Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-5hpm-4x7m-g857 | In the Linux kernel, the following vulnerability has been resolved: fbdev: simplefb: Fix use after… | 2025-10-28T12:30:16Z | 2025-10-28T12:30:16Z |
| ghsa-4wjr-gmwc-pw8f | In the Linux kernel, the following vulnerability has been resolved: PCI/AER: Avoid NULL pointer de… | 2025-10-28T12:30:16Z | 2025-10-28T12:30:16Z |
| ghsa-4j58-87g3-fv33 | In the Linux kernel, the following vulnerability has been resolved: fs: udf: fix OOB read in lengt… | 2025-10-28T12:30:16Z | 2025-10-29T15:31:53Z |
| ghsa-4chp-rv27-mr56 | In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-test: A… | 2025-10-28T12:30:16Z | 2025-10-28T12:30:16Z |
| ghsa-3q4f-fwrg-cw4x | In the Linux kernel, the following vulnerability has been resolved: mm/ksm: fix flag-dropping beha… | 2025-10-28T12:30:16Z | 2025-10-29T15:31:53Z |
| ghsa-2xf6-75gh-3848 | In the Linux kernel, the following vulnerability has been resolved: f2fs: fix UAF issue in f2fs_me… | 2025-10-28T12:30:16Z | 2025-10-28T12:30:17Z |
| ghsa-2v3w-2h39-x8cq | In the Linux kernel, the following vulnerability has been resolved: LoongArch: BPF: Sign-extend st… | 2025-10-28T12:30:16Z | 2025-10-28T12:30:16Z |
| ghsa-2r8v-pxwr-9h89 | In the Linux kernel, the following vulnerability has been resolved: io_uring/waitid: always prune … | 2025-10-28T12:30:16Z | 2025-10-28T12:30:16Z |
| ghsa-258w-3pq9-4jh3 | In the Linux kernel, the following vulnerability has been resolved: ksmbd: Fix race condition in R… | 2025-10-28T12:30:16Z | 2025-10-28T12:30:16Z |
| ghsa-cv4f-qx52-9x29 | In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: Check return valu… | 2025-10-28T12:30:15Z | 2025-10-29T15:31:53Z |
| ghsa-85qv-cf4w-f5mj | microCLAUDIA in v3.2.0 and prior has an improper access control vulnerability. This flaw allows an… | 2025-10-28T12:30:15Z | 2025-10-28T12:30:15Z |
| ghsa-7wq2-vv6r-49mr | Multiple CSRF attack vectors in JDownloads component 1.0.0-4.0.47 for Joomla were discovered. | 2025-10-28T12:30:15Z | 2025-10-28T21:30:31Z |
| ghsa-wv8v-rm52-wq8h | In the Linux kernel, the following vulnerability has been resolved: net/9p: fix double req put in … | 2025-10-28T12:30:14Z | 2025-10-29T15:31:53Z |
| ghsa-j968-frjr-f6j9 | In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check o… | 2025-10-28T12:30:14Z | 2025-10-28T12:30:14Z |
| ghsa-8vjm-fc8f-c7jh | In the Linux kernel, the following vulnerability has been resolved: binder: fix double-free in dbi… | 2025-10-28T12:30:14Z | 2025-10-28T12:30:14Z |
| ghsa-3p46-x25w-pgvh | In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Don't (re)check L1 i… | 2025-10-28T12:30:14Z | 2025-10-29T15:31:53Z |
| ghsa-8j39-c987-frxv | Webserver crash caused by scanning on TCP port 80 in Softing Industrial Automation GmbH gateways an… | 2025-10-28T09:31:54Z | 2025-10-28T09:31:54Z |
| ghsa-3hj7-rw79-jh5m | Improper locking vulnerability in Softing Industrial Automation GmbH gateways allows infected memor… | 2025-10-28T09:31:54Z | 2025-10-28T09:31:54Z |
| ghsa-g4rv-4m9p-4h3v | The Auto Featured Image (Auto Post Thumbnail) plugin for WordPress is vulnerable to Server-Side Req… | 2025-10-28T06:31:05Z | 2025-10-28T06:31:05Z |
| ghsa-fw5q-p95w-gcpj | The HUSKY – Products Filter Professional for WooCommerce plugin for WordPress is vulnerable to blin… | 2025-10-28T06:31:05Z | 2025-10-28T06:31:05Z |
| ghsa-c6cm-5gc7-c3f4 | Keycloak allows access to admin path through flaw | 2025-10-28T06:31:05Z | 2025-11-14T00:30:27Z |
| ghsa-47gc-9fgw-fhwc | A security flaw has been discovered in code-projects Simple Food Ordering System 1.0. This issue af… | 2025-10-28T06:31:05Z | 2025-10-28T06:31:05Z |
| ghsa-423r-r42q-j5mc | Use of Hard-Coded Credentials issue exists in MZK-DP300N version 1.07 and earlier, which may allow … | 2025-10-28T06:31:05Z | 2025-10-28T06:31:05Z |
