Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2000-0370 |
N/A
|
The debug option in Caldera Linux smail allows re… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.488Z |
| CVE-2000-0371 |
N/A
|
The libmediatool library used for the KDE mediato… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.473Z |
| CVE-2000-0372 |
N/A
|
Vulnerability in Caldera rmt command in the dump … |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.419Z |
| CVE-2000-0373 |
N/A
|
Vulnerabilities in the KDE kvt terminal program a… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.499Z |
| CVE-2000-0376 |
N/A
|
Buffer overflow in the HTTP proxy server for the … |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.476Z |
| CVE-2000-0377 |
N/A
|
The Remote Registry server in Windows NT 4.0 allo… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.453Z |
| CVE-2000-0379 |
N/A
|
The Netopia R9100 router does not prevent authent… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.471Z |
| CVE-2000-0380 |
N/A
|
The IOS HTTP service in Cisco routers and switche… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.476Z |
| CVE-2000-0381 |
N/A
|
The Gossamer Threads DBMan db.cgi CGI script allo… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.557Z |
| CVE-2000-0382 |
N/A
|
ColdFusion ClusterCATS appends stale query string… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.452Z |
| CVE-2000-0387 |
N/A
|
The makelev program in the golddig game from the … |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.454Z |
| CVE-2000-0388 |
N/A
|
Buffer overflow in FreeBSD libmytinfo library all… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.477Z |
| CVE-2000-0389 |
N/A
|
Buffer overflow in krb_rd_req function in Kerbero… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.479Z |
| CVE-2000-0390 |
N/A
|
Buffer overflow in krb425_conv_principal function… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.484Z |
| CVE-2000-0391 |
N/A
|
Buffer overflow in krshd in Kerberos 5 allows rem… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.492Z |
| CVE-2000-0392 |
N/A
|
Buffer overflow in ksu in Kerberos 5 allows local… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.512Z |
| CVE-2000-0393 |
N/A
|
The KDE kscd program does not drop privileges whe… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.539Z |
| CVE-2000-0394 |
N/A
|
NetProwler 3.0 allows remote attackers to cause a… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.540Z |
| CVE-2000-0395 |
N/A
|
Buffer overflow in CProxy 3.3 allows remote users… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.539Z |
| CVE-2000-0396 |
N/A
|
The add.exe program in the Carello shopping cart … |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.502Z |
| CVE-2000-0397 |
N/A
|
The EMURL web-based email account software encode… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.541Z |
| CVE-2000-0398 |
N/A
|
Buffer overflow in wconsole.dll in Rockliffe Mail… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.555Z |
| CVE-2000-0399 |
N/A
|
Buffer overflow in MDaemon POP server allows remo… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.508Z |
| CVE-2000-0402 |
N/A
|
The Mixed Mode authentication capability in Micro… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.524Z |
| CVE-2000-0403 |
N/A
|
The CIFS Computer Browser service on Windows NT 4… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.540Z |
| CVE-2000-0404 |
N/A
|
The CIFS Computer Browser service allows remote a… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.544Z |
| CVE-2000-0405 |
N/A
|
Buffer overflow in L0pht AntiSniff allows remote … |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.522Z |
| CVE-2000-0406 |
N/A
|
Netscape Communicator before version 4.73 and Nav… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.543Z |
| CVE-2000-0407 |
N/A
|
Buffer overflow in Solaris netpr program allows l… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.541Z |
| CVE-2000-0408 |
N/A
|
IIS 4.05 and 5.0 allow remote attackers to cause … |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.520Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2000-0370 |
N/A
|
The debug option in Caldera Linux smail allows re… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.488Z |
| CVE-2000-0371 |
N/A
|
The libmediatool library used for the KDE mediato… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.473Z |
| CVE-2000-0372 |
N/A
|
Vulnerability in Caldera rmt command in the dump … |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.419Z |
| CVE-2000-0373 |
N/A
|
Vulnerabilities in the KDE kvt terminal program a… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.499Z |
| CVE-2000-0376 |
N/A
|
Buffer overflow in the HTTP proxy server for the … |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.476Z |
| CVE-2000-0377 |
N/A
|
The Remote Registry server in Windows NT 4.0 allo… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.453Z |
| CVE-2000-0379 |
N/A
|
The Netopia R9100 router does not prevent authent… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.471Z |
| CVE-2000-0380 |
N/A
|
The IOS HTTP service in Cisco routers and switche… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.476Z |
| CVE-2000-0381 |
N/A
|
The Gossamer Threads DBMan db.cgi CGI script allo… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.557Z |
| CVE-2000-0382 |
N/A
|
ColdFusion ClusterCATS appends stale query string… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.452Z |
| CVE-2000-0387 |
N/A
|
The makelev program in the golddig game from the … |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.454Z |
| CVE-2000-0388 |
N/A
|
Buffer overflow in FreeBSD libmytinfo library all… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.477Z |
| CVE-2000-0389 |
N/A
|
Buffer overflow in krb_rd_req function in Kerbero… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.479Z |
| CVE-2000-0390 |
N/A
|
Buffer overflow in krb425_conv_principal function… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.484Z |
| CVE-2000-0391 |
N/A
|
Buffer overflow in krshd in Kerberos 5 allows rem… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.492Z |
| CVE-2000-0392 |
N/A
|
Buffer overflow in ksu in Kerberos 5 allows local… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.512Z |
| CVE-2000-0393 |
N/A
|
The KDE kscd program does not drop privileges whe… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.539Z |
| CVE-2000-0394 |
N/A
|
NetProwler 3.0 allows remote attackers to cause a… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.540Z |
| CVE-2000-0395 |
N/A
|
Buffer overflow in CProxy 3.3 allows remote users… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.539Z |
| CVE-2000-0396 |
N/A
|
The add.exe program in the Carello shopping cart … |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.502Z |
| CVE-2000-0397 |
N/A
|
The EMURL web-based email account software encode… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.541Z |
| CVE-2000-0398 |
N/A
|
Buffer overflow in wconsole.dll in Rockliffe Mail… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.555Z |
| CVE-2000-0399 |
N/A
|
Buffer overflow in MDaemon POP server allows remo… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.508Z |
| CVE-2000-0402 |
N/A
|
The Mixed Mode authentication capability in Micro… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.524Z |
| CVE-2000-0403 |
N/A
|
The CIFS Computer Browser service on Windows NT 4… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.540Z |
| CVE-2000-0404 |
N/A
|
The CIFS Computer Browser service allows remote a… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.544Z |
| CVE-2000-0405 |
N/A
|
Buffer overflow in L0pht AntiSniff allows remote … |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.522Z |
| CVE-2000-0406 |
N/A
|
Netscape Communicator before version 4.73 and Nav… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.543Z |
| CVE-2000-0407 |
N/A
|
Buffer overflow in Solaris netpr program allows l… |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.541Z |
| CVE-2000-0408 |
N/A
|
IIS 4.05 and 5.0 allow remote attackers to cause … |
n/a |
n/a |
