Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-fv28-hc36-43g9 | GNU Barcode 0.99 contains a buffer overflow vulnerability in its code 93 encoding process that allo… | 2025-12-24T21:30:32Z | 2025-12-24T21:30:32Z |
| ghsa-cm58-6j6x-c433 | Microhard Systems IPn4G 1.1.0 contains a configuration file disclosure vulnerability that allows au… | 2025-12-24T21:30:32Z | 2025-12-24T21:30:32Z |
| ghsa-86rg-f667-jpq7 | Teradek Slice 7.3.15 contains a cross-site request forgery vulnerability that allows attackers to c… | 2025-12-24T21:30:32Z | 2025-12-24T21:30:32Z |
| ghsa-6r9g-7c8c-j56m | GNU Barcode 0.99 contains a memory leak vulnerability in the command line processing function withi… | 2025-12-24T21:30:32Z | 2025-12-24T21:30:32Z |
| ghsa-64rh-68mc-5mmx | Microhard Systems IPn4G 1.1.0 contains a cross-site request forgery vulnerability that allows attac… | 2025-12-24T21:30:32Z | 2025-12-24T21:30:32Z |
| ghsa-5cqx-px25-wv82 | Ecessa Edge EV150 10.7.4 contains a cross-site request forgery vulnerability that allows attackers … | 2025-12-24T21:30:32Z | 2025-12-24T21:30:32Z |
| ghsa-3fjq-mm23-rr9w | Ecessa WANWorx WVR-30 versions before 10.7.4 contain a cross-site request forgery vulnerability tha… | 2025-12-24T21:30:32Z | 2025-12-24T21:30:32Z |
| ghsa-x8gg-ghxq-c254 | Microhard Systems IPn4G 1.1.0 contains a service vulnerability that allows authenticated users to e… | 2025-12-24T21:30:31Z | 2025-12-24T21:30:32Z |
| ghsa-x747-j9vr-9hhj | Synaccess netBooter NP-0801DU 7.4 contains a cross-site request forgery vulnerability that allows a… | 2025-12-24T21:30:31Z | 2025-12-24T21:30:31Z |
| ghsa-rjwj-m7w5-fr82 | FLIR Brickstream 3D+ 2.1.742.1842 contains an unauthenticated vulnerability that allows remote atta… | 2025-12-24T21:30:31Z | 2025-12-24T21:30:31Z |
| ghsa-h2gq-4xqf-ccqf | FLIR thermal traffic cameras contain an unauthenticated device manipulation vulnerability in their … | 2025-12-24T21:30:31Z | 2025-12-24T21:30:31Z |
| ghsa-gpch-6qpg-rp8g | Microhard Systems IPn4G 1.1.0 contains an authentication bypass vulnerability in the hidden system-… | 2025-12-24T21:30:31Z | 2025-12-24T21:30:32Z |
| ghsa-ghwc-hrr9-vj2w | NovaRad NovaPACS Diagnostics Viewer 8.5.19.75 contains an unauthenticated XML External Entity (XXE)… | 2025-12-24T21:30:31Z | 2025-12-24T21:30:31Z |
| ghsa-f9jj-8x8f-vvx3 | Synaccess netBooter NP-02x/NP-08x 6.8 contains an authentication bypass vulnerability in the webNew… | 2025-12-24T21:30:31Z | 2025-12-24T21:30:31Z |
| ghsa-cph6-mwmj-r2r8 | FLIR thermal traffic cameras contain an unauthenticated vulnerability that allows remote attackers … | 2025-12-24T21:30:31Z | 2025-12-24T21:30:31Z |
| ghsa-c68w-pf33-46g8 | FLIR AX8 Thermal Camera 1.32.16 contains an unauthenticated vulnerability that allows remote attack… | 2025-12-24T21:30:31Z | 2025-12-24T21:30:31Z |
| ghsa-9wqg-38fc-34m9 | Microhard Systems IPn4G 1.1.0 contains an undocumented vulnerability that allows authenticated atta… | 2025-12-24T21:30:31Z | 2025-12-24T21:30:32Z |
| ghsa-8j6v-82x4-pg34 | FLIR AX8 Thermal Camera 1.32.16 contains hard-coded SSH and web panel credentials that cannot be ch… | 2025-12-24T21:30:31Z | 2025-12-24T21:30:31Z |
| ghsa-8hvh-73q5-g7pg | FLIR Brickstream 3D+ 2.1.742.1842 contains an unauthenticated vulnerability in the ExportConfig RES… | 2025-12-24T21:30:31Z | 2025-12-24T21:30:31Z |
| ghsa-58r7-rx7j-5v4g | Anviz AIM CrossChex Standard 4.3.6.0 contains a CSV injection vulnerability that allows attackers t… | 2025-12-24T21:30:31Z | 2025-12-24T21:30:31Z |
| ghsa-x4fw-5929-5227 | Leica Geosystems GR10/GR25/GR30/GR50 GNSS 4.30.063 contains a stored cross-site scripting vulnerabi… | 2025-12-24T21:30:30Z | 2025-12-24T21:30:30Z |
| ghsa-wcqx-pwqh-x4mj | SOCA Access Control System 180612 contains multiple insecure direct object reference vulnerabilitie… | 2025-12-24T21:30:30Z | 2025-12-24T21:30:30Z |
| ghsa-r8pj-6rqm-3whh | IBM Concert 1.0.0 through 2.1.0 stores sensitive information in cleartext during recursive docker b… | 2025-12-24T21:30:30Z | 2025-12-24T21:30:30Z |
| ghsa-m662-6p96-4253 | SOCA Access Control System 180612 contains a cross-site request forgery vulnerability that allows a… | 2025-12-24T21:30:30Z | 2025-12-24T21:30:30Z |
| ghsa-hjwr-h73m-h7pf | Beward Intercom 2.3.1 contains a credentials disclosure vulnerability that allows local attackers t… | 2025-12-24T21:30:30Z | 2025-12-24T21:30:30Z |
| ghsa-754f-6hrq-f5qh | SOCA Access Control System 180612 contains multiple SQL injection vulnerabilities that allow attack… | 2025-12-24T21:30:30Z | 2025-12-24T21:30:30Z |
| ghsa-x5xq-cwhv-jgjh | MyNET up to v26.08.316 was discovered to contain an Unauthenticated SQL Injection vulnerability via… | 2025-12-24T18:30:22Z | 2025-12-24T18:30:22Z |
| ghsa-m9g9-rxjq-3p3h | MyNET up to v26.08 was discovered to contain a reflected cross-site scripting (XSS) vulnerability v… | 2025-12-24T18:30:22Z | 2025-12-24T18:30:22Z |
| ghsa-hcr2-46j7-rjhp | A vulnerability was found in BlueChi, a multi-node systemd service controller used in RHIVOS. This … | 2025-12-24T18:30:22Z | 2025-12-24T18:30:22Z |
| ghsa-gc5g-jhc5-xh8h | A reflected cross-site scripting (XSS) vulnerability in MyNET up to v26.08 allows attackers to exec… | 2025-12-24T18:30:22Z | 2025-12-24T18:30:22Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2018-25154 | 8.5 (v4.0) 9.8 (v3.1) | GNU Barcode 0.99 Buffer Overflow in Code 93 Encoding M… |
The GNU Project | Free Software Foundation, Inc. |
GNU Barcode |
2025-12-24T19:27:53.486Z | 2025-12-24T20:24:32.336Z |
| cve-2018-25153 | 6.9 (v4.0) 7.5 (v3.1) | GNU Barcode 0.99 Memory Leak Vulnerability in Command … |
The GNU Project | Free Software Foundation, Inc. |
GNU Barcode |
2025-12-24T19:27:53.062Z | 2025-12-24T20:24:39.099Z |
| cve-2018-25152 | 5.1 (v4.0) 5.3 (v3.1) | Ecessa Edge EV150 10.7.4 Cross-Site Request Forgery vi… |
Ecessa Corporation |
Ecessa Edge EV150 |
2025-12-24T19:27:52.680Z | 2025-12-24T20:24:45.919Z |
| cve-2018-25151 | 5.1 (v4.0) 4.3 (v3.1) | Ecessa WANWorx WVR-30 < 10.7.4 Cross-Site Request Forg… |
Ecessa Corporation |
WANWorx WVR-30 |
2025-12-24T19:27:52.222Z | 2025-12-24T20:24:53.133Z |
| cve-2018-25150 | 5.1 (v4.0) 5.3 (v3.1) | Ecessa ShieldLink SL175EHQ 10.7.4 Cross-Site Request F… |
Ecessa Corporation |
Ecessa ShieldLink SL175EHQ |
2025-12-24T19:27:51.814Z | 2025-12-24T20:24:59.684Z |
| cve-2018-25149 | 5.1 (v4.0) 4.3 (v3.1) | Microhard Systems IPn4G 1.1.0 Cross-Site Request Forge… |
Microhard Systems |
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway CSRF Vulnerabilities |
2025-12-24T19:27:51.383Z | 2025-12-24T20:25:07.980Z |
| cve-2018-25148 | 8.7 (v4.0) 8.8 (v3.1) | Microhard Systems IPn4G 1.1.0 Remote Code Execution vi… |
Microhard Systems |
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Remote Root Exploit |
2025-12-24T19:27:50.947Z | 2025-12-24T20:25:14.760Z |
| cve-2018-25147 | 9.3 (v4.0) 7.5 (v3.1) | Microhard Systems IPn4G 1.1.0 Default Credentials Auth… |
Microhard Systems |
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Default Credentials |
2025-12-24T19:27:50.490Z | 2025-12-24T20:25:21.195Z |
| cve-2018-25146 | 7.1 (v4.0) 6.5 (v3.1) | Microhard Systems IPn4G 1.1.0 Service Control Denial o… |
Microhard Systems |
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Service Control DoS |
2025-12-24T19:27:50.006Z | 2025-12-24T20:25:28.526Z |
| cve-2018-25145 | 7.1 (v4.0) 6.5 (v3.1) | Microhard Systems IPn4G 1.1.0 Configuration Disclosure… |
Microhard Systems |
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Configuration Download |
2025-12-24T19:27:49.597Z | 2025-12-24T20:25:35.251Z |
| cve-2018-25144 | 8.7 (v4.0) 5.5 (v3.1) | Microhard Systems IPn4G 1.1.0 Arbitrary File Access vi… |
Microhard Systems |
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Arbitrary File Attacks |
2025-12-24T19:27:49.167Z | 2025-12-24T20:25:41.747Z |
| cve-2018-25143 | 8.7 (v4.0) 8.8 (v3.1) | Microhard Systems IPn4G 1.1.0 Backdoor Jailbreak via M… |
Microhard Systems |
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Backdoor Jailbreak |
2025-12-24T19:27:48.742Z | 2025-12-24T20:25:48.441Z |
| cve-2018-25142 | 7.1 (v4.0) 9.8 (v3.1) | NovaRad NovaPACS Diagnostics Viewer 8.5 XML External E… |
NovaRad Corporation |
NovaPACS Diagnostics Viewer |
2025-12-24T19:27:48.350Z | 2025-12-24T20:25:54.871Z |
| cve-2018-25141 | 8.7 (v4.0) 7.5 (v3.1) | FLIR Thermal Traffic Cameras V1.01-0bb5b27 Unauthentic… |
FLIR |
FLIR Thermal Traffic Cameras |
2025-12-24T19:27:47.928Z | 2025-12-24T20:26:01.745Z |
| cve-2018-25140 | 9.3 (v4.0) 7.5 (v3.1) | FLIR Thermal Traffic Cameras V1.01-0bb5b27 Unauthentic… |
FLIR Systems, Inc. |
Thermal Traffic Cameras |
2025-12-24T19:27:47.524Z | 2025-12-24T20:26:09.413Z |
| cve-2018-25139 | 8.7 (v4.0) 7.5 (v3.1) | FLIR AX8 Thermal Camera 1.32.16 Unauthenticated RTSP S… |
FLIR Systems, Inc. |
FLIR AX8 Thermal Camera |
2025-12-24T19:27:47.117Z | 2025-12-24T20:26:15.968Z |
| cve-2018-25138 | 9.3 (v4.0) 7.5 (v3.1) | FLIR AX8 Thermal Camera 1.32.16 Hard-Coded Credentials… |
FLIR Systems |
FLIR AX8 Thermal Camera |
2025-12-24T19:27:46.730Z | 2025-12-24T20:26:22.231Z |
| cve-2018-25137 | 8.7 (v4.0) 7.5 (v3.1) | FLIR Brickstream 3D+ 2.1.742.1842 Unauthenticated Conf… |
FLIR Systems, Inc. |
FLIR Brickstream 3D+ |
2025-12-24T19:27:46.300Z | 2025-12-24T20:26:28.490Z |
| cve-2018-25136 | 8.7 (v4.0) 7.5 (v3.1) | FLIR Brickstream 3D+ 2.1.742.1842 Unauthenticated RTSP… |
FLIR Systems, Inc. |
Brickstream 3D+ |
2025-12-24T19:27:45.779Z | 2025-12-24T20:26:35.205Z |
| cve-2018-25135 | 9.3 (v4.0) 9.8 (v3.1) | Anviz AIM CrossChex Standard 4.3.6.0 CSV Injection via… |
Anviz Biometric Technology Co., Ltd. |
Anviz AIM CrossChex Standard |
2025-12-24T19:27:45.375Z | 2025-12-24T20:26:41.287Z |
| cve-2018-25134 | 9.3 (v4.0) 9.8 (v3.1) | Synaccess netBooter NP-02x/NP-08x 6.8 Authentication B… |
Synaccess Networks Inc. |
netBooter NP-02x/NP-08x |
2025-12-24T19:27:44.967Z | 2025-12-24T20:26:48.331Z |
| cve-2018-25133 | 5.1 (v4.0) 4.3 (v3.1) | Synaccess netBooter NP-0801DU 7.4 Cross-Site Request F… |
Synaccess Networks Inc. |
netBooter NP-0801DU |
2025-12-24T19:27:44.567Z | 2025-12-24T20:26:55.174Z |
| cve-2018-25131 | 5.1 (v4.0) 7.2 (v3.1) | Leica Geosystems GR10/GR25/GR30/GR50 GNSS 4.30.063 Sto… |
Leica Geosystems AG |
GR10/GR25/GR30/GR50 GNSS |
2025-12-24T19:27:44.162Z | 2025-12-24T20:27:01.726Z |
| cve-2018-25130 | 6.8 (v4.0) 6.2 (v3.1) | Beward Intercom 2.3.1 Local Credentials Disclosure via… |
Beward R&D Co., Ltd |
BEWARD Intercom |
2025-12-24T19:27:43.752Z | 2025-12-24T20:27:08.870Z |
| cve-2018-25129 | 7.1 (v4.0) 7.5 (v3.1) | SOCA Access Control System 180612 Information Disclosu… |
SOCA Technology Co., Ltd |
SOCA Access Control System |
2025-12-24T19:27:43.322Z | 2025-12-24T20:27:15.081Z |
| cve-2018-25128 | 9.3 (v4.0) 8.2 (v3.1) | SOCA Access Control System 180612 SQL Injection and Au… |
SOCA Technology Co., Ltd |
SOCA Access Control System |
2025-12-24T19:27:42.899Z | 2025-12-24T20:27:21.283Z |
| cve-2018-25127 | 5.1 (v4.0) 5.3 (v3.1) | SOCA Access Control System 180612 Cross-Site Request F… |
SOCA Technology Co., Ltd |
SOCA Access Control System |
2025-12-24T19:27:42.423Z | 2025-12-24T20:27:27.630Z |
| cve-2025-36154 | 6.2 (v3.1) | IBM Concert Software Cleartext Storage in a File or on Disk. |
IBM |
Concert |
2025-12-24T19:01:48.161Z | 2025-12-24T20:02:34.098Z |
| cve-2025-2515 | 7.2 (v3.1) | Bluechi: privilege escalation in bluechi via unrestric… |
Eclipse Foundation |
BlueChi |
2025-12-24T16:21:54.365Z | 2025-12-24T16:48:19.891Z |
| cve-2025-68750 | N/A | usb: potential integer overflow in usbg_make_tpg() |
