Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2023-28546 |
7.8 (3.1)
|
Buffer Copy Without Checking Size of Input in SPS Appl… |
Qualcomm, Inc. |
Snapdragon |
2023-12-05T03:03:46.993Z | 2026-02-25T16:51:09.392Z |
| CVE-2023-28585 |
8.2 (3.1)
|
Integer Overflow to Buffer Overflow in TZ Secure OS |
Qualcomm, Inc. |
Snapdragon |
2023-12-05T03:03:53.662Z | 2026-02-25T16:51:08.675Z |
| CVE-2023-33024 |
6.7 (3.1)
|
Buffer Copy Without Checking Size of Input (`Classic B… |
Qualcomm, Inc. |
Snapdragon |
2023-12-05T03:04:03.310Z | 2026-02-25T16:51:08.468Z |
| CVE-2023-33071 |
8.4 (3.1)
|
Improper Access Control in Automotive OS Platform Android |
Qualcomm, Inc. |
Snapdragon |
2023-12-05T03:04:13.352Z | 2026-02-25T16:51:08.257Z |
| CVE-2023-33082 |
9.8 (3.1)
|
Buffer Copy Without Checking Size of Input (`Classic B… |
Qualcomm, Inc. |
Snapdragon |
2023-12-05T03:04:18.133Z | 2026-02-25T16:51:07.770Z |
| CVE-2026-2479 |
5 (3.1)
|
Responsive Lightbox & Gallery <= 2.7.1 - Authenticated… |
dfactory |
Responsive Lightbox & Gallery |
2026-02-25T08:25:30.385Z | 2026-02-25T16:51:05.012Z |
| CVE-2023-6333 |
7.5 (3.1)
|
Cross-site Scripting in ControlByWeb Relays |
ControlByWeb |
X-332-24I |
2023-12-07T18:08:04.324Z | 2026-02-25T16:50:54.327Z |
| CVE-2026-1916 |
7.5 (3.1)
|
WPGSI: Spreadsheet Integration <= 3.8.3 - Missing Auth… |
javmah |
WPGSI: Spreadsheet Integration |
2026-02-25T08:25:31.051Z | 2026-02-25T16:50:00.569Z |
| CVE-2020-14381 |
7.8 (3.1)
|
A flaw was found in the Linux kernel’s futex impl… |
n/a |
kernel |
2020-12-03T16:21:55.000Z | 2026-02-25T16:48:37.567Z |
| CVE-2024-50452 |
6.5 (3.1)
|
WordPress Nexter Blocks plugin <= 3.3.3 - Cross Site S… |
POSIMYTH |
Nexter Blocks |
2026-02-20T15:46:25.053Z | 2026-02-25T16:48:11.776Z |
| CVE-2026-27739 |
9.2 (4.0)
|
Angular SSR is vulnerable to SSRF and Header Injection… |
angular |
angular-cli |
2026-02-25T16:47:29.705Z | 2026-02-25T16:47:29.705Z |
| CVE-2026-1144 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
quickjs-ng quickjs Atomics Ops quickjs.c use after free |
quickjs-ng |
quickjs |
2026-01-19T07:32:10.363Z | 2026-02-25T16:46:28.328Z |
| CVE-2026-1145 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
quickjs-ng quickjs quickjs.c js_typed_array_constructo… |
quickjs-ng |
quickjs |
2026-01-19T08:02:08.519Z | 2026-02-25T16:45:03.206Z |
| CVE-2024-51915 |
6.5 (3.1)
|
WordPress LiteSpeed Cache plugin <= 6.5.2 - Cross Site… |
LiteSpeed Technologies |
LiteSpeed Cache |
2026-02-20T15:46:25.475Z | 2026-02-25T16:44:09.359Z |
| CVE-2026-21528 |
6.5 (3.1)
|
Azure IoT Explorer Information Disclosure Vulnerability |
Microsoft |
Azure IoT Explorer |
2026-02-10T17:51:30.773Z | 2026-02-25T16:43:35.894Z |
| CVE-2025-69873 |
2.9 (3.1)
|
ajv (Another JSON Schema Validator) before 8.18.0… |
ajv.js |
ajv |
2026-02-11T00:00:00.000Z | 2026-02-25T16:42:35.482Z |
| CVE-2026-23491 |
9.3 (4.0)
|
InvoicePlane has Unauthenticated Path Traversal in Gue… |
InvoicePlane |
InvoicePlane |
2026-02-18T19:52:26.304Z | 2026-02-25T16:41:34.879Z |
| CVE-2023-5427 |
7.8 (3.1)
|
Mali GPU Kernel Driver allows improper GPU processing … |
Arm Ltd |
Bifrost GPU Kernel Driver |
2023-12-01T10:13:49.299Z | 2026-02-25T16:41:07.193Z |
| CVE-2026-27738 |
6.9 (4.0)
|
Angular SSR has an Open Redirect via X-Forwarded-Prefix |
angular |
angular-cli |
2026-02-25T16:40:44.724Z | 2026-02-25T16:40:44.724Z |
| CVE-2024-54222 |
4.3 (3.1)
|
WordPress Seraphinite Accelerator plugin <= 2.22.15 - … |
Seraphinite Solutions |
Seraphinite Accelerator |
2026-02-20T15:46:25.825Z | 2026-02-25T16:39:20.709Z |
| CVE-2026-2416 |
7.5 (3.1)
|
Geo Mashup <= 1.13.17 - Unauthenticated SQL Injection … |
cyberhobo |
Geo Mashup |
2026-02-25T08:25:31.427Z | 2026-02-25T16:37:56.454Z |
| CVE-2026-1929 |
8.8 (3.1)
|
Advanced Woo Labels <= 2.37 - Authenticated (Contribut… |
mihail-barinov |
Advanced Woo Labels – Product Labels & Badges for WooCommerce |
2026-02-25T08:25:31.823Z | 2026-02-25T16:37:12.800Z |
| CVE-2026-3171 |
5.1 (4.0)
3.5 (3.1)
3.5 (3.0)
|
SourceCodester/Patrick Mvuma Patients Waiting Area Que… |
SourceCodester |
Patients Waiting Area Queue Management System |
2026-02-25T08:32:07.369Z | 2026-02-25T16:34:51.471Z |
| CVE-2023-49583 |
9.1 (3.1)
|
Escalation of Privileges in SAP BTP Security Services … |
SAP_SE |
@sap/xssec |
2023-12-12T01:22:58.910Z | 2026-02-25T16:34:36.422Z |
| CVE-2023-50422 |
9.1 (3.1)
|
Escalation of Privileges in SAP BTP Security Services … |
SAP_SE |
cloud-security-services-integration-library |
2023-12-12T01:31:17.991Z | 2026-02-25T16:34:36.244Z |
| CVE-2023-50423 |
9.1 (3.1)
|
Escalation of Privileges in SAP BTP Security Services … |
SAP_SE |
sap-xssec |
2023-12-12T01:52:44.999Z | 2026-02-25T16:34:36.085Z |
| CVE-2023-50424 |
9.1 (3.1)
|
Escalation of Privileges in SAP BTP Security Services … |
SAP_SE |
github.com/sap/cloud-security-client-go |
2023-12-12T01:59:36.703Z | 2026-02-25T16:34:35.943Z |
| CVE-2022-47374 |
7.5 (3.1)
|
A vulnerability has been identified in SIMATIC PC… |
Siemens |
SIMATIC PC-Station Plus |
2023-12-12T11:25:31.314Z | 2026-02-25T16:34:35.793Z |
| CVE-2023-46156 |
7.5 (3.1)
|
Affected devices improperly handle specially craf… |
Siemens |
SIMATIC Drive Controller CPU 1504D TF |
2023-12-12T11:27:10.086Z | 2026-02-25T16:34:35.639Z |
| CVE-2023-46284 |
7.5 (3.1)
|
A vulnerability has been identified in Opcenter E… |
Siemens |
Opcenter Execution Foundation |
2023-12-12T11:27:15.737Z | 2026-02-25T16:34:35.352Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2026-27645 | changedetection.io is a free open source web page change detection tool. In versions prior to 0.54.… | 2026-02-25T05:17:26.317 | 2026-02-25T16:51:33.417 |
| fkie_cve-2025-46320 | A cross-site scripting (XSS) vulnerability in a FileMaker WebDirect custom homepage could lead to u… | 2026-02-24T21:16:18.447 | 2026-02-25T16:47:08.160 |
| fkie_cve-2025-69252 | free5gc UDM provides Unified Data Management (UDM) for free5GC, an open-source project for 5th gene… | 2026-02-24T00:16:18.707 | 2026-02-25T16:46:15.720 |
| fkie_cve-2026-25610 | An authorized user may trigger a server crash by running a $geoNear pipeline with certain invalid i… | 2026-02-10T19:16:04.037 | 2026-02-25T16:46:13.320 |
| fkie_cve-2025-69251 | free5gc UDM provides Unified Data Management (UDM) for free5GC, an open-source project for 5th gene… | 2026-02-24T00:16:18.520 | 2026-02-25T16:46:00.580 |
| fkie_cve-2025-69250 | free5gc UDM provides Unified Data Management (UDM) for free5GC, an open-source project for 5th gene… | 2026-02-24T00:16:18.330 | 2026-02-25T16:45:38.647 |
| fkie_cve-2026-25613 | An authorized user may disable the MongoDB server by issuing a query against a collection that cont… | 2026-02-10T19:16:04.267 | 2026-02-25T16:45:10.213 |
| fkie_cve-2026-2763 | Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox < 148, Firefo… | 2026-02-24T14:16:24.620 | 2026-02-25T16:45:05.537 |
| fkie_cve-2026-27642 | free5gc UDM provides Unified Data Management (UDM) for free5GC, an open-source project for 5th gene… | 2026-02-24T01:16:15.390 | 2026-02-25T16:44:26.120 |
| fkie_cve-2026-2764 | JIT miscompilation, use-after-free in the JavaScript Engine: JIT component. This vulnerability affe… | 2026-02-24T14:16:24.737 | 2026-02-25T16:44:17.213 |