2000-07-12T04:00:00 | 2024-08-08T05:14:21.520Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-1999-0750 | Hotmail allows Javascript to be executed via the HTML STYLE tag, allowing remote attackers to execu… | 1999-09-13T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0751 | Buffer overflow in Accept command in Netscape Enterprise Server 3.6 with the SSL Handshake Patch. | 1999-09-13T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0759 | Buffer overflow in FuseMAIL POP service via long USER and PASS commands. | 1999-09-13T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1014 | Buffer overflow in mail command in Solaris 2.7 and 2.7 allows local users to gain privileges via a … | 1999-09-13T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1053 | guestbook.pl cleanses user-inserted SSI commands by removing text between "<!--" and "-->" separato… | 1999-09-13T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0817 | Lynx WWW client allows a remote attacker to specify command-line parameters which Lynx uses when ca… | 1999-09-15T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0704 | Buffer overflow in Berkeley automounter daemon (amd) logging facility provided in the Linux am-util… | 1999-09-16T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0890 | iHTML Merchant allows remote attackers to obtain sensitive information or execute commands via a co… | 1999-09-16T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0907 | sccw allows local users to read arbitrary files. | 1999-09-16T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0953 | WWWBoard stores encrypted passwords in a password file that is under the web root and thus accessib… | 1999-09-16T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0954 | WWWBoard has a default username and default password. | 1999-09-16T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0787 | The SSH authentication agent follows symlinks via a UNIX domain socket. | 1999-09-17T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0886 | The security descriptor for RASMAN allows users to point to an alternate location via the Windows N… | 1999-09-17T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0909 | Multihomed Windows systems allow a remote attacker to bypass IP source routing restrictions via a m… | 1999-09-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0708 | Buffer overflow in cfingerd allows local users to gain root privileges via a long GECOS field. | 1999-09-21T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0786 | The dynamic linker in Solaris allows a local user to create arbitrary files via the LD_PROFILE envi… | 1999-09-22T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0912 | FreeBSD VFS cache (vfs_cache) allows local users to cause a denial of service by opening a large nu… | 1999-09-22T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0777 | IIS FTP servers may allow a remote attacker to read or delete files on the server, even if they hav… | 1999-09-23T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0906 | Buffer overflow in sccw allows local users to gain root access via the HOME environmental variable. | 1999-09-23T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0908 | Denial of service in Solaris TCP streams driver via a malicious connection that causes the server t… | 1999-09-23T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1013 | named-xfer in AIX 4.1.5 and 4.2.1 allows members of the system group to overwrite system files to g… | 1999-09-23T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1477 | Buffer overflow in GNOME libraries 1.0.8 allows local user to gain root access via a long --espeake… | 1999-09-23T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1534 | Buffer overflow in (1) nlservd and (2) rnavc in Knox Software Arkeia backup product allows local us… | 1999-09-23T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1351 | Directory traversal vulnerability in KVIrc IRC client 0.9.0 with the "Listen to !nick <soundname> r… | 1999-09-24T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1484 | Buffer overflow in MSN Setup BBS 4.71.0.10 ActiveX control (setupbbs.ocx) allows a remote attacker … | 1999-09-24T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1578 | Buffer overflow in Registration Wizard ActiveX control (regwizc.dll, InvokeRegWizard) 3.0.0.0 for I… | 1999-09-24T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0788 | Arkiea nlservd allows remote attackers to conduct a denial of service. | 1999-09-26T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0940 | Buffer overflow in mutt mail client allows remote attackers to execute commands via malformed MIME … | 1999-09-27T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1576 | Buffer overflow in Adobe Acrobat ActiveX control (pdf.ocx, PDF.PdfCtrl.1) 1.3.188 for Acrobat Reade… | 1999-09-27T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0789 | Buffer overflow in AIX ftpd in the libc library. | 1999-09-28T04:00:00.000 | 2025-04-03T01:03:51.193 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-pfwp-8pq4-g7pv |
9.8 (3.1)
|
Incomplete List of Disallowed Inputs in SOFA-Hessian | 2019-03-06T17:36:08Z | 2024-03-21T16:02:59Z |
| ghsa-p2xq-vcm7-xjj6 |
7.5 (3.1)
|
Stack Overflow in Apache Mesos | 2019-03-06T17:36:22Z | 2022-09-14T22:44:16Z |
| ghsa-wg37-7mrv-cfwm |
9.8 (3.1)
|
Unauthenticated Remote Code Execution in Apache JMeter | 2019-03-07T18:47:57Z | 2022-09-14T22:45:15Z |
| ghsa-c9h6-xhg9-xxrv |
7.5 (3.1)
|
Improper Input Validation in Apache Qpid Broker-J | 2019-03-07T18:48:08Z | 2022-09-14T22:45:43Z |
| ghsa-8554-jxcw-454q |
8.1 (3.1)
8.2 (4.0)
|
Webargs mishandles concurrent JSON parsing | 2019-03-12T15:16:12Z | 2025-08-04T21:03:04Z |
| ghsa-m63j-wh5w-c252 |
7.5 (3.1)
|
Denial of Service Vulnerability in Action View | 2019-03-13T17:25:55Z | 2023-08-08T16:46:59Z |
| ghsa-86g5-2wh3-gc9j |
7.5 (3.1)
|
Path Traversal in Action View | 2019-03-13T17:26:59Z | 2025-10-22T17:42:49Z |
| ghsa-m42h-mh85-4qgc |
9.8 (3.1)
|
Use of Insufficiently Random Values in Railties Allows Remote Code Execution | 2019-03-13T17:28:35Z | 2023-07-05T20:28:26Z |
| ghsa-2j5v-fc74-j9q2 |
6.1 (3.1)
|
Cross-Site Scripting in editor.md | 2019-03-14T15:38:56Z | 2021-08-30T21:58:23Z |
| ghsa-gp32-7h29-rpxm |
5.3 (3.1)
|
Moderate severity vulnerability that affects com.puppycrawl.tools:checkstyle | 2019-03-14T15:39:14Z | 2021-09-13T12:37:35Z |
| ghsa-77rv-6vfw-x4gc |
6.5 (3.1)
|
spring-security-oauth and spring-security-oauth2 Open Redirect vulnerability | 2019-03-14T15:39:30Z | 2023-06-20T18:31:23Z |
| ghsa-xhcq-fv7x-grr2 |
9.8 (3.1)
|
Critical severity vulnerability that affects org.apache.solr:solr-core | 2019-03-14T15:39:45Z | 2021-09-21T22:33:16Z |
| ghsa-vrh8-27q8-fr8f |
7.5 (3.1)
|
Server-Side Request Forgery (SSRF) in org.apache.solr:solr-core | 2019-03-14T15:39:56Z | 2022-09-17T00:09:39Z |
| ghsa-2g9q-chq2-w8qw |
4.3 (3.1)
|
Moderate severity vulnerability that affects org.apache.hive:hive, org.apache.hive:hive-exec, and o… | 2019-03-14T15:40:16Z | 2021-08-30T21:36:58Z |
| ghsa-gf2v-9hp6-44qg |
7.5 (3.1)
|
org.apache.hive:hive, org.apache.hive:hive-exec, and org.apache.hive:hive-service vulnerable to Imp… | 2019-03-14T15:40:32Z | 2022-09-17T00:32:32Z |
| ghsa-5gvm-hrw5-h6xf |
7.3 (3.1)
|
Improper Authentication in org.apache.hive:hive, org.apache.hive:hive-exec, and org.apache.hive:hiv… | 2019-03-14T15:40:44Z | 2022-09-17T01:07:49Z |
| ghsa-8cw6-5qvp-q3wj |
5.4 (3.1)
|
Exposure of Sensitive Information to an Unauthorized Actor in Apache Spark via crafted URL | 2019-03-14T15:40:57Z | 2022-09-14T22:49:01Z |
| ghsa-6mqq-8r44-vmjc |
4.7 (3.1)
6.0 (4.0)
|
Exposure of Sensitive Information to an Unauthorized Actor in Apache Spark | 2019-03-14T15:41:04Z | 2024-10-21T21:07:39Z |
| ghsa-h436-432x-8fvx |
5.5 (3.1)
|
Apache Commons Compress vulnerable to denial of service due to infinite loop | 2019-03-14T15:41:12Z | 2024-02-27T18:28:56Z |
| ghsa-xmc8-cjfr-phx3 |
7.5 (3.1)
|
Regular Expression Denial of Service in highcharts | 2019-03-18T15:59:32Z | 2021-09-21T22:36:57Z |
| ghsa-73rf-6mrf-759q |
|
devise Time-of-check Time-of-use Race Condition vulnerability | 2019-03-19T18:03:25Z | 2023-01-23T20:46:50Z |
| ghsa-vv4c-g6q7-p3q7 |
6.1 (3.1)
|
Doorkeeper-openid_connect contains Open Redirect | 2019-03-25T16:15:54Z | 2023-03-13T23:56:32Z |
| ghsa-573x-jhqh-jg36 |
7.5 (3.1)
|
Improper Certificate Validation in chloride | 2019-03-25T16:16:27Z | 2022-09-17T00:57:41Z |
| ghsa-869j-5855-hjpm |
6.5 (3.1)
|
Moderate severity vulnerability that affects org.apache.karaf:apache-karaf and org.apache.karaf:karaf | 2019-03-25T16:16:44Z | 2021-09-03T22:59:29Z |
| ghsa-gcm4-q2pg-xw89 |
