Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-v7jc-6rff-7wwg | A stack-based buffer overflow issue was discovered in the phddns client in Blu-Castle BCUM221E 1.0.… | 2025-10-29T15:31:56Z | 2025-10-29T15:31:56Z |
| ghsa-rh72-238f-g26q | Jenkins Azure CLI Plugin does not restrict the commands it executes | 2025-10-29T15:31:56Z | 2025-11-05T20:53:29Z |
| ghsa-pxm9-5xjv-gw34 | In the Linux kernel, the following vulnerability has been resolved: ksmbd: transport_ipc: validate… | 2025-10-29T15:31:56Z | 2025-11-03T03:30:25Z |
| ghsa-mrpq-9jr3-rqq9 | Jenkins MCP Server Plugin does not perform permission checks in multiple MCP tools | 2025-10-29T15:31:56Z | 2025-11-05T20:52:12Z |
| ghsa-mj6v-4wr4-gj57 | Jenkins Start Windocks Containers Plugin is missing a permission check | 2025-10-29T15:31:56Z | 2025-11-05T20:53:44Z |
| ghsa-jwm4-955w-4hj3 | Jenkins Themis Plugin is missing a permission check | 2025-10-29T15:31:56Z | 2025-11-05T20:52:56Z |
| ghsa-jfg6-4gx3-3v7w | Jenkins JDepend Plugin vulnerable to XML external entity attacks | 2025-10-29T15:31:56Z | 2025-11-05T20:52:47Z |
| ghsa-jc99-58pq-g6c3 | In the Linux kernel, the following vulnerability has been resolved: scsi: ses: Fix possible addl_d… | 2025-10-29T15:31:56Z | 2025-10-29T15:31:56Z |
| ghsa-j7r7-7qmf-xq87 | Jenkins SAML Plugin does not implement a replay cache | 2025-10-29T15:31:56Z | 2025-11-05T20:51:56Z |
| ghsa-h83r-7f9f-mqjj | Jenkins Nexus Task Runner Plugin is missing a permission check | 2025-10-29T15:31:56Z | 2025-11-05T20:53:05Z |
| ghsa-c4qv-5j2j-52m7 | DLL hijacking vulnerability in Evope Collector 1.1.6.9.0 and related components load the wtsapi32.d… | 2025-10-29T15:31:56Z | 2025-10-29T15:31:56Z |
| ghsa-9q6p-w395-hc48 | The Call Now Button – The #1 Click to Call Button for WordPress plugin for WordPress is vulnerable … | 2025-10-29T15:31:56Z | 2025-10-29T15:31:56Z |
| ghsa-93mh-mx9w-m69q | Jenkins Themis Plugin vulnerable to cross-site request forgery | 2025-10-29T15:31:56Z | 2025-11-05T20:52:28Z |
| ghsa-899c-h4r4-cxr9 | A CSRF issue was discovered in the administrative web GUI in Blu-Castle BCUM221E 1.0.0P220507. This… | 2025-10-29T15:31:56Z | 2025-10-29T15:31:56Z |
| ghsa-6mgr-3374-4p3c | Jenkins Start Windocks Containers Plugin vulnerable to cross-site request forgery | 2025-10-29T15:31:56Z | 2025-11-05T20:52:20Z |
| ghsa-5797-v2fm-f69x | The Call Now Button – The #1 Click to Call Button for WordPress plugin for WordPress is vulnerable … | 2025-10-29T15:31:56Z | 2025-10-29T15:31:56Z |
| ghsa-4653-9q2r-684q | Jenkins OpenShift Pipeline Plugin stores authorization tokens unencrypted in job config.xml files | 2025-10-29T15:31:56Z | 2025-11-05T20:53:36Z |
| ghsa-3jw2-5hjg-hc2c | Jenkins Extensible Choice Parameter Plugin vulnerable to cross-site request forgery | 2025-10-29T15:31:56Z | 2025-11-05T20:52:04Z |
| ghsa-2vmr-8c82-x8xq | Jenkins ByteGuard Build Actions Plugin stores API tokens unencrypted in job config.xml files | 2025-10-29T15:31:56Z | 2025-11-05T20:53:52Z |
| ghsa-2cjq-ppmx-48x5 | In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix NULL poin… | 2025-10-29T15:31:56Z | 2025-10-29T15:31:56Z |
| ghsa-23vj-j6jc-w892 | Jenkins Curseforge Publisher Plugin stores API Keys unencrypted in job config.xml files | 2025-10-29T15:31:56Z | 2025-11-05T20:54:11Z |
| ghsa-xrw3-prcw-c39g | Rejected reason: Duplicate of CVE-2023-52441. | 2025-10-29T12:30:25Z | 2025-10-29T12:30:25Z |
| ghsa-vch3-8jh3-g32c | This vulnerability allows an attacker to access parts of the application that are not protected by … | 2025-10-29T12:30:25Z | 2025-10-29T12:30:25Z |
| ghsa-qp98-37p8-mxj7 | Rejected reason: Duplicate of CVE-2023-52442. | 2025-10-29T12:30:25Z | 2025-10-29T12:30:25Z |
| ghsa-gqxj-68c6-vgjx | Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in ABB Terra A… | 2025-10-29T12:30:25Z | 2025-10-29T12:30:25Z |