Linux |
Linux |
2025-12-24T15:51:03.141Z | 2025-12-24T15:51:03.141Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2018-25156 | 5.1 (v4.0) 5.3 (v3.1) | Teradek Cube 7.3.6 Cross-Site Request Forgery Password… |
Teradek, LLC |
Cube |
2025-12-24T19:27:54.324Z | 2025-12-24T20:24:19.107Z |
| cve-2018-25155 | 5.1 (v4.0) 5.3 (v3.1) | Teradek Slice 7.3.15 Cross-Site Request Forgery via Pa… |
Teradek, LLC |
Slice |
2025-12-24T19:27:53.919Z | 2025-12-24T20:24:25.555Z |
| cve-2018-25154 | 8.5 (v4.0) 9.8 (v3.1) | GNU Barcode 0.99 Buffer Overflow in Code 93 Encoding M… |
The GNU Project | Free Software Foundation, Inc. |
GNU Barcode |
2025-12-24T19:27:53.486Z | 2025-12-24T20:24:32.336Z |
| cve-2018-25153 | 6.9 (v4.0) 7.5 (v3.1) | GNU Barcode 0.99 Memory Leak Vulnerability in Command … |
The GNU Project | Free Software Foundation, Inc. |
GNU Barcode |
2025-12-24T19:27:53.062Z | 2025-12-24T20:24:39.099Z |
| cve-2018-25152 | 5.1 (v4.0) 5.3 (v3.1) | Ecessa Edge EV150 10.7.4 Cross-Site Request Forgery vi… |
Ecessa Corporation |
Ecessa Edge EV150 |
2025-12-24T19:27:52.680Z | 2025-12-24T20:24:45.919Z |
| cve-2018-25151 | 5.1 (v4.0) 4.3 (v3.1) | Ecessa WANWorx WVR-30 < 10.7.4 Cross-Site Request Forg… |
Ecessa Corporation |
WANWorx WVR-30 |
2025-12-24T19:27:52.222Z | 2025-12-24T20:24:53.133Z |
| cve-2018-25150 | 5.1 (v4.0) 5.3 (v3.1) | Ecessa ShieldLink SL175EHQ 10.7.4 Cross-Site Request F… |
Ecessa Corporation |
Ecessa ShieldLink SL175EHQ |
2025-12-24T19:27:51.814Z | 2025-12-24T20:24:59.684Z |
| cve-2018-25149 | 5.1 (v4.0) 4.3 (v3.1) | Microhard Systems IPn4G 1.1.0 Cross-Site Request Forge… |
Microhard Systems |
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway CSRF Vulnerabilities |
2025-12-24T19:27:51.383Z | 2025-12-24T20:25:07.980Z |
| cve-2018-25148 | 8.7 (v4.0) 8.8 (v3.1) | Microhard Systems IPn4G 1.1.0 Remote Code Execution vi… |
Microhard Systems |
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Remote Root Exploit |
2025-12-24T19:27:50.947Z | 2025-12-24T20:25:14.760Z |
| cve-2018-25147 | 9.3 (v4.0) 7.5 (v3.1) | Microhard Systems IPn4G 1.1.0 Default Credentials Auth… |
Microhard Systems |
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Default Credentials |
2025-12-24T19:27:50.490Z | 2025-12-24T20:25:21.195Z |
| cve-2018-25146 | 7.1 (v4.0) 6.5 (v3.1) | Microhard Systems IPn4G 1.1.0 Service Control Denial o… |
Microhard Systems |
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Service Control DoS |
2025-12-24T19:27:50.006Z | 2025-12-24T20:25:28.526Z |
| cve-2018-25145 | 7.1 (v4.0) 6.5 (v3.1) | Microhard Systems IPn4G 1.1.0 Configuration Disclosure… |
Microhard Systems |
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Configuration Download |
2025-12-24T19:27:49.597Z | 2025-12-24T20:25:35.251Z |
| cve-2018-25144 | 8.7 (v4.0) 5.5 (v3.1) | Microhard Systems IPn4G 1.1.0 Arbitrary File Access vi… |
Microhard Systems |
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Arbitrary File Attacks |
2025-12-24T19:27:49.167Z | 2025-12-24T20:25:41.747Z |
| cve-2018-25143 | 8.7 (v4.0) 8.8 (v3.1) | Microhard Systems IPn4G 1.1.0 Backdoor Jailbreak via M… |
Microhard Systems |
Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Backdoor Jailbreak |
2025-12-24T19:27:48.742Z | 2025-12-24T20:25:48.441Z |
| cve-2018-25142 | 7.1 (v4.0) 9.8 (v3.1) | NovaRad NovaPACS Diagnostics Viewer 8.5 XML External E… |
NovaRad Corporation |
NovaPACS Diagnostics Viewer |
2025-12-24T19:27:48.350Z | 2025-12-24T20:25:54.871Z |
| cve-2018-25141 | 8.7 (v4.0) 7.5 (v3.1) | FLIR Thermal Traffic Cameras V1.01-0bb5b27 Unauthentic… |
FLIR |
FLIR Thermal Traffic Cameras |
2025-12-24T19:27:47.928Z | 2025-12-24T20:26:01.745Z |
| cve-2018-25140 | 9.3 (v4.0) 7.5 (v3.1) | FLIR Thermal Traffic Cameras V1.01-0bb5b27 Unauthentic… |
FLIR Systems, Inc. |
Thermal Traffic Cameras |
2025-12-24T19:27:47.524Z | 2025-12-24T20:26:09.413Z |
| cve-2018-25139 | 8.7 (v4.0) 7.5 (v3.1) | FLIR AX8 Thermal Camera 1.32.16 Unauthenticated RTSP S… |
FLIR Systems, Inc. |
FLIR AX8 Thermal Camera |
2025-12-24T19:27:47.117Z | 2025-12-24T20:26:15.968Z |
| cve-2018-25138 | 9.3 (v4.0) 7.5 (v3.1) | FLIR AX8 Thermal Camera 1.32.16 Hard-Coded Credentials… |
FLIR Systems |
FLIR AX8 Thermal Camera |
2025-12-24T19:27:46.730Z | 2025-12-24T20:26:22.231Z |
| cve-2018-25137 | 8.7 (v4.0) 7.5 (v3.1) | FLIR Brickstream 3D+ 2.1.742.1842 Unauthenticated Conf… |
FLIR Systems, Inc. |
FLIR Brickstream 3D+ |
2025-12-24T19:27:46.300Z | 2025-12-24T20:26:28.490Z |
| cve-2018-25136 | 8.7 (v4.0) 7.5 (v3.1) | FLIR Brickstream 3D+ 2.1.742.1842 Unauthenticated RTSP… |
FLIR Systems, Inc. |
Brickstream 3D+ |
2025-12-24T19:27:45.779Z | 2025-12-24T20:26:35.205Z |
| cve-2018-25135 | 9.3 (v4.0) 9.8 (v3.1) | Anviz AIM CrossChex Standard 4.3.6.0 CSV Injection via… |
Anviz Biometric Technology Co., Ltd. |
Anviz AIM CrossChex Standard |
2025-12-24T19:27:45.375Z | 2025-12-24T20:26:41.287Z |
| cve-2018-25134 | 9.3 (v4.0) 9.8 (v3.1) | Synaccess netBooter NP-02x/NP-08x 6.8 Authentication B… |
Synaccess Networks Inc. |
netBooter NP-02x/NP-08x |
2025-12-24T19:27:44.967Z | 2025-12-24T20:26:48.331Z |
| cve-2018-25133 | 5.1 (v4.0) 4.3 (v3.1) | Synaccess netBooter NP-0801DU 7.4 Cross-Site Request F… |
Synaccess Networks Inc. |
netBooter NP-0801DU |
2025-12-24T19:27:44.567Z | 2025-12-24T20:26:55.174Z |
| cve-2018-25131 | 5.1 (v4.0) 7.2 (v3.1) | Leica Geosystems GR10/GR25/GR30/GR50 GNSS 4.30.063 Sto… |
Leica Geosystems AG |
GR10/GR25/GR30/GR50 GNSS |
2025-12-24T19:27:44.162Z | 2025-12-24T20:27:01.726Z |
| cve-2018-25130 | 6.8 (v4.0) 6.2 (v3.1) | Beward Intercom 2.3.1 Local Credentials Disclosure via… |
Beward R&D Co., Ltd |
BEWARD Intercom |
2025-12-24T19:27:43.752Z | 2025-12-24T20:27:08.870Z |
| cve-2018-25129 | 7.1 (v4.0) 7.5 (v3.1) | SOCA Access Control System 180612 Information Disclosu… |
SOCA Technology Co., Ltd |
SOCA Access Control System |
2025-12-24T19:27:43.322Z | 2025-12-24T20:27:15.081Z |
| cve-2018-25128 | 9.3 (v4.0) 8.2 (v3.1) | SOCA Access Control System 180612 SQL Injection and Au… |
SOCA Technology Co., Ltd |
SOCA Access Control System |
2025-12-24T19:27:42.899Z | 2025-12-24T20:27:21.283Z |
| cve-2018-25127 | 5.1 (v4.0) 5.3 (v3.1) | SOCA Access Control System 180612 Cross-Site Request F… |
SOCA Technology Co., Ltd |
SOCA Access Control System |
2025-12-24T19:27:42.423Z | 2025-12-24T20:27:27.630Z |
| cve-2025-36154 | 6.2 (v3.1) | IBM Concert Software Cleartext Storage in a File or on Disk. |
IBM |
Concert |
2025-12-24T19:01:48.161Z | 2025-12-24T20:02:34.098Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-192900 | Malicious code in chalk-interface (RubyGems) | 2025-12-23T08:40:50Z | 2025-12-23T08:40:50Z |
| mal-2025-192899 | Malicious code in chalk-hostname (RubyGems) | 2025-12-23T08:40:50Z | 2025-12-23T08:40:50Z |
| mal-2025-192898 | Malicious code in chalk-henson (RubyGems) | 2025-12-23T08:40:49Z | 2025-12-23T08:40:49Z |
| mal-2025-192897 | Malicious code in chalk-consul (RubyGems) | 2025-12-23T08:40:49Z | 2025-12-23T08:40:49Z |
| mal-2025-192896 | Malicious code in chalk-cli (RubyGems) | 2025-12-23T08:40:48Z | 2025-12-23T08:40:48Z |
| mal-2025-192895 | Malicious code in chalk-aws (RubyGems) | 2025-12-23T08:40:47Z | 2025-12-23T08:40:47Z |
| mal-2025-192894 | Malicious code in activestorage-redundancy (RubyGems) | 2025-12-23T08:40:46Z | 2025-12-23T08:40:46Z |
| mal-2025-192893 | Malicious code in fireeye-main (PyPI) | 2025-12-23T08:38:27Z | 2025-12-23T08:38:27Z |
| mal-2025-192892 | Malicious code in fire-eye-bcs (PyPI) | 2025-12-23T08:38:27Z | 2025-12-23T08:38:27Z |
| mal-2025-192891 | Malicious code in blastchamber-python-pypi (PyPI) | 2025-12-23T08:38:03Z | 2025-12-23T08:38:03Z |
| mal-2025-192890 | Malicious code in sqzrframework480 (NuGet) | 2025-12-23T08:37:46Z | 2025-12-23T08:37:46Z |
| mal-2025-192889 | Malicious code in minimutex (NuGet) | 2025-12-23T08:37:45Z | 2025-12-23T08:37:45Z |
| mal-2025-192888 | Malicious code in workvivo-layout-extension (npm) | 2025-12-23T08:36:36Z | 2025-12-23T08:36:36Z |
| mal-2025-192887 | Malicious code in workvivo-chatbot (npm) | 2025-12-23T08:36:36Z | 2025-12-23T08:36:36Z |
| mal-2025-192886 | Malicious code in workvivo-anniversary-automation (npm) | 2025-12-23T08:36:35Z | 2025-12-23T08:36:35Z |
| mal-2025-192885 | Malicious code in wealthbox-marketing (npm) | 2025-12-23T08:35:44Z | 2025-12-23T08:35:44Z |
| mal-2025-192884 | Malicious code in vite-react-setting (npm) | 2025-12-23T08:35:16Z | 2025-12-23T08:35:16Z |
| mal-2025-192883 | Malicious code in varshade-afc (npm) | 2025-12-23T08:34:50Z | 2025-12-23T08:34:50Z |
| mal-2025-192882 | Malicious code in vapark-boost-v1 (npm) | 2025-12-23T08:34:49Z | 2025-12-23T08:34:49Z |
| mal-2025-192881 | Malicious code in typeface-maison-neue (npm) | 2025-12-23T08:34:00Z | 2025-12-23T08:34:00Z |
| mal-2025-192880 | Malicious code in tierlist (npm) | 2025-12-23T08:33:32Z | 2025-12-23T08:33:32Z |
| mal-2025-192879 | Malicious code in tescoutils (npm) | 2025-12-23T08:33:02Z | 2025-12-23T08:33:02Z |
| mal-2025-192878 | Malicious code in teeseest (npm) | 2025-12-23T08:32:50Z | 2025-12-23T08:32:50Z |
| mal-2025-192877 | Malicious code in tdm-react (npm) | 2025-12-23T08:32:44Z | 2025-12-23T08:32:44Z |
| mal-2025-192876 | Malicious code in suntik-tiktok (npm) | 2025-12-23T08:32:05Z | 2025-12-23T08:32:05Z |
| mal-2025-192875 | Malicious code in sturdyfetch9 (npm) | 2025-12-23T08:31:59Z | 2025-12-23T08:31:59Z |
| mal-2025-192874 | Malicious code in sturdyfetch5 (npm) | 2025-12-23T08:31:52Z | 2025-12-23T08:31:52Z |
| mal-2025-192873 | Malicious code in sturdyfetch4 (npm) | 2025-12-23T08:31:51Z | 2025-12-23T08:31:51Z |
| mal-2025-192872 | Malicious code in sturdyfetch3 (npm) | 2025-12-23T08:31:50Z | 2025-12-23T08:31:50Z |
| mal-2025-192871 | Malicious code in sturdyfetch22 (npm) | 2025-12-23T08:31:49Z | 2025-12-23T08:31:49Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-2645 | Golang Go: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-11-19T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2643 | Wireshark: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-11-19T23:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2640 | SonicWall SSL-VPN: Schwachstelle ermöglicht Denial of Service | 2025-11-19T23:00:00.000+00:00 | 2025-11-20T23:00:00.000+00:00 |
| wid-sec-w-2025-2638 | Grub: Mehrere Schwachstellen | 2025-11-18T23:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2025-2637 | Rsync: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2025-11-18T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2636 | OpenVPN: Mehrere Schwachstellen | 2025-11-18T23:00:00.000+00:00 | 2025-12-01T23:00:00.000+00:00 |
| wid-sec-w-2025-2635 | Red Hat Ansible Automation Platform: Schwachstelle ermöglicht Denial of Service | 2025-11-18T23:00:00.000+00:00 | 2025-11-20T23:00:00.000+00:00 |
| wid-sec-w-2025-2613 | Google Chrome/Microsoft Edge: Mehrere Schwachstellen ermöglichen Codeausführung oder DoS | 2025-11-17T23:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2612 | M-Files M-Files Server: Schwachstelle ermöglicht Denial of Service | 2025-11-16T23:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-2609 | IBM SAN Volume Controller, Storwize und FlashSystem: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-11-16T23:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-2608 | Golang Go: Schwachstelle ermöglicht Denial of Service | 2025-11-16T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2607 | Red Hat Enterprise Linux (lasso): Eine Schwachstelle ermöglichen Codeausführung | 2025-11-16T23:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-2603 | Fortinet FortiWeb: Schwachstelle ermöglicht Erlangen von Administratorrechten | 2025-11-13T23:00:00.000+00:00 | 2025-11-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2598 | CUPS (Filters): Mehrere Schwachstellen | 2025-11-13T23:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2595 | Linux Kernel: Mehrere Schwachstellen | 2025-11-12T23:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2586 | Red Hat Enterprise Linux (python-kdcproxy): Mehrere Schwachstellen | 2025-11-12T23:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2580 | Google Chrome/Microsoft Edge: Schwachstelle ermöglicht nicht näher beschriebene Auswirkungen | 2025-11-11T23:00:00.000+00:00 | 2025-12-14T23:00:00.000+00:00 |
| wid-sec-w-2025-2579 | Linux Kernel: Mehrere Schwachstellen | 2025-11-11T23:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2566 | Mozilla Firefox und Firefox ESR: Mehrere Schwachstellen | 2025-11-11T23:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2564 | Microsoft Windows und Windows Server: Mehrere Schwachstellen | 2025-11-11T23:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2537 | BusyBox (wget): Schwachstelle ermöglicht Umgehung von Sicherheitsvorkehrungen | 2025-11-10T23:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2533 | RedHat Multicluster Engine for Kubernetes: Schwachstelle ermöglicht Privilegieneskalation | 2025-11-09T23:00:00.000+00:00 | 2025-12-01T23:00:00.000+00:00 |
| wid-sec-w-2025-2518 | Red Hat Enterprise Linux (runc): Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen | 2025-11-09T23:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2510 | AnyDesk: Mehrere Schwachstellen | 2025-11-06T23:00:00.000+00:00 | 2025-12-07T23:00:00.000+00:00 |
| wid-sec-w-2025-2508 | Red Hat Enterprise Linux: Schwachstelle ermöglicht Denial of Service | 2025-11-06T23:00:00.000+00:00 | 2025-12-01T23:00:00.000+00:00 |
| wid-sec-w-2025-2500 | Cisco Contact Center Produkte (CCE,CCX,CUIC): Mehrere Schwachstellen | 2025-11-05T23:00:00.000+00:00 | 2025-11-18T23:00:00.000+00:00 |
| wid-sec-w-2025-2499 | IBM WebSphere Application Server: Schwachstelle ermöglicht Manipulation von Dateien und potenziell Umgehen von Sicherheitsvorkehrungen | 2025-11-05T23:00:00.000+00:00 | 2025-11-20T23:00:00.000+00:00 |
| wid-sec-w-2025-2495 | Django: Mehrere Schwachstellen ermöglichen Denial of Service und SQL-Injection | 2025-11-05T23:00:00.000+00:00 | 2025-11-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2491 | Google Chrome/Microsoft Edge: Mehrere Schwachstellen | 2025-11-05T23:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2488 | Red Hat Enterprise Linux (SSSD, libsoup): Mehrere Schwachstellen | 2025-11-04T23:00:00.000+00:00 | 2025-12-01T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| ssa-507653 | SSA-507653: Improper Access Control Vulnerabilities in Tecnomatix Plant Simulation | 2025-03-11T00:00:00Z | 2025-03-11T00:00:00Z |
| ssa-280834 | SSA-280834: Improper OpenVPN Credential Validation Vulnerability in SCALANCE M-800 and SC-600 Families | 2025-03-11T00:00:00Z | 2025-03-11T00:00:00Z |
| ssa-216014 | SSA-216014: Vulnerabilities in EFI variable of SIMATIC IPCs, SIMATIC Tablet PCs, and SIMATIC Field PGs | 2025-03-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-075201 | SSA-075201: Multiple Vulnerabilities in SCALANCE LPE9403 Before V4.0 | 2025-03-11T00:00:00Z | 2025-03-11T00:00:00Z |
| ssa-073066 | SSA-073066: Multiple Vulnerabilities in SINEMA Remote Connect Server Before V3.2 SP3 | 2025-03-11T00:00:00Z | 2025-03-11T00:00:00Z |
| ssa-050438 | SSA-050438: Multiple File Parsing Vulnerabilities in Teamcenter Visualization and Tecnomatix Plant Simulation | 2025-03-11T00:00:00Z | 2025-03-11T00:00:00Z |
| ssa-992434 | SSA-992434: Directory Traversal Vulnerability in Third-Party Component in SiPass integrated | 2025-02-17T00:00:00Z | 2025-02-17T00:00:00Z |
| ssa-770770 | SSA-770770: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.7 on RUGGEDCOM APE1808 Devices | 2025-02-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-769027 | SSA-769027: Multiple Vulnerabilities fixed in SCALANCE W700 IEEE 802.11ax devices before V3.0.0 | 2025-02-11T00:00:00Z | 2025-02-11T00:00:00Z |
| ssa-687955 | SSA-687955: Accessible Development Shell via Physical Interface in SIPROTEC 5 | 2025-02-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-656895 | SSA-656895: Open Redirect Vulnerability in Teamcenter | 2025-02-11T00:00:00Z | 2025-06-10T00:00:00Z |
| ssa-647005 | SSA-647005: Memory Corruption Vulnerability in OpenV2G | 2025-02-11T00:00:00Z | 2025-02-11T00:00:00Z |
| ssa-637914 | SSA-637914: Local Code Execution Vulnerability in Questa and ModelSim Before V2025.1 | 2025-02-11T00:00:00Z | 2025-02-11T00:00:00Z |
| ssa-615116 | SSA-615116: Multiple Vulnerabilities in Apogee PXC and Talon TC Devices | 2025-02-11T00:00:00Z | 2025-02-11T00:00:00Z |
| ssa-369369 | SSA-369369: Weak Registry Permission Vulnerability in SIMATIC IPC DiagBase and SIMATIC IPC DiagMonitor | 2025-02-11T00:00:00Z | 2025-04-08T00:00:00Z |
| ssa-342348 | SSA-342348: Insufficient Session Expiration Vulnerability in Siemens Products | 2025-02-11T00:00:00Z | 2025-02-11T00:00:00Z |
| ssa-246355 | SSA-246355: Multiple Vulnerabilities in Tableau Server Component of Opcenter Intelligence | 2025-02-11T00:00:00Z | 2025-02-14T00:00:00Z |
| ssa-224824 | SSA-224824: Denial of Service Vulnerabilities in SIMATIC S7-1200 CPU Family Before V4.7 | 2025-02-11T00:00:00Z | 2025-02-11T00:00:00Z |
| ssa-195895 | SSA-195895: User Enumeration Vulnerability in the Webserver of SIMATIC Products | 2025-02-11T00:00:00Z | 2025-04-08T00:00:00Z |
| ssa-111547 | SSA-111547: Cleartext Storage of Sensitive Information Vulnerability in SIPROTEC 5 | 2025-02-11T00:00:00Z | 2025-02-11T00:00:00Z |
| ssa-717113 | SSA-717113: Cross-Site Request Forgery (CSRF) Vulnerability in SIMATIC S7-1200 CPUs before V4.7 | 2025-01-14T00:00:00Z | 2025-01-14T00:00:00Z |
| ssa-416411 | SSA-416411: Cross-Site Scripting Vulnerability in Industrial Edge Management | 2025-01-14T00:00:00Z | 2025-01-14T00:00:00Z |
| ssa-404759 | SSA-404759: Information Disclosure Vulnerability in Siveillance Video Camera Drivers | 2025-01-14T00:00:00Z | 2025-01-15T00:00:00Z |
| ssa-314390 | SSA-314390: LDAP Injection Vulnerability in Mendix LDAP Module | 2025-01-14T00:00:00Z | 2025-01-14T00:00:00Z |
| ssa-194557 | SSA-194557: Improper Limitation of Filesystem Access through Web Server Vulnerability in SIPROTEC 5 | 2025-01-14T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-928984 | SSA-928984: Heap-based Buffer Overflow Vulnerability in User Management Component (UMC) | 2024-12-16T00:00:00Z | 2025-06-10T00:00:00Z |
| ssa-979056 | SSA-979056: Out of Bounds Write Vulnerability in Parasolid | 2024-12-10T00:00:00Z | 2024-12-12T00:00:00Z |
| ssa-881356 | SSA-881356: Multiple Memory Corruption Vulnerabilities in Simcenter Femap | 2024-12-10T00:00:00Z | 2024-12-10T00:00:00Z |
| ssa-800126 | SSA-800126: Deserialization Vulnerability in Siemens Engineering Platforms before V20 | 2024-12-10T00:00:00Z | 2025-12-09T00:00:00Z |
| ssa-730188 | SSA-730188: Multiple File Parsing Vulnerabilities in Solid Edge V2024 | 2024-12-10T00:00:00Z | 2024-12-10T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:21933 | Red Hat Security Advisory: kernel security update | 2025-11-24T10:44:17+00:00 | 2025-11-24T15:04:19+00:00 |
| rhsa-2025:21939 | Red Hat Security Advisory: bind9.16 security update | 2025-11-24T10:36:41+00:00 | 2025-11-27T03:24:31+00:00 |
| rhsa-2025:21926 | Red Hat Security Advisory: kernel security update | 2025-11-24T10:33:16+00:00 | 2025-11-24T15:04:34+00:00 |
| rhsa-2025:21936 | Red Hat Security Advisory: valkey security update | 2025-11-24T09:46:26+00:00 | 2025-11-28T11:32:59+00:00 |
| rhsa-2025:21931 | Red Hat Security Advisory: kernel security update | 2025-11-24T09:38:32+00:00 | 2025-11-25T21:29:47+00:00 |
| rhsa-2025:21929 | Red Hat Security Advisory: RHSA 4.9.1 security and bug fix update | 2025-11-24T08:28:34+00:00 | 2025-11-26T15:30:21+00:00 |
| rhsa-2025:21920 | Red Hat Security Advisory: kernel-rt security update | 2025-11-24T06:25:11+00:00 | 2025-11-25T03:05:52+00:00 |
| rhsa-2025:21917 | Red Hat Security Advisory: kernel security update | 2025-11-24T02:50:01+00:00 | 2025-11-25T03:05:51+00:00 |
| rhsa-2025:21916 | Red Hat Security Advisory: valkey security update | 2025-11-24T02:05:30+00:00 | 2025-11-28T11:33:07+00:00 |
| rhsa-2025:21915 | Red Hat Security Advisory: ghostscript security update | 2025-11-24T02:04:55+00:00 | 2025-11-24T03:01:35+00:00 |
| rhsa-2025:21913 | Red Hat Security Advisory: OpenShift File Integrity Operator bug fix and enhancement update | 2025-11-21T21:19:46+00:00 | 2025-11-25T13:46:14+00:00 |
| rhsa-2025:21897 | Red Hat Security Advisory: Satellite 6.15.5.7 Async Update | 2025-11-20T21:27:37+00:00 | 2025-11-26T21:26:52+00:00 |
| rhsa-2025:21894 | Red Hat Security Advisory: Satellite 6.16.5.6 Async Update | 2025-11-20T21:22:30+00:00 | 2025-11-21T19:32:02+00:00 |
| rhsa-2025:21893 | Red Hat Security Advisory: Satellite 6.17.6.1 Async Update | 2025-11-20T21:18:54+00:00 | 2025-11-21T19:32:02+00:00 |
| rhsa-2025:21889 | Red Hat Security Advisory: bind security update | 2025-11-20T21:12:54+00:00 | 2025-11-27T03:24:38+00:00 |
| rhsa-2025:21892 | Red Hat Security Advisory: Submariner v0.21 security fixes and container updates | 2025-11-20T21:12:16+00:00 | 2025-11-25T17:53:08+00:00 |
| rhsa-2025:21887 | Red Hat Security Advisory: bind security update | 2025-11-20T20:47:47+00:00 | 2025-11-27T03:24:34+00:00 |
| rhsa-2025:21886 | Red Hat Security Advisory: Satellite 6.18.1 Async Update | 2025-11-20T20:43:24+00:00 | 2025-11-21T19:32:01+00:00 |
| rhsa-2025:21885 | Red Hat Security Advisory: OpenShift Compliance Operator bug fix and enhancement update | 2025-11-20T19:56:52+00:00 | 2025-11-29T08:07:16+00:00 |
| rhsa-2025:21881 | Red Hat Security Advisory: thunderbird security update | 2025-11-20T19:28:11+00:00 | 2025-11-21T19:32:00+00:00 |
| rhsa-2025:21856 | Red Hat Security Advisory: golang security update | 2025-11-20T15:48:22+00:00 | 2025-11-27T23:59:20+00:00 |
| rhsa-2025:21842 | Red Hat Security Advisory: thunderbird security update | 2025-11-20T11:52:01+00:00 | 2025-11-21T19:32:02+00:00 |
| rhsa-2025:21844 | Red Hat Security Advisory: thunderbird security update | 2025-11-20T11:43:11+00:00 | 2025-11-21T19:32:00+00:00 |
| rhsa-2025:21841 | Red Hat Security Advisory: thunderbird security update | 2025-11-20T11:43:04+00:00 | 2025-11-21T19:31:58+00:00 |
| rhsa-2025:21843 | Red Hat Security Advisory: thunderbird security update | 2025-11-20T11:40:51+00:00 | 2025-11-21T19:31:59+00:00 |
| rhsa-2025:21815 | Red Hat Security Advisory: delve and golang security update | 2025-11-20T08:45:31+00:00 | 2025-11-27T23:59:19+00:00 |
| rhsa-2025:21819 | Red Hat Security Advisory: idm:DL1 security update | 2025-11-20T08:18:01+00:00 | 2025-11-27T03:24:32+00:00 |
| rhsa-2025:21818 | Red Hat Security Advisory: idm:DL1 security update | 2025-11-20T08:15:13+00:00 | 2025-11-27T03:24:42+00:00 |
| rhsa-2025:21820 | Red Hat Security Advisory: idm:DL1 security update | 2025-11-20T08:10:36+00:00 | 2025-11-27T03:24:28+00:00 |
| rhsa-2025:21817 | Red Hat Security Advisory: bind security update | 2025-11-20T08:05:31+00:00 | 2025-11-27T03:24:31+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-59517 | Windows Storage VSP Driver Elevation of Privilege Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-59516 | Windows Storage VSP Driver Elevation of Privilege Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-55233 | Windows Projected File System Elevation of Privilege Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-09T08:00:00.000Z |
