Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-67860 |
3.8 (3.1)
|
NeuVector scanner insecurely handles passwords as comm… |
SUSE |
harvester |
2026-02-25T10:33:25.605Z | 2026-02-25T10:33:25.605Z |
| CVE-2026-26103 |
7.1 (3.1)
|
Udisks: missing authorization check allows unprivilege… |
Red Hat |
Red Hat Enterprise Linux 10 |
2026-02-25T10:31:50.913Z | 2026-02-25T10:31:50.913Z |
| CVE-2024-22128 |
4.7 (3.1)
|
Cross-Site Scripting (XSS) vulnerability in SAP NetWea… |
SAP_SE |
SAP NetWeaver Business Client for HTML |
2024-02-13T02:02:14.281Z | 2026-02-25T09:45:44.998Z |
| CVE-2026-2367 |
6.4 (3.1)
|
Secure Copy Content Protection and Content Locking <= … |
ays-pro |
Secure Copy Content Protection and Content Locking |
2026-02-25T09:26:51.702Z | 2026-02-25T09:26:51.702Z |
| CVE-2026-2301 |
4.3 (3.1)
|
Post Duplicator <= 3.0.8 - Missing Authorization to Au… |
metaphorcreations |
Post Duplicator |
2026-02-25T09:26:51.333Z | 2026-02-25T09:26:51.333Z |
| CVE-2026-2410 |
4.3 (3.1)
|
Disable Admin Notices – Hide Dashboard Notifications <… |
themeisle |
Disable Admin Notices – Hide Dashboard Notifications |
2026-02-25T09:26:50.985Z | 2026-02-25T09:26:50.985Z |
| CVE-2025-29481 |
6.2 (3.1)
|
Buffer Overflow vulnerability in libbpf 1.5.0 all… |
n/a |
n/a |
2025-04-07T00:00:00.000Z | 2026-02-25T07:51:20.699Z |
| CVE-2025-11563 |
N/A
|
wcurl path traversal with percent-encoded slashes |
curl |
curl |
2026-02-25T07:20:47.012Z | 2026-02-25T07:24:31.792Z |
| CVE-2026-3167 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Tenda F453 httpd webtypelibrary formWebTypeLibrary buf… |
Tenda |
F453 |
2026-02-25T07:02:09.039Z | 2026-02-25T07:02:09.039Z |
| CVE-2026-1614 |
6.4 (3.1)
|
Rise Blocks – A Complete Gutenberg Page Builder <= 3.7… |
eaglethemes |
Rise Blocks – A Complete Gutenberg Page Builder |
2026-02-25T06:54:51.794Z | 2026-02-25T06:54:51.794Z |
| CVE-2026-3166 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Tenda F453 httpd RouteStatic fromRouteStatic buffer overflow |
Tenda |
F453 |
2026-02-25T06:32:09.666Z | 2026-02-25T06:32:09.666Z |
| CVE-2026-3179 |
9.2 (4.0)
|
A path traversal vulnerability was found in the FTP Ba… |
ASUSTOR |
ADM |
2026-02-25T05:55:07.325Z | 2026-02-25T06:23:28.107Z |
| CVE-2026-3100 |
8.3 (4.0)
|
An improper certificate validation vulnerability was f… |
ASUSTOR |
ADM |
2026-02-25T05:52:20.196Z | 2026-02-25T06:13:16.227Z |
| CVE-2026-3165 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Tenda F453 httpd AdvSetWrlsafeset fromSetWifiGusetBasi… |
Tenda |
F453 |
2026-02-25T06:02:12.166Z | 2026-02-25T06:02:12.166Z |
| CVE-2026-3164 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
itsourcecode News Portal Project contactus.php sql injection |
itsourcecode |
News Portal Project |
2026-02-25T06:02:08.666Z | 2026-02-25T06:02:08.666Z |
| CVE-2026-25785 |
9.8 (3.0)
9.3 (4.0)
|
Path traversal vulnerability exists in Lanscope E… |
MOTEX Inc. |
Lanscope Endpoint Manager (On-Premises) Sub-Manager Server |
2026-02-25T06:01:05.327Z | 2026-02-25T06:01:05.327Z |
| CVE-2026-3163 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
SourceCodester Website Link Extractor URL file_get_con… |
SourceCodester |
Website Link Extractor |
2026-02-25T05:32:11.029Z | 2026-02-25T05:32:11.029Z |
| CVE-2025-65001 |
8.2 (3.1)
|
Fujitsu fbiosdrv.sys before 2.5.0.0 allows an att… |
Fujitsu |
fbiosdrv.sys |
2025-11-12T00:00:00.000Z | 2026-02-25T05:24:11.790Z |
| CVE-2021-23132 |
N/A
|
[20210306] - Core - com_media allowed paths that are n… |
Joomla! Project |
Joomla! CMS |
2021-03-04T17:37:14.907Z | 2026-02-25T05:06:15.897Z |
| CVE-2021-23125 |
N/A
|
[20210103] - Core - XSS in com_tags image parameters |
Joomla! Project |
Joomla! CMS |
2021-01-12T20:19:49.583Z | 2026-02-25T05:06:14.983Z |
| CVE-2022-27909 |
N/A
|
Extension - Incorrect Access Control within jdownloads… |
jDownloads |
jDownloads |
2022-05-06T17:55:12.660Z | 2026-02-25T05:06:05.403Z |
| CVE-2022-23802 |
N/A
|
Extension - Insecure Permissions within Joomla Guru ex… |
ijoomla.com |
Guru |
2022-05-06T17:55:11.006Z | 2026-02-25T05:06:03.638Z |
| CVE-2022-23798 |
N/A
|
[20220306] - Core - Inadequate validation of internal URLs |
Joomla! Project |
Joomla! CMS |
2022-03-30T15:20:30.757Z | 2026-02-25T05:05:59.509Z |
| CVE-2022-27910 |
N/A
|
Extension - Joomlatools - DOCman - Reflected Cross-Sit… |
Joomlatools |
DOCman |
2022-07-10T19:35:10.278Z | 2026-02-25T05:05:55.232Z |
| CVE-2022-23800 |
N/A
|
[20220308] - Core - Inadequate content filtering withi… |
Joomla! Project |
Joomla! CMS |
2022-03-30T15:20:33.653Z | 2026-02-25T05:05:54.320Z |
| CVE-2021-26035 |
N/A
|
[20210701] - Core - XSS in JForm Rules field |
Joomla! Project |
Joomla! CMS |
2021-07-07T10:12:45.054Z | 2026-02-25T05:05:49.340Z |
| CVE-2022-23795 |
N/A
|
[20220303] - Core - User row are not bound to a authen… |
Joomla! Project |
Joomla! CMS |
2022-03-30T15:20:26.042Z | 2026-02-25T05:05:47.722Z |
| CVE-2021-26040 |
N/A
|
[20210801] - Core - Insufficient access control for co… |
Joomla! Project |
Joomla! CMS |
2021-08-24T14:20:13.190Z | 2026-02-25T05:05:38.883Z |
| CVE-2021-26034 |
N/A
|
[20210503] - Core - CSRF in data download endpoints |
Joomla! Project |
Joomla! CMS |
2021-05-26T10:22:34.269Z | 2026-02-25T05:05:32.613Z |
| CVE-2021-26031 |
N/A
|
[20210402] - Core - Inadequate filters on module layou… |
Joomla! Project |
Joomla! CMS |
2021-04-14T17:35:34.974Z | 2026-02-25T05:05:31.709Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-67860 | A vulnerability has been identified in the NeuVector scanner where the scanner process accepts regi… | 2026-02-25T11:16:02.820 | 2026-02-25T14:15:29.980 |
| fkie_cve-2025-67601 | A vulnerability has been identified within Rancher Manager, where using self-signed CA certificates… | 2026-02-25T11:16:02.643 | 2026-02-25T14:15:29.980 |
| fkie_cve-2025-67491 | OpenEMR is a free and open source electronic health records and medical practice management applica… | 2026-02-25T01:16:08.963 | 2026-02-25T14:15:29.980 |
| fkie_cve-2025-62878 | A malicious user can manipulate the parameters.pathPattern to create PersistentVolumes in arbitrary… | 2026-02-25T11:16:01.747 | 2026-02-25T14:15:29.980 |
| fkie_cve-2025-5781 | Information Exposure Vulnerability in Hitachi Ops Center API Configuration Manager, Hitachi Configu… | 2026-02-25T03:16:04.030 | 2026-02-25T14:15:29.980 |
| fkie_cve-2025-14742 | The WP Recipe Maker plugin for WordPress is vulnerable to unauthorized access of data due to a miss… | 2026-02-25T10:16:18.087 | 2026-02-25T14:15:29.980 |
| fkie_cve-2025-11563 | URLs containing percent-encoded slashes (`/` or `\`) can trick wcurl into saving the output file ou… | 2026-02-25T08:16:18.337 | 2026-02-25T14:15:29.980 |
| fkie_cve-2025-0976 | Information Exposure Vulnerability in Hitachi Ops Center API Configuration Manager, Hitachi Configu… | 2026-02-25T05:17:13.900 | 2026-02-25T14:15:29.980 |
| fkie_cve-2021-36934 | <p>An elevation of privilege vulnerability exists because of overly permissive Access Control Lists… | 2021-07-22T07:15:11.013 | 2026-02-25T13:47:04.510 |
| fkie_cve-2021-38163 | SAP NetWeaver (Visual Composer 7.0 RT) versions - 7.30, 7.31, 7.40, 7.50, without restriction, an a… | 2021-09-14T12:15:10.890 | 2026-02-25T13:46:59.693 |
| fkie_cve-2021-43890 | We have investigated reports of a spoofing vulnerability in AppX installer that affects Microsoft W… | 2021-12-15T15:15:11.207 | 2026-02-25T13:46:56.090 |
| fkie_cve-2022-22536 | SAP NetWeaver Application Server ABAP, SAP NetWeaver Application Server Java, ABAP Platform, SAP Co… | 2022-02-09T23:15:18.620 | 2026-02-25T13:46:53.693 |
| fkie_cve-2022-27518 | Unauthenticated remote arbitrary code execution | 2022-12-13T17:15:14.350 | 2026-02-25T13:46:47.457 |
| fkie_cve-2026-25985 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prio… | 2026-02-24T02:16:02.620 | 2026-02-25T12:10:42.060 |
| fkie_cve-2026-25987 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prio… | 2026-02-24T02:16:02.937 | 2026-02-25T12:10:01.520 |