| ghsa-fvmg-22f6-q6vj | The LiteSpeed Cache plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via URLs i… | 2025-10-29T12:30:25Z | 2025-10-29T12:30:25Z |
| ghsa-9vm5-3w25-78p5 | The Easy Testimonial Slider and Form plugin for WordPress is vulnerable to SQL Injection via the 'i… | 2025-10-29T12:30:25Z | 2025-10-29T12:30:25Z |
| ghsa-3386-f7wg-696x | The Thumbnail Slider With Lightbox plugin for WordPress is vulnerable to SQL Injection via the 'id'… | 2025-10-29T12:30:25Z | 2025-10-29T12:30:25Z |
| ghsa-9f58-4465-23c7 | Sharp user-provided input can be evaluated in a SharpShowTextField with Vue template syntax | 2025-10-29T10:52:08Z | 2025-10-29T10:52:08Z |
| ghsa-5jpx-9hw9-2fx4 | NextAuthjs Email misdelivery Vulnerability | 2025-10-29T10:43:57Z | 2025-10-29T10:43:58Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-9870 | 7.8 (v3.0) | Razer Synapse 3 RazerPhilipsHueUninstall Link Followin… |
Razer |
Synapse 3 |
2025-10-29T19:34:08.192Z | 2025-10-31T03:55:18.777Z |
| cve-2025-9871 | 7.8 (v3.0) | Razer Synapse 3 Chroma Connect Link Following Local Pr… |
Razer |
Synapse 3 |
2025-10-29T19:33:46.072Z | 2025-10-30T14:37:08.224Z |
| cve-2025-9869 | 7.8 (v3.0) | Razer Synapse 3 Macro Module Link Following Local Priv… |
Razer |
Synapse 3 |
2025-10-29T19:33:09.764Z | 2025-10-31T03:55:17.747Z |
| cve-2025-11203 | 3.5 (v3.0) | LiteLLM Information health API_KEY Information Disclos… |
LiteLLM |
LiteLLM |
2025-10-29T19:32:10.609Z | 2025-10-30T17:38:56.644Z |
| cve-2025-10925 | 7.8 (v3.0) | GIMP ILBM File Parsing Stack-based Buffer Overflow Rem… |
GIMP |
GIMP |
2025-10-29T19:29:54.680Z | 2025-10-31T03:55:16.818Z |
| cve-2025-10924 | 7.8 (v3.0) | GIMP FF File Parsing Integer Overflow Remote Code Exec… |
GIMP |
GIMP |
2025-10-29T19:29:50.398Z | 2025-10-31T03:55:15.889Z |
| cve-2025-10923 | 7.8 (v3.0) | GIMP WBMP File Parsing Integer Overflow Remote Code Ex… |
GIMP |
GIMP |
2025-10-29T19:29:46.493Z | 2025-10-31T03:55:14.539Z |
| cve-2025-10922 | 7.8 (v3.0) | GIMP DCM File Parsing Heap-based Buffer Overflow Remot… |
GIMP |
GIMP |
2025-10-29T19:29:42.905Z | 2025-11-03T17:31:38.433Z |
| cve-2025-10921 | 7.8 (v3.0) | GIMP HDR File Parsing Heap-based Buffer Overflow Remot… |
GIMP |
GIMP |
2025-10-29T19:29:39.135Z | 2025-11-03T17:31:37.440Z |
| cve-2025-10920 | 7.8 (v3.0) | GIMP ICNS File Parsing Out-Of-Bounds Write Remote Code… |
GIMP |
GIMP |
2025-10-29T19:29:35.471Z | 2025-10-30T03:56:05.775Z |
| cve-2025-64104 | LangGraph SQLite Checkpoint Filter Key SQL Injection P… |
langchain-ai |
langgraph |
2025-10-29T18:55:06.129Z | 2025-10-30T15:33:07.541Z | |
| cve-2025-64103 | Zitadel Bypass Second Authentication Factor |
zitadel |
zitadel |
2025-10-29T18:43:46.934Z | 2025-10-30T14:51:19.189Z | |
| cve-2018-25120 | 9.3 (v4.0) | D-Link DNS-343 ShareCenter <= 1.05 Command Injection v… |
D-Link |
DNS-343 ShareCenter |
2025-10-29T18:39:03.581Z | 2025-10-30T17:37:43.230Z |
| cve-2025-64102 | Zitadel allows brute-forcing authentication factors |
zitadel |
zitadel |
2025-10-29T18:36:15.390Z | 2025-10-30T14:53:53.184Z | |
| cve-2025-64101 | ZITADEL Vulnerable to Account Takeover via Malicious F… |
zitadel |
zitadel |
2025-10-29T18:30:14.999Z | 2025-10-29T19:35:39.237Z | |
| cve-2025-11232 | Invalid characters cause assert |
ISC |
Kea |
2025-10-29T18:02:39.421Z | 2025-11-04T21:09:09.184Z | |
| cve-2025-64100 | CKAN Vulnerable to Session Cookie Fixation |
ckan |
ckan |
2025-10-29T17:54:51.997Z | 2025-10-29T19:29:13.337Z | |
| cve-2025-62797 | CSRF in FluxCP account endpoints allows account takeov… |
rathena |
FluxCP |
2025-10-29T17:49:07.899Z | 2025-10-29T19:01:54.985Z | |
| cve-2025-1549 | 6.3 (v4.0) | WatchGuard Mobile VPN with SSL Local Privilege Escallation |
WatchGuard |
Mobile VPN with SSL Client |
2025-10-29T16:50:39.263Z | 2025-10-30T03:56:04.752Z |
| cve-2025-12479 | 10 (v4.0) | Systemic Lack of Cross-Site Request Forgery (CSRF) Tok… |
Azure Access Technology |
BLU-IC2 |
2025-10-29T16:50:08.991Z | 2025-10-29T18:04:45.220Z |
| cve-2025-62792 | Wazuh vulnerable to Heap-based Buffer Over-read in w_e… |
wazuh |
wazuh |
2025-10-29T16:50:05.994Z | 2025-10-29T18:10:35.915Z | |
| cve-2025-62791 | Wazuh vulnerable to NULL pointer dereference in DecodeCiscat |
wazuh |
wazuh |
2025-10-29T16:48:25.220Z | 2025-10-29T19:03:17.183Z | |
| cve-2025-62790 | Wazuh vulnerable to NULL pointer dereference in fim_fe… |
wazuh |
wazuh |
2025-10-29T16:46:31.020Z | 2025-10-29T19:08:06.068Z | |
| cve-2025-62789 | Wazuh vulnerable to NULL pointer dereference in fim_al… |
wazuh |
wazuh |
2025-10-29T16:44:30.540Z | 2025-10-29T19:09:13.693Z | |
| cve-2025-62788 | Wazuh Vulnerable to Heap Use After Free in w_copy_even… |
wazuh |
wazuh |
2025-10-29T16:42:35.789Z | 2025-10-29T19:15:30.726Z | |
| cve-2025-12478 | 10 (v4.0) | Non-Compliant TLS Configuration |
Azure Access Technology |
BLU-IC2 |
2025-10-29T16:37:47.165Z | 2025-10-29T19:37:55.616Z |
| cve-2025-12477 | 10 (v4.0) | Server Version Disclosure |
Azure Access Technology |
BLU-IC2 |
2025-10-29T16:33:48.232Z | 2025-10-29T17:37:03.798Z |
| cve-2025-12476 | 10 (v4.0) | Resource Lacking AuthN |
Azure Access Technology |
BLU-IC2 |
2025-10-29T16:31:47.306Z | 2025-10-29T17:37:32.134Z |
| cve-2025-62787 | Wazuh Vulnerable to Heap-based Buffer Over-read in Dec… |
wazuh |
wazuh |
2025-10-29T16:30:26.950Z | 2025-10-29T17:38:48.781Z | |
| cve-2025-62786 | Wazuh Vulnerable to Heap-based Buffer Out-Of-Bounds WR… |
wazuh |
wazuh |
2025-10-29T15:52:52.636Z | 2025-10-29T16:20:18.469Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-58186 | N/A | Lack of limit when parsing cookies can cause memory ex… |
Go standard library |
net/http |
2025-10-29T22:10:13.912Z | 2025-11-04T21:13:35.468Z |
| cve-2025-58185 | N/A | Parsing DER payload can cause memory exhaustion in enc… |
Go standard library |
encoding/asn1 |
2025-10-29T22:10:13.682Z | 2025-11-04T21:13:34.163Z |
| cve-2025-58183 | N/A | Unbounded allocation when parsing GNU sparse map in ar… |
Go standard library |
archive/tar |
2025-10-29T22:10:14.376Z | 2025-11-04T21:13:32.834Z |
| cve-2025-54549 | 5.9 (v3.1) | Cryptographic validation of upgrade images could be ci… |
Arista Networks |
DANZ Monitoring Fabric |
2025-10-29T22:55:54.433Z | 2025-10-30T14:12:59.838Z |
| cve-2025-54548 | 4.3 (v3.1) | On affected platforms, restricted users could view sen… |
Arista Networks |
DANZ Monitoring Fabric |
2025-10-29T22:52:54.039Z | 2025-10-30T14:15:49.212Z |
| cve-2025-54547 | 5.3 (v3.1) | On affected platforms, if SSH session multiplexing was… |
Arista Networks |
DANZ Monitoring Fabric |
2025-10-29T22:45:53.499Z | 2025-10-30T14:15:29.632Z |
| cve-2025-54546 | 7.5 (v3.1) | On affected platforms, restricted users could use SSH … |
Arista Networks |
DANZ Monitoring Fabric |
2025-10-29T22:40:57.833Z | 2025-10-30T14:15:10.106Z |
| cve-2025-54545 | 7.8 (v3.1) | On affected platforms, a restricted user could break o… |
Arista Networks |
DANZ Monitoring Fabric |
2025-10-29T22:36:24.379Z | 2025-10-30T14:14:49.068Z |
| cve-2025-47912 | N/A | Insufficient validation of bracketed IPv6 hostnames in… |
Go standard library |
net/url |
2025-10-29T22:10:13.435Z | 2025-11-04T21:10:57.384Z |
| cve-2025-11428 | N/A | {'providerMetadata': {'orgId': 'ceab7361-8a18-47b1-92ba-4d7d25f6715a', 'shortName': 'GitLab', 'dateUpdated': '2025-10-29T22:19:16.982Z'}, 'rejectedReasons': [{'lang': 'en', 'value': 'This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.'}]} | N/A | N/A | 2025-10-29T22:19:16.982Z | |
| cve-2025-61959 | 6.9 (v4.0) 5.3 (v3.1) | Vertikal Systems Hospital Manager Backend Services Gen… |
Vertikal Systems |
Hospital Manager Backend Services |
2025-10-29T21:54:51.533Z | 2025-10-30T20:32:15.522Z |
| cve-2025-54459 | 8.7 (v4.0) 7.5 (v3.1) | Vertikal Systems Hospital Manager Backend Services Exp… |