| ghsa-x4x9-pp7h-727p | A flaw has been found in Serdar Bayram Ghost Hot Spot up to 20251014. The affected element is an un… | 2025-10-28T03:30:19Z | 2025-10-28T03:30:19Z |
| ghsa-r3m6-rqfj-mr2m | A security vulnerability has been detected in Campcodes Retro Basketball Shoes Online Store 1.0. Th… | 2025-10-28T03:30:19Z | 2025-10-28T03:30:19Z |
| ghsa-q9xr-p2gm-7fm6 | A flaw has been found in MaxSite CMS up to 109. This issue affects some unknown processing of the f… | 2025-10-28T03:30:19Z | 2025-10-28T03:30:19Z |
| ghsa-cfpx-6j59-hggc | A vulnerability was detected in MaxSite CMS up to 109. This vulnerability affects unknown code of t… | 2025-10-28T03:30:19Z | 2025-10-28T03:30:19Z |
| ghsa-c5qw-2537-qcw3 | A weakness has been identified in Campcodes Retro Basketball Shoes Online Store 1.0. This vulnerabi… | 2025-10-28T03:30:19Z | 2025-10-28T03:30:19Z |
| ghsa-783r-ph8w-mp9j | A vulnerability was identified in Campcodes Retro Basketball Shoes Online Store 1.0. Affected by th… | 2025-10-28T03:30:19Z | 2025-10-28T03:30:19Z |
| ghsa-59pm-697w-v8v8 | A vulnerability was detected in ermig1979 AntiDupl up to 2.3.12. Impacted is an unknown function of… | 2025-10-28T03:30:19Z | 2025-10-28T03:30:19Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-40043 | N/A | net: nfc: nci: Add parameter validation for packet data |
Linux |
Linux |
2025-10-28T11:48:22.230Z | 2025-10-28T11:48:22.230Z |
| cve-2025-40042 | N/A | tracing: Fix race condition in kprobe initialization c… |
Linux |
Linux |
2025-10-28T11:48:21.638Z | 2025-10-29T13:19:43.590Z |
| cve-2025-40041 | N/A | LoongArch: BPF: Sign-extend struct ops return values p… |
Linux |
Linux |
2025-10-28T11:48:21.021Z | 2025-10-28T11:48:21.021Z |
| cve-2025-40040 | N/A | mm/ksm: fix flag-dropping behavior in ksm_madvise |
Linux |
Linux |
2025-10-28T11:48:20.395Z | 2025-10-29T13:19:40.112Z |
| cve-2025-40039 | N/A | ksmbd: Fix race condition in RPC handle list access |
Linux |
Linux |
2025-10-28T11:48:19.781Z | 2025-10-28T11:48:19.781Z |
| cve-2025-40038 | N/A | KVM: SVM: Skip fastpath emulation on VM-Exit if next R… |
Linux |
Linux |
2025-10-28T11:48:18.889Z | 2025-10-28T11:48:18.889Z |
| cve-2025-40037 | N/A | fbdev: simplefb: Fix use after free in simplefb_detach… |
Linux |
Linux |
2025-10-28T11:48:18.274Z | 2025-10-28T11:48:18.274Z |
| cve-2025-40036 | N/A | misc: fastrpc: fix possible map leak in fastrpc_put_args |
Linux |
Linux |
2025-10-28T11:48:17.630Z | 2025-10-28T11:48:17.630Z |
| cve-2025-40035 | N/A | Input: uinput - zero-initialize uinput_ff_upload_compa… |
Linux |
Linux |
2025-10-28T11:48:17.030Z | 2025-10-29T13:19:36.823Z |
| cve-2025-40034 | N/A | PCI/AER: Avoid NULL pointer dereference in aer_ratelimit() |
Linux |
Linux |
2025-10-28T11:48:16.335Z | 2025-10-28T11:48:16.335Z |
| cve-2025-40033 | N/A | remoteproc: pru: Fix potential NULL pointer dereferenc… |
Linux |
Linux |
2025-10-28T11:48:15.624Z | 2025-10-28T11:48:15.624Z |
| cve-2025-40032 | N/A | PCI: endpoint: pci-epf-test: Add NULL check for DMA ch… |
Linux |
Linux |
2025-10-28T11:48:14.876Z | 2025-10-28T11:48:14.876Z |
| cve-2025-40031 | N/A | tee: fix register_shm_helper() |
Linux |
Linux |
2025-10-28T11:48:13.644Z | 2025-10-28T11:48:13.644Z |
| cve-2025-40030 | N/A | pinctrl: check the return value of pinmux_ops::get_fun… |
Linux |
Linux |
2025-10-28T11:48:01.608Z | 2025-10-29T13:19:34.573Z |
| cve-2025-40029 | N/A | bus: fsl-mc: Check return value of platform_get_resource() |
Linux |
Linux |
2025-10-28T11:48:00.679Z | 2025-10-29T13:19:32.136Z |
| cve-2025-55758 | N/A | Extension - jdownloads.com - CSRF vectors in jDownload… |
jdownloads.com |
JDownloads component for Joomla |
2025-10-28T10:02:54.016Z | 2025-10-28T20:00:45.402Z |
| cve-2025-40028 | N/A | binder: fix double-free in dbitmap |
Linux |
Linux |
2025-10-28T09:32:35.681Z | 2025-10-28T09:32:35.681Z |
| cve-2025-40027 | N/A | net/9p: fix double req put in p9_fd_cancelled |
Linux |
Linux |
2025-10-28T09:32:34.162Z | 2025-10-29T13:19:29.546Z |
| cve-2025-40026 | N/A | KVM: x86: Don't (re)check L1 intercepts when completin… |
Linux |
Linux |
2025-10-28T09:32:33.075Z | 2025-10-29T13:19:27.308Z |
| cve-2025-40025 | N/A | f2fs: fix to do sanity check on node footer for non in… |
Linux |
Linux |
2025-10-28T09:32:31.806Z | 2025-10-28T09:32:31.806Z |
| cve-2025-41090 | 7.6 (v4.0) | Improper Access Control in CCN-CERT microCLAUDIA |
CCN-CERT |
microCLAUDIA |
2025-10-28T09:17:08.128Z | 2025-10-28T15:35:02.579Z |
| cve-2025-10151 | 7.2 (v4.0) | Malicious TCP/IP thread locking leads into diverse mal… |
Softing Industrial Automation GmbH |
smartLink HW-PN |
2025-10-28T07:25:39.639Z | 2025-10-28T13:27:14.343Z |
| cve-2025-10150 | 8.7 (v4.0) | Webserver crash caused by scanning on TCP port 80 |
Softing Industrial Automation GmbH |
smartLink HW-PN |
2025-10-28T07:24:38.296Z | 2025-10-28T13:28:01.850Z |
| cve-2025-12378 | code-projects Simple Food Ordering System addproduct.p… |
code-projects |
Simple Food Ordering System |
2025-10-28T05:32:05.752Z | 2025-10-28T13:30:09.013Z | |
| cve-2025-11735 | HUSKY – Products Filter Professional for WooCommerce <… |
realmag777 |
HUSKY – Products Filter Professional for WooCommerce |
2025-10-28T05:27:30.225Z | 2025-10-28T13:33:05.054Z | |
| cve-2025-10145 | Auto Featured Image (Auto Post Thumbnail) <= 4.1.7 - A… |
themeisle |
Auto Featured Image (Auto Post Thumbnail) |
2025-10-28T05:27:29.647Z | 2025-10-28T20:04:08.491Z | |
| cve-2025-62777 | 8.8 (v3.0) 8.7 (v4.0) | Use of Hard-Coded Credentials issue exists in MZK… |
PLANEX COMMUNICATIONS INC. |
MZK-DP300N |
2025-10-28T04:53:00.768Z | 2025-10-28T20:03:14.159Z |
| cve-2025-10939 | 3.7 (v3.1) | Org.keycloak/keycloak-quarkus-server: unable to restri… |
Red Hat |
Red Hat build of Keycloak 26.4 |
2025-10-28T03:08:30.103Z | 2025-11-13T22:33:58.213Z |
| cve-2025-12347 | MaxSite CMS save-file-ajax.php unrestricted upload |
MaxSite |
CMS |
2025-10-28T02:02:13.123Z | 2025-10-28T20:00:38.998Z | |
| cve-2025-12346 | MaxSite CMS HTTP Header uploads-require-maxsite.php un… |
MaxSite |
CMS |
2025-10-28T02:02:09.037Z | 2025-10-28T19:54:35.900Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-34315 | 5.1 (v4.0) | IPFire < v2.29 Stored XSS via Remote Syslog Server Address |
IPFire.org |
IPFire |
2025-10-28T14:33:54.312Z | 2025-10-29T18:13:29.333Z |
| cve-2025-34314 | 5.1 (v4.0) | IPFire < v2.29 Stored XSS via Time Constraint Rule URL… |
IPFire.org |
IPFire |
2025-10-28T14:33:09.667Z | 2025-10-29T18:26:57.565Z |
| cve-2025-34313 | 5.1 (v4.0) | IPFire < v2.29 Stored XSS via User Quota Rule URL Filter |
IPFire.org |
IPFire |
2025-10-28T14:32:47.658Z | 2025-10-28T20:02:22.245Z |
| cve-2025-34312 | 8.7 (v4.0) | IPFire < v2.29 Command Injection via URL Filter Blacklist |
IPFire.org |
IPFire |
2025-10-28T14:37:47.417Z | 2025-10-28T15:17:00.706Z |
| cve-2025-34311 | 8.7 (v4.0) | IPFire < v2.29 Command Injection via Proxy Report Creation |
IPFire.org |
IPFire |
2025-10-28T14:43:31.324Z | 2025-10-28T15:16:34.491Z |
| cve-2025-34310 | 5.1 (v4.0) | IPFire < v2.29 Stored XSS via Quality of Service (QoS)… |
IPFire.org |
IPFire |
2025-10-28T14:34:18.157Z | 2025-10-29T18:12:26.568Z |
| cve-2025-34309 | 5.1 (v4.0) | IPFire < v2.29 Stored XSS via Dynamic DNS Host |
IPFire.org |
IPFire |
2025-10-28T14:35:36.088Z | 2025-10-28T15:19:40.678Z |
| cve-2025-34308 | 5.1 (v4.0) | IPFire < v2.29 Stored XSS via Default Time Sync |
IPFire.org |
IPFire |
2025-10-28T14:36:37.471Z | 2025-10-28T15:19:08.097Z |
| cve-2025-34307 | 5.1 (v4.0) | IPFire < v2.29 Stored XSS via Default Country Search |
IPFire.org |
IPFire |
2025-10-28T14:37:12.722Z | 2025-10-28T15:18:44.969Z |
| cve-2025-34306 | 5.1 (v4.0) | IPFire < v2.29 Stored XSS via Default IP Search Value |
IPFire.org |
IPFire |
2025-10-28T14:36:54.996Z | 2025-10-28T15:18:55.649Z |
| cve-2025-34305 | 5.1 (v4.0) | IPFire < v2.29 Stored XSS via Multiple Methods in clea… |
IPFire.org |
IPFire |
2025-10-28T14:34:36.345Z | 2025-10-29T18:09:14.373Z |
| cve-2025-34304 | 7.1 (v4.0) | IPFire < v2.29 SQL Injection via OpenVPN Connection Logs |
IPFire.org |
IPFire |
2025-10-28T14:37:29.929Z | 2025-10-28T15:18:27.982Z |
| cve-2025-34303 | 5.1 (v4.0) | IPFire < v2.29 Stored XSS via Whitelisted Host Creation |
IPFire.org |
IPFire |
2025-10-28T14:32:25.557Z | 2025-10-28T19:55:14.149Z |
| cve-2025-34302 | 5.1 (v4.0) | IPFire < v2.29 Stored XSS via Service Creation |
IPFire.org |
IPFire |
2025-10-28T14:33:32.017Z | 2025-10-29T19:00:31.741Z |
| cve-2025-34301 | 5.1 (v4.0) | IPFire < v2.29 Stored XSS via Location Group Creation |
IPFire.org |
IPFire |
2025-10-28T14:35:16.716Z | 2025-10-28T16:02:33.613Z |
| cve-2025-53855 | An out-of-bounds write vulnerability exists in th… |
GCC Productions Inc. |
Fade In |
2025-10-28T13:45:40.355Z | 2025-11-03T17:45:01.203Z | |
| cve-2025-53814 | A use-after-free vulnerability exists in the XML … |
GCC Productions Inc. |
Fade In |
2025-10-28T13:45:38.831Z | 2025-11-03T17:44:59.975Z | |
| cve-2025-12390 | 6 (v3.1) | Org.keycloak.protocol.oidc.endpoints.logoutendpoint: o… |
Red Hat |
Red Hat build of Keycloak 26.4 |
2025-10-28T13:23:34.634Z | 2025-11-13T22:32:57.560Z |
| cve-2025-12380 | N/A | Use-after-free in WebGPU internals triggered from a co… |
Mozilla |
Firefox |
2025-10-28T14:06:34.814Z | 2025-11-04T15:47:51.527Z |
| cve-2025-12103 | 5 (v3.1) | Openshift-ai: trusty ai grants all authenticated users… |
Red Hat |
Red Hat OpenShift AI 3.0 |
2025-10-28T13:31:59.318Z | 2025-11-12T16:41:13.699Z |
| cve-2025-1038 | 7.5 (v4.0) | The “Diagnostics Tools” page of the web-based con… |
Hitachi Energy |
TropOS 4th Gen |
2025-10-28T12:17:23.182Z | 2025-10-28T13:11:10.628Z |
| cve-2025-1037 | 7.5 (v4.0) | By making minor configuration changes to the Trop… |
Hitachi Energy |
TropOS 4th Gen |
2025-10-28T12:16:36.060Z | 2025-10-28T13:13:02.115Z |
| cve-2025-1036 | 8.7 (v4.0) | Command injection vulnerability exists in the “Lo… |
Hitachi Energy |
TropOS 4th Gen |
2025-10-28T12:15:29.573Z | 2025-10-28T13:14:18.210Z |
| cve-2025-9313 | 9.3 (v4.0) | Unauthorized database access in Asseco mMedica |
Asseco Poland S.A. |
mMedica |
2025-10-28T11:49:29.119Z | 2025-10-28T13:15:31.459Z |
| cve-2025-40082 | N/A | hfsplus: fix slab-out-of-bounds read in hfsplus_uni2asc() |
Linux |
Linux |
2025-10-28T11:48:45.975Z | 2025-10-28T11:48:45.975Z |
| cve-2025-40081 | N/A | perf: arm_spe: Prevent overflow in PERF_IDX2OFF() |
Linux |
Linux |
2025-10-28T11:48:45.392Z | 2025-10-29T13:20:01.782Z |
| cve-2025-40080 | N/A | nbd: restrict sockets to TCP and UDP |
Linux |
Linux |
2025-10-28T11:48:44.796Z | 2025-10-28T11:48:44.796Z |
| cve-2025-40079 | N/A | riscv, bpf: Sign extend struct ops return values properly |
Linux |
Linux |
2025-10-28T11:48:44.122Z | 2025-10-28T11:48:44.122Z |
| cve-2025-40078 | N/A | bpf: Explicitly check accesses to bpf_sock_addr |
Linux |
Linux |
2025-10-28T11:48:43.548Z | 2025-10-29T13:19:59.525Z |
| cve-2025-40077 | N/A | f2fs: fix to avoid overflow while left shift operation |
Linux |
Linux |
2025-10-28T11:48:42.976Z | 2025-10-28T11:48:42.976Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-188131 | Malicious code in mu-dog-proxy-decode-unix (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188130 | Malicious code in morgan-spectron-webdriver-primatology-aldebaran (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188129 | Malicious code in morgan-sass-loader-release-it-quark (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188128 | Malicious code in morgan-readable-auriga-promise (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188127 | Malicious code in morgan-react-bootstrap-cz-conventional-changelog-helios (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188126 | Malicious code in morgan-planckscale-rollup-plugin-void (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188125 | Malicious code in morgan-meteor-loop-delphinus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188124 | Malicious code in morgan-magellan-public-envconfig (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188123 | Malicious code in moon-unix-meta-process-kernel (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188122 | Malicious code in moon-small-nu-rain-static (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188121 | Malicious code in moon-omicron-stub-long-book (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188120 | Malicious code in moon-old-gamma-deploy-cloud (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188119 | Malicious code in moon-new-cloud-mu-cat (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188118 | Malicious code in monitor-data-uglify-compress-book (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188117 | Malicious code in mongoose-wolf-deimos-forever (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188116 | Malicious code in mongoose-supernova-transhumanism-gulp (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188115 | Malicious code in mongoose-odin-rimraf-petrology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188114 | Malicious code in mongoose-electron-bunyan-event (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188113 | Malicious code in mongoose-docusaurus-fomalhaut-oauth (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188112 | Malicious code in mongoose-css-minimizer-webpack-plugin-spectroscopy-aquarius (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188111 | Malicious code in mongoose-cordelia-hawkingradiation-antares (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188110 | Malicious code in mongoose-convict-kaus-thermochronology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188109 | Malicious code in mongodb-nodemon-callback-areology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188108 | Malicious code in mongodb-kastra-gridsome-fusion (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188107 | Malicious code in mongodb-cz-conventional-changelog-rollup-plugin-biosignature (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188106 | Malicious code in mongodb-augmentedreality-mineralogy-postcss (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188105 | Malicious code in module-void-fast-thread-double (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188104 | Malicious code in module-user-signal-pi-monitor (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188103 | Malicious code in module-serialize-fire-bash-mu (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188102 | Malicious code in module-phoebe-elara-meissa (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:3024 | Red Hat Security Advisory: kernel-rt security update | 2025-03-19T20:41:28+00:00 | 2025-11-08T07:13:32+00:00 |
| rhsa-2025:2696 | Red Hat Security Advisory: OpenShift Container Platform 4.17.21 bug fix and security update | 2025-03-19T20:39:06+00:00 | 2025-11-06T22:35:40+00:00 |
| rhsa-2025:3018 | Red Hat Security Advisory: Red Hat build of Cryostat 4.0.0: new RHEL 9 container image security update | 2025-03-19T20:36:44+00:00 | 2025-11-11T16:11:18+00:00 |