| fkie_cve-2026-25982 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prio… | 2026-02-24T02:16:02.303 | 2026-02-25T12:01:49.570 |
| fkie_cve-2026-25966 | ImageMagick is free and open-source software used for editing and manipulating digital images. The … | 2026-02-24T02:16:01.330 | 2026-02-25T11:59:20.327 |
| fkie_cve-2026-25967 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prio… | 2026-02-24T02:16:01.483 | 2026-02-25T11:58:43.147 |
| fkie_cve-2026-25968 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prio… | 2026-02-24T02:16:01.647 | 2026-02-25T11:58:14.647 |
| fkie_cve-2026-25969 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prio… | 2026-02-24T02:16:01.807 | 2026-02-25T11:57:35.757 |
| fkie_cve-2026-25970 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prio… | 2026-02-24T02:16:01.963 | 2026-02-25T11:57:18.567 |
| fkie_cve-2026-25988 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prio… | 2026-02-24T02:16:03.097 | 2026-02-25T11:56:36.800 |
| fkie_cve-2026-25797 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prio… | 2026-02-24T01:16:14.450 | 2026-02-25T11:56:06.910 |
| fkie_cve-2026-25965 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prio… | 2026-02-24T02:16:01.167 | 2026-02-25T11:54:18.593 |
| fkie_cve-2026-25898 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prio… | 2026-02-24T02:16:01.000 | 2026-02-25T11:53:20.467 |
| fkie_cve-2020-29582 | In JetBrains Kotlin before 1.4.21, a vulnerable Java API was used for temporary file and folder cre… | 2021-02-03T16:15:13.727 | 2026-02-25T10:50:34.287 |
| fkie_cve-2024-22128 | SAP NWBC for HTML - versions SAP_UI 754, SAP_UI 755, SAP_UI 756, SAP_UI 757, SAP_BASIS 700, SAP_BAS… | 2024-02-13T02:15:08.323 | 2026-02-25T10:16:17.483 |
| fkie_cve-2025-29628 | An issue in Gardyn 4 allows a remote attacker to obtain sensitive information and execute arbitrary… | 2025-07-25T17:15:31.027 | 2026-02-25T08:16:19.180 |
| fkie_cve-2025-29481 | Buffer Overflow vulnerability in libbpf 1.5.0 allows a local attacker to execute arbitrary code via… | 2025-04-07T20:15:20.720 | 2026-02-25T08:16:18.860 |
| fkie_cve-2025-65001 | Fujitsu fbiosdrv.sys before 2.5.0.0 allows an attacker to potentially affect system confidentiality… | 2025-11-12T18:15:36.120 | 2026-02-25T06:16:24.607 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-gjwv-rvwj-p62j |
|
Incorrect boundary conditions in the Web Audio component. This vulnerability affects Firefox < 148,… | 2026-02-24T15:30:32Z | 2026-02-24T18:31:01Z |
| ghsa-g9cv-cvhp-755f |
|
Privilege escalation in the Netmonitor component. This vulnerability affects Firefox < 148 and Fire… | 2026-02-24T15:30:32Z | 2026-02-24T18:31:01Z |
| ghsa-g5w7-69g8-vcwp |
|
Sandbox escape in the Graphics: WebRender component. This vulnerability affects Firefox < 148, Fire… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-99p8-j693-qhpc |
|
Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox < 148 and Fir… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-94rx-4fcc-c849 |
|
Incorrect boundary conditions in the Networking: JAR component. This vulnerability affects Firefox … | 2026-02-24T15:30:32Z | 2026-02-24T18:31:01Z |
| ghsa-8r55-rv5w-6pfm |
6.5 (3.1)
|
Airflow versions before 2.11.1 have a vulnerability that allows authenticated users with audit log … | 2026-02-24T12:31:40Z | 2026-02-24T18:31:01Z |
| ghsa-839v-3vpr-fpgf |
|
Privilege escalation in the Netmonitor component. This vulnerability affects Firefox < 148 and Fire… | 2026-02-24T15:30:32Z | 2026-02-24T18:31:01Z |
| ghsa-7xqm-gm4h-p23x |
|
Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component. This vuln… | 2026-02-24T15:30:32Z | 2026-02-24T18:31:01Z |
| ghsa-76rw-rj58-mpqc |
|
Sandbox escape in the Storage: IndexedDB component. This vulnerability affects Firefox < 148 and Fi… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-6hhh-7cj8-7mp2 |
9.1 (3.1)
|
Smolder versions through 1.51 for Perl uses insecure rand() function for cryptographic functions. … | 2026-02-24T00:31:34Z | 2026-02-24T18:31:01Z |
| ghsa-5mg4-r7qx-2frp |
|
Use-after-free in the DOM: Bindings (WebIDL) component. This vulnerability affects Firefox < 148, F… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-59x3-pvmj-2pw2 |
|
Use-after-free in the JavaScript Engine: JIT component. This vulnerability affects Firefox < 148 an… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-3qgm-jcxp-m9m6 |
|
Sandbox escape due to incorrect boundary conditions in the DOM: Core & HTML component. This vulnera… | 2026-02-24T15:30:32Z | 2026-02-24T18:31:01Z |
| ghsa-3jr5-gwfp-7mfw |
|
JIT miscompilation, use-after-free in the JavaScript Engine: JIT component. This vulnerability affe… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-3hhv-j9r2-hr9c |
|
Incorrect boundary conditions in the Graphics: ImageLib component. This vulnerability affects Firef… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-3cg8-wjp5-4rm6 |
|
Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148, Firefox E… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-2255-92v8-4pvj |
|
Sandbox escape due to incorrect boundary conditions in the Graphics: WebRender component. This vuln… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-742g-xjv2-hvh9 |
5.3 (3.1)
|
A user enumeration vulnerability exists in FormaLMS 4.1.18 and below in the password recovery funct… | 2026-02-20T00:31:53Z | 2026-02-24T18:31:00Z |
| ghsa-wq2g-h2h9-v8x3 |
7.8 (3.1)
|
A vulnerability has been identified in Rexroth IndraWorks. This flaw allows an attacker to execute … | 2026-02-18T15:31:26Z | 2026-02-24T18:30:59Z |
| ghsa-vfmw-4jmp-wmrw |
7.8 (3.1)
|
A vulnerability has been identified in the OPC.Testclient utility, which is included in Rexroth Ind… | 2026-02-18T15:31:26Z | 2026-02-24T18:30:59Z |
| ghsa-r77x-pqm4-6252 |
7.8 (3.1)
|
A vulnerability has been identified in Rexroth IndraWorks. This flaw allows an attacker to execute … | 2026-02-18T15:31:26Z | 2026-02-24T18:30:59Z |
| ghsa-jxf5-m5fg-rw27 |
8.8 (3.1)
|
Potential vulnerabilities have been identified in UEFI firmware (BIOS) for some PC products which m… | 2022-02-17T00:00:32Z | 2026-02-24T18:30:58Z |
| ghsa-wvq2-357p-vcgg |
7.5 (3.1)
|
The bone voice ID TA has a vulnerability in information management,Successful exploitation of this … | 2022-01-11T00:01:18Z | 2026-02-24T18:30:55Z |
| ghsa-p5j8-hcx4-456v |
4.6 (3.1)
|
The fingerprint module has a security risk of brute force cracking. Successful exploitation of this… | 2022-01-11T00:01:25Z | 2026-02-24T18:30:55Z |
| ghsa-j5wx-jhwh-qm36 |
7.5 (3.1)
|
The bone voice ID TA has a vulnerability in calculating the buffer length,Successful exploitation o… | 2022-01-11T00:01:21Z | 2026-02-24T18:30:55Z |
| ghsa-h8r6-3pj7-gwfh |
9.8 (3.1)
|
SAP Business One - version 10.0, allows an attacker to inject formulas when exporting data to Excel… | 2022-05-24T19:17:18Z | 2026-02-24T18:30:55Z |
| ghsa-cf77-6c9v-56mf |
7.5 (3.1)
|
The bone voice ID trusted application (TA) has a heap overflow vulnerability. Successful exploitati… | 2022-01-11T00:01:24Z | 2026-02-24T18:30:55Z |
| ghsa-37q4-472r-ppmr |
7.8 (3.1)
|
Windows Print Spooler Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-36936… | 2022-05-24T19:10:50Z | 2026-02-24T18:30:55Z |
| ghsa-rcqw-6466-3mv7 |
5.1 (4.0)
|
AVideo has Stored Cross-Site Scripting via Markdown Comment Injection | 2026-02-20T21:15:06Z | 2026-02-24T16:27:02Z |
| ghsa-7c2f-r6gc-h92h |
7.5 (3.1)
|
Apache Airflow proxy credentials for various providers might leak in task logs | 2026-01-16T12:30:25Z | 2026-02-24T16:21:08Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2016-40 |
5.3 (3.1)
|
Tryton 3.x before 3.2.17, 3.4.x before 3.4.14, 3.6.x before 3.6.12, 3.8.x before 3.8.8, a… | tryton | 2016-09-07T19:28:00+00:00 | 2024-11-21T14:23:02.008255+00:00 |
| pysec-2023-301 |
7.8 (3.1)
|
Deserialization of Untrusted Data in GitHub repository huggingface/transformers prior to 4.36. | transformers | 2023-12-20T17:15:00+00:00 | 2024-11-21T14:23:01.933055+00:00 |
| pysec-2023-300 |
8.8 (3.1)
|
Deserialization of Untrusted Data in GitHub repository huggingface/transformers prior to 4.36. | transformers | 2023-12-19T13:15:00+00:00 | 2024-11-21T14:23:01.871022+00:00 |
| pysec-2023-299 |
4.7 (3.1)
|
Insecure Temporary File in GitHub repository huggingface/transformers prior to 4.30.0. | transformers | 2023-05-18T17:15:00+00:00 | 2024-11-21T14:23:01.805729+00:00 |
| pysec-2022-43169 |
9.8 (3.1)
|
The Togglee package in PyPI version v0.0.8 was discovered to contain a code execution bac… | togglee | 2022-06-24T21:15:00Z | 2024-11-21T14:23:01.740031Z |
| pysec-2016-39 |
7.5 (3.1)
|
An exploitable out-of-bounds array access vulnerability exists in the xrow_header_decode … | tarantool | 2016-12-23T22:59:00Z | 2024-11-21T14:23:01.531112Z |
| pysec-2022-43167 |
8.8 (3.1)
|
Selenium Server (Grid) before 4 allows CSRF because it permits non-JSON content types suc… | selenium | 2022-04-19T03:15:00+00:00 | 2024-11-21T14:23:01.289420+00:00 |
| pysec-2022-43165 |
9.8 (3.1)
|
The Scoptrial package in PyPI version v0.0.5 was discovered to contain a code execution b… | scoptrial | 2022-06-24T21:15:00Z | 2024-11-21T14:23:01.181819Z |
| pysec-2022-43164 |
9.8 (3.1)
|
The Rondolu-YT-Concate package in PyPI v0.1.0 was discovered to contain a code execution … | rondolu-yt-concate | 2022-06-24T21:15:00Z | 2024-11-21T14:23:00.996865Z |
| pysec-2023-297 |
7.5 (3.1)
|
A path traversal vulnerability has been detected in Repox, which allows an attacker to re… | repox | 2023-12-13T10:15:00Z | 2024-11-21T14:23:00.892241Z |
| pysec-2023-296 |
7.5 (3.1)
|
An XEE vulnerability has been found in Repox, which allows a remote attacker to interfere… | repox | 2023-12-13T10:15:00Z | 2024-11-21T14:23:00.841929Z |
| pysec-2023-295 |
5.4 (3.1)
|
An XSS vulnerability stored in Repox has been identified, which allows a local attacker t… | repox | 2023-12-13T10:15:00Z | 2024-11-21T14:23:00.792103Z |
| pysec-2023-294 |
6.1 (3.1)
|
An XSS vulnerability has been detected in Repox, which allows an attacker to compromise i… | repox | 2023-12-13T10:15:00Z | 2024-11-21T14:23:00.74018Z |
| pysec-2023-293 |
7.5 (3.1)
|
An authentication bypass vulnerability has been found in Repox, which allows a remote use… | repox | 2023-12-13T09:15:00Z | 2024-11-21T14:23:00.689595Z |
| pysec-2022-43161 |
9.8 (3.1)
|
Origin Validation Error in GitHub repository ikus060/rdiffweb prior to 2.5.0a5. | rdiffweb | 2022-10-13T20:15:00+00:00 | 2024-11-21T14:23:00.575892+00:00 |
| pysec-2022-43160 |
9.8 (3.1)
|
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffwe… | rdiffweb | 2022-10-13T20:15:00+00:00 | 2024-11-21T14:23:00.515460+00:00 |
| pysec-2022-43159 |
9.8 (3.1)
|
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffwe… | rdiffweb | 2022-10-14T12:15:00+00:00 | 2024-11-21T14:23:00.456366+00:00 |
| pysec-2022-43158 |
6.1 (3.1)
|
Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.0a4. | rdiffweb | 2022-10-10T12:15:00+00:00 | 2024-11-21T14:23:00.394851+00:00 |
| pysec-2022-43157 |
5.3 (3.1)
|
Weak Password Requirements in GitHub repository ikus060/rdiffweb prior to 2.5.0a4. | rdiffweb | 2022-10-06T18:16:00+00:00 | 2024-11-21T14:23:00.333240+00:00 |
| pysec-2022-43156 |
9.8 (3.1)
|
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffwe… | rdiffweb | 2022-10-06T18:16:00+00:00 | 2024-11-21T14:23:00.273706+00:00 |
| pysec-2022-43155 |
5.5 (3.1)
|
wasm3 commit 7890a2097569fde845881e0b352d813573e371f9 was discovered to contain a segment… | pywasm3 | 2022-12-13T23:15:00Z | 2024-11-21T14:23:00.213494Z |
| pysec-2022-43153 |
5.5 (3.1)
|
Wasm3 0.5.0 has a heap-based buffer overflow in NewCodePage in m3_code.c (called indirect… | pywasm3 | 2022-04-16T16:15:00Z | 2024-11-21T14:23:00.113164Z |
| pysec-2023-292 |
7.8 (3.1)
|
PyInstaller bundles a Python application and all its dependencies into a single package. … | pyinstaller | 2023-12-09T01:15:00+00:00 | 2024-11-21T14:22:59.796437+00:00 |
| pysec-2017-146 |
7.5 (3.1)
|
Apache Ignite 1.0.0-RC3 to 2.0 uses an update notifier component to update the users abou… | pyignite | 2017-06-28T13:29:00Z | 2024-11-21T14:22:59.736776Z |
| pysec-2023-291 |
7.8 (3.1)
|
PyDrive2 is a wrapper library of google-api-python-client that simplifies many common Goo… | pydrive2 | 2023-12-05T21:15:00+00:00 | 2024-11-21T14:22:59.681617+00:00 |
| pysec-2023-290 |
8.8 (3.1)
|
An issue was discovered with assimp 5.1.4, a use after free occurred in function ColladaP… | pyassimp | 2023-01-20T19:15:00Z | 2024-11-21T14:22:59.461917Z |
| pysec-2022-43149 |
6.5 (3.1)
|
Open Asset Import Library (assimp) commit 3c253ca was discovered to contain a segmentatio… | pyassimp | 2022-09-06T23:15:00Z | 2024-11-21T14:22:59.412324Z |
| pysec-2022-43148 |
5.5 (3.1)
|
Open Asset Import Library (aka assimp) 5.1.0 and 5.1.1 has a heap-based buffer overflow i… | pyassimp | 2022-01-01T00:15:00Z | 2024-11-21T14:22:59.35793Z |
| pysec-2022-43147 |
9.8 (3.1)
|
pyanxdns package in PyPI version 0.2 is vulnerable to code execution backdoor. The impact… | pyanxdns | 2022-06-08T20:15:00Z | 2024-11-21T14:22:59.309018Z |
| pysec-2011-27 |
|
The CMFEditions component 2.x in Plone 4.0.x through 4.0.9, 4.1, and 4.2 through 4.2a2 do… | products-plonehotfix20110928 | 2011-10-10T10:55:00Z | 2024-11-21T14:22:59.206417Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-4257 | A vulnerability was found in BlueNet Technology Clinical Browsing System 1.2.1. It has be… | 2024-04-27T05:02:16.570113Z |
| gsd-2024-4288 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.569916Z |
| gsd-2024-4248 | A vulnerability was found in Tenda i21 1.0.0.14(4656) and classified as critical. This is… | 2024-04-27T05:02:16.569718Z |
| gsd-2024-4251 | A vulnerability was found in Tenda i21 1.0.0.14(4656). It has been rated as critical. Aff… | 2024-04-27T05:02:16.569517Z |
| gsd-2024-4276 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.567475Z |
| gsd-2024-4270 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.565894Z |
| gsd-2024-4272 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.564269Z |
| gsd-2024-4228 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.563352Z |
| gsd-2024-4253 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.562905Z |
| gsd-2024-4268 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.561404Z |
| gsd-2024-4275 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.560967Z |
| gsd-2024-4234 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-27T05:02:16.558629Z |
| gsd-2024-4245 | A vulnerability, which was classified as critical, has been found in Tenda i21 1.0.0.14(4… | 2024-04-27T05:02:16.558324Z |
| gsd-2024-4271 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.557860Z |
| gsd-2024-4262 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.557062Z |
| gsd-2024-4250 | A vulnerability was found in Tenda i21 1.0.0.14(4656). It has been declared as critical. … | 2024-04-27T05:02:16.555748Z |
| gsd-2024-4244 | A vulnerability classified as critical was found in Tenda W9 1.0.0.7(4456). Affected by t… | 2024-04-27T05:02:16.554860Z |
| gsd-2024-4243 | A vulnerability classified as critical has been found in Tenda W9 1.0.0.7(4456). Affected… | 2024-04-27T05:02:16.549231Z |
| gsd-2024-4256 | A vulnerability was found in Techkshetra Info Solutions Savsoft Quiz 6.0 and classified a… | 2024-04-27T05:02:16.544284Z |
| gsd-2024-4269 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.543844Z |
| gsd-2024-4274 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.542869Z |
| gsd-2024-4236 | A vulnerability, which was classified as critical, has been found in Tenda AX1803 1.0.0.1… | 2024-04-27T05:02:16.536897Z |
| gsd-2024-4281 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.536355Z |
| gsd-2024-4231 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.534700Z |
| gsd-2024-4261 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.534179Z |
| gsd-2024-4280 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.533977Z |
