Recent vulnerabilities

ID	Description	Published	Updated
ghsa-fv2r-r8mp-pg48	Soft Serve does not sanitize ANSI escape sequences in user input	2025-11-06T23:48:12Z	2025-11-06T23:48:12Z
ghsa-2r4r-5x78-mvqf	KubeVirt Isolation Detection Flaw Allows Arbitrary File Permission Changes	2025-11-06T23:36:39Z	2025-11-07T17:35:55Z
ghsa-7xgm-5prm-v5gc	KubeVirt Excessive Role Permissions Could Enable Unauthorized VMI Migrations Between Nodes	2025-11-06T23:35:49Z	2025-11-06T23:35:49Z
ghsa-9m94-w2vq-hcf9	KubeVirt VMI Denial-of-Service (DoS) Using Pod Impersonation	2025-11-06T23:35:24Z	2025-11-07T18:12:14Z
ghsa-ggp9-c99x-54gp	KubeVirt Improper TLS Certificate Management Handling Allows API Identity Spoofing	2025-11-06T23:35:03Z	2025-11-07T20:51:13Z
ghsa-qw6q-3pgr-5cwq	KubeVirt Arbitrary Container File Read	2025-11-06T23:33:33Z	2025-11-07T23:08:11Z
ghsa-38jw-g2qx-4286	KubeVirt Affected by an Authentication Bypass in Kubernetes Aggregation Layer	2025-11-06T23:32:54Z	2025-11-07T21:56:08Z
ghsa-m6hq-p25p-ffr2	containerd CRI server: Host memory exhaustion through Attach goroutine leak	2025-11-06T23:32:23Z	2025-11-07T16:42:55Z
ghsa-vjvw-m37j-pxh3	Heimdall Data Database Proxy Cross-Site Scripting Remote Code Execution Vulnerability. This vulnera…	2025-11-06T21:31:31Z	2025-11-06T21:31:31Z
ghsa-rrh4-6qqp-9mpv	oobabooga text-generation-webui trust_remote_code Reliance on Untrusted Inputs Remote Code Executio…	2025-11-06T21:31:31Z	2025-11-06T21:31:31Z
ghsa-qx32-gmjh-j7x6	oobabooga text-generation-webui trust_remote_code Reliance on Untrusted Inputs Remote Code Executio…	2025-11-06T21:31:31Z	2025-11-06T21:31:31Z
ghsa-jq34-jj88-v48g	Advantech WebAccess/VPN versions prior to 1.1.5 contain a SQL injection vulnerability in AjaxPreval…	2025-11-06T21:31:31Z	2025-11-06T21:31:31Z
ghsa-h2v8-4c3f-vqgv	evernote-mcp-server openBrowser Command Injection Privilege Escalation Vulnerability. This vulnerab…	2025-11-06T21:31:31Z	2025-11-06T21:31:31Z
ghsa-c53h-rg3p-jfv9	IBM OpenPages 9.1, and 9.0 with Watson is vulnerable to HTML injection. A remote attacker could inj…	2025-11-06T21:31:31Z	2025-11-06T21:31:31Z
ghsa-9c5q-w6gr-fxcq	MQTT does not validate hostnames	2025-11-06T21:31:31Z	2025-11-06T23:50:27Z
ghsa-7rgm-h6gw-hp5g	Advantech WebAccess/VPN versions prior to 1.1.5 contain a SQL injection vulnerability in AjaxStanda…	2025-11-06T21:31:31Z	2025-11-06T21:31:31Z
ghsa-4j92-6j9c-j5g7	Advantech WebAccess/VPN versions prior to 1.1.5 contain a SQL injection vulnerability in NetworksCo…	2025-11-06T21:31:31Z	2025-11-06T21:31:31Z
ghsa-xv26-38rg-x8c2	Advantech WebAccess/VPN versions prior to 1.1.5 contain a SQL injection vulnerability in AjaxDevice…	2025-11-06T21:31:30Z	2025-11-06T21:31:30Z
ghsa-v7qq-g7hw-pj84	Advantech WebAccess/VPN versions prior to 1.1.5 contain a command injection vulnerability in AppMan…	2025-11-06T21:31:30Z	2025-11-06T21:31:30Z
ghsa-mhv6-73gf-63qx	Advantech WebAccess/VPN versions prior to 1.1.5 contain an absolute path traversal via AjaxStandalo…	2025-11-06T21:31:30Z	2025-11-06T21:31:30Z
ghsa-m2mg-hpv9-cffv	Advantech WebAccess/VPN versions prior to 1.1.5 contain a SQL injection vulnerability in AjaxNetwor…	2025-11-06T21:31:30Z	2025-11-06T21:31:30Z
ghsa-j74r-jj49-g8gj	Advantech WebAccess/VPN versions prior to 1.1.5 contain a stored cross-site scripting (XSS) vulnera…	2025-11-06T21:31:30Z	2025-11-06T21:31:30Z
ghsa-h6f4-2rv9-p9w8	Advantech WebAccess/VPN versions prior to 1.1.5 contain a SQL injection vulnerability in AppManagem…	2025-11-06T21:31:30Z	2025-11-06T21:31:30Z