Vertikal Systems |
Hospital Manager Backend Services |
2025-10-29T21:51:34.082Z | 2025-10-30T20:31:36.976Z |
| cve-2025-9871 | 7.8 (v3.0) | Razer Synapse 3 Chroma Connect Link Following Local Pr… |
Razer |
Synapse 3 |
2025-10-29T19:33:46.072Z | 2025-10-30T14:37:08.224Z |
| cve-2025-9870 | 7.8 (v3.0) | Razer Synapse 3 RazerPhilipsHueUninstall Link Followin… |
Razer |
Synapse 3 |
2025-10-29T19:34:08.192Z | 2025-10-31T03:55:18.777Z |
| cve-2025-9869 | 7.8 (v3.0) | Razer Synapse 3 Macro Module Link Following Local Priv… |
Razer |
Synapse 3 |
2025-10-29T19:33:09.764Z | 2025-10-31T03:55:17.747Z |
| cve-2025-60320 | N/A | memoQ 10.1.13.ef1b2b52aae and earlier contains an… |
n/a |
n/a |
2025-10-29T00:00:00.000Z | 2025-10-30T14:40:19.867Z |
| cve-2025-11466 | 4.9 (v3.0) | Allegra DatabaseBackupBL Directory Traversal Informati… |
Allegra |
Allegra |
2025-10-29T19:42:58.285Z | 2025-10-30T14:33:47.575Z |
| cve-2025-11465 | 7.8 (v3.0) | Ashlar-Vellum Cobalt CO File Parsing Use-After-Free Re… |
Ashlar-Vellum |
Cobalt |
2025-10-29T19:44:00.443Z | 2025-10-30T14:11:26.417Z |
| cve-2025-11464 | 7.8 (v3.0) | Ashlar-Vellum Cobalt CO File Parsing Heap-based Buffer… |
Ashlar-Vellum |
Cobalt |
2025-10-29T19:43:41.524Z | 2025-10-30T14:21:54.611Z |
| cve-2025-11463 | 7.8 (v3.0) | Ashlar-Vellum Cobalt XE File Parsing Integer Overflow … |
Ashlar-Vellum |
Cobalt |
2025-10-29T19:43:29.758Z | 2025-10-30T14:33:11.565Z |
| cve-2025-11203 | 3.5 (v3.0) | LiteLLM Information health API_KEY Information Disclos… |
LiteLLM |
LiteLLM |
2025-10-29T19:32:10.609Z | 2025-10-30T17:38:56.644Z |
| cve-2025-11202 | 9.8 (v3.0) | win-cli-mcp-server resolveCommandPath Command Injectio… |
win-cli-mcp-server |
win-cli-mcp-server |
2025-10-29T19:36:39.563Z | 2025-10-30T14:35:53.727Z |
| cve-2025-11201 | 8.1 (v3.0) | MLflow Tracking Server Model Creation Directory Traver… |
MLflow |
MLflow |
2025-10-29T19:37:10.690Z | 2025-10-31T03:55:31.166Z |
| cve-2025-11200 | 8.1 (v3.0) | MLflow Weak Password Requirements Authentication Bypas… |
MLflow |
MLflow |
2025-10-29T19:42:03.734Z | 2025-10-31T03:55:31.971Z |
| cve-2025-10934 | 7.8 (v3.0) | GIMP XWD File Parsing Heap-based Buffer Overflow Remot… |
GIMP |
GIMP |
2025-10-29T19:58:55.670Z | 2025-11-04T00:12:05.168Z |
| cve-2025-10925 | 7.8 (v3.0) | GIMP ILBM File Parsing Stack-based Buffer Overflow Rem… |
GIMP |
GIMP |
2025-10-29T19:29:54.680Z | 2025-10-31T03:55:16.818Z |
| cve-2025-10924 | 7.8 (v3.0) | GIMP FF File Parsing Integer Overflow Remote Code Exec… |
GIMP |
GIMP |
2025-10-29T19:29:50.398Z | 2025-10-31T03:55:15.889Z |
| cve-2025-10923 | 7.8 (v3.0) | GIMP WBMP File Parsing Integer Overflow Remote Code Ex… |
GIMP |
GIMP |
2025-10-29T19:29:46.493Z | 2025-10-31T03:55:14.539Z |
| cve-2025-10922 | 7.8 (v3.0) | GIMP DCM File Parsing Heap-based Buffer Overflow Remot… |
GIMP |
GIMP |
2025-10-29T19:29:42.905Z | 2025-11-03T17:31:38.433Z |
| cve-2025-10921 | 7.8 (v3.0) | GIMP HDR File Parsing Heap-based Buffer Overflow Remot… |
GIMP |
GIMP |
2025-10-29T19:29:39.135Z | 2025-11-03T17:31:37.440Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-188371 | Malicious code in nuxtjs-fomalhaut-postcss-avior (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188370 | Malicious code in nuxtjs-enceladus-miranda-jasmine (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188369 | Malicious code in nucleosynthesis-standard-pulsar-non-blocking (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188368 | Malicious code in nucleosynthesis-neptunology-spica-stratosphere (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188367 | Malicious code in nucleosynthesis-backend-local-foundation (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188366 | Malicious code in nu-interpret-container-grep-bad (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188365 | Malicious code in nu-grid-import-chi-assert (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188364 | Malicious code in nu-double-import-theta-old (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188363 | Malicious code in npm-publish-cross-env-jest (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188362 | Malicious code in npm-global-sublimation-augmentedreality (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188361 | Malicious code in npm-equinox-bootstrap-baryon (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188360 | Malicious code in nova-virgo-jasmine-redshift (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188359 | Malicious code in nova-singularitarianism-warp-redshift (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188358 | Malicious code in nova-sagitta-pegasus-hermes (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188357 | Malicious code in nova-relay-cosmogenic-taurus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188356 | Malicious code in nova-quantum-protractor-commitlint (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188355 | Malicious code in nova-primatology-paleoclimatology-membrane (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188354 | Malicious code in nova-phoebe-kaus-gatsby (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188353 | Malicious code in nova-ini-greatfilter-hawkingradiation (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188352 | Malicious code in nova-chakra-ui-css-loader-eris (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188351 | Malicious code in nova-astro-playwright-mira (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188350 | Malicious code in notify-zero-abstract-old-dog (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188349 | Malicious code in notify-string-deploy-file-private (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188348 | Malicious code in notify-simple-theta-monitor-web (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188347 | Malicious code in notify-omega-process-kernel-protected (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188346 | Malicious code in notify-link-proxy-double-proxy (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188345 | Malicious code in notify-beta-tree-mock-minify (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188344 | Malicious code in norma-tool-stratigraphy-stop (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188343 | Malicious code in norma-sagitta-bellatrix-postgres (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188342 | Malicious code in norma-quantumfoam-loglevel-commitizen (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:4018 | Red Hat Security Advisory: OpenShift Container Platform 4.18.10 security and extras update | 2025-04-22T14:51:20+00:00 | 2025-11-13T17:26:57+00:00 |
| rhsa-2025:3993 | Red Hat Security Advisory: Custom Metrics Autoscaler Operator for Red Hat OpenShift 2.15.1-6 Update | 2025-04-17T14:42:51+00:00 | 2025-11-14T17:12:22+00:00 |
| rhsa-2025:3989 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.0.7 security update | 2025-04-17T14:32:59+00:00 | 2025-11-11T16:07:31+00:00 |
| rhsa-2025:3978 | Red Hat Security Advisory: postgresql security update | 2025-04-17T07:19:08+00:00 | 2025-10-27T20:14:03+00:00 |
| rhsa-2025:3974 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-04-17T06:50:23+00:00 | 2025-11-06T22:35:55+00:00 |
| rhsa-2025:3965 | Red Hat Security Advisory: openvswitch3.4 security update | 2025-04-17T00:20:17+00:00 | 2025-11-08T07:13:37+00:00 |
| rhsa-2025:3970 | Red Hat Security Advisory: openvswitch3.1 security update | 2025-04-17T00:13:47+00:00 | 2025-11-08T07:13:37+00:00 |
| rhsa-2025:3964 | Red Hat Security Advisory: openvswitch3.3 security update | 2025-04-17T00:13:47+00:00 | 2025-11-08T07:13:36+00:00 |
| rhsa-2025:3963 | Red Hat Security Advisory: openvswitch3.1 security update | 2025-04-17T00:07:52+00:00 | 2025-11-08T07:13:36+00:00 |
| rhsa-2025:3961 | Red Hat Security Advisory: kpatch-patch-5_14_0-70_112_1, kpatch-patch-5_14_0-70_121_1, kpatch-patch-5_14_0-70_124_1, and kpatch-patch-5_14_0-70_85_1 security update | 2025-04-16T19:59:36+00:00 | 2025-11-06T19:29:10+00:00 |
| rhsa-2025:3845 | Red Hat Security Advisory: java-1.8.0-openjdk security update | 2025-04-16T18:11:23+00:00 | 2025-11-11T09:58:19+00:00 |
| rhsa-2025:3856 | Red Hat Security Advisory: OpenJDK 21.0.7 Security Update for Portable Linux Builds | 2025-04-16T17:34:04+00:00 | 2025-11-11T09:58:22+00:00 |
| rhsa-2025:3857 | Red Hat Security Advisory: OpenJDK 21.0.7 Security Update for Windows Builds | 2025-04-16T17:31:40+00:00 | 2025-11-11T09:58:22+00:00 |
| rhsa-2025:3853 | Red Hat Security Advisory: OpenJDK 17.0.15 Security Update for Portable Linux Builds | 2025-04-16T17:31:38+00:00 | 2025-11-11T09:58:21+00:00 |
| rhsa-2025:3854 | Red Hat Security Advisory: OpenJDK 17.0.15 Security Update for Windows Builds | 2025-04-16T17:29:51+00:00 | 2025-11-11T09:58:21+00:00 |
| rhsa-2025:3847 | Red Hat Security Advisory: OpenJDK 8u452 Windows Security Update | 2025-04-16T17:26:14+00:00 | 2025-11-11T09:58:19+00:00 |
| rhsa-2025:3846 | Red Hat Security Advisory: OpenJDK 8u452 Security Update for Portable Linux Builds | 2025-04-16T17:26:14+00:00 | 2025-11-11T09:58:19+00:00 |
| rhsa-2025:3844 | Red Hat Security Advisory: java-1.8.0-openjdk security update | 2025-04-16T17:13:11+00:00 | 2025-11-11T09:58:19+00:00 |
| rhsa-2025:3905 | Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.0.7 | 2025-04-16T14:51:29+00:00 | 2025-11-14T17:12:20+00:00 |
| rhsa-2025:3850 | Red Hat Security Advisory: OpenJDK 11.0.27 ELS Security Update for Portable Linux Builds | 2025-04-16T11:52:42+00:00 | 2025-11-11T09:58:20+00:00 |
| rhsa-2025:3849 | Red Hat Security Advisory: OpenJDK 11.0.27 ELS Security Update for Windows Builds | 2025-04-16T11:52:31+00:00 | 2025-11-11T09:58:21+00:00 |
| rhsa-2025:3945 | Red Hat Security Advisory: mod_auth_openidc security update | 2025-04-16T10:34:55+00:00 | 2025-11-11T09:50:57+00:00 |
| rhsa-2025:3906 | Red Hat Security Advisory: Logging for Red Hat OpenShift - 5.9.13 | 2025-04-16T10:29:32+00:00 | 2025-11-14T17:12:20+00:00 |
| rhsa-2025:3852 | Red Hat Security Advisory: java-17-openjdk security update | 2025-04-16T09:57:30+00:00 | 2025-11-11T09:58:21+00:00 |
| rhsa-2025:3855 | Red Hat Security Advisory: java-21-openjdk security update | 2025-04-16T09:44:05+00:00 | 2025-11-11T09:58:21+00:00 |
| rhsa-2025:3848 | Red Hat Security Advisory: java-11-openjdk ELS security update | 2025-04-16T08:12:10+00:00 | 2025-11-11T09:58:19+00:00 |
| rhsa-2025:3937 | Red Hat Security Advisory: kernel security update | 2025-04-16T07:12:05+00:00 | 2025-11-06T22:35:53+00:00 |
| rhsa-2025:3935 | Red Hat Security Advisory: kernel security update | 2025-04-16T03:19:59+00:00 | 2025-11-08T06:51:45+00:00 |
| rhsa-2025:3932 | Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.20.0 release | 2025-04-16T02:48:23+00:00 | 2025-11-14T16:53:44+00:00 |
| rhsa-2025:3789 | Red Hat Security Advisory: OpenShift Container Platform 4.15.49 security and extras update | 2025-04-16T02:18:49+00:00 | 2025-11-13T17:26:57+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2024-56614 | xsk: fix OOB map writes when deleting elements | 2024-12-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-56613 | sched/numa: fix memory leak due to the overwritten vma->numab_state | 2024-12-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-56611 | mm/mempolicy: fix migrate_to_node() assuming there is at least one VMA in a MM | 2024-12-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-56606 | af_packet: avoid erroring out after sock_init_data() in packet_create() | 