| gsd-2024-4237 | A vulnerability, which was classified as critical, was found in Tenda AX1806 1.0.0.1. Aff… | 2024-04-27T05:02:16.532589Z |
| gsd-2024-4241 | A vulnerability was found in Tenda W9 1.0.0.7(4456). It has been declared as critical. Th… | 2024-04-27T05:02:16.531844Z |
| gsd-2024-4284 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.527556Z |
| gsd-2024-4277 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.524486Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2026-675 | Malicious code in supun-baileys (npm) | 2026-02-03T05:01:33Z | 2026-02-06T03:05:26Z |
| mal-2026-662 | Malicious code in researchpoc (npm) | 2026-02-03T03:25:19Z | 2026-02-06T03:05:26Z |
| mal-2026-657 | Malicious code in react-dnd-legacy-html5-backend (npm) | 2026-02-03T02:23:48Z | 2026-02-06T03:05:26Z |
| mal-2026-765 | Malicious code in optimizer-cpu (npm) | 2026-02-05T16:05:05Z | 2026-02-06T03:05:25Z |
| mal-2026-753 | Malicious code in log-symbols_updated (npm) | 2026-02-05T01:50:11Z | 2026-02-06T03:05:25Z |
| mal-2026-752 | Malicious code in locate-path_updated (npm) | 2026-02-05T01:50:11Z | 2026-02-06T03:05:25Z |
| mal-2026-744 | Malicious code in mdp-client-web (npm) | 2026-02-04T17:08:45Z | 2026-02-06T03:05:25Z |
| mal-2026-717 | Malicious code in partnerss (npm) | 2026-02-04T05:25:27Z | 2026-02-06T03:05:25Z |
| mal-2026-712 | Malicious code in ongose (npm) | 2026-02-04T04:41:11Z | 2026-02-06T03:05:25Z |
| mal-2026-711 | Malicious code in mongoose_update (npm) | 2026-02-04T04:41:11Z | 2026-02-06T03:05:25Z |
| mal-2026-710 | Malicious code in mongooose_updated (npm) | 2026-02-04T04:41:10Z | 2026-02-06T03:05:25Z |
| mal-2026-709 | Malicious code in mongooose_update (npm) | 2026-02-04T04:41:11Z | 2026-02-06T03:05:25Z |
| mal-2026-661 | Malicious code in netlify-project-helper (npm) | 2026-02-03T03:54:05Z | 2026-02-06T03:05:25Z |
| mal-2026-769 | Malicious code in https-servers (npm) | 2026-02-05T17:28:15Z | 2026-02-06T03:05:24Z |
| mal-2026-757 | Malicious code in internallib_v157 (npm) | 2026-02-05T02:24:51Z | 2026-02-06T03:05:24Z |
| mal-2026-743 | Malicious code in internationalized (npm) | 2026-02-04T17:13:32Z | 2026-02-06T03:05:24Z |
| mal-2026-736 | Malicious code in ggajsvjsg (npm) | 2026-02-04T09:46:59Z | 2026-02-06T03:05:24Z |
| mal-2026-725 | Malicious code in json-mapping-source (npm) | 2026-02-04T05:25:15Z | 2026-02-06T03:05:24Z |
| mal-2026-724 | Malicious code in https-emailjs (npm) | 2026-02-04T05:02:52Z | 2026-02-06T03:05:24Z |
| mal-2026-723 | Malicious code in http-emailjs (npm) | 2026-02-04T05:02:52Z | 2026-02-06T03:05:24Z |
| mal-2026-708 | Malicious code in incode-kyc-backend (npm) | 2026-02-03T21:30:33Z | 2026-02-06T03:05:24Z |
| mal-2026-707 | Malicious code in js-unpack (npm) | 2026-02-03T17:41:26Z | 2026-02-06T03:05:24Z |
| mal-2026-692 | Malicious code in graphrix (npm) | 2026-02-03T07:44:00Z | 2026-02-06T03:05:24Z |
| mal-2026-683 | Malicious code in l2-contracts (npm) | 2026-02-03T07:24:02Z | 2026-02-06T03:05:24Z |
| mal-2026-682 | Malicious code in kwp-analytics (npm) | 2026-02-03T07:22:08Z | 2026-02-06T03:05:24Z |
| mal-2026-681 | Malicious code in internallib_v782 (npm) | 2026-02-03T07:27:28Z | 2026-02-06T03:05:24Z |
| mal-2026-680 | Malicious code in frontend-js-state-web (npm) | 2026-02-03T07:27:10Z | 2026-02-06T03:05:24Z |
| mal-2026-674 | Malicious code in freedom-baileys (npm) | 2026-02-03T05:01:34Z | 2026-02-06T03:05:24Z |
| mal-2026-656 | Malicious code in jshint-groups (npm) | 2026-02-03T01:59:02Z | 2026-02-06T03:05:24Z |
| mal-2026-773 | Malicious code in ethers-lint (npm) | 2026-02-05T21:21:25Z | 2026-02-06T03:05:23Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-nifi-2025-66524 | Apache NiFi: Deserialization of Untrusted Data in GetAsanaObject Processor | 2025-12-23T11:44:08.985Z | 2025-12-23T12:07:14.245Z |
| bit-libpython-2025-13837 | Out-of-memory when loading Plist | 2025-12-05T11:07:43.325Z | 2025-12-23T12:07:14.245Z |
| bit-kibana-2025-68422 | Kibana Improper Authorization | 2025-12-20T11:39:27.247Z | 2025-12-20T12:06:39.262Z |
| bit-kibana-2025-68389 | Kibana Allocation of Resources Without Limits or Throttling | 2025-12-20T11:39:25.644Z | 2025-12-20T12:06:39.262Z |
| bit-kibana-2025-68387 | Kibana Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 2025-12-20T11:39:24.143Z | 2025-12-20T12:06:39.262Z |
| bit-kibana-2025-68386 | Kibana Improper Authorization | 2025-12-20T11:39:22.798Z | 2025-12-20T12:06:39.262Z |
| bit-haproxy-2025-11230 | Denial of service vulnerability in HAProxy mjson library | 2025-12-20T11:38:08.173Z | 2025-12-20T12:06:39.262Z |
| bit-elk-2025-68422 | Kibana Improper Authorization | 2025-12-20T11:36:41.895Z | 2025-12-20T12:06:39.262Z |
| bit-elk-2025-68389 | Kibana Allocation of Resources Without Limits or Throttling | 2025-12-20T11:36:40.368Z | 2025-12-20T12:06:39.262Z |
| bit-elk-2025-68387 | Kibana Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 2025-12-20T11:36:38.841Z | 2025-12-20T12:06:39.262Z |
| bit-elk-2025-68386 | Kibana Improper Authorization | 2025-12-20T11:36:37.419Z | 2025-12-20T12:06:39.262Z |
| bit-elasticsearch-2025-68390 | Elasticsearch Allocation of Resources Without Limits or Throttling | 2025-12-20T11:36:36.080Z | 2025-12-20T12:06:39.262Z |
| bit-elasticsearch-2025-68384 | Elasticsearch Allocation of Resources Without Limits or Throttling | 2025-12-20T11:36:34.496Z | 2025-12-20T12:06:39.262Z |
| bit-elasticsearch-2025-37731 | Elasticsearch Improper Authentication | 2025-12-18T11:37:43.121Z | 2025-12-19T12:06:33.755Z |
| bit-kibana-2025-37732 | Kibana Cross-site Scripting via the Integration Package Upload Functionality | 2025-12-18T11:40:39.003Z | 2025-12-18T12:08:20.703Z |
| bit-gitlab-2025-8405 | Improper Encoding or Escaping of Output in GitLab | 2025-12-18T12:06:48.009Z | 2025-12-18T12:08:20.703Z |
| bit-gitlab-2025-4097 | Allocation of Resources Without Limits or Throttling in GitLab | 2025-12-18T12:05:44.981Z | 2025-12-18T12:08:20.703Z |
| bit-gitlab-2025-14157 | Allocation of Resources Without Limits or Throttling in GitLab | 2025-12-18T12:04:46.334Z | 2025-12-18T12:08:20.703Z |
| bit-gitlab-2025-13978 | Generation of Error Message Containing Sensitive Information in GitLab | 2025-12-18T12:04:44.454Z | 2025-12-18T12:08:20.703Z |
| bit-gitlab-2025-12734 | Improper Encoding or Escaping of Output in GitLab | 2025-12-18T12:04:35.112Z | 2025-12-18T12:08:20.703Z |
| bit-gitlab-2025-12716 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab | 2025-12-18T12:04:33.134Z | 2025-12-18T12:08:20.703Z |
| bit-gitlab-2025-12562 | Allocation of Resources Without Limits or Throttling in GitLab | 2025-12-18T12:04:25.675Z | 2025-12-18T12:08:20.703Z |
| bit-gitlab-2025-12029 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab | 2025-12-18T12:04:20.332Z | 2025-12-18T12:08:20.703Z |
| bit-gitlab-2025-11984 | Authentication Bypass Using an Alternate Path or Channel in GitLab | 2025-12-18T12:04:14.698Z | 2025-12-18T12:08:20.703Z |
| bit-gitlab-2025-11247 | Authorization Bypass Through User-Controlled Key in GitLab | 2025-12-18T12:03:59.823Z | 2025-12-18T12:08:20.703Z |
| bit-elk-2025-37732 | Kibana Cross-site Scripting via the Integration Package Upload Functionality | 2025-12-18T11:37:43.350Z | 2025-12-18T12:08:20.703Z |
| bit-vault-2025-6013 | Vault LDAP MFA Enforcement Bypass When Using Username As Alias | 2025-08-08T06:04:14.175Z | 2025-12-16T15:14:22.118Z |
| bit-airflow-2025-66388 | Apache Airflow: Secrets in rendered templates not redacted properly and exposed in the UI | 2025-12-16T14:37:51.384Z | 2025-12-16T15:14:22.118Z |
| bit-mongodb-2025-12657 | Malformed KMIP response may result in access violation | 2025-12-13T11:42:23.275Z | 2025-12-13T12:05:53.698Z |
| bit-django-2025-13372 | Potential SQL injection in FilteredRelation column aliases on PostgreSQL | 2025-12-13T11:36:31.883Z | 2025-12-13T12:05:53.698Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| drupal-contrib-2020-015 | 2020-05-06T16:55:06.000Z | 2023-08-11T17:54:54.000Z | |
| drupal-contrib-2020-016 | 2020-05-06T16:59:39.000Z | 2023-08-11T17:54:28.000Z | |
| drupal-contrib-2020-017 | 2020-05-06T17:02:39.000Z | 2023-08-11T17:54:03.000Z | |
| drupal-contrib-2020-018 | 2020-05-13T16:22:47.000Z | 2023-08-11T17:53:41.000Z | |
| drupal-contrib-2020-019 | 2020-05-13T16:44:40.000Z | 2023-08-11T17:51:24.000Z | |
| drupal-contrib-2020-020 | 2020-05-27T15:32:52.000Z | 2023-08-11T17:51:01.000Z | |
| drupal-contrib-2020-029 | 2020-07-22T18:53:26.000Z | 2023-08-11T17:49:52.000Z | |
| drupal-contrib-2020-028 | 2020-07-22T18:48:10.000Z | 2023-08-11T17:49:38.000Z | |
| drupal-contrib-2020-027 | 2020-07-22T17:58:17.000Z | 2023-08-11T17:49:02.000Z | |
| drupal-contrib-2020-024 | 2020-06-10T16:44:34.000Z | 2023-08-11T17:47:56.000Z | |
| drupal-contrib-2020-021 | 2020-05-27T15:47:10.000Z | 2023-08-11T17:47:04.000Z | |
| drupal-contrib-2020-030 | 2020-07-29T12:23:17.000Z | 2023-08-11T17:46:26.000Z | |
| drupal-contrib-2020-038 | 2020-11-18T17:27:58.000Z | 2023-08-11T17:45:32.000Z | |
| drupal-contrib-2020-035 | 2020-11-18T17:15:24.000Z | 2023-08-11T17:43:11.000Z | |
| drupal-contrib-2020-034 | 2020-10-14T14:38:16.000Z | 2023-08-11T17:32:53.000Z | |
| drupal-contrib-2020-032 | 2020-08-05T15:47:56.000Z | 2023-08-11T17:31:20.000Z | |
| drupal-contrib-2020-033 | 2020-08-05T20:05:36.000Z | 2023-08-11T17:31:14.000Z | |
| drupal-contrib-2021-002 | 2021-01-27T17:27:57.000Z | 2023-08-11T17:25:36.000Z | |
| drupal-contrib-2021-001 | 2021-01-27T17:17:43.000Z | 2023-08-11T17:24:49.000Z | |
| drupal-contrib-2021-011 | 2021-06-02T16:51:10.000Z | 2023-08-11T17:22:44.000Z | |
| drupal-contrib-2021-010 | 2021-06-02T16:49:49.000Z | 2023-08-11T17:21:33.000Z | |
| drupal-contrib-2021-009 | 2021-05-12T16:23:23.000Z | 2023-08-11T17:18:42.000Z | |
| drupal-contrib-2021-008 | 2021-05-12T16:14:35.000Z | 2023-08-11T17:17:58.000Z | |
| drupal-contrib-2021-007 | 2021-05-12T16:08:34.000Z | 2023-08-11T17:17:34.000Z | |
| drupal-contrib-2021-006 | 2021-04-28T16:47:09.000Z | 2023-08-11T17:16:38.000Z | |
| drupal-contrib-2021-005 | 2021-03-17T18:36:07.000Z | 2023-08-11T17:15:48.000Z | |
| drupal-contrib-2021-004 | 2021-03-03T16:49:33.000Z | 2023-08-11T17:15:22.000Z | |
| drupal-contrib-2021-003 | 2021-01-27T17:53:09.000Z | 2023-08-11T17:13:06.000Z | |
| drupal-contrib-2021-022 | 2021-06-30T16:46:21.000Z | 2023-08-11T17:12:21.000Z | |
| drupal-contrib-2021-021 | 2021-06-30T16:43:19.000Z | 2023-08-11T17:11:42.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2024-000098 | Multiple products from KINGSOFT JAPAN vulnerable to path traversal | 2024-09-06T15:07+09:00 | 2024-09-06T15:07+09:00 |
| jvndb-2024-000090 | Secure Boot bypass Vulnerability in PRIMERGY | 2024-09-06T14:39+09:00 | 2024-09-06T14:39+09:00 |
| jvndb-2024-000093 | WordPress Plugin "Advanced Custom Fields" vulnerable to cross-site scripting | 2024-09-04T13:01+09:00 | 2024-09-04T13:01+09:00 |
| jvndb-2024-007002 | Panasonic Control FPWIN Pro7 vulnerable to stack-based buffer overflow | 2024-09-02T14:57+09:00 | 2024-09-02T14:57+09:00 |
| jvndb-2024-000091 | IPCOM vulnerable to information disclosure | 2024-08-30T14:56+09:00 | 2024-08-30T14:56+09:00 |
| jvndb-2024-000092 | Multiple vulnerabilities in WordPress plugin "Carousel Slider" | 2024-08-30T13:58+09:00 | 2024-08-30T13:58+09:00 |
| jvndb-2024-006787 | xfpt vulnerable to stack-based buffer overflow | 2024-08-29T14:07+09:00 | 2024-08-29T14:07+09:00 |
| jvndb-2024-000086 | Multiple Safie products vulnerable to improper server certificate verification | 2024-08-22T13:51+09:00 | 2024-08-29T12:23+09:00 |
| jvndb-2024-006646 | Authentication Bypass Vulnerability in Hitachi Ops Center Common Services | 2024-08-27T12:01+09:00 | 2024-08-27T12:01+09:00 |
| jvndb-2024-006367 | Unquoted Service Path in Hitachi Device Manager | 2024-08-26T16:27+09:00 | 2024-08-26T16:27+09:00 |
| jvndb-2024-000087 | BUFFALO wireless LAN routers and wireless LAN repeaters vulnerable to OS command injection | 2024-08-23T14:17+09:00 | 2024-08-23T14:17+09:00 |
| jvndb-2020-007305 | Installer of Trend Micro Security 2020 (Consumer) may insecurely load Dynamic Link Libraries | 2024-08-22T11:33+09:00 | 2024-08-22T11:33+09:00 |
| jvndb-2017-009536 | Packetbeat vulnerable to denial-of-service (DoS) | 2024-08-21T17:54+09:00 | 2024-08-21T17:54+09:00 |
| jvndb-2018-009127 | Multiple vulnerabilities in LogonTracer | 2024-08-21T17:37+09:00 | 2024-08-21T17:37+09:00 |
| jvndb-2020-002957 | A vulnerability in TOYOTA MOTOR's DCU (Display Control Unit) | 2024-08-20T18:12+09:00 | 2024-08-20T18:12+09:00 |
| jvndb-2020-007306 | Trend Micro Security (Consumer) Driver vulnerable to Out-of-bounds Read | 2024-08-20T17:52+09:00 | 2024-08-20T17:52+09:00 |
| jvndb-2024-000085 | "Rakuten Ichiba App" fails to restrict custom URL schemes properly | 2024-08-20T16:56+09:00 | 2024-08-20T16:56+09:00 |
| jvndb-2024-005167 | EL Injection Vulnerability in Hitachi Tuning Manager | 2024-08-15T09:38+09:00 | 2024-08-15T09:38+09:00 |
| jvndb-2016-000124 | WAON service app for Android fails to verify SSL server certificates | 2024-08-15T09:36+09:00 | 2024-08-15T09:36+09:00 |
| jvndb-2024-000083 | Firmware update for RICOH JavaTM Platform resets the TLS configuration | 2024-08-06T15:13+09:00 | 2024-08-06T15:13+09:00 |
| jvndb-2024-000079 | Cybozu Office vulnerable to bypass browsing restrictions in Custom App | 2024-08-06T14:59+09:00 | 2024-08-06T14:59+09:00 |
| jvndb-2024-000082 | Pimax Play and PiTool accept WebSocket connections from unintended endpoints | 2024-08-05T13:58+09:00 | 2024-08-05T13:58+09:00 |
| jvndb-2024-000084 | Multiple vulnerabilities in ZEXELON ZWX-2000CSW2-HN | 2024-08-05T13:46+09:00 | 2024-08-05T13:46+09:00 |
| jvndb-2024-000074 | Multiple vulnerabilities in SKYSEA Client View | 2024-07-29T15:28+09:00 | 2024-07-31T14:12+09:00 |
| jvndb-2024-000077 | FFRI AMC vulnerable to OS command injection | 2024-07-30T16:40+09:00 | 2024-07-30T16:40+09:00 |
| jvndb-2024-000081 | EC-CUBE plugin (for EC-CUBE 4 series) "EC-CUBE Web API Plugin" vulnerable to stored cross-site scripting | 2024-07-30T14:06+09:00 | 2024-07-30T14:06+09:00 |
| jvndb-2024-000080 | EC-CUBE 4 Series improper input validation when installing plugins | 2024-07-30T13:56+09:00 | 2024-07-30T13:56+09:00 |
| jvndb-2024-000028 | Multiple vulnerabilities in SKYSEA Client View | 2024-03-07T16:09+09:00 | 2024-07-29T18:13+09:00 |
| jvndb-2024-000076 | SDoP contains a stack-based buffer overflow vulnerability. | 2024-07-29T17:24+09:00 | 2024-07-29T17:24+09:00 |
| jvndb-2024-003242 | OMRON NJ/NX series vulnerable to insufficient verification of data authenticity | 2024-05-28T12:28+09:00 | 2024-07-26T16:27+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2026-07937 | iccDEV IccTagXml函数堆缓冲区溢出漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07936 | iccDEV CIccXmlArrayType::ParseText函数堆缓冲区溢出漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07935 | iccDEV CIccLocalizedUnicode::GetText函数堆缓冲区溢出漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07934 | iccDEV CIccCLUT::Init函数堆缓冲区溢出漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07933 | iccDEV堆缓冲区溢出漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07249 | Google Android逻辑错误漏洞 | 2025-09-08 | 2026-01-26 |
| cnvd-2026-07248 | Google Android缺少权限检查漏洞 | 2025-09-08 | 2026-01-26 |
| cnvd-2026-07240 | Google Chrome实现不当漏洞(CNVD-2026-07240) | 2026-01-23 | 2026-01-26 |
| cnvd-2026-07196 | Microsoft Excel代码执行漏洞(CNVD-2026-07196) | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07195 | Adobe Substance3D Stager资源管理错误漏洞(CNVD-2026-07195) | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07194 | Adobe Substance3D Modeler越界读取漏洞(CNVD-2026-07194) | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07193 | Adobe Substance3D Modeler越界读取漏洞(CNVD-2026-07193) | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07192 | Adobe Substance3D Designer越界读取漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07191 | Adobe Substance3D Designer缓冲区溢出漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07190 | Adobe Illustrator代码问题漏洞(CNVD-2026-07190) | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07189 | Adobe Illustrator代码问题漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07188 | Adobe Dreamweaver Desktop输入验证错误漏洞(CNVD-2026-07188) | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07187 | Adobe Dreamweaver Desktop输入验证错误漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07160 | Fuji Electric V-SFT栈缓冲区溢出漏洞 | 2025-10-15 | 2026-01-26 |
| cnvd-2026-06337 | 用友网络科技股份有限公司U8 cloud存在信息泄露漏洞 | 2025-12-12 | 2026-01-26 |
| cnvd-2026-06272 | 用友网络科技股份有限公司U8 cloud存在SQL注入漏洞(CNVD-2026-06272) | 2025-12-12 | 2026-01-26 |
| cnvd-2026-06106 | 湖南强智科技发展有限公司教务管理系统存在SQL注入漏洞(CNVD-2026-06106 ) | 2025-12-15 | 2026-01-26 |
| cnvd-2026-07157 | Tenda FH1203 page参数栈缓冲区溢出漏洞 | 2023-07-12 | 2026-01-23 |
| cnvd-2026-07156 | Tenda FH1203 fromAddressNat方法栈缓冲区溢出漏洞 | 2023-07-12 | 2026-01-23 |
| cnvd-2026-07155 | Tenda FH1203 formSetSpeedWan方法堆栈缓冲区溢出漏洞 | 2023-07-12 | 2026-01-23 |
| cnvd-2026-07154 | Tenda FH1203 formSetDeviceName方法堆栈缓冲区溢出漏洞 | 2023-07-12 | 2026-01-23 |
| cnvd-2026-07153 | Tenda FH1203 formSetClientState方法堆栈缓冲区溢出漏洞 | 2023-07-12 | 2026-01-23 |
| cnvd-2026-07152 | Tenda FH1203 addWifiMacFilter方法堆缓冲区溢出漏洞 | 2023-07-12 | 2026-01-23 |
| cnvd-2026-07148 | Tenda FH1203 formWriteFacMac方法命令注入漏洞 | 2024-03-29 | 2026-01-23 |
| cnvd-2026-07147 | Tenda FH1203 GetParentControlInfo方法堆栈缓冲区溢出漏洞 | 2024-03-29 | 2026-01-23 |
| ID | Description | Published | Updated |
|---|---|---|---|
| bdu:2025-13477 | Уязвимость функции build_sit_entries операционной системы Linux, позволяющая нарушителю в… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13475 | Уязвимость функции jffs2_link_node_ref операционной системы Linux, позволяющая нарушителю… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13471 | Уязвимость функции qlen_notify() компонента sched ядра операционных систем Linux, позволя… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13467 | Уязвимость функции uart_register_driver ядра операционной системы Linux, позволяющая нару… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13466 | Уязвимость функции load_global_roots_objectid ядра операционной системы Linux, позволяюща… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13465 | Уязвимость функции wcd9335_parse_dt ядра операционной системы Linux, позволяющая нарушите… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13463 | Уязвимость функции jffs2_prealloc_raw_node_refs ядра операционной системы Linux, позволяю… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13459 | Уязвимость компонента net ядра операционной системы Linux, позволяющая нарушителю вызвать… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13456 | Уязвимость функции aoedev_downdev ядра операционной системы Linux, позволяющая нарушителю… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13454 | Уязвимость функции adxl_put ядра операционной системы Linux, позволяющая нарушителю оказ… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13449 | Уязвимость функции smc_ib_is_sg_need_sync() ядра операционной системы Linux, позволяющая … | 28.10.2025 | 16.02.2026 |
| bdu:2025-13446 | Уязвимость функции tee_shm_put() ядра операционной системы Linux, позволяющая нарушителю … | 28.10.2025 | 16.02.2026 |
| bdu:2025-13413 | Уязвимость функции setupLookaside() системы управления базами данных SQLite, позволяющая … | 28.10.2025 | 16.02.2026 |
| bdu:2025-13243 | Уязвимость функции _bfd_elf_parse_eh_frame() программного средства разработки GNU Binutil… | 22.10.2025 | 16.02.2026 |
| bdu:2025-13169 | Уязвимость серверного программного обеспечения HAProxy, связанная с алгоритмической сложн… | 21.10.2025 | 16.02.2026 |
| bdu:2025-13037 | Уязвимость реализации сервера разрешения имён WINS пакета программ сетевого взаимодействи… | 17.10.2025 | 16.02.2026 |
| bdu:2025-12988 | Уязвимость функции recvmsg() ядра операционной системы Linux, позволяющая нарушителю вызв… | 16.10.2025 | 16.02.2026 |
| bdu:2025-12912 | Уязвимость файлового архиватора 7-Zip, связанная с неверным определением символических сс… | 15.10.2025 | 16.02.2026 |
| bdu:2025-12910 | Уязвимость файлового архиватора 7-Zip, связанная с неверным определением символических сс… | 15.10.2025 | 16.02.2026 |
| bdu:2025-12887 | Уязвимость компонента HTTP Client API криптографической библиотеки OpenSSL, позволяющая н… | 14.10.2025 | 16.02.2026 |
| bdu:2025-12885 | Уязвимость компонента FIPS Module криптографической библиотеки OpenSSL, позволяющая наруш… | 14.10.2025 | 16.02.2026 |
| bdu:2025-12884 | Уязвимость компонента ssh средства криптографической защиты OpenSSH, позволяющая нарушите… | 14.10.2025 | 16.02.2026 |
| bdu:2025-12705 | Уязвимость функции l2cap_connect() модуля net/bluetooth/l2cap_core.c ядра операционной си… | 10.10.2025 | 16.02.2026 |
| bdu:2025-12599 | Уязвимость утилиты командной строки cURL, связанная с чтением данных за границами буфера … | 08.10.2025 | 16.02.2026 |
| bdu:2025-12566 | Уязвимость компонента ProxyCommand средства криптографической защиты OpenSSH, позволяющая… | 08.10.2025 | 16.02.2026 |
| bdu:2025-12556 | Уязвимость функции tls_rx_msg_size() компонента tls ядра операционной системы Linux, позв… | 07.10.2025 | 16.02.2026 |
| bdu:2025-12484 | Уязвимость компонента t2.c библиотеки для кодирования и декодирования изображений OpenJPE… | 06.10.2025 | 16.02.2026 |
| bdu:2025-12482 | Уязвимость функции pci_bus_release_domain_nr() ядра операционной системы Linux, позволяющ… | 06.10.2025 | 16.02.2026 |
| bdu:2025-12470 | Уязвимость компонента tiffcmp библиотеки LibTIFF, позволяющая нарушителю вызвать отказ в … | 06.10.2025 | 16.02.2026 |
| bdu:2025-12374 | Уязвимость функций urllib.parse.urlsplit() и urlparse() интерпретатора языка программиров… | 29.09.2025 | 16.02.2026 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2025-avi-1057 | Multiples vulnérabilités dans les produits VMware | 2025-12-02T00:00:00.000000 | 2025-12-02T00:00:00.000000 |
| certfr-2025-avi-1056 | Multiples vulnérabilités dans Google Android | 2025-12-02T00:00:00.000000 | 2025-12-02T00:00:00.000000 |
| certfr-2025-avi-1055 | Multiples vulnérabilités dans Zabbix | 2025-12-01T00:00:00.000000 | 2025-12-01T00:00:00.000000 |
| certfr-2025-avi-1054 | Multiples vulnérabilités dans les produits VMware | 2025-12-01T00:00:00.000000 | 2025-12-01T00:00:00.000000 |
| certfr-2025-avi-1053 | Vulnérabilité dans Stormshield Network VPN Client | 2025-12-01T00:00:00.000000 | 2025-12-01T00:00:00.000000 |
| certfr-2025-avi-1052 | Vulnérabilité dans Mattermost Server | 2025-12-01T00:00:00.000000 | 2025-12-01T00:00:00.000000 |
| certfr-2025-avi-0936 | Multiples vulnérabilités dans Mattermost Server | 2025-10-29T00:00:00.000000 | 2025-12-01T00:00:00.000000 |
| certfr-2025-avi-1051 | Multiples vulnérabilités dans les produits IBM | 2025-11-28T00:00:00.000000 | 2025-11-28T00:00:00.000000 |
| certfr-2025-avi-1050 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-11-28T00:00:00.000000 | 2025-11-28T00:00:00.000000 |
| certfr-2025-avi-1049 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-11-28T00:00:00.000000 | 2025-11-28T00:00:00.000000 |
| certfr-2025-avi-1048 | Multiples vulnérabilités dans le noyau Linux de Debian LTS | 2025-11-28T00:00:00.000000 | 2025-11-28T00:00:00.000000 |
| certfr-2025-avi-1047 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-11-28T00:00:00.000000 | 2025-11-28T00:00:00.000000 |
| certfr-2025-avi-1046 | Multiples vulnérabilités dans les produits Moxa | 2025-11-28T00:00:00.000000 | 2025-11-28T00:00:00.000000 |
| certfr-2025-avi-1045 | Vulnérabilité dans MISP | 2025-11-27T00:00:00.000000 | 2025-11-28T00:00:00.000000 |
| certfr-2025-avi-1044 | Vulnérabilité dans Mattermost Server | 2025-11-27T00:00:00.000000 | 2025-11-27T00:00:00.000000 |
| certfr-2025-avi-1043 | Multiples vulnérabilités dans les produits Splunk | 2025-11-27T00:00:00.000000 | 2025-11-27T00:00:00.000000 |
| certfr-2025-avi-1042 | Multiples vulnérabilités dans GitLab | 2025-11-27T00:00:00.000000 | 2025-11-27T00:00:00.000000 |
| certfr-2025-avi-1041 | Vulnérabilité dans Synology ActiveProtect Agent | 2025-11-26T00:00:00.000000 | 2025-11-26T00:00:00.000000 |
| certfr-2025-avi-1040 | Vulnérabilité dans Postfix | 2025-11-26T00:00:00.000000 | 2025-11-26T00:00:00.000000 |
| certfr-2025-avi-1039 | Vulnérabilité dans Kaspersky Security Center | 2025-11-25T00:00:00.000000 | 2025-11-25T00:00:00.000000 |
| certfr-2025-avi-1038 | Vulnérabilité dans les produits PrimX | 2025-11-25T00:00:00.000000 | 2025-11-25T00:00:00.000000 |
| certfr-2025-avi-1037 | Multiples vulnérabilités dans Progress MOVEit Transfer | 2025-11-25T00:00:00.000000 | 2025-11-25T00:00:00.000000 |
| certfr-2025-avi-1036 | Multiples vulnérabilités dans les produits VMware | 2025-11-24T00:00:00.000000 | 2025-11-24T00:00:00.000000 |
| certfr-2025-avi-1035 | Multiples vulnérabilités dans les produits Synology | 2025-11-24T00:00:00.000000 | 2025-11-24T00:00:00.000000 |
| certfr-2025-avi-1034 | Multiples vulnérabilités dans les produits IBM | 2025-11-21T00:00:00.000000 | 2025-11-21T00:00:00.000000 |
| certfr-2025-avi-1033 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-11-21T00:00:00.000000 | 2025-11-21T00:00:00.000000 |
| certfr-2025-avi-1032 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-11-21T00:00:00.000000 | 2025-11-21T00:00:00.000000 |
| certfr-2025-avi-1031 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-11-21T00:00:00.000000 | 2025-11-21T00:00:00.000000 |
| certfr-2025-avi-1030 | Vulnérabilité dans Microsoft Visual Studio Code | 2025-11-21T00:00:00.000000 | 2025-11-21T00:00:00.000000 |
| certfr-2025-avi-1029 | Vulnérabilité dans les produits Kaspersky | 2025-11-20T00:00:00.000000 | 2025-11-20T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2006-ale-010 | Vulnérabilité dans Internet Explorer | 2006-08-23T00:00:00.000000 | 2006-08-25T00:00:00.000000 |
| certa-2006-ale-009 | Vulnérabilité de la librairie MSO.DLL dans Microsoft Office | 2006-07-15T00:00:00.000000 | 2006-08-09T00:00:00.000000 |
| certa-2006-ale-007 | Vulnérabilité dans Microsoft Excel | 2006-06-16T00:00:00.000000 | 2006-07-12T00:00:00.000000 |
| certa-2006-ale-008 | Vulnérabilité d'ExtCalendar | 2006-07-11T00:00:00.000000 | 2006-07-11T00:00:00.000000 |
| certa-2006-ale-006 | Vulnérabilité dans Microsoft Word | 2006-05-20T00:00:00.000000 | 2006-06-14T00:00:00.000000 |
| certa-2006-ale-004 | Multiples vulnérabilités sous Mac OS X d'Apple | 2006-04-22T00:00:00.000000 | 2006-05-12T00:00:00.000000 |
| certa-2006-ale-005 | Vulnérabilité dans Firefox | 2006-04-26T00:00:00.000000 | 2006-05-02T00:00:00.000000 |
| certa-2006-ale-002 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2006-03-23T00:00:00.000000 | 2006-04-12T00:00:00.000000 |
| certa-2005-ale-012 | Vulnérabilité de Netscape 8 | 2005-09-27T00:00:00.000000 | 2006-04-12T00:00:00.000000 |
| certa-2005-ale-008 | Possible vulnérabilité de la bibliothèque msdds.dll | 2005-08-19T00:00:00.000000 | 2006-04-12T00:00:00.000000 |
| certa-2006-ale-003 | Vulnérabilité de Sendmail | 2006-03-24T00:00:00.000000 | 2006-03-24T00:00:00.000000 |
| certa-2006-ale-001 | Vulnérabilité dans le traitement de certains fichiers sous MAC OS X | 2006-02-22T00:00:00.000000 | 2006-03-02T00:00:00.000000 |
| certa-2005-ale-019 | Exploitation d'une vulnérabilité mal corrigée dans Microsoft Windows | 2005-12-28T00:00:00.000000 | 2006-01-06T00:00:00.000000 |
| certa-2005-ale-017 | Vulnérabilité de Microsoft Internet Explorer | 2005-11-21T00:00:00.000000 | 2005-12-14T00:00:00.000000 |
| certa-2005-ale-018 | Vulnérabilité du navigateur Firefox | 2005-12-08T00:00:00.000000 | 2005-12-08T00:00:00.000000 |
| certa-2005-ale-016 | Vulnérabilité de Microsoft Windows RPC | 2005-11-18T00:00:00.000000 | 2005-11-18T00:00:00.000000 |
| certa-2005-ale-014 | Vulnérabilité d'un grand nombre d'antivirus | 2005-10-11T00:00:00.000000 | 2005-10-11T00:00:00.000000 |
| certa-2005-ale-011 | Vulnérabilité de HelixPlayer et RealPlayer | 2005-09-27T00:00:00.000000 | 2005-10-10T00:00:00.000000 |
| certa-2005-ale-010 | Vulnérabilité dans Qpopper | 2005-09-27T00:00:00.000000 | 2005-09-27T00:00:00.000000 |
| certa-2005-ale-009 | Vulnérabilité dans Mozilla Thunderbird | 2005-09-23T00:00:00.000000 | 2005-09-23T00:00:00.000000 |
| certa-2005-ale-007 | Exploitation de la faille MS05-039 | 2005-08-16T00:00:00.000000 | 2005-08-16T00:00:00.000000 |
| certa-2005-ale-006 | Vulnérabilité du protocole RDP de Microsoft | 2005-07-18T00:00:00.000000 | 2005-08-10T00:00:00.000000 |
| certa-2005-ale-005 | Vulnérabilité d'Internet Explorer | 2005-07-02T00:00:00.000000 | 2005-07-13T00:00:00.000000 |
| certa-2005-ale-004 | Propagation du ver MYTOB | 2005-06-03T00:00:00.000000 | 2005-06-03T00:00:00.000000 |
| certa-2005-ale-003 | Multiples vulnérabilités de Firefox | 2005-05-09T00:00:00.000000 | 2005-05-12T00:00:00.000000 |
| certa-2005-ale-002 | Exploitation d'une vulnérabilité dans Oracle Database Server | 2005-04-28T00:00:00.000000 | 2005-04-28T00:00:00.000000 |
| certa-2005-ale-001 | Vulnérabilité d'Internet Explorer | 2005-01-03T00:00:00.000000 | 2005-01-11T00:00:00.000000 |
| certa-2004-ale-014 | Exploitation massive d'une faille du forum phpBB | 2004-12-22T00:00:00.000000 | 2004-12-22T00:00:00.000000 |
| certa-2004-ale-013 | Vulnérabilité dans le composant ActiveX DHTML Edit d'Internet Explorer | 2004-12-20T00:00:00.000000 | 2004-12-20T00:00:00.000000 |
| certa-2004-ale-012 | Vulnérabilité d'Internet Explorer | 2004-11-09T00:00:00.000000 | 2004-12-02T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| osv-2025-628 | Null-dereference READ in ubsan_GetStackTrace | 2025-08-14T00:15:27.806312Z | 2025-08-14T00:15:27.806631Z |
| osv-2025-627 | Null-dereference READ in ProcessRows | 2025-08-14T00:14:14.245302Z | 2025-08-14T00:14:14.245619Z |
| osv-2025-622 | Heap-buffer-overflow in cc_storage_append | 2025-08-13T00:16:18.937393Z | 2025-08-13T00:16:18.937719Z |
| osv-2025-620 | Heap-buffer-overflow in FragPrepareChunk | 2025-08-12T00:14:23.793424Z | 2025-08-12T00:14:23.793828Z |
| osv-2025-619 | Heap-buffer-overflow in webvtt_domnode_SelectNodesInTree | 2025-08-12T00:13:01.748418Z | 2025-08-12T00:13:01.748751Z |
| osv-2025-618 | Heap-buffer-overflow in iTUNTripletCallback | 2025-08-12T00:05:50.847179Z | 2025-08-12T00:05:50.847582Z |
| osv-2025-617 | UNKNOWN WRITE in MP4_BoxFree | 2025-08-12T00:04:18.009473Z | 2025-08-12T00:04:18.009816Z |
| osv-2025-616 | Heap-buffer-overflow in Open | 2025-08-12T00:00:48.056276Z | 2025-08-12T00:00:48.056623Z |
| osv-2025-615 | Index-out-of-bounds in hevc_get_picture_size | 2025-08-12T00:00:42.725434Z | 2025-08-12T00:00:42.725767Z |
| osv-2025-614 | Heap-buffer-overflow in hevc_hvcC_to_AnnexB_NAL | 2025-08-12T00:00:36.634849Z | 2025-08-12T00:00:36.635239Z |
| osv-2025-613 | Heap-buffer-overflow in check_sync_pes | 2025-08-12T00:00:33.354786Z | 2025-08-12T00:00:33.355391Z |
| osv-2025-608 | Heap-buffer-overflow in _dwarf_memcpy_noswap_bytes | 2025-08-09T00:02:00.092320Z | 2025-08-11T14:17:56.957704Z |
| osv-2024-380 | Heap-use-after-free in H5FL__blk_gc_list | 2024-04-30T00:12:11.366893Z | 2025-08-06T15:10:14.893372Z |
| osv-2025-600 | Heap-buffer-overflow in generic_unpack | 2025-08-05T00:10:00.536266Z | 2025-08-05T00:10:00.536669Z |
| osv-2025-597 | Heap-buffer-overflow in generic_unpack | 2025-08-04T00:08:26.345735Z | 2025-08-04T00:08:26.346368Z |
| osv-2025-591 | UNKNOWN READ in mov_read_header | 2025-08-02T00:02:00.509459Z | 2025-08-02T00:02:00.510035Z |
| osv-2025-589 | Heap-buffer-overflow in isvcd_decode_recon_tfr_nmb_base_lyr | 2025-08-01T00:10:54.848946Z | 2025-08-01T00:10:54.849286Z |
| osv-2025-584 | Heap-buffer-overflow in isvcd_mark_err_slice_skip | 2025-07-31T00:09:08.538145Z | 2025-07-31T00:09:08.538507Z |
| osv-2025-93 | Heap-buffer-overflow in lj_strfmt_pushvf | 2025-02-05T00:18:14.584575Z | 2025-07-23T14:24:29.384461Z |
| osv-2025-249 | Heap-use-after-free in lj_strfmt_pushvf | 2025-04-02T00:09:53.120387Z | 2025-07-23T14:23:01.826780Z |
| osv-2025-267 | Stack-buffer-overflow in snap_usedef | 2025-04-08T00:17:16.034122Z | 2025-07-23T14:22:40.655455Z |