ghsa-ff9r-mxxm-wqxj	Advantech WebAccess/VPN versions prior to 1.1.5 contain a SQL injection vulnerability in AjaxFwRule…	2025-11-06T21:31:30Z	2025-11-06T21:31:30Z
ghsa-c27p-92mm-fc82	Advantech WebAccess/VPN versions prior to 1.1.5 contain a stored cross-site scripting (XSS) vulnera…	2025-11-06T21:31:30Z	2025-11-06T21:31:30Z
ghsa-8xq3-r8f5-3hw3	Advantech WebAccess/VPN versions prior to 1.1.5 contain a SQL injection vulnerability in AjaxFwRule…	2025-11-06T21:31:30Z	2025-11-06T21:31:30Z
ghsa-7x36-v2p9-4w5j	Netgate pfSense CE Suricata Path Traversal Remote Code Execution Vulnerability. This vulnerability …	2025-11-06T21:31:30Z	2025-11-06T21:31:30Z
ghsa-wj94-phrx-4jq9	SuiteCRM versions prior to 7.12.6 contain a SQL injection vulnerability within the processing of th…	2025-11-06T21:31:29Z	2025-11-06T21:31:29Z
ghsa-v3gf-8mqh-c3w6	D-Link DIR-1260 Wi-Fi router firmware versions up to and including v1.20B05 contain a command injec…	2025-11-06T21:31:29Z	2025-11-06T21:31:29Z
ghsa-qqgx-j7v5-7wrr	Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP manage…	2025-11-06T21:31:29Z	2025-11-06T21:31:29Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-63544	N/A	TechStore 1.0 is vulnerable to Cross Site Scripti…	n/a	n/a	2025-11-07T00:00:00.000Z	2025-11-07T20:28:22.998Z
cve-2025-63543	N/A	TechStore 1.0 is vulnerable to Cross Site Scripti…	n/a	n/a	2025-11-07T00:00:00.000Z	2025-11-07T20:26:49.557Z
cve-2025-63420	N/A	A stored cross-site scripting (XSS) vulnerability…	n/a	n/a	2025-11-07T00:00:00.000Z	2025-11-07T21:20:04.341Z
cve-2025-61261	N/A	A reflected cross-site scripting (XSS) vulnerabil…	n/a	n/a	2025-11-07T00:00:00.000Z	2025-11-07T19:28:12.951Z
cve-2025-60574	N/A	A Local File Inclusion (LFI) vulnerability has be…	n/a	n/a	2025-11-07T00:00:00.000Z	2025-11-07T21:21:43.767Z
cve-2025-57698	N/A	AstrBot Project v3.5.22 contains a directory trav…	n/a	n/a	2025-11-07T00:00:00.000Z	2025-11-07T16:43:54.572Z
cve-2025-57697	N/A	AstrBot Project v3.5.22 has an arbitrary file rea…	n/a	n/a	2025-11-07T00:00:00.000Z	2025-11-07T17:44:56.493Z
cve-2025-12789	6.1 (v3.1)	Rhsso: open redirect	Red Hat	Red Hat Single Sign-On 7	2025-11-06T23:20:50.489Z	2025-11-07T17:59:33.792Z
cve-2025-58423	8.8 (v3.1) 8.7 (v4.0)	Advantech DeviceOn/iEdge Path Traversal	Advantech	DeviceOn/iEdge	2025-11-06T22:31:02.740Z	2025-11-06T22:31:02.740Z
cve-2025-59171	7.5 (v3.1) 8.7 (v4.0)	Advantech DeviceOn/iEdge Path Traversal	Advantech	DeviceOn/iEdge	2025-11-06T22:29:27.309Z	2025-11-07T14:02:38.873Z
cve-2025-62630	8.8 (v3.1) 8.7 (v4.0)	Advantech DeviceOn/iEdge Path Traversal	Advantech	DeviceOn/iEdge	2025-11-06T22:27:14.439Z	2025-11-07T14:03:30.791Z
cve-2025-11460	N/A	Use after free in Storage in Google Chrome prior …	Google	Chrome	2025-11-06T22:26:49.566Z	2025-11-08T04:55:15.229Z
cve-2025-11458	N/A	Heap buffer overflow in Sync in Google Chrome pri…	Google	Chrome	2025-11-06T22:26:49.076Z	2025-11-08T04:55:18.292Z
cve-2025-11756	N/A	Use after free in Safe Browsing in Google Chrome …	Google	Chrome	2025-11-06T22:26:20.265Z	2025-11-08T04:55:17.540Z
cve-2025-12036	N/A	Out of bounds memory access in V8 in Google Chrom…	Google	Chrome	2025-11-06T22:24:32.370Z	2025-11-08T04:55:14.335Z
cve-2025-64302	6.4 (v3.1) 5.3 (v4.0)	Advantech DeviceOn/iEdge Cross-site Scripting	Advantech	DeviceOn/iEdge	2025-11-06T22:24:15.401Z	2025-11-07T13:23:28.291Z
cve-2025-12636	6.5 (v3.1) 7.1 (v4.0)	Ubia Ubox	Ubia	Ubox	2025-11-06T22:15:01.130Z	2025-11-07T13:24:09.996Z
cve-2025-11219	N/A	Use after free in V8 in Google Chrome prior to 14…	Google	Chrome	2025-11-06T22:08:57.161Z	2025-11-07T13:37:19.731Z
