Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-qr6v-84mv-g36r | In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_acm: Refactor b… | 2025-10-30T12:31:09Z | 2025-10-30T12:31:10Z |
| ghsa-m33j-r627-qphr | In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix recursive locking i… | 2025-10-30T12:31:09Z | 2025-10-30T12:31:09Z |
| ghsa-gq9j-j338-8fvx | In the Linux kernel, the following vulnerability has been resolved: ixgbe: fix too early devlink_f… | 2025-10-30T12:31:09Z | 2025-10-30T12:31:09Z |
| ghsa-c72w-7535-v29m | In the Linux kernel, the following vulnerability has been resolved: cxl/features: Add check for no… | 2025-10-30T12:31:09Z | 2025-10-30T12:31:09Z |
| ghsa-9gj3-hmj4-wf3x | In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix slab-out-of-bound… | 2025-10-30T12:31:09Z | 2025-10-30T12:31:09Z |
| ghsa-7jm9-29fh-9vrx | In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_ecm: Refactor b… | 2025-10-30T12:31:09Z | 2025-10-30T12:31:09Z |
| ghsa-68rx-wr32-vgh2 | In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_ncm: Refactor b… | 2025-10-30T12:31:09Z | 2025-10-30T12:31:09Z |
| ghsa-527r-239p-grh5 | In the Linux kernel, the following vulnerability has been resolved: NFSD: Define a proc_layoutcomm… | 2025-10-30T12:31:09Z | 2025-10-30T12:31:09Z |
| ghsa-j8q5-7w54-24xj | In the Linux kernel, the following vulnerability has been resolved: drm/xe: Don't allow evicting o… | 2025-10-30T12:31:08Z | 2025-10-30T12:31:09Z |
| ghsa-g429-pfpf-366c | A vulnerability exists in Progress Flowmon versions prior 12.5.6 where certain system configuration… | 2025-10-30T09:30:28Z | 2025-10-30T09:30:28Z |
| ghsa-p249-r59g-9mxg | The AppPresser – Mobile App Framework plugin for WordPress is vulnerable to unauthorized access of … | 2025-10-30T09:30:27Z | 2025-10-30T09:30:27Z |
| ghsa-892r-x96w-jh76 | A flaw was discovered in the X.Org X server’s X Keyboard (Xkb) extension when handling client resou… | 2025-10-30T06:30:54Z | 2025-11-11T21:30:28Z |
| ghsa-v3px-8gvp-39x8 | The Translate WordPress and go Multilingual – Weglot plugin for WordPress is vulnerable to unauthor… | 2025-10-30T06:30:53Z | 2025-10-30T06:30:53Z |
| ghsa-h4r4-6hvf-34r8 | A flaw was identified in the X.Org X server’s X Keyboard (Xkb) extension where improper bounds chec… | 2025-10-30T06:30:53Z | 2025-11-11T21:30:27Z |
| ghsa-c6m9-cmc6-g435 | The Blocksy Companion plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plu… | 2025-10-30T06:30:53Z | 2025-10-30T06:30:53Z |
| ghsa-95fm-5hch-ccgx | The Site Checkup Debug AI Troubleshooting with Wizard and Tips for Each Issue plugin for WordPress … | 2025-10-30T06:30:53Z | 2025-10-30T06:30:54Z |
| ghsa-4hfm-xmwc-7ffw | The NS Maintenance Mode for WP WordPress plugin through 1.3.1 does not sanitise and escape some of … | 2025-10-30T06:30:53Z | 2025-10-30T15:32:36Z |
| ghsa-49pm-cgmh-hw25 | A flaw was found in the X.Org X server and Xwayland when processing X11 Present extension notificat… | 2025-10-30T06:30:53Z | 2025-11-11T21:30:27Z |
| ghsa-x957-32v9-m7vg | Drupal Acquia DAM allows Forceful Browsing | 2025-10-30T00:31:04Z | 2025-10-30T17:06:28Z |
| ghsa-jqmq-fpwv-p925 | Drupal Simple OAuth (OAuth2) & OpenID Connect allows Authentication Bypass | 2025-10-30T00:31:04Z | 2025-10-30T17:06:19Z |
| ghsa-h72q-cq3w-h3wc | Drupal CivicTheme Design System allows Cross-Site Scripting (XSS) | 2025-10-30T00:31:04Z | 2025-10-30T17:06:12Z |
| ghsa-8hw3-ghwv-crfh | Liferay Portal vulnerable to password enumeration | 2025-10-30T00:31:04Z | 2025-10-30T17:07:13Z |
| ghsa-wcw9-47fp-rrfr | The Reader.ReadResponse function constructs a response string through repeated string concatenation… | 2025-10-30T00:31:03Z | 2025-11-05T00:31:32Z |
| ghsa-rjcg-56ph-3qvg | Despite HTTP headers having a default limit of 1MB, the number of cookies that can be parsed does n… | 2025-10-30T00:31:03Z | 2025-11-05T00:31:31Z |
| ghsa-qxr9-f877-9842 | Drupal CivicTheme Design System allows Forceful Browsing | 2025-10-30T00:31:03Z | 2025-10-30T17:06:06Z |
| ghsa-qh38-484v-w52x | The ParseAddress function constructeds domain-literal address components through repeated string co… | 2025-10-30T00:31:03Z | 2025-11-05T00:31:32Z |
| ghsa-pr6m-qwrr-mrw9 | Drupal Plausible tracking is vulnerable to XSS | 2025-10-30T00:31:03Z | 2025-10-30T17:10:58Z |
| ghsa-m3f2-xjgc-2wp2 | Drupal JSON Field is vulnerable to XSS | 2025-10-30T00:31:03Z | 2025-10-30T17:11:06Z |
| ghsa-jxp8-4jw5-5xjc | Drupal Umami Analytics allows Cross-Site Scripting (XSS) | 2025-10-30T00:31:03Z | 2025-10-30T17:05:32Z |
| ghsa-hjx7-fpxx-mj48 | The processing time for parsing some invalid inputs scales non-linearly with respect to the size of… | 2025-10-30T00:31:03Z | 2025-11-05T00:31:31Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-46423 | 7.8 (v3.1) | Dell Unity, version(s) 5.5 and prior, contain(s) … |
Dell |
Unity |
2025-10-30T14:14:47.745Z | 2025-10-31T03:55:24.553Z |
| cve-2025-43027 | 9.8 (v3.1) | A critical severity vulnerability has been identi… |
Genetec Inc. |
Genetec Security Center |
2025-10-30T14:12:27.918Z | 2025-10-31T03:55:30.389Z |
| cve-2025-43939 | 7.8 (v3.1) | Dell Unity, version(s) 5.4 and prior, contain(s) … |
Dell |
Unity |
2025-10-30T14:10:14.508Z | 2025-10-31T03:55:21.085Z |
| cve-2025-43940 | 7.8 (v3.1) | Dell Unity, version(s) 5.5 and Prior, contain(s) … |
Dell |
Unity |
2025-10-30T14:05:17.818Z | 2025-10-31T03:55:21.915Z |
| cve-2025-43941 | 7.2 (v3.1) | Dell Unity, version(s) 5.5 and Prior, contain(s) … |
Dell |
Unity |
2025-10-30T13:57:25.065Z | 2025-10-31T03:55:29.572Z |
| cve-2025-10348 | 5.1 (v4.0) | Stored Cross-Site Scripting in URVE Smart Office |
Eveo |
URVE Smart Office |
2025-10-30T13:00:43.106Z | 2025-10-30T14:26:38.615Z |
| cve-2025-10317 | 5.1 (v4.0) | Multiple Cross-Site Request Forgery in Quick.Cart |
OpenSolution |
Quick.Cart |
2025-10-30T11:48:43.747Z | 2025-10-30T13:14:48.997Z |
| cve-2025-53883 | 9.3 (v4.0) | spacewalk-java has various XSS issues on search page |
SUSE |
Container suse manager 5.0 |
2025-10-30T10:50:07.580Z | 2025-10-31T03:55:20.245Z |
| cve-2025-39663 | Cross Site Scripting through compromised remote site |
Checkmk GmbH |
Checkmk |
2025-10-30T10:43:08.500Z | 2025-11-07T16:04:27.994Z | |
| cve-2025-53880 | 8.7 (v4.0) | susemanager-tftpsync-recv allows arbitrary file creati… |
SUSE |
Container suse/manager/4.3/proxy-httpd:latest |
2025-10-30T10:31:15.866Z | 2025-10-31T03:55:25.371Z |
| cve-2025-40105 | N/A | vfs: Don't leak disconnected dentries on umount |
Linux |
Linux |
2025-10-30T09:48:09.674Z | 2025-10-30T09:48:09.674Z |
| cve-2025-40104 | N/A | ixgbevf: fix mailbox API compatibility by negotiating … |
Linux |
Linux |
2025-10-30T09:48:09.051Z | 2025-10-30T09:48:09.051Z |
| cve-2025-40103 | N/A | smb: client: Fix refcount leak for cifs_sb_tlink |
Linux |
Linux |
2025-10-30T09:48:08.421Z | 2025-10-30T09:48:08.421Z |
| cve-2025-40102 | N/A | KVM: arm64: Prevent access to vCPU events before init |
Linux |
Linux |
2025-10-30T09:48:07.790Z | 2025-10-30T09:48:07.790Z |
| cve-2025-40101 | N/A | btrfs: fix memory leaks when rejecting a non SINGLE da… |
Linux |
Linux |
2025-10-30T09:48:07.155Z | 2025-10-30T09:48:07.155Z |
| cve-2025-40100 | N/A | btrfs: do not assert we found block group item when cr… |
Linux |
Linux |
2025-10-30T09:48:06.521Z | 2025-10-30T09:48:06.521Z |
| cve-2025-40099 | N/A | cifs: parse_dfs_referrals: prevent oob on malformed input |
Linux |
Linux |
2025-10-30T09:48:05.859Z | 2025-10-30T09:48:05.859Z |
| cve-2025-40098 | N/A | ALSA: hda: cs35l41: Fix NULL pointer dereference in cs… |
Linux |
Linux |
2025-10-30T09:48:05.200Z | 2025-10-30T09:48:05.200Z |
| cve-2025-40097 | N/A | ALSA: hda: Fix missing pointer check in hda_component_… |
Linux |
Linux |
2025-10-30T09:48:04.567Z | 2025-10-30T09:48:04.567Z |
| cve-2025-40096 | N/A | drm/sched: Fix potential double free in drm_sched_job_… |
Linux |
Linux |
2025-10-30T09:48:03.954Z | 2025-10-30T09:48:03.954Z |
| cve-2025-40095 | N/A | usb: gadget: f_rndis: Refactor bind path to use __free() |
Linux |
Linux |
2025-10-30T09:48:03.276Z | 2025-10-30T09:48:03.276Z |
| cve-2025-40094 | N/A | usb: gadget: f_acm: Refactor bind path to use __free() |
Linux |
Linux |
2025-10-30T09:48:02.446Z | 2025-10-30T09:48:02.446Z |
| cve-2025-40093 | N/A | usb: gadget: f_ecm: Refactor bind path to use __free() |
Linux |
Linux |
2025-10-30T09:48:00.807Z | 2025-10-30T09:48:00.807Z |
| cve-2025-40092 | N/A | usb: gadget: f_ncm: Refactor bind path to use __free() |
Linux |
Linux |
2025-10-30T09:47:59.910Z | 2025-10-30T09:47:59.910Z |
| cve-2025-40091 | N/A | ixgbe: fix too early devlink_free() in ixgbe_remove() |
Linux |
Linux |
2025-10-30T09:47:59.253Z | 2025-10-30T09:47:59.253Z |
| cve-2025-40090 | N/A | ksmbd: fix recursive locking in RPC handle list access |
Linux |
Linux |
2025-10-30T09:47:58.611Z | 2025-10-30T09:47:58.611Z |
| cve-2025-40089 | N/A | cxl/features: Add check for no entries in cxl_feature_info |
Linux |
Linux |
2025-10-30T09:47:57.990Z | 2025-10-30T09:47:57.990Z |
| cve-2025-40088 | N/A | hfsplus: fix slab-out-of-bounds read in hfsplus_strcasecmp() |
Linux |
Linux |
2025-10-30T09:47:57.333Z | 2025-10-30T09:47:57.333Z |
| cve-2025-40087 | N/A | NFSD: Define a proc_layoutcommit for the FlexFiles lay… |
Linux |
Linux |
2025-10-30T09:47:56.675Z | 2025-10-30T09:47:56.675Z |
| cve-2025-40086 | N/A | drm/xe: Don't allow evicting of BOs in same VM in arra… |
Linux |
Linux |
2025-10-30T09:47:56.005Z | 2025-10-30T09:47:56.005Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-61498 | N/A | A buffer overflow in the UPnP service of Tenda AC… |
n/a |
n/a |
2025-10-30T00:00:00.000Z | 2025-10-30T21:01:04.959Z |
| cve-2025-61141 | N/A | sqls-server/sqls 0.2.28 is vulnerable to command … |
n/a |
n/a |
2025-10-30T00:00:00.000Z | 2025-10-30T21:02:01.794Z |
| cve-2025-3356 | 8.6 (v3.1) | IBM Tivoli Monitoring is vulnerable to unauthenticated… |
IBM |
Tivoli Monitoring |
2025-10-30T19:22:37.371Z | 2025-10-30T19:41:12.149Z |
| cve-2025-3355 | 7.5 (v3.1) | IBM Tivoli Monitoring is vulnerable to unauthenticated… |
IBM |
Tivoli Monitoring |
2025-10-30T19:21:42.496Z | 2025-10-30T19:51:08.264Z |
| cve-2025-63422 | N/A | Incorrect access control in the Web management in… |
n/a |
n/a |
2025-10-30T00:00:00.000Z | 2025-10-30T20:58:32.148Z |
| cve-2025-63298 | N/A | A path traversal vulnerability was identified in … |
n/a |
n/a |
2025-10-30T00:00:00.000Z | 2025-10-30T20:57:36.156Z |
| cve-2025-62265 | 4.8 (v4.0) | Cross-site scripting (XSS) vulnerability in the B… |
Liferay |
Portal |
2025-10-30T18:30:35.960Z | 2025-10-30T19:04:48.068Z |
| cve-2025-57109 | N/A | Kitware VTK (Visualization Toolkit) 9.5.0 is vuln… |
n/a |
n/a |
2025-10-30T00:00:00.000Z | 2025-10-30T20:56:40.033Z |
| cve-2025-52180 | N/A | Cross-site scripting (XSS) vulnerability in Zucch… |
n/a |
n/a |
2025-10-30T00:00:00.000Z | 2025-10-31T19:32:37.108Z |
| cve-2025-52179 | N/A | Cross-site scripting (XSS) vulnerability in Zucch… |
n/a |
n/a |
2025-10-30T00:00:00.000Z | 2025-11-03T20:36:53.894Z |
| cve-2025-36137 | 7.2 (v3.1) | IBM Sterling Connect:Direct for UNIX command execution |
IBM |
Sterling Connect:Direct for Unix |
2025-10-30T18:53:32.576Z | 2025-11-01T03:55:53.155Z |
| cve-2025-64118 | node-tar vulnerable to race condition leading to unini… |
isaacs |
node-tar |
2025-10-30T17:50:20.421Z | 2025-10-30T18:42:19.663Z | |
| cve-2025-64116 | Movary vulnerable to an open redirect |
leepeuker |
movary |
2025-10-30T17:32:41.434Z | 2025-10-31T16:50:03.914Z | |
| cve-2025-64115 | Movary unvalidated Referer header allows open redirect… |
leepeuker |
movary |
2025-10-30T17:39:19.330Z | 2025-10-30T19:06:23.834Z | |
| cve-2025-64112 | Statmatic vulnerable to Stored Cross-Site Scripting |
statamic |
cms |
2025-10-30T17:47:01.280Z | 2025-10-30T17:58:06.993Z | |
| cve-2025-62266 | 5.1 (v4.0) | By default, Liferay Portal 7.4.0 through 7.4.3.11… |
Liferay |
Portal |
2025-10-30T17:37:21.375Z | 2025-10-30T19:06:43.671Z |
| cve-2025-56313 | N/A | A Reflected Cross-Site Scripting (XSS) vulnerabil… |
n/a |
n/a |
2025-10-30T00:00:00.000Z | 2025-10-30T18:22:04.335Z |
| cve-2025-64096 | CryptoLib vulnerable to Stack Buffer Overflow in Crypt… |
nasa |
CryptoLib |
2025-10-30T17:09:24.240Z | 2025-10-30T18:16:02.552Z | |
| cve-2025-63885 | N/A | A stored cross-site scripting (XSS) vulnerability… |
n/a |
n/a |
2025-10-30T00:00:00.000Z | 2025-10-30T18:27:03.667Z |
| cve-2025-62795 | JumpServer Unauthorized LDAP Configuration Access via … |
jumpserver |
jumpserver |
2025-10-30T16:56:09.321Z | 2025-10-31T18:37:42.071Z | |
| cve-2025-62726 | n8n Vulnerable to Remote Code Execution via Git Node P… |
n8n-io |
n8n |
2025-10-30T16:24:11.484Z | 2025-10-31T18:19:31.619Z | |
| cve-2025-61196 | N/A | An issue in BusinessNext CRMnext v.10.8.3.0 allow… |
n/a |
n/a |
2025-10-30T00:00:00.000Z | 2025-10-31T14:42:04.943Z |
| cve-2025-61121 | N/A | Mobile Scanner Android App version 2.12.38 (packa… |
n/a |
n/a |
2025-10-30T00:00:00.000Z | 2025-10-30T20:53:59.183Z |
| cve-2025-61120 | N/A | AG Life Logger Android App version v1.0.2.72 and … |
n/a |
n/a |
2025-10-30T00:00:00.000Z | 2025-10-30T20:52:38.303Z |
| cve-2025-61119 | N/A | Kanova Android App version 1.0.27 (package name c… |
n/a |
n/a |
2025-10-30T00:00:00.000Z | 2025-10-30T20:49:42.126Z |
| cve-2025-61114 | N/A | 2nd Line Android App version v1.2.92 and before (… |
n/a |
n/a |
2025-10-30T00:00:00.000Z | 2025-10-30T20:46:47.109Z |
| cve-2025-60950 | N/A | An arbitrary file upload vulnerability in the Dat… |
n/a |
n/a |
2025-10-30T00:00:00.000Z | 2025-10-30T20:55:24.054Z |
| cve-2025-60319 | N/A | PerfreeBlog v4.0.11 is vulnerable to Server-Side … |
n/a |
n/a |
2025-10-30T00:00:00.000Z | 2025-10-30T20:51:08.362Z |
| cve-2025-12060 | 8.9 (v4.0) | Keras keras.utils.get_file Utility Path Traversal Vuln… |
Keras |
Keras |
2025-10-30T17:10:43.868Z | 2025-11-01T03:55:52.355Z |
| cve-2025-62712 | JumpServer Connection Token Leak Vulnerability |
jumpserver |
jumpserver |
2025-10-30T16:08:32.669Z | 2025-10-31T17:42:40.815Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-188551 | Malicious code in panspermia-zenobia-cryonics-galaxy (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188550 | Malicious code in panspermia-winston-phoebe-adonis (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188549 | Malicious code in panspermia-seismology-yildun-figures (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188548 | Malicious code in panspermia-panspermia-polaris-charon (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188547 | Malicious code in panspermia-oscillation-bioinformatics-superflare (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188546 | Malicious code in panspermia-cygnus-planckscale-supercluster (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188545 | Malicious code in panspermia-atlas-vortex-chakra-ui (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188544 | Malicious code in palynology-ultra-biomimicry-markdownlint (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188543 | Malicious code in palynology-singularity-multiverse-writable (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188542 | Malicious code in palynology-semantic-release-pulsar-wormhole (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188541 | Malicious code in palynology-isostasy-protractor-non-blocking (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188540 | Malicious code in palynology-cybernetics-schema-hapi (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188539 | Malicious code in paleontology-tailwindcss-tethys-jekyll (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188538 | Malicious code in paleontology-sublimation-europa-backend (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188537 | Malicious code in paleontology-sedna-enif-sync (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188536 | Malicious code in paleontology-saturnology-standard-pipe (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188535 | Malicious code in paleontology-mensa-altair-exec (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188534 | Malicious code in paleontology-lyra-hercules-protractor (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188533 | Malicious code in paleontology-luminescence-less-hermes (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188532 | Malicious code in paleontology-acamar-steganography-commitlint (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188531 | Malicious code in paleomagnetism-public-quito-redis (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188530 | Malicious code in paleomagnetism-process-rigel-ariel (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188529 | Malicious code in paleomagnetism-playwright-blackhole-izar (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188528 | Malicious code in paleomagnetism-nightmare-radiant-hologram (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188527 | Malicious code in paleomagnetism-neptune-jsonp-postgres (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188526 | Malicious code in paleomagnetism-levels-rocket-dependencies (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188525 | Malicious code in paleomagnetism-izar-gacrux-kaus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188524 | Malicious code in paleomagnetism-dysonswarm-async-remark (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188523 | Malicious code in paleomagnetism-callisto-areology-exec (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188522 | Malicious code in paleoecology-webdriver-manager-cli-outercore (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:7494 | Red Hat Security Advisory: tomcat9 security update | 2025-05-13T16:02:04+00:00 | 2025-11-11T16:06:01+00:00 |
| rhsa-2025:7475 | Red Hat Security Advisory: grafana security update | 2025-05-13T16:00:56+00:00 | 2025-11-14T11:01:58+00:00 |
| rhsa-2025:7484 | Red Hat Security Advisory: gvisor-tap-vsock security update | 2025-05-13T16:00:36+00:00 | 2025-11-14T04:51:33+00:00 |
| rhsa-2025:7476 | Red Hat Security Advisory: python-jinja2 security update | 2025-05-13T15:59:43+00:00 | 2025-11-13T17:26:59+00:00 |
| rhsa-2025:7506 | Red Hat Security Advisory: firefox security update | 2025-05-13T15:59:41+00:00 | 2025-11-06T23:15:29+00:00 |
| rhsa-2025:7466 | Red Hat Security Advisory: delve and golang security update | 2025-05-13T15:59:41+00:00 | 2025-11-13T16:46:31+00:00 |
| rhsa-2025:7505 | Red Hat Security Advisory: libsoup3 security update | 2025-05-13T15:59:34+00:00 | 2025-11-06T23:15:29+00:00 |
| rhsa-2025:7496 | Red Hat Security Advisory: libxslt security update | 2025-05-13T15:59:34+00:00 | 2025-11-06T22:36:00+00:00 |
| rhsa-2025:7491 | Red Hat Security Advisory: firefox security update | 2025-05-13T15:59:29+00:00 | 2025-11-06T23:15:28+00:00 |
| rhsa-2025:7508 | Red Hat Security Advisory: java-21-openjdk security update | 2025-05-13T15:59:19+00:00 | 2025-11-14T04:31:43+00:00 |
| rhsa-2025:7499 | Red Hat Security Advisory: ghostscript security update | 2025-05-13T15:59:08+00:00 | 2025-11-14T11:18:32+00:00 |
| rhsa-2025:7444 | Red Hat Security Advisory: expat security update | 2025-05-13T14:13:46+00:00 | 2025-11-07T18:40:26+00:00 |
| rhsa-2025:7440 | Red Hat Security Advisory: vim security update | 2025-05-13T14:13:21+00:00 | 2025-11-06T23:05:47+00:00 |
| rhsa-2025:7423 | Red Hat Security Advisory: kernel security update | 2025-05-13T14:12:11+00:00 | 2025-11-11T16:17:54+00:00 |
| rhsa-2025:7430 | Red Hat Security Advisory: yelp security update | 2025-05-13T14:03:16+00:00 | 2025-11-11T12:11:41+00:00 |
| rhsa-2025:7438 | Red Hat Security Advisory: redis security update | 2025-05-13T14:02:28+00:00 | 2025-11-14T00:56:17+00:00 |
| rhsa-2025:7433 | Red Hat Security Advisory: nodejs:22 security update | 2025-05-13T14:02:21+00:00 | 2025-11-06T23:15:28+00:00 |
| rhsa-2025:7429 | Red Hat Security Advisory: redis:7 security update | 2025-05-13T14:02:16+00:00 | 2025-11-14T00:56:17+00:00 |
| rhsa-2025:7436 | Red Hat Security Advisory: libsoup security update | 2025-05-13T14:01:06+00:00 | 2025-11-06T23:15:28+00:00 |
| rhsa-2025:7402 | Red Hat Security Advisory: nginx security update | 2025-05-13T14:00:41+00:00 | 2025-11-06T21:44:07+00:00 |
| rhsa-2025:7432 | Red Hat Security Advisory: php:8.2 security update | 2025-05-13T14:00:01+00:00 | 2025-11-06T22:02:37+00:00 |
| rhsa-2025:7431 | Red Hat Security Advisory: php security update | 2025-05-13T13:59:41+00:00 | 2025-11-06T23:24:26+00:00 |
| rhsa-2025:7428 | Red Hat Security Advisory: firefox security update | 2025-05-13T13:59:41+00:00 | 2025-11-06T23:15:28+00:00 |
| rhsa-2025:7419 | Red Hat Security Advisory: mod_auth_openidc security update | 2025-05-13T13:59:17+00:00 | 2025-11-11T09:51:05+00:00 |
| rhsa-2025:7418 | Red Hat Security Advisory: php:8.3 security update | 2025-05-13T13:59:16+00:00 | 2025-11-06T23:24:26+00:00 |
| rhsa-2025:7404 | Red Hat Security Advisory: grafana security update | 2025-05-13T13:59:07+00:00 | 2025-11-14T11:01:55+00:00 |
| rhsa-2025:7416 | Red Hat Security Advisory: gvisor-tap-vsock security update | 2025-05-13T13:59:06+00:00 | 2025-11-14T04:51:31+00:00 |
| rhsa-2025:7422 | Red Hat Security Advisory: ghostscript security update | 2025-05-13T13:58:46+00:00 | 2025-11-14T11:18:32+00:00 |
| rhsa-2025:7417 | Red Hat Security Advisory: gimp security update | 2025-05-13T13:58:26+00:00 | 2025-11-06T23:05:46+00:00 |
| rhsa-2025:7425 | Red Hat Security Advisory: osbuild-composer security update | 2025-05-13T13:57:39+00:00 | 2025-11-14T11:01:58+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2024-57938 | net/sctp: Prevent autoclose integer overflow in sctp_association_init() | 2025-01-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-57933 | gve: guard XSK operations on the existence of queues | 2025-01-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-57926 | drm/mediatek: Set private->all_drm_private[i]->drm to NULL if mtk_drm_bind returns err | 2025-01-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-57925 | ksmbd: fix a missing return value check bug | 2025-01-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-57924 | fs: relax assertions on failure to encode file handles | 2025-01-02T00:00:00.000Z | 2025-09-28T01:02:02.000Z |
| msrc_cve-2024-57922 | drm/amd/display: Add check for granularity in dml ceil/floor helpers | 2025-01-02T00:00:00.000Z | 2025-05-05T00:00:00.000Z |
| msrc_cve-2024-57916 | misc: microchip: pci1xxxx: Resolve kernel panic during GPIO IRQ handling | 2025-01-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-57913 | usb: gadget: f_fs: Remove WARN_ON in functionfs_bind | 2025-01-02T00:00:00.000Z | 2025-05-05T00:00:00.000Z |
| msrc_cve-2024-57912 | iio: pressure: zpa2326: fix information leak in triggered buffer | 2025-01-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-57911 | iio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer | 2025-01-02T00:00:00.000Z | 2025-05-05T00:00:00.000Z |
| msrc_cve-2024-57910 | iio: light: vcnl4035: fix information leak in triggered buffer | 2025-01-02T00:00:00.000Z | 2025-05-05T00:00:00.000Z |
| msrc_cve-2024-57908 | iio: imu: kmx61: fix information leak in triggered buffer | 2025-01-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-57907 | iio: adc: rockchip_saradc: fix information leak in triggered buffer | 2025-01-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-57906 | iio: adc: ti-ads8688: fix information leak in triggered buffer | 2025-01-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-57902 | af_packet: fix vlan_get_tci() vs MSG_PEEK | 2025-01-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-57901 | af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK | 2025-01-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-57900 | ila: serialize calls to nf_register_net_hooks() | 2025-01-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-57899 | wifi: mac80211: fix mbss changed flags corruption on 32 bit systems | 2025-01-02T00:00:00.000Z | 2025-10-19T01:01:38.000Z |
| msrc_cve-2024-57898 | wifi: cfg80211: clear link ID from bitmap during link delete after clean up | 2025-01-02T00:00:00.000Z | 2025-09-04T00:46:51.000Z |
| msrc_cve-2024-57896 | btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount | 2025-01-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-57895 | ksmbd: set ATTR_CTIME flags when setting mtime | 2025-01-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-57893 | ALSA: seq: oss: Fix races at processing SysEx messages | 2025-01-02T00:00:00.000Z | 2025-09-28T01:01:57.000Z |
| msrc_cve-2024-57892 | ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv | 2025-01-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-57890 | RDMA/uverbs: Prevent integer overflow issue | 2025-01-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-57888 | workqueue: Do not warn when cancelling WQ_MEM_RECLAIM work from !WQ_MEM_RECLAIM worker | 2025-01-02T00:00:00.000Z | 2025-10-22T01:02:36.000Z |
| msrc_cve-2024-57887 | drm: adv7511: Fix use-after-free in adv7533_attach_dsi() | 2025-01-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-57882 | mptcp: fix TCP options overflow. | 2025-01-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-57876 | drm/dp_mst: Fix resetting msg rx state after topology removal | 2025-01-02T00:00:00.000Z | 2025-09-28T01:01:52.000Z |
| msrc_cve-2024-57875 | block: RCU protect disk->conv_zones_bitmap | 2025-01-02T00:00:00.000Z | 2025-09-03T23:34:39.000Z |
| msrc_cve-2024-57874 | arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL | 2025-01-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2015-001268 | Cross-site Scripting Vulnerability in Hitachi Command Suite Products | 2015-02-16T11:12+09:00 | 2015-03-03T16:59+09:00 |
| jvndb-2015-000016 | Smartphone Passbook for Android information management vulnerability | 2015-02-13T14:33+09:00 | 2015-05-21T10:05+09:00 |
| jvndb-2015-000015 | Smartphone Passbook fails to verify SSL server certificates | 2015-02-13T14:32+09:00 | 2018-03-07T13:50+09:00 |
| jvndb-2015-000014 | PerlTreeBBS vulnerable to cross-site scripting | 2015-02-13T13:58+09:00 | 2015-02-13T13:58+09:00 |
| jvndb-2015-000013 | shiromuku(u1)GUESTBOOK vulnerable to cross-site scripting | 2015-02-13T13:58+09:00 | 2015-02-13T13:58+09:00 |
| jvndb-2015-000001 | Cybozu Remote Service Manager vulnerable to denial-of-service (DoS) | 2015-01-30T14:19+09:00 | 2015-01-30T14:19+09:00 |
| jvndb-2015-000010 | Fumy News Clipper vulnerable to cross-site scripting | 2015-01-30T13:52+09:00 | 2015-02-16T15:55+09:00 |
| jvndb-2015-000007 | Arbitrary files may be overwritten in multiple VMware products | 2015-01-29T13:52+09:00 | 2015-02-16T15:34+09:00 |
| jvndb-2015-000012 | Multiple ASUS wireless LAN routers vulnerable to cross-site request forgery | 2015-01-27T14:24+09:00 | 2015-06-17T16:42+09:00 |
| jvndb-2015-000011 | Multiple ASUS wireless LAN routers vulnerable to OS command injection | 2015-01-27T14:23+09:00 | 2015-06-17T16:42+09:00 |
| jvndb-2015-000009 | NP-BBRM vulnerable in UPnP functionality | 2015-01-26T13:42+09:00 | 2015-08-18T14:36+09:00 |
| jvndb-2015-000008 | shiromuku(bu2)BBS vulnerable to arbitrary file creation | 2015-01-23T14:22+09:00 | 2015-02-13T09:51+09:00 |
| jvndb-2015-000006 | SYNCK GRAPHICA Download Log CGI vulnerable to directory traversal | 2015-01-19T13:54+09:00 | 2015-02-13T15:09+09:00 |
| jvndb-2014-000152 | WBS Gantt-Chart for JIRA vulnerable to cross-site scripting | 2014-12-18T14:49+09:00 | 2014-12-22T17:33+09:00 |
| jvndb-2014-000151 | WBS Gantt-Chart for JIRA vulnerable to cross-site scripting | 2014-12-18T14:48+09:00 | 2014-12-22T17:30+09:00 |
| jvndb-2014-000132 | Multiple Allied Telesis products vulnerable to buffer overflow | 2014-12-18T14:47+09:00 | 2015-01-28T17:38+09:00 |
| jvndb-2014-000124 | TSUTAYA App for Android vulnerable to arbitrary Java method execution | 2014-12-18T13:41+09:00 | 2014-12-22T17:52+09:00 |
| jvndb-2014-005987 | Multiple Vulnerabilities in JP1/Cm2/Network Node Manager i | 2014-12-16T17:31+09:00 | 2016-02-26T17:52+09:00 |
| jvndb-2014-005986 | Multiple buffer overflows in Hitachi JP1/Cm2/Network Node Manager i | 2014-12-16T17:30+09:00 | 2016-02-26T17:32+09:00 |
| jvndb-2014-000150 | LinPHA vulnerable to cross-site scripting | 2014-12-12T13:48+09:00 | 2014-12-16T17:07+09:00 |
| jvndb-2014-000149 | Chyrp vulnerable to cross-site scripting | 2014-12-10T14:18+09:00 | 2014-12-15T18:06+09:00 |
| jvndb-2014-000146 | i-HTTPD vulnerable to cross-site scripting | 2014-12-09T14:45+09:00 | 2014-12-09T14:45+09:00 |
| jvndb-2014-000145 | "Omake BBS" of i-HTTPD vulnerable to cross-site scripting | 2014-12-09T14:44+09:00 | 2014-12-15T19:16+09:00 |
| jvndb-2014-000144 | i-HTTPD vulnerable to cross-site scripting | 2014-12-09T14:41+09:00 | 2014-12-16T17:09+09:00 |
| jvndb-2014-000143 | "File Upload BBS" of i-HTTPD vulnerable to remote command execution | 2014-12-09T14:40+09:00 | 2014-12-16T17:10+09:00 |
| jvndb-2014-000148 | Kaku-San-Sei Million Arthur for Android information management vulnerability | 2014-12-04T12:28+09:00 | 2014-12-08T16:05+09:00 |
| jvndb-2014-000147 | KENT-WEB Clip Board vulnerable to cross-site scripting | 2014-12-04T12:22+09:00 | 2014-12-08T16:03+09:00 |
| jvndb-2014-000142 | DBD::PgPP vulnerable to SQL injection | 2014-12-03T15:09+09:00 | 2014-12-03T15:09+09:00 |
| jvndb-2014-000140 | LG Electronics mobile access routers lack access restrictions | 2014-12-02T14:27+09:00 | 2014-12-08T16:07+09:00 |
| jvndb-2014-000139 | ARROWS Me F-11D vulnerability where arbitrary areas may be accessed | 2014-12-02T14:26+09:00 | 2014-12-08T16:06+09:00 |
| ID | Description | Updated |
|---|