9.6 (3.1)
9.4 (4.0)
|
ipycache is vulnerable to Code Injection | 2019-03-25T16:16:55Z | 2024-09-23T16:03:52Z |
| ghsa-qwj8-p662-3m7x |
7.5 (3.1)
|
Path Traversal in localhost-now | 2019-03-25T16:17:05Z | 2023-09-11T18:38:48Z |
| ghsa-pmv6-gf98-p3r5 |
8.1 (3.1)
|
Command Injection in kill-port | 2019-03-25T16:17:18Z | 2023-09-08T19:57:04Z |
| ghsa-5cf4-jqwp-584g |
7.4 (3.1)
|
Improper Privilege Management in org.apache.hadoop:hadoop-main | 2019-03-25T16:17:32Z | 2022-09-17T00:58:23Z |
| ghsa-2fch-jvg5-crf6 |
7.5 (3.1)
|
Improper Input Validation python-gnupg | 2019-03-25T16:17:53Z | 2022-09-17T00:03:45Z |
| ghsa-f58w-649r-qjr9 |
8.1 (3.1)
9.2 (4.0)
|
splunk-sdk does not properly verify untrusted TLS server certificates | 2019-03-25T16:18:04Z | 2024-10-27T15:34:51Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2021-20 |
|
markdown2 >=1.0.1.18, fixed in 2.4.0, is affected by a regular expression denial of servi… | markdown2 | 2021-03-03T16:15:00Z | 2021-05-10T03:15:00Z |
| pysec-2021-127 |
|
Apache Superset up to and including 0.38.0 allowed the creation of a Markdown component o… | apache-superset | 2021-03-05T12:15:00Z | 2021-08-27T03:21:55.702415Z |
| pysec-2021-44 |
|
Products.PluggableAuthService is a pluggable Zope authentication and authorization framew… | products-pluggableauthservice | 2021-03-08T21:15:00Z | 2021-03-12T13:22:00Z |
| pysec-2021-45 |
|
Products.PluggableAuthService is a pluggable Zope authentication and authorization framew… | products-pluggableauthservice | 2021-03-08T21:15:00Z | 2021-03-12T13:48:00Z |
| pysec-2021-43 |
|
Products.GenericSetup is a mini-framework for expressing the configured state of a Zope S… | products-genericsetup | 2021-03-09T01:15:00Z | 2021-03-12T18:05:00Z |
| pysec-2021-60 |
|
Tenable for Jira Cloud is an open source project designed to pull Tenable.io vulnerabilit… | tenable-jira-cloud | 2021-03-10T22:15:00Z | 2021-03-18T20:38:00Z |
| pysec-2021-59 |
|
The urllib3 library 1.26.x before 1.26.4 for Python omits SSL certificate validation in s… | urllib3 | 2021-03-15T18:15:00Z | 2021-03-23T16:47:00Z |
| pysec-2021-141 |
|
In pygments 1.1+, fixed in 2.7.4, the lexers used to parse programming languages rely hea… | pygments | 2021-03-17T13:15:00Z | 2021-08-27T03:22:17.331175Z |
| pysec-2021-35 |
|
An issue was discovered in Pillow before 8.1.1. TiffDecode has a heap-based buffer overfl… | pillow | 2021-03-19T04:15:00Z | 2021-03-26T14:06:00Z |
| pysec-2021-36 |
|
An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offs… | pillow | 2021-03-19T04:15:00Z | 2021-03-22T14:11:00Z |
| pysec-2021-37 |
|
An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is an out-of-bound… | pillow | 2021-03-19T04:15:00Z | 2021-03-22T14:09:00Z |
| pysec-2021-38 |
|
An issue was discovered in Pillow before 8.1.1. The PDF parser allows a regular expressio… | pillow | 2021-03-19T04:15:00Z | 2021-03-22T14:03:00Z |
| pysec-2021-39 |
|
An issue was discovered in Pillow before 8.1.1. There is an out-of-bounds read in SGIRleD… | pillow | 2021-03-19T04:15:00Z | 2021-03-22T13:36:00Z |
| pysec-2021-19 |
|
An XSS vulnerability was discovered in python-lxml's clean module versions before 4.6.3. … | lxml | 2021-03-21T05:15:00Z | 2021-03-30T18:47:00Z |
| pysec-2021-31 |
|
OMERO.web is open source Django-based software for managing microscopy imaging. OMERO.web… | omero-web | 2021-03-23T16:15:00Z | 2021-03-27T01:59:00Z |
| pysec-2021-32 |
|
OMERO.web is open source Django-based software for managing microscopy imaging. OMERO.web… | omero-web | 2021-03-23T16:15:00Z | 2021-03-27T02:20:00Z |
| pysec-2021-140 |
|
An infinite loop in SMLLexer in Pygments versions 1.5 to 2.7.3 may lead to denial of serv… | pygments | 2021-03-23T17:15:00Z | 2021-08-27T03:22:17.263376Z |
| pysec-2021-432 |
|
Nanopb is a small code-size Protocol Buffers implementation in ansi C. In Nanopb before v… | nanopb | 2021-03-23T18:15:00Z | 2021-11-24T22:47:12.152718Z |
| pysec-2021-889 |
5.4 (3.1)
|
A stored cross-site scripting (XSS) vulnerability in Plone CMS 5.2.3 exists in site-contr… | plone | 2021-03-24T15:15:00Z | 2024-11-25T18:35:18.357593Z |
| pysec-2021-133 |
|
Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse).… | matrix-synapse | 2021-03-26T20:15:00Z | 2021-08-27T03:22:06.660066Z |
| pysec-2021-134 |
|
Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse).… | matrix-synapse | 2021-03-26T20:15:00Z | 2021-08-27T03:22:06.710356Z |
| pysec-2021-107 |
|
A flaw was found in several ansible modules, where parameters containing credentials, suc… | ansible | 2021-04-01T18:15:00Z | 2021-07-02T02:41:35.257212Z |
| pysec-2021-34 |
|
models/metadata.py in the pikepdf package 1.3.0 through 2.9.2 for Python allows XXE when … | pikepdf | 2021-04-01T20:15:00Z | 2021-04-09T19:15:00Z |
| pysec-2021-11 |
|
django-registration is a user registration package for Django. The django-registration pa… | django-registration | 2021-04-01T22:15:00Z | 2021-04-06T18:40:00Z |
| pysec-2021-6 |
|
In Django 2.2 before 2.2.20, 3.0 before 3.0.14, and 3.1 before 3.1.8, MultiPartParser all… | django | 2021-04-06T15:15:00Z | 2021-05-12T08:15:00Z |
| pysec-2021-111 |
|
`projen` is a project generation tool that synthesizes project configuration files such a… | projen | 2021-04-06T19:15:00Z | 2021-07-08T03:14:29.411085Z |
| pysec-2021-18 |
|
CERN Indico before 2.3.4 can use an attacker-supplied Host header in a password reset link. | indico | 2021-04-07T14:15:00Z | 2021-04-15T14:13:00Z |
| pysec-2021-58 |
|
sopel-channelmgnt is a channelmgnt plugin for sopel. In versions prior to 2.0.1, on some … | sopel-plugins-channelmgnt | 2021-04-09T16:15:00Z | 2021-05-04T13:59:00Z |
| pysec-2021-147 |
|
in SiCKRAGE, versions 4.2.0 to 10.0.11.dev1 are vulnerable to Stored Cross-Site-Scripting… | sickrage | 2021-04-12T14:15:00Z | 2021-08-27T03:22:21.507681Z |
| pysec-2021-148 |
|
In SiCKRAGE, versions 9.3.54.dev1 to 10.0.11.dev1 are vulnerable to Reflected Cross-Site-… | sickrage | 2021-04-12T14:15:00Z | 2021-08-27T03:22:21.656706Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2022-57 | Malicious code in @abbvie/fetlife-assets (npm) | 2022-06-20T18:19:57Z | 2022-06-20T18:19:58Z |
| MAL-2022-65 | Malicious code in @airbytehq/fetlife-assets (npm) | 2022-06-20T18:19:58Z | 2022-06-20T18:19:58Z |
| MAL-2022-66 | Malicious code in @airmiles/fetlife-assets (npm) | 2022-06-20T18:19:58Z | 2022-06-20T18:19:59Z |
| MAL-2022-67 | Malicious code in @airvpn/fetlife-assets (npm) | 2022-06-20T18:19:58Z | 2022-06-20T18:19:59Z |
| MAL-2022-70 | Malicious code in @alscotoday/fetlife-assets (npm) | 2022-06-20T18:19:58Z | 2022-06-20T18:19:59Z |
| MAL-2022-71 | Malicious code in @amazonvrp/fetlife-assets (npm) | 2022-06-20T18:19:58Z | 2022-06-20T18:19:59Z |
| mal-2022-65 | Malicious code in @airbytehq/fetlife-assets (npm) | 2022-06-20T18:19:58Z | 2022-06-20T18:19:58Z |
| mal-2022-66 | Malicious code in @airmiles/fetlife-assets (npm) | 2022-06-20T18:19:58Z | 2022-06-20T18:19:59Z |
| mal-2022-67 | Malicious code in @airvpn/fetlife-assets (npm) | 2022-06-20T18:19:58Z | 2022-06-20T18:19:59Z |
| mal-2022-70 | Malicious code in @alscotoday/fetlife-assets (npm) | 2022-06-20T18:19:58Z | 2022-06-20T18:19:59Z |
| mal-2022-71 | Malicious code in @amazonvrp/fetlife-assets (npm) | 2022-06-20T18:19:58Z | 2022-06-20T18:19:59Z |
| MAL-2022-117 | Malicious code in @berkshirehathaway/fetlife-assets (npm) | 2022-06-20T18:19:59Z | 2022-06-20T18:20:00Z |
| MAL-2022-158 | Malicious code in @buzzblocks/fetlife-assets (npm) | 2022-06-20T18:19:59Z | 2022-06-20T18:20:05Z |
| MAL-2022-163 | Malicious code in @calcalist/fetlife-assets (npm) | 2022-06-20T18:19:59Z | 2022-06-20T18:20:00Z |
| MAL-2022-164 | Malicious code in @camdenliving/fetlife-assets (npm) | 2022-06-20T18:19:59Z | 2022-06-20T18:20:00Z |
| MAL-2022-165 | Malicious code in @casinohuone/fetlife-assets (npm) | 2022-06-20T18:19:59Z | 2022-06-20T18:20:00Z |
| MAL-2022-73 | Malicious code in @amerisourcebergen/fetlife-assets (npm) | 2022-06-20T18:19:59Z | 2022-06-20T18:19:59Z |
| MAL-2022-79 | Malicious code in @aodocs/fetlife-assets (npm) | 2022-06-20T18:19:59Z | 2022-06-20T18:19:59Z |
| MAL-2022-83 | Malicious code in @aswatson/fetlife-assets (npm) | 2022-06-20T18:19:59Z | 2022-06-20T18:19:59Z |
| MAL-2022-92 | Malicious code in @azimo/fetlife-assets (npm) | 2022-06-20T18:19:59Z | 2022-06-20T18:19:59Z |
| mal-2022-117 | Malicious code in @berkshirehathaway/fetlife-assets (npm) | 2022-06-20T18:19:59Z | 2022-06-20T18:20:00Z |
| mal-2022-158 | Malicious code in @buzzblocks/fetlife-assets (npm) | 2022-06-20T18:19:59Z | 2022-06-20T18:20:05Z |
| mal-2022-163 | Malicious code in @calcalist/fetlife-assets (npm) | 2022-06-20T18:19:59Z | 2022-06-20T18:20:00Z |
| mal-2022-164 | Malicious code in @camdenliving/fetlife-assets (npm) | 2022-06-20T18:19:59Z | 2022-06-20T18:20:00Z |
| mal-2022-165 | Malicious code in @casinohuone/fetlife-assets (npm) | 2022-06-20T18:19:59Z | 2022-06-20T18:20:00Z |
| mal-2022-73 | Malicious code in @amerisourcebergen/fetlife-assets (npm) | 2022-06-20T18:19:59Z | 2022-06-20T18:19:59Z |
| mal-2022-79 | Malicious code in @aodocs/fetlife-assets (npm) | 2022-06-20T18:19:59Z | 2022-06-20T18:19:59Z |
| mal-2022-83 | Malicious code in @aswatson/fetlife-assets (npm) | 2022-06-20T18:19:59Z | 2022-06-20T18:19:59Z |
| mal-2022-92 | Malicious code in @azimo/fetlife-assets (npm) | 2022-06-20T18:19:59Z | 2022-06-20T18:19:59Z |
| MAL-2022-170 | Malicious code in @cirrusinsight/fetlife-assets (npm) | 2022-06-20T18:20:00Z | 2022-06-20T18:20:01Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2022-0111 | vim: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2022-02-23T23:00:00.000+00:00 | 2023-04-18T22:00:00.000+00:00 |
| wid-sec-w-2022-1647 | Red Hat Enterprise Linux: Schwachstelle ermöglicht Codeausführung | 2022-02-23T23:00:00.000+00:00 | 2023-07-18T22:00:00.000+00:00 |
| wid-sec-w-2023-1870 | Dell BSAFE: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2022-02-23T23:00:00.000+00:00 | 2023-07-23T22:00:00.000+00:00 |
| wid-sec-w-2022-0674 | IBM Java: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen | 2022-02-24T23:00:00.000+00:00 | 2023-04-20T22:00:00.000+00:00 |
| wid-sec-w-2022-1154 | Linux Kernel: Schwachstelle ermöglicht Manipulation von TCP Verbindungen | 2022-02-27T23:00:00.000+00:00 | 2024-05-02T22:00:00.000+00:00 |
| wid-sec-w-2022-0153 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2022-03-02T23:00:00.000+00:00 | 2023-04-05T22:00:00.000+00:00 |
| wid-sec-w-2022-0920 | GnuTLS: Schwachstelle ermöglicht Denial of Service | 2022-03-02T23:00:00.000+00:00 | 2022-11-29T23:00:00.000+00:00 |
| wid-sec-w-2023-0967 | SolarWinds Serv-U Managed File Transfer Server: Schwachstelle ermöglicht Offenlegung von Informationen | 2022-03-02T23:00:00.000+00:00 | 2023-04-13T22:00:00.000+00:00 |
| wid-sec-w-2023-2403 | QT: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2022-03-02T23:00:00.000+00:00 | 2023-09-20T22:00:00.000+00:00 |
| wid-sec-w-2022-0235 | Red Hat Advanced Cluster Management: Mehrere Schwachstellen ermöglichen Privilegieneskalation | 2022-03-03T23:00:00.000+00:00 | 2025-12-01T23:00:00.000+00:00 |
| wid-sec-w-2022-2257 | QEMU: Schwachstelle ermöglicht Denial of Service | 2022-03-03T23:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2022-0112 | Google Android: Mehrere Schwachstellen ermöglichen Privilegieneskalation | 2022-03-07T23:00:00.000+00:00 | 2024-07-03T22:00:00.000+00:00 |
| wid-sec-w-2023-0948 | Zabbix: Mehrere Schwachstellen ermöglichen Cross-Site Scripting | 2022-03-07T23:00:00.000+00:00 | 2024-10-03T22:00:00.000+00:00 |
| wid-sec-w-2022-0236 | Intel Prozessor: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen | 2022-03-08T23:00:00.000+00:00 | 2024-07-10T22:00:00.000+00:00 |
| wid-sec-w-2022-0237 | Xen: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen | 2022-03-08T23:00:00.000+00:00 | 2024-02-20T23:00:00.000+00:00 |
| wid-sec-w-2022-0645 | AMD Prozessoren: Schwachstelle ermöglicht Offenlegung von Informationen | 2022-03-08T23:00:00.000+00:00 | 2024-04-17T22:00:00.000+00:00 |
| wid-sec-w-2022-1034 | Mozilla Firefox und Thunderbird: Mehrere Schwachstellen | 2022-03-08T23:00:00.000+00:00 | 2023-01-01T23:00:00.000+00:00 |
| wid-sec-w-2022-1280 | Ruby on Rails: Schwachstelle ermöglicht Codeausführung | 2022-03-08T23:00:00.000+00:00 | 2025-05-18T22:00:00.000+00:00 |
| wid-sec-w-2022-0154 | Xen: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen | 2022-03-10T23:00:00.000+00:00 | 2025-05-12T22:00:00.000+00:00 |
| wid-sec-w-2022-0452 | Grub2: Schwachstelle ermöglicht Offenlegung von Informationen | 2022-03-10T23:00:00.000+00:00 | 2023-09-07T22:00:00.000+00:00 |
| wid-sec-w-2022-0922 | libTIFF: Mehrere Schwachstellen ermöglichen Denial of Service | 2022-03-10T23:00:00.000+00:00 | 2023-10-19T22:00:00.000+00:00 |
| wid-sec-w-2023-3005 | phpMyAdmin: Schwachstelle ermöglicht Offenlegung von Informationen | 2022-03-10T23:00:00.000+00:00 | 2023-11-26T23:00:00.000+00:00 |
| wid-sec-w-2024-0020 | KeePass: Schwachstelle ermöglicht Offenlegung von Informationen | 2022-03-10T23:00:00.000+00:00 | 2024-01-07T23:00:00.000+00:00 |
| wid-sec-w-2022-0114 | QEMU: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen | 2022-03-13T23:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2022-0646 | Apache HTTP Server: Mehrere Schwachstellen | 2022-03-13T23:00:00.000+00:00 | 2023-10-19T22:00:00.000+00:00 |
| wid-sec-w-2022-1867 | cobbler: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2022-03-13T23:00:00.000+00:00 | 2024-02-26T23:00:00.000+00:00 |
| wid-sec-w-2022-2325 | Veeam Backup & Replication: Mehrere Schwachstellen | 2022-03-13T23:00:00.000+00:00 | 2022-12-14T23:00:00.000+00:00 |
| wid-sec-w-2023-0426 | IBM Spectrum Protect: Mehrere Schwachstellen | 2022-03-13T23:00:00.000+00:00 | 2025-01-06T23:00:00.000+00:00 |
| wid-sec-w-2023-0711 | OpenJPEG: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2022-03-13T23:00:00.000+00:00 | 2025-04-01T22:00:00.000+00:00 |
| wid-sec-w-2022-1056 | Apple macOS: Mehrere Schwachstellen | 2022-03-14T23:00:00.000+00:00 | 2023-06-21T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2005:299 | Red Hat Security Advisory: realplayer security update | 2005-03-21T18:32:00+00:00 | 2025-11-21T17:28:44+00:00 |
| rhsa-2005_299 | Red Hat Security Advisory: realplayer security update | 2005-03-21T18:32:00+00:00 | 2024-11-14T10:03:38+00:00 |
| rhsa-2005:320 | Red Hat Security Advisory: ImageMagick security update | 2005-03-23T10:02:00+00:00 | 2025-11-21T17:28:47+00:00 |
| rhsa-2005_320 | Red Hat Security Advisory: ImageMagick security update | 2005-03-23T10:02:00+00:00 | 2024-11-21T23:35:21+00:00 |
| rhsa-2005:070 | Red Hat Security Advisory: ImageMagick security update | 2005-03-23T10:07:00+00:00 | 2025-11-21T17:28:22+00:00 |
| rhsa-2005_070 | Red Hat Security Advisory: ImageMagick security update | 2005-03-23T10:07:00+00:00 | 2024-11-21T23:35:17+00:00 |
| rhsa-2005:232 | Red Hat Security Advisory: ipsec-tools security update | 2005-03-23T10:10:00+00:00 | 2025-11-21T17:28:42+00:00 |
| rhsa-2005_232 | Red Hat Security Advisory: ipsec-tools security update | 2005-03-23T10:10:00+00:00 | 2024-11-21T23:31:58+00:00 |
| rhsa-2005:325 | Red Hat Security Advisory: kdelibs security update | 2005-03-23T10:20:00+00:00 | 2025-11-21T17:28:47+00:00 |
| rhsa-2005_325 | Red Hat Security Advisory: kdelibs security update | 2005-03-23T10:20:00+00:00 | 2024-11-21T23:35:18+00:00 |
| rhsa-2005:323 | Red Hat Security Advisory: mozilla security update | 2005-03-23T19:01:00Z | 2005-03-23T00:00:00Z |
| rhsa-2005_323 | Red Hat Security Advisory: mozilla security update | 2005-03-23T19:01:00Z | 2005-03-23T00:00:00Z |
| rhsa-2005:335 | Red Hat Security Advisory: mozilla security update | 2005-03-23T19:14:00+00:00 | 2025-11-21T17:28:49+00:00 |
| rhsa-2005_335 | Red Hat Security Advisory: mozilla security update | 2005-03-23T19:14:00+00:00 | 2024-11-21T23:42:28+00:00 |
| rhsa-2005:336 | Red Hat Security Advisory: firefox security update | 2005-03-23T19:21:00+00:00 | 2025-11-21T17:28:49+00:00 |
| rhsa-2005_336 | Red Hat Security Advisory: firefox security update | 2005-03-23T19:21:00+00:00 | 2024-11-21T23:42:32+00:00 |
| rhsa-2005:337 | Red Hat Security Advisory: thunderbird security update | 2005-03-23T19:26:00+00:00 | 2025-11-21T17:28:50+00:00 |
| rhsa-2005_337 | Red Hat Security Advisory: thunderbird security update | 2005-03-23T19:26:00+00:00 | 2024-11-21T23:37:32+00:00 |
| rhsa-2005:334 | Red Hat Security Advisory: mysql security update | 2005-03-28T19:44:00+00:00 | 2025-11-21T17:28:49+00:00 |
| rhsa-2005_334 | Red Hat Security Advisory: mysql security update | 2005-03-28T19:44:00+00:00 | 2024-11-14T10:03:41+00:00 |
| rhsa-2005:327 | Red Hat Security Advisory: telnet security update | 2005-03-28T19:49:00+00:00 | 2025-11-21T17:28:52+00:00 |
| rhsa-2005_327 | Red Hat Security Advisory: telnet security update | 2005-03-28T19:49:00+00:00 | 2024-11-21T23:36:27+00:00 |
| rhsa-2005:304 | Red Hat Security Advisory: grip security update | 2005-03-28T19:50:00+00:00 | 2025-11-21T17:28:45+00:00 |
| rhsa-2005_304 | Red Hat Security Advisory: grip security update | 2005-03-28T19:50:00+00:00 | 2024-11-21T23:34:29+00:00 |
| rhsa-2005:330 | Red Hat Security Advisory: krb5 security update | 2005-03-30T07:58:00+00:00 | 2025-11-21T17:28:47+00:00 |
| rhsa-2005_330 | Red Hat Security Advisory: krb5 security update | 2005-03-30T07:58:00+00:00 | 2024-11-21T23:36:32+00:00 |
| rhsa-2005:331 | Red Hat Security Advisory: XFree86 security update | 2005-03-30T08:28:00+00:00 | 2025-11-21T17:28:49+00:00 |
| rhsa-2005_331 | Red Hat Security Advisory: XFree86 security update | 2005-03-30T08:28:00+00:00 | 2024-11-21T23:24:11+00:00 |
| rhsa-2005:354 | Red Hat Security Advisory: tetex security update | 2005-04-01T14:39:00+00:00 | 2025-11-21T17:28:54+00:00 |
| rhsa-2005_354 | Red Hat Security Advisory: tetex security update | 2005-04-01T14:39:00+00:00 | 2024-11-21T23:23:23+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-20-044-01 | Schneider Electric Modicon Ethernet Serial RTU | 2020-02-13T00:00:00.000000Z | 2020-02-13T00:00:00.000000Z |
| icsa-20-044-02 | Schneider Electric Magelis HMI Panels | 2020-02-13T00:00:00.000000Z | 2020-02-13T00:00:00.000000Z |
| icsa-20-049-01 | Honeywell INNCOM INNControl 3 | 2020-02-18T00:00:00.000000Z | 2020-02-18T00:00:00.000000Z |
| icsa-20-049-02 | Emerson OpenEnterprise | 2020-02-18T00:00:00.000000Z | 2020-02-18T00:00:00.000000Z |
| icsma-20-049-01 | Spacelabs Xhibit Telemetry Receiver (XTR) | 2020-02-18T00:00:00.000000Z | 2020-02-18T00:00:00.000000Z |
| icsma-20-049-02 | GE Healthcare Ultrasound products (Update A) | 2020-02-18T07:00:00.000000Z | 2024-05-16T06:00:00.000000Z |
| icsa-20-051-01 | ICSA-20-051-01_B&R Automation Studio and Automation Runtime | 2020-02-20T00:00:00.000000Z | 2020-02-20T00:00:00.000000Z |
| icsa-20-051-02 | Rockwell Automation FactoryTalk Diagnostics | 2020-02-20T00:00:00.000000Z | 2020-02-20T00:00:00.000000Z |
| icsa-20-051-03 | Honeywell NOTI-FIRE-NET Web Server (NWS-3) | 2020-02-20T00:00:00.000000Z | 2020-02-20T00:00:00.000000Z |
| icsa-20-051-04 | Auto-Maskin RP210E, DCU210E, and Marine Observer Pro (Android App) | 2020-02-20T00:00:00.000000Z | 2020-02-20T00:00:00.000000Z |
| icsa-20-056-01 | Moxa MB3xxx Series Protocol Gateways | 2020-02-25T00:00:00.000000Z | 2020-02-25T00:00:00.000000Z |
| icsa-20-056-02 | Moxa ioLogik 2542-HSPA Series Controllers and IOs, and IOxpress Configuration Utility | 2020-02-25T00:00:00.000000Z | 2020-02-25T00:00:00.000000Z |
| icsa-20-056-03 | Moxa PT-7528 and PT-7828 Series Ethernet Switches | 2020-02-25T00:00:00.000000Z | 2020-02-25T00:00:00.000000Z |
| icsa-20-056-04 | Moxa EDS-G516E and EDS-510E Series Ethernet Switches | 2020-02-25T00:00:00.000000Z | 2020-02-25T00:00:00.000000Z |
| icsa-20-056-05 | Honeywell WIN-PAK | 2020-02-25T00:00:00.000000Z | 2020-02-25T00:00:00.000000Z |
| icsa-20-063-01 | Emerson ValveLink | 2020-03-03T00:00:00.000000Z | 2020-03-03T00:00:00.000000Z |
| icsa-20-063-02 | ICSA-20-063-02_PHOENIX CONTACT Emalytics Controller ILC | 2020-03-03T00:00:00.000000Z | 2020-03-03T00:00:00.000000Z |
| icsa-20-063-03 | Omron PLC CJ Series | 2020-03-03T00:00:00.000000Z | 2020-03-03T00:00:00.000000Z |
| icsa-20-063-04 | Moxa AWK-3131A Series Industrial AP/Bridge/Client | 2020-03-03T00:00:00.000000Z | 2020-03-03T00:00:00.000000Z |
| icsa-20-065-01 | WAGO I/O-CHECK | 2020-03-05T00:00:00.000000Z | 2020-03-05T00:00:00.000000Z |
| icsa-20-070-01 | ICSA-20-070-01_Siemens and PKE SiNVR/SiVMS Video Server (Update B) | 2020-03-10T00:00:00.000000Z | 2021-08-10T00:00:00.000000Z |
| icsa-20-070-02 | Siemens SIMATIC S7-300 CPUs and SINUMERIK Controller over Profinet (Update A) | 2020-03-10T00:00:00.000000Z | 2020-03-10T00:00:00.000000Z |
| icsa-20-070-03 | Siemens Spectrum Power 5 | 2020-03-10T00:00:00.000000Z | 2020-03-10T00:00:00.000000Z |
| icsa-20-070-04 | ICSA-20-070-04_Johnson Controls Kantech EntraPass | 2020-03-10T00:00:00.000000Z | 2020-03-10T00:00:00.000000Z |
| icsa-20-070-05 | Johnson Controls Metasys | 2020-03-10T00:00:00.000000Z | 2020-03-10T00:00:00.000000Z |
| icsa-20-070-06 | Rockwell Automation MicroLogix Controllers and RSLogix 500 Software | 2020-03-10T00:00:00.000000Z | 2020-03-10T00:00:00.000000Z |
| icsa-20-072-01 | ICSA-20-072-01_ABB eSOMS | 2020-03-12T00:00:00.000000Z | 2020-03-12T00:00:00.000000Z |
| icsa-20-072-02 | ABB Asset Suite | 2020-03-12T00:00:00.000000Z | 2020-03-12T00:00:00.000000Z |
| icsa-20-072-03 | Rockwell Automation Allen-Bradley Stratix 5950 | 2020-03-12T00:00:00.000000Z | 2020-03-12T00:00:00.000000Z |
| icsa-20-077-01 | Delta Electronics Industrial Automation CNCSoft ScreenEditor | 2020-03-17T00:00:00.000000Z | 2020-03-17T00:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-sb-rce-dos-9zajkx4 | Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers SSL Remote Code Execution and Denial of Service Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-sdscred-hfwwfqbj | Cisco SD-WAN Solution Software Static Credentials Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-sdw-dos-kwodyhnb | Cisco SD-WAN Solution Software Denial of Service Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-sivm-m8wugr9o | Cisco SD-WAN vManage Software SQL Injection Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-vedgfpdos-pkqqrnwv | Cisco SD-WAN vEdge Routers Denial of Service Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-visio-dir-sql-inj-fpm3mpft | Cisco Vision Dynamic Signage Director SQL Injection Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-vmanage-v78fubgv | Cisco SD-WAN vManage Software SQL Injection Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T20:56:20+00:00 |
| cisco-sa-vmandowndir-cvgvdkm3 | Cisco SD-WAN vManage Software Path Traversal Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-vmanrce-4jtwt28p | Cisco SD-WAN vManage Software Remote Code Execution Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-vmanwebid-5qwmccvt | Cisco SD-WAN vManage Software Information Disclosure Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-vmanxml-aj4gfekd | Cisco SD-WAN vManage Software XML External Entity Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-vmanxss-z7bhvhpy | Cisco SD-WAN vManage Software Cross-Site Scripting Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-vmdirtrav-efdaxsjg | Cisco SD-WAN vManage Software Directory Traversal Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-vmpresc-syzcs4kc | Cisco SD-WAN Solution Software Privilege Escalation Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-webex-html-bj4y9tx | Cisco Webex Meetings and Cisco Webex Meetings Server HTML Injection Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-20T14:31:42+00:00 |
| cisco-sa-asaftd-ro-path-kjuqhb86 | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Read-Only Path Traversal Vulnerability | 2020-07-22T16:00:00+00:00 | 2020-08-27T14:33:49+00:00 |
| cisco-sa-dcnm-auth-bypass-jkubgpu3 | Cisco Data Center Network Manager Authentication Bypass Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-bypass-dyeejums | Cisco Data Center Network Manager Authentication Bypass Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-improper-auth-7krd9tdt | Cisco Data Center Network Manager Improper Authorization Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-info-disclosure-tfx3kerc | Cisco Data Center Network Manager Information Disclosure Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-path-trav-2xzonjdr | Cisco Data Center Network Manager Path Traversal Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-rest-inj-bct8pwaj | Cisco Data Center Network Manager Command Injection Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-sql-inject-8hk6pwmf | Cisco Data Center Network Manager SQL Injection Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-xss-3jkdlslv | Cisco Data Center Network Manager Cross-Site Scripting Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-devmgr-cmd-inj-umc8rhnh | Cisco Data Center Network Manager Command Injection Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-sdbufof-h5f5vsel | Cisco SD-WAN Solution Software Buffer Overflow Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-30T17:13:13+00:00 |
| cisco-sa-uabvman-sygzt8bv | Cisco SD-WAN vManage Software Authorization Bypass Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-racerts-wvuypxew | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Trustpoint Configuration Defaults | 2020-07-31T16:00:00+00:00 | 2020-07-31T22:35:48+00:00 |
