwachstellen | 2025-05-14T22:00:00.000+00:00 | 2025-05-18T22:00:00.000+00:00 |
| wid-sec-w-2025-1065 | Drupal Extensions: Mehrere Schwachstellen | 2025-05-14T22:00:00.000+00:00 | 2025-05-21T22:00:00.000+00:00 |
| wid-sec-w-2025-1064 | PaloAlto Networks PAN-OS: Mehrere Schwachstellen | 2025-05-14T22:00:00.000+00:00 | 2025-05-14T22:00:00.000+00:00 |
| wid-sec-w-2025-1063 | PaloAlto Networks GlobalProtect: Mehrere Schwachstellen | 2025-05-14T22:00:00.000+00:00 | 2025-05-14T22:00:00.000+00:00 |
| wid-sec-w-2025-1062 | Mozilla Thunderbird: Mehrere Schwachstellen | 2025-05-14T22:00:00.000+00:00 | 2025-06-11T22:00:00.000+00:00 |
| wid-sec-w-2025-1061 | Vercel Next.js: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-05-14T22:00:00.000+00:00 | 2025-05-14T22:00:00.000+00:00 |
| wid-sec-w-2025-1060 | Red Hat OpenShift: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-05-14T22:00:00.000+00:00 | 2025-05-14T22:00:00.000+00:00 |
| wid-sec-w-2025-1059 | Red Hat Enterprise Linux (Yggdrasil): Schwachstelle ermöglicht Privilegieneskalation | 2025-05-14T22:00:00.000+00:00 | 2025-05-14T22:00:00.000+00:00 |
| wid-sec-w-2025-1058 | Google Chrome / Microsoft Edge: Mehrere Schwachstellen | 2025-05-14T22:00:00.000+00:00 | 2025-07-27T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:23852 | Red Hat Security Advisory: keylime security update | 2025-12-22T11:43:44+00:00 | 2025-12-22T20:41:24+00:00 |
| rhsa-2025:23853 | Red Hat Security Advisory: rsync security update | 2025-12-22T11:41:13+00:00 | 2026-01-28T18:58:18+00:00 |
| rhsa-2025:23851 | Red Hat Security Advisory: go-rpm-macros security update | 2025-12-22T11:31:13+00:00 | 2026-02-03T20:10:54+00:00 |
| rhsa-2025:23842 | Red Hat Security Advisory: rsync security update | 2025-12-22T09:46:13+00:00 | 2026-01-28T18:58:18+00:00 |
| rhsa-2025:23834 | Red Hat Security Advisory: go-rpm-macros security update | 2025-12-22T09:38:58+00:00 | 2026-02-03T20:10:54+00:00 |
| rhsa-2025:23833 | Red Hat Security Advisory: go-rpm-macros security update | 2025-12-22T09:31:10+00:00 | 2026-02-03T20:10:46+00:00 |
| rhsa-2025:23789 | Red Hat Security Advisory: kernel security update | 2025-12-22T03:25:22+00:00 | 2026-01-20T18:09:52+00:00 |
| rhsa-2025:23744 | Red Hat Security Advisory: git-lfs security update | 2025-12-22T02:12:57+00:00 | 2026-01-13T22:07:19+00:00 |
| rhsa-2025:23745 | Red Hat Security Advisory: git-lfs security update | 2025-12-22T02:02:22+00:00 | 2026-01-13T22:14:07+00:00 |
| rhsa-2025:23742 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-12-22T01:58:29+00:00 | 2026-02-06T20:10:31+00:00 |
| rhsa-2025:23739 | Red Hat Security Advisory: mod_md security update | 2025-12-22T01:45:43+00:00 | 2026-01-13T22:11:58+00:00 |
| rhsa-2025:23743 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-12-22T01:45:22+00:00 | 2026-02-06T20:10:31+00:00 |
| rhsa-2025:23737 | Red Hat Security Advisory: go-toolset:rhel8 security update | 2025-12-22T01:43:37+00:00 | 2026-02-21T13:32:24+00:00 |
| rhsa-2025:23746 | Red Hat Security Advisory: grafana security update | 2025-12-22T01:42:33+00:00 | 2026-02-21T13:32:27+00:00 |
| rhsa-2025:23747 | Red Hat Security Advisory: grafana security update | 2025-12-22T01:42:23+00:00 | 2026-02-21T13:32:29+00:00 |
| rhsa-2025:23733 | Red Hat Security Advisory: go-toolset:rhel8 security update | 2025-12-22T01:38:52+00:00 | 2026-02-21T13:32:21+00:00 |
| rhsa-2025:23741 | Red Hat Security Advisory: go-toolset:rhel8 security update | 2025-12-22T01:35:17+00:00 | 2026-02-21T13:32:26+00:00 |
| rhsa-2025:23732 | Red Hat Security Advisory: httpd:2.4 security update | 2025-12-22T01:33:02+00:00 | 2026-01-13T22:14:45+00:00 |
| rhsa-2025:23735 | Red Hat Security Advisory: keylime security update | 2025-12-22T01:29:17+00:00 | 2025-12-22T20:41:22+00:00 |
| rhsa-2025:23736 | Red Hat Security Advisory: grafana security update | 2025-12-22T01:28:57+00:00 | 2026-02-21T13:32:22+00:00 |
| rhsa-2025:23738 | Red Hat Security Advisory: mod_md security update | 2025-12-22T01:28:17+00:00 | 2026-01-13T22:07:46+00:00 |
| rhsa-2025:23740 | Red Hat Security Advisory: go-toolset:rhel8 security update | 2025-12-22T01:19:27+00:00 | 2026-02-21T13:32:28+00:00 |
| rhsa-2025:23731 | Red Hat Security Advisory: RHEL AI 3.0 hdf5 security update | 2025-12-22T00:43:34+00:00 | 2025-12-22T06:08:42+00:00 |
| rhsa-2025:23730 | Red Hat Security Advisory: kpatch-patch-5_14_0-611_9_1 security update | 2025-12-22T00:37:17+00:00 | 2026-01-13T22:15:11+00:00 |
| rhsa-2025:23729 | Red Hat Security Advisory: opentelemetry-collector security update | 2025-12-22T00:22:42+00:00 | 2026-02-18T17:54:45+00:00 |
| rhsa-2025:23700 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-12-18T22:17:44+00:00 | 2026-01-28T05:51:28+00:00 |
| rhsa-2025:23663 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-12-18T20:18:01+00:00 | 2026-01-28T05:51:27+00:00 |
| rhsa-2025:23667 | Red Hat Security Advisory: git-lfs security update | 2025-12-18T19:18:19+00:00 | 2026-01-13T22:06:31+00:00 |
| rhsa-2025:23664 | Red Hat Security Advisory: opentelemetry-collector security update | 2025-12-18T18:53:08+00:00 | 2026-02-18T17:54:45+00:00 |
| rhsa-2025:23648 | Red Hat Security Advisory: ruby:3.3 security update | 2025-12-18T13:21:06+00:00 | 2026-02-03T20:10:40+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-24-137-03 | Siemens Teamcenter Visualization and JT2Go | 2024-05-14T00:00:00.000000Z | 2024-05-14T00:00:00.000000Z |
| icsa-24-137-02 | Siemens SICAM Products | 2024-05-14T00:00:00.000000Z | 2024-06-11T00:00:00.000000Z |
| icsa-24-137-01 | Siemens Parasolid | 2024-05-14T00:00:00.000000Z | 2024-05-14T00:00:00.000000Z |
| icsa-24-130-03 | Delta Electronics InfraSuite Device Master | 2024-05-09T06:00:00.000000Z | 2024-05-09T06:00:00.000000Z |
| icsa-24-130-02 | alpitronic Hypercharger EV charger | 2024-05-09T06:00:00.000000Z | 2024-05-09T06:00:00.000000Z |
| icsa-24-130-01 | Rockwell Automation FactoryTalk Historian SE | 2024-05-09T06:00:00.000000Z | 2024-05-09T06:00:00.000000Z |
| icsa-24-128-02 | SUBNET Substation Server | 2024-05-07T06:00:00.000000Z | 2024-05-07T06:00:00.000000Z |
| icsa-24-128-01 | PTC Codebeamer | 2024-05-07T06:00:00.000000Z | 2024-05-07T06:00:00.000000Z |
| icsa-24-123-02 | Delta Electronics DIAEnergie | 2024-05-02T06:00:00.000000Z | 2024-05-02T06:00:00.000000Z |
| icsa-24-123-01 | CyberPower PowerPanel Business | 2024-05-02T06:00:00.000000Z | 2025-08-07T06:00:00.000000Z |
| icsa-25-023-02 | Hitachi Energy RTU500 Series Product (Update A) | 2024-04-30T12:30:00.000000Z | 2025-09-09T10:00:00.000000Z |
| icsa-24-354-02 | Hitachi Energy SDM600 | 2024-04-30T12:30:00.000000Z | 2024-04-30T12:30:00.000000Z |
| icsa-24-121-01 | Delta Electronics CNCSoft-G2 DOPSoft (Update A) | 2024-04-30T06:00:00.000000Z | 2025-10-16T06:00:00.000000Z |
| icsa-24-116-04 | Honeywell Experion PKS, Experion LX, PlantCruise by Experion, Safety Manager, Safety Manager SC | 2024-04-25T06:00:00.000000Z | 2024-04-25T06:00:00.000000Z |
| icsa-24-116-01 | Hitachi Energy RTU500 Series | 2024-04-25T06:00:00.000000Z | 2024-04-25T06:00:00.000000Z |
| icsa-24-116-03 | Siemens RUGGEDCOM APE1808 devices configured with Palo Alto Networks Virtual NGFW | 2024-04-19T00:00:00.000000Z | 2024-07-09T00:00:00.000000Z |
| icsa-24-109-01 | Unitronics Vision Legacy series (Update A) | 2024-04-18T06:00:00.000000Z | 2024-04-30T06:00:00.000000Z |
| icsa-24-107-04 | RoboDK RoboDK | 2024-04-16T06:00:00.000000Z | 2024-04-16T06:00:00.000000Z |
| icsa-24-107-03 | Rockwell Automation ControlLogix and GuardLogix (Update A) | 2024-04-16T06:00:00.000000Z | 2024-05-09T06:00:00.000000Z |
| icsa-24-107-02 | Electrolink FM/DAB/TV Transmitter | 2024-04-16T06:00:00.000000Z | 2024-04-16T06:00:00.000000Z |
| icsa-24-107-01 | Measuresoft ScadaPro | 2024-04-16T06:00:00.000000Z | 2024-04-16T06:00:00.000000Z |
| icsa-24-102-09 | Rockwell Automation 5015-AENFTXT (Update A) | 2024-04-11T06:00:00.000000Z | 2024-04-25T06:00:00.000000Z |
| icsa-24-100-01 | SUBNET PowerSYSTEM Server and Substation Server | 2024-04-09T06:00:00.000000Z | 2024-04-09T06:00:00.000000Z |
| icsa-24-102-08 | Siemens Telecontrol Server Basic | 2024-04-09T00:00:00.000000Z | 2024-04-09T00:00:00.000000Z |
| icsa-24-102-07 | Siemens SINEC NMS | 2024-04-09T00:00:00.000000Z | 2024-04-09T00:00:00.000000Z |
| icsa-24-102-06 | Siemens Parasolid | 2024-04-09T00:00:00.000000Z | 2024-04-09T00:00:00.000000Z |
| icsa-24-102-05 | Siemens Scalance W1750D | 2024-04-09T00:00:00.000000Z | 2024-04-09T00:00:00.000000Z |
| icsa-24-102-04 | Siemens RUGGEDCOM APE1808 | 2024-04-09T00:00:00.000000Z | 2025-05-13T00:00:00.000000Z |
| icsa-24-102-03 | Siemens RUGGEDCOM APE1808 | 2024-04-09T00:00:00.000000Z | 2024-12-10T00:00:00.000000Z |
| icsa-24-102-02 | Siemens SIMATIC WinCC | 2024-04-09T00:00:00.000000Z | 2025-01-14T00:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-iosxe-ewc-dos-g6jruhrt | Cisco Embedded Wireless Controller Software for Catalyst Access Points Denial of Service Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-ios-nxos-xr-udld-dos-w5hghgtq | Multiple Cisco Operating Systems Unidirectional Link Detection Denial of Service Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-ikev2-ebfrwmpr | Cisco IOS and IOS XE Software IKEv2 AutoReconnect Feature Denial of Service Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-fxo-pattern-bypass-juxgygyv | Cisco IOS and IOS XE Software FXO Interface Destination Pattern Bypass Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-ewlc-ipv6-dos-nmyecnzv | Cisco IOS XE Software for Catalyst 9800 Series Wireless Controllers IPv6 Denial of Service Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-28T15:57:04+00:00 |
| cisco-sa-ewlc-gre-6u4elzat | Cisco IOS XE Software for Catalyst 9800 Series Wireless Controllers EoGRE Denial of Service Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-ewlc-capwap-rce-lygj8kf | Cisco IOS XE Software for Catalyst 9000 Family Wireless Controllers CAPWAP Remote Code Execution Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-ewlc-capwap-dos-gmnjdkoy | Cisco IOS XE Software for Catalyst 9000 Family Wireless Controllers CAPWAP Denial of Service Vulnerabilities | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-cisco-ap-lljsgxv | Cisco Access Points SSH Management Privilege Escalation Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-cbr8snmp-zgjkz9fc | Cisco IOS XE Software for Cisco cBR-8 Converged Broadband Routers Simple Network Management Protocol Denial of Service Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-cbr8-cops-vc2zsjsx | Cisco IOS XE Software for Cisco cBR-8 Converged Broadband Routers Common Open Policy Service Denial of Service Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-asr900acl-ueeycxkv | Cisco ASR 900 and ASR 920 Series Aggregation Services Routers Access Control List Bypass Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-airo-wpa-pktleak-dos-ustygrl | Cisco Aironet Access Points WLAN Control Protocol Packet Buffer Leak Denial of Service Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-aaa-yx47zt8q | Cisco IOS XE Software NETCONF and RESTCONF Authentication Bypass Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-xrbgp-rpki-dos-gvmjqxbk | Cisco IOS XR Software Border Gateway Protocol Resource Public Key Infrastructure Denial of Service Vulnerability | 2021-09-08T16:00:00+00:00 | 2021-09-08T16:00:00+00:00 |
| cisco-sa-npspin-qypwdhfd | Cisco IOS XR Software for ASR 9000 Series Routers Denial of Service Vulnerability | 2021-09-08T16:00:00+00:00 | 2021-10-08T12:18:21+00:00 |
| cisco-sa-lnt-qn9mczwn | Cisco IOS XR Software for Cisco 8000 and Network Convergence System 540 Series Routers Image Verification Vulnerabilities | 2021-09-08T16:00:00+00:00 | 2021-09-08T16:00:00+00:00 |
| cisco-sa-ipsla-za3srrpp | Cisco IOS XR Software IP Service Level Agreements and Two-Way Active Measurement Protocol Denial of Service Vulnerability | 2021-09-08T16:00:00+00:00 | 2021-10-08T12:49:15+00:00 |
| cisco-sa-iosxr-scp-inject-qwzocv2 | Cisco IOS XR Software Arbitrary File Read and Write Vulnerability | 2021-09-08T16:00:00+00:00 | 2022-02-18T14:38:20+00:00 |
| cisco-sa-iosxr-privescal-dzymrkf | Cisco IOS XR Software Authenticated User Privilege Escalation Vulnerabilities | 2021-09-08T16:00:00+00:00 | 2021-09-08T16:00:00+00:00 |
| cisco-sa-iosxr-infodisc-cjldgmc5 | Cisco IOS XR Software Unauthorized Information Disclosure Vulnerability | 2021-09-08T16:00:00+00:00 | 2021-09-08T16:00:00+00:00 |
| cisco-sa-iosxr-dhcp-dos-pjpvrelu | Cisco IOS XR Software DHCP Version 4 Server Denial of Service Vulnerability | 2021-09-08T16:00:00+00:00 | 2021-10-20T17:55:23+00:00 |
| cisco-sa-iosxr-cmd-inj-wbzkvpxc | Cisco IOS XR Software Command Injection Vulnerabilities | 2021-09-08T16:00:00+00:00 | 2021-09-17T17:22:42+00:00 |
| cisco-sa-broadworks-dj9jt67n | Cisco BroadWorks CommPilot Application Software Vulnerabilities | 2021-09-08T16:00:00+00:00 | 2021-09-08T16:00:00+00:00 |
| cisco-sa-prime-info-disc-ntu9fj2 | Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager Information Disclosure Vulnerability | 2021-09-01T16:00:00+00:00 | 2021-09-01T16:00:00+00:00 |
| cisco-sa-prime-collab-xss-fqmde5go | Cisco Prime Collaboration Provisioning Cross-Site Scripting Vulnerability | 2021-09-01T16:00:00+00:00 | 2021-09-01T16:00:00+00:00 |
| cisco-sa-nfvis-g2dmvvh | Cisco Enterprise NFV Infrastructure Software Authentication Bypass Vulnerability | 2021-09-01T16:00:00+00:00 | 2021-09-01T16:00:00+00:00 |
| cisco-sa-ise-xss-4hnzfewr | Cisco Identity Services Engine Cross-Site Scripting Vulnerability | 2021-09-01T16:00:00+00:00 | 2021-09-01T16:00:00+00:00 |
| cisco-sa-insight-infodis-2by2zpbb | Cisco Nexus Insights Authenticated Information Disclosure Vulnerability | 2021-09-01T16:00:00+00:00 | 2021-09-01T16:00:00+00:00 |
| cisco-sa-ucs-ssh-dos-mgvmyrqy | Cisco UCS Manager Software SSH Sessions Denial of Service Vulnerability | 2021-08-25T16:00:00+00:00 | 2021-08-25T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-59211 | Windows Push Notification Information Disclosure Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59210 | Windows Resilient File System (ReFS) Deduplication Service Elevation of Privilege Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59209 | Windows Push Notification Information Disclosure Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59208 | Windows MapUrlToZone Information Disclosure Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59207 | Windows Kernel Elevation of Privilege Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59206 | Windows Resilient File System (ReFS) Deduplication Service Elevation of Privilege Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59205 | Windows Graphics Component Elevation of Privilege Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59204 | Windows Management Services Information Disclosure Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59203 | Windows State Repository API Server File Information Disclosure Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59202 | Windows Remote Desktop Services Elevation of Privilege Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59201 | Network Connection Status Indicator (NCSI) Elevation of Privilege Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59200 | Data Sharing Service Spoofing Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59199 | Software Protection Platform (SPP) Elevation of Privilege Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59198 | Windows Search Service Denial of Service Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59197 | Windows ETL Channel Information Disclosure Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59196 | Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59195 | Microsoft Graphics Component Denial of Service Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59194 | Windows Kernel Elevation of Privilege Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59193 | Windows Management Services Elevation of Privilege Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59192 | Storport.sys Driver Elevation of Privilege Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59191 | Windows Connected Devices Platform Service Elevation of Privilege Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59190 | Windows Search Service Denial of Service Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59189 | Microsoft Brokering File System Elevation of Privilege Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59188 | Microsoft Failover Cluster Information Disclosure Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59187 | Windows Kernel Elevation of Privilege Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59186 | Windows Kernel Information Disclosure Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59185 | NTLM Hash Disclosure Spoofing Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-59184 | Storage Spaces Direct Information Disclosure Vulnerability | 2025-10-14T00:00:00.000Z | 2026-01-02T00:00:00.000Z |
| msrc_cve-2025-58739 | Microsoft Windows File Explorer Spoofing Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| msrc_cve-2025-58738 | Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability | 2025-10-14T00:00:00.000Z | 2025-10-14T00:00:00.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| osv-2023-543 | Security exception in com.github.javaparser.ast.validator.TreeVisitorValidator.accept | 2023-07-05T14:00:23.802979Z | 2023-07-06T14:15:54.844624Z |
| osv-2023-542 | Security exception in net.jsign.appx.Zip64EndOfCentralDirectoryRecord.read | 2023-07-03T14:02:09.091932Z | 2023-07-03T14:02:09.092172Z |
| osv-2023-538 | Heap-buffer-overflow in Gfx::BooleanDecoder::initialize | 2023-07-02T14:01:51.277801Z | 2023-07-02T14:01:51.278050Z |
| osv-2023-536 | Heap-buffer-overflow in Assimp::MD5::MD5Parser::ParseHeader | 2023-07-02T14:00:19.269762Z | 2024-12-19T14:05:46.818834Z |
| osv-2023-528 | Memcpy-param-overlap in pdfi_copy_truetype_font | 2023-06-30T14:02:13.031940Z | 2023-06-30T14:02:13.032223Z |
| osv-2023-527 | Heap-buffer-overflow in default_get_outline | 2023-06-30T14:00:13.481603Z | 2023-06-30T14:00:13.481879Z |
| osv-2023-525 | Security exception in jaz.Zer.reportFinding | 2023-06-29T14:02:01.355682Z | 2023-06-29T14:02:01.355925Z |
| osv-2023-522 | Security exception in com.code_intelligence.jazzer.sanitizers.ServerSideRequestForgery.checkSsrf | 2023-06-29T14:01:00.082855Z | 2023-06-29T14:01:00.083088Z |
| osv-2023-521 | Security exception in com.code_intelligence.jazzer.sanitizers.ServerSideRequestForgery.checkSsrf | 2023-06-29T14:00:49.132217Z | 2023-06-29T14:00:49.132469Z |
| osv-2023-518 | Security exception in com.code_intelligence.jazzer.sanitizers.XPathInjection.checkXpathExecute | 2023-06-29T14:00:20.971481Z | 2023-06-29T14:00:20.971845Z |
| osv-2022-1277 | Heap-use-after-free in mk_event_timeout_destroy | 2023-06-26T14:01:01.876870Z | 2025-12-24T14:19:36.252391Z |
| osv-2023-510 | Heap-buffer-overflow in uofs | 2023-06-25T14:00:26.558044Z | 2023-06-28T14:24:46.618588Z |
| osv-2023-509 | Heap-buffer-overflow in ndpi_search_thrift_tcp_udp | 2023-06-25T14:00:10.361021Z | 2023-06-25T14:00:10.361277Z |
| osv-2023-508 | Heap-buffer-overflow in AffixMgr::compound_check | 2023-06-24T14:02:25.021568Z | 2023-06-24T14:02:25.021810Z |
| osv-2023-507 | Heap-buffer-overflow in IEC104Stats::processPacket | 2023-06-24T14:00:16.342283Z | 2023-11-03T14:22:10.838616Z |
| osv-2023-506 | Use-of-uninitialized-value in dev_io_capture | 2023-06-23T14:00:11.321977Z | 2023-06-23T14:00:11.322306Z |
| osv-2023-505 | UNKNOWN WRITE in regcomp | 2023-06-22T14:02:20.855256Z | 2023-08-01T14:06:27.325503Z |
| osv-2023-504 | Heap-buffer-overflow in ndpi_search_line | 2023-06-22T14:02:08.576791Z | 2023-10-23T14:16:27.982449Z |
| osv-2023-501 | UNKNOWN READ in _dwarf_exec_frame_instr | 2023-06-20T14:02:17.702087Z | 2023-06-20T14:02:17.702338Z |
| osv-2023-499 | Heap-use-after-free in obj_free | 2023-06-20T14:00:45.756059Z | 2023-06-20T14:00:45.756308Z |
| osv-2023-495 | Heap-buffer-overflow in utf8ToUtf16 | 2023-06-18T14:01:41.997633Z | 2023-06-18T14:01:41.997865Z |
| osv-2022-1276 | Stack-buffer-overflow in ntlm_phase_3 | 2023-06-15T14:01:52.594793Z | 2025-07-05T14:11:24.654963Z |
| osv-2023-483 | Security exception in com.github.javaparser.CommentsInserter.insertComments | 2023-06-14T14:01:10.369706Z | 2023-06-14T14:01:10.369959Z |
| osv-2023-480 | Heap-buffer-overflow in NetworkInterface::dissectPacket | 2023-06-12T14:00:08.333482Z | 2023-06-12T14:00:08.333730Z |
| osv-2023-477 | Global-buffer-overflow in htmlParseHTMLAttribute | 2023-06-11T14:01:44.850599Z | 2023-06-11T14:01:44.850846Z |
| osv-2023-474 | Global-buffer-overflow in xmlDictLookup | 2023-06-10T14:00:15.864157Z | 2023-06-10T14:00:15.864439Z |
| osv-2023-472 | Heap-buffer-overflow in TestFuzzCommonAssistanceParseFileBuffer.c | 2023-06-09T14:00:57.791577Z | 2023-06-09T14:00:57.791841Z |
| osv-2023-471 | Heap-buffer-overflow in H5FS__sinfo_serialize_node_cb | 2023-06-09T14:00:54.620201Z | 2025-03-18T00:43:10.716259Z |
| osv-2023-470 | Heap-use-after-free in psi_device_ref_finalize | 2023-06-09T14:00:30.878196Z | 2023-06-09T14:00:30.878475Z |
| osv-2023-467 | Stack-buffer-overflow in SetPitchGradient | 2023-06-08T14:01:12.964629Z | 2024-12-12T14:12:48.510389Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rustsec-2017-0002 | headers containing newline characters can split messages | 2017-01-23T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2016-0006 | `cassandra` crate is unmaintained; use `cassandra-cpp` instead | 2016-12-15T12:00:00Z | 2020-10-02T01:29:11Z |
| rustsec-2016-0001 | SSL/TLS MitM vulnerability due to insecure defaults | 2016-11-05T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2016-0004 | libusb is unmaintained; use rusb instead | 2016-09-10T12:00:00Z | 2020-10-02T01:29:11Z |
| rustsec-2016-0005 | rust-crypto is unmaintained; switch to a modern alternative | 2016-09-06T12:00:00Z | 2022-01-09T20:07:15Z |
| rustsec-2016-0003 | HTTP download and execution allows MitM RCE | 2016-08-01T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2016-0002 | HTTPS MitM vulnerability due to lack of hostname verification | 2016-05-09T12:00:00Z | 2023-06-13T13:10:24Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-moodle-2024-33996 | moodle: broken access control when setting calendar event type | 2025-05-31T05:57:03.857Z | 2025-05-31T06:15:48.797Z |
| bit-keydb-2025-27151 | redis-check-aof may lead to stack overflow and potential RCE | 2025-05-31T05:45:47.374Z | 2025-08-22T06:06:45.932Z |
| bit-pytorch-2025-3001 | PyTorch torch.lstm_cell memory corruption | 2025-05-30T05:57:06.043Z | 2025-05-30T06:16:06.723Z |
| bit-pytorch-2025-3000 | PyTorch torch.jit.script memory corruption | 2025-05-30T05:57:02.547Z | 2025-05-30T06:16:06.723Z |
| bit-pytorch-2025-2999 | PyTorch torch.nn.utils.rnn.unpack_sequence memory corruption | 2025-05-30T05:56:59.244Z | 2025-05-30T06:16:06.723Z |
| bit-pytorch-2025-2998 | PyTorch torch.nn.utils.rnn.pad_packed_sequence memory corruption | 2025-05-30T05:56:55.766Z | 2025-05-30T06:16:06.723Z |
| bit-pytorch-2025-3730 | PyTorch LossCTC.cpp torch.nn.functional.ctc_loss denial of service | 2025-05-29T12:18:15.090Z | 2025-05-29T12:44:55.860Z |
| bit-pytorch-2025-3136 | PyTorch CUDACachingAllocator.cpp torch.cuda.memory.caching_allocator_delete memory corruption | 2025-05-29T12:17:56.494Z | 2025-05-29T12:44:55.860Z |
| bit-gitlab-2024-9163 | User Interface (UI) Misrepresentation of Critical Information in GitLab | 2025-05-28T12:12:54.375Z | 2025-08-11T00:06:06.142Z |
| bit-gitlab-2024-7803 | Allocation of Resources Without Limits or Throttling in GitLab | 2025-05-28T12:12:16.561Z | 2025-08-11T00:06:06.142Z |
| bit-varnish-2025-47905 | 2025-05-28T11:59:55.247Z | 2025-05-30T06:16:06.723Z | |
| bit-pytorch-2025-3121 | PyTorch torch.jit.jit_module_from_flatbuffer memory corruption | 2025-05-28T11:55:44.258Z | 2025-05-28T12:14:51.629Z |
| bit-grafana-2025-3580 | 2025-05-28T11:44:30.552Z | 2025-10-16T11:24:40.537Z | |
| bit-gitlab-2025-4979 | Insufficient Granularity of Access Control in GitLab | 2025-05-26T07:43:31.883Z | 2025-08-11T00:06:06.142Z |
| bit-gitlab-2025-3111 | Allocation of Resources Without Limits or Throttling in GitLab | 2025-05-26T07:43:30.470Z | 2025-06-02T18:14:59.426Z |
| bit-gitlab-2025-2853 | Allocation of Resources Without Limits or Throttling in GitLab | 2025-05-26T07:43:29.030Z | 2025-06-02T18:14:59.426Z |
| bit-gitlab-2025-1110 | Insufficient Granularity of Access Control in GitLab | 2025-05-26T07:43:07.324Z | 2025-06-02T18:14:59.426Z |
| bit-gitlab-2025-0993 | Allocation of Resources Without Limits or Throttling in GitLab | 2025-05-26T07:43:02.994Z | 2025-06-02T18:14:59.426Z |
| bit-gitlab-2025-0679 | Exposure of Private Personal Information to an Unauthorized Actor in GitLab | 2025-05-26T07:43:00.261Z | 2025-06-02T18:14:59.426Z |
| bit-gitlab-2025-0605 | Weak Authentication in GitLab | 2025-05-26T07:42:56.002Z | 2025-06-02T18:14:59.426Z |
| bit-gitlab-2024-12093 | Improper Validation of Consistency within Input in GitLab | 2025-05-26T07:39:36.069Z | 2025-06-02T18:14:59.426Z |
| bit-jenkins-2021-43859 | Denial of Service by injecting highly recursive collections or maps in XStream | 2025-05-26T07:13:32.699Z | 2025-11-06T13:25:46.476Z |
| bit-grafana-2025-4123 | 2025-05-26T07:12:09.889Z | 2025-08-18T08:35:59.174Z | |
| bit-modsecurity2-2025-47947 | ModSecurity Has Possible DoS Vulnerability | 2025-05-26T07:11:20.691Z | 2025-05-27T15:14:44.132Z |
| bit-modsecurity-2025-47947 | ModSecurity Has Possible DoS Vulnerability | 2025-05-26T07:11:15.892Z | 2025-05-26T07:44:26.501Z |
| bit-node-2025-23167 | 2025-05-21T06:00:30.697Z | 2025-05-21T06:18:45.476Z | |
| bit-node-2025-23166 | 2025-05-21T06:00:25.492Z | 2025-05-21T06:18:45.476Z | |
| bit-node-2025-23165 | 2025-05-21T06:00:20.189Z | 2025-05-21T06:18:45.476Z | |
| bit-node-2025-23122 | 2025-05-21T06:00:14.195Z | 2025-05-21T06:18:45.476Z | |
| bit-superset-2025-27696 | Apache Superset: Incorrect authorization leading to resource ownership takeover | 2025-05-16T06:13:17.089Z | 2025-09-02T09:09:29.426Z |
| ID | Description | Updated |
|---|---|---|
| var-201006-1245 | WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4… | 2024-07-23T20:20:13.577000Z |
| var-200906-0618 | Multiple integer overflows in Xpdf 2.x and 3.x and Poppler 0.x, as used in the pdftops fi… | 2024-07-23T20:20:09.578000Z |
| var-200603-0283 | Unspecified vulnerability in Safari, LaunchServices, and/or CoreTypes in Apple Mac OS X 1… | 2024-07-23T20:19:38.862000Z |
| var-202110-1513 | This issue was addressed with improved checks. This issue is fixed in iOS 14.8 and iPadOS… | 2024-07-23T20:19:37.537000Z |
| var-202201-0369 | Heap-based Buffer Overflow in GitHub repository vim prior to 8.2. vim Exists in an out-of… | 2024-07-23T20:19:36.004000Z |
| var-201512-0325 | The xmlSAX2TextNode function in SAX2.c in the push interface in the HTML parser in libxml… | 2024-07-23T20:19:32.648000Z |
| var-202205-1313 | A memory corruption issue was addressed with improved state management. This issue is fix… | 2024-07-23T20:19:31.445000Z |
| var-201512-0531 | The xmlStringLenDecodeEntities function in parser.c in libxml2 before 2.9.3 does not prop… | 2024-07-23T20:19:31.632000Z |
| var-201902-0242 | In the Linux kernel before 4.20.8, kvm_ioctl_create_device in virt/kvm/kvm_main.c mishand… | 2024-07-23T20:19:24.838000Z |
| var-201011-0043 | The WebCore::HTMLLinkElement::process function in WebCore/html/HTMLLinkElement.cpp in Web… | 2024-07-23T20:19:23.854000Z |
| var-201302-0144 | Integer overflow in Adobe Flash Player before 10.3.183.63 and 11.x before 11.6.602.168 on… | 2024-07-23T20:19:19.837000Z |
| var-200603-0272 | IPSec when used with VPN networks in Mac OS X 10.4 through 10.4.5 allows remote attackers… | 2024-07-23T20:19:19.547000Z |
| var-201912-0458 | A memory corruption issue was addressed with improved memory handling. This issue is fixe… | 2024-07-23T20:19:18.056000Z |
| var-201908-1840 | When PHP EXIF extension is parsing EXIF information from an image, e.g. via exif_read_dat… | 2024-07-23T20:18:47.623000Z |
| var-201111-0190 | Integer overflow in the ap_pregsub function in server/util.c in the Apache HTTP Server 2.… | 2024-07-23T20:18:23.378000Z |
| var-201211-0319 | Race condition in WebKit in Apple iOS before 6.0.1 and Safari before 6.0.2 allows remote … | 2024-07-23T20:18:22.202000Z |
| var-200611-0488 | Unspecified vulnerability in Apple Mac OS X 10.4.8, and possibly other versions, allows r… | 2024-07-23T20:18:22.657000Z |
| var-201912-0633 | Multiple memory corruption issues were addressed with improved memory handling. This issu… | 2024-07-23T20:18:16.634000Z |
| var-200009-0023 | VMware Tools in VMware Workstation 6.5.x before 6.5.4 build 246459; VMware Player 2.5.x b… | 2024-07-23T20:18:16.537000Z |
| var-200904-0809 | The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.1… | 2024-07-23T20:18:12.278000Z |
| var-200808-0470 | Cross-site scripting (XSS) vulnerability in proxy_ftp.c in the mod_proxy_ftp module in Ap… | 2024-07-23T20:18:12.672000Z |
| var-202110-1620 | Multiple memory corruption issues were addressed with improved memory handling. This issu… | 2024-07-23T20:18:10.248000Z |
| var-201704-1397 | The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lack certa… | 2024-07-23T20:18:09.167000Z |
| var-200609-1220 | The get_server_hello function in the SSLv2 client code in OpenSSL 0.9.7 before 0.9.7l, 0.… | 2024-07-23T20:18:09.590000Z |
| var-202112-1654 | A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a … | 2024-07-23T20:18:07.199000Z |
| var-201504-0362 | The symmetric-key feature in the receive function in ntp_proto.c in ntpd in NTP 3.x and 4… | 2024-07-23T20:18:07.348000Z |
| var-200703-0026 | The SSH key generation process in OpenSSH in Apple Mac OS X 10.3.9 and 10.4 through 10.4.… | 2024-07-23T20:17:59.571000Z |
| var-201912-0536 | A cross-origin issue existed with the fetch API. This was addressed with improved input v… | 2024-07-23T20:17:22.170000Z |
| var-201806-0859 | Bouncy Castle BC 1.54 - 1.59, BC-FJA 1.0.0, BC-FJA 1.0.1 and earlier have a flaw in the L… | 2024-07-23T20:17:17.373000Z |
| var-201912-0497 | Multiple memory corruption issues were addressed with improved memory handling. This issu… | 2024-07-23T20:17:16.698000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2021-000031 | Gurunavi Apps fail to restrict access permissions | 2021-04-14T17:22+09:00 | 2023-03-08T17:02+09:00 |
| jvndb-2021-001345 | Information Disclosure Vulnerability in Cosminexus | 2021-04-13T16:46+09:00 | 2021-04-13T16:46+09:00 |
| jvndb-2021-001344 | Vulnerability in JP1/VERITAS | 2021-04-13T16:42+09:00 | 2021-04-13T16:42+09:00 |
| jvndb-2021-001343 | D-Link DAP-1880AC contains multiple vulnerabilities | 2021-04-12T15:32+09:00 | 2021-04-12T15:32+09:00 |
| jvndb-2021-000028 | Multiple vulnerabilities in multiple Aterm products | 2021-04-09T17:16+09:00 | 2021-04-09T17:16+09:00 |
| jvndb-2021-000030 | Multiple vulnerabilities in Aterm WF1200CR, Aterm WG1200CR, Aterm WG2600HS, and Aterm WX3000HP | 2021-04-09T16:42+09:00 | 2021-04-09T16:42+09:00 |
| jvndb-2021-000029 | Archive collectively operation utility vulnerable to directory traversal | 2021-04-01T14:44+09:00 | 2021-04-01T14:44+09:00 |
| jvndb-2021-000027 | Multiple vulnerabilities in baserCMS | 2021-03-26T14:25+09:00 | 2021-03-26T14:25+09:00 |
| jvndb-2021-000908 | rNote vulnerable to cross-site scripting | 2021-03-25T18:14+09:00 | 2021-03-25T18:14+09:00 |
| jvndb-2021-000907 | Yomi-Search vulnerable to cross-site scripting | 2021-03-25T18:12+09:00 | 2021-03-25T18:12+09:00 |
| jvndb-2021-000906 | Yomi-Search vulnerable to cross-site scripting | 2021-03-25T18:06+09:00 | 2021-03-25T18:06+09:00 |
| jvndb-2021-000905 | Yomi-Search vulnerable to cross-site scripting | 2021-03-25T18:01+09:00 | 2021-03-25T18:01+09:00 |
| jvndb-2021-000904 | Click Ranker vulnerable to cross-site scripting | 2021-03-25T17:52+09:00 | 2021-03-25T17:52+09:00 |
| jvndb-2021-000903 | Kagemai vulnerable to cross-site request forgery | 2021-03-25T17:50+09:00 | 2021-03-25T17:50+09:00 |
| jvndb-2021-000902 | Kagemai vulnerable to cross-site scripting | 2021-03-25T17:46+09:00 | 2021-03-25T17:46+09:00 |
| jvndb-2021-000901 | Kagemai vulnerable to cross-site scripting | 2021-03-25T17:43+09:00 | 2021-03-25T17:43+09:00 |
| jvndb-2021-000900 | MagazinegerZ vulnerable to cross-site scripting | 2021-03-25T17:32+09:00 | 2021-03-25T17:32+09:00 |
| jvndb-2021-000023 | UNIVERGE Aspire series PBX vulnerable to denial-of-service (DoS) | 2021-03-22T14:57+09:00 | 2021-03-22T14:57+09:00 |
| jvndb-2021-000026 | Fuji Xerox multifunction devices and printers vulnerable to denial-of-service (DoS) | 2021-03-19T15:32+09:00 | 2021-04-12T13:30+09:00 |
| jvndb-2021-000025 | WordPress plugin "Paid Memberships Pro" vulnerable to SQL injection | 2021-03-17T16:24+09:00 | 2021-03-17T16:24+09:00 |
| jvndb-2021-000022 | Multiple vulnerabilities in Cybozu Office | 2021-03-15T15:56+09:00 | 2021-12-17T17:51+09:00 |
| jvndb-2021-000021 | M-System DL8 contains multiple vulnerabilities | 2021-03-12T15:59+09:00 | 2021-03-12T15:59+09:00 |
| jvndb-2021-000020 | Installer of MagicConnect Client program may insecurely load Dynamic Link Libraries | 2021-03-11T14:53+09:00 | 2021-03-11T14:53+09:00 |
| jvndb-2021-000019 | Multiple cross-site scripting vulnerabilities in GROWI | 2021-03-10T16:11+09:00 | 2021-03-10T16:11+09:00 |
| jvndb-2021-001123 | Multiple vulnerabilities in GROWI | 2021-03-09T14:17+09:00 | 2021-09-24T13:34+09:00 |
| jvndb-2021-001122 | Trend Micro Security (Consumer) vulnerable to code injection | 2021-03-08T17:26+09:00 | 2021-03-08T17:26+09:00 |
| jvndb-2021-000018 | The installers of E START products may insecurely load Dynamic Link Libraries | 2021-03-05T17:03+09:00 | 2023-11-16T15:41+09:00 |
| jvndb-2021-000017 | Multiple cross-site scripting vulnerabilities in Movable Type | 2021-02-24T15:20+09:00 | 2021-02-24T15:20+09:00 |
| jvndb-2021-000016 | Multiple vulnerabilities in SolarView Compact | 2021-02-19T16:44+09:00 | 2021-02-25T15:31+09:00 |
| jvndb-2021-001026 | Multiple Vulnerabilities in JP1/Automatic Operation | 2021-02-16T17:23+09:00 | 2021-02-16T17:23+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2025:3956-1 | Security update for ImageMagick | 2025-11-05T14:51:12Z | 2025-11-05T14:51:12Z |
| suse-su-2025:3954-1 | Security update for aws-efs-utils | 2025-11-05T14:06:34Z | 2025-11-05T14:06:34Z |
| suse-su-2025:3951-1 | Security update for runc | 2025-11-05T10:23:31Z | 2025-11-05T10:23:31Z |
| suse-su-2025:3950-1 | Security update for runc | 2025-11-05T10:22:48Z | 2025-11-05T10:22:48Z |
| suse-su-2025:3949-1 | Security update for colord | 2025-11-05T10:04:38Z | 2025-11-05T10:04:38Z |
| suse-su-2025:2990-1 | Security update for ffmpeg | 2025-11-05T09:07:00Z | 2025-11-05T09:07:00Z |
| suse-su-2025:3947-1 | Security update for jasper | 2025-11-05T08:17:44Z | 2025-11-05T08:17:44Z |
| suse-su-2025:3946-1 | Security update for openjpeg | 2025-11-05T08:17:14Z | 2025-11-05T08:17:14Z |
| suse-su-2025:3945-1 | Security update for poppler | 2025-11-05T08:16:53Z | 2025-11-05T08:16:53Z |
| suse-su-2025:3944-1 | Security update for sccache | 2025-11-05T08:16:30Z | 2025-11-05T08:16:30Z |
| suse-su-2025:3943-1 | Security update for qatengine, qatlib | 2025-11-05T08:16:20Z | 2025-11-05T08:16:20Z |
| suse-su-2025:3942-1 | Security update for qatengine, qatlib | 2025-11-05T08:16:02Z | 2025-11-05T08:16:02Z |
| suse-su-2025:3941-1 | Security update for tiff | 2025-11-05T07:15:41Z | 2025-11-05T07:15:41Z |
| suse-su-2025:20937-1 | Security update for libsoup | 2025-11-04T12:45:59Z | 2025-11-04T12:45:59Z |
| suse-su-2025:3936-1 | Security update for the Linux Kernel (Live Patch 9 for SLE 15 SP6) | 2025-11-04T12:04:17Z | 2025-11-04T12:04:17Z |
| suse-su-2025:3935-1 | Security update for the Linux Kernel (Live Patch 6 for SLE 15 SP6) | 2025-11-04T11:34:00Z | 2025-11-04T11:34:00Z |
| suse-su-2025:3932-1 | Security update for the Linux Kernel (Live Patch 12 for SLE 15 SP6) | 2025-11-04T08:04:15Z | 2025-11-04T08:04:15Z |
| suse-su-2025:3927-1 | Security update for the Linux Kernel (Live Patch 8 for SLE 15 SP6) | 2025-11-04T07:04:21Z | 2025-11-04T07:04:21Z |
| suse-su-2025:3926-1 | Security update for the Linux Kernel (Live Patch 72 for SLE 12 SP5) | 2025-11-03T18:03:58Z | 2025-11-03T18:03:58Z |
| suse-su-2025:3919-1 | Security update for nodejs18 | 2025-11-03T10:32:00Z | 2025-11-03T10:32:00Z |
| suse-su-2025:3918-1 | Security update for ImageMagick | 2025-11-03T10:31:34Z | 2025-11-03T10:31:34Z |
| suse-su-2025:3917-1 | Security update for openssl-3-livepatches | 2025-11-03T09:58:08Z | 2025-11-03T09:58:08Z |
| suse-su-2025:3910-1 | Security update for poppler | 2025-11-02T12:18:06Z | 2025-11-02T12:18:06Z |
| suse-su-2025:3909-1 | Security update for xorg-x11-server | 2025-11-02T12:16:51Z | 2025-11-02T12:16:51Z |
| suse-su-2025:3905-1 | Security update for webkit2gtk3 | 2025-11-01T06:27:17Z | 2025-11-01T06:27:17Z |
| suse-su-2025:3904-1 | Security update for strongswan | 2025-11-01T06:27:07Z | 2025-11-01T06:27:07Z |
| suse-su-2025:3903-1 | Security update for bind | 2025-10-31T17:08:27Z | 2025-10-31T17:08:27Z |
| suse-su-2025:3902-1 | Security update for squid | 2025-10-31T17:08:04Z | 2025-10-31T17:08:04Z |
| suse-su-2025:20935-1 | Security update for colord | 2025-10-31T16:29:21Z | 2025-10-31T16:29:21Z |
| suse-su-2025:3900-1 | Security update for poppler | 2025-10-31T14:56:40Z | 2025-10-31T14:56:40Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-30340 | Grav用户枚举和电子邮件泄露漏洞 | 2025-12-03 | 2025-12-09 |
| cnvd-2025-30339 | Grav服务器端模板注入漏洞 | 2025-12-03 | 2025-12-09 |
| cnvd-2025-30338 | Grav权限提升漏洞 | 2025-12-03 | 2025-12-09 |
| cnvd-2025-30337 | Grav不安全的直接对象引用漏洞 | 2025-12-03 | 2025-12-09 |
| cnvd-2025-30302 | Huawei HarmonyOS权限控制漏洞(CNVD-2025-30302) | 2025-12-03 | 2025-12-08 |
| cnvd-2025-30301 | Huawei HarmonyOS身份认证绕过漏洞 | 2025-12-03 | 2025-12-08 |
| cnvd-2025-30300 | Huawei HarmonyOS权限控制漏洞(CNVD-2025-30300) | 2025-12-03 | 2025-12-08 |
| cnvd-2025-30299 | Huawei HarmonyOS权限控制漏洞(CNVD-2025-30299) | 2025-12-03 | 2025-12-08 |
| cnvd-2025-30298 | Huawei HarmonyOS配置缺陷漏洞 | 2025-12-03 | 2025-12-08 |
| cnvd-2025-30297 | Huawei HarmonyOS安全检查标准不当漏洞 | 2025-12-03 | 2025-12-08 |
| cnvd-2025-30296 | Huawei HarmonyOS权限控制漏洞(CNVD-2025-30296) | 2025-12-03 | 2025-12-08 |
| cnvd-2025-30295 | Huawei HarmonyOS权限控制漏洞(CNVD-2025-30295) | 2025-12-03 | 2025-12-08 |
| cnvd-2025-30294 | Huawei HarmonyOS权限控制漏洞 | 2025-12-03 | 2025-12-08 |
| cnvd-2025-30293 | Huawei HarmonyOS拒绝服务漏洞 | 2025-12-03 | 2025-12-08 |
| cnvd-2025-30256 | Huawei HarmonyOS file management模块权限控制漏洞 | 2025-12-03 | 2025-12-08 |
| cnvd-2025-30255 | Huawei HarmonyOS App Lock模块权限控制漏洞 | 2025-12-03 | 2025-12-08 |
| cnvd-2025-30254 | Huawei HarmonyOS screen recording framework模块内存错误引用漏洞(CNVD-2025-30254) | 2025-12-03 | 2025-12-08 |
| cnvd-2025-30253 | Huawei HarmonyOS file management模块权限控制漏洞 | 2025-12-03 | 2025-12-08 |
| cnvd-2025-30252 | Huawei HarmonyOS video-related system service模块拒绝服务漏洞 | 2025-12-03 | 2025-12-08 |
| cnvd-2025-30251 | Huawei HarmonyOS screen recording framework模块内存错误引用漏洞 | 2025-12-03 | 2025-12-08 |
| cnvd-2025-30126 | Devolutions Server存在未明漏洞(CNVD-2025-30126) | 2025-12-03 | 2025-12-05 |
| cnvd-2025-30125 | Devolutions Server存在未明漏洞 | 2025-12-03 | 2025-12-05 |
| cnvd-2025-30124 | Devolutions Server SQL注入漏洞 | 2025-12-03 | 2025-12-05 |
| cnvd-2025-29955 | WordPress StreamTube Core plugin任意用户密码更改漏洞 | 2025-12-03 | 2025-12-04 |
| cnvd-2025-29954 | WordPress Nextend Social Login and Register plugin跨站请求伪造漏洞 | 2025-12-03 | 2025-12-04 |
| cnvd-2025-29953 | WordPress Arconix Shortcodes plugin跨站脚本漏洞 | 2025-12-03 | 2025-12-04 |
| cnvd-2026-04574 | 畅捷通信息技术股份有限公司畅捷通T+存在SQL注入漏洞(CNVD-C-2025-448742) | 2025-12-02 | 2026-01-22 |
| cnvd-2026-04467 | 北京神州视翰科技有限公司远程医疗综合服务平台存在SQL注入漏洞(CNVD-C-2025-948730) | 2025-12-01 | 2026-01-22 |
| cnvd-2025-31389 | Apache Hive SQL注入漏洞 | 2025-11-28 | 2025-12-24 |
| cnvd-2025-30215 | Wireshark缓冲区溢出漏洞(CNVD-2025-30215) | 2025-11-28 | 2025-12-04 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2025-avi-0871 | Multiples vulnérabilités dans les produits Fortinet | 2025-10-15T00:00:00.000000 | 2025-10-15T00:00:00.000000 |
| CERTFR-2025-AVI-0882 | Multiples vulnérabilités dans les produits Microsoft | 2025-10-15T00:00:00.000000 | 2025-10-15T00:00:00.000000 |
| CERTFR-2025-AVI-0881 | Multiples vulnérabilités dans Microsoft Azure | 2025-10-15T00:00:00.000000 | 2025-10-15T00:00:00.000000 |
| CERTFR-2025-AVI-0880 | Multiples vulnérabilités dans Microsoft .Net | 2025-10-15T00:00:00.000000 | 2025-10-15T00:00:00.000000 |
| CERTFR-2025-AVI-0879 | Multiples vulnérabilités dans Microsoft Windows | 2025-10-15T00:00:00.000000 | 2025-10-15T00:00:00.000000 |
| CERTFR-2025-AVI-0878 | Multiples vulnérabilités dans Microsoft Office | 2025-10-15T00:00:00.000000 | 2025-10-15T00:00:00.000000 |
| CERTFR-2025-AVI-0877 | Multiples vulnérabilités dans les produits Ivanti | 2025-10-15T00:00:00.000000 | 2025-10-15T00:00:00.000000 |
| CERTFR-2025-AVI-0876 | Multiples vulnérabilités dans les produits Adobe | 2025-10-15T00:00:00.000000 | 2025-10-15T00:00:00.000000 |
| CERTFR-2025-AVI-0875 | Vulnérabilité dans Google Chrome | 2025-10-15T00:00:00.000000 | 2025-10-15T00:00:00.000000 |
| CERTFR-2025-AVI-0874 | Vulnérabilité dans Schneider Electric EcoStruxure | 2025-10-15T00:00:00.000000 | 2025-10-15T00:00:00.000000 |
| CERTFR-2025-AVI-0873 | Multiples vulnérabilités dans les produits Mozilla | 2025-10-15T00:00:00.000000 | 2025-10-15T00:00:00.000000 |
| CERTFR-2025-AVI-0872 | Multiples vulnérabilités dans les produits HPE Aruba Networking | 2025-10-15T00:00:00.000000 | 2025-10-15T00:00:00.000000 |
| CERTFR-2025-AVI-0871 | Multiples vulnérabilités dans les produits Fortinet | 2025-10-15T00:00:00.000000 | 2025-10-15T00:00:00.000000 |
| certfr-2025-avi-0870 | Vulnérabilité dans Microsoft Azure | 2025-10-14T00:00:00.000000 | 2025-10-14T00:00:00.000000 |
| certfr-2025-avi-0869 | Multiples vulnérabilités dans les produits Veeam | 2025-10-14T00:00:00.000000 | 2025-10-14T00:00:00.000000 |
| certfr-2025-avi-0868 | Vulnérabilité dans Siemens SIMATIC | 2025-10-14T00:00:00.000000 | 2025-10-14T00:00:00.000000 |
| certfr-2025-avi-0867 | Multiples vulnérabilités dans les produits SAP | 2025-10-14T00:00:00.000000 | 2025-10-14T00:00:00.000000 |
| certfr-2025-avi-0866 | Vulnérabilité dans Elastic Cloud Enterprise | 2025-10-14T00:00:00.000000 | 2025-10-14T00:00:00.000000 |
| CERTFR-2025-AVI-0870 | Vulnérabilité dans Microsoft Azure | 2025-10-14T00:00:00.000000 | 2025-10-14T00:00:00.000000 |
| CERTFR-2025-AVI-0869 | Multiples vulnérabilités dans les produits Veeam | 2025-10-14T00:00:00.000000 | 2025-10-14T00:00:00.000000 |
| CERTFR-2025-AVI-0868 | Vulnérabilité dans Siemens SIMATIC | 2025-10-14T00:00:00.000000 | 2025-10-14T00:00:00.000000 |
| CERTFR-2025-AVI-0867 | Multiples vulnérabilités dans les produits SAP | 2025-10-14T00:00:00.000000 | 2025-10-14T00:00:00.000000 |
| CERTFR-2025-AVI-0866 | Vulnérabilité dans Elastic Cloud Enterprise | 2025-10-14T00:00:00.000000 | 2025-10-14T00:00:00.000000 |
| certfr-2025-avi-0865 | Vulnérabilité dans Oracle E-Business Suite | 2025-10-13T00:00:00.000000 | 2025-10-13T00:00:00.000000 |
| certfr-2025-avi-0864 | Multiples vulnérabilités dans VMware Tanzu | 2025-10-13T00:00:00.000000 | 2025-10-13T00:00:00.000000 |
| certfr-2025-avi-0863 | Vulnérabilité dans Belden HiOS Switch Platform | 2025-10-13T00:00:00.000000 | 2025-10-13T00:00:00.000000 |
| CERTFR-2025-AVI-0865 | Vulnérabilité dans Oracle E-Business Suite | 2025-10-13T00:00:00.000000 | 2025-10-13T00:00:00.000000 |
| CERTFR-2025-AVI-0864 | Multiples vulnérabilités dans VMware Tanzu | 2025-10-13T00:00:00.000000 | 2025-10-13T00:00:00.000000 |
| CERTFR-2025-AVI-0863 | Vulnérabilité dans Belden HiOS Switch Platform | 2025-10-13T00:00:00.000000 | 2025-10-13T00:00:00.000000 |
| certfr-2025-avi-0862 | Multiples vulnérabilités dans Microsoft Edge | 2025-10-10T00:00:00.000000 | 2025-10-10T00:00:00.000000 |