| osv-2025-570 | Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr | 2025-07-23T00:17:34.356115Z | 2025-07-23T00:17:34.356449Z |
| osv-2023-838 | Use-of-uninitialized-value in wabt::BinaryReaderIR::OnOpcode | 2023-09-12T14:01:08.316035Z | 2025-07-22T14:22:12.701561Z |
| osv-2025-564 | Heap-buffer-overflow in ndpi_match_host_subprotocol | 2025-07-21T00:03:40.000875Z | 2025-07-21T00:03:40.001170Z |
| osv-2025-550 | Use-of-uninitialized-value in CFF::cff2_cs_opset_t<cff2_cs_opset_subr_subset_t, CFF::subr_subset_param_t, CFF: | 2025-07-16T00:09:08.050994Z | 2025-07-16T00:09:08.051469Z |
| osv-2025-544 | Heap-buffer-overflow in N_BELE_RTP::LEPolicy::get32 | 2025-07-11T00:16:53.687776Z | 2025-07-11T00:16:53.688703Z |
| osv-2025-542 | Use-of-uninitialized-value in httpEncode64_3 | 2025-07-10T00:07:45.698070Z | 2025-07-10T00:07:45.698655Z |
| osv-2025-541 | Heap-buffer-overflow in js_create_function | 2025-07-09T00:20:09.455729Z | 2025-07-09T00:20:09.456170Z |
| osv-2025-534 | Heap-use-after-free in ih264_inter_pred_luma_horz_ssse3 | 2025-07-08T00:08:11.218515Z | 2025-07-08T00:08:11.218991Z |
| osv-2025-530 | Invalid-free in cli_pdf | 2025-07-07T00:17:21.884018Z | 2025-07-07T00:17:21.884367Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rustsec-2024-0389 | `openslide` is unmaintained | 2024-07-03T12:00:00Z | 2024-11-10T13:42:14Z |
| rustsec-2024-0388 | `derivative` is unmaintained; consider using an alternative | 2024-06-26T12:00:00Z | 2024-11-10T13:34:40Z |
| rustsec-2024-0387 | `opentelemetry_api` has been merged into the `opentelemetry` crate | 2024-07-03T12:00:00Z | 2024-11-10T13:29:25Z |
| rustsec-2024-0386 | strason is unmaintained | 2024-09-04T12:00:00Z | 2024-11-10T13:16:48Z |
| rustsec-2024-0385 | `cw0` is unmaintained | 2024-08-26T12:00:00Z | 2024-11-10T13:12:32Z |
| rustsec-2024-0384 | `instant` is unmaintained | 2024-09-01T12:00:00Z | 2024-11-10T13:10:28Z |
| rustsec-2024-0383 | bcc is unmaintained | 2024-09-04T12:00:00Z | 2024-11-10T12:53:21Z |
| rustsec-2024-0382 | hwloc is unmaintained | 2024-09-04T12:00:00Z | 2024-11-10T12:52:40Z |
| rustsec-2024-0381 | Replaced by `pqcrypto-mlkem` | 2024-10-24T12:00:00Z | 2024-11-10T12:05:32Z |
| rustsec-2024-0380 | Replaced by `pqcrypto-mldsa` | 2024-10-24T12:00:00Z | 2024-11-10T12:05:32Z |
| rustsec-2024-0320 | yaml-rust is unmaintained. | 2024-03-20T12:00:00Z | 2024-11-01T12:31:51Z |
| rustsec-2020-0111 | may_queue's Queue lacks Send/Sync bound for its Send/Sync trait. | 2020-11-10T12:00:00Z | 2024-10-25T18:45:36Z |
| rustsec-2024-0375 | `atty` is unmaintained | 2024-09-25T12:00:00Z | 2024-09-26T12:26:22Z |
| rustsec-2023-0033 | Parsing borsh messages with ZST which are not-copy/clone is unsound | 2023-04-12T12:00:00Z | 2024-09-23T15:02:17Z |
| rustsec-2023-0055 | Multiple soundness issues | 2023-09-03T12:00:00Z | 2024-09-16T14:15:37Z |
| rustsec-2024-0370 | proc-macro-error is unmaintained | 2024-09-01T12:00:00Z | 2024-09-09T12:08:37Z |
| rustsec-2024-0373 | `Endpoint::retry()` calls can lead to panicking | 2024-09-02T12:00:00Z | 2024-09-08T01:47:13Z |
| rustsec-2024-0372 | Memory leak when calling a canister method via `ic_cdk::call` | 2024-09-05T12:00:00Z | 2024-09-07T18:23:36Z |
| rustsec-2024-0371 | gix-path improperly resolves configuration path reported by Git | 2024-09-06T12:00:00Z | 2024-09-07T01:48:33Z |
| rustsec-2024-0369 | phonenumber: panic on parsing crafted phonenumber inputs | 2024-07-07T12:00:00Z | 2024-09-05T13:40:37Z |
| rustsec-2024-0367 | gix-path uses local config across repos when it is the highest scope | 2024-08-31T12:00:00Z | 2024-09-03T22:23:51Z |
| rustsec-2024-0364 | gitoxide-core does not neutralize special characters for terminals | 2024-08-22T12:00:00Z | 2024-08-22T23:15:02Z |
| rustsec-2024-0361 | CWA-2024-004: Gas mispricing in cosmwasm-vm | 2024-08-08T12:00:00Z | 2024-08-08T17:11:37Z |
| rustsec-2024-0356 | `UserIdentity::is_verified` not checking verification status of own user identity while performing the check | 2024-07-18T12:00:00Z | 2024-07-19T10:11:38Z |
| rustsec-2024-0355 | gix-path can use a fake program files location | 2024-07-18T12:00:00Z | 2024-07-18T16:46:06Z |
| rustsec-2024-0354 | Usage of non-constant time base64 decoder could lead to leakage of secret key material | 2024-07-17T12:00:00Z | 2024-07-18T11:24:58Z |
| rustsec-2024-0353 | Refs and paths with reserved Windows device names access the devices | 2024-05-22T12:00:00Z | 2024-07-08T15:14:36Z |
| rustsec-2024-0352 | Refs and paths with reserved Windows device names access the devices | 2024-05-22T12:00:00Z | 2024-07-08T15:14:36Z |
| rustsec-2024-0351 | Refs and paths with reserved Windows device names access the devices | 2024-05-22T12:00:00Z | 2024-07-08T15:14:36Z |
| rustsec-2024-0350 | Traversal outside working tree enables arbitrary code execution | 2024-05-22T12:00:00Z | 2024-07-08T15:12:43Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| alsa-2025:21280 | Important: firefox security update | 2025-11-13T00:00:00Z | 2025-11-24T12:36:14Z |
| alsa-2025:20909 | Important: podman security update | 2025-11-11T00:00:00Z | 2025-11-24T12:26:34Z |
| alsa-2025:20095 | Moderate: kernel security update | 2025-11-11T00:00:00Z | 2025-11-24T10:55:21Z |
| alsa-2025:20126 | Moderate: openssh security update | 2025-11-11T00:00:00Z | 2025-11-24T10:51:19Z |
| alsa-2025:20145 | Low: shadow-utils security update | 2025-11-11T00:00:00Z | 2025-11-24T10:50:07Z |
| alsa-2025:20478 | Moderate: zziplib security update | 2025-11-11T00:00:00Z | 2025-11-24T10:49:03Z |
| alsa-2025:20155 | Moderate: binutils security update | 2025-11-11T00:00:00Z | 2025-11-24T10:47:58Z |
| alsa-2025:20181 | Important: pam security update | 2025-11-11T00:00:00Z | 2025-11-24T10:46:53Z |
| alsa-2025:21843 | Important: thunderbird security update | 2025-11-20T00:00:00Z | 2025-11-24T10:41:50Z |
| alsa-2025:21035 | Moderate: xorg-x11-server-Xwayland security update | 2025-11-11T00:00:00Z | 2025-11-24T09:01:21Z |
| alsa-2025:21034 | Important: bind security update | 2025-11-11T00:00:00Z | 2025-11-24T09:00:19Z |
| alsa-2025:21032 | Important: libsoup3 security update | 2025-11-11T00:00:00Z | 2025-11-24T08:58:48Z |
| alsa-2025:21030 | Important: expat security update | 2025-11-11T00:00:00Z | 2025-11-24T08:57:33Z |
| alsa-2025:21015 | Moderate: vim security update | 2025-11-11T00:00:00Z | 2025-11-24T08:56:33Z |
| alsa-2025:21013 | Moderate: libssh security update | 2025-11-11T00:00:00Z | 2025-11-24T08:54:57Z |
| alsa-2025:21002 | Important: squid security update | 2025-11-11T00:00:00Z | 2025-11-24T08:53:45Z |
| alsa-2025:20998 | Important: libtiff security update | 2025-11-11T00:00:00Z | 2025-11-24T08:51:54Z |
| alsa-2025:21815 | Moderate: delve and golang security update | 2025-11-20T00:00:00Z | 2025-11-20T10:59:53Z |
| alsa-2025:21232 | Important: container-tools:rhel8 security update | 2025-11-13T00:00:00Z | 2025-11-20T10:07:52Z |
| alsa-2025:21140 | Important: idm:DL1 security update | 2025-11-12T00:00:00Z | 2025-11-20T09:13:27Z |
| alsa-2025:19719 | Important: pcs security update | 2025-11-04T00:00:00Z | 2025-11-20T09:07:50Z |
| alsa-2025:21776 | Important: expat security update | 2025-11-19T00:00:00Z | 2025-11-20T09:03:52Z |
| alsa-2025:21397 | Moderate: kernel-rt security update | 2025-11-17T00:00:00Z | 2025-11-19T14:52:45Z |
| alsa-2025:21398 | Moderate: kernel security update | 2025-11-17T00:00:00Z | 2025-11-19T14:49:27Z |
| alsa-2025:21693 | Important: haproxy security update | 2025-11-18T00:00:00Z | 2025-11-19T10:52:41Z |
| alsa-2025:21702 | Important: podman security update | 2025-11-18T00:00:00Z | 2025-11-19T10:51:29Z |
| alsa-2025:21628 | Critical: lasso security update | 2025-11-17T00:00:00Z | 2025-11-19T10:11:06Z |
| alsa-2025:20955 | Important: redis:7 security update | 2025-11-11T00:00:00Z | 2025-11-19T09:42:38Z |
| alsa-2025:21139 | Important: python-kdcproxy security update | 2025-11-12T00:00:00Z | 2025-11-19T09:41:31Z |
| alsa-2025:21462 | Critical: lasso security update | 2025-11-17T00:00:00Z | 2025-11-19T09:40:25Z |