| fkie_cve-2026-2765 | Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox < 148, Firefo… | 2026-02-24T14:16:24.860 | 2026-02-25T16:43:25.553 |
| fkie_cve-2026-2766 | Use-after-free in the JavaScript Engine: JIT component. This vulnerability affects Firefox < 148, F… | 2026-02-24T14:16:24.973 | 2026-02-25T16:43:01.463 |
| fkie_cve-2026-2767 | Use-after-free in the JavaScript: WebAssembly component. This vulnerability affects Firefox < 148, … | 2026-02-24T14:16:25.080 | 2026-02-25T16:42:35.330 |
| fkie_cve-2026-2768 | Sandbox escape in the Storage: IndexedDB component. This vulnerability affects Firefox < 148, Firef… | 2026-02-24T14:16:25.183 | 2026-02-25T16:42:04.193 |
| fkie_cve-2026-26218 | newbee-mall includes pre-seeded administrator accounts in its database initialization script. These… | 2026-02-12T19:15:52.120 | 2026-02-25T16:41:25.410 |
| fkie_cve-2026-2770 | Use-after-free in the DOM: Bindings (WebIDL) component. This vulnerability affects Firefox < 148, F… | 2026-02-24T14:16:25.397 | 2026-02-25T16:40:15.020 |
| fkie_cve-2026-26219 | newbee-mall stores and verifies user passwords using an unsalted MD5 hashing algorithm. The impleme… | 2026-02-12T19:15:52.300 | 2026-02-25T16:40:13.200 |
| fkie_cve-2025-69253 | free5GC is an open-source project for 5th generation (5G) mobile core networks. Versions up to and … | 2026-02-24T01:16:11.913 | 2026-02-25T16:39:41.997 |
| fkie_cve-2026-2771 | Undefined behavior in the DOM: Core & HTML component. This vulnerability affects Firefox < 148, Fir… | 2026-02-24T14:16:25.497 | 2026-02-25T16:39:30.330 |
| fkie_cve-2026-2772 | Use-after-free in the Audio/Video: Playback component. This vulnerability affects Firefox < 148, Fi… | 2026-02-24T14:16:25.603 | 2026-02-25T16:38:40.753 |
| fkie_cve-2026-2773 | Incorrect boundary conditions in the Web Audio component. This vulnerability affects Firefox < 148,… | 2026-02-24T14:16:25.703 | 2026-02-25T16:37:52.530 |
| fkie_cve-2025-69248 | free5GC is an open-source project for 5th generation (5G) mobile core networks. Versions up to and … | 2026-02-23T22:16:21.220 | 2026-02-25T16:35:57.660 |
| fkie_cve-2026-26025 | free5GC SMF provides Session Management Function for free5GC, an open-source project for 5th genera… | 2026-02-24T01:16:15.237 | 2026-02-25T16:28:24.257 |
| fkie_cve-2026-26024 | free5GC SMF provides Session Management Function for free5GC, an open-source project for 5th genera… | 2026-02-24T01:16:15.087 | 2026-02-25T16:27:56.640 |
| fkie_cve-2026-2774 | Integer overflow in the Audio/Video component. This vulnerability affects Firefox < 148, Firefox ES… | 2026-02-24T14:16:25.810 | 2026-02-25T16:27:50.917 |
| fkie_cve-2026-2775 | Mitigation bypass in the DOM: HTML Parser component. This vulnerability affects Firefox < 148, Fire… | 2026-02-24T14:16:25.917 | 2026-02-25T16:27:02.663 |
| fkie_cve-2026-25501 | free5GC SMF provides Session Management Function for free5GC, an open-source project for 5th genera… | 2026-02-24T01:16:12.927 | 2026-02-25T16:26:40.507 |
| fkie_cve-2026-2776 | Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software… | 2026-02-24T14:16:26.023 | 2026-02-25T16:25:27.640 |
| fkie_cve-2026-3188 | A security flaw has been discovered in feiyuchuixue sz-boot-parent up to 1.3.2-beta. This affects a… | 2026-02-25T16:23:30.203 | 2026-02-25T16:23:30.203 |
| fkie_cve-2026-27848 | Due to missing neutralization of special elements, OS commands can be injected via the handshake of… | 2026-02-25T16:23:29.037 | 2026-02-25T16:23:29.037 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-5jj2-qhxw-rpq6 |
5.0 (3.1)
|
libtiff up to v4.7.1 was discovered to contain a double free via the component tools/tiffcrop.c. | 2026-02-23T21:31:26Z | 2026-02-24T21:31:41Z |
| ghsa-p884-v7p5-5858 |
5.5 (3.1)
|
libtiff up to v4.7.1 was discovered to contain a NULL pointer dereference via the component libtiff… | 2026-02-23T21:31:26Z | 2026-02-24T21:31:40Z |
| ghsa-xcv9-r62w-jh9r |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:39Z |
| ghsa-wm24-gwfw-426w |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:39Z |
| ghsa-rhvr-p49q-rhmm |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:39Z |
| ghsa-qv9f-wvw4-25rj |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:39Z |
| ghsa-j3pj-q5qg-g2r8 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:39Z |
| ghsa-hx9h-rh37-jg32 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:39Z |
| ghsa-cq45-jm56-f2cg |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:39Z |
| ghsa-4f62-jjjx-4hrr |
8.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in leafcolor Applay - Shortcodes applay-shortcodes … | 2026-02-20T18:31:38Z | 2026-02-24T21:31:39Z |
| ghsa-2c3x-rrq4-j7xg |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:39Z |
| ghsa-xv8f-556c-h484 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:38Z |
| ghsa-wm24-v2x8-m9pj |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:38Z |
| ghsa-v9wq-4qj2-xvh4 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:38Z |
| ghsa-v76h-ch32-xfcr |
9.8 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:38Z |
| ghsa-v5q2-22j2-xvp3 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:38Z |
| ghsa-rw2x-9m7j-wvrx |
7.5 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:37Z | 2026-02-24T21:31:38Z |
| ghsa-rfpg-r65c-g86m |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:38Z |
| ghsa-p57f-h2f5-67v8 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:38Z |
| ghsa-mvfm-p427-8c26 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:38Z |
| ghsa-mrp6-8q86-qp29 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:38Z |
| ghsa-j368-q2mr-vhv4 |
5.4 (3.1)
|
Authentication Bypass Using an Alternate Path or Channel vulnerability in Case-Themes Booked booked… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:38Z |
| ghsa-c27m-jc6r-9c95 |
7.5 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:38Z |
| ghsa-8c32-hp76-8f35 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:36Z | 2026-02-24T21:31:38Z |
| ghsa-7f73-hx35-rw45 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:38Z |
| ghsa-752x-86hx-w73c |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:38Z |
| ghsa-6frj-85f5-897h |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:37Z | 2026-02-24T21:31:38Z |
| ghsa-66q7-4wcm-7r85 |
8.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in Dotstore Woocommerce Category Banner Management … | 2026-02-20T18:31:38Z | 2026-02-24T21:31:38Z |
| ghsa-6562-26mh-56xr |
7.5 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:37Z | 2026-02-24T21:31:38Z |
| ghsa-62jc-vj7m-2q9x |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-02-20T18:31:38Z | 2026-02-24T21:31:38Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2014-103 |
|
The default LDAP ACIs in FreeIPA 3.0 before 3.1.2 do not restrict access to the (1) ipaNT… | ipa | 2014-05-29T14:19:00Z | 2024-11-21T14:22:51.957056Z |
| pysec-2013-38 |
|
The client in FreeIPA 2.x and 3.x before 3.1.2 does not properly obtain the Certification… | ipa | 2013-01-27T18:55:00Z | 2024-11-21T14:22:51.898526Z |
| pysec-2012-33 |
|
Session fixation vulnerability in OpenStack Dashboard (Horizon) folsom-1 and 2012.1 allow… | horizon | 2012-06-05T22:55:00Z | 2024-11-21T14:22:51.786908Z |
| pysec-2012-32 |
|
Cross-site scripting (XSS) vulnerability in the refresh mechanism in the log viewer in ho… | horizon | 2012-06-05T22:55:00Z | 2024-11-21T14:22:51.729618Z |
| pysec-2023-271 |
5.3 (3.1)
|
Hail is an open-source, general-purpose, Python-based data analysis tool with additional … | hail | 2023-12-29T17:16:00+00:00 | 2024-11-21T14:22:51.672042+00:00 |
| pysec-2012-31 |
|
libs/updater.py in GoLismero 0.6.3, and other versions before Git revision 2b3bb43d6867, … | golismero | 2012-03-19T19:55:00Z | 2024-11-21T14:22:51.617446Z |
| pysec-2013-37 |
|
store/swift.py in OpenStack Glance Essex (2012.1), Folsom (2012.2) before 2012.2.3, and G… | glance | 2013-02-24T21:55:00Z | 2024-11-21T14:22:51.177765Z |
| pysec-2012-30 |
|
The v2 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote… | glance | 2012-11-11T13:00:00Z | 2024-11-21T14:22:51.113933Z |
| pysec-2012-29 |
|
The v1 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote… | glance | 2012-11-11T13:00:00Z | 2024-11-21T14:22:51.054769Z |
| pysec-2023-269 |
7.5 (3.1)
|
GeoNode is an open source platform that facilitates the creation, sharing, and collaborat… | geonode | 2023-08-24T23:15:00+00:00 | 2024-11-21T14:22:50.995218+00:00 |
| pysec-2021-888 |
7.8 (3.1)
|
netCDF in GDAL 2.4.2 through 3.0.4 has a stack-based buffer overflow in nc4_get_att (call… | gdal | 2021-07-20T07:15:00+00:00 | 2024-11-21T14:22:50.934313+00:00 |
| pysec-2021-887 |
9.8 (3.1)
|
GattLib 0.3-rc1 has a stack-based buffer over-read in get_device_path_from_mac in dbus/ga… | gattlib-py | 2021-05-27T11:15:00Z | 2024-11-21T14:22:50.881327Z |
| pysec-2019-250 |
8.8 (3.1)
|
GattLib 0.2 has a stack-based buffer over-read in gattlib_connect in dbus/gattlib.c becau… | gattlib-py | 2019-01-21T06:29:00Z | 2024-11-21T14:22:50.820785Z |
| pysec-2014-101 |
|
FreeIPA 4.0.x before 4.0.5 and 4.1.x before 4.1.1, when 2FA is enabled, allows remote att… | freeipa | 2014-11-19T18:59:00Z | 2024-11-21T14:22:50.589801Z |
| pysec-2014-100 |
|
The default LDAP ACIs in FreeIPA 3.0 before 3.1.2 do not restrict access to the (1) ipaNT… | freeipa | 2014-05-29T14:19:00Z | 2024-11-21T14:22:50.537629Z |
| pysec-2013-36 |
|
The client in FreeIPA 2.x and 3.x before 3.1.2 does not properly obtain the Certification… | freeipa | 2013-01-27T18:55:00Z | 2024-11-21T14:22:50.474073Z |
| pysec-2021-886 |
6.5 (3.1)
|
A buffer overflow vulnerability in the Databuf function in types.cpp of Exiv2 v0.27.1 lea… | exiv2 | 2021-07-13T22:15:00Z | 2024-11-21T14:22:50.153222Z |
| pysec-2021-885 |
6.5 (3.1)
|
A stack exhaustion issue in the printIFDStructure function of Exiv2 0.27 allows remote at… | exiv2 | 2021-08-19T22:15:00Z | 2024-11-21T14:22:50.094265Z |
| pysec-2021-884 |
6.5 (3.1)
|
A float point exception in the printLong function in tags_int.cpp of Exiv2 0.27.99.0 allo… | exiv2 | 2021-08-23T22:15:00Z | 2024-11-21T14:22:50.034285Z |
| pysec-2021-883 |
6.5 (3.1)
|
An invalid memory access in the decode function in iptc.cpp of Exiv2 0.27.99.0 allows att… | exiv2 | 2021-08-23T22:15:00Z | 2024-11-21T14:22:49.973408Z |
| pysec-2021-882 |
8.1 (3.1)
|
Exiv2 0.27.99.0 has a global buffer over-read in Exiv2::Internal::Nikon1MakerNote::print0… | exiv2 | 2021-08-23T22:15:00Z | 2024-11-21T14:22:49.911764Z |
| pysec-2019-249 |
8.8 (3.1)
|
An issue was discovered in Exiv2 0.27. There is infinite recursion at BigTiffImage::print… | exiv2 | 2019-02-25T15:29:00Z | 2024-11-21T14:22:49.85073Z |
| pysec-2019-248 |
8.8 (3.1)
|
An issue was discovered in Exiv2 0.27. There is infinite recursion at Exiv2::Image::print… | exiv2 | 2019-02-25T15:29:00Z | 2024-11-21T14:22:49.79084Z |
| pysec-2020-344 |
7.5 (3.1)
|
In Jp2Image::readMetadata() in jp2image.cpp in Exiv2 0.27.2, an input file can result in … | exiv2 | 2020-01-27T05:15:00Z | 2024-11-21T14:22:49.729892Z |
| pysec-2019-247 |
6.5 (3.1)
|
Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when cal… | exiv2 | 2019-10-09T19:15:00Z | 2024-11-21T14:22:49.656989Z |
| pysec-2019-246 |
6.5 (3.1)
|
In Exiv2 0.27.99.0, there is an out-of-bounds read in Exiv2::MrwImage::readMetadata() in … | exiv2 | 2019-07-28T19:15:00Z | 2024-11-21T14:22:49.597801Z |
| pysec-2019-245 |
6.5 (3.1)
|
Exiv2::PngImage::readMetadata() in pngimage.cpp in Exiv2 0.27.99.0 allows attackers to ca… | exiv2 | 2019-07-28T19:15:00Z | 2024-11-21T14:22:49.538663Z |
| pysec-2019-244 |
7.8 (3.1)
|
Exiv2 0.27.99.0 has a heap-based buffer over-read in Exiv2::RafImage::readMetadata() in r… | exiv2 | 2019-07-28T19:15:00Z | 2024-11-21T14:22:49.479201Z |
| pysec-2018-148 |
6.5 (3.1)
|
In the DataBuf class in include/exiv2/types.hpp in Exiv2 0.26, an issue exists in the con… | exiv2 | 2018-03-30T08:29:00Z | 2024-11-21T14:22:49.400819Z |
| pysec-2018-147 |
6.5 (3.1)
|
In Exiv2 0.26, the Exiv2::Internal::printCsLensFFFF function in canonmn_int.cpp allows re… | exiv2 | 2018-03-25T03:29:00Z | 2024-11-21T14:22:49.341312Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-4171 | A vulnerability classified as critical has been found in Tenda W30E 1.0/1.0.1.25. Affecte… | 2024-04-26T05:02:17.434975Z |
| gsd-2024-4221 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:17.433755Z |
| gsd-2024-4210 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:17.431459Z |
| gsd-2024-4200 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:17.430960Z |
| gsd-2024-4204 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:17.429356Z |
| gsd-2024-4175 | Unicode transformation vulnerability in Hyperion affecting version 2.0.15. This vulnerabi… | 2024-04-26T05:02:17.424356Z |
| gsd-2024-4225 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:17.423760Z |
| gsd-2024-4223 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:17.423284Z |
| gsd-2024-4206 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:17.423074Z |
| gsd-2024-4199 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:17.422865Z |
| gsd-2024-4177 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:17.421751Z |
| gsd-2024-4198 | Mattermost versions 9.6.0, 9.5.x before 9.5.3, and 8.1.x before 8.1.12 fail to fully vali… | 2024-04-26T05:02:17.420758Z |
| gsd-2024-4164 | A vulnerability, which was classified as critical, has been found in Tenda G3 15.11.0.17(… | 2024-04-26T05:02:17.419490Z |
| gsd-2024-4180 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:17.418368Z |
| gsd-2024-4190 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:17.415072Z |
| gsd-2024-4211 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:17.414864Z |
| gsd-2024-4216 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:17.414356Z |
| gsd-2024-4224 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:17.414154Z |
| gsd-2024-4194 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:17.413687Z |
| gsd-2024-4169 | A vulnerability was found in Tenda 4G300 1.01.42. It has been declared as critical. This … | 2024-04-26T05:02:17.413039Z |
| gsd-2024-4167 | A vulnerability was found in Tenda 4G300 1.01.42 and classified as critical. Affected by … | 2024-04-26T05:02:17.405786Z |
| gsd-2024-4202 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:17.405198Z |
| gsd-2024-4209 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:17.403437Z |
| gsd-2024-4201 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:17.401052Z |
| gsd-2024-4181 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:17.398953Z |
| gsd-2024-4168 | A vulnerability was found in Tenda 4G300 1.01.42. It has been classified as critical. Thi… | 2024-04-26T05:02:17.398024Z |
| gsd-2024-4217 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:17.397245Z |
| gsd-2024-4173 | A vulnerability in Brocade SANnav exposes Kafka in the wan interface. The vulnerability… | 2024-04-26T05:02:17.396711Z |
| gsd-2024-4193 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:17.395860Z |
| gsd-2024-4182 | Mattermost versions 9.6.0, 9.5.x before 9.5.3, 9.4.x before 9.4.5, and 8.1.x before 8.1.1… | 2024-04-26T05:02:17.395657Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2026-775 | Malicious code in ac-array (npm) | 2026-02-06T02:07:02Z | 2026-02-06T02:07:02Z |
| mal-2026-774 | Malicious code in adminbypasser (PyPI) | 2026-02-06T01:15:08Z | 2026-02-06T01:15:08Z |
| mal-2026-766 | Malicious code in greeter-pro-test (PyPI) | 2026-02-05T16:40:51Z | 2026-02-05T16:40:56Z |
| mal-2026-762 | Malicious code in metadata-checker (PyPI) | 2026-02-05T14:30:34Z | 2026-02-05T15:20:28Z |
| mal-2026-763 | Malicious code in web3-meme-tool (PyPI) | 2026-02-05T14:33:05Z | 2026-02-05T14:33:05Z |
| mal-2026-759 | Malicious code in pipelinepoision-test (PyPI) | 2026-02-05T08:43:35Z | 2026-02-05T08:43:35Z |
| mal-2026-745 | Malicious code in statssol (PyPI) | 2026-02-04T19:47:20Z | 2026-02-04T19:47:20Z |
| mal-2026-738 | Malicious code in tablescene (PyPI) | 2026-02-04T10:24:43Z | 2026-02-04T18:51:22Z |
| mal-2026-625 | Malicious code in hangimani (PyPI) | 2026-02-02T00:02:05Z | 2026-02-04T17:50:02Z |
| mal-2026-607 | Malicious code in banquet-runtime-modules (npm) | 2026-01-30T12:50:57Z | 2026-02-04T17:33:26Z |
| mal-2026-628 | Malicious code in @casaverso/frontend-core (npm) | 2026-02-02T05:19:43Z | 2026-02-04T15:31:04Z |
| mal-2026-739 | Malicious code in test-for-ppe (PyPI) | 2026-02-04T14:57:08Z | 2026-02-04T14:57:08Z |
| mal-2026-731 | Malicious code in cicd-ppe-test (PyPI) | 2026-02-04T07:33:21Z | 2026-02-04T07:33:21Z |
| mal-2026-732 | Malicious code in gridifys (PyPI) | 2026-02-04T07:29:56Z | 2026-02-04T07:29:56Z |
| mal-2026-626 | Malicious code in react-toast-cold (npm) | 2026-01-28T08:21:01Z | 2026-02-04T05:37:06Z |
| mal-2026-636 | Malicious code in idv-script (npm) | 2026-02-02T05:19:43Z | 2026-02-04T05:37:04Z |
| mal-2026-702 | Malicious code in serpapi-python (PyPI) | 2026-02-03T11:52:58Z | 2026-02-03T11:52:58Z |
| mal-2026-701 | Malicious code in filespath (PyPI) | 2026-02-03T10:31:19Z | 2026-02-03T10:31:19Z |
| mal-2026-696 | Malicious code in pathfiles (PyPI) | 2026-02-03T09:15:58Z | 2026-02-03T10:19:00Z |
| mal-2026-700 | Malicious code in tabulapys (PyPI) | 2026-02-03T10:04:45Z | 2026-02-03T10:04:45Z |
| mal-2026-699 | Malicious code in tokyo-ppe-test (PyPI) | 2026-02-03T09:32:04Z | 2026-02-03T09:32:04Z |
| mal-2026-698 | Malicious code in tableshow (PyPI) | 2026-02-03T09:30:09Z | 2026-02-03T09:30:09Z |
| mal-2026-686 | Malicious code in tableapys (PyPI) | 2026-02-03T07:49:06Z | 2026-02-03T09:19:13Z |
| mal-2026-697 | Malicious code in pathlib-v2-utility (PyPI) | 2026-02-03T09:17:38Z | 2026-02-03T09:17:38Z |
| mal-2026-638 | Malicious code in solhint-plugin-hyperlane (npm) | 2026-02-02T05:19:43Z | 2026-02-03T08:27:44Z |
| mal-2026-634 | Malicious code in eslint-config-minecraft-scripting (npm) | 2026-02-02T05:19:43Z | 2026-02-03T08:27:41Z |
| mal-2026-594 | Malicious code in epic-asset-uploader (npm) | 2026-01-28T19:45:45Z | 2026-02-03T08:27:41Z |
| mal-2026-554 | Malicious code in braintree-web-latest (npm) | 2026-01-25T19:34:34Z | 2026-02-03T04:54:38Z |
| mal-2026-496 | Malicious code in hemi-btc-staking-actions (npm) | 2026-01-23T18:12:42Z | 2026-02-03T04:04:59Z |
| mal-2026-617 | Malicious code in roots-cms-client (npm) | 2026-01-31T17:27:21Z | 2026-02-03T03:16:53Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-flux-2022-24877 | Improper path handling in kustomization files allows path traversal | 2025-12-02T17:36:55.459Z | 2025-12-02T18:06:28.296Z |
| bit-flux-2022-24817 | Improper kubeconfig validation allows arbitrary code execution | 2025-12-02T17:36:53.808Z | 2025-12-02T18:06:28.296Z |
| bit-pytorch-2025-32434 | PyTorch: `torch.load` with `weights_only=True` leads to remote code execution | 2025-04-22T07:19:45.992Z | 2025-12-01T21:08:19.180Z |
| bit-gitlab-2024-10925 | Authorization Bypass Through User-Controlled Key in GitLab | 2025-03-05T07:30:40.739Z | 2025-11-25T18:26:29.568Z |
| bit-drupal-2025-13082 | Drupal core - Moderately critical - Defacement - SA-CORE-2025-007 | 2025-11-25T17:56:45.040Z | 2025-11-25T18:26:29.568Z |
| bit-drupal-2025-13081 | Drupal core - Moderately critical - Gadget chain - SA-CORE-2025-006 | 2025-11-25T17:56:43.353Z | 2025-11-25T18:26:29.568Z |
| bit-drupal-2025-13080 | Drupal core - Moderately critical - Denial of Service - SA-CORE-2025-005 | 2025-11-25T17:56:41.671Z | 2025-11-25T18:26:29.568Z |
| bit-postgresql-2025-12818 | PostgreSQL libpq undersizes allocations, via integer wraparound | 2025-11-21T08:47:38.070Z | 2025-11-21T09:06:15.683Z |
| bit-postgresql-2025-12817 | PostgreSQL CREATE STATISTICS does not check for schema CREATE privilege | 2025-11-21T08:47:36.690Z | 2025-11-21T09:06:15.683Z |
| bit-golang-2025-58187 | Quadratic complexity when checking name constraints in crypto/x509 | 2025-11-06T12:58:22.304Z | 2025-11-21T09:06:15.683Z |
| bit-gitlab-2025-7736 | Incorrect Authorization in GitLab | 2025-11-20T09:05:14.844Z | 2025-11-21T09:06:15.683Z |
| bit-gitlab-2025-7000 | Insertion of Sensitive Information Into Sent Data in GitLab | 2025-11-21T09:04:35.128Z | 2025-11-21T09:06:15.683Z |
| bit-gitlab-2025-6945 | Improper Neutralization of Special Elements used in a Command ('Command Injection') in GitLab | 2025-11-21T09:04:31.573Z | 2025-11-21T09:06:15.683Z |
| bit-gitlab-2025-6171 | Missing Authorization in GitLab | 2025-11-21T09:04:22.209Z | 2025-11-21T09:06:15.683Z |
| bit-gitlab-2025-2615 | Insertion of Sensitive Information Into Sent Data in GitLab | 2025-11-20T09:04:09.576Z | 2025-11-21T09:06:15.683Z |
| bit-gitlab-2025-12983 | Memory Allocation with Excessive Size Value in GitLab | 2025-11-20T09:03:27.972Z | 2025-11-21T09:06:15.683Z |
| bit-gitlab-2025-11990 | Improper Handling of URL Encoding (Hex Encoding) in GitLab | 2025-11-20T09:03:19.328Z | 2025-11-20T09:06:46.640Z |
| bit-gitlab-2025-11865 | Incorrect Authorization in GitLab | 2025-11-20T09:03:10.744Z | 2025-11-20T09:06:46.640Z |
| bit-moodle-2025-62401 | Moodle: possible to bypass timer in timed assignments | 2025-11-17T23:47:50.898Z | 2025-11-18T00:06:24.423Z |
| bit-moodle-2025-62400 | Moodle: hidden group names visible to event creators | 2025-11-17T23:47:49.403Z | 2025-11-18T00:06:24.423Z |
| bit-moodle-2025-62399 | Moodle: password brute force risk when mobile/web services enabled | 2025-11-17T23:47:47.926Z | 2025-11-18T00:06:24.423Z |
| bit-moodle-2025-62398 | Moodle: possible to bypass mfa | 2025-11-17T23:47:46.528Z | 2025-11-18T00:06:24.423Z |
| bit-moodle-2025-62397 | Moodle: router produces json instead of 404 error for invalid course id | 2025-11-17T23:47:45.012Z | 2025-11-18T00:06:24.423Z |
| bit-moodle-2025-62396 | Moodle: router (r.php) could expose application directories | 2025-11-17T23:47:43.645Z | 2025-11-18T00:06:24.423Z |
| bit-moodle-2025-62395 | Moodle: external cohort search service leaks system cohort data | 2025-11-17T23:47:42.131Z | 2