| rhea-2025:3039 | Red Hat Enhancement Advisory: RHEA: Submariner 0.19.3 - bug fix and enhancement update | 2025-03-19T15:37:55+00:00 | 2025-11-15T08:42:14+00:00 |
| rhsa-2025:3036 | Red Hat Security Advisory: thunderbird security update | 2025-03-19T07:24:21+00:00 | 2025-11-06T23:24:17+00:00 |
| rhsa-2025:3034 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-03-19T03:47:41+00:00 | 2025-11-14T14:24:59+00:00 |
| rhsa-2025:3026 | Red Hat Security Advisory: kernel security update | 2025-03-19T00:58:56+00:00 | 2025-11-08T07:13:35+00:00 |
| rhsa-2025:3021 | Red Hat Security Advisory: kernel security update | 2025-03-19T00:52:25+00:00 | 2025-11-07T15:50:04+00:00 |
| rhsa-2025:3025 | Red Hat Security Advisory: kernel security update | 2025-03-19T00:51:30+00:00 | 2025-11-08T07:13:33+00:00 |
| rhsa-2025:3027 | Red Hat Security Advisory: kernel-rt security update | 2025-03-19T00:38:55+00:00 | 2025-11-08T07:13:34+00:00 |
| rhsa-2025:3017 | Red Hat Security Advisory: fence-agents security update | 2025-03-18T19:49:55+00:00 | 2025-11-13T17:26:53+00:00 |
| rhsa-2025:3013 | Red Hat Security Advisory: thunderbird security update | 2025-03-18T16:30:44+00:00 | 2025-11-06T23:24:17+00:00 |
| rhsa-2025:3009 | Red Hat Security Advisory: thunderbird security update | 2025-03-18T14:08:23+00:00 | 2025-11-06T23:24:17+00:00 |
| rhsa-2025:3005 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-03-18T09:12:48+00:00 | 2025-11-14T14:24:59+00:00 |
| rhsa-2025:3002 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-03-18T08:17:23+00:00 | 2025-11-14T14:25:02+00:00 |
| rhsa-2025:3001 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-03-18T07:44:23+00:00 | 2025-11-14T14:24:58+00:00 |
| rhsa-2025:3000 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-03-18T05:22:27+00:00 | 2025-11-14T14:24:57+00:00 |
| rhsa-2025:2998 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-03-18T03:29:42+00:00 | 2025-11-14T14:24:57+00:00 |
| rhsa-2025:2997 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-03-18T02:28:37+00:00 | 2025-11-14T14:24:57+00:00 |
| rhsa-2025:2705 | Red Hat Security Advisory: OpenShift Container Platform 4.18.5 bug fix and security update | 2025-03-18T02:17:19+00:00 | 2025-11-06T22:02:30+00:00 |
| rhba-2025:2973 | Red Hat Bug Fix Advisory: mod_proxy_cluster bug fix update | 2025-03-18T00:36:42+00:00 | 2025-11-08T07:12:52+00:00 |
| rhba-2025:2991 | Red Hat Bug Fix Advisory: microcode_ctl bug fix and enhancement update | 2025-03-18T00:28:21+00:00 | 2025-11-06T21:39:27+00:00 |
| rhsa-2025:2958 | Red Hat Security Advisory: thunderbird security update | 2025-03-17T17:36:51+00:00 | 2025-11-06T23:24:16+00:00 |
| rhsa-2025:2959 | Red Hat Security Advisory: thunderbird security update | 2025-03-17T17:36:46+00:00 | 2025-11-06T23:24:16+00:00 |
| rhsa-2025:2960 | Red Hat Security Advisory: thunderbird security update | 2025-03-17T17:32:31+00:00 | 2025-11-06T23:24:17+00:00 |
| rhsa-2025:2957 | Red Hat Security Advisory: thunderbird security update | 2025-03-17T17:32:19+00:00 | 2025-11-06T23:24:20+00:00 |
| rhsa-2025:2956 | Red Hat Security Advisory: pcs security update | 2025-03-17T16:11:06+00:00 | 2025-11-06T22:35:41+00:00 |
| rhsa-2025:2955 | Red Hat Security Advisory: pcs security update | 2025-03-17T16:11:05+00:00 | 2025-11-06T22:35:41+00:00 |
| rhsa-2025:2933 | Red Hat Security Advisory: Red Hat OpenShift Pipelines Release 1.18.0 | 2025-03-17T12:53:03+00:00 | 2025-11-15T08:45:07+00:00 |
