Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-rp3g-8hwh-4xwq | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2025-12-24T15:30:44Z | 2025-12-24T15:30:44Z |
| ghsa-pgph-4c45-hj8g | Unrestricted Upload of File with Dangerous Type vulnerability in Echo Call Center Services Trade an… | 2025-12-24T15:30:44Z | 2025-12-24T15:30:44Z |
| ghsa-j5f2-m9hq-3w98 | Rejected reason: This CVE id was assigned but later discarded. | 2025-12-24T15:30:44Z | 2025-12-24T15:30:44Z |
| ghsa-ghj7-pch2-m5m6 | In the Linux kernel, the following vulnerability has been resolved: spi: tegra210-quad: Fix timeou… | 2025-12-24T15:30:44Z | 2025-12-24T15:30:44Z |
| ghsa-fc8g-5x2c-p65r | An open redirect vulnerability in the login endpoint of Blitz Panel v1.17.0 allows attackers to red… | 2025-12-24T15:30:44Z | 2025-12-24T18:30:22Z |
| ghsa-99pp-v74j-jmgv | In the Linux kernel, the following vulnerability has been resolved: bpf: Free special fields when … | 2025-12-24T15:30:44Z | 2025-12-24T15:30:44Z |
| ghsa-98rv-gpf2-fj42 | In the Linux kernel, the following vulnerability has been resolved: mshv: Fix create memory region… | 2025-12-24T15:30:44Z | 2025-12-24T15:30:44Z |
| ghsa-8phj-p75x-7gv8 | In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix race condition… | 2025-12-24T15:30:44Z | 2025-12-24T15:30:44Z |
| ghsa-348v-47hf-22wr | In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Fix UAF on kernel… | 2025-12-24T15:30:44Z | 2025-12-24T15:30:44Z |
| ghsa-x3pg-6rrq-fcp9 | Missing Authorization vulnerability in WP Socio WP Telegram Widget and Join Link wptelegram-widget … | 2025-12-24T15:30:43Z | 2025-12-24T21:30:29Z |
| ghsa-wx69-963x-88g9 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T15:30:43Z | 2025-12-24T21:30:30Z |
| ghsa-ww8h-qfvw-pj5m | In the Linux kernel, the following vulnerability has been resolved: arm64/pageattr: Propagate retu… | 2025-12-24T15:30:43Z | 2025-12-24T15:30:43Z |
| ghsa-w77q-cf84-7mcq | Missing Authorization vulnerability in Trustindex Widgets for Social Photo Feed social-photo-feed-w… | 2025-12-24T15:30:43Z | 2025-12-24T21:30:30Z |
| ghsa-vvm7-2r5j-f59p | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T15:30:43Z | 2025-12-24T21:30:30Z |
| ghsa-v4vp-c74m-hxxm | Missing Authorization vulnerability in Mitchell Bennis Simple File List simple-file-list allows Exp… | 2025-12-24T15:30:43Z | 2025-12-24T21:30:29Z |
| ghsa-r7mr-v7hp-8j95 | Cross-Site Request Forgery (CSRF) vulnerability in Rustaurius Five Star Restaurant Reservations res… | 2025-12-24T15:30:43Z | 2025-12-24T21:30:30Z |
| ghsa-pxr4-9wxh-g3jr | In the Linux kernel, the following vulnerability has been resolved: landlock: Fix handling of disc… | 2025-12-24T15:30:43Z | 2025-12-24T15:30:43Z |
| ghsa-mjw3-rr6r-w9h2 | In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix improper fr… | 2025-12-24T15:30:43Z | 2025-12-24T15:30:43Z |
| ghsa-jvhg-r77c-vccf | In the Linux kernel, the following vulnerability has been resolved: bpf: Fix invalid prog->stats a… | 2025-12-24T15:30:43Z | 2025-12-24T15:30:43Z |
| ghsa-j564-h633-q5h9 | Missing Authorization vulnerability in DeluxeThemes Userpro userpro allows Exploiting Incorrectly C… | 2025-12-24T15:30:43Z | 2025-12-24T21:30:30Z |
| ghsa-cwfr-r8vc-gxjq | Server-Side Request Forgery (SSRF) vulnerability in Yannick Lefebvre Link Library link-library allo… | 2025-12-24T15:30:43Z | 2025-12-24T21:30:30Z |
| ghsa-cqpf-ph48-g563 | In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Prevent potential… | 2025-12-24T15:30:43Z | 2025-12-24T15:30:43Z |
| ghsa-c6v5-xpx3-j3vp | In the Linux kernel, the following vulnerability has been resolved: ima: Handle error code returne… | 2025-12-24T15:30:43Z | 2025-12-24T15:30:43Z |
| ghsa-82m7-4386-5w76 | Missing Authorization vulnerability in Liton Arefin WP Adminify adminify allows Exploiting Incorrec… | 2025-12-24T15:30:43Z | 2025-12-24T21:30:29Z |
| ghsa-826h-4v2p-vwp5 | In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: fix null p… | 2025-12-24T15:30:43Z | 2025-12-24T15:30:43Z |
| ghsa-6mmw-6jqx-8w6x | Missing Authorization vulnerability in Liton Arefin WP Adminify adminify allows Exploiting Incorrec… | 2025-12-24T15:30:43Z | 2025-12-24T21:30:29Z |
| ghsa-6c9v-4pr2-2r8c | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T15:30:43Z | 2025-12-24T21:30:30Z |
| ghsa-5cxq-j2m3-3vhj | Missing Authorization vulnerability in Bit Apps Bit Assist bit-assist allows Exploiting Incorrectly… | 2025-12-24T15:30:43Z | 2025-12-24T21:30:30Z |
| ghsa-4p9f-jg9c-8pg6 | Missing Authorization vulnerability in Marketing Fire Editorial Calendar editorial-calendar allows … | 2025-12-24T15:30:43Z | 2025-12-24T21:30:30Z |
| ghsa-4mp2-rpmv-4xrr | In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: hisi: Fix potent… | 2025-12-24T15:30:43Z | 2025-12-24T15:30:43Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-68750 | N/A | usb: potential integer overflow in usbg_make_tpg() |
Linux |
Linux |
2025-12-24T15:51:03.141Z | 2025-12-24T15:51:03.141Z |
| cve-2025-43876 | 8.7 (v4.0) | iSTAR Ultra, Ultra SE, Ultra G2, Ultra G2 SE, iSTAR Ed… |
Johnson Controls |
iSTAR Ultra, iSTAR Ultra SE |
2025-12-24T15:27:06.898Z | 2025-12-24T16:20:55.776Z |
| cve-2025-43875 | 8.7 (v4.0) | iSTAR Ultra, Ultra SE, Ultra G2, Ultra G2 SE, iSTAR Ed… |
Johnson Controls |
iSTAR Ultra, iSTAR Ultra SE |
2025-12-24T15:19:19.145Z | 2025-12-24T16:21:31.227Z |
| cve-2025-2155 | 8.8 (v3.1) | Arbitrary File Upload in EchoCCS's Specto CM |
Echo Call Center Services Trade and Industry Inc. |
Specto CM |
2025-12-24T14:31:07.708Z | 2025-12-24T16:22:27.231Z |
| cve-2025-2154 | 5.4 (v3.1) | Stored XSS in EchoCCS's Specto CM |
Echo Call Center Services Trade and Industry Inc. |
Specto CM |
2025-12-24T14:26:47.561Z | 2025-12-24T16:23:09.149Z |
| cve-2025-68606 | N/A | WordPress PostX plugin <= 5.0.3 - Sensitive Data Expos… |
WPXPO |
PostX |
2025-12-24T13:10:48.784Z | 2025-12-24T19:27:01.170Z |
| cve-2025-68605 | N/A | WordPress Post Grid and Gutenberg Blocks plugin <= 2.3… |
PickPlugins |
Post Grid and Gutenberg Blocks |
2025-12-24T13:10:48.261Z | 2025-12-24T19:27:09.736Z |
| cve-2025-68603 | N/A | WordPress Editorial Calendar plugin <= 3.8.8 - Broken … |
Marketing Fire |
Editorial Calendar |
2025-12-24T13:10:47.744Z | 2025-12-24T19:27:16.669Z |
| cve-2025-68602 | N/A | WordPress Accept Donations with PayPal plugin <= 1.5.1… |
Scott Paterson |
Accept Donations with PayPal |
2025-12-24T13:10:47.134Z | 2025-12-24T19:27:22.742Z |
| cve-2025-68601 | N/A | WordPress Five Star Restaurant Reservations plugin <= … |
Rustaurius |
Five Star Restaurant Reservations |
2025-12-24T13:10:46.860Z | 2025-12-24T19:27:28.517Z |
| cve-2025-68600 | N/A | WordPress Link Library plugin <= 7.8.4 - Server Side R… |
Yannick Lefebvre |
Link Library |
2025-12-24T13:10:46.548Z | 2025-12-24T19:27:33.977Z |
| cve-2025-68599 | N/A | WordPress YouTube Embed plugin <= 5.4 - Cross Site Scr… |
Embeds For YouTube Plugin Support |
YouTube Embed |
2025-12-24T13:10:46.247Z | 2025-12-24T19:27:39.427Z |
| cve-2025-68598 | N/A | WordPress Page Builder: Live Composer plugin <= 2.0.5 … |
LiveComposer |
Page Builder: Live Composer |
2025-12-24T13:10:45.982Z | 2025-12-24T19:27:44.859Z |
| cve-2025-68597 | N/A | WordPress Jobs for WordPress plugin <= 2.7.17 - Cross … |
BlueGlass Interactive AG |
Jobs for WordPress |
2025-12-24T13:10:45.718Z | 2025-12-24T19:27:50.540Z |
| cve-2025-68596 | N/A | WordPress Bit Assist plugin <= 1.5.11 - Broken Access … |
Bit Apps |
Bit Assist |
2025-12-24T13:10:45.364Z | 2025-12-24T19:27:55.686Z |
| cve-2025-68595 | N/A | WordPress Widgets for Social Photo Feed plugin <= 1.7.… |
Trustindex |
Widgets for Social Photo Feed |
2025-12-24T13:10:44.856Z | 2025-12-24T19:28:01.577Z |
| cve-2025-68594 | N/A | WordPress Poll, Survey & Quiz Maker Plugin by Opinion … |
Assaf Parag |
Poll, Survey & Quiz Maker Plugin by Opinion Stage |
2025-12-24T13:10:44.556Z | 2025-12-24T19:28:08.300Z |
| cve-2025-68593 | N/A | WordPress WP Adminify plugin <= 4.0.6.1 - Broken Acces… |
Liton Arefin |
WP Adminify |
2025-12-24T13:10:44.275Z | 2025-12-24T19:28:13.749Z |
| cve-2025-68592 | N/A | WordPress WP Adminify plugin <= 4.0.6.1 - Broken Acces… |
Liton Arefin |
WP Adminify |
2025-12-24T13:10:43.992Z | 2025-12-24T19:28:20.490Z |
| cve-2025-68591 | N/A | WordPress Simple File List plugin <= 6.1.15 - Broken A… |
Mitchell Bennis |
Simple File List |
2025-12-24T13:10:43.716Z | 2025-12-24T19:28:25.578Z |
| cve-2025-68590 | N/A | WordPress Integration for Contact Form 7 HubSpot plugi… |
CRM Perks |
Integration for Contact Form 7 HubSpot |
2025-12-24T13:10:43.422Z | 2025-12-24T19:28:30.139Z |
| cve-2025-68589 | N/A | WordPress WP Telegram Widget and Join Link plugin <= 2… |
WP Socio |
WP Telegram Widget and Join Link |
2025-12-24T13:10:43.150Z | 2025-12-24T19:28:35.116Z |
| cve-2025-68588 | N/A | WordPress TS Poll plugin <= 2.5.3 - Broken Access Cont… |
totalsoft |
TS Poll |
2025-12-24T13:10:42.857Z | 2025-12-24T19:28:40.371Z |
| cve-2025-68587 | N/A | WordPress Watu Quiz plugin <= 3.4.5 - Broken Access Co… |
Bob |
Watu Quiz |
2025-12-24T13:10:42.440Z | 2025-12-24T19:28:45.997Z |
| cve-2025-68586 | N/A | WordPress Cooked plugin <= 1.11.2 - Broken Access Cont… |
Gora Tech |
Cooked |
2025-12-24T13:10:42.037Z | 2025-12-24T19:28:51.677Z |
| cve-2025-68585 | N/A | WordPress WP Document Revisions plugin <= 3.7.2 - Brok… |
Ben Balter |
WP Document Revisions |
2025-12-24T13:10:41.715Z | 2025-12-24T19:28:57.679Z |
| cve-2025-68584 | N/A | WordPress Vimeotheque plugin <= 2.3.5.2 - Cross Site R… |
Constantin Boiangiu |
Vimeotheque |
2025-12-24T13:10:41.424Z | 2025-12-24T19:29:04.076Z |
| cve-2025-68583 | N/A | WordPress Fast User Switching plugin <= 1.4.10 - Cross… |
Tikweb Management |
Fast User Switching |
2025-12-24T13:10:41.121Z | 2025-12-24T19:29:09.323Z |
| cve-2025-68582 | N/A | WordPress Funnelforms Free plugin <= 3.8 - Broken Acce… |
Funnelforms |
Funnelforms Free |
2025-12-24T13:10:40.817Z | 2025-12-24T19:29:14.885Z |
| cve-2025-68581 | N/A | WordPress YITH Slider for page builders plugin <= 1.0.… |
YITHEMES |
YITH Slider for page builders |
2025-12-24T13:10:40.513Z | 2025-12-24T19:29:20.723Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-36154 | 6.2 (v3.1) | IBM Concert Software Cleartext Storage in a File or on Disk. |
IBM |
Concert |
2025-12-24T19:01:48.161Z | 2025-12-24T20:02:34.098Z |
| cve-2025-2515 | 7.2 (v3.1) | Bluechi: privilege escalation in bluechi via unrestric… |
Eclipse Foundation |
BlueChi |
2025-12-24T16:21:54.365Z | 2025-12-24T16:48:19.891Z |
| cve-2025-68750 | N/A | usb: potential integer overflow in usbg_make_tpg() |
Linux |
Linux |
2025-12-24T15:51:03.141Z | 2025-12-24T15:51:03.141Z |
| cve-2025-43876 | 8.7 (v4.0) | iSTAR Ultra, Ultra SE, Ultra G2, Ultra G2 SE, iSTAR Ed… |
Johnson Controls |
iSTAR Ultra, iSTAR Ultra SE |
2025-12-24T15:27:06.898Z | 2025-12-24T16:20:55.776Z |
| cve-2025-43875 | 8.7 (v4.0) | iSTAR Ultra, Ultra SE, Ultra G2, Ultra G2 SE, iSTAR Ed… |
Johnson Controls |
iSTAR Ultra, iSTAR Ultra SE |
2025-12-24T15:19:19.145Z | 2025-12-24T16:21:31.227Z |
| cve-2024-40317 | N/A | A reflected cross-site scripting (XSS) vulnerabil… |
n/a |
n/a |
2025-12-24T00:00:00.000Z | 2025-12-24T21:47:08.435Z |
| cve-2024-39037 | N/A | MyNET up to v26.08.316 was discovered to contain … |
n/a |
n/a |
2025-12-24T00:00:00.000Z | 2025-12-24T21:48:23.875Z |
| cve-2024-35322 | N/A | MyNET up to v26.08 was discovered to contain a re… |
n/a |
n/a |
2025-12-24T00:00:00.000Z | 2025-12-24T16:45:02.195Z |
| cve-2025-60935 | N/A | An open redirect vulnerability in the login endpo… |
n/a |
n/a |
2025-12-24T00:00:00.000Z | 2025-12-24T16:46:21.881Z |
| cve-2025-2155 | 8.8 (v3.1) | Arbitrary File Upload in EchoCCS's Specto CM |
Echo Call Center Services Trade and Industry Inc. |
Specto CM |
2025-12-24T14:31:07.708Z | 2025-12-24T16:22:27.231Z |
| cve-2025-2154 | 5.4 (v3.1) | Stored XSS in EchoCCS's Specto CM |
Echo Call Center Services Trade and Industry Inc. |
Specto CM |
2025-12-24T14:26:47.561Z | 2025-12-24T16:23:09.149Z |
| cve-2025-5448 | N/A | {'providerMetadata': {'orgId': '53f830b8-0a3f-465b-8143-3b8a9948e749', 'shortName': 'redhat', 'dateUpdated': '2025-12-24T13:15:12.460Z'}, 'rejectedReasons': [{'lang': 'en', 'value': 'This CVE id was assigned but later discarded.'}]} | N/A | N/A | 2025-12-24T13:15:12.460Z | |
| cve-2025-68749 | N/A | accel/ivpu: Fix race condition when unbinding BOs |
Linux |
Linux |
2025-12-24T12:09:44.301Z | 2025-12-24T12:09:44.301Z |
| cve-2025-68748 | N/A | drm/panthor: Fix UAF race between device unplug and FW… |
Linux |
Linux |
2025-12-24T12:09:43.620Z | 2025-12-24T12:09:43.620Z |
| cve-2025-68747 | N/A | drm/panthor: Fix UAF on kernel BO VA nodes |
Linux |
Linux |
2025-12-24T12:09:42.925Z | 2025-12-24T12:09:42.925Z |
| cve-2025-68746 | N/A | spi: tegra210-quad: Fix timeout handling |
Linux |
Linux |
2025-12-24T12:09:42.213Z | 2025-12-24T12:09:42.213Z |
| cve-2025-68745 | N/A | scsi: qla2xxx: Clear cmds after chip reset |
Linux |
Linux |
2025-12-24T12:09:41.517Z | 2025-12-24T12:09:41.517Z |
| cve-2025-68744 | N/A | bpf: Free special fields when update [lru_,]percpu_hash maps |
Linux |
Linux |
2025-12-24T12:09:40.839Z | 2025-12-24T12:09:40.839Z |
| cve-2025-68743 | N/A | mshv: Fix create memory region overlap check |
Linux |
Linux |
2025-12-24T12:09:40.148Z | 2025-12-24T12:09:40.148Z |
| cve-2025-68742 | N/A | bpf: Fix invalid prog->stats access when update_effect… |
Linux |
Linux |
2025-12-24T12:09:39.341Z | 2025-12-24T12:09:39.341Z |
| cve-2025-68741 | N/A | scsi: qla2xxx: Fix improper freeing of purex item |
Linux |
Linux |
2025-12-24T12:09:38.655Z | 2025-12-24T12:09:38.655Z |
| cve-2025-68740 | N/A | ima: Handle error code returned by ima_filter_rule_match() |
Linux |
Linux |
2025-12-24T12:09:37.971Z | 2025-12-24T12:09:37.971Z |
| cve-2025-68739 | N/A | PM / devfreq: hisi: Fix potential UAF in OPP handling |
Linux |
Linux |
2025-12-24T12:09:37.270Z | 2025-12-24T12:09:37.270Z |
| cve-2025-68738 | N/A | wifi: mt76: mt7996: fix null pointer deref in mt7996_c… |
Linux |
Linux |
2025-12-24T12:09:36.449Z | 2025-12-24T12:09:36.449Z |
| cve-2025-68737 | N/A | arm64/pageattr: Propagate return value from __change_m… |
Linux |
Linux |
2025-12-24T12:09:35.773Z | 2025-12-24T12:09:35.773Z |
| cve-2025-68736 | N/A | landlock: Fix handling of disconnected directories |
Linux |
Linux |
2025-12-24T12:09:35.081Z | 2025-12-24T12:09:35.081Z |
| cve-2025-68735 | N/A | drm/panthor: Prevent potential UAF in group creation |
Linux |
Linux |
2025-12-24T12:09:34.364Z | 2025-12-24T12:09:34.364Z |
| cve-2025-68608 | N/A | WordPress Userpro plugin <= 5.1.9 - Broken Access Cont… |
DeluxeThemes |
Userpro |
2025-12-24T12:31:31.259Z | 2025-12-24T19:32:50.765Z |
| cve-2025-68606 | N/A | WordPress PostX plugin <= 5.0.3 - Sensitive Data Expos… |
WPXPO |
PostX |
2025-12-24T13:10:48.784Z | 2025-12-24T19:27:01.170Z |
| cve-2025-68605 | N/A | WordPress Post Grid and Gutenberg Blocks plugin <= 2.3… |
PickPlugins |
Post Grid and Gutenberg Blocks |
2025-12-24T13:10:48.261Z | 2025-12-24T19:27:09.736Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-192843 | Malicious code in node-calculator-f2af (npm) | 2025-12-23T08:22:22Z | 2025-12-23T08:22:22Z |
| mal-2025-192842 | Malicious code in node-calculator-e776 (npm) | 2025-12-23T08:22:21Z | 2025-12-23T08:22:21Z |
| mal-2025-192841 | Malicious code in node-calculator-dfd9 (npm) | 2025-12-23T08:22:20Z | 2025-12-23T08:22:20Z |
| mal-2025-192840 | Malicious code in node-calculator-bde6 (npm) | 2025-12-23T08:22:19Z | 2025-12-23T08:22:19Z |
| mal-2025-192839 | Malicious code in node-calculator-ad83 (npm) | 2025-12-23T08:22:17Z | 2025-12-23T08:22:17Z |
| mal-2025-192838 | Malicious code in node-calculator-ab44 (npm) | 2025-12-23T08:22:16Z | 2025-12-23T08:22:16Z |
| mal-2025-192837 | Malicious code in node-calculator-a34e (npm) | 2025-12-23T08:22:15Z | 2025-12-23T08:22:15Z |
| mal-2025-192836 | Malicious code in node-calculator-98ba (npm) | 2025-12-23T08:22:06Z | 2025-12-23T08:22:06Z |
| mal-2025-192835 | Malicious code in node-calculator-8f0c (npm) | 2025-12-23T08:22:05Z | 2025-12-23T08:22:05Z |
| mal-2025-192834 | Malicious code in node-calculator-7b82 (npm) | 2025-12-23T08:22:04Z | 2025-12-23T08:22:04Z |
| mal-2025-192833 | Malicious code in node-calculator-78c0 (npm) | 2025-12-23T08:22:03Z | 2025-12-23T08:22:03Z |
| mal-2025-192832 | Malicious code in node-calculator-73dd (npm) | 2025-12-23T08:22:02Z | 2025-12-23T08:22:02Z |
| mal-2025-192831 | Malicious code in node-calculator-603e (npm) | 2025-12-23T08:22:01Z | 2025-12-23T08:22:01Z |
| mal-2025-192830 | Malicious code in node-calculator-5b8f (npm) | 2025-12-23T08:22:00Z | 2025-12-23T08:22:00Z |
| mal-2025-192829 | Malicious code in node-calculator-40ed (npm) | 2025-12-23T08:21:52Z | 2025-12-23T08:21:52Z |
| mal-2025-192828 | Malicious code in node-calculator-2eb4 (npm) | 2025-12-23T08:21:51Z | 2025-12-23T08:21:51Z |
| mal-2025-192827 | Malicious code in node-calculator-290c (npm) | 2025-12-23T08:21:50Z | 2025-12-23T08:21:50Z |
| mal-2025-192826 | Malicious code in node-calculator-190a (npm) | 2025-12-23T08:21:50Z | 2025-12-23T08:21:50Z |
| mal-2025-192825 | Malicious code in no-use-extend-native (npm) | 2025-12-23T08:21:48Z | 2025-12-23T08:21:48Z |
| mal-2025-192824 | Malicious code in no-unsanitized (npm) | 2025-12-23T08:21:47Z | 2025-12-23T08:21:47Z |
| mal-2025-192823 | Malicious code in nintendo-test (npm) | 2025-12-23T08:21:45Z | 2025-12-23T08:21:45Z |
| mal-2025-192822 | Malicious code in ke-moma2 (npm) | 2025-12-23T08:18:31Z | 2025-12-23T08:18:31Z |
| mal-2025-192821 | Malicious code in ke-moma (npm) | 2025-12-23T08:18:30Z | 2025-12-23T08:18:30Z |
| mal-2025-192820 | Malicious code in karem6 (npm) | 2025-12-23T08:18:30Z | 2025-12-23T08:18:30Z |
| mal-2025-192819 | Malicious code in jz-user-js-bridge (npm) | 2025-12-23T08:18:20Z | 2025-12-23T08:18:20Z |
| mal-2025-192818 | Malicious code in jz-ui-user (npm) | 2025-12-23T08:18:20Z | 2025-12-23T08:18:20Z |
| mal-2025-192817 | Malicious code in jz-native-js-bridge (npm) | 2025-12-23T08:18:18Z | 2025-12-23T08:18:18Z |
| mal-2025-192816 | Malicious code in jsxswap (npm) | 2025-12-23T08:18:15Z | 2025-12-23T08:18:15Z |
| mal-2025-192815 | Malicious code in jstoauto (npm) | 2025-12-23T08:18:15Z | 2025-12-23T08:18:15Z |
| mal-2025-192814 | Malicious code in jsswapper (npm) | 2025-12-23T08:18:14Z | 2025-12-23T08:18:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-2391 | OpenBao: Mehrere Schwachstellen | 2025-10-22T22:00:00.000+00:00 | 2025-10-23T22:00:00.000+00:00 |
| wid-sec-w-2025-2390 | PowerDNS Recursor: Mehrere Schwachstellen ermöglichen Manipulation von Dateien | 2025-10-22T22:00:00.000+00:00 | 2025-10-29T23:00:00.000+00:00 |
| wid-sec-w-2025-2388 | MongoDB: Schwachstelle ermöglicht Privilegieneskalation | 2025-10-22T22:00:00.000+00:00 | 2025-10-23T22:00:00.000+00:00 |
| wid-sec-w-2025-2386 | Unbound: Schwachstelle ermöglicht Manipulation von Dateien | 2025-10-22T22:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2025-2385 | Drupal Module: Mehrere Schwachstellen | 2025-10-22T22:00:00.000+00:00 | 2025-10-29T23:00:00.000+00:00 |
| wid-sec-w-2025-2379 | Dell BIOS: Schwachstelle ermöglicht Manipulation von Daten | 2025-10-21T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2375 | Google Chrome: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2025-10-21T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2370 | Oracle Systems: Mehrere Schwachstellen | 2025-10-21T22:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-2365 | Oracle Java SE: Mehrere Schwachstellen | 2025-10-21T22:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2363 | Oracle MySQL: Mehrere Schwachstellen | 2025-10-21T22:00:00.000+00:00 | 2025-11-20T23:00:00.000+00:00 |
| wid-sec-w-2025-2361 | Oracle Communications: Mehrere Schwachstellen | 2025-10-21T22:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-2360 | Oracle Communications Applications: Mehrere Schwachstellen | 2025-10-21T22:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-2350 | Linux Kernel: Mehrere Schwachstellen | 2025-10-20T22:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2025-2344 | Checkmk: Schwachstelle ermöglicht Cross-Site Scripting | 2025-10-20T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2339 | ImageMagick (BMP decoder): Schwachstelle ermöglicht Denial of Service | 2025-10-19T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2334 | Squid: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen und Offenlegung von Informationen | 2025-10-16T22:00:00.000+00:00 | 2025-11-02T23:00:00.000+00:00 |
| wid-sec-w-2025-2325 | xpdf: Schwachstelle ermöglicht Denial of Service | 2025-10-16T22:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2322 | Samba: Mehrere Schwachstellen | 2025-10-15T22:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2025-2317 | Ubiquiti UniFi: Schwachstelle ermöglicht Ausführung von Debug-Funktionen | 2025-10-15T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2311 | Red Hat Enterprise Linux (libsoup3): Schwachstelle ermöglicht Offenlegung von Informationen | 2025-10-15T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2307 | Microsoft Windows: Mehrere Schwachstellen | 2025-10-14T22:00:00.000+00:00 | 2025-11-05T23:00:00.000+00:00 |
| wid-sec-w-2025-2301 | Red Hat Enterprise Linux: Mehrere Schwachstellen | 2025-10-14T22:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2300 | Google Chrome/Microsoft Edge: Schwachstelle ermöglicht Codeausführung | 2025-10-14T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2298 | Linux Kernel: Mehrere Schwachstellen | 2025-10-14T22:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2275 | Mozilla Firefox: Mehrere Schwachstellen | 2025-10-14T22:00:00.000+00:00 | 2025-10-29T23:00:00.000+00:00 |
| wid-sec-w-2025-2274 | Veeam Backup & Replication: Mehrere Schwachstellen | 2025-10-13T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2272 | Moodle: Mehrere Schwachstellen | 2025-10-13T22:00:00.000+00:00 | 2025-10-23T22:00:00.000+00:00 |
| wid-sec-w-2025-2269 | WebKitGTK: Schwachstelle ermöglicht Denial of Service und potenziell Codeausführung | 2025-10-13T22:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2025-2268 | Linux Kernel: Mehrere Schwachstellen | 2025-10-13T22:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2251 | Red Hat OpenShift GitOps: Mehrere Schwachstellen | 2025-10-09T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| ssa-197270 | SSA-197270: Information Disclosure Vulnerability in Siemens OPC UA Modeling Editor (SiOME) | 2023-11-14T00:00:00Z | 2023-11-14T00:00:00Z |
| ssa-150063 | SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 | 2023-11-14T00:00:00Z | 2023-11-14T00:00:00Z |
| ssa-137900 | SSA-137900: Multiple Vulnerabilities in COMOS | 2023-11-14T00:00:00Z | 2023-11-14T00:00:00Z |
| ssa-099606 | SSA-099606: Multiple Vulnerabilities in SIMATIC MV500 before V3.3.5 | 2023-11-14T00:00:00Z | 2023-11-14T00:00:00Z |
| ssa-084182 | SSA-084182: Privilege Escalation Vulnerability in Mendix Runtime | 2023-11-14T00:00:00Z | 2023-11-14T00:00:00Z |
| ssa-843070 | SSA-843070: Multiple Vulnerabilities in SCALANCE W1750D | 2023-10-10T00:00:00Z | 2023-10-10T00:00:00Z |
| ssa-784849 | SSA-784849: Direct Memory Access Vulnerabilities in SIMATIC CP Devices | 2023-10-10T00:00:00Z | 2023-10-10T00:00:00Z |
| ssa-524778 | SSA-524778: File Parsing Vulnerabilities in Tecnomatix Plant Simulation | 2023-10-10T00:00:00Z | 2023-10-10T00:00:00Z |
| ssa-386812 | SSA-386812: Remote Code Execution Vulnerability in Simcenter Amesim before V2021.1 | 2023-10-10T00:00:00Z | 2023-10-10T00:00:00Z |
| ssa-295483 | SSA-295483: User Enumeration Vulnerability in Mendix Forgot Password Module | 2023-10-10T00:00:00Z | 2023-10-10T00:00:00Z |
| ssa-134651 | SSA-134651: Hard Coded SSH ID in CPCI85 Firmware of SICAM A8000 Devices | 2023-10-10T00:00:00Z | 2023-10-10T00:00:00Z |
| ssa-646240 | SSA-646240: Sensitive Information Disclosure in SIMATIC PCS neo Administration Console | 2023-09-14T00:00:00Z | 2023-09-14T00:00:00Z |
| ssa-357182 | SSA-357182: Local Privilege Escalation Vulnerability in Spectrum Power 7 | 2023-09-14T00:00:00Z | 2023-09-14T00:00:00Z |
| ssa-981975 | SSA-981975: Information Disclosure Vulnerability in Intel-CPUs (CVE-2022-40982) Impacting SIMATIC IPCs | 2023-09-12T00:00:00Z | 2024-12-10T00:00:00Z |
| ssa-957369 | SSA-957369: Insyde BIOS Vulnerabilities in RUGGEDCOM APE1808 Product Family | 2023-09-12T00:00:00Z | 2023-09-12T00:00:00Z |
| ssa-711309 | SSA-711309: Denial of Service Vulnerability in the OPC UA Implementations of SIMATIC Products | 2023-09-12T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-147266 | SSA-147266: Multiple Vulnerabilities in QMS Automotive before V12.39 | 2023-09-12T00:00:00Z | 2023-09-12T00:00:00Z |
| ssa-811403 | SSA-811403: Multiple File Parsing Vulnerabilities in Solid Edge before V223 Update 7 | 2023-08-08T00:00:00Z | 2023-08-08T00:00:00Z |
| ssa-472630 | SSA-472630: Security Vulnerabilities Fixed in RUGGEDCOM CROSSBOW V5.4 | 2023-08-08T00:00:00Z | 2023-08-08T00:00:00Z |
| ssa-264815 | SSA-264815: Type Confusion Vulnerability in OpenSSL X.400 Address Processing in SIMATIC Products | 2023-08-08T00:00:00Z | 2024-12-10T00:00:00Z |
| ssa-264814 | SSA-264814: Timing Based Side Channel Vulnerability in the OpenSSL RSA Decryption in SIMATIC Products | 2023-08-08T00:00:00Z | 2024-12-10T00:00:00Z |
| ssa-188491 | SSA-188491: DLL Hijacking Vulnerabilities in Siemens Software Center | 2023-08-08T00:00:00Z | 2023-08-08T00:00:00Z |
| ssa-131450 | SSA-131450: File parsing Vulnerabilities in Solid Edge, JT2Go and Teamcenter Visualization | 2023-08-08T00:00:00Z | 2023-08-08T00:00:00Z |
| ssa-116172 | SSA-116172: Nullsoft Scriptable Install System (NSIS) Vulnerability (CVE-2023-37378) in Parasolid Installer | 2023-08-08T00:00:00Z | 2023-08-08T00:00:00Z |
| ssa-001569 | SSA-001569: JT File Parsing Vulnerabilities in JT Open, JT Utilities and Parasolid | 2023-08-08T00:00:00Z | 2023-08-08T00:00:00Z |
| ssa-924149 | SSA-924149: Stack Overflow Vulnerability in SiPass Integrated before V2.90.3.8 | 2023-07-11T00:00:00Z | 2023-07-11T00:00:00Z |
| ssa-764801 | SSA-764801: File Parsing Vulnerabilities in Tecnomatix Plant Simulation | 2023-07-11T00:00:00Z | 2023-09-12T00:00:00Z |
| ssa-942865 | SSA-942865: Multiple Vulnerabilities in the Integrated SCALANCE S615 of SINAMICS Medium Voltage Products | 2023-06-13T00:00:00Z | 2023-06-14T00:00:00Z |
| ssa-887249 | SSA-887249: Multiple Vulnerabilities in the Web Interface of SICAM Q200 Devices | 2023-06-13T00:00:00Z | 2023-06-13T00:00:00Z |
| ssa-731916 | SSA-731916: Multiple Vulnerabilities in CPCI85 Firmware of SICAM A8000 Devices | 2023-06-13T00:00:00Z | 2023-06-13T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:21664 | Red Hat Security Advisory: libsoup security update | 2025-11-18T09:00:50+00:00 | 2025-11-25T10:22:50+00:00 |
| rhsa-2025:21657 | Red Hat Security Advisory: libsoup security update | 2025-11-18T06:04:55+00:00 | 2025-11-25T10:22:59+00:00 |
| rhsa-2025:21656 | Red Hat Security Advisory: libsoup security update | 2025-11-18T05:54:05+00:00 | 2025-11-25T10:22:51+00:00 |
| rhsa-2025:21655 | Red Hat Security Advisory: libsoup security update | 2025-11-18T05:47:45+00:00 | 2025-11-25T10:22:52+00:00 |
| rhsa-2025:21634 | Red Hat Security Advisory: buildah security update | 2025-11-18T00:31:14+00:00 | 2025-11-27T17:38:13+00:00 |
| rhsa-2025:21633 | Red Hat Security Advisory: buildah security update | 2025-11-18T00:16:49+00:00 | 2025-11-27T17:38:13+00:00 |
| rhsa-2025:21628 | Red Hat Security Advisory: lasso security update | 2025-11-17T22:28:49+00:00 | 2025-11-21T19:31:45+00:00 |
| rhsa-2025:21563 | Red Hat Security Advisory: kernel security update | 2025-11-17T16:15:24+00:00 | 2025-11-21T19:31:47+00:00 |
| rhsa-2025:21562 | Red Hat Security Advisory: openssl security update | 2025-11-17T15:32:48+00:00 | 2025-11-25T21:29:40+00:00 |
| rhsa-2025:19864 | Red Hat Security Advisory: OpenShift Container Platform 4.18.28 bug fix and security update | 2025-11-17T15:14:48+00:00 | 2025-11-27T17:37:51+00:00 |
| rhsa-2025:21507 | Red Hat Security Advisory: libtiff security update | 2025-11-17T12:08:42+00:00 | 2025-11-24T21:04:37+00:00 |
| rhsa-2025:21508 | Red Hat Security Advisory: libtiff security update | 2025-11-17T12:02:18+00:00 | 2025-11-24T21:04:37+00:00 |
| rhsa-2025:21506 | Red Hat Security Advisory: libtiff security update | 2025-11-17T11:38:53+00:00 | 2025-11-24T21:04:37+00:00 |
| rhsa-2025:21492 | Red Hat Security Advisory: kernel security update | 2025-11-17T10:31:28+00:00 | 2025-11-21T19:31:43+00:00 |
| rhsa-2025:21485 | Red Hat Security Advisory: java-25-openjdk security update | 2025-11-17T09:55:42+00:00 | 2025-11-26T15:08:01+00:00 |
| rhsa-2025:21469 | Red Hat Security Advisory: kernel security update | 2025-11-17T09:52:08+00:00 | 2025-11-25T03:05:49+00:00 |
| rhsa-2025:21463 | Red Hat Security Advisory: kernel security update | 2025-11-17T08:34:08+00:00 | 2025-11-24T09:02:07+00:00 |
| rhsa-2025:21462 | Red Hat Security Advisory: lasso security update | 2025-11-17T08:20:47+00:00 | 2025-11-21T19:31:41+00:00 |
| rhsa-2025:21452 | Red Hat Security Advisory: lasso security update | 2025-11-17T07:38:07+00:00 | 2025-11-21T19:31:40+00:00 |
| rhsa-2025:21448 | Red Hat Security Advisory: python-kdcproxy security update | 2025-11-17T06:19:12+00:00 | 2025-11-27T03:24:28+00:00 |
| rhsa-2025:21407 | Red Hat Security Advisory: libtiff security update | 2025-11-17T01:24:48+00:00 | 2025-11-24T21:04:37+00:00 |
| rhsa-2025:21398 | Red Hat Security Advisory: kernel security update | 2025-11-17T00:57:51+00:00 | 2025-11-21T19:31:37+00:00 |
| rhsa-2025:21403 | Red Hat Security Advisory: lasso security update | 2025-11-17T00:56:21+00:00 | 2025-11-21T19:31:39+00:00 |
| rhsa-2025:21406 | Red Hat Security Advisory: lasso security update | 2025-11-17T00:50:51+00:00 | 2025-11-21T19:31:40+00:00 |
| rhsa-2025:21404 | Red Hat Security Advisory: lasso security update | 2025-11-17T00:48:11+00:00 | 2025-11-21T19:31:39+00:00 |
| rhsa-2025:21400 | Red Hat Security Advisory: lasso security update | 2025-11-17T00:47:22+00:00 | 2025-11-21T19:31:38+00:00 |
| rhsa-2025:21405 | Red Hat Security Advisory: lasso security update | 2025-11-17T00:45:08+00:00 | 2025-11-21T19:31:39+00:00 |
| rhsa-2025:21401 | Red Hat Security Advisory: lasso security update | 2025-11-17T00:45:06+00:00 | 2025-11-21T19:31:38+00:00 |
| rhsa-2025:21402 | Red Hat Security Advisory: lasso security update | 2025-11-17T00:42:01+00:00 | 2025-11-21T19:31:39+00:00 |
| rhsa-2025:21397 | Red Hat Security Advisory: kernel-rt security update | 2025-11-17T00:41:31+00:00 | 2025-11-21T19:31:37+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-68327 | usb: renesas_usbhs: Fix synchronous external abort on unbind | 2025-12-02T00:00:00.000Z | 2025-12-24T01:01:46.000Z |
| msrc_cve-2025-68324 | scsi: imm: Fix use-after-free bug caused by unfinished delayed work | 2025-12-02T00:00:00.000Z | 2025-12-20T01:01:19.000Z |
| msrc_cve-2025-68322 | parisc: Avoid crash due to unaligned access in unwinder | 2025-12-02T00:00:00.000Z | 2025-12-18T01:02:37.000Z |
| msrc_cve-2025-68318 | clk: thead: th1520-ap: set all AXI clocks to CLK_IS_CRITICAL | 2025-12-02T00:00:00.000Z | 2025-12-18T01:03:46.000Z |
| msrc_cve-2025-68317 | io_uring/zctx: check chained notif contexts | 2025-12-02T00:00:00.000Z | 2025-12-18T01:03:25.000Z |
| msrc_cve-2025-68315 | f2fs: fix to detect potential corrupted nid in free_nid_list | 2025-12-02T00:00:00.000Z | 2025-12-18T01:04:13.000Z |
| msrc_cve-2025-68313 | x86/CPU/AMD: Add RDSEED fix for Zen5 | 2025-12-02T00:00:00.000Z | 2025-12-18T01:02:58.000Z |
| msrc_cve-2025-68311 | tty: serial: ip22zilog: Use platform device for probing | 2025-12-02T00:00:00.000Z | 2025-12-18T01:03:19.000Z |
| msrc_cve-2025-68309 | PCI/AER: Fix NULL pointer access by aer_info | 2025-12-02T00:00:00.000Z | 2025-12-18T01:03:30.000Z |
| msrc_cve-2025-68308 | can: kvaser_usb: leaf: Fix potential infinite loop in command parsers | 2025-12-02T00:00:00.000Z | 2025-12-18T01:03:57.000Z |
| msrc_cve-2025-68307 | can: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs | 2025-12-02T00:00:00.000Z | 2025-12-18T01:02:42.000Z |
| msrc_cve-2025-68304 | Bluetooth: hci_core: lookup hci_conn on RX path on protocol side | 2025-12-02T00:00:00.000Z | 2025-12-18T01:03:36.000Z |
| msrc_cve-2025-68303 | platform/x86: intel: punit_ipc: fix memory corruption | 2025-12-02T00:00:00.000Z | 2025-12-18T01:03:09.000Z |
| msrc_cve-2025-68302 | net: sxgbe: fix potential NULL dereference in sxgbe_rx() | 2025-12-02T00:00:00.000Z | 2025-12-18T01:04:24.000Z |
| msrc_cve-2025-68301 | net: atlantic: fix fragment overflow handling in RX path | 2025-12-02T00:00:00.000Z | 2025-12-18T01:03:41.000Z |
| msrc_cve-2025-68297 | ceph: fix crash in process_v2_sparse_read() for encrypted directories | 2025-12-02T00:00:00.000Z | 2025-12-18T01:02:32.000Z |
| msrc_cve-2025-68296 | drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup | 2025-12-02T00:00:00.000Z | 2025-12-18T01:04:08.000Z |
| msrc_cve-2025-68295 | smb: client: fix memory leak in cifs_construct_tcon() | 2025-12-02T00:00:00.000Z | 2025-12-18T01:02:53.000Z |
| msrc_cve-2025-68290 | most: usb: fix double free on late probe failure | 2025-12-02T00:00:00.000Z | 2025-12-18T01:03:51.000Z |
| msrc_cve-2025-68289 | usb: gadget: f_eem: Fix memory leak in eem_unwrap | 2025-12-02T00:00:00.000Z | 2025-12-18T01:04:18.000Z |
| msrc_cve-2025-68288 | usb: storage: Fix memory leak in USB bulk transport | 2025-12-02T00:00:00.000Z | 2025-12-18T01:03:03.000Z |
| msrc_cve-2025-68287 | usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths | 2025-12-02T00:00:00.000Z | 2025-12-18T01:04:02.000Z |
| msrc_cve-2025-68286 | drm/amd/display: Check NULL before accessing | 2025-12-02T00:00:00.000Z | 2025-12-18T01:02:48.000Z |
| msrc_cve-2025-68285 | libceph: fix potential use-after-free in have_mon_and_osd_map() | 2025-12-02T00:00:00.000Z | 2025-12-18T01:02:21.000Z |
| msrc_cve-2025-68284 | libceph: prevent potential out-of-bounds writes in handle_auth_session_key() | 2025-12-02T00:00:00.000Z | 2025-12-18T01:03:14.000Z |
| msrc_cve-2025-68283 | libceph: replace BUG_ON with bounds check for map->max_osd | 2025-12-02T00:00:00.000Z | 2025-12-18T01:02:26.000Z |
| msrc_cve-2025-68282 | usb: gadget: udc: fix use-after-free in usb_gadget_state_work | 2025-12-02T00:00:00.000Z | 2025-12-18T01:01:13.000Z |
| msrc_cve-2025-68281 | ASoC: SDCA: bug fix while parsing mipi-sdca-control-cn-list | 2025-12-02T00:00:00.000Z | 2025-12-17T01:05:14.000Z |
| msrc_cve-2025-68266 | bfs: Reconstruct file type when loading from disk | 2025-12-02T00:00:00.000Z | 2025-12-17T01:02:31.000Z |
| msrc_cve-2025-68265 | nvme: fix admin request_queue lifetime | 2025-12-02T00:00:00.000Z | 2025-12-17T01:04:00.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-25-205-01 | Mitsubishi Electric CNC Series (Update A) | 2025-07-24T06:00:00.000000Z | 2025-12-02T07:00:00.000000Z |
| icsa-25-294-04 | Siemens RUGGEDCOM ROS Devices | 2025-07-08T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-25-177-01 | Mitsubishi Electric Air Conditioning Systems (Update B) | 2025-06-26T06:00:00.000000Z | 2025-12-23T07:00:00.000000Z |
| icsa-25-162-02 | Siemens RUGGEDCOM APE1808 | 2025-06-10T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-25-148-03 | Consilium Safety CS5000 Fire Panel (Update A) | 2025-05-29T06:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-148-01 | Siemens SiPass | 2025-05-23T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-25-140-04 | Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electric Products (Update B) | 2025-05-20T06:00:00.000000Z | 2025-08-28T06:00:00.000000Z |
| icsa-25-140-08 | Schneider Electric Modicon Controllers (Update B) | 2025-05-13T04:00:00.000000Z | 2025-10-14T07:00:00.000000Z |
| icsa-25-135-17 | Siemens RUGGEDCOM ROX II | 2025-05-13T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-25-135-15 | Siemens Mendix OIDC SSO | 2025-05-13T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-25-135-09 | Siemens User Management Component (UMC) | 2025-05-13T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-25-135-05 | Siemens SIPROTEC and SICAM | 2025-05-13T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-25-072-11 | Siemens SIMATIC IPC Family, ITP1000, and Field PGs | 2025-03-11T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-25-044-06 | Siemens RUGGEDCOM APE1808 Devices | 2025-02-11T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-25-044-04 | Siemens SIPROTEC 5 | 2025-02-11T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-25-037-02 | Schneider Electric EcoStruxure (Update C) | 2025-02-06T07:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| icsa-25-035-07 | Schneider Electric Pro-face GP-Pro EX and Remote HMI (Update A) | 2025-01-14T00:00:00.000000Z | 2025-09-09T04:00:00.000000Z |
| icsa-25-016-04 | Siemens SIPROTEC 5 Products | 2025-01-14T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-24-354-07 | Schneider Electric Modicon Controllers (Update A) | 2024-12-19T07:00:00.000000Z | 2025-10-21T06:00:00.000000Z |
| icsa-24-352-04 | Schneider Electric Modicon | 2024-12-10T05:00:00.000000Z | 2025-10-14T07:00:00.000000Z |
| icsa-24-347-02 | Siemens Engineering Platforms | 2024-12-10T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-24-291-03 | Mitsubishi Electric CNC Series (Update C) | 2024-10-17T06:00:00.000000Z | 2025-12-18T07:00:00.000000Z |
| icsa-24-284-10 | Siemens SIMATIC S7-1500 CPUs | 2024-10-08T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-24-284-01 | Siemens SIMATIC S7-1500 and S7-1200 CPUs | 2024-10-08T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-24-256-16 | Siemens Third-Party Component in SICAM and SITIPE Products | 2024-09-10T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-24-256-03 | Siemens User Management Component (UMC) | 2024-09-10T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-24-193-14 | Siemens SIPROTEC | 2024-07-09T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-24-193-05 | Siemens SCALANCE, RUGGEDCOM | 2024-07-09T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-24-193-02 | Siemens RUGGEDCOM APE 1808 | 2024-07-09T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-24-121-01 | Delta Electronics CNCSoft-G2 DOPSoft (Update A) | 2024-04-30T06:00:00.000000Z | 2025-10-16T06:00:00.000000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2025-000034 | Multiple vulnerabilities in wivia 5 | 2025-05-30T15:57+09:00 | 2025-05-30T15:57+09:00 |
| jvndb-2025-000032 | Mailform Pro CGI generating error messages containing sensitive information | 2025-05-26T14:22+09:00 | 2025-05-26T14:22+09:00 |
| jvndb-2025-000033 | Improper pattern file validation in i-FILTER optional feature 'Anti-Virus & Sandbox' | 2025-05-23T15:36+09:00 | 2025-05-23T15:36+09:00 |
| jvndb-2025-005467 | Passback vulnerabilities in Canon Production Printers, Office/Small Office Multifunction Printers, and Laser Printers | 2025-05-22T15:03+09:00 | 2025-05-22T15:03+09:00 |
| jvndb-2025-005107 | Multiple vulnerabilities in V-SFT | 2025-05-16T14:32+09:00 | 2025-05-16T14:32+09:00 |
| jvndb-2025-005057 | Multiple vulnerabilities in I-O DATA network attached hard disk 'HDL-T Series' | 2025-05-15T18:27+09:00 | 2025-05-15T18:27+09:00 |
| jvndb-2025-005050 | Multiple vulnerabilities in a-blog cms | 2025-05-15T18:11+09:00 | 2025-05-15T18:11+09:00 |
| jvndb-2025-000031 | Pgpool-II vulnerable to authentication bypass by primary weakness | 2025-05-15T16:14+09:00 | 2025-05-15T16:14+09:00 |
| jvndb-2025-004863 | Panasonic IR Control Hub vulnerable to Unauthorised firmware loading | 2025-05-14T11:30+09:00 | 2025-05-14T11:30+09:00 |
| jvndb-2025-000030 | Reflected cross-site scripting vulnerability in multiple laser printers and MFPs which implement Ricoh Web Image Monitor | 2025-05-12T18:00+09:00 | 2025-07-17T10:06+09:00 |
| jvndb-2025-004671 | Multiple vulnerabilities in GL-MT2500 and GL-MT2500A | 2025-05-12T17:52+09:00 | 2025-05-12T17:52+09:00 |
| jvndb-2025-004079 | Improper access permission settings in multiple SEIKO EPSON printer drivers for Windows OS | 2025-04-30T11:46+09:00 | 2025-04-30T11:46+09:00 |
| jvndb-2025-004076 | Security Update for Trend Micro Trend Vision One (April 2025) | 2025-04-30T10:38+09:00 | 2025-04-30T10:38+09:00 |
| jvndb-2025-000029 | Multiple vulnerabilities in Quick Agent | 2025-04-25T13:49+09:00 | 2025-04-25T13:49+09:00 |
| jvndb-2025-000028 | i-PRO Configuration Tool vulnerable to use of hard-coded cryptographic key | 2025-04-24T13:50+09:00 | 2025-04-24T13:50+09:00 |
| jvndb-2025-000027 | Active! mail vulnerable to stack-based buffer overflow | 2025-04-18T16:50+09:00 | 2025-04-18T16:50+09:00 |
| jvndb-2025-003213 | TP-Link Deco BE65 Pro vulnerable to OS command injection | 2025-04-11T13:52+09:00 | 2025-04-11T13:52+09:00 |
| jvndb-2025-000026 | Multiple vulnerabilities in BizRobo! | 2025-04-10T15:36+09:00 | 2025-04-10T15:36+09:00 |
| jvndb-2025-003091 | Multiple vulnerabilities in Trend Micro Endpoint security products for enterprises (April 2025) | 2025-04-09T14:55+09:00 | 2025-04-09T14:55+09:00 |
| jvndb-2025-002990 | Multiple vulnerabilities in Inaba Denki Sangyo Wi-Fi AP UNIT 'AC-WPS-11ac series' | 2025-04-07T17:44+09:00 | 2025-04-07T17:44+09:00 |
| jvndb-2025-000025 | WinRAR vulnerable to the symbolic link based "Mark of the Web" check bypass | 2025-04-03T12:29+09:00 | 2025-04-03T12:29+09:00 |
| jvndb-2025-000022 | Multiple vulnerabilities in JTEKT ELECTRONICS CORPORATION's products | 2025-04-02T15:12+09:00 | 2025-04-02T15:12+09:00 |
| jvndb-2025-002790 | Out-of-bounds Write vulnerabilities in Canon Printer Drivers for Production Printers, Office/Small Office Multifunction Printers and Laser Printers | 2025-04-02T15:05+09:00 | 2025-04-02T15:05+09:00 |
| jvndb-2025-000023 | WordPress plugin "Welcart e-Commerce" vulnerable to untrusted data deserialization | 2025-04-01T14:20+09:00 | 2025-04-01T14:20+09:00 |
| jvndb-2025-002714 | Improper symbolic link file handling in FutureNet NXR series, VXR series and WXR series routers | 2025-03-31T16:59+09:00 | 2025-04-03T15:19+09:00 |
| jvndb-2025-000024 | a-blog cms vulnerable to untrusted data deserialization | 2025-03-28T10:46+09:00 | 2025-03-28T10:46+09:00 |
| jvndb-2025-000021 | Multiple vulnerabilities in PowerCMS | 2025-03-26T18:13+09:00 | 2025-03-26T18:13+09:00 |
| jvndb-2025-002592 | Multiple vulnerabilities in CHOCO TEI WATCHER mini | 2025-03-26T13:25+09:00 | 2025-03-26T13:25+09:00 |
| jvndb-2025-000019 | Multiple vulnerabilities in AssetView | 2025-03-25T17:10+09:00 | 2025-03-25T17:10+09:00 |
| jvndb-2025-000018 | Multiple vulnerabilities in home gateway HGW-BL1500HM | 2025-03-19T15:33+09:00 | 2025-03-28T11:48+09:00 |
| ID | Description | Updated |
|---|