| msrc_cve-2025-54100 | PowerShell Remote Code Execution Vulnerability | 2025-12-09T08:00:00.000Z | 2025-12-18T08:00:00.000Z |
| msrc_cve-2025-14174 | Chromium: CVE-2025-14174 Out of bounds memory access in ANGLE | 2025-12-09T08:00:00.000Z | 2025-12-15T08:00:00.000Z |
| msrc_cve-2025-62223 | Microsoft Edge (Chromium-based) for Mac Spoofing Vulnerability | 2025-12-04T08:00:00.000Z | 2025-12-04T08:00:00.000Z |
| msrc_cve-2025-68746 | spi: tegra210-quad: Fix timeout handling | 2025-12-02T00:00:00.000Z | 2025-12-25T01:04:11.000Z |
| msrc_cve-2025-68745 | scsi: qla2xxx: Clear cmds after chip reset | 2025-12-02T00:00:00.000Z | 2025-12-25T01:03:44.000Z |
| msrc_cve-2025-68744 | bpf: Free special fields when update [lru_,]percpu_hash maps | 2025-12-02T00:00:00.000Z | 2025-12-25T01:03:54.000Z |
| msrc_cve-2025-68742 | bpf: Fix invalid prog->stats access when update_effective_progs fails | 2025-12-02T00:00:00.000Z | 2025-12-25T01:04:21.000Z |
| msrc_cve-2025-68741 | scsi: qla2xxx: Fix improper freeing of purex item | 2025-12-02T00:00:00.000Z | 2025-12-25T01:03:12.000Z |
| msrc_cve-2025-68740 | ima: Handle error code returned by ima_filter_rule_match() | 2025-12-02T00:00:00.000Z | 2025-12-25T01:05:03.000Z |
| msrc_cve-2025-68736 | landlock: Fix handling of disconnected directories | 2025-12-02T00:00:00.000Z | 2025-12-25T01:03:39.000Z |
| msrc_cve-2025-68733 | smack: fix bug: unprivileged task can create labels | 2025-12-02T00:00:00.000Z | 2025-12-25T01:06:01.000Z |
| msrc_cve-2025-68732 | gpu: host1x: Fix race in syncpt alloc/free | 2025-12-02T00:00:00.000Z | 2025-12-25T01:03:18.000Z |
| msrc_cve-2025-68729 | wifi: ath12k: Fix MSDU buffer types handling in RX error path | 2025-12-02T00:00:00.000Z | 2025-12-25T01:03:49.000Z |
| msrc_cve-2025-68728 | ntfs3: fix uninit memory after failed mi_read in mi_format_new | 2025-12-02T00:00:00.000Z | 2025-12-25T01:04:42.000Z |
| msrc_cve-2025-68727 | ntfs3: Fix uninit buffer allocated by __getname() | 2025-12-02T00:00:00.000Z | 2025-12-25T01:05:30.000Z |
| msrc_cve-2025-68725 | bpf: Do not let BPF test infra emit invalid GSO types to stack | 2025-12-02T00:00:00.000Z | 2025-12-25T01:04:37.000Z |
| msrc_cve-2025-68724 | crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id | 2025-12-02T00:00:00.000Z | 2025-12-25T01:05:51.000Z |
| msrc_cve-2025-68615 | Net-SNMP snmptrapd crash | 2025-12-02T00:00:00.000Z | 2025-12-25T01:38:02.000Z |
| msrc_cve-2025-68476 | KEDA has Arbitrary File Read via Insufficient Path Validation in HashiCorp Vault Service Account Credential | 2025-12-02T00:00:00.000Z | 2025-12-25T01:37:57.000Z |
| msrc_cve-2025-68390 | Elasticsearch Allocation of Resources Without Limits or Throttling | 2025-12-02T00:00:00.000Z | 2025-12-23T01:37:15.000Z |
| msrc_cve-2025-68384 | Elasticsearch Allocation of Resources Without Limits or Throttling | 2025-12-02T00:00:00.000Z | 2025-12-23T01:37:09.000Z |
| msrc_cve-2025-68380 | wifi: ath11k: fix peer HE MCS assignment | 2025-12-02T00:00:00.000Z | 2025-12-25T01:05:45.000Z |
| msrc_cve-2025-68379 | RDMA/rxe: Fix null deref on srq->rq.queue after resize failure | 2025-12-02T00:00:00.000Z | 2025-12-25T01:05:14.000Z |
| msrc_cve-2025-68378 | bpf: Fix stackmap overflow check in __bpf_get_stackid() | 2025-12-02T00:00:00.000Z | 2025-12-25T01:05:35.000Z |
| msrc_cve-2025-68376 | coresight: ETR: Fix ETR buffer use-after-free issue | 2025-12-02T00:00:00.000Z | 2025-12-25T01:05:40.000Z |
| msrc_cve-2025-68374 | md: fix rcu protection in md_wakeup_thread | 2025-12-02T00:00:00.000Z | 2025-12-25T01:05:56.000Z |
| msrc_cve-2025-68372 | nbd: defer config put in recv_work | 2025-12-02T00:00:00.000Z | 2025-12-25T01:04:47.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-25-317-03 | AVEVA Edge | 2025-11-13T07:00:00.000000Z | 2025-11-13T07:00:00.000000Z |
| icsa-25-317-02 | AVEVA Application Server IDE | 2025-11-13T07:00:00.000000Z | 2025-11-13T07:00:00.000000Z |
| icsa-25-317-01 | Mitsubishi Electric MELSEC iQ-F Series | 2025-11-13T07:00:00.000000Z | 2025-11-13T07:00:00.000000Z |
| icsa-25-322-04 | Schneider Electric PowerChute Serial Shutdown | 2025-11-11T08:00:00.000000Z | 2025-11-11T08:00:00.000000Z |
| icsa-25-322-01 | Schneider Electric EcoStruxure Machine SCADA Expert & Pro-face BLUE Open Studio | 2025-11-11T08:00:00.000000Z | 2025-11-11T08:00:00.000000Z |
| icsa-25-317-17 | Siemens Software Center and Solid Edge | 2025-11-11T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-25-317-16 | Siemens Altair Grid Engine | 2025-11-11T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-25-317-15 | Siemens COMOS | 2025-11-11T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-25-317-14 | Siemens Solid Edge | 2025-11-11T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-25-317-13 | Siemens LOGO! 8 BM Devices | 2025-11-11T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-25-310-03 | ABB FLXeon Controllers | 2025-11-06T07:00:00.000000Z | 2025-11-06T07:00:00.000000Z |
| icsa-25-310-02 | Ubia Ubox | 2025-11-06T07:00:00.000000Z | 2025-11-06T07:00:00.000000Z |
| icsa-25-310-01 | Advantech DeviceOn/iEdge | 2025-11-06T07:00:00.000000Z | 2025-11-06T07:00:00.000000Z |
| icsa-25-308-05 | IDIS ICM Viewer | 2025-11-04T07:00:00.000000Z | 2025-11-04T07:00:00.000000Z |
| icsa-25-308-04 | Radiometrics VizAir | 2025-11-04T07:00:00.000000Z | 2025-11-04T07:00:00.000000Z |
| icsa-25-308-03 | Delta Electronics CNCSoft-G2 | 2025-11-04T07:00:00.000000Z | 2025-11-04T07:00:00.000000Z |
| icsa-25-308-02 | Survision License Plate Recognition Camera | 2025-11-04T07:00:00.000000Z | 2025-11-04T07:00:00.000000Z |
| icsa-25-308-01 | Fuji Electric Monitouch V-SFT-6 (Update A) | 2025-11-04T07:00:00.000000Z | 2025-12-16T07:00:00.000000Z |
| va-25-304-02 | Restaurant Brands International assistant platform multiple vulnerabilities | 2025-10-31T17:02:13Z | 2025-10-31T17:02:13Z |
| va-25-304-01 | ELOG multiple vulnerabilities | 2025-10-31T16:57:24Z | 2025-10-31T16:57:24Z |
| icsa-25-303-02 | Hitachi Energy TropOS | 2025-10-30T06:00:00.000000Z | 2025-10-30T06:00:00.000000Z |
| icsa-25-303-01 | International Standards Organization ISO 15118 | 2025-10-30T05:00:00.000000Z | 2025-10-30T05:00:00.000000Z |
| icsma-25-301-01 | Vertikal Systems Hospital Manager Backend Services | 2025-10-28T06:00:00.000000Z | 2025-10-28T06:00:00.000000Z |
| icsma-25-296-01 | NIHON KOHDEN Central Monitor CNS-6201 | 2025-10-23T06:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| icsa-25-296-04 | Delta Electronics ASDA-Soft | 2025-10-23T06:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| icsa-25-296-03 | Veeder-Root TLS4B Automatic Tank Gauge System | 2025-10-23T06:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| icsa-25-296-02 | ASKI Energy ALS-Mini-S8 and ALS-Mini-S4 | 2025-10-23T06:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| icsa-25-296-01 | AutomationDirect Productivity Suite | 2025-10-23T06:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| va-25-296-01 | Frontier Airlines website publicly available email address validation | 2025-10-23T00:00:00Z | 2025-10-23T00:00:00Z |
| va-25-297-01 | IBM DOORS Next Generation multiple vulnerabilities | 2025-10-22T18:45:47Z | 2025-10-22T18:45:47Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2025-000073 | RATOC RAID Monitoring Manager for Windows registers a Windows service with an unquoted file path | 2025-09-05T16:20+09:00 | 2025-09-05T16:20+09:00 |
| jvndb-2025-000071 | "Yahoo! Shopping" App for Android fails to restrict custom URL schemes properly | 2025-09-05T15:12+09:00 | 2025-09-05T15:12+09:00 |
| jvndb-2025-000075 | Multiple vulnerabilities in TkEasyGUI | 2025-09-05T14:53+09:00 | 2025-09-05T14:53+09:00 |
| jvndb-2025-000069 | Web Caster V130 vulnerable to cross-site request forgery | 2025-09-03T14:23+09:00 | 2025-09-03T14:23+09:00 |
| jvndb-2025-000070 | "Gunosy" App vulnerable to insertion of sensitive information into sent data | 2025-09-02T14:20+09:00 | 2025-09-09T09:51+09:00 |
| jvndb-2025-000068 | Seiko Solutions SkyBridge BASIC MB-A130 vulnerable to OS command injection | 2025-09-01T16:21+09:00 | 2025-09-01T16:21+09:00 |
| jvndb-2025-012659 | Denial-of-service (DoS) vulnerability in Konica Minolta bizhub series | 2025-09-01T15:22+09:00 | 2025-09-01T15:22+09:00 |
| jvndb-2025-000067 | Multiple vulnerabilities in multiple iND products | 2025-08-29T14:47+09:00 | 2025-08-29T14:47+09:00 |
| jvndb-2025-000066 | Improper file access permission settings in multiple i-FILTER products | 2025-08-27T19:50+09:00 | 2025-09-29T13:45+09:00 |
| jvndb-2025-000064 | Multiple vulnerabilities in SS1 | 2025-08-27T15:13+09:00 | 2025-08-27T15:13+09:00 |
| jvndb-2025-000065 | ScanSnap Manager installers vulnerable to privilege escalation | 2025-08-27T14:22+09:00 | 2025-08-27T14:22+09:00 |
| jvndb-2025-000063 | Western Digital Kitfox registers a Windows service with an unquoted file path | 2025-08-22T13:37+09:00 | 2025-08-22T13:37+09:00 |
| jvndb-2025-000062 | Multiple vulnerabilities in Group-Office | 2025-08-21T14:03+09:00 | 2025-08-21T14:03+09:00 |
| jvndb-2025-011884 | FUJIFILM Healthcare Americas Synapse Mobility vulnerable to Privilege Escalation | 2025-08-21T11:49+09:00 | 2025-08-25T10:38+09:00 |
| jvndb-2025-000061 | Multiple vulnerabilities in Movable Type | 2025-08-20T15:30+09:00 | 2025-08-20T15:30+09:00 |
| jvndb-2025-000060 | PgManage vulnerable to injection | 2025-08-18T13:40+09:00 | 2025-08-18T13:40+09:00 |
| jvndb-2025-000059 | Seagate Toolkit registers a Windows service with an unquoted file path | 2025-08-14T12:32+09:00 | 2025-08-19T14:40+09:00 |
| jvndb-2025-000058 | WordPress plugin "Advanced Custom Fields" vulnerable to HTML injection | 2025-08-08T15:29+09:00 | 2025-08-08T15:29+09:00 |
| jvndb-2025-010972 | Multiple SEIKO EPSON products use weak initial passwords | 2025-08-08T14:50+09:00 | 2025-08-08T14:50+09:00 |
| jvndb-2025-000057 | Multiple vulnerabilities in Mubit Powered BLUE 870 | 2025-08-08T14:47+09:00 | 2025-08-08T14:47+09:00 |
| jvndb-2025-010854 | Trend Micro Endpoint security products for enterprises vulnerable to multiple OS command injection | 2025-08-07T12:25+09:00 | 2025-08-19T11:36+09:00 |
| jvndb-2025-000056 | Multiple vulnerabilities in Sato label printers CL4/6NX Plus and CL4/6NX-J Plus series | 2025-08-06T16:38+09:00 | 2025-08-06T16:38+09:00 |
| jvndb-2025-010603 | Out-of-bounds write vulnerability in FUJIFILM Business Innovation MFPs | 2025-08-05T11:29+09:00 | 2025-08-05T11:29+09:00 |
| jvndb-2025-010408 | Multiple vulnerabilities in PowerCMS | 2025-08-01T12:05+09:00 | 2025-08-01T12:05+09:00 |
| jvndb-2025-000055 | ZXHN-F660T and ZXHN-F660A use a common credential for all installations | 2025-07-31T15:12+09:00 | 2025-07-31T15:12+09:00 |
| jvndb-2025-000054 | Apache Jena Fuseki vulnerable to path traversal | 2025-07-30T14:17+09:00 | 2025-07-30T14:17+09:00 |
| jvndb-2025-000053 | "SwitchBot" App vulnerable to insertion of sensitive information into log file | 2025-07-29T13:44+09:00 | 2025-07-29T13:44+09:00 |
| jvndb-2025-010056 | TP-Link VIGI NVR1104H-4P and VIGI NVR2016H-16MP vulnerable to OS command injection | 2025-07-28T17:53+09:00 | 2025-07-28T17:53+09:00 |
| jvndb-2025-000052 | TP-Link Archer C1200 vulnerable to clickjacking | 2025-07-24T14:16+09:00 | 2025-07-24T14:16+09:00 |
| jvndb-2025-000051 | Real-time Bus Tracking System vulnerable to improper validation of specified quantity in input | 2025-07-23T13:54+09:00 | 2025-07-23T13:54+09:00 |
| ID | Description | Updated |
|---|