| cisco-sa-grub2-code-exec-xlepcapy | GRUB2 Arbitrary Code Execution Vulnerability | 2020-08-04T23:00:00+00:00 | 2020-08-10T15:49:28+00:00 |
| cisco-sa-anyconnect-dll-f26wwjw | Cisco AnyConnect Secure Mobility Client for Windows DLL Hijacking Vulnerability | 2020-08-05T16:00:00+00:00 | 2022-10-25T13:15:17+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2021-32740 | Regular Expression Denial of Service in Addressable templates | 2021-07-02T00:00:00.000Z | 2021-07-30T00:00:00.000Z |
| msrc_cve-2021-32760 | Archive package allows chmod of file outside of unpack target directory | 2021-07-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-32761 | Integer overflow issues with *BIT commands on 32-bit systems | 2021-07-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-32785 | Format string bug in the Redis cache implementation | 2021-07-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-32786 | Open Redirect in oidc_validate_redirect_url() | 2021-07-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-32791 | Hardcoded static IV and AAD with a reused key in AES GCM encryption in mod_auth_openidc | 2021-07-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-32792 | XSS vulnerability when using OIDCPreservePost On in mod_auth_openidc | 2021-07-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-33909 | fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations leading to an integer overflow an Out-of-bounds Write and escalation to root by an unprivileged user aka CID-8cae8cd89f05. | 2021-07-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-33910 | basic/unit-name.c in systemd prior to 246.15 247.8 248.5 and 249.1 has a Memory Allocation with an Excessive Size Value (involving strdupa and alloca for a pathname controlled by a local attacker) that results in an operating system crash. | 2021-07-02T00:00:00.000Z | 2021-07-30T00:00:00.000Z |
| msrc_cve-2021-34558 | The crypto/tls package of Go through 1.16.5 does not properly assert that the type of public key in an X.509 certificate matches the expected type when doing a RSA based key exchange allowing a malicious TLS server to cause a TLS client to panic. | 2021-07-02T00:00:00.000Z | 2021-07-31T00:00:00.000Z |
| msrc_cve-2021-35039 | kernel/module.c in the Linux kernel before 5.12.14 mishandles Signature Verification aka CID-0c18f29aae7c. Without CONFIG_MODULE_SIG verification that a kernel module is signed for loading via init_module does not occur for a module.sig_enforce=1 command-line argument. | 2021-07-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-3571 | A flaw was found in the ptp4l program of the linuxptp package. When ptp4l is operating on a little-endian architecture as a PTP transparent clock, a remote attacker could send a crafted one-step sync message to cause an information leak or crash. The highest threat from this vulnerability is to data confidentiality and system availability. This flaw affects linuxptp versions before 3.1.1 and before 2.0.1. | 2021-07-02T00:00:00.000Z | 2025-10-01T23:11:10.000Z |
| msrc_cve-2021-35942 | The wordexp function in the GNU C Library (aka glibc) through 2.33 may crash or read arbitrary memory in parse_param (in posix/wordexp.c) when called with an untrusted crafted pattern potentially resulting in a denial of service or disclosure of information. This occurs because atoi was used but strtoul should have been used to ensure correct calculations. | 2021-07-02T00:00:00.000Z | 2021-08-03T00:00:00.000Z |
| msrc_cve-2021-36222 | ec_verify in kdc/kdc_preauth_ec.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.18.4 and 1.19.x before 1.19.2 allows remote attackers to cause a NULL pointer dereference and daemon crash. This occurs because a return value is not properly managed in a certain situation. | 2021-07-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-36230 | HashiCorp Terraform Enterprise releases up to v202106-1 did not properly perform authorization checks on a subset of API requests executed using the run token allowing privilege escalation to organization owner. Fixed in v202107-1. | 2021-07-02T00:00:00.000Z | 2022-04-02T00:00:00.000Z |
| msrc_cve-2021-3636 | It was found in OpenShift before version 4.8 that the generated certificate for the in-cluster Service CA incorrectly included additional certificates. The Service CA is automatically mounted into all pods allowing them to safely connect to trusted in-cluster services that present certificates signed by the trusted Service CA. The incorrect inclusion of additional CAs in this certificate would allow an attacker that compromises any of the additional CAs to masquerade as a trusted in-cluster service. | 2021-07-02T00:00:00.000Z | 2024-04-15T00:00:00.000Z |
| msrc_cve-2021-36373 | Apache Ant TAR archive denial of service vulnerability | 2021-07-02T00:00:00.000Z | 2025-03-04T00:00:00.000Z |
| msrc_cve-2021-36374 | Apache Ant ZIP and ZIP based archive denial of service vulerability | 2021-07-02T00:00:00.000Z | 2025-03-04T00:00:00.000Z |
| msrc_cve-2021-36386 | report_vbuild in report.c in Fetchmail before 6.4.20 sometimes omits initialization of the vsnprintf va_list argument which might allow mail servers to cause a denial of service or possibly have unspecified other impact via long error messages. NOTE: it is unclear whether use of Fetchmail on any realistic platform results in an impact beyond an inconvenience to the client user. | 2021-07-02T00:00:00.000Z | 2022-01-19T00:00:00.000Z |
| msrc_cve-2021-36980 | Open vSwitch (aka openvswitch) 2.11.0 through 2.15.0 has a use-after-free in decode_NXAST_RAW_ENCAP (called from ofpact_decode and ofpacts_decode) during the decoding of a RAW_ENCAP action. | 2021-07-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-37159 | hso_free_net_device in drivers/net/usb/hso.c in the Linux kernel through 5.13.4 calls unregister_netdev without checking for the NETREG_REGISTERED state leading to a use-after-free and a double free. | 2021-07-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-37576 | arch/powerpc/kvm/book3s_rtas.c in the Linux kernel through 5.13.5 on the powerpc platform allows KVM guest OS users to cause host OS memory corruption via rtas_args.nargs aka CID-f62f3c20647e. | 2021-07-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-37600 | An integer overflow in util-linux through 2.37.1 can potentially cause a buffer overflow if an attacker were able to use system resources in a way that leads to a large number in the /proc/sysvipc/sem file. NOTE: this is unexploitable in GNU C Library environments and possibly in all realistic environments. | 2021-07-02T00:00:00.000Z | 2021-08-10T00:00:00.000Z |
| msrc_cve-2020-24742 | An issue has been fixed in Qt versions 5.14.0 where QPluginLoader attempts to load plugins relative to the working directory allowing attackers to execute arbitrary code via crafted files. | 2021-08-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-36475 | An issue was discovered in Mbed TLS before 2.25.0 (and before 2.16.9 LTS and before 2.7.18 LTS). The calculations performed by mbedtls_mpi_exp_mod are not limited; thus, supplying overly large parameters could lead to denial of service when generating Diffie-Hellman key pairs. | 2021-08-02T00:00:00.000Z | 2025-09-03T22:06:18.000Z |
| msrc_cve-2020-36476 | An issue was discovered in Mbed TLS before 2.24.0 (and before 2.16.8 LTS and before 2.7.17 LTS). There is missing zeroization of plaintext buffers in mbedtls_ssl_read to erase unused application data from memory. | 2021-08-02T00:00:00.000Z | 2025-09-04T02:31:03.000Z |
| msrc_cve-2020-36477 | An issue was discovered in Mbed TLS before 2.24.0. The verification of X.509 certificates when matching the expected common name (the cn argument of mbedtls_x509_crt_verify) with the actual certificate name is mishandled: when the subjecAltName extension is present, the expected name is compared to any name in that extension regardless of its type. This means that an attacker could impersonate a 4-byte or 16-byte domain by getting a certificate for the corresponding IPv4 or IPv6 address (this would require the attacker to control that IP address, though). | 2021-08-02T00:00:00.000Z | 2025-09-03T22:03:28.000Z |