| rhsa-2025:2900 | Red Hat Security Advisory: thunderbird security update | 2025-03-17T09:41:44+00:00 | 2025-11-06T23:24:16+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2024-50234 | wifi: iwlegacy: Clear stale interrupts before resuming device | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50233 | staging: iio: frequency: ad9832: fix division by zero in ad9832_calc_freqreg() | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50232 | iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr() | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50231 | iio: gts-helper: Fix memory leaks in iio_gts_build_avail_scale_table() | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50230 | nilfs2: fix kernel bug due to missing clearing of checked flag | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50229 | nilfs2: fix potential deadlock with newly created symlinks | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50226 | cxl/port: Fix use-after-free, permit out-of-order decoder shutdown | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50224 | spi: spi-fsl-dspi: Fix crash when not using GPIO chip select | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50223 | sched/numa: Fix the potential null pointer dereference in task_numa_work() | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50222 | iov_iter: fix copy_page_from_iter_atomic() if KMAP_LOCAL_FORCE_MAP | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50217 | btrfs: fix use-after-free of block device file in __btrfs_free_extra_devids() | 2024-11-02T00:00:00.000Z | 2025-09-03T23:00:44.000Z |
| msrc_cve-2024-50215 | nvmet-auth: assign dh_key to NULL after kfree_sensitive | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50211 | udf: refactor inode_bmap() to handle error | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50209 | RDMA/bnxt_re: Add a check for memory allocation | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50208 | RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50205 | ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size() | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50202 | nilfs2: propagate directory read errors from nilfs_find_entry() | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50201 | drm/radeon: Fix encoder->possible_clones | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50198 | iio: light: veml6030: fix IIO device retrieval from embedded device | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50196 | pinctrl: ocelot: fix system hang on level based interrupts | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50195 | posix-clock: Fix missing timespec64 check in pc_clock_settime() | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50194 | arm64: probes: Fix uprobes for big-endian kernels | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50193 | x86/entry_32: Clear CPU buffers after register restore in NMI return | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50192 | irqchip/gic-v4: Don't allow a VMOVP on a dying VPE | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50189 | HID: amd_sfh: Switch to device-managed dmam_alloc_coherent() | 2024-11-02T00:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-50188 | net: phy: dp83869: fix memory corruption when enabling fiber | 2024-11-02T00:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-50186 | net: explicitly clear the sk pointer, when pf->create fails | 2024-11-02T00:00:00.000Z | 2024-12-13T00:00:00.000Z |
| msrc_cve-2024-50185 | mptcp: handle consistently DSS corruption | 2024-11-02T00:00:00.000Z | 2024-12-13T00:00:00.000Z |
| msrc_cve-2024-50184 | virtio_pmem: Check device status before requesting flush | 2024-11-02T00:00:00.000Z | 2024-12-13T00:00:00.000Z |
| msrc_cve-2024-50183 | scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV instance | 2024-11-02T00:00:00.000Z | 2025-09-03T22:08:49.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2012-001189 | Hitachi IT Operations Analyzer Cross-Site Scripting Vulnerability | 2012-01-27T10:37+09:00 | 2012-01-27T10:37+09:00 |
| jvndb-2012-000008 | glucose 2 vulnerable to arbitrary script execution | 2012-01-23T18:27+09:00 | 2012-01-23T18:27+09:00 |
| jvndb-2012-000004 | osCommerce Japanese version vulnerable to cross-site scripting | 2012-01-20T16:23+09:00 | 2012-01-20T16:23+09:00 |
| jvndb-2012-000005 | osCommerce vulnerable to cross-site scripting | 2012-01-20T16:15+09:00 | 2012-04-26T16:58+09:00 |
| jvndb-2012-000006 | osCommerce vulnerable to directory traversal | 2012-01-20T16:09+09:00 | 2012-01-20T16:09+09:00 |
| jvndb-2012-000007 | Oracle WebLogic Server vulnerable to cross-site scripting | 2012-01-20T15:37+09:00 | 2012-01-20T15:37+09:00 |
| jvndb-2012-000001 | Cogent DataHub vulnerable to cross-site scripting | 2012-01-11T15:22+09:00 | 2012-01-13T15:57+09:00 |
| jvndb-2012-000002 | Cogent DataHub vulnerable to HTTP header injection | 2012-01-11T15:12+09:00 | 2012-01-13T16:08+09:00 |
| jvndb-2012-000003 | Wibu-Systems CodeMeter Runtime vulnerable to denial-of-service | 2012-01-11T15:02+09:00 | 2012-01-11T15:02+09:00 |
| jvndb-2011-002122 | An authentication information Exposure Vulnerability in JP1/IT Resource Management - Manager | 2012-01-06T19:53+09:00 | 2012-01-06T19:53+09:00 |
| jvndb-2011-003295 | JP1/Cm2/Network Node Manager i Denial of Service (DoS) Vulnerability | 2012-01-06T19:51+09:00 | 2012-01-06T19:51+09:00 |
| jvndb-2011-000108 | Movable Type Plugin MailForm vulnerable to cross-site scripting | 2011-12-26T14:49+09:00 | 2011-12-26T14:49+09:00 |
| jvndb-2011-000109 | WordPress vulnerable to arbitrary PHP code execution | 2011-12-26T14:28+09:00 | 2011-12-26T14:28+09:00 |
| jvndb-2011-000110 | WordPress Japanese vulnerable to cross-site scripting | 2011-12-26T14:26+09:00 | 2011-12-26T14:26+09:00 |
| jvndb-2011-000107 | PukiWiki Plus! vulnerable to cross-site scripting | 2011-12-22T18:16+09:00 | 2011-12-22T18:16+09:00 |
| jvndb-2011-000106 | Apache Struts vulnerable to cross-site scripting | 2011-12-22T18:08+09:00 | 2011-12-22T18:08+09:00 |
| jvndb-2011-000105 | Safari for iOS vulnerable to denial-of-service | 2011-12-15T16:30+09:00 | 2011-12-15T16:30+09:00 |
| jvndb-2011-000102 | Multiple vulnerabilities in products that use the Preboot Execution Environment (PXE) SDK | 2011-12-15T16:26+09:00 | 2011-12-20T18:14+09:00 |
| jvndb-2011-000104 | FFFTP may insecurely load executable files | 2011-12-09T17:08+09:00 | 2011-12-09T17:08+09:00 |
| jvndb-2011-000103 | phpWebSite vulnerable to cross-site scripting | 2011-12-08T17:15+09:00 | 2011-12-08T17:15+09:00 |
| jvndb-2011-000101 | Etomite vulnerable to cross-site scripting | 2011-12-06T17:45+09:00 | 2011-12-06T17:45+09:00 |
| jvndb-2011-000100 | PowerChute Business Edition vulnerable to cross-site scripting | 2011-12-06T16:49+09:00 | 2011-12-06T16:49+09:00 |
| jvndb-2011-000076 | Nikki vulnerable to OS command injection | 2011-11-21T18:23+09:00 | 2011-11-21T18:23+09:00 |
| jvndb-2011-000075 | Nikki vulnerable to directory traversal | 2011-11-21T18:22+09:00 | 2011-11-21T18:22+09:00 |
| jvndb-2011-000099 | ChaSen vulnerable to buffer overflow | 2011-11-08T18:31+09:00 | 2011-12-20T18:13+09:00 |
| jvndb-2011-000098 | Iwate Portal Bar vulnerable to arbitrary script execution | 2011-11-08T18:25+09:00 | 2011-11-08T18:25+09:00 |
| jvndb-2011-000097 | WebObjects vulnerable to cross-site scripting | 2011-11-04T17:36+09:00 | 2011-11-04T17:36+09:00 |
| jvndb-2011-000096 | Opengear console servers vulnerable to authentication bypass | 2011-11-04T17:34+09:00 | 2011-11-04T17:34+09:00 |
| jvndb-2011-000095 | CSWorks LiveData Service vulnerable to denial-of-service (DoS) | 2011-11-01T16:05+09:00 | 2011-11-02T14:42+09:00 |
| jvndb-2011-000094 | Multiple SKYARC System Co., Ltd. products vulnerable to cross-site request forgery | 2011-10-31T18:03+09:00 | 2011-11-08T17:38+09:00 |
| ID | Description | Updated |
|---|