2024-12-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-56605 | Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2cap_sock_create() | 2024-12-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-56604 | Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() | 2024-12-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-56603 | net: af_can: do not leave a dangling sk pointer in can_create() | 2024-12-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-56602 | net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() | 2024-12-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-56601 | net: inet: do not leave a dangling sk pointer in inet_create() | 2024-12-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-56600 | net: inet6: do not leave a dangling sk pointer in inet6_create() | 2024-12-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-56599 | wifi: ath10k: avoid NULL pointer error during sdio remove | 2024-12-02T00:00:00.000Z | 2025-09-03T20:49:34.000Z |
| msrc_cve-2024-56598 | jfs: array-index-out-of-bounds fix in dtReadFirst | 2024-12-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-56596 | jfs: fix array-index-out-of-bounds in jfs_readdir | 2024-12-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-56595 | jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree | 2024-12-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-56593 | wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw() | 2024-12-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-56592 | bpf: Call free_htab_elem() after htab_unlock_bucket() | 2024-12-02T00:00:00.000Z | 2025-10-10T01:01:57.000Z |
| msrc_cve-2024-56591 | Bluetooth: hci_conn: Use disable_delayed_work_sync | 2024-12-02T00:00:00.000Z | 2025-09-03T23:31:40.000Z |
| msrc_cve-2024-56588 | scsi: hisi_sas: Create all dump files during debugfs initialization | 2024-12-02T00:00:00.000Z | 2025-09-03T20:54:23.000Z |
| msrc_cve-2024-56587 | leds: class: Protect brightness_show() with led_cdev->led_access mutex | 2024-12-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-56584 | io_uring/tctx: work around xa_store() allocation error issue | 2024-12-02T00:00:00.000Z | 2025-10-10T14:35:34.000Z |
| msrc_cve-2024-56582 | btrfs: fix use-after-free in btrfs_encoded_read_endio() | 2024-12-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| msrc_cve-2024-56581 | btrfs: ref-verify: fix use-after-free after invalid ref action | 2024-12-02T00:00:00.000Z | 2025-03-08T00:00:00.000Z |
| msrc_cve-2024-56579 | media: amphion: Set video drvdata before register video device | 2024-12-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-56578 | media: imx-jpeg: Set video drvdata before register video device | 2024-12-02T00:00:00.000Z | 2025-03-08T00:00:00.000Z |
| msrc_cve-2024-56577 | media: mtk-jpeg: Fix null-ptr-deref during unload module | 2024-12-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-56575 | media: imx-jpeg: Ensure power suppliers be suspended before detach them | 2024-12-02T00:00:00.000Z | 2025-03-08T00:00:00.000Z |
| msrc_cve-2024-56574 | media: ts2020: fix null-ptr-deref in ts2020_probe() | 2024-12-02T00:00:00.000Z | 2025-03-08T00:00:00.000Z |
| msrc_cve-2024-56572 | media: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal() | 2024-12-02T00:00:00.000Z | 2025-03-08T00:00:00.000Z |
| msrc_cve-2024-56569 | ftrace: Fix regression with module command in stack_trace_filter | 2024-12-02T00:00:00.000Z | 2025-03-08T00:00:00.000Z |
| msrc_cve-2024-56568 | iommu/arm-smmu: Defer probe of clients after smmu device bound | 2024-12-02T00:00:00.000Z | 2025-03-13T00:00:00.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2013-000108 | KDrive Personal for Windows contains an issue where it fails to verify SSL server certificates | 2013-11-22T17:39+09:00 | 2013-11-26T16:02+09:00 |
| jvndb-2013-000110 | D-Link DES-3800 Series vulnerable to denial-of-service (DoS) | 2013-11-22T14:51+09:00 | 2013-11-26T16:15+09:00 |
| jvndb-2013-000109 | D-Link DES-3800 Series vulnerable to denial-of-service (DoS) | 2013-11-22T14:50+09:00 | 2013-11-26T16:09+09:00 |
| jvndb-2013-000106 | EC-CUBE information disclosure vulnerability | 2013-11-20T16:14+09:00 | 2013-11-22T14:18+09:00 |
| jvndb-2013-000107 | EC-CUBE vulnerable to cross-site scripting | 2013-11-20T15:56+09:00 | 2013-11-22T13:57+09:00 |
| jvndb-2013-000098 | EC-CUBE information disclosure vulnerability | 2013-11-20T15:48+09:00 | 2013-11-22T14:35+09:00 |
| jvndb-2013-000097 | EC-CUBE vulnerable to cross-site request forgery | 2013-11-20T15:40+09:00 | 2013-11-22T14:37+09:00 |
| jvndb-2013-000105 | EC-CUBE vulnerable to cross-site scripting | 2013-11-20T15:34+09:00 | 2013-11-22T14:40+09:00 |
| jvndb-2013-000104 | EC-CUBE vulnerable to information disclosure | 2013-11-20T15:19+09:00 | 2013-11-22T14:42+09:00 |
| jvndb-2011-003557 | ASP.NET vulnerable to open redirect | 2013-11-15T15:54+09:00 | 2013-11-15T15:54+09:00 |
| jvndb-2013-000103 | Ichitaro series vulnerable to arbitrary code execution | 2013-11-12T14:33+09:00 | 2013-11-15T10:22+09:00 |
| jvndb-2013-000102 | Page Scroller vulnerable to cross-site scripting | 2013-11-07T14:03+09:00 | 2013-11-07T14:03+09:00 |
| jvndb-2013-000101 | TOWN (modified version) vulnerable to cross-site scripting | 2013-11-07T13:59+09:00 | 2013-11-11T16:34+09:00 |
| jvndb-2013-000100 | Tiki Wiki CMS Groupware vulnerable to SQL injection | 2013-11-05T15:11+09:00 | 2013-11-07T17:57+09:00 |
| jvndb-2013-000099 | Tiki Wiki CMS Groupware vulnerable to cross-site scripting | 2013-11-05T15:05+09:00 | 2013-11-07T17:55+09:00 |
| jvndb-2013-004446 | Use-after-free vulnerability in multiple products that use International Components for Unicode (ICU) | 2013-10-30T16:32+09:00 | 2015-10-28T10:05+09:00 |
| jvndb-2013-001665 | Multiple products that use International Components for Unicode (ICU) vulnerable to denial-of-service (DoS) | 2013-10-30T16:08+09:00 | 2015-10-28T10:05+09:00 |
| jvndb-2013-000096 | RockDisk vulnerable to cross-site scripting | 2013-10-29T14:40+09:00 | 2014-07-02T14:36+09:00 |
| jvndb-2013-000095 | HDL-A and HDL2-A Series vulnerable in session management | 2013-10-18T14:30+09:00 | 2013-10-22T17:56+09:00 |
| jvndb-2013-000094 | Accela BizSearch vulnerable to cross-site scripting | 2013-10-04T12:36+09:00 | 2013-10-08T14:56+09:00 |
| jvndb-2013-004410 | Arbitrary Commands Execution Vulnerability in JP1/Base | 2013-10-03T19:26+09:00 | 2013-10-03T19:26+09:00 |
| jvndb-2013-004409 | Arbitrary Commands Execution Vulnerability in JP1/Automatic Job Management System 3 and JP1/Automatic Job Management System 2 | 2013-10-03T19:24+09:00 | 2013-10-03T19:24+09:00 |
| jvndb-2013-004319 | Multiple vulnerabilities in Java bundled with Hitachi JP1/Cm2/Network Node Manager i | 2013-09-27T14:51+09:00 | 2013-09-27T14:51+09:00 |
| jvndb-2013-004318 | Multiple vulnerabilities in Hitachi JP1/Cm2/Network Node Manager i | 2013-09-27T14:49+09:00 | 2013-09-27T14:49+09:00 |
| jvndb-2013-000090 | D-Link DES-3810 Series vulnerable to denial-of-service (DoS) | 2013-09-20T15:12+09:00 | 2013-09-30T15:52+09:00 |
| jvndb-2013-000089 | D-Link DWL-2100AP vulnerable to denial-of-service (DoS) | 2013-09-20T15:07+09:00 | 2013-09-30T15:47+09:00 |
| jvndb-2013-000092 | SEIL Series routers vulnerable to buffer overflow | 2013-09-20T14:57+09:00 | 2013-09-30T16:46+09:00 |
| jvndb-2013-000091 | SEIL Series routers vulnerable in RADIUS authentication | 2013-09-20T14:52+09:00 | 2013-10-08T15:36+09:00 |
| jvndb-2013-000093 | Internet Explorer vulnerable to arbitrary code execution | 2013-09-19T14:39+09:00 | 2013-10-10T18:12+09:00 |
| jvndb-2013-000087 | Multiple broadband routers may behave as open resolvers | 2013-09-19T13:29+09:00 | 2014-08-28T18:10+09:00 |
| ID | Description | Updated |
|---|