cve-2025-11216	N/A	Inappropriate implementation in Storage in Google…	Google	Chrome	2025-11-06T22:08:56.861Z	2025-11-07T13:44:04.956Z
cve-2025-11215	N/A	Off by one error in V8 in Google Chrome prior to …	Google	Chrome	2025-11-06T22:08:56.565Z	2025-11-07T14:53:43.680Z
cve-2025-11213	N/A	Inappropriate implementation in Omnibox in Google…	Google	Chrome	2025-11-06T22:08:56.274Z	2025-11-07T15:00:24.639Z
cve-2025-11212	N/A	Inappropriate implementation in Media in Google C…	Google	Chrome	2025-11-06T22:08:55.792Z	2025-11-07T15:01:19.055Z
cve-2025-11211	N/A	Out of bounds read in Media in Google Chrome prio…	Google	Chrome	2025-11-06T22:08:55.517Z	2025-11-06T22:08:55.517Z
cve-2025-11210	N/A	Side-channel information leakage in Tab in Google…	Google	Chrome	2025-11-06T22:08:54.752Z	2025-11-07T13:28:35.994Z
cve-2025-11209	N/A	Inappropriate implementation in Omnibox in Google…	Google	Chrome	2025-11-06T22:08:54.364Z	2025-11-06T22:08:54.364Z
cve-2025-11208	N/A	Inappropriate implementation in Media in Google C…	Google	Chrome	2025-11-06T22:08:54.038Z	2025-11-07T14:04:08.574Z
cve-2025-11207	N/A	Side-channel information leakage in Storage in Go…	Google	Chrome	2025-11-06T22:08:53.752Z	2025-11-06T22:08:53.752Z
cve-2025-11206	N/A	Heap buffer overflow in Video in Google Chrome pr…	Google	Chrome	2025-11-06T22:08:53.382Z	2025-11-08T04:55:16.020Z
cve-2025-11205	N/A	Heap buffer overflow in WebGPU in Google Chrome p…	Google	Chrome	2025-11-06T22:08:52.920Z	2025-11-08T04:55:16.818Z
cve-2025-64179		lakeFS: Unauthenticated access to API usage metrics	treeverse	lakeFS	2025-11-06T21:57:18.234Z	2025-11-07T13:24:42.263Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-64323		kgateway is missing xDS authorization	kgateway-dev	kgateway	2025-11-07T03:18:48.993Z	2025-11-07T17:50:53.540Z
cve-2025-64187		OctoPrint is vulnerable to XSS through Action Command …	OctoPrint	OctoPrint	2025-11-07T03:11:34.227Z	2025-11-07T17:59:07.039Z
cve-2025-64184		Dosage vulnerable to Directory Traversal through craft…	webcomics	dosage	2025-11-07T03:02:41.838Z	2025-11-07T18:02:26.896Z
cve-2025-64180		Manager-io/Manager: Complete Bypass of SSRF Protection…	Manager-io	Manager	2025-11-07T02:58:44.575Z	2025-11-07T02:58:44.575Z
cve-2025-5483		LC Wizard 1.2.10 - 1.3.0 - Missing Authorization to Un…	niaj	Connector Wizard (formerly LC Wizard)	2025-11-07T03:27:50.945Z	2025-11-07T17:47:15.444Z
cve-2025-11546	9.3 (v4.0)	CLUSTERPRO X for Linux 4.0, 4.1, 4.2, 5.0, 5.1 an…	NEC Corporation	CLUSTERPRO X for Linux (EXPRESSCLUSTER X for Linux)	2025-11-07T01:09:08.662Z	2025-11-07T18:29:57.236Z
cve-2025-52662		A vulnerability in Nuxt DevTools has been fixed i…	Vercel	Nuxt Devtools	2025-11-07T00:43:27.913Z	2025-11-07T18:39:49.230Z
cve-2025-48985		A vulnerability in Vercel’s AI SDK has been fixed…	Vercel	AI SDK	2025-11-07T00:43:28.027Z	2025-11-07T18:35:24.238Z
cve-2025-12789	6.1 (v3.1)	Rhsso: open redirect	Red Hat	Red Hat Single Sign-On 7	2025-11-06T23:20:50.489Z	2025-11-07T17:59:33.792Z
cve-2025-64302	6.4 (v3.1) 5.3 (v4.0)	Advantech DeviceOn/iEdge Cross-site Scripting	Advantech	DeviceOn/iEdge	2025-11-06T22:24:15.401Z	2025-11-07T13:23:28.291Z
cve-2025-62630	8.8 (v3.1) 8.7 (v4.0)	Advantech DeviceOn/iEdge Path Traversal	Advantech	DeviceOn/iEdge	2025-11-06T22:27:14.439Z	2025-11-07T14:03:30.791Z
cve-2025-59171	7.5 (v3.1) 8.7 (v4.0)	Advantech DeviceOn/iEdge Path Traversal	Advantech	DeviceOn/iEdge	2025-11-06T22:29:27.309Z	2025-11-07T14:02:38.873Z
cve-2025-58423	8.8 (v3.1) 8.7 (v4.0)	Advantech DeviceOn/iEdge Path Traversal	Advantech	DeviceOn/iEdge	2025-11-06T22:31:02.740Z	2025-11-06T22:31:02.740Z
cve-2025-12636	6.5 (v3.1) 7.1 (v4.0)	Ubia Ubox	Ubia	Ubox	2025-11-06T22:15:01.130Z	2025-11-07T13:24:09.996Z
cve-2025-12036	N/A	Out of bounds memory access in V8 in Google Chrom…	Google	Chrome	2025-11-06T22:24:32.370Z	2025-11-08T04:55:14.335Z
cve-2025-11756	N/A	Use after free in Safe Browsing in Google Chrome …	Google	Chrome	2025-11-06T22:26:20.265Z	2025-11-08T04:55:17.540Z
cve-2025-11460	N/A	Use after free in Storage in Google Chrome prior …	Google	Chrome	2025-11-06T22:26:49.566Z	2025-11-08T04:55:15.229Z
cve-2025-11458	N/A	Heap buffer overflow in Sync in Google Chrome pri…	Google	Chrome	2025-11-06T22:26:49.076Z	2025-11-08T04:55:18.292Z
cve-2025-64179		lakeFS: Unauthenticated access to API usage metrics	treeverse	lakeFS	2025-11-06T21:57:18.234Z	2025-11-07T13:24:42.263Z
cve-2025-64178		Jellysweep uses uncontrolled data in image cache API e…	jon4hz	jellysweep	2025-11-06T21:46:58.994Z	2025-11-07T14:59:57.782Z
cve-2025-64177		ThinkDashboard: Stored XSS in Dashboard via Malicious …	MatiasDesuu	ThinkDashboard	2025-11-06T21:32:43.236Z	2025-11-06T21:45:13.536Z
cve-2025-64176		ThinkDashboard: Arbitrary File Upload vulnerability in…	MatiasDesuu	ThinkDashboard	2025-11-06T21:12:38.265Z	2025-11-06T21:31:41.244Z
cve-2025-11219	N/A	Use after free in V8 in Google Chrome prior to 14…	Google	Chrome	2025-11-06T22:08:57.161Z	2025-11-07T13:37:19.731Z
cve-2025-11216	N/A	Inappropriate implementation in Storage in Google…	Google	Chrome	2025-11-06T22:08:56.861Z	2025-11-07T13:44:04.956Z
cve-2025-11215	N/A	Off by one error in V8 in Google Chrome prior to …	Google	Chrome	2025-11-06T22:08:56.565Z	2025-11-07T14:53:43.680Z
cve-2025-11213	N/A	Inappropriate implementation in Omnibox in Google…	Google	Chrome	2025-11-06T22:08:56.274Z	2025-11-07T15:00:24.639Z
cve-2025-11212	N/A	Inappropriate implementation in Media in Google C…	Google	Chrome	2025-11-06T22:08:55.792Z	2025-11-07T15:01:19.055Z
cve-2025-11211	N/A	Out of bounds read in Media in Google Chrome prio…	Google	Chrome	2025-11-06T22:08:55.517Z	2025-11-06T22:08:55.517Z
cve-2025-11210	N/A	Side-channel information leakage in Tab in Google…	Google	Chrome	2025-11-06T22:08:54.752Z	2025-11-07T13:28:35.994Z
cve-2025-11209	N/A	Inappropriate implementation in Omnibox in Google…	Google	Chrome	2025-11-06T22:08:54.364Z	2025-11-06T22:08:54.364Z

ID	Description	Published	Updated

ID	Description	Package	Published	Updated

ID	Description	Updated

ID	Description	Published	Updated
mal-2025-54960	Malicious code in surya-brongkos49-sluey (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54959	Malicious code in surya-brengkes28-sluey (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54958	Malicious code in surya-bika95-riris (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54957	Malicious code in surya-bakwan91-sluey (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54956	Malicious code in surya-bakwan89-miaww (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54955	Malicious code in surya-bakwan83-sluey (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54954	Malicious code in surya-bakwan45-breki (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54953	Malicious code in surya-asinan68-sluey (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54833	Malicious code in sari-wajit3-miaww (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54832	Malicious code in sari-tomat85-riris (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54831	Malicious code in sari-taiwan2-riris (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54830	Malicious code in sari-tahutek30-breki (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54829	Malicious code in sari-sroto72-riris (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54828	Malicious code in sari-sroto46-remi (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54827	Malicious code in sari-soto12-sluey (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54826	Malicious code in sari-serimuka27-sukiwir (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54825	Malicious code in sari-serabi45-breki (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54824	Malicious code in sari-sate57-breki (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54823	Malicious code in sari-sate15-riris (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54822	Malicious code in sari-sambel16-sukiwir (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54821	Malicious code in sari-ruwet82-breki (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54820	Malicious code in sari-ronde90-ruro (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54819	Malicious code in sari-rangginang35-sluey (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54818	Malicious code in sari-pisang47-riris (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54817	Malicious code in sari-pecel69-sukiwir (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54816	Malicious code in sari-ongol-ongol62-miaww (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54815	Malicious code in sari-ongol-ongol49-sluey (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54814	Malicious code in sari-nasi94-ruro (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54813	Malicious code in sari-mieayam63-miaww (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z
mal-2025-54812	Malicious code in sari-mieaceh100-sluey (npm)	2025-11-10T05:18:00Z	2025-11-10T05:18:00Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
rhsa-2025:18233	Red Hat Security Advisory: OpenShift Container Platform 4.19.17 bug fix and security update	2025-10-21T13:18:19+00:00	2025-11-06T22:56:38+00:00
rhsa-2025:18715	Red Hat Security Advisory: yelp security update from RHEL	2025-10-21T04:48:16+00:00	2025-10-21T08:02:37+00:00
rhsa-2025:18714	Red Hat Security Advisory: osbuild-composer security update from RHEL	2025-10-21T04:46:31+00:00	2025-10-21T08:02:37+00:00
rhsa-2025:18703	Red Hat Security Advisory: xterm security update from RHEL	2025-10-21T04:43:21+00:00	2025-10-21T08:02:37+00:00
rhsa-2025:18704	Red Hat Security Advisory: firefox security update from RHEL	2025-10-21T04:42:31+00:00	2025-10-21T08:02:35+00:00
rhsa-2025:18440	Red Hat Security Advisory: python3.9 security update from RHEL	2025-10-21T04:16:36+00:00	2025-10-21T08:02:08+00:00
rhsa-2025:18698	Red Hat Security Advisory: podman security update from RHEL	2025-10-21T04:16:19+00:00	2025-10-21T08:02:35+00:00
rhsa-2025:18695	Red Hat Security Advisory: gvisor-tap-vsock security update from RHEL	2025-10-21T04:16:01+00:00	2025-10-21T08:02:33+00:00
rhsa-2025:18697	Red Hat Security Advisory: buildah security update from RHEL	2025-10-21T04:15:11+00:00	2025-10-21T08:02:34+00:00
rhsa-2025:18693	Red Hat Security Advisory: skopeo security update from RHEL	2025-10-21T04:14:35+00:00	2025-10-21T08:02:32+00:00
rhsa-2025:18685	Red Hat Security Advisory: git security update from RHEL	2025-10-21T04:14:20+00:00	2025-10-21T08:02:31+00:00
rhsa-2025:9562	Red Hat Security Advisory: OpenShift Container Platform 4.20.0 bug fix and security update	2025-10-21T04:13:27+00:00	2025-11-10T01:33:04+00:00
rhsa-2025:18684	Red Hat Security Advisory: ghostscript security update from RHEL	2025-10-21T04:08:16+00:00	2025-10-21T08:02:30+00:00
rhsa-2025:18688	Red Hat Security Advisory: mod_auth_openidc security update from RHEL	2025-10-21T04:06:40+00:00	2025-10-21T08:02:32+00:00
rhsa-2025:18673	Red Hat Security Advisory: libxslt security update from RHEL	2025-10-21T04:06:25+00:00	2025-10-21T08:02:27+00:00
rhsa-2025:18680	Red Hat Security Advisory: 389-ds-base security update from RHEL	2025-10-21T04:05:55+00:00	2025-10-21T08:02:29+00:00
rhsa-2025:18675	Red Hat Security Advisory: webkit2gtk3 security update from RHEL	2025-10-21T04:05:27+00:00	2025-10-21T08:02:27+00:00
rhsa-2025:18674	Red Hat Security Advisory: opentelemetry-collector security update from RHEL	2025-10-21T04:04:50+00:00	2025-10-21T08:02:27+00:00
rhsa-2025:18677	Red Hat Security Advisory: gimp security update from RHEL	2025-10-21T04:04:31+00:00	2025-10-21T08:02:30+00:00
rhsa-2025:18672	Red Hat Security Advisory: expat security update from RHEL	2025-10-21T04:03:56+00:00	2025-10-21T08:02:25+00:00
rhsa-2025:18657	Red Hat Security Advisory: grub2 security update from RHEL	2025-10-21T04:03:55+00:00	2025-10-21T08:02:23+00:00
rhsa-2025:18669	Red Hat Security Advisory: grafana security update from RHEL	2025-10-21T03:51:25+00:00	2025-10-21T08:02:25+00:00
rhsa-2025:18635	Red Hat Security Advisory: python3.12 security update from RHEL	2025-10-21T03:51:20+00:00	2025-10-21T08:02:19+00:00
rhsa-2025:18625	Red Hat Security Advisory: bootc security update from RHEL	2025-10-21T03:51:01+00:00	2025-10-21T08:02:17+00:00
rhsa-2025:18665	Red Hat Security Advisory: vim security update from RHEL	2025-10-21T03:50:31+00:00	2025-10-21T08:02:23+00:00
rhsa-2025:18658	Red Hat Security Advisory: corosync security update from RHEL	2025-10-21T03:49:01+00:00	2025-10-21T08:02:23+00:00
rhsa-2025:18645	Red Hat Security Advisory: aardvark-dns security update from RHEL	2025-10-21T03:48:36+00:00	2025-10-21T08:02:21+00:00
rhsa-2025:18608	Red Hat Security Advisory: protobuf security update from RHEL	2025-10-21T03:48:00+00:00	2025-10-21T08:02:15+00:00
rhsa-2025:18639	Red Hat Security Advisory: perl-Module-ScanDeps security update from RHEL	2025-10-21T03:46:45+00:00	2025-10-21T08:02:19+00:00
rhsa-2025:18612	Red Hat Security Advisory: python3.12-cryptography security update from RHEL	2025-10-21T03:45:25+00:00	2025-10-21T08:02:16+00:00

ID	Description	Published	Updated
msrc_cve-2025-39905	net: phylink: add lock for serializing concurrent pl->phydev writes with resolver	2025-10-02T00:00:00.000Z	2025-10-02T01:07:39.000Z
msrc_cve-2025-39902	mm/slub: avoid accessing metadata when pointer is invalid in object_err()	2025-10-02T00:00:00.000Z	2025-10-02T01:06:58.000Z
msrc_cve-2025-39901	i40e: remove read access to debugfs files	2025-10-02T00:00:00.000Z	2025-10-02T01:06:42.000Z
msrc_cve-2025-39898	e1000e: fix heap overflow in e1000_set_eeprom	2025-10-02T00:00:00.000Z	2025-10-02T01:07:22.000Z
msrc_cve-2025-39895	sched: Fix sched_numa_find_nth_cpu() if mask offline	2025-10-02T00:00:00.000Z	2025-10-02T01:06:30.000Z
msrc_cve-2025-39891	wifi: mwifiex: Initialize the chan_stats array to zero	2025-10-02T00:00:00.000Z	2025-10-02T01:06:37.000Z
msrc_cve-2025-37727	Elasticsearch Insertion of sensitive information in log file	2025-10-02T00:00:00.000Z	2025-10-11T01:03:07.000Z
msrc_cve-2025-12060	Keras keras.utils.get_file Utility Path Traversal Vulnerability	2025-10-02T00:00:00.000Z	2025-11-01T01:01:19.000Z
msrc_cve-2025-12058	Vulnerability in Keras Model.load_model Leading to Arbitrary Local File Loading and SSRF	2025-10-02T00:00:00.000Z	2025-10-31T01:03:15.000Z
msrc_cve-2025-11840	GNU Binutils ldmisc.c vfinfo out-of-bounds	2025-10-02T00:00:00.000Z	2025-10-29T01:04:28.000Z
msrc_cve-2025-11839	GNU Binutils prdbg.c tg_tag_type return value	2025-10-02T00:00:00.000Z	2025-10-25T14:01:37.000Z
msrc_cve-2025-11495	GNU Binutils Linker elf64-x86-64.c elf_x86_64_relocate_section heap-based overflow	2025-10-02T00:00:00.000Z	2025-10-11T01:02:13.000Z
msrc_cve-2025-11414	GNU Binutils Linker elflink.c get_link_hash_entry out-of-bounds	2025-10-02T00:00:00.000Z	2025-10-11T01:02:35.000Z
msrc_cve-2025-11413	GNU Binutils Linker elflink.c elf_link_add_object_symbols out-of-bounds	2025-10-02T00:00:00.000Z	2025-10-11T01:02:24.000Z
msrc_cve-2025-11412	GNU Binutils Linker elflink.c bfd_elf_gc_record_vtentry out-of-bounds	2025-10-02T00:00:00.000Z	2025-10-11T01:02:46.000Z
msrc_cve-2025-11411	Possible domain hijacking via promiscuous records in the authority section	2025-10-02T00:00:00.000Z	2025-10-24T01:01:26.000Z
msrc_cve-2025-11234	Qemu-kvm: vnc websocket handshake use-after-free	2025-10-02T00:00:00.000Z	2025-10-07T01:01:16.000Z
msrc_cve-2025-10729	Use-after-free vulnerability in Qt SVG qsvghandler.cpp allows denial of service via crafted SVG	2025-10-02T00:00:00.000Z	2025-10-07T01:01:34.000Z
msrc_cve-2025-10728	Uncontrolled recursion in Qt SVG module	2025-10-02T00:00:00.000Z	2025-10-07T01:01:25.000Z
msrc_cve-2024-31573	XMLUnit for Java before 2.10.0, in the default configuration, might allow code execution via an untrusted stylesheet (used for an XSLT transformation), because XSLT extension functions are enabled.	2025-10-02T00:00:00.000Z	2025-10-19T01:01:21.000Z
msrc_cve-2023-53469	af_unix: Fix null-ptr-deref in unix_stream_sendpage().	2025-10-02T00:00:00.000Z	2025-10-02T01:07:32.000Z
msrc_cve-2022-50502	mm: /proc/pid/smaps_rollup: fix no vma's null-deref	2025-10-02T00:00:00.000Z	2025-10-06T01:38:02.000Z
msrc_cve-2025-9906	Arbitrary Code execution in Keras Safe Mode	2025-09-02T00:00:00.000Z	2025-09-20T01:03:50.000Z
msrc_cve-2025-9905	Arbitary Code execution in Keras load_model()	2025-09-02T00:00:00.000Z	2025-09-20T01:03:44.000Z
msrc_cve-2025-9901	Libsoup: improper handling of http vary header in libsoup caching	2025-09-02T00:00:00.000Z	2025-09-07T01:17:16.000Z
msrc_cve-2025-9900	Libtiff: libtiff write-what-where	2025-09-02T00:00:00.000Z	2025-09-27T01:03:04.000Z
msrc_cve-2025-9648	Denial of Service in CivetWeb	2025-09-02T00:00:00.000Z	2025-10-03T01:01:47.000Z
msrc_cve-2025-9566	Podman: podman kube play command may overwrite host files	2025-09-02T00:00:00.000Z	2025-09-07T01:16:18.000Z
msrc_cve-2025-9232	Out-of-bounds read in HTTP client no_proxy handling	2025-09-02T00:00:00.000Z	2025-10-02T01:05:50.000Z
msrc_cve-2025-9231	Timing side-channel in SM2 algorithm on 64 bit ARM	2025-09-02T00:00:00.000Z	2025-10-02T01:05:45.000Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Updated

ID	Description	Published	Updated
jvndb-2024-011744	REST-APIs unintentionally enabled in Century Systems FutureNet NXR series routers	2024-11-01T13:49+09:00	2024-11-01T13:49+09:00
jvndb-2024-000117	Stack-based buffer overflow vulnerability in multiple laser printers and MFPs which implement Ricoh Web Image Monitor	2024-10-31T16:44+09:00	2025-05-19T17:59+09:00
jvndb-2024-000116	Hikvision network camera security enhancement to prevent cleartext transmission of Dynamic DNS credentials	2024-10-30T15:07+09:00	2024-10-30T15:07+09:00
jvndb-2024-011256	Multiple vulnerabilities in Sharp and Toshiba Tec MFPs	2024-10-28T17:33+09:00	2024-10-28T17:33+09:00
jvndb-2024-000115	Chatwork Desktop Application (Windows) uses a potentially dangerous function	2024-10-28T14:29+09:00	2024-10-28T14:29+09:00
jvndb-2024-000114	Multiple vulnerabilities in baserCMS	2024-10-25T15:07+09:00	2025-02-18T15:35+09:00
jvndb-2024-010802	Multiple SQL injection vulnerabilities in Trend Micro Deep Discovery Inspector	2024-10-22T13:02+09:00	2024-10-22T13:02+09:00
jvndb-2024-000106	Multiple vulnerabilities in AIPHONE IX SYSTEM, IXG SYSTEM, and System Support Software	2024-10-21T11:58+09:00	2024-11-21T11:37+09:00
jvndb-2024-000113	N-LINE vulnerable to HTML injection	2024-10-18T14:48+09:00	2024-10-25T16:48+09:00
jvndb-2024-000112	MUSASI version 3 performing authentication on client-side	2024-10-18T14:40+09:00	2024-10-25T16:55+09:00
jvndb-2024-000111	SHIRASAGI vulnerable to path traversal	2024-10-16T14:12+09:00	2024-10-23T17:35+09:00
jvndb-2024-000110	Multiple vulnerabilities in Exment	2024-10-11T14:13+09:00	2024-10-11T14:13+09:00
jvndb-2024-000109	baserCMS plugin "BurgerEditor" vulnerable to directory listing	2024-10-10T14:57+09:00	2024-11-06T14:45+09:00
jvndb-2024-009667	Multiple vulnerabilities in JTEKT ELECTRONICS Kostac PLC Programming Software	2024-10-03T13:42+09:00	2024-10-03T13:42+09:00
jvndb-2024-000108	Apache Tomcat improper handling of TLS handshake process data	2024-10-01T17:51+09:00	2024-10-01T17:51+09:00
jvndb-2024-009498	Vulnerability in Cosminexus	2024-10-01T16:01+09:00	2024-10-01T16:01+09:00
jvndb-2024-009481	Insecure initial password configuration issue in SEIKO EPSON Web Config	2024-10-01T14:14+09:00	2024-11-12T10:25+09:00
jvndb-2024-000107	RevoWorks Cloud vulnerable to unintended process execution	2024-09-30T15:17+09:00	2024-09-30T15:17+09:00
jvndb-2024-003932	File Permissions Vulnerability in Hitachi Ops Center Common Services	2024-09-30T14:15+09:00	2024-09-30T14:15+09:00
jvndb-2024-000105	Multiple vulnerabilities in Smart-tab	2024-09-30T14:14+09:00	2024-09-30T14:14+09:00
jvndb-2024-009396	SNMP service is enabled by default in Sharp NEC Display Solutions projectors	2024-09-30T12:46+09:00	2024-09-30T12:46+09:00
jvndb-2024-000104	MF Teacher Performance Management System vulnerable to cross-site scripting	2024-09-27T15:00+09:00	2024-10-10T11:14+09:00
jvndb-2024-000103	The installer of e-Tax software(common program) vulnerable to privilege escalation	2024-09-24T16:12+09:00	2024-09-24T16:12+09:00
jvndb-2024-000102	Multiple NTT EAST Home GateWay/Hikari Denwa routers fail to restrict access permissions	2024-09-24T16:00+09:00	2024-10-18T11:02+09:00
jvndb-2024-000101	Multiple vulnerabilities in PLANEX COMMUNICATIONS network devices	2024-09-24T15:26+09:00	2024-09-24T15:26+09:00
jvndb-2024-008391	Multiple vulnerabilities in TAKENAKA ENGINEERING digital video recorders	2024-09-19T14:07+09:00	2024-09-19T14:07+09:00
jvndb-2024-000100	Multiple vulnerabilities in WordPress plugin "Welcart e-Commerce"	2024-09-18T14:34+09:00	2024-09-18T14:34+09:00
jvndb-2024-000099	Assimp vulnerable to heap-based buffer overflow	2024-09-18T14:20+09:00	2024-09-18T14:20+09:00
jvndb-2020-018328	Falsification and eavesdropping of contents across multiple websites via Web Rehosting services	2024-09-12T12:23+09:00	2024-09-12T12:23+09:00
jvndb-2023-027250	Security Problem in Web Browser Permission Mechanism	2024-09-11T18:19+09:00	2024-09-11T18:19+09:00

ID	Description	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated