Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-46684 |
6.6 (3.1)
|
Dell SupportAssist OS Recovery, versions prior to… |
Dell |
SupportAssist OS Recovery, |
2026-01-13T16:19:33.132Z | 2026-01-13T16:45:41.887Z |
| CVE-2025-59020 |
5.3 (4.0)
|
TYPO3 CMS Allows Broken Access Control in Edit Documen… |
TYPO3 |
TYPO3 CMS |
2026-01-13T11:53:02.274Z | 2026-01-13T16:43:00.776Z |
| CVE-2025-66698 |
8.6 (3.1)
|
An issue in Semantic machines v5.4.8 allows attac… |
n/a |
n/a |
2026-01-13T00:00:00.000Z | 2026-01-13T16:35:46.768Z |
| CVE-2021-36193 |
6.3 (3.1)
|
Multiple stack-based buffer overflows in the comm… |
Fortinet |
FortiFone |
2022-02-02T11:19:47 | 2026-01-13T16:32:40.255Z |
| CVE-2024-14021 |
8.4 (4.0)
|
LlamaIndex <= 0.11.6 BGEM3Index Unsafe Deserialization |
run-llama |
llama_index |
2026-01-12T23:04:43.095Z | 2026-01-13T16:23:36.237Z |
| CVE-2024-58340 |
8.7 (4.0)
|
LangChain <= 0.3.1 MRKLOutputParser ReDoS |
LangChain AI |
LangChain |
2026-01-12T23:05:00.801Z | 2026-01-13T16:21:35.172Z |
| CVE-2026-0494 |
4.3 (3.1)
|
Information Disclosure vulnerability in SAP Fiori App … |
SAP_SE |
SAP Fiori App (Intercompany Balance Reconciliation) |
2026-01-13T01:13:14.370Z | 2026-01-13T16:19:32.833Z |
| CVE-2024-54855 |
6.4 (3.1)
|
fabricators Ltd Vanilla OS 2 Core image v1.1.0 wa… |
n/a |
n/a |
2026-01-13T00:00:00.000Z | 2026-01-13T15:56:52.691Z |
| CVE-2025-12548 |
9 (3.1)
|
Github.com/che-incubator/che-code: eclipse che — unaut… |
Red Hat |
Red Hat OpenShift Dev Spaces (RHOSDS) 3.22 |
2026-01-13T15:35:01.329Z | 2026-01-13T15:51:21.791Z |
| CVE-2025-71101 |
N/A
|
platform/x86: hp-bioscfg: Fix out-of-bounds array acce… |
Linux |
Linux |
2026-01-13T15:34:59.717Z | 2026-01-13T15:34:59.717Z |
| CVE-2025-71100 |
N/A
|
wifi: rtlwifi: 8192cu: fix tid out of range in rtl92cu… |
Linux |
Linux |
2026-01-13T15:34:59.039Z | 2026-01-13T15:34:59.039Z |
| CVE-2025-71099 |
N/A
|
drm/xe/oa: Fix potential UAF in xe_oa_add_config_ioctl() |
Linux |
Linux |
2026-01-13T15:34:58.359Z | 2026-01-13T15:34:58.359Z |
| CVE-2025-71098 |
N/A
|
ip6_gre: make ip6gre_header() robust |
Linux |
Linux |
2026-01-13T15:34:57.536Z | 2026-01-13T15:34:57.536Z |
| CVE-2025-71097 |
N/A
|
ipv4: Fix reference count leak when using error routes… |
Linux |
Linux |
2026-01-13T15:34:56.814Z | 2026-01-13T15:34:56.814Z |
| CVE-2025-71096 |
N/A
|
RDMA/core: Check for the presence of LS_NLA_TYPE_DGID … |
Linux |
Linux |
2026-01-13T15:34:56.118Z | 2026-01-13T15:34:56.118Z |
| CVE-2025-71095 |
N/A
|
net: stmmac: fix the crash issue for zero copy XDP_TX action |
Linux |
Linux |
2026-01-13T15:34:55.392Z | 2026-01-13T15:34:55.392Z |
| CVE-2025-71094 |
N/A
|
net: usb: asix: validate PHY address before use |
Linux |
Linux |
2026-01-13T15:34:54.669Z | 2026-01-13T15:34:54.669Z |
| CVE-2025-71093 |
N/A
|
e1000: fix OOB in e1000_tbi_should_accept() |
Linux |
Linux |
2026-01-13T15:34:53.803Z | 2026-01-13T15:34:53.803Z |
| CVE-2025-71092 |
N/A
|
RDMA/bnxt_re: Fix OOB write in bnxt_re_copy_err_stats() |
Linux |
Linux |
2026-01-13T15:34:53.110Z | 2026-01-13T15:34:53.110Z |
| CVE-2025-71091 |
N/A
|
team: fix check for port enabled in team_queue_overrid… |
Linux |
Linux |
2026-01-13T15:34:52.431Z | 2026-01-13T15:34:52.431Z |
| CVE-2025-71090 |
N/A
|
nfsd: fix nfsd_file reference leak in nfsd4_add_rdacce… |
Linux |
Linux |
2026-01-13T15:34:51.777Z | 2026-01-13T15:34:51.777Z |
| CVE-2025-71089 |
N/A
|
iommu: disable SVA when CONFIG_X86 is set |
Linux |
Linux |
2026-01-13T15:34:51.079Z | 2026-01-13T15:34:51.079Z |
| CVE-2025-71088 |
N/A
|
mptcp: fallback earlier on simult connection |
Linux |
Linux |
2026-01-13T15:34:50.377Z | 2026-01-13T15:34:50.377Z |
| CVE-2025-71087 |
N/A
|
iavf: fix off-by-one issues in iavf_config_rss_reg() |
Linux |
Linux |
2026-01-13T15:34:49.691Z | 2026-01-13T15:34:49.691Z |
| CVE-2025-71086 |
N/A
|
net: rose: fix invalid array index in rose_kill_by_device() |
Linux |
Linux |
2026-01-13T15:34:49.007Z | 2026-01-13T15:34:49.007Z |
| CVE-2025-71085 |
N/A
|
ipv6: BUG() in pskb_expand_head() as part of calipso_s… |
Linux |
Linux |
2026-01-13T15:34:48.324Z | 2026-01-13T15:34:48.324Z |
| CVE-2025-71084 |
N/A
|
RDMA/cm: Fix leaking the multicast GID table reference |
Linux |
Linux |
2026-01-13T15:34:47.665Z | 2026-01-13T15:34:47.665Z |
| CVE-2025-71083 |
N/A
|
drm/ttm: Avoid NULL pointer deref for evicted BOs |
Linux |
Linux |
2026-01-13T15:34:46.974Z | 2026-01-13T15:34:46.974Z |
| CVE-2025-71082 |
N/A
|
Bluetooth: btusb: revert use of devm_kzalloc in btusb |
Linux |
Linux |
2026-01-13T15:34:46.301Z | 2026-01-13T15:34:46.301Z |
| CVE-2025-71081 |
N/A
|
ASoC: stm32: sai: fix OF node leak on probe |
Linux |
Linux |
2026-01-13T15:34:45.503Z | 2026-01-13T15:34:45.503Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-69269 |
7.1 (4.0)
|
Spectrum command injection in NCM service |
Broadcom |
DX NetOps Spectrum |
2026-01-12T04:10:44.802Z | 2026-01-12T15:51:36.355Z |
| CVE-2025-26476 |
8.4 (3.1)
|
Dell ECS versions prior to 3.8.1.5/ ObjectScale v… |
Dell |
ECS |
2025-08-04T18:44:50.332Z | 2025-08-07T03:55:23.355Z |
| CVE-2026-21303 |
5.5 (3.1)
|
Substance3D - Modeler | Out-of-bounds Read (CWE-125) |
Adobe |
Substance3D - Modeler |
2026-01-13T20:20:17.246Z | 2026-01-14T18:52:30.126Z |
| CVE-2026-21302 |
5.5 (3.1)
|
Substance3D - Modeler | Out-of-bounds Read (CWE-125) |
Adobe |
Substance3D - Modeler |
2026-01-13T20:20:16.476Z | 2026-01-14T18:53:08.207Z |
| CVE-2026-21301 |
5.5 (3.1)
|
Substance3D - Modeler | NULL Pointer Dereference (CWE-476) |
Adobe |
Substance3D - Modeler |
2026-01-13T20:20:20.680Z | 2026-01-13T21:44:43.809Z |
| CVE-2026-21300 |
5.5 (3.1)
|
Substance3D - Modeler | NULL Pointer Dereference (CWE-476) |
Adobe |
Substance3D - Modeler |
2026-01-13T20:20:18.309Z | 2026-01-14T18:52:48.415Z |
| CVE-2026-21299 |
7.8 (3.1)
|
Substance3D - Modeler | Out-of-bounds Write (CWE-787) |
Adobe |
Substance3D - Modeler |
2026-01-13T20:20:19.842Z | 2026-01-14T04:57:52.910Z |
| CVE-2026-21298 |
7.8 (3.1)
|
Substance3D - Modeler | Out-of-bounds Write (CWE-787) |
Adobe |
Substance3D - Modeler |
2026-01-13T20:20:19.101Z | 2026-01-14T04:57:51.821Z |
| CVE-2026-21308 |
5.5 (3.1)
|
Substance3D - Designer | Out-of-bounds Read (CWE-125) |
Adobe |
Substance3D - Designer |
2026-01-13T20:07:01.498Z | 2026-01-13T21:47:08.206Z |
| CVE-2026-21307 |
7.8 (3.1)
|
Substance3D - Designer | Out-of-bounds Write (CWE-787) |
Adobe |
Substance3D - Designer |
2026-01-13T20:07:00.719Z | 2026-01-13T21:31:37.703Z |
| CVE-2026-21306 |
7.8 (3.1)
|
Substance3D - Sampler | Out-of-bounds Write (CWE-787) |
Adobe |
Substance3D - Sampler |
2026-01-13T19:54:56.369Z | 2026-01-14T15:10:43.728Z |
| CVE-2026-21305 |
7.8 (3.1)
|
Substance3D - Painter | Out-of-bounds Write (CWE-787) |
Adobe |
Substance3D - Painter |
2026-01-13T19:33:09.186Z | 2026-01-14T04:57:38.797Z |
| CVE-2025-38741 |
7.5 (3.1)
|
Dell Enterprise SONiC OS, version 4.5.0, contains… |
Dell |
Enterprise SONiC OS |
2025-08-04T18:22:00.580Z | 2025-08-05T15:47:36.772Z |
| CVE-2025-69270 |
2.3 (4.0)
|
Spectrum session token in URL |
Broadcom |
DX NetOps Spectrum |
2026-01-12T04:20:13.446Z | 2026-01-12T15:21:09.808Z |
| CVE-2025-36581 |
3.8 (3.1)
|
Dell PowerEdge Platform version(s) 14G AMD BIOS v… |
Dell |
PowerEdge |
2025-08-14T14:00:11.677Z | 2025-08-14T14:34:35.216Z |
| CVE-2025-69271 |
2.3 (4.0)
|
Spectrum basic authentication in use |
Broadcom |
DX NetOps Spectrum |
2026-01-12T04:27:55.507Z | 2026-01-12T15:20:41.443Z |
| CVE-2025-69272 |
5.3 (4.0)
|
Spectrum password returned in clear |
Broadcom |
DX NetOps Spectrum |
2026-01-12T04:33:37.988Z | 2026-01-12T15:19:26.775Z |
| CVE-2025-69273 |
8.7 (4.0)
|
Spectrum broken authentication |
Broadcom |
DX NetOps Spectrum |
2026-01-12T04:38:53.570Z | 2026-01-12T15:16:40.609Z |
| CVE-2025-7673 |
9.8 (3.1)
|
A buffer overflow vulnerability in the URL parser… |
Zyxel |
VMG8825-T50K firmware |
2025-07-16T07:11:02.974Z | 2025-07-19T03:55:18.953Z |
| CVE-2025-66052 |
8.6 (4.0)
|
Command injection in Vivotek IP7137 cameras |
Vivotek |
IP7137 |
2026-01-09T11:54:16.626Z | 2026-01-09T12:51:10.558Z |
| CVE-2025-66051 |
6.9 (4.0)
|
Path traversal in Vivotek IP7137 cameras |
Vivotek |
IP7137 |
2026-01-09T11:54:09.170Z | 2026-01-09T14:07:13.457Z |
| CVE-2025-6265 |
7.2 (3.1)
|
A path traversal vulnerability in the file_upload… |
Zyxel |
NWA50AX PRO firmware |
2025-07-15T01:32:10.377Z | 2025-07-19T03:55:15.778Z |
| CVE-2025-66050 |
9.3 (4.0)
|
No password set for administrative account in Vivotek … |
Vivotek |
IP7137 |
2026-01-09T11:53:45.338Z | 2026-01-09T14:08:08.233Z |
| CVE-2025-66049 |
8.7 (4.0)
|
Unprotected RTSP stream in Vivotek IP7137 cameras |
Vivotek |
IP7137 |
2026-01-09T11:53:41.060Z | 2026-01-09T16:22:19.535Z |
| CVE-2025-46286 |
4.3 (3.1)
|
A logic issue was addressed with improved validat… |
Apple |
iOS and iPadOS |
2026-01-09T21:14:39.092Z | 2026-01-09T21:34:49.689Z |
| CVE-2025-46297 |
5.5 (3.1)
|
A permissions issue was addressed with additional… |
Apple |
macOS |
2026-01-09T21:18:39.834Z | 2026-01-12T16:24:06.174Z |
| CVE-2025-62235 |
N/A
|
Apache Mynewt NimBLE: Incorrect handling of SMP Securi… |
Apache Software Foundation |
Apache Mynewt NimBLE |
2026-01-10T09:42:30.446Z | 2026-01-12T16:45:27.886Z |
| CVE-2025-0926 |
5.9 (3.1)
|
Gee-netics, member of AXIS Camera Station Pro Bug… |
Axis Communications AB |
AXIS Camera Station Pro |
2025-04-23T05:22:03.489Z | 2025-04-23T13:08:49.871Z |
| CVE-2025-46298 |
6.5 (3.1)
|
The issue was addressed with improved memory hand… |
Apple |
tvOS |
2026-01-09T21:16:30.193Z | 2026-01-12T16:24:12.312Z |
| CVE-2025-46299 |
4.3 (3.1)
|
A memory initialization issue was addressed with … |
Apple |
tvOS |
2026-01-09T21:15:50.158Z | 2026-01-09T22:03:08.142Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-26476 | Dell ECS versions prior to 3.8.1.5/ ObjectScale version 4.0.0.0, contain a Use of Hard-coded Crypto… | 2025-08-04T19:15:30.460 | 2026-01-14T18:00:08.523 |
| fkie_cve-2026-21303 | Substance3D - Modeler versions 1.22.4 and earlier are affected by an Out-of-bounds Read vulnerabili… | 2026-01-13T21:15:54.117 | 2026-01-14T17:58:17.503 |
| fkie_cve-2026-21302 | Substance3D - Modeler versions 1.22.4 and earlier are affected by an Out-of-bounds Read vulnerabili… | 2026-01-13T21:15:53.960 | 2026-01-14T17:58:14.300 |
| fkie_cve-2026-21301 | Substance3D - Modeler versions 1.22.4 and earlier are affected by a NULL Pointer Dereference vulner… | 2026-01-13T21:15:53.793 | 2026-01-14T17:58:10.387 |
| fkie_cve-2026-21300 | Substance3D - Modeler versions 1.22.4 and earlier are affected by a NULL Pointer Dereference vulner… | 2026-01-13T21:15:53.630 | 2026-01-14T17:58:05.290 |
| fkie_cve-2026-21299 | Substance3D - Modeler versions 1.22.4 and earlier are affected by an out-of-bounds write vulnerabil… | 2026-01-13T21:15:53.470 | 2026-01-14T17:57:58.853 |
| fkie_cve-2026-21298 | Substance3D - Modeler versions 1.22.4 and earlier are affected by an out-of-bounds write vulnerabil… | 2026-01-13T21:15:53.307 | 2026-01-14T17:57:53.310 |
| fkie_cve-2026-21308 | Substance3D - Designer versions 15.0.3 and earlier are affected by an Out-of-bounds Read vulnerabil… | 2026-01-13T20:16:09.927 | 2026-01-14T17:57:49.533 |
| fkie_cve-2026-21307 | Substance3D - Designer versions 15.0.3 and earlier are affected by an out-of-bounds write vulnerabi… | 2026-01-13T20:16:09.763 | 2026-01-14T17:57:42.960 |
| fkie_cve-2026-21306 | Substance3D - Sampler versions 5.1.0 and earlier are affected by an out-of-bounds write vulnerabili… | 2026-01-13T20:16:09.607 | 2026-01-14T17:57:37.057 |
| fkie_cve-2026-21305 | Substance3D - Painter versions 11.0.3 and earlier are affected by an out-of-bounds write vulnerabil… | 2026-01-13T20:16:09.443 | 2026-01-14T17:57:27.897 |
| fkie_cve-2025-38741 | Dell Enterprise SONiC OS, version 4.5.0, contains a cryptographic key vulnerability in SSH. An unau… | 2025-08-04T19:15:31.117 | 2026-01-14T17:57:07.463 |
| fkie_cve-2025-69270 | Information Exposure Through Query Strings in GET Request vulnerability in Broadcom DX NetOps Spect… | 2026-01-12T05:16:10.900 | 2026-01-14T17:56:04.990 |
| fkie_cve-2025-36581 | Dell PowerEdge Platform version(s) 14G AMD BIOS v1.25.0 and prior, contain(s) an Access of Memory L… | 2025-08-14T14:15:30.760 | 2026-01-14T17:55:12.090 |
| fkie_cve-2025-69271 | Insufficiently Protected Credentials vulnerability in Broadcom DX NetOps Spectrum on Windows, Linux… | 2026-01-12T05:16:11.060 | 2026-01-14T17:55:06.017 |
| fkie_cve-2025-69272 | Cleartext Transmission of Sensitive Information vulnerability in Broadcom DX NetOps Spectrum on Win… | 2026-01-12T05:16:11.213 | 2026-01-14T17:54:24.857 |
| fkie_cve-2025-69273 | Improper Authentication vulnerability in Broadcom DX NetOps Spectrum on Windows, Linux allows Authe… | 2026-01-12T05:16:11.363 | 2026-01-14T17:53:48.250 |
| fkie_cve-2025-7673 | A buffer overflow vulnerability in the URL parser of the zhttpd web server in Zyxel VMG8825-T50K fi… | 2025-07-16T07:15:24.437 | 2026-01-14T17:52:29.083 |
| fkie_cve-2025-66052 | Vivotek IP7137 camera with firmware version 0200a is vulnerable to command injection. Parameter "sy… | 2026-01-09T12:15:53.883 | 2026-01-14T17:50:09.087 |
| fkie_cve-2025-66051 | Vivotek IP7137 camera with firmware version 0200a is vulnerable to path traversal. It is possible f… | 2026-01-09T12:15:53.740 | 2026-01-14T17:49:09.330 |
| fkie_cve-2025-6265 | A path traversal vulnerability in the file_upload-cgi CGI program of Zyxel NWA50AX PRO firmware ver… | 2025-07-15T02:15:28.080 | 2026-01-14T17:48:56.863 |
| fkie_cve-2025-66050 | Vivotek IP7137 camera with firmware version 0200a by default dos not require to provide any passwor… | 2026-01-09T12:15:53.587 | 2026-01-14T17:48:29.730 |
| fkie_cve-2025-66049 | Vivotek IP7137 camera with firmware version 0200a is vulnerable to an information disclosure issue … | 2026-01-09T12:15:53.420 | 2026-01-14T17:48:18.313 |
| fkie_cve-2025-46286 | A logic issue was addressed with improved validation. This issue is fixed in iOS 26.2 and iPadOS 26… | 2026-01-09T22:15:59.407 | 2026-01-14T17:46:11.003 |
| fkie_cve-2025-46297 | A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe … | 2026-01-09T22:15:59.580 | 2026-01-14T17:46:06.847 |
| fkie_cve-2025-62235 | Authentication Bypass by Spoofing vulnerability in Apache NimBLE. Receiving specially crafted Secu… | 2026-01-10T10:15:50.820 | 2026-01-14T17:45:58.133 |
| fkie_cve-2025-0926 | Gee-netics, member of AXIS Camera Station Pro Bug Bounty Program, has found that it is possible for… | 2025-04-23T06:15:45.200 | 2026-01-14T17:45:54.573 |
| fkie_cve-2025-46298 | The issue was addressed with improved memory handling. This issue is fixed in tvOS 26.2, Safari 26.… | 2026-01-09T22:15:59.693 | 2026-01-14T17:45:48.230 |
| fkie_cve-2025-46299 | A memory initialization issue was addressed with improved memory handling. This issue is fixed in t… | 2026-01-09T22:15:59.797 | 2026-01-14T17:45:42.583 |
| fkie_cve-2025-9614 | An issue was discovered in the PCI Express (PCIe) Integrity and Data Encryption (IDE) specification… | 2025-12-09T19:15:50.943 | 2026-01-14T17:44:00.217 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-wc63-83rx-8qcg |
6.4 (3.1)
|
The Woodpecker for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via … | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-pc52-v769-jjvw |
6.4 (3.1)
|
The Client Testimonial Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via… | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-m6m8-c4cv-c66j |
8.8 (4.0)
|
This vulnerability exists in Tenda wireless routers (300Mbps Wireless Router F3 and N300 Easy Setup… | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-hfqg-hpcg-h9rx |
6.4 (3.1)
|
The Curved Text plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'radius' … | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-gfjh-r2j2-6qf3 |
6.1 (3.1)
|
The MG AdvancedOptions plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the… | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-gcqp-g44c-653f |
6.4 (3.1)
|
The PullQuote plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'p… | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-g36m-9jqw-jhm4 |
6.1 (3.1)
|
The Lesson Plan Book plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the `… | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-fcc7-68cp-g5v2 |
5.3 (3.1)
|
The Contact Form vCard Generator plugin for WordPress is vulnerable to unauthorized access of data … | 2026-01-09T12:32:25Z | 2026-01-09T12:32:26Z |
| ghsa-c822-wpv5-67r8 |
6.4 (3.1)
|
The Menu Card plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `category` … | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-c223-65f8-3p5p |
9.3 (4.0)
|
The firmware in KAON CG3000TC and CG3000T routers contains hard-coded credentials in clear text (sh… | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-6352-39rh-mx5f |
6.4 (3.1)
|
The The Tooltip plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's … | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-4x85-44wj-rgh5 |
6.4 (3.1)
|
The Autogen Headers Menu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the … | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-4f2m-4qcx-27xf |
8.8 (4.0)
|
This vulnerability exists in Tenda wireless routers (300Mbps Wireless Router F3 and N300 Easy Setup… | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-4873-9vgw-wq49 |
6.4 (3.1)
|
The Debt.com Business in a Box plugin for WordPress is vulnerable to Stored Cross-Site Scripting vi… | 2026-01-09T12:32:26Z | 2026-01-09T12:32:26Z |
| ghsa-xvvx-wf8m-v58j |
6.1 (3.1)
|
The Shabat Keeper plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the $_SE… | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-vwwc-97q7-j4wg |
8.7 (4.0)
|
This vulnerability exists in Tenda wireless routers (300Mbps Wireless Router F3 and N300 Easy Setup… | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-pf7q-gxvm-9794 |
10.0 (3.1)
|
Remote Code Execution vulnerability that allows unauthenticated attackers to inject arbitrary comma… | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-p9cp-qq4c-2wr5 |
8.7 (3.1)
|
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2.2 before 18.5.5, 18… | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-p75v-9p9c-j9r7 |
10.0 (3.1)
|
This vulnerability allows authenticated attackers to execute commands via the hostname of the device. | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-mqvr-qq2m-5v38 |
8.7 (4.0)
|
This vulnerability exists in Tenda wireless routers (300Mbps Wireless Router F3 and N300 Easy Setup… | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-mqrq-32jw-jfgw |
6.4 (3.1)
|
The Header and Footer Scripts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via… | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-fhqx-f9jv-667v |
7.5 (3.1)
|
This vulnerability allows unauthenticated attackers to inject an SQL request into GET request param… | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-f98m-rgjw-h2rv |
6.4 (3.1)
|
The WP Popup Magic plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'name'… | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-6mpj-fw9g-9wqm |
3.5 (3.1)
|
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 10.3 before 18.5.5, 18.6… | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-29gv-cv9c-r93w |
8.6 (3.1)
|
This vulnerability allows authenticated attackers to execute commands via the NTP-configuration of … | 2026-01-09T12:32:25Z | 2026-01-09T12:32:25Z |
| ghsa-xqqj-h3wv-qfx7 |
6.4 (3.1)
|
The Nearby Now Reviews plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'd… | 2026-01-09T12:32:24Z | 2026-01-09T12:32:24Z |
| ghsa-qc3w-f7pj-hx87 |
6.1 (3.1)
|
The Top Position Google Finance plugin for WordPress is vulnerable to Reflected Cross-Site Scriptin… | 2026-01-09T12:32:24Z | 2026-01-09T12:32:24Z |
| ghsa-p7gw-xwgf-7w7c |
6.5 (3.1)
|
GitLab has remediated an issue in GitLab EE affecting all versions from 18.5 before 18.5.5, 18.6 be… | 2026-01-09T12:32:24Z | 2026-01-09T12:32:24Z |
| ghsa-jxx7-c7v6-wh2p |
7.1 (3.1)
|
GitLab has remediated an issue in GitLab EE affecting all versions from 18.4 before 18.5.5, 18.6 be… | 2026-01-09T12:32:24Z | 2026-01-09T12:32:24Z |
| ghsa-8j38-6f9j-vg43 |
6.4 (3.1)
|
The Entry Views plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's … | 2026-01-09T12:32:24Z | 2026-01-09T12:32:24Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2021-652 |
|
TensorFlow is an end-to-end open source platform for machine learning. An attacker can tr… | tensorflow-gpu | 2021-05-14T20:15:00Z | 2021-12-09T06:35:19.249421Z |
| pysec-2021-651 |
|
TensorFlow is an end-to-end open source platform for machine learning. An attacker can tr… | tensorflow-gpu | 2021-05-14T20:15:00Z | 2021-12-09T06:35:19.088447Z |
| pysec-2021-650 |
|
TensorFlow is an end-to-end open source platform for machine learning. An attacker can tr… | tensorflow-gpu | 2021-05-14T20:15:00Z | 2021-12-09T06:35:18.930076Z |
| pysec-2021-649 |
|
TensorFlow is an end-to-end open source platform for machine learning. An attacker can tr… | tensorflow-gpu | 2021-05-14T20:15:00Z | 2021-12-09T06:35:18.759879Z |
| pysec-2021-648 |
|
TensorFlow is an end-to-end open source platform for machine learning. The `tf.raw_ops.Co… | tensorflow-gpu | 2021-05-14T20:15:00Z | 2021-12-09T06:35:18.591146Z |
| pysec-2021-647 |
|
TensorFlow is an end-to-end open source platform for machine learning. Specifying a negat… | tensorflow-gpu | 2021-05-14T20:15:00Z | 2021-12-09T06:35:18.423070Z |
| pysec-2021-646 |
|
TensorFlow is an end-to-end open source platform for machine learning. Missing validation… | tensorflow-gpu | 2021-05-14T20:15:00Z | 2021-12-09T06:35:18.334867Z |
| pysec-2021-645 |
|
TensorFlow is an end-to-end open source platform for machine learning. The API of `tf.raw… | tensorflow-gpu | 2021-05-14T20:15:00Z | 2021-12-09T06:35:18.174701Z |
| pysec-2021-644 |
|
TensorFlow is an end-to-end open source platform for machine learning. In eager mode (def… | tensorflow-gpu | 2021-05-14T20:15:00Z | 2021-12-09T06:35:18.016615Z |
| pysec-2021-643 |
|
TensorFlow is an end-to-end open source platform for machine learning. A malicious user c… | tensorflow-gpu | 2021-05-14T20:15:00Z | 2021-12-09T06:35:17.852782Z |
| pysec-2021-642 |
|
TensorFlow is an end-to-end open source platform for machine learning. Calling `tf.raw_op… | tensorflow-gpu | 2021-05-14T20:15:00Z | 2021-12-09T06:35:17.688674Z |
| pysec-2021-641 |
|
TensorFlow is an end-to-end open source platform for machine learning. The implementation… | tensorflow-gpu | 2021-05-14T20:15:00Z | 2021-12-09T06:35:17.530281Z |
| pysec-2021-640 |
|
TensorFlow is an end-to-end open source platform for machine learning. If the `splits` ar… | tensorflow-gpu | 2021-05-14T20:15:00Z | 2021-12-09T06:35:17.368785Z |
| pysec-2021-639 |
|
TensorFlow is an end-to-end open source platform for machine learning. Calling TF operati… | tensorflow-gpu | 2021-05-14T20:15:00Z | 2021-12-09T06:35:17.206359Z |
| pysec-2021-638 |
|
TensorFlow is an end-to-end open source platform for machine learning. If the `splits` ar… | tensorflow-gpu | 2021-05-14T19:15:00Z | 2021-12-09T06:35:17.036607Z |
| pysec-2020-338 |
|
In TensorFlow before 1.15.2 and 2.0.1, converting a string (from Python) to a tf.float16 … | tensorflow-gpu | 2020-01-28T22:15:00Z | 2021-12-09T06:35:16.944663Z |
| pysec-2020-337 |
|
In affected versions of TensorFlow under certain cases, loading a saved model can result … | tensorflow-gpu | 2020-12-10T22:15:00Z | 2021-12-09T06:35:16.854014Z |
| pysec-2020-336 |
|
In affected versions of TensorFlow running an LSTM/GRU model where the LSTM/GRU layer rec… | tensorflow-gpu | 2020-12-10T23:15:00Z | 2021-12-09T06:35:16.648712Z |
| pysec-2020-334 |
|
In affected versions of TensorFlow the tf.raw_ops.ImmutableConst operation returns a cons… | tensorflow-gpu | 2020-12-10T23:15:00Z | 2021-12-09T06:35:16.406292Z |
| pysec-2020-333 |
|
In affected versions of TensorFlow the tf.raw_ops.DataFormatVecPermute API does not valid… | tensorflow-gpu | 2020-12-10T23:15:00Z | 2021-12-09T06:35:16.197426Z |
| pysec-2020-332 |
|
In affected versions of TensorFlow under certain cases a saved model can trigger use of u… | tensorflow-gpu | 2020-12-10T23:15:00Z | 2021-12-09T06:35:15.994631Z |
| pysec-2020-331 |
|
In Tensorflow before version 2.4.0, when the `boxes` argument of `tf.image.crop_and_resiz… | tensorflow-gpu | 2020-10-21T21:15:00Z | 2021-12-09T06:35:15.790944Z |
| pysec-2020-330 |
|
In Tensorflow before version 2.4.0, an attacker can pass an invalid `axis` value to `tf.q… | tensorflow-gpu | 2020-10-21T21:15:00Z | 2021-12-09T06:35:15.737663Z |
| pysec-2020-329 |
|
In TensorFlow Lite before versions 2.2.1 and 2.3.1, models using segment sum can trigger … | tensorflow-gpu | 2020-09-25T19:15:00Z | 2021-12-09T06:35:15.686226Z |
| pysec-2020-328 |
|
In TensorFlow Lite before versions 2.2.1 and 2.3.1, models using segment sum can trigger … | tensorflow-gpu | 2020-09-25T19:15:00Z | 2021-12-09T06:35:15.598802Z |
| pysec-2020-327 |
|
In TensorFlow Lite before versions 2.2.1 and 2.3.1, models using segment sum can trigger … | tensorflow-gpu | 2020-09-25T19:15:00Z | 2021-12-09T06:35:15.513160Z |
| pysec-2020-326 |
|
In TensorFlow Lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, saved models in… | tensorflow-gpu | 2020-09-25T19:15:00Z | 2021-12-09T06:35:15.416974Z |
| pysec-2020-325 |
|
In tensorflow-lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, if a TFLite sav… | tensorflow-gpu | 2020-09-25T19:15:00Z | 2021-12-09T06:35:15.211180Z |
| pysec-2020-324 |
|
In tensorflow-lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, a crafted TFLit… | tensorflow-gpu | 2020-09-25T19:15:00Z | 2021-12-09T06:35:15.002754Z |
| pysec-2020-323 |
|
In tensorflow-lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, when determinin… | tensorflow-gpu | 2020-09-25T19:15:00Z | 2021-12-09T06:35:14.801373Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-32727 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-18T05:02:04.983553Z |
| gsd-2024-32724 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-18T05:02:04.952718Z |
| gsd-2024-32721 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-18T05:02:04.942500Z |
| gsd-2024-32720 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-18T05:02:04.937808Z |
| gsd-2024-32719 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-18T05:02:04.919131Z |
| gsd-2024-32718 | Server-Side Request Forgery (SSRF) vulnerability in Webangon The Pack Elementor.This issu… | 2024-04-18T05:02:04.875727Z |
| gsd-2024-32715 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-18T05:02:04.870953Z |
| gsd-2024-32714 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-18T05:02:04.857282Z |
| gsd-2024-32712 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-18T05:02:04.873063Z |
| gsd-2024-32709 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vuln… | 2024-04-18T05:02:04.861691Z |
| gsd-2024-32705 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-18T05:02:04.946643Z |
| gsd-2024-32704 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-18T05:02:04.942773Z |
| gsd-2024-32701 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-18T05:02:04.907639Z |
| gsd-2024-32700 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-18T05:02:04.911120Z |
| gsd-2024-32696 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-18T05:02:04.862209Z |
| gsd-2024-32695 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-18T05:02:04.994381Z |
| gsd-2024-32694 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-18T05:02:04.943035Z |
| gsd-2024-32689 | Missing Authorization vulnerability in GenialSouls WP Social Comments.This issue affects … | 2024-04-18T05:02:04.982497Z |
| gsd-2024-32687 | Missing Authorization vulnerability in WPClever WPC Frequently Bought Together for WooCom… | 2024-04-18T05:02:04.859302Z |
| gsd-2024-32683 | Authorization Bypass Through User-Controlled Key vulnerability in Wpmet Wp Ultimate Revie… | 2024-04-18T05:02:04.887407Z |
| gsd-2024-32682 | Missing Authorization vulnerability in BdThemes Prime Slider – Addons For Elementor.This … | 2024-04-18T05:02:04.922221Z |
| gsd-2024-32679 | Missing Authorization vulnerability in Shared Files PRO Shared Files.This issue affects S… | 2024-04-18T05:02:04.874028Z |
| gsd-2024-32678 | Missing Authorization vulnerability in TrackShip TrackShip for WooCommerce.This issue aff… | 2024-04-18T05:02:04.946303Z |
| gsd-2024-32676 | Improper Restriction of Excessive Authentication Attempts vulnerability in LoginPress Log… | 2024-04-18T05:02:04.918599Z |
| gsd-2024-32674 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-18T05:02:04.909131Z |
| gsd-2024-32673 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-18T05:02:04.863127Z |
| gsd-2024-32670 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-18T05:02:04.996964Z |
| gsd-2024-3898 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-17T05:02:02.081634Z |
| gsd-2024-3895 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-17T05:02:02.046967Z |
| gsd-2024-3891 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-17T05:02:02.056048Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| MAL-2025-191742 | Malicious code in gptall (PyPI) | 2025-11-27T07:07:24Z | 2025-12-24T10:09:32Z |
| MAL-2025-191717 | Malicious code in dev-server-python (PyPI) | 2025-11-27T07:09:15Z | 2025-12-24T10:09:32Z |
| MAL-2025-191700 | Malicious code in chicopute (PyPI) | 2025-11-24T21:59:47Z | 2025-12-24T10:09:32Z |
| MAL-2025-191682 | Malicious code in aounitaounit2 (PyPI) | 2025-11-24T22:02:21Z | 2025-12-24T10:09:32Z |
| MAL-2025-191675 | Malicious code in aiostreams (PyPI) | 2025-11-24T21:58:24Z | 2025-12-24T10:09:32Z |
| MAL-2025-191535 | Malicious code in tableate (PyPI) | 2025-11-25T11:06:37Z | 2025-12-24T10:09:32Z |
| MAL-2025-191534 | Malicious code in tablates (PyPI) | 2025-11-26T10:20:42Z | 2025-12-24T10:09:32Z |
| MAL-2024-6103 | Malicious code in termcolour (PyPI) | 2024-06-25T13:43:19Z | 2025-12-24T10:09:32Z |
| MAL-2024-5325 | Malicious code in libsock (PyPI) | 2024-06-25T13:36:56Z | 2025-12-24T10:09:32Z |
| MAL-2024-5323 | Malicious code in libproxy (PyPI) | 2024-06-25T13:36:55Z | 2025-12-24T10:09:32Z |
| MAL-2024-5221 | Malicious code in httprequesthub (PyPI) | 2024-06-25T13:36:05Z | 2025-12-24T10:09:32Z |
| MAL-2024-5101 | Malicious code in easyhttprequest (PyPI) | 2024-06-25T13:35:06Z | 2025-12-24T10:09:32Z |
| MAL-2024-11518 | Malicious code in aiocpa (PyPI) | 2024-12-09T06:49:42Z | 2025-12-24T10:09:32Z |
| mal-2025-66552 | Malicious code in vite-plugin-postcss-tools (npm) | 2025-11-11T00:04:35Z | 2025-12-24T10:09:31Z |
| mal-2025-66551 | Malicious code in tensor-fi-utils-lib (npm) | 2025-11-11T00:09:38Z | 2025-12-24T10:09:31Z |
| mal-2025-49372 | Malicious code in vite-smart-chunk (npm) | 2025-11-05T23:17:31Z | 2025-12-24T10:09:31Z |
| mal-2025-48951 | Malicious code in xdater (npm) | 2025-10-29T01:46:43Z | 2025-12-24T10:09:31Z |
| mal-2025-48915 | Malicious code in vite-plugin-es6-compat (npm) | 2025-10-28T01:39:47Z | 2025-12-24T10:09:31Z |
| mal-2025-48914 | Malicious code in vite-manual-chunker (npm) | 2025-10-28T01:44:03Z | 2025-12-24T10:09:31Z |
| mal-2025-48784 | Malicious code in vite-plugin-parsify (npm) | 2025-10-27T07:09:08Z | 2025-12-24T10:09:31Z |
| mal-2025-48599 | Malicious code in vite-compiler-tools (npm) | 2025-10-24T02:49:26Z | 2025-12-24T10:09:31Z |
| mal-2025-48426 | Malicious code in vite-plugin-parseflow (npm) | 2025-10-15T13:05:55Z | 2025-12-24T10:09:31Z |
| mal-2025-192656 | Malicious code in xvxx (npm) | 2025-12-19T08:41:06Z | 2025-12-24T10:09:31Z |
| mal-2025-192645 | Malicious code in vdous (npm) | 2025-12-19T08:41:06Z | 2025-12-24T10:09:31Z |
| mal-2025-192402 | Malicious code in wartsila-text-csv (npm) | 2025-12-10T01:44:48Z | 2025-12-24T10:09:31Z |
| mal-2025-192375 | Malicious code in tensor-fi-utils-core (npm) | 2025-12-08T03:36:17Z | 2025-12-24T10:09:31Z |
| mal-2025-191669 | Malicious code in wfui-dsm-react-ui (npm) | 2025-12-02T17:30:50Z | 2025-12-24T10:09:31Z |
| mal-2025-191668 | Malicious code in wfui-dbd-react-ui (npm) | 2025-12-02T17:36:00Z | 2025-12-24T10:09:31Z |
| mal-2025-191600 | Malicious code in vite-dynamic-chunks (npm) | 2025-12-01T13:29:03Z | 2025-12-24T10:09:31Z |
| mal-2025-191504 | Malicious code in testhaus (npm) | 2025-12-01T16:00:47Z | 2025-12-24T10:09:31Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-0055 | Microsoft Windows und Microsoft Windows Server: Mehrere Schwachstellen | 2023-01-10T23:00:00.000+00:00 | 2025-05-14T22:00:00.000+00:00 |
| wid-sec-w-2022-1608 | FasterXML Jackson: Mehrere Schwachstellen ermöglichen Denial of Service | 2022-10-03T22:00:00.000+00:00 | 2025-05-14T22:00:00.000+00:00 |
| wid-sec-w-2022-0759 | Oracle Java SE: Mehrere Schwachstellen | 2022-07-19T22:00:00.000+00:00 | 2025-05-14T22:00:00.000+00:00 |
| wid-sec-w-2025-1049 | Intel PROSet Wireless WiFi Software: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1048 | Microsoft Defender: Mehrere Schwachstellen | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1047 | Red Hat Enterprise Linux (exiv2): Schwachstelle ermöglicht Codeausführung | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1046 | Adobe Creative Cloud Applikationen: Mehrere Schwachstellen | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1045 | Adobe Dreamweaver: Schwachstelle ermöglicht Codeausführung | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1044 | Adobe Connect: Mehrere Schwachstellen ermöglichen Cross-Site Scripting und Rechteerweiterung | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1043 | sudo-rs: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1040 | Red Hat Enterprise Linux (perl-Module-ScanDeps): Schwachstelle ermöglicht Privilegieneskalation | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1039 | Adobe Photoshop: Mehrere Schwachstellen ermöglichen Codeausführung | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1037 | Ivanti Neurons for MDM: Schwachstelle ermöglicht Manipulation von Dateien | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1036 | Red Hat Enterprise Linux (Aardvark-dns): Schwachstelle ermöglicht Denial of Service | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1035 | Xerox FreeFlow Print Server: Mehrere Schwachstellen | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1033 | Ivanti Endpoint Manager Mobile: Mehrere Schwachstellen | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1032 | Ivanti Cloud Services Application: Schwachstelle ermöglicht Privilegieneskalation | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1027 | Fortinet FortiVoice, FortiMail und FortiRecorder: Schwachstelle ermöglicht Codeausführung | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1026 | Fortinet FortiOS, FortiProxy und FortiSwitch: Schwachstelle ermöglicht Privilegieneskalation | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1025 | Fortinet FortiOS: Mehrere Schwachstellen ermöglicht Denial of Service | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1024 | Fortinet FortiPortal: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1023 | Phoenix Technologies BIOS (SCT4): Schwachstelle ermöglicht Denial of Service | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1021 | Fortinet FortiClient Mac, Windows, EMS und FortiVoice: Mehrere Schwachstellen | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1019 | Checkmk: Schwachstelle ermöglicht Privilegieneskalation | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1018 | Fortinet FortiManager: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1016 | Microsoft Dataverse: Mehrere Schwachstellen | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1014 | Microsoft Azure: Mehrere Schwachstellen | 2025-05-13T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-1002 | SAP Patchday Mai 2025: Mehrere Schwachstellen | 2025-05-12T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-0731 | TianoCore EDK2: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-04-07T22:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| wid-sec-w-2025-0629 | Ingress NGINX Controller für Kubernetes: Mehrere Schwachstellen | 2025-03-24T23:00:00.000+00:00 | 2025-05-13T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2026:0263 | Red Hat Security Advisory: postgresql security update | 2026-01-08T00:18:42+00:00 | 2026-01-15T16:00:34+00:00 |
| rhsa-2025:23530 | Red Hat Security Advisory: python39:3.9 security update | 2025-12-18T01:35:54+00:00 | 2026-01-15T16:00:34+00:00 |
| rhsa-2025:23124 | Red Hat Security Advisory: libpq security update | 2025-12-11T10:53:55+00:00 | 2026-01-15T16:00:32+00:00 |
| rhsa-2025:23123 | Red Hat Security Advisory: libpq security update | 2025-12-11T11:17:55+00:00 | 2026-01-15T16:00:32+00:00 |
| rhsa-2026:0262 | Red Hat Security Advisory: postgresql security update | 2026-01-08T01:29:27+00:00 | 2026-01-15T16:00:29+00:00 |
| rhsa-2025:22660 | Red Hat Security Advisory: systemd security update | 2025-12-03T11:55:40+00:00 | 2026-01-15T16:00:27+00:00 |
| rhsa-2025:15723 | Red Hat Security Advisory: python-requests security update | 2025-09-15T01:16:24+00:00 | 2026-01-15T16:00:04+00:00 |
| rhsa-2025:15618 | Red Hat Security Advisory: resource-agents security update | 2025-09-10T12:20:42+00:00 | 2026-01-15T16:00:04+00:00 |
| rhsa-2025:15691 | Red Hat Security Advisory: python-requests security update | 2025-09-11T13:38:00+00:00 | 2026-01-15T16:00:03+00:00 |
| rhsa-2025:15622 | Red Hat Security Advisory: fence-agents security update | 2025-09-10T12:56:48+00:00 | 2026-01-15T16:00:03+00:00 |
| rhsa-2025:15617 | Red Hat Security Advisory: resource-agents security update | 2025-09-10T12:20:37+00:00 | 2026-01-15T16:00:03+00:00 |
| rhsa-2025:15616 | Red Hat Security Advisory: resource-agents security update | 2025-09-10T12:20:52+00:00 | 2026-01-15T16:00:02+00:00 |
| rhsa-2025:15615 | Red Hat Security Advisory: fence-agents security update | 2025-09-10T12:28:07+00:00 | 2026-01-15T16:00:02+00:00 |
| rhsa-2025:15614 | Red Hat Security Advisory: fence-agents security update | 2025-09-10T12:27:22+00:00 | 2026-01-15T16:00:01+00:00 |
| rhsa-2025:14999 | Red Hat Security Advisory: resource-agents security update | 2025-09-02T02:49:59+00:00 | 2026-01-15T16:00:01+00:00 |
| rhsa-2025:14750 | Red Hat Security Advisory: fence-agents security update | 2025-08-27T15:17:04+00:00 | 2026-01-15T16:00:01+00:00 |
| rhsa-2025:14178 | Red Hat Security Advisory: tomcat9 security update | 2025-08-20T15:33:55+00:00 | 2026-01-15T16:00:01+00:00 |
| rhsa-2025:14179 | Red Hat Security Advisory: tomcat security update | 2025-08-20T15:36:15+00:00 | 2026-01-15T16:00:00+00:00 |
| rhsa-2025:14177 | Red Hat Security Advisory: tomcat security update | 2025-08-20T15:37:48+00:00 | 2026-01-15T16:00:00+00:00 |
| rhsa-2025:12519 | Red Hat Security Advisory: python-requests security update | 2025-08-04T15:20:03+00:00 | 2026-01-15T16:00:00+00:00 |
| rhsa-2025:15122 | Red Hat Security Advisory: python-requests security update | 2025-09-03T13:23:28+00:00 | 2026-01-15T15:59:59+00:00 |
| rhsa-2025:14181 | Red Hat Security Advisory: tomcat security update | 2025-08-20T15:41:15+00:00 | 2026-01-15T15:59:59+00:00 |
| rhsa-2025:14183 | Red Hat Security Advisory: tomcat security update | 2025-08-20T15:40:30+00:00 | 2026-01-15T15:59:58+00:00 |
| rhsa-2025:14180 | Red Hat Security Advisory: tomcat security update | 2025-08-20T15:43:40+00:00 | 2026-01-15T15:59:58+00:00 |
| rhsa-2025:11741 | Red Hat Security Advisory: Red Hat JBoss Web Server 6.1.1 release and security update | 2025-07-30T15:51:38+00:00 | 2026-01-15T15:59:58+00:00 |
| rhsa-2025:15121 | Red Hat Security Advisory: python-requests security update | 2025-09-03T13:15:23+00:00 | 2026-01-15T15:59:57+00:00 |
| rhsa-2025:14182 | Red Hat Security Advisory: tomcat security update | 2025-08-20T15:36:45+00:00 | 2026-01-15T15:59:56+00:00 |
| rhsa-2025:13604 | Red Hat Security Advisory: python-requests security update | 2025-08-11T10:27:10+00:00 | 2026-01-15T15:59:56+00:00 |
| rhsa-2025:13234 | Red Hat Security Advisory: python-requests security update | 2025-08-06T12:39:07+00:00 | 2026-01-15T15:59:56+00:00 |
| rhsa-2025:11696 | Red Hat Security Advisory: Red Hat JBoss Web Server 5.8.5 release and security update | 2025-07-28T13:56:27+00:00 | 2026-01-15T15:59:54+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-24-193-19 | Rockwell Automation FactoryTalk System Services and Policy Manager | 2024-07-11T06:00:00.000000Z | 2024-07-11T06:00:00.000000Z |
| icsa-24-193-18 | Rockwell Automation ThinManager ThinServer | 2024-07-11T06:00:00.000000Z | 2024-07-11T06:00:00.000000Z |
| icsa-24-191-04 | Johnson Controls Inc. Software House C●CURE 9000 | 2024-07-09T06:00:00.000000Z | 2024-07-09T06:00:00.000000Z |
| icsa-24-191-03 | Johnson Controls Illustra Pro Gen 4 | 2024-07-09T06:00:00.000000Z | 2024-07-09T06:00:00.000000Z |
| icsa-24-191-02 | Mitsubishi Electric MELIPC Series MI5122-VW | 2024-07-09T06:00:00.000000Z | 2024-07-09T06:00:00.000000Z |
| icsa-23-269-03 | Mitsubishi Electric FA Engineering Software (Update A) | 2023-09-26T06:00:00.000000Z | 2024-07-09T06:00:00.000000Z |
| icsa-25-107-02 | Schneider Electric Sage Series | 2024-06-11T00:00:00.000000Z | 2024-07-09T00:00:00.000000Z |
| icsa-24-345-03 | Schneider Electric FoxRTU Station | 2024-07-09T00:00:00.000000Z | 2024-07-09T00:00:00.000000Z |
| icsa-24-345-02 | Schneider Electric EcoStruxure Foxboro DCS Core Control Services | 2024-07-09T00:00:00.000000Z | 2024-07-09T00:00:00.000000Z |
| icsa-24-331-03 | Schneider Electric EcoStruxure Control Expert, EcoStruxure Process Expert, and Modicon M340, M580 and M580 Safety PLCs | 2024-02-13T12:41:43.000000Z | 2024-07-09T00:00:00.000000Z |
| icsa-24-193-17 | Siemens SIMATIC STEP 7 (TIA Portal) | 2024-07-09T00:00:00.000000Z | 2024-07-09T00:00:00.000000Z |
| icsa-24-193-15 | Siemens SINEMA Remote Connect Server | 2024-07-09T00:00:00.000000Z | 2024-07-09T00:00:00.000000Z |
| icsa-24-193-13 | Siemens TIA Portal, SIMATIC, and SIRIUS | 2024-07-09T00:00:00.000000Z | 2024-07-09T00:00:00.000000Z |
| icsa-24-193-12 | Siemens TIA Portal and SIMATIC STEP 7 | 2024-07-09T00:00:00.000000Z | 2024-07-09T00:00:00.000000Z |
| icsa-24-193-10 | Siemens JT Open and PLM XML SDK | 2024-07-09T00:00:00.000000Z | 2024-07-09T00:00:00.000000Z |
| icsa-24-193-09 | Siemens SINEMA Remote Connect Server | 2024-07-09T00:00:00.000000Z | 2024-07-09T00:00:00.000000Z |
| icsa-24-193-08 | Siemens Mendix Encryption Module | 2024-07-09T00:00:00.000000Z | 2024-07-09T00:00:00.000000Z |
| icsa-24-193-04 | Siemens Simcenter Femap | 2024-07-09T00:00:00.000000Z | 2024-07-09T00:00:00.000000Z |
| icsa-24-193-01 | Siemens Remote Connect Server | 2024-07-09T00:00:00.000000Z | 2024-07-09T00:00:00.000000Z |
| icsa-24-165-06 | Siemens TIM 1531 IRC | 2024-06-11T00:00:00.000000Z | 2024-07-09T00:00:00.000000Z |
| icsa-24-116-03 | Siemens RUGGEDCOM APE1808 devices configured with Palo Alto Networks Virtual NGFW | 2024-04-19T00:00:00.000000Z | 2024-07-09T00:00:00.000000Z |
| icsa-23-285-08 | Siemens SINEC NMS | 2023-10-10T00:00:00.000000Z | 2024-07-09T00:00:00.000000Z |
| icsa-22-167-17 | Siemens OpenSSL Affecting Industrial Products | 2022-06-14T00:00:00.000000Z | 2024-07-09T00:00:00.000000Z |
| icsa-20-042-04 | Siemens PROFINET-IO Stack (Update H) | 2020-02-11T00:00:00.000000Z | 2024-07-09T00:00:00.000000Z |
| icsa-19-283-02 | Siemens PROFINET Devices (Update K) | 2019-10-08T00:00:00.000000Z | 2024-07-09T00:00:00.000000Z |
| icsa-17-339-01 | Siemens Industrial Products (Update S) | 2017-11-23T00:00:00.000000Z | 2024-07-09T00:00:00.000000Z |
| icsa-24-184-02 | mySCADA myPRO | 2024-07-02T06:00:00.000000Z | 2024-07-02T06:00:00.000000Z |
| icsa-24-184-01 | Johnson Controls Kantech Door Controllers | 2024-07-02T06:00:00.000000Z | 2024-07-02T06:00:00.000000Z |
| icsa-24-179-07 | Johnson Controls Illustra Essentials Gen 4 (Update A) | 2024-06-27T06:00:00.000000Z | 2024-07-02T06:00:00.000000Z |
| icsa-24-179-06 | Johnson Controls Illustra Essentials Gen 4 (Update A) | 2024-06-27T06:00:00.000000Z | 2024-07-02T06:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-trustsec-dos-7fuXDR2 | Cisco IOS and IOS XE Software TrustSec CLI Parser Denial of Service Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-sdwan-maapi-privesc-ksug7qss | Cisco IOS XE SD-WAN Software Command Injection Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-sdwan-maapi-privesc-KSUg7QSS | Cisco IOS XE SD-WAN Software Command Injection Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-sdwan-maapi-cmdinjec-znuytuc | Cisco SD-WAN Software Command Injection Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-sdwan-maapi-cmdinjec-znUYTuC | Cisco SD-WAN Software Command Injection Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-sd-wan-josurjcc | Cisco SD-WAN vManage Software Cypher Query Language Injection Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-sd-wan-jOsuRJCc | Cisco SD-WAN vManage Software Cypher Query Language Injection Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-sd-wan-gjr5pgom | Cisco IOS XE SD-WAN Software Arbitrary File Overwrite Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-sd-wan-credentials-ydyfskzz | Cisco SD-WAN vManage Software Disaster Recovery Feature Password Exposure Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-sd-wan-credentials-ydYfskzZ | Cisco SD-WAN vManage Software Disaster Recovery Feature Password Exposure Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-sd-wan-GjR5pGOm | Cisco IOS XE SD-WAN Software Arbitrary File Overwrite Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-ratenat-pyvla7wm | Cisco IOS XE Software Rate Limiting Network Address Translation Denial of Service Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-ratenat-pYVLA7wM | Cisco IOS XE Software Rate Limiting Network Address Translation Denial of Service Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-quewedge-69bshubw | Cisco IOS XE Software Interface Queue Wedge Denial of Service Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-quewedge-69BsHUBW | Cisco IOS XE Software Interface Queue Wedge Denial of Service Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-lldp-dos-sbnuhsjt | Cisco IOS and IOS XE Software Link Layer Discovery Protocol Denial of Service Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-lldp-dos-sBnuHSjT | Cisco IOS and IOS XE Software Link Layer Discovery Protocol Denial of Service Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-ioxesdwan-clicmdinj-7byx5k3 | Cisco IOS XE SD-WAN Software Command Injection Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-ioxesdwan-clicmdinj-7bYX5k3 | Cisco IOS XE SD-WAN Software Command Injection Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-iosxesdwan-rbuffover-ve2ob6tp | Cisco IOS XE SD-WAN Software Buffer Overflow Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-iosxesdwan-rbuffover-vE2OB6tp | Cisco IOS XE SD-WAN Software Buffer Overflow Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-iosxesdwan-privesc-vp4fg3jd | Cisco IOS XE SD-WAN Software Privilege Escalation Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-iosxesdwan-privesc-VP4FG3jD | Cisco IOS XE SD-WAN Software Privilege Escalation Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-iosxesdwan-arbfileov-mvof3zzn | Cisco IOS XE SD-WAN Software Arbitrary File Overwrite Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-iosxesdwan-arbfileov-MVOF3ZZn | Cisco IOS XE SD-WAN Software Arbitrary File Overwrite Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-iosxe-h323alg-bypass-4vy2mp2q | Cisco IOS XE Software H.323 Application Level Gateway Bypass Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-iosxe-h323alg-bypass-4vy2MP2Q | Cisco IOS XE Software H.323 Application Level Gateway Bypass Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-iosxe-ewc-dos-g6jruhrt | Cisco Embedded Wireless Controller Software for Catalyst Access Points Denial of Service Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-iosxe-ewc-dos-g6JruHRT | Cisco Embedded Wireless Controller Software for Catalyst Access Points Denial of Service Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| cisco-sa-ios-nxos-xr-udld-dos-w5hghgtq | Multiple Cisco Operating Systems Unidirectional Link Detection Denial of Service Vulnerability | 2021-09-22T16:00:00+00:00 | 2021-09-22T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-55248 | .NET, .NET Framework, and Visual Studio Information Disclosure Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-55247 | .NET Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-55240 | Visual Studio Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-54112 | Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability | 2025-09-09T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-53782 | Microsoft Exchange Server Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-53768 | Xbox IStorageService Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-53717 | Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-53150 | Windows Digital Media Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-53139 | Windows Hello Security Feature Bypass Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-50175 | Windows Digital Media Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-50174 | Windows Device Association Broker Service Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-50173 | Windows Installer Elevation of Privilege Vulnerability | 2025-08-12T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-50152 | Windows Kernel Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-49708 | Microsoft Graphics Component Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-48813 | Virtual Secure Mode Spoofing Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-48004 | Microsoft Brokering File System Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-47979 | Microsoft Failover Cluster Information Disclosure Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-24990 | Windows Agere Modem Driver Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-24052 | Windows Agere Modem Driver Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2024-43832 | s390/uv: Don't call folio_wait_writeback() without a folio reference | 2024-08-02T00:00:00.000Z | 2025-10-12T01:01:27.000Z |
| msrc_cve-2024-43831 | media: mediatek: vcodec: Handle invalid decoder vsi | 2024-08-02T00:00:00.000Z | 2025-10-12T01:01:21.000Z |
| msrc_cve-2020-8130 | There is an OS command injection vulnerability in Ruby Rake < 12.3.3 in Rake::FileList when supplying a filename that begins with the pipe character `|`. | 2020-02-02T00:00:00.000Z | 2025-10-12T01:01:15.000Z |
| msrc_cve-2025-37727 | Elasticsearch Insertion of sensitive information in log file | 2025-10-02T00:00:00.000Z | 2025-10-11T01:03:07.000Z |
| msrc_cve-2025-11412 | GNU Binutils Linker elflink.c bfd_elf_gc_record_vtentry out-of-bounds | 2025-10-02T00:00:00.000Z | 2025-10-11T01:02:46.000Z |
| msrc_cve-2025-11414 | GNU Binutils Linker elflink.c get_link_hash_entry out-of-bounds | 2025-10-02T00:00:00.000Z | 2025-10-11T01:02:35.000Z |
| msrc_cve-2025-11413 | GNU Binutils Linker elflink.c elf_link_add_object_symbols out-of-bounds | 2025-10-02T00:00:00.000Z | 2025-10-11T01:02:24.000Z |
| msrc_cve-2025-11495 | GNU Binutils Linker elf64-x86-64.c elf_x86_64_relocate_section heap-based overflow | 2025-10-02T00:00:00.000Z | 2025-10-11T01:02:13.000Z |
| msrc_cve-2024-42321 | net: flow_dissector: use DEBUG_NET_WARN_ON_ONCE | 2024-08-02T00:00:00.000Z | 2025-10-11T01:01:56.000Z |
| msrc_cve-2025-39961 | iommu/amd/pgtbl: Fix possible race while increase page table level | 2025-10-02T00:00:00.000Z | 2025-10-11T01:01:50.000Z |
| msrc_cve-2024-46717 | net/mlx5e: SHAMPO, Fix incorrect page release | 2024-09-01T07:00:00.000Z | 2025-10-11T01:01:45.000Z |
| ID | Description | Updated |
|---|---|---|
| var-200609-1205 | OpenSSL 0.9.7 before 0.9.7l and 0.9.8 before 0.9.8d allows remote attackers to cause a de… | 2024-06-16T02:33:25.492000Z |
| var-200609-0852 | The VPN service in Apple Mac OS X 10.3.x through 10.3.9 and 10.4.x through 10.4.8 does no… | 2024-06-16T01:51:51.775000Z |
| var-202208-1819 | An authenticated mySCADA myPRO 8.26.0 user may be able to modify parameters to run comman… | 2024-06-15T23:15:16.386000Z |
| var-202205-2013 | Alpha7 PC Loader (All versions) is vulnerable to a stack-based buffer overflow while proc… | 2024-06-15T23:14:12.003000Z |
| var-202406-0212 | A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < … | 2024-06-15T23:09:49.999000Z |
| var-200609-0787 | The Airport driver for certain Orinoco based Airport cards in Darwin kernel 8.8.0 in Appl… | 2024-06-15T20:53:48.267000Z |
| var-200609-1378 | Stack-based buffer overflow in the Apple Type Services (ATS) server in Mac OS 10.4.8 and … | 2024-06-15T20:34:03.460000Z |
| var-200609-0808 | The Apple Type Services (ATS) server in Mac OS X 10.4.8 and earlier does not securely cre… | 2024-06-15T20:05:02.269000Z |
| var-200609-0699 | Heap-based buffer overflow in the Finder in Apple Mac OS X 10.4.8 and earlier allows user… | 2024-06-15T19:42:49.726000Z |
| var-202208-1938 | FATEK FvDesigner version 1.5.103 and prior is vulnerable to an out-of-bounds write while … | 2024-06-14T23:18:07.031000Z |
| var-202209-1040 | Delta Industrial Automation's DIAEnergy, an industrial energy management system, is vulne… | 2024-06-14T23:12:29.345000Z |
| var-202209-1831 | Rockwell Automation ThinManager ThinServer versions 11.0.0 - 13.0.0 is vulnerable to a he… | 2024-06-14T23:08:39.872000Z |
| var-202308-3626 | Digi RealPort Protocol is vulnerable to a replay attack that may allow an attacker to by… | 2024-06-14T23:08:38.302000Z |
| var-202301-1474 | A vulnerability exists in Trend Micro Maximum Security 2022 (17.7) wherein a low-privileg… | 2024-06-14T23:07:50.818000Z |
| var-202208-2363 | Trend Micro Security 2021 and 2022 (Consumer) is vulnerable to an Out-Of-Bounds Read Info… | 2024-06-14T23:07:50.934000Z |
| var-202208-2362 | Trend Micro Security 2021 and 2022 (Consumer) is vulnerable to an Out-Of-Bounds Read Info… | 2024-06-14T23:07:50.962000Z |
| var-202207-0546 | Trend Micro Security 2021 and 2022 (Consumer) is vulnerable to an Out-Of-Bounds Read Info… | 2024-06-14T23:07:50.878000Z |
| var-202207-0135 | Trend Micro Security 2022 (consumer) has a link following vulnerability where an attacker… | 2024-06-14T23:07:50.908000Z |
| var-202205-1103 | Trend Micro Maximum Security 2022 is vulnerable to a link following vulnerability that co… | 2024-06-14T23:07:50.848000Z |
| var-202208-0172 | CENTUM VP / CS 3000 controller FCS (CP31, CP33, CP345, CP401, and CP451) contains an issu… | 2024-06-14T23:02:04.070000Z |
| var-202109-1926 | AVEVA Software Platform Common Services (PCS) Portal versions 4.5.2, 4.5.1, 4.5.0, and 4.… | 2024-06-14T22:51:34.762000Z |
| var-201607-0321 | The MultipartStream class in Apache Commons Fileupload before 1.3.2, as used in Apache To… | 2024-06-14T22:46:42.863000Z |
| var-200609-1375 | Unspecified vulnerability in CFNetwork in Mac OS 10.4.8 and earlier allows user-assisted … | 2024-06-14T22:40:46.392000Z |
| var-202104-0160 | An out-of-bounds write issue was addressed with improved bounds checking. This issue is f… | 2024-06-14T22:03:37.376000Z |
| var-201406-0142 | The dtls1_get_message_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 bef… | 2024-06-14T21:51:12.928000Z |
| var-201401-0009 | The instruction emulation in Xen 3.0.3 allows local SMP guest users to cause a denial of … | 2024-06-14T21:28:49.913000Z |
| var-201501-0434 | The BN_sqr implementation in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 befor… | 2024-06-14T21:15:22.926000Z |
| var-201705-3649 | There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1… | 2024-06-14T20:46:02.785000Z |
| var-200609-1274 | Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.… | 2024-06-14T20:42:43.882000Z |
| var-201905-1057 | Insufficient input validation in Kernel Mode Driver in Intel(R) i915 Graphics for Linux b… | 2024-06-14T20:19:15.536000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2017-000038 | CubeCart vulnerable to directory traversal | 2017-02-28T14:13+09:00 | 2017-06-01T12:18+09:00 |
| jvndb-2017-000064 | Cybozu Office fails to restrict access permission in the file export function in "customapp" | 2017-04-11T16:05+09:00 | 2017-06-01T11:30+09:00 |
| jvndb-2017-000063 | The design setting screen in Cybozu Office vulnerable to cross-site scripting | 2017-04-11T16:05+09:00 | 2017-06-01T11:30+09:00 |
| jvndb-2017-000021 | Hands-on Vulnerability Learning Tool "AppGoat" vulnerable to cross-site request forgery | 2017-02-09T14:40+09:00 | 2017-06-01T11:30+09:00 |
| jvndb-2017-000020 | Hands-on Vulnerability Learning Tool "AppGoat" vulnerable to authentication bypass | 2017-02-09T14:39+09:00 | 2017-06-01T11:30+09:00 |
| jvndb-2017-000019 | Hands-on Vulnerability Learning Tool "AppGoat" vulnerable to DNS rebinding | 2017-02-09T14:47+09:00 | 2017-06-01T11:30+09:00 |
| jvndb-2017-000018 | Hands-on Vulnerability Learning Tool "AppGoat" vulnerable to remote code execution | 2017-02-09T14:47+09:00 | 2017-06-01T11:30+09:00 |
| jvndb-2017-000014 | CubeCart vulnerable to directory traversal | 2017-01-27T13:49+09:00 | 2017-06-01T11:30+09:00 |
| jvndb-2017-000099 | SSL Visibility Appliance may generate illegal RST packets | 2017-05-24T14:41+09:00 | 2017-05-31T19:27+09:00 |
| jvndb-2016-000067 | Jetstar App for iOS fails to verify SSL server certificates | 2016-05-24T13:36+09:00 | 2017-05-29T11:45+09:00 |
| jvndb-2016-000065 | 105 BANK App fails to verify SSL server certificates | 2016-05-18T15:26+09:00 | 2017-05-29T11:45+09:00 |
| jvndb-2016-003380 | ManageEngine Password Manager Pro vulnerable to cross-site request forgery | 2016-12-05T14:32+09:00 | 2017-05-23T16:23+09:00 |
| jvndb-2016-000135 | Cybozu Mailwise vulnerable to mail header injection | 2016-08-16T14:10+09:00 | 2017-05-23T16:23+09:00 |
| jvndb-2016-000080 | Cybozu Garoon vulnerable to denial-of-service (DoS) | 2016-05-30T16:18+09:00 | 2017-05-23T16:23+09:00 |
| jvndb-2016-000060 | Cybozu KUNAI App fails to verify SSL server certificates | 2016-05-16T16:14+09:00 | 2017-05-23T16:23+09:00 |
| jvndb-2016-006038 | Multiple SONY network cameras vulnerable to sensitive information disclosure | 2016-12-05T14:33+09:00 | 2017-05-23T14:28+09:00 |
| jvndb-2016-000171 | ManageEngine ServiceDesk Plus uses an insecure method for cookie generation | 2016-09-29T14:39+09:00 | 2017-05-23T14:28+09:00 |
| jvndb-2016-000170 | ManageEngine ServiceDesk Plus fails to restrict access permissions | 2016-09-29T14:39+09:00 | 2017-05-23T14:28+09:00 |
| jvndb-2016-000169 | ManageEngine ServiceDesk Plus vulnerable to cross-site scripting | 2016-09-29T14:39+09:00 | 2017-05-23T14:28+09:00 |
| jvndb-2016-000167 | Multiple plugins for Geeklog IVYWE edition vulnerable to cross-site scripting | 2016-09-23T14:15+09:00 | 2017-05-23T14:28+09:00 |
| jvndb-2016-000157 | CS-Cart add-on "Twigmo" vulnerable to PHP object injection | 2016-09-14T15:00+09:00 | 2017-05-23T14:28+09:00 |
| jvndb-2016-000153 | LINE for Windows fails to properly verify downloaded files | 2016-08-25T14:26+09:00 | 2017-05-23T14:28+09:00 |
| jvndb-2016-000150 | Geeklog IVYWE edition contains a cross-site scripting vulnerability | 2016-08-19T14:13+09:00 | 2017-05-23T14:28+09:00 |
| jvndb-2016-000141 | OSSEC Web UI vulnerable to cross-site scripting | 2016-08-18T14:24+09:00 | 2017-05-23T14:28+09:00 |
| jvndb-2016-000139 | Installer of PhishWall Client Internet Explorer version may insecurely load Dynamic Link Libraries | 2016-08-17T16:12+09:00 | 2017-05-23T14:28+09:00 |
| jvndb-2016-000133 | Coordinate Plus App fails to verify SSL server certificates | 2016-08-04T13:41+09:00 | 2017-05-23T14:28+09:00 |
| jvndb-2016-000122 | Sushiro App fails to verify SSL server certificates | 2016-06-29T14:27+09:00 | 2017-05-23T14:28+09:00 |
| jvndb-2016-000120 | DMM Movie Player App fails to verify SSL server certificates | 2016-06-27T14:23+09:00 | 2017-05-23T14:28+09:00 |
| jvndb-2016-000092 | DMM.com Securities FX Apps for Android fail to verify SSL server certificates | 2016-05-30T14:21+09:00 | 2017-05-23T14:28+09:00 |
| jvndb-2016-000056 | kintone mobile for Android fails to verify SSL server certificates | 2016-04-25T15:36+09:00 | 2017-05-23T14:28+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2025:02521-1 | Security update for gnutls | 2025-07-25T09:04:14Z | 2025-07-25T09:04:14Z |
| suse-su-2025:02520-1 | Security update for gnutls | 2025-07-25T09:04:08Z | 2025-07-25T09:04:08Z |
| suse-su-2025:02516-1 | Security update for ovmf | 2025-07-24T20:17:11Z | 2025-07-24T20:17:11Z |
| suse-su-2025:02514-1 | Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP6) | 2025-07-24T18:04:14Z | 2025-07-24T18:04:14Z |
| suse-su-2025:20508-1 | Security update for glib2 | 2025-07-24T11:51:08Z | 2025-07-24T11:51:08Z |
| suse-su-2025:20507-1 | Security update for gstreamer-plugins-base | 2025-07-24T11:46:58Z | 2025-07-24T11:46:58Z |
| suse-su-2025:20506-1 | Security update for jq | 2025-07-24T11:41:34Z | 2025-07-24T11:41:34Z |
| suse-su-2025:20531-1 | Security update for python-requests | 2025-07-24T11:31:36Z | 2025-07-24T11:31:36Z |
| suse-su-2025:02511-1 | Security update for ImageMagick | 2025-07-24T09:10:14Z | 2025-07-24T09:10:14Z |
| suse-su-2025:02510-1 | Security update for ImageMagick | 2025-07-24T09:10:02Z | 2025-07-24T09:10:02Z |
| suse-su-2025:02507-1 | Security update for the Linux Kernel (Live Patch 60 for SLE 12 SP5) | 2025-07-24T06:50:40Z | 2025-07-24T06:50:40Z |
| suse-su-2025:20487-1 | Security update for salt | 2025-07-23T13:41:40Z | 2025-07-23T13:41:40Z |
| suse-su-2025:20504-1 | Security update 5.0.5 for Multi-Linux Manager Client Tools, Salt and Salt Bundle | 2025-07-23T13:34:01Z | 2025-07-23T13:34:01Z |
| suse-su-2025:02502-1 | Security update for salt | 2025-07-23T12:48:03Z | 2025-07-23T12:48:03Z |
| suse-su-2025:02501-1 | Security update for salt | 2025-07-23T12:47:18Z | 2025-07-23T12:47:18Z |
| suse-su-2025:02500-1 | Security update for salt | 2025-07-23T12:46:43Z | 2025-07-23T12:46:43Z |
| suse-su-2025:02499-1 | Security update 5.0.5 for Multi-Linux Manager Salt Bundle | 2025-07-23T12:46:00Z | 2025-07-23T12:46:00Z |
| suse-su-2025:02492-1 | Security update 5.0.5 for Multi-Linux Manager Salt Bundle | 2025-07-23T12:43:53Z | 2025-07-23T12:43:53Z |
| suse-su-2025:02491-1 | Security update 5.0.5 for Multi-Linux Manager Salt Bundle | 2025-07-23T12:43:13Z | 2025-07-23T12:43:13Z |
| suse-su-2025:02478-1 | Security update 5.0.5 for Multi-Linux Manager Server | 2025-07-23T12:39:24Z | 2025-07-23T12:39:24Z |
| suse-su-2025:02476-1 | Security update 4.3.16 for Multi-Linux Manager Server | 2025-07-23T12:37:12Z | 2025-07-23T12:37:12Z |
| suse-su-2025:02475-1 | Security update 4.3.16 for Multi-Linux Manager Server | 2025-07-23T12:36:44Z | 2025-07-23T12:36:44Z |
| suse-su-2025:02474-1 | Security update for php8 | 2025-07-23T12:03:54Z | 2025-07-23T12:03:54Z |
| suse-su-2025:02473-1 | Security update for php7 | 2025-07-23T12:02:59Z | 2025-07-23T12:02:59Z |
| suse-su-2025:02472-1 | Security update for gstreamer-plugins-base | 2025-07-23T11:18:56Z | 2025-07-23T11:18:56Z |
| suse-su-2025:02471-1 | Security update for xen | 2025-07-22T22:58:21Z | 2025-07-22T22:58:21Z |
| suse-su-2025:02470-1 | Security update for the Linux Kernel (Live Patch 40 for SLE 15 SP4) | 2025-07-22T20:04:04Z | 2025-07-22T20:04:04Z |
| suse-su-2025:02469-1 | Security update for the Linux Kernel (Live Patch 39 for SLE 15 SP4) | 2025-07-22T19:03:55Z | 2025-07-22T19:03:55Z |
| suse-su-2025:02468-1 | Security update for the Linux Kernel (Live Patch 38 for SLE 15 SP4) | 2025-07-22T18:33:43Z | 2025-07-22T18:33:43Z |
| suse-su-2025:02467-1 | Security update for the Linux Kernel (Live Patch 57 for SLE 15 SP3) | 2025-07-22T15:04:18Z | 2025-07-22T15:04:18Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:14385-1 | MozillaFirefox-131.0-1.1 on GA media | 2024-10-06T00:00:00Z | 2024-10-06T00:00:00Z |
| opensuse-su-2024:14384-1 | ffmpeg-7-7.1-1.1 on GA media | 2024-10-04T00:00:00Z | 2024-10-04T00:00:00Z |
| opensuse-su-2024:14383-1 | chromedriver-129.0.6668.89-1.2 on GA media | 2024-10-04T00:00:00Z | 2024-10-04T00:00:00Z |
| opensuse-su-2024:14382-1 | opensc-0.25.1-2.1 on GA media | 2024-10-02T00:00:00Z | 2024-10-02T00:00:00Z |
| opensuse-su-2024:14381-1 | libmozjs-78-0-78.15.0-5.1 on GA media | 2024-10-02T00:00:00Z | 2024-10-02T00:00:00Z |
| opensuse-su-2024:14380-1 | libmozjs-128-0-128.2.0-2.1 on GA media | 2024-10-02T00:00:00Z | 2024-10-02T00:00:00Z |
| opensuse-su-2024:14379-1 | libmozjs-115-0-115.4.0-5.1 on GA media | 2024-10-02T00:00:00Z | 2024-10-02T00:00:00Z |
| opensuse-su-2024:14378-1 | bsdtar-3.7.6-1.1 on GA media | 2024-10-02T00:00:00Z | 2024-10-02T00:00:00Z |
| opensuse-su-2024:14377-1 | xen-4.19.0_04-1.1 on GA media | 2024-10-01T00:00:00Z | 2024-10-01T00:00:00Z |
| opensuse-su-2024:0320-1 | Security update for chromium | 2024-09-30T08:41:05Z | 2024-09-30T08:41:05Z |
| opensuse-su-2024:14376-1 | php8-8.3.12-1.1 on GA media | 2024-09-29T00:00:00Z | 2024-09-29T00:00:00Z |
| opensuse-su-2024:14375-1 | kyverno-1.12.6-1.1 on GA media | 2024-09-29T00:00:00Z | 2024-09-29T00:00:00Z |
| opensuse-su-2024:14374-1 | argocd-cli-2.12.4-1.1 on GA media | 2024-09-29T00:00:00Z | 2024-09-29T00:00:00Z |
| opensuse-su-2024:14373-1 | OpenIPMI-2.0.36.4+git.c114912-1.1 on GA media | 2024-09-29T00:00:00Z | 2024-09-29T00:00:00Z |
| opensuse-su-2024:0319-1 | Security update for coredns | 2024-09-27T14:01:32Z | 2024-09-27T14:01:32Z |
| opensuse-su-2024:0314-1 | Security update for chromium | 2024-09-27T08:38:17Z | 2024-09-27T08:38:17Z |
| opensuse-su-2024:14372-1 | maven-archetype-3.3.0-1.1 on GA media | 2024-09-27T00:00:00Z | 2024-09-27T00:00:00Z |
| opensuse-su-2024:14371-1 | json-java-20240303-1.1 on GA media | 2024-09-27T00:00:00Z | 2024-09-27T00:00:00Z |
| opensuse-su-2024:14370-1 | python312-3.12.6-1.1 on GA media | 2024-09-26T00:00:00Z | 2024-09-26T00:00:00Z |
| opensuse-su-2024:14369-1 | libmozjs-128-0-128.2.0-1.1 on GA media | 2024-09-26T00:00:00Z | 2024-09-26T00:00:00Z |
| opensuse-su-2024:14368-1 | chromedriver-129.0.6668.70-1.1 on GA media | 2024-09-26T00:00:00Z | 2024-09-26T00:00:00Z |
| opensuse-su-2024:14367-1 | traefik2-2.11.10-1.1 on GA media | 2024-09-25T00:00:00Z | 2024-09-25T00:00:00Z |
| opensuse-su-2024:14366-1 | libopenssl-3-devel-3.1.4-14.1 on GA media | 2024-09-25T00:00:00Z | 2024-09-25T00:00:00Z |
| opensuse-su-2024:0312-1 | Security update for chromium | 2024-09-24T08:45:20Z | 2024-09-24T08:45:20Z |
| opensuse-su-2024:0311-1 | Security update for chromium | 2024-09-24T08:44:15Z | 2024-09-24T08:44:15Z |
| opensuse-su-2024:14365-1 | traefik-3.1.4-1.1 on GA media | 2024-09-24T00:00:00Z | 2024-09-24T00:00:00Z |
| opensuse-su-2024:14364-1 | obs-service-cargo-1.3.6-5.1 on GA media | 2024-09-24T00:00:00Z | 2024-09-24T00:00:00Z |
| opensuse-su-2024:14363-1 | cargo-audit-0.20.0~git66.972ac93-3.1 on GA media | 2024-09-24T00:00:00Z | 2024-09-24T00:00:00Z |
| opensuse-su-2024:14362-1 | python310-azure-identity-1.18.0-1.1 on GA media | 2024-09-23T00:00:00Z | 2024-09-23T00:00:00Z |
| opensuse-su-2024:14361-1 | libecpg6-17~rc1-1.1 on GA media | 2024-09-23T00:00:00Z | 2024-09-23T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-27256 | Library System notapprove.php文件SQL注入漏洞 | 2025-07-21 | 2025-11-06 |
| cnvd-2025-27255 | Library System approve.php文件SQL注入漏洞 | 2025-07-21 | 2025-11-06 |
| cnvd-2025-27254 | Library System add-teacher.php文件SQL注入漏洞 | 2025-07-21 | 2025-11-06 |
| cnvd-2025-27253 | Library System add-student.php文件SQL注入漏洞 | 2025-07-21 | 2025-11-06 |
| cnvd-2025-27252 | Voting System voters_add.php文件上传漏洞 | 2025-10-13 | 2025-11-06 |
| cnvd-2025-27251 | WordPress Noo JobMonster plugin身份验证绕过漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27250 | WordPress Masterstudy plugin文件包含漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27249 | WordPress MasterStudy LMS plugin SQL注入漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27248 | WordPress List category posts plugin信息泄露漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27247 | WordPress Kleo plugin文件包含漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27246 | WordPress King Addons for Elementor plugin权限提升漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27245 | WordPress kallyas plugin跨站脚本漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27244 | WordPress kallyas plugin代码执行漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27243 | WordPress K Elements plugin跨站脚本漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27242 | WordPress Insert PHP Code Snippet plugin缺少授权漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27241 | WordPress Inactive Logout plugin跨站脚本漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27240 | WordPress Gutenberg plugin跨站脚本漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27239 | WordPress Groundhogg Plugin跨站脚本漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27238 | WordPress FuseWP plugin未授权修改数据漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27114 | Tenda AC10缓冲区溢出漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27063 | WordPress Folderly plugin未经授权的数据修改漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27062 | WordPress Flying Images plugin跨站脚本漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27061 | WordPress Essential Addons for Elementor plugin授权缺失漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27060 | WordPress ERI File Library plugin未授权数据访问漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27059 | WordPress Employee Spotlight plugin跨站脚本漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27058 | WordPress Document Library Lite plugin不当授权漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27057 | WordPress Depicter plugin跨站请求伪造漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27056 | WordPress Consulting plugin文件包含漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27055 | WordPress Consulting Elementor Widgets plugin文件包含漏洞 | 2025-11-05 | 2025-11-06 |
| cnvd-2025-27054 | WordPress Consulting Elementor Widgets plugin跨站脚本漏洞 | 2025-11-05 | 2025-11-06 |
| ID | Description | Published | Updated |
|---|---|---|---|
| CERTFR-2025-AVI-0380 | Vulnérabilité dans PostgreSQL | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| CERTFR-2025-AVI-0379 | Multiples vulnérabilités dans les produits SonicWall | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| CERTFR-2025-AVI-0378 | Multiples vulnérabilités dans les produits Cisco | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| certfr-2025-avi-0377 | Multiples vulnérabilités dans les produits Elastic | 2025-05-07T00:00:00.000000 | 2025-05-07T00:00:00.000000 |
| certfr-2025-avi-0376 | Vulnérabilité dans Google Chrome | 2025-05-07T00:00:00.000000 | 2025-05-07T00:00:00.000000 |
| certfr-2025-avi-0375 | Vulnérabilité dans Liferay Portal et Liferay DXP | 2025-05-07T00:00:00.000000 | 2025-05-07T00:00:00.000000 |
| certfr-2025-avi-0374 | Multiples vulnérabilités dans Tenable Security Center | 2025-05-07T00:00:00.000000 | 2025-05-07T00:00:00.000000 |
| certfr-2025-avi-0373 | Multiples vulnérabilités dans MariaDB | 2025-05-07T00:00:00.000000 | 2025-05-07T00:00:00.000000 |
| certfr-2025-avi-0372 | Multiples vulnérabilités dans Google Pixel | 2025-05-07T00:00:00.000000 | 2025-05-07T00:00:00.000000 |
| CERTFR-2025-AVI-0377 | Multiples vulnérabilités dans les produits Elastic | 2025-05-07T00:00:00.000000 | 2025-05-07T00:00:00.000000 |
| CERTFR-2025-AVI-0376 | Vulnérabilité dans Google Chrome | 2025-05-07T00:00:00.000000 | 2025-05-07T00:00:00.000000 |
| CERTFR-2025-AVI-0375 | Vulnérabilité dans Liferay Portal et Liferay DXP | 2025-05-07T00:00:00.000000 | 2025-05-07T00:00:00.000000 |
| CERTFR-2025-AVI-0374 | Multiples vulnérabilités dans Tenable Security Center | 2025-05-07T00:00:00.000000 | 2025-05-07T00:00:00.000000 |
| CERTFR-2025-AVI-0373 | Multiples vulnérabilités dans MariaDB | 2025-05-07T00:00:00.000000 | 2025-05-07T00:00:00.000000 |
| CERTFR-2025-AVI-0372 | Multiples vulnérabilités dans Google Pixel | 2025-05-07T00:00:00.000000 | 2025-05-07T00:00:00.000000 |
| certfr-2025-avi-0371 | Multiples vulnérabilités dans Google Android | 2025-05-06T00:00:00.000000 | 2025-05-06T00:00:00.000000 |
| CERTFR-2025-AVI-0371 | Multiples vulnérabilités dans Google Android | 2025-05-06T00:00:00.000000 | 2025-05-06T00:00:00.000000 |
| certfr-2025-avi-0370 | Multiples vulnérabilités dans les produits IBM | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0369 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0368 | Multiples vulnérabilités dans le noyau Linux de Debian | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0367 | Vulnérabilité dans le noyau Linux de Red Hat | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0366 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0365 | Vulnérabilité dans les produits Microsoft | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0364 | Multiples vulnérabilités dans Microsoft Azure | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0363 | Multiples vulnérabilités dans Microsoft Edge | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0362 | Vulnérabilité dans Sonicwall Secure Mobile Access | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0361 | Multiples vulnérabilités dans les produits Mozilla | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0360 | Multiples vulnérabilités dans les produits Tenable | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0359 | Multiples vulnérabilités dans les produits Elastic | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| CERTFR-2025-AVI-0370 | Multiples vulnérabilités dans les produits IBM | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |