Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-vjvx-2q28-pjv2 | Use after free in V8 in Google Chrome prior to 96.0.4664.110 allowed a remote attacker to potential… | 2022-02-13T00:00:25Z | 2025-10-22T00:32:29Z |
| ghsa-m236-5q24-77fq | Infinite loop in RTMPT protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows de… | 2022-02-15T00:02:42Z | 2025-11-04T00:30:31Z |
| ghsa-3mj9-r4cx-8mx5 | Crash in the CMS protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial o… | 2022-02-15T00:02:43Z | 2025-11-04T00:30:30Z |
| ghsa-f9cx-48m4-2xp7 | Unaligned access in the CSN.1 protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 al… | 2022-02-15T00:02:43Z | 2025-11-04T00:30:30Z |
| ghsa-rrrg-823g-x93p | Crash in the PVFS protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial … | 2022-02-15T00:02:43Z | 2025-11-04T00:30:30Z |
| ghsa-jj6m-8486-6rg2 | Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. | 2022-02-15T00:02:47Z | 2025-11-03T21:30:38Z |
| ghsa-m45p-jcfh-3c2x | Heap-based Buffer Overflow in Conda vim prior to 8.2. | 2022-02-15T00:03:20Z | 2025-11-03T21:30:37Z |
| ghsa-8v55-rm6p-87p5 | The implementations of SAE in hostapd before 2.10 and wpa_supplicant before 2.10 are vulnerable to … | 2022-02-15T00:03:24Z | 2025-11-03T21:30:37Z |
| ghsa-fwqr-qx2m-vqxq | The implementations of EAP-pwd in hostapd before 2.10 and wpa_supplicant before 2.10 are vulnerable… | 2022-02-15T00:03:24Z | 2025-11-03T21:30:37Z |
| ghsa-2259-5mcv-w35h | In SVGPP SVG++ library 1.3.0, the XMLDocument::getRoot function in the renderDocument function hand… | 2022-02-16T00:01:42Z | 2025-11-03T18:31:10Z |
| ghsa-285h-2jh7-f2xq | Stack overflow in PJSUA API when calling pjsua_playlist_create. An attacker-controlled 'file_names'… | 2022-02-17T00:00:25Z | 2025-11-04T18:30:38Z |
| ghsa-qxcw-ffrq-8vcm | Stack overflow in PJSUA API when calling pjsua_player_create. An attacker-controlled 'filename' arg… | 2022-02-17T00:00:26Z | 2025-11-04T18:30:37Z |
| ghsa-qq7v-ccww-8wh3 | Read out-of-bounds in PJSUA API when calling pjsua_recorder_create. An attacker-controlled 'filenam… | 2022-02-17T00:00:27Z | 2025-11-04T18:30:38Z |
| ghsa-xqp8-79vm-66m9 | Stack overflow in PJSUA API when calling pjsua_recorder_create. An attacker-controlled 'filename' a… | 2022-02-17T00:00:27Z | 2025-11-04T18:30:37Z |
| ghsa-7c49-j253-wq5r | It was found that polkit could be tricked into bypassing the credential checks for D-Bus requests, … | 2022-02-17T00:00:28Z | 2025-10-22T00:32:30Z |
| ghsa-f8fv-f786-9933 | Magento improper input validation vulnerability | 2022-02-17T00:00:29Z | 2025-10-22T19:14:04Z |
| ghsa-5wgx-qvpv-2353 | A Remote Command Execution (RCE) vulnerability exists in all series H/W revisions D-link DIR-810L, … | 2022-02-18T00:00:32Z | 2025-10-22T00:32:30Z |
| ghsa-8v38-pw62-9cw2 | url-parse Incorrectly parses URLs that include an '@' | 2022-02-18T00:00:33Z | 2025-12-20T03:15:43Z |
| ghsa-9wpj-h5jq-88p9 | It was discovered, that redis, a persistent key-value database, due to a packaging issue, is prone … | 2022-02-19T00:01:03Z | 2025-10-22T00:32:30Z |
| ghsa-gpmp-x3gj-4qx8 | Large loops in multiple protocol dissectors in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allow d… | 2022-02-19T00:01:28Z | 2025-11-04T00:30:31Z |
| ghsa-qwhp-2gp7-qhfq | A double-free was found in the way 389-ds-base handles virtual attributes context in persistent sea… | 2022-02-19T00:01:29Z | 2025-11-03T21:30:38Z |
| ghsa-9hgh-v7v7-5f66 | In autofile Audio File Library 0.3.6, there exists one memory leak vulnerability in printfileinfo, … | 2022-02-25T00:01:05Z | 2025-11-03T21:30:38Z |
| ghsa-8x27-645q-g2rv | WatchGuard Firebox and XTM appliances allow a remote attacker with unprivileged credentials to acce… | 2022-02-25T00:01:06Z | 2025-10-22T00:32:30Z |
| ghsa-grqq-3jqg-g95p | Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize. | 2022-03-04T00:00:16Z | 2025-11-03T21:30:38Z |
| ghsa-5xgr-wq7f-67xj | A buffer overflow vulnerability exists in FRRouting through 8.1.0 due to missing a check on the inp… | 2022-03-04T00:00:17Z | 2025-11-04T18:30:38Z |
| ghsa-6w5w-27h7-6r2x | A buffer overflow vulnerability exists in FRRouting through 8.1.0 due to a wrong check on the input… | 2022-03-04T00:00:17Z | 2025-11-04T18:30:38Z |
| ghsa-54p4-8qjr-jvgc | Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to wrong checks on the subtlv … | 2022-03-04T00:00:18Z | 2025-11-04T18:30:38Z |
| ghsa-9hg8-8wq3-mhhg | Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to wrong checks on the input p… | 2022-03-04T00:00:18Z | 2025-11-04T18:30:38Z |
| ghsa-fjww-grc5-6wh6 | An Arm product family through 2022-01-03 has an Exposed Dangerous Method or Function. | 2022-03-04T00:00:18Z | 2025-10-22T00:32:30Z |
| ghsa-mv8p-w8jf-x9q9 | Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to the use of strdup with a no… | 2022-03-04T00:00:18Z | 2025-11-04T18:30:38Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2014-7169 | N/A | GNU Bash through 4.3 bash43-025 processes trailin… |
n/a |
n/a |
2014-09-25T01:00:00.000Z | 2025-10-22T00:05:36.027Z |
| cve-2014-6278 | N/A | GNU Bash through 4.3 bash43-026 does not properly… |
n/a |
n/a |
2014-09-30T10:00:00.000Z | 2025-10-22T00:05:35.846Z |
| cve-2014-5410 | 7.1 (v2.0) | Rockwell Automation Micrologix 1400 Improper Input Val… |
Rockwell Automation |
Allen-Bradley MicroLogix 1400 |
2014-10-03T18:00:00 | 2025-11-04T22:30:19.113Z |
| cve-2014-6287 | N/A | The findMacroMarker function in parserLib.pas in … |
n/a |
n/a |
2014-10-07T10:00:00.000Z | 2025-10-22T00:05:35.677Z |
| cve-2014-4113 | N/A | win32k.sys in the kernel-mode drivers in Microsof… |
n/a |
n/a |
2014-10-15T10:00:00.000Z | 2025-10-22T00:05:35.545Z |
| cve-2014-4114 | N/A | Microsoft Windows Vista SP2, Windows Server 2008 … |
n/a |
n/a |
2014-10-15T10:00:00.000Z | 2025-10-22T00:05:35.412Z |
| cve-2014-4123 | N/A | Microsoft Internet Explorer 7 through 11 allows r… |
n/a |
n/a |
2014-10-15T10:00:00.000Z | 2025-10-22T00:05:35.270Z |
| cve-2014-4148 | N/A | win32k.sys in the kernel-mode drivers in Microsof… |
n/a |
n/a |
2014-10-15T10:00:00.000Z | 2025-10-22T00:05:35.135Z |
| cve-2014-6352 | N/A | Microsoft Windows Vista SP2, Windows Server 2008 … |
n/a |
n/a |
2014-10-22T14:00:00.000Z | 2025-10-22T00:05:34.995Z |
| cve-2014-5408 | 7.5 (v2.0) | Nordex NC2 Cross-site Scripting |
Nordex |
Nordex Control 2 (NC2) SCADA |
2014-11-05T11:00:00 | 2025-11-03T18:50:14.150Z |
| cve-2014-5417 | 7.5 (v2.0) | Meinberg Radio Clocks LANTIME M-Series |
Meinberg Radio Clocks |
LANTIME M-Series |
2014-11-05T11:00:00 | 2025-11-04T23:19:36.651Z |
| cve-2014-4077 | N/A | Microsoft Windows Server 2003 SP2, Windows Vista … |
n/a |
n/a |
2014-11-11T22:00:00.000Z | 2025-10-22T00:05:34.855Z |
| cve-2014-6332 | N/A | OleAut32.dll in OLE in Microsoft Windows Server 2… |
n/a |
n/a |
2014-11-11T22:00:00.000Z | 2025-10-22T00:05:34.718Z |
| cve-2014-6324 | N/A | The Kerberos Key Distribution Center (KDC) in Mic… |
n/a |
n/a |
2014-11-18T23:00:00.000Z | 2025-10-22T00:05:34.565Z |
| cve-2014-8439 | N/A | Adobe Flash Player before 13.0.0.258 and 14.x and… |
n/a |
n/a |
2014-11-25T23:00:00.000Z | 2025-10-22T00:05:34.383Z |
| cve-2014-9163 | N/A | Stack-based buffer overflow in Adobe Flash Player… |
n/a |
n/a |
2014-12-10T21:00:00.000Z | 2025-11-17T20:12:40.464Z |
| cve-2014-100005 | N/A | Multiple cross-site request forgery (CSRF) vulner… |
n/a |
n/a |
2015-01-13T11:00:00.000Z | 2025-10-22T00:05:34.069Z |
| cve-2015-0016 | N/A | Directory traversal vulnerability in the TS WebPr… |
n/a |
n/a |
2015-01-13T22:00:00.000Z | 2025-10-22T00:05:33.942Z |
| cve-2014-5418 | 5 (v2.0) | GE Multilink Uncontrolled Resource Consumption |
GE |
Multilink ML800/1200/1600/2400 |
2015-01-17T02:00:00 | 2025-11-04T23:30:32.557Z |
| cve-2014-5419 | 10 (v2.0) | GE Multilink Use of Hard-coded Cryptographic Key |
GE |
Multilink ML800/1200/1600/2400 |
2015-01-17T02:00:00 | 2025-11-04T23:32:07.026Z |
| cve-2015-0310 | N/A | Adobe Flash Player before 13.0.0.262 and 14.x thr… |
n/a |
n/a |
2015-01-23T21:00:00.000Z | 2025-11-17T20:10:36.688Z |
| cve-2015-0311 | N/A | Unspecified vulnerability in Adobe Flash Player t… |
n/a |
n/a |
2015-01-23T21:00:00.000Z | 2025-11-17T20:19:18.996Z |
| cve-2015-0313 | N/A | Use-after-free vulnerability in Adobe Flash Playe… |
n/a |
n/a |
2015-02-02T19:00:00.000Z | 2025-11-17T20:03:39.557Z |
| cve-2015-0071 | N/A | Microsoft Internet Explorer 9 through 11 allows r… |
n/a |
n/a |
2015-02-11T02:00:00.000Z | 2025-10-22T00:05:33.391Z |
| cve-2015-1427 | N/A | The Groovy scripting engine in Elasticsearch befo… |
n/a |
n/a |
2015-02-17T15:00:00.000Z | 2025-10-22T00:05:33.236Z |
| cve-2015-2051 | N/A | The D-Link DIR-645 Wired/Wireless Router Rev. Ax … |
n/a |
n/a |
2015-02-23T17:00:00.000Z | 2025-10-22T00:05:33.088Z |
| cve-2014-5409 | 6.4 (v2.0) | GE Hydran M2 Predictable Value Range from Previous Values |
GE |
Hydran M2, containing the 17046 Ethernet option |
2015-03-14T01:00:00 | 2025-11-03T18:58:26.900Z |
| cve-2014-5400 | 6.8 (v2.0) | Hospira MedNet Password in Configuration File |
Hospira |
MedNet |
2015-04-03T10:00:00 | 2025-11-03T18:26:56.284Z |
| cve-2014-5403 | 6.8 (v2.0) | Hospira MedNet Use of Hard-coded Cryptographic Key |
Hospira |
MedNet |
2015-04-03T10:00:00 | 2025-11-03T18:22:39.434Z |
| cve-2014-5405 | 9 (v2.0) | Hospira MedNet Use of Hard-coded Password |
Hospira |
MedNet |
2015-04-03T10:00:00 | 2025-11-03T18:25:50.764Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2014-0496 | N/A | Use-after-free vulnerability in Adobe Reader and … |
n/a |
n/a |
2014-01-15T02:00:00.000Z | 2025-11-21T15:49:18.476Z |
| cve-2013-0340 | N/A | expat before version 2.4.0 does not properly hand… |
|
|
2014-01-21T18:00:00 | 2025-11-25T16:27:56.273Z |
| cve-2013-4887 | N/A | SQL injection vulnerability in index.php in Digit… |
n/a |
n/a |
2014-01-29T18:00:00 | 2024-08-06T16:59:40.935Z |
| cve-2013-4888 | N/A | Cross-site scripting (XSS) vulnerability in index… |
n/a |
n/a |
2014-01-29T18:00:00 | 2024-08-06T16:59:40.631Z |
| cve-2013-4889 | N/A | Multiple cross-site request forgery (CSRF) vulner… |
n/a |
n/a |
2014-01-29T18:00:00 | 2024-08-06T16:59:41.021Z |
| cve-2014-0497 | N/A | Integer underflow in Adobe Flash Player before 11… |
n/a |
n/a |
2014-02-05T02:00:00.000Z | 2025-10-22T00:05:39.174Z |
| cve-2014-1477 | N/A | Multiple unspecified vulnerabilities in the brows… |
n/a |
n/a |
2014-02-06T02:00:00 | 2024-08-06T09:42:35.412Z |
| cve-2014-1479 | N/A | The System Only Wrapper (SOW) implementation in M… |
n/a |
n/a |
2014-02-06T02:00:00 | 2024-08-06T09:42:35.791Z |
| cve-2014-1481 | N/A | Mozilla Firefox before 27.0, Firefox ESR 24.x bef… |
n/a |
n/a |
2014-02-06T02:00:00 | 2024-08-06T09:42:35.868Z |
| cve-2014-1482 | N/A | RasterImage.cpp in Mozilla Firefox before 27.0, F… |
n/a |
n/a |
2014-02-06T02:00:00 | 2024-08-06T09:42:35.543Z |
| cve-2014-1486 | N/A | Use-after-free vulnerability in the imgRequestPro… |
n/a |
n/a |
2014-02-06T02:00:00 | 2024-08-06T09:42:36.212Z |
| cve-2014-1487 | N/A | The Web workers implementation in Mozilla Firefox… |
n/a |
n/a |
2014-02-06T02:00:00 | 2024-08-06T09:42:35.982Z |
| cve-2014-1490 | N/A | Race condition in libssl in Mozilla Network Secur… |
n/a |
n/a |
2014-02-06T02:00:00 | 2024-08-06T09:42:36.290Z |
| cve-2014-1491 | N/A | Mozilla Network Security Services (NSS) before 3.… |
n/a |
n/a |
2014-02-06T02:00:00 | 2024-08-06T09:42:36.031Z |
| cve-2014-0322 | N/A | Use-after-free vulnerability in Microsoft Interne… |
n/a |
n/a |
2014-02-14T16:00:00.000Z | 2025-10-22T00:05:39.021Z |
| cve-2014-0502 | N/A | Double free vulnerability in Adobe Flash Player b… |
n/a |
n/a |
2014-02-21T02:00:00.000Z | 2025-10-22T00:05:38.853Z |
| cve-2013-7331 | N/A | The Microsoft.XMLDOM ActiveX control in Microsoft… |
n/a |
n/a |
2014-02-26T11:00:00.000Z | 2025-10-22T00:05:38.705Z |
| cve-2014-1906 | N/A | Multiple cross-site scripting (XSS) vulnerabiliti… |
n/a |
n/a |
2014-03-06T15:00:00 | 2024-08-06T09:58:15.610Z |
| cve-2014-1907 | N/A | Multiple directory traversal vulnerabilities in t… |
n/a |
n/a |
2014-03-06T15:00:00 | 2024-08-06T09:58:16.012Z |
| cve-2014-2120 | N/A | Cross-site scripting (XSS) vulnerability in the W… |
n/a |
n/a |
2014-03-19T01:00:00.000Z | 2025-10-22T00:05:38.543Z |
| cve-2014-1493 | N/A | Multiple unspecified vulnerabilities in the brows… |
n/a |
n/a |
2014-03-19T10:00:00 | 2024-08-06T09:42:36.268Z |
| cve-2014-1496 | N/A | Mozilla Firefox before 28.0, Firefox ESR 24.x bef… |
n/a |
n/a |
2014-03-19T10:00:00 | 2024-08-06T09:42:36.129Z |
| cve-2014-1497 | N/A | The mozilla::WaveReader::DecodeAudioData function… |
n/a |
n/a |
2014-03-19T10:00:00 | 2024-08-06T09:42:36.202Z |
| cve-2014-1505 | N/A | The SVG filter implementation in Mozilla Firefox … |
n/a |
n/a |
2014-03-19T10:00:00 | 2024-08-06T09:42:36.333Z |
| cve-2014-1508 | N/A | The libxul.so!gfxContext::Polygon function in Moz… |
n/a |
n/a |
2014-03-19T10:00:00 | 2024-08-06T09:42:36.374Z |
| cve-2014-1509 | N/A | Buffer overflow in the _cairo_truetype_index_to_u… |
n/a |
n/a |
2014-03-19T10:00:00 | 2024-08-06T09:42:36.199Z |
| cve-2014-1510 | N/A | The Web IDL implementation in Mozilla Firefox bef… |
n/a |
n/a |
2014-03-19T10:00:00 | 2024-08-06T09:42:36.189Z |
| cve-2014-1511 | N/A | Mozilla Firefox before 28.0, Firefox ESR 24.x bef… |
n/a |
n/a |
2014-03-19T10:00:00 | 2024-08-06T09:42:36.250Z |
| cve-2014-1512 | N/A | Use-after-free vulnerability in the TypeObject cl… |
n/a |
n/a |
2014-03-19T10:00:00 | 2024-08-06T09:42:36.221Z |
| cve-2014-1513 | N/A | TypedArrayObject.cpp in Mozilla Firefox before 28… |
n/a |
n/a |
2014-03-19T10:00:00 | 2024-08-06T09:42:36.222Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2024-1667 | Malicious code in @wdp-gov/lineage-component (npm) | 2024-06-26T12:41:06Z | 2024-07-02T00:27:31Z |
| mal-2024-1668 | Malicious code in @wdp-gov/catalog-serialization-engine (npm) | 2024-06-26T13:35:45Z | 2024-07-02T00:27:31Z |
| mal-0000-kam193-001eeb124383080a | Malicious code in pytuon (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-00f157ccda5990a3 | Malicious code in wweb3 (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-010630ebea3e4f6f | Malicious code in etherem (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-01279e8626d64e09 | Malicious code in pytohn (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-0149c0e46b5522ab | Malicious code in opensesa (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-01927da93ed01f57 | Malicious code in we3b (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-01ed3c9f3e9dda28 | Malicious code in etheeruim (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-033d437645cd5d1a | Malicious code in opnsea (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-034ee5d8e25dfb25 | Malicious code in wb3 (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-04f59a3efddfc336 | Malicious code in web2 (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-066522525c2bea94 | Malicious code in ethrum (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-0759ef9ae36badf0 | Malicious code in etherum (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-07f2ab6bf31e242b | Malicious code in 3web-py (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-083d36089e83a563 | Malicious code in openseea (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-08511f2dc1194a12 | Malicious code in sghsuzeghuisehguihdrhffdhfdh (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-09e39e94b576e70e | Malicious code in etehreum (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-09e4bd568ed9a433 | Malicious code in ethherum (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-0a683b18f07af2cd | Malicious code in etherreum (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-0a74a609c04ef47e | Malicious code in oenwsea (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-0a7c01e08a72be2a | Malicious code in web3-py9 (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-0ab49c266fac67fb | Malicious code in bussardweg4a (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-0b0672b414a43aa2 | Malicious code in pythkn (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-0b27c9b6e6226c56 | Malicious code in etheerum (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-0d3d99100f3a2dbb | Malicious code in pytiom (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-0ed550aed8dd4252 | Malicious code in web3-p6 (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-0ff7fcc2f7f75676 | Malicious code in pyhton (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-11d23331d9a8301f | Malicious code in ethherium (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| mal-0000-kam193-11e33319c87410df | Malicious code in etheriuum (PyPI) | 2024-06-28T20:16:20Z | 2024-06-28T20:16:20Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-1423 | libssh: Mehrere Schwachstellen | 2025-06-29T22:00:00.000+00:00 | 2025-11-25T23:00:00.000+00:00 |
| wid-sec-w-2025-1428 | sudo: Mehrere Schwachstellen | 2025-06-30T22:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-1452 | Linux Kernel: Mehrere Schwachstellen | 2025-07-02T22:00:00.000+00:00 | 2025-10-23T22:00:00.000+00:00 |
| wid-sec-w-2025-1460 | PHP: Mehrere Schwachstellen | 2025-07-03T22:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-1463 | Redis: Mehrere Schwachstellen | 2025-07-06T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-1465 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-07-06T22:00:00.000+00:00 | 2025-10-23T22:00:00.000+00:00 |
| wid-sec-w-2025-1470 | Python (CPython): Schwachstelle ermöglicht Denial of Service | 2025-07-07T22:00:00.000+00:00 | 2025-10-21T22:00:00.000+00:00 |
| wid-sec-w-2025-1472 | Ruby: Schwachstelle ermöglicht Denial of Service | 2025-07-07T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-1481 | Linux Kernel: Mehrere Schwachstellen | 2025-07-07T22:00:00.000+00:00 | 2025-10-21T22:00:00.000+00:00 |
| wid-sec-w-2025-1502 | AMD Prozessor: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen | 2025-07-08T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-1517 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-07-08T22:00:00.000+00:00 | 2025-10-23T22:00:00.000+00:00 |
| wid-sec-w-2025-1522 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-07-09T22:00:00.000+00:00 | 2025-10-21T22:00:00.000+00:00 |
| wid-sec-w-2025-1526 | GnuTLS: Mehrere Schwachstellen | 2025-07-09T22:00:00.000+00:00 | 2025-10-23T22:00:00.000+00:00 |
| wid-sec-w-2025-1529 | Apache HTTP Server: Mehrere Schwachstellen | 2025-07-10T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-1540 | Apache Commons Lang: Schwachstelle ermöglicht Denial of Service | 2025-07-13T22:00:00.000+00:00 | 2025-10-23T22:00:00.000+00:00 |
| wid-sec-w-2025-1567 | Oracle MySQL: Mehrere Schwachstellen | 2025-07-15T22:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-1569 | Oracle Java SE: Mehrere Schwachstellen | 2025-07-15T22:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-1575 | vim (.tar and .zip): Mehrere Schwachstellen ermöglichen Codeausführung | 2025-07-15T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-1582 | IBM WebSphere Application Server: Schwachstelle ermöglicht Denial of Service | 2025-07-16T22:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-1583 | ffmpeg: Schwachstelle ermöglicht Denial of Service | 2025-07-16T22:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-1591 | IBM WebSphere Application Server: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-07-17T22:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-1613 | Linux Kernel: Mehrere Schwachstellen | 2025-07-20T22:00:00.000+00:00 | 2025-10-23T22:00:00.000+00:00 |
| wid-sec-w-2025-1623 | Mozilla Firefox , Firefox ESR und Thunderbird: Mehrere Schwachstellen | 2025-07-22T22:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-1636 | Apache HTTP Server: Schwachstelle ermöglicht umgehen von Sicherheitsvorkehrungen | 2025-07-23T22:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-1637 | GNU libc: Schwachstelle ermöglicht unspezifischen Angriff | 2025-07-23T22:00:00.000+00:00 | 2025-10-23T22:00:00.000+00:00 |
| wid-sec-w-2025-1646 | Red Hat Enterprise Linux (nodejs, perl): Mehrere Schwachstellen | 2025-07-27T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-1653 | Linux Kernel: Mehrere Schwachstellen | 2025-07-27T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-1654 | libTIFF (Tiffmedian, Thumbnail): Mehrere Schwachstellen | 2025-07-27T22:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2025-1656 | Red Hat Enterprise Linux (unbound): Schwachstelle ermöglicht Manipulation von Daten | 2025-07-27T22:00:00.000+00:00 | 2025-10-29T23:00:00.000+00:00 |
| wid-sec-w-2025-1664 | Python: Schwachstelle ermöglicht Denial of Service | 2025-07-28T22:00:00.000+00:00 | 2025-10-21T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| ssa-223353 | SSA-223353: Multiple Vulnerabilities in Nucleus RTOS based SIMOTICS CONNECT 400 | 2022-03-08T00:00:00Z | 2022-03-08T00:00:00Z |
| ssa-250085 | SSA-250085: Multiple Vulnerabilities in SINEC NMS and SINEMA Server | 2022-03-08T00:00:00Z | 2023-10-10T00:00:00Z |
| ssa-252466 | SSA-252466: Multiple Vulnerabilities in Climatix POL909 (AWM and AWB) | 2022-03-08T00:00:00Z | 2022-03-08T00:00:00Z |
| ssa-337210 | SSA-337210: Privilege Escalation Vulnerability in SINUMERIK MC | 2022-03-08T00:00:00Z | 2022-03-08T00:00:00Z |
| ssa-389290 | SSA-389290: Third-Party Component Vulnerabilities in SINEC INS | 2022-03-08T00:00:00Z | 2022-03-08T00:00:00Z |
| ssa-406691 | SSA-406691: Buffer Vulnerabilities in DHCP function of RUGGEDCOM ROX products | 2022-03-08T00:00:00Z | 2022-03-08T00:00:00Z |
| ssa-415938 | SSA-415938: Improper Access Control Vulnerability in Mendix | 2022-03-08T00:00:00Z | 2022-03-08T00:00:00Z |
| ssa-562051 | SSA-562051: Cross-Site Scripting Vulnerability in Polarion ALM | 2022-03-08T00:00:00Z | 2022-04-12T00:00:00Z |
| ssa-594438 | SSA-594438: Remote Code Execution and Denial-of-Service Vulnerability in multiple RUGGEDCOM ROX products | 2022-03-08T00:00:00Z | 2022-03-08T00:00:00Z |
| ssa-316850 | SSA-316850: Unauthenticated File Access in SICAM A8000 Devices | 2022-04-12T00:00:00Z | 2022-04-12T00:00:00Z |
| ssa-350757 | SSA-350757: Improper Access Control Vulnerability in TIA Portal Affecting S7-1200 and S7-1500 CPUs Web Server (Incl. Related ET200 CPUs and SIPLUS variants) | 2022-04-12T00:00:00Z | 2022-04-12T00:00:00Z |
| ssa-392912 | SSA-392912: Multiple Denial Of Service Vulnerabilities in SCALANCE W1700 Devices | 2022-04-12T00:00:00Z | 2022-04-12T00:00:00Z |
| ssa-414513 | SSA-414513: Information Disclosure Vulnerability in Mendix | 2022-04-12T00:00:00Z | 2022-07-12T00:00:00Z |
| ssa-446448 | SSA-446448: Denial of Service Vulnerability in PROFINET Stack Integrated on Interniche Stack | 2022-04-12T00:00:00Z | 2025-01-14T00:00:00Z |
| ssa-655554 | SSA-655554: Multiple Vulnerabilities in SIMATIC Energy Manager before V7.3 Update 1 | 2022-04-12T00:00:00Z | 2022-04-12T00:00:00Z |
| ssa-711829 | SSA-711829: Denial of Service Vulnerability in TIA Administrator | 2022-04-12T00:00:00Z | 2022-07-12T00:00:00Z |
| ssa-836527 | SSA-836527: Multiple Vulnerabilities in SCALANCE X-300 Switch Family Devices | 2022-04-12T00:00:00Z | 2022-04-12T00:00:00Z |
| ssa-870917 | SSA-870917: Improper Access Control Vulnerability in Mendix | 2022-04-12T00:00:00Z | 2022-04-12T00:00:00Z |
| ssa-998762 | SSA-998762: File Parsing Vulnerabilities in Simcenter Femap before V2022.1.2 | 2022-04-12T00:00:00Z | 2022-04-12T00:00:00Z |
| ssa-254054 | SSA-254054: Spring Framework Vulnerability (Spring4Shell or SpringShell, CVE-2022-22965) - Impact to Siemens Products | 2022-04-19T00:00:00Z | 2022-10-11T00:00:00Z |
| ssa-162616 | SSA-162616: File Parsing Vulnerabilities in Simcenter Femap before V2022.2 | 2022-05-10T00:00:00Z | 2022-05-10T00:00:00Z |
| ssa-165073 | SSA-165073: Multiple Vulnerabilities in the Webinterface of SICAM P850 and SICAM P855 Devices | 2022-05-10T00:00:00Z | 2022-05-10T00:00:00Z |
| ssa-285795 | SSA-285795: Denial of Service in OPC-UA in Industrial Products | 2022-05-10T00:00:00Z | 2023-10-10T00:00:00Z |
| ssa-363107 | SSA-363107: An Improper Initialization Vulnerability Affects SIMATIC WinCC Kiosk Mode | 2022-05-10T00:00:00Z | 2023-11-14T00:00:00Z |
| ssa-480937 | SSA-480937: Denial of Service Vulnerability in CP 44x-1 RNA before V1.5.18 | 2022-05-10T00:00:00Z | 2022-05-10T00:00:00Z |
| ssa-553086 | SSA-553086: Multiple File Parsing Vulnerabilities in JT2Go and Teamcenter Visualization | 2022-05-10T00:00:00Z | 2022-05-10T00:00:00Z |
| ssa-626968 | SSA-626968: Multiple Webserver Vulnerabilities in Desigo PXC and DXR Devices | 2022-05-10T00:00:00Z | 2022-06-14T00:00:00Z |
| ssa-662649 | SSA-662649: Denial of Service Vulnerability in Desigo DXR and PXC Controllers | 2022-05-10T00:00:00Z | 2022-06-14T00:00:00Z |
| ssa-732250 | SSA-732250: Libcurl Vulnerabilities in Industrial Devices | 2022-05-10T00:00:00Z | 2022-08-09T00:00:00Z |
| ssa-736385 | SSA-736385: Memory Corruption Vulnerability in OpenV2G | 2022-05-10T00:00:00Z | 2022-05-10T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2003:041 | Red Hat Security Advisory: : : : Updated VNC packages fix replay and cookie vulnerabilities | 2003-02-21T08:40:00+00:00 | 2025-11-21T17:25:30+00:00 |
| rhsa-2003:030 | Red Hat Security Advisory: lynx security update | 2003-02-21T08:41:00+00:00 | 2025-11-21T17:25:27+00:00 |
| rhsa-2003:058 | Red Hat Security Advisory: shadow-utils security update | 2003-02-25T14:56:00+00:00 | 2025-11-21T17:25:36+00:00 |
| rhsa-2003:033 | Red Hat Security Advisory: tcpdump security update | 2003-02-26T15:17:00+00:00 | 2025-11-21T17:25:32+00:00 |
| rhsa-2003:068 | Red Hat Security Advisory: vnc security update | 2003-02-26T16:23:00+00:00 | 2025-11-21T17:25:40+00:00 |
| rhsa-2003:038 | Red Hat Security Advisory: im security update | 2003-02-26T19:46:00+00:00 | 2025-11-21T17:25:29+00:00 |
| rhsa-2003:082 | Red Hat Security Advisory: apache, openssl, php, tomcat security update for Stronghold | 2003-03-03T09:16:00+00:00 | 2025-11-21T17:25:44+00:00 |
| rhsa-2003:073 | Red Hat Security Advisory: : Updated sendmail packages fix critical security issues | 2003-03-03T17:04:00+00:00 | 2025-11-21T17:25:41+00:00 |
| rhsa-2003:074 | Red Hat Security Advisory: sendmail security update | 2003-03-03T17:05:00+00:00 | 2025-11-21T17:25:42+00:00 |
| rhsa-2003:028 | Red Hat Security Advisory: pam security update | 2003-03-05T16:07:00+00:00 | 2025-11-21T17:25:26+00:00 |
| rhsa-2003:062 | Red Hat Security Advisory: : Updated OpenSSL packages fix timing attack | 2003-03-06T15:10:00+00:00 | 2025-11-21T17:25:37+00:00 |
| rhsa-2003:086 | Red Hat Security Advisory: : : : Updated file packages fix vulnerability | 2003-03-07T15:00:00+00:00 | 2025-11-21T17:25:44+00:00 |
| rhsa-2003:087 | Red Hat Security Advisory: file security update | 2003-03-10T12:36:00+00:00 | 2025-11-21T17:25:45+00:00 |
| rhsa-2003:063 | Red Hat Security Advisory: openssl security update | 2003-03-10T15:18:00+00:00 | 2025-11-21T17:25:37+00:00 |
| rhsa-2003:055 | Red Hat Security Advisory: rxvt security update | 2003-03-11T08:52:00+00:00 | 2025-11-21T17:25:36+00:00 |
| rhsa-2003:085 | Red Hat Security Advisory: tcpdump security update | 2003-03-11T08:53:00+00:00 | 2025-11-21T17:25:44+00:00 |
| rhsa-2003:098 | Red Hat Security Advisory: : Updated 2.4 kernel fixes vulnerability | 2003-03-17T16:11:00+00:00 | 2025-11-21T17:25:50+00:00 |
| rhsa-2003:095 | Red Hat Security Advisory: : New samba packages fix security vulnerabilities | 2003-03-18T00:56:00+00:00 | 2025-11-21T17:25:49+00:00 |
| rhsa-2003:104 | Red Hat Security Advisory: apache, openssl, php security update for Stronghold | 2003-03-18T11:01:00+00:00 | 2025-11-21T17:25:52+00:00 |
| rhsa-2003:089 | Red Hat Security Advisory: : Updated glibc packages fix vulnerabilities in RPC XDR decoder | 2003-03-19T22:09:00+00:00 | 2025-11-21T17:25:47+00:00 |
| rhsa-2003:088 | Red Hat Security Advisory: : New kernel 2.2 packages fix vulnerabilities | 2003-03-20T08:56:00+00:00 | 2025-11-21T17:25:45+00:00 |
| rhsa-2003:096 | Red Hat Security Advisory: samba security update | 2003-03-20T21:19:00+00:00 | 2025-11-21T17:25:49+00:00 |
| rhsa-2003:103 | Red Hat Security Advisory: kernel security update | 2003-03-21T08:53:00+00:00 | 2025-11-21T17:25:50+00:00 |
| rhsa-2003:051 | Red Hat Security Advisory: : Updated kerberos packages fix various vulnerabilities | 2003-03-26T21:49:00+00:00 | 2025-11-21T17:25:34+00:00 |
| rhsa-2003:052 | Red Hat Security Advisory: krb5 security update | 2003-03-27T19:43:00+00:00 | 2025-11-21T17:25:35+00:00 |
| rhsa-2003:116 | Red Hat Security Advisory: apache, openssl security update for Stronghold | 2003-03-28T13:43:00+00:00 | 2025-11-21T17:25:54+00:00 |
| rhsa-2003:102 | Red Hat Security Advisory: openssl security update | 2003-03-31T12:00:00+00:00 | 2025-11-21T17:25:50+00:00 |
| rhsa-2003:121 | Red Hat Security Advisory: sendmail security update | 2003-03-31T15:23:00+00:00 | 2025-11-21T17:25:55+00:00 |
| rhsa-2003:061 | Red Hat Security Advisory: netpbm security update | 2003-03-31T15:31:00+00:00 | 2025-11-21T17:25:37+00:00 |
| rhsa-2003:120 | Red Hat Security Advisory: : Updated sendmail packages fix vulnerability | 2003-03-31T17:14:00+00:00 | 2025-11-21T17:25:55+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2017-6828 | Heap-based buffer overflow in audiofile allows remote attackers to have unspecified impact | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:57.000Z |
| msrc_cve-2017-6829 | The decodeSample function in IMA.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file. | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:57.000Z |
| msrc_cve-2017-6830 | Heap-based buffer overflow in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:57.000Z |
| msrc_cve-2017-6831 | Heap-based buffer overflow in the decodeBlockWAVE function in IMA.cpp in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0 and 0.2.7 allows remote attackers to cause a denial of service (crash) via a crafted file. | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:57.000Z |
| msrc_cve-2017-6832 | Heap-based buffer overflow in the decodeBlock in MSADPCM.cpp in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0, 0.2.7 allows remote attackers to cause a denial of service (crash) via a crafted file. | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:58.000Z |
| msrc_cve-2017-6833 | Vulnerability in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:58.000Z |
| msrc_cve-2017-6834 | Heap-based buffer overflow in the ulaw2linear_buf function in G711.cpp in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0, 0.2.7 allows remote attackers to cause a denial of service (crash) via a crafted file. | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:58.000Z |
| msrc_cve-2017-6835 | Vulnerability in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service via a crafted file. | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:58.000Z |
| msrc_cve-2017-6836 | Heap-based buffer overflow in the Expand3To4Module::run function in libaudiofile/modules/SimpleModule.h in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0 allows remote attackers to cause a denial of service (crash) via a crafted file. | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:59.000Z |
| msrc_cve-2017-6837 | WAVE.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:59.000Z |
| msrc_cve-2017-6838 | Integer overflow in sfcommands/sfconvert.c in Audio File Library | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:59.000Z |
| msrc_cve-2017-6839 | Integer overflow in modules/MSADPCM.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file. | 2017-03-02T00:00:00.000Z | 2025-10-01T23:10:59.000Z |
| msrc_cve-2015-4646 | (1) unsquash-1.c (2) unsquash-2.c (3) unsquash-3.c and (4) unsquash-4.c in Squashfs and sasquatch allow remote attackers to cause a denial of service (application crash) via a crafted input. | 2017-04-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2017-3604 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3605 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3606 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3607 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3608 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3609 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3610 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3611 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3612 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3613 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3614 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3615 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3616 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3617 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-7718 | hw/display/cirrus_vga_rop.h in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (out-of-bounds read and QEMU process crash) via vectors related to copying VGA data via the cirrus_bitblt_rop_fwd_transp_ and cirrus_bitblt_rop_fwd_ functions. | 2017-04-02T00:00:00.000Z | 2025-09-04T02:42:31.000Z |
| msrc_cve-2017-8361 | The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted audio file. | 2017-04-02T00:00:00.000Z | 2021-01-28T00:00:00.000Z |
| msrc_cve-2017-8362 | The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (invalid read and application crash) via a crafted audio file. | 2017-04-02T00:00:00.000Z | 2021-01-28T00:00:00.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-25-343-01 | Universal Boot Loader (U-Boot) | 2025-12-09T07:00:00.000000Z | 2025-12-09T07:00:00.000000Z |
| icsa-25-352-02 | Schneider Electric EcoStruxure Foxboro DCS Advisor | 2025-12-09T08:00:00.000000Z | 2025-12-18T18:23:06.311869Z |
| va-25-343-01 | Windscribe for Linux 'changeMTU' local privilege escalation | 2025-12-10T16:46:41Z | 2025-12-10T16:46:41Z |
| icsa-25-345-01 | Johnson Controls iSTAR | 2025-12-11T07:00:00.000000Z | 2025-12-11T07:00:00.000000Z |
| icsa-25-345-02 | Johnson Controls iSTAR Ultra | 2025-12-11T07:00:00.000000Z | 2025-12-11T07:00:00.000000Z |
| icsa-25-345-03 | AzeoTech DAQFactory | 2025-12-11T07:00:00.000000Z | 2025-12-11T07:00:00.000000Z |
| icsa-25-345-10 | OpenPLC_V3 | 2025-12-11T07:00:00.000000Z | 2025-12-11T07:00:00.000000Z |
| icsma-25-345-01 | Grassroots DICOM (GDCM) | 2025-12-11T07:00:00.000000Z | 2025-12-11T07:00:00.000000Z |
| icsma-25-345-02 | Varex Imaging Panoramic Dental Imaging Software | 2025-12-11T07:00:00.000000Z | 2025-12-11T07:00:00.000000Z |
| va-25-345-01 | CISA Software Acquisition Guide Supplier Response Web Tool XSS | 2025-12-12T20:27:47Z | 2025-12-12T20:27:47Z |
| icsa-25-350-01 | Güralp Systems Fortimus Series, Minimus Series, and Certimus Series | 2025-12-16T07:00:00.000000Z | 2025-12-16T07:00:00.000000Z |
| icsa-25-350-02 | Johnson Controls PowerG, IQPanel and IQHub | 2025-12-16T07:00:00.000000Z | 2025-12-16T07:00:00.000000Z |
| icsa-25-350-03 | Hitachi Energy AFS, AFR and AFF Series | 2025-12-16T07:00:00.000000Z | 2025-12-16T07:00:00.000000Z |
| icsa-25-350-04 | Mitsubishi Electric GT Designer3 | 2025-12-16T07:00:00.000000Z | 2025-12-16T07:00:00.000000Z |
| va-25-352-01 | BullWall Ransomware Containment and Server Intrusion Protection multiple vulnerabilities | 2025-12-18T00:00:00Z | 2025-12-18T00:00:00Z |
| icsa-25-352-01 | Inductive Automation Ignition | 2025-12-18T07:00:00.000000Z | 2025-12-18T07:00:00.000000Z |
| icsa-25-352-03 | National Instruments LabView | 2025-12-18T07:00:00.000000Z | 2025-12-18T07:00:00.000000Z |
| icsa-25-352-04 | Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electrics Products | 2025-12-18T07:00:00.000000Z | 2025-12-18T07:00:00.000000Z |
| icsa-25-352-06 | Advantech WebAccess/SCADA | 2025-12-18T07:00:00.000000Z | 2025-12-18T07:00:00.000000Z |
| icsa-25-352-07 | Rockwell Automation Micro820, Micro850, Micro870 | 2025-12-18T07:00:00.000000Z | 2025-12-18T07:00:00.000000Z |
| icsa-25-352-08 | Axis Communications Camera Station Pro, Camera Station, and Device Manager | 2025-12-18T07:00:00.000000Z | 2025-12-18T07:00:00.000000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2006-000736 | NEC MultiWriter 1700C web server authentication bypass vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000737 | NEC MultiWriter 1700C/7500C FTP server vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000742 | desknet's buffer overflow vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000753 | Ruby cgi.rb Denial of Service Vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000758 | MyODBC Japanese Conversion Edition denial of service vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000760 | Hyper NIKKI System cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000771 | Kahua vulnerable in allowing to share login sessions | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000777 | Nucleus cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000781 | EC-CUBE cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000784 | eyeOS cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000791 | phpComasy cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000792 | tDiary cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000802 | Blogn cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000803 | Chama Cargo cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000808 | Denial of service vulnerability in Ruby CGI library (cgi.rb) | 2008-05-21T00:00+09:00 | 2008-11-14T12:20+09:00 |
| jvndb-2006-000809 | TikiWiki cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000812 | Hanako buffer overflow vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000816 | Shobo Shobo Nikki System (sns) cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000849 | SugarCRM cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000850 | a-blog cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000851 | pnamazu cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000852 | Joomla! cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000853 | tDiary arbitrary Ruby script execution vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000858 | Ruby vulnerability caused by a problem with the alias funtion so that safe level 4 does not function as a sandbox | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000938 | Webmin directory traversal vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000939 | Multiple vulnerabilities in Webmin and Usermin | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000975 | Hitachi Soumu Workflow Authentication Bypassing Vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000983 | JP1 Request Handling Denial of Service Vulnerabilities | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000006 | Serene Bach cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000070 | Drupal cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| ID | Description | Updated |
|---|