| msrc_cve-2020-36478 | An issue was discovered in Mbed TLS before 2.25.0 (and before 2.16.9 LTS and before 2.7.18 LTS). A NULL algorithm parameters entry looks identical to an array of REAL (size zero) and thus the certificate is considered valid. However, if the parameters do not match in any way, then the certificate should be considered invalid. | 2021-08-02T00:00:00.000Z | 2025-09-04T05:05:02.000Z |
| msrc_cve-2021-22922 | When curl is instructed to download content using the metalink feature thecontents is verified against a hash provided in the metalink XML file.The metalink XML file points out to the client how to get the same contentfrom a set of different URLs potentially hosted by different servers and theclient can then download the file from one or several of them. In a serial orparallel manner.If one of the servers hosting the contents has been breached and the contentsof the specific file on that server is replaced with a modified payload curlshould detect this when the hash of the file mismatches after a completeddownload. It should remove the contents and instead try getting the contentsfrom another URL. This is not done and instead such a hash mismatch is onlymentioned in text and the potentially malicious content is kept in the file ondisk. | 2021-08-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2021-22923 | When curl is instructed to get content using the metalink feature and a user name and password are used to download the metalink XML file those same credentials are then subsequently passed on to each of the servers from which curl will download or try to download the contents from. Often contrary to the user's expectations and intentions and without telling the user it happened. | 2021-08-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202009-1736 | Redmi Note 7 generally refers to Redmi Note 7. Redmi Note 7 is the first product of Xiaom… | 2022-05-04T09:32:43.502000Z |
| var-202008-1301 | Advantech WebAccess/SCADA is a set of SCADA software based on browser architecture. A… | 2022-05-04T09:32:45.234000Z |
| var-202008-1322 | Advantech WebAccess Node is a HMI/SCADA monitoring software completely based on IE browse… | 2022-05-04T09:32:45.223000Z |
| var-202007-1489 | Xiamen Haiwei Technology Co., Ltd. is a high-tech enterprise integrating independent rese… | 2022-05-04T09:32:46.284000Z |
| var-202007-1510 | Tvheadend is a streaming media server software installed under LINUX system. TVHeaden… | 2022-05-04T09:32:46.270000Z |
| var-202006-1896 | Ruijie RG-RSR20-14E is a multi-service router. The RG-RSR20-14E router has an unautho… | 2022-05-04T09:32:50.551000Z |
| var-202005-1062 | Apstar focuses on ultra-high-definition, ultra-telephoto, multi-spectral, thermal imaging… | 2022-05-04T09:32:52.632000Z |
| var-202005-1104 | DView2.6.2 is a Windows-based operating system, a data monitoring system software develop… | 2022-05-04T09:32:52.621000Z |
| var-202004-2270 | Suzhou Keda Technology Co., Ltd. (hereinafter referred to as Keda) is a provider of video… | 2022-05-04T09:32:53.594000Z |
| var-202004-2291 | ZTE ZXR10 1800-2S is a multi-service intelligent router produced by ZTE Corporation. … | 2022-05-04T09:32:53.582000Z |
| var-202002-1697 | Schneider Electric SA is a global electrical company headquartered in France. There i… | 2022-05-04T09:33:00.912000Z |
| var-202001-1975 | KPS2204-2T4D-L3-L3 is a protocol converter device that integrates Ethernet and serial dat… | 2022-05-04T09:33:02.172000Z |
| var-202001-1996 | ZXR10 1800-2S is a router product of ZTE Corporation of China. ZTE ZXR10 1800-2S has … | 2022-05-04T09:33:02.157000Z |
| var-201911-1946 | The streaming media server is the core system of the streaming media application and the … | 2022-05-04T09:33:07.827000Z |
| var-201909-1662 | Zhejiang Nuclear New Flush Network Information Co., Ltd. is the first listed company in t… | 2022-05-04T09:33:11.467000Z |
| var-201908-2192 | Beijing Wenwang Yilian Technology Co., Ltd. is a network environment security service pro… | 2022-05-04T09:33:12.903000Z |
| var-201906-1350 | MPSec ISG1000 Internet Behavior Manager is an Internet behavior management device from Ma… | 2022-05-04T09:33:19.507000Z |
| var-201905-1428 | Aviosoft DVD X Player Standard is a DVD player from Aviosoft, USA. An elevation of privi… | 2022-05-04T09:33:20.651000Z |
| var-201903-1639 | ZTE Video Conference MCU Device is stored XSS Vulnerability, no user action required, acc… | 2022-05-04T09:33:25.909000Z |
| var-201902-0923 | The Fixon K2 wireless router is a wireless router for home use. The Fidelity K2 wireless… | 2022-05-04T09:33:27.682000Z |
| var-201901-1694 | Shenzhen Qiao An Technology Co., Ltd., as a research and development manufacturer of surv… | 2022-05-04T09:33:28.379000Z |
| var-201810-1600 | LG Network Storage N1A1DD1 is a network storage product (NAS). There is a remote command… | 2022-05-04T09:33:35.075000Z |
| var-201809-1340 | The HP LaserJet 5200 series is a printer from HP China. The HP LaserJet 5200 series prin… | 2022-05-04T09:33:36.392000Z |
| var-201806-1892 | Yestv camera is a smart monitor for wireless network wifi. There is an anonymous access … | 2022-05-04T09:33:44.264000Z |
| var-201804-1733 | XMSWR-W18M is an intelligent wireless router of Shanghai Simo Communication Technology Co… | 2022-05-04T09:33:50.346000Z |
| var-201803-2367 | The Play Library SDK is developed based on Dahua's proprietary stream encapsulation proto… | 2022-05-04T09:33:52.021000Z |
| var-201802-1412 | Geovision is a Taiwan-based company that specializes in digital security surveillance sys… | 2022-05-04T09:33:54.240000Z |
| var-201801-1830 | IP-COM enterprise router is a high-performance router and deep Internet behavior manageme… | 2022-05-04T09:33:55.344000Z |
| var-201712-1126 | DGND3700 / DGN2200 is a wireless router from Netgear. An information disclosure vulnerab… | 2022-05-04T09:33:59.935000Z |
| var-201711-1238 | Fluorite Studio is the supporting client software for the fluorite cloud video webcam. It… | 2022-05-04T09:34:01.638000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2015-000094 | Cacti vulnerable to cross-site scripting | 2015-07-09T14:41+09:00 | 2015-07-14T18:03+09:00 |
| jvndb-2015-000096 | Simple Oekaki BBS vulnerable to cross-site scripting | 2015-07-10T13:57+09:00 | 2015-07-14T18:09+09:00 |
| jvndb-2015-000097 | Simple Oekaki BBS vulnerability where arbitrary files may be deleted | 2015-07-10T13:57+09:00 | 2015-07-14T18:11+09:00 |
| jvndb-2015-000095 | LINE@ vulnerable to script injection | 2015-07-10T14:50+09:00 | 2024-05-09T18:05+09:00 |
| jvndb-2015-000098 | acmailer vulnerable to directory traversal | 2015-07-15T15:53+09:00 | 2015-07-27T15:12+09:00 |
| jvndb-2015-000099 | Thetis vulnerable to SQL injection | 2015-07-15T15:54+09:00 | 2015-07-27T15:07+09:00 |
| jvndb-2015-000101 | PHP for Windows vulnerable to OS command injection | 2015-07-17T14:44+09:00 | 2016-05-19T17:43+09:00 |
| jvndb-2015-000103 | Welcart vulnerable to cross-site scripting | 2015-07-24T14:33+09:00 | 2015-07-28T17:51+09:00 |
| jvndb-2015-000104 | Research Artisan Lite vulnerable to cross-site scripting | 2015-07-24T14:36+09:00 | 2015-07-28T17:29+09:00 |
| jvndb-2015-000105 | Research Artisan Lite does not properly perform authentication | 2015-07-24T14:46+09:00 | 2015-07-28T17:22+09:00 |
| jvndb-2014-007612 | Welcart vulnerable to SQL injection | 2015-07-24T14:52+09:00 | 2015-07-24T14:52+09:00 |
| jvndb-2015-000106 | Gazou BBS plus vulnerability in file upload processing | 2015-07-28T13:47+09:00 | 2015-07-30T15:14+09:00 |
| jvndb-2015-000107 | yoyaku_v41 vulnerable to arbitrary file creation | 2015-07-29T14:58+09:00 | 2015-07-30T15:14+09:00 |
| jvndb-2015-000108 | yoyaku_v41 vulnerable to authentication bypass | 2015-07-29T14:58+09:00 | 2015-07-30T15:14+09:00 |
| jvndb-2015-000109 | yoyaku_v41 vulnerable to OS command injection | 2015-07-29T14:58+09:00 | 2015-07-30T15:14+09:00 |
| jvndb-2015-000110 | Yodobashi App for Android vulnerable to arbitrary Java method execution | 2015-08-07T13:50+09:00 | 2015-08-11T12:22+09:00 |
| jvndb-2015-000111 | Yodobashi App for Android fails to verify SSL server certificates | 2015-08-07T13:50+09:00 | 2018-04-04T12:28+09:00 |
| jvndb-2015-000112 | Microsoft Office discloses a file path of a local file | 2015-08-12T15:13+09:00 | 2015-08-12T15:13+09:00 |
| jvndb-2015-000113 | Photo Gallery CMS for PC, smartphone and feature phone (Free) vulnerable to cross-site scripting | 2015-08-12T15:13+09:00 | 2015-08-26T17:38+09:00 |
| jvndb-2015-000114 | Photo Gallery CMS for PC, smartphone and feature phone (Free) vulnerable to cross-site request forgery | 2015-08-12T15:13+09:00 | 2015-08-26T17:28+09:00 |
| jvndb-2015-000117 | Multiple I-O DATA LAN routers vulnerable in UPnP functionality | 2015-08-18T15:21+09:00 | 2015-08-28T17:29+09:00 |
| jvndb-2015-000118 | Apache Tapestry deserializes untrusted data | 2015-08-20T15:53+09:00 | 2015-08-26T17:51+09:00 |
| jvndb-2015-000119 | File Encryption Software "ED" where encrypted data may be easier to decipher when files of small size are encrypted | 2015-08-27T15:03+09:00 | 2015-09-02T17:57+09:00 |
| jvndb-2015-000122 | desknet's NEO vulnerable to directory traversal | 2015-09-01T12:36+09:00 | 2015-09-09T14:02+09:00 |
| jvndb-2015-000120 | Rakuten card App for iOS fails to verify SSL server certificates | 2015-09-01T14:18+09:00 | 2018-03-14T12:30+09:00 |
| jvndb-2015-000121 | Twit BBS vulnerable to cross-site scripting | 2015-09-01T14:18+09:00 | 2015-09-09T14:02+09:00 |
| jvndb-2015-000123 | NScripter vulnerable to buffer overflow | 2015-09-02T15:46+09:00 | 2015-09-09T14:02+09:00 |
| jvndb-2015-000302 | hitSuji (rktSNS2) vulnetable to cross-site scripting | 2015-09-03T14:46+09:00 | 2015-09-09T14:02+09:00 |
| jvndb-2015-000301 | BBS X102 vulnerable to cross-site scripting | 2015-09-03T15:00+09:00 | 2015-09-09T14:02+09:00 |
| jvndb-2015-000124 | Apache Struts vulnerable to cross-site scripting | 2015-09-04T15:12+09:00 | 2015-12-25T13:45+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2015-01210 | Piwigo 'admin.php' SQL注入漏洞 | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01211 | Cisco Hosted Collaboration Solution信息泄露漏洞 | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01212 | Cisco Web Security Appliance跨站脚本漏洞 | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01213 | Cisco Wireless LAN Controller拒绝服务漏洞(CNVD-2015-01213) | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01214 | Cisco Web Security Appliance远程安全绕过漏洞 | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01215 | OpenStack Glance拒绝服务漏洞 | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01216 | GNU glibc 'strxfrm()'函数整数溢出漏洞 | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01217 | Cisco TelePresence Multipoint Control Unit拒绝服务漏洞 | 2015-02-21 | 2015-02-26 |
| cnvd-2015-01218 | Cisco TelePresence Management Suite XML外部实体注入漏洞 | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01220 | Cisco Intrusion Prevention System密钥生成HTTPS拒绝服务漏洞 | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01221 | Cisco ASR 5000 Series Software拒绝服务漏洞 | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01222 | Cisco Desktop Collaboration Experience DX650命令注入漏洞 | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01223 | Cisco Adaptive Security Appliance (ASA) Software远程安全绕过漏洞 | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01224 | WordPress Photo Gallery插件任意文件上传漏洞 | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01225 | WordPress Image Metadata Cruncher跨站请求和HTML注入漏洞 | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01226 | Moodle跨站脚本漏洞 | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01227 | Moodle Glossary跨站请求伪造漏洞 | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01228 | Moodle信息泄露漏洞 | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01229 | Moodle 'calendar/externallib.php'信息泄露漏洞 | 2015-02-21 | 2015-02-26 |
| cnvd-2015-01230 | Moodle multimedia过滤器拒绝服务漏洞 | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01231 | Moodle Shibboleth验证插件强制退出漏洞 | 2015-02-21 | 2015-02-26 |
| cnvd-2015-01232 | Moodle LTI模块不充分访问检查漏洞 | 2015-02-21 | 2015-02-26 |
| cnvd-2015-01233 | GNU glibc 'strcoll()'函数栈缓冲区溢出漏洞 | 2015-02-21 | 2015-02-26 |
| cnvd-2015-01238 | Red Hat oVirt Engine信息泄露漏洞 | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01239 | vBulletin Forum Component 'forum/help'页面跨站脚本漏洞 | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01240 | SolarWinds Server and Application Monitor缓冲区溢出漏洞(CNVD-2015-01240) | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01241 | SolarWinds Server and Application Monitor缓冲区溢出漏洞(CNVD-2015-01241) | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01245 | IBM Tivoli Storage Manager Backup-Archive client身份验证绕过漏洞 | 2015-02-21 | 2015-02-27 |
| cnvd-2015-01246 | Phusion Passenger符号链接攻击漏洞(CNVD-2015-01246) | 2015-02-21 | 2015-02-26 |
| cnvd-2015-01248 | WordPress插件Google Doc Embedder跨站脚本漏洞 | 2015-02-21 | 2015-02-26 |
| ID | Description | Published | Updated |
|---|---|---|---|
| CERTA-2003-AVI-073 | Vulnérabilité du serveur HTTP Apache | 2003-04-09T00:00:00.000000 | 2003-04-09T00:00:00.000000 |
| certa-2003-avi-073 | Vulnérabilité du serveur HTTP Apache | 2003-04-09T00:00:00.000000 | 2003-04-09T00:00:00.000000 |
| CERTA-2003-AVI-074 | Vulnérabilité de la machine virtuelle Java Microsoft | 2003-04-10T00:00:00.000000 | 2003-04-10T00:00:00.000000 |
| certa-2003-avi-074 | Vulnérabilité de la machine virtuelle Java Microsoft | 2003-04-10T00:00:00.000000 | 2003-04-10T00:00:00.000000 |
| CERTA-2003-AVI-075 | Vulnérabilité de Microsoft Winsock Proxy Service et de Microsoft ISA Firewall Service | 2003-04-11T00:00:00.000000 | 2003-04-11T00:00:00.000000 |
| CERTA-2003-AVI-076 | Vulnérabilité dans "Eye of GNOME" | 2003-04-11T00:00:00.000000 | 2003-04-17T00:00:00.000000 |
| certa-2003-avi-075 | Vulnérabilité de Microsoft Winsock Proxy Service et de Microsoft ISA Firewall Service | 2003-04-11T00:00:00.000000 | 2003-04-11T00:00:00.000000 |
| certa-2003-avi-076 | Vulnérabilité dans "Eye of GNOME" | 2003-04-11T00:00:00.000000 | 2003-04-17T00:00:00.000000 |
| CERTA-2003-AVI-077 | Vulnérabilité dans la gestion des messages par le noyau Windows | 2003-04-17T00:00:00.000000 | 2003-04-17T00:00:00.000000 |
| certa-2003-avi-077 | Vulnérabilité dans la gestion des messages par le noyau Windows | 2003-04-17T00:00:00.000000 | 2003-04-17T00:00:00.000000 |
| CERTA-2003-AVI-078 | Vulnérabilité dans le préprocesseur stream4 de Snort | 2003-04-18T00:00:00.000000 | 2003-04-18T00:00:00.000000 |
| certa-2003-avi-078 | Vulnérabilité dans le préprocesseur stream4 de Snort | 2003-04-18T00:00:00.000000 | 2003-04-18T00:00:00.000000 |
| CERTA-2003-AVI-079 | Vulnérabilité des commutateurs Catalyst de Cisco | 2003-04-25T00:00:00.000000 | 2003-04-25T00:00:00.000000 |
| certa-2003-avi-079 | Vulnérabilité des commutateurs Catalyst de Cisco | 2003-04-25T00:00:00.000000 | 2003-04-25T00:00:00.000000 |
| CERTA-2003-AVI-080 | Vulnérabilité dans Microsoft Outlook Express | 2003-04-28T00:00:00.000000 | 2003-04-28T00:00:00.000000 |
| CERTA-2003-AVI-081 | Vulnérabilités de Microsoft Internet Explorer | 2003-04-28T00:00:00.000000 | 2003-04-28T00:00:00.000000 |
| certa-2003-avi-080 | Vulnérabilité dans Microsoft Outlook Express | 2003-04-28T00:00:00.000000 | 2003-04-28T00:00:00.000000 |
| certa-2003-avi-081 | Vulnérabilités de Microsoft Internet Explorer | 2003-04-28T00:00:00.000000 | 2003-04-28T00:00:00.000000 |
| CERTA-2003-AVI-082 | Vulnérabilités dans la série des commutateurs CISCO VPN 3000 | 2003-05-12T00:00:00.000000 | 2003-05-12T00:00:00.000000 |
| CERTA-2003-AVI-083 | Vulnérabilités du serveur Microsoft BizTalk | 2003-05-12T00:00:00.000000 | 2003-05-12T00:00:00.000000 |
| CERTA-2003-AVI-084 | Rappel sur les virus de messagerie | 2003-05-12T00:00:00.000000 | 2003-05-12T00:00:00.000000 |
| certa-2003-avi-082 | Vulnérabilités dans la série des commutateurs CISCO VPN 3000 | 2003-05-12T00:00:00.000000 | 2003-05-12T00:00:00.000000 |
| certa-2003-avi-083 | Vulnérabilités du serveur Microsoft BizTalk | 2003-05-12T00:00:00.000000 | 2003-05-12T00:00:00.000000 |
| certa-2003-avi-084 | Rappel sur les virus de messagerie | 2003-05-12T00:00:00.000000 | 2003-05-12T00:00:00.000000 |
| CERTA-2003-AVI-085 | Vulnérabilité du Service Assurance Agent (SAA) sous Cisco IOS | 2003-05-16T00:00:00.000000 | 2003-05-16T00:00:00.000000 |
| CERTA-2003-AVI-086 | Vulnérabilité du service d'impression sous IBM AIX | 2003-05-16T00:00:00.000000 | 2003-05-16T00:00:00.000000 |
| CERTA-2003-AVI-087 | Vulnérabilités dans le noyau linux 2.4 | 2003-05-16T00:00:00.000000 | 2003-07-24T00:00:00.000000 |
| certa-2003-avi-085 | Vulnérabilité du Service Assurance Agent (SAA) sous Cisco IOS | 2003-05-16T00:00:00.000000 | 2003-05-16T00:00:00.000000 |
| certa-2003-avi-086 | Vulnérabilité du service d'impression sous IBM AIX | 2003-05-16T00:00:00.000000 | 2003-05-16T00:00:00.000000 |
| certa-2003-avi-087 | Vulnérabilités dans le noyau linux 2.4 | 2003-05-16T00:00:00.000000 | 2003-07-24T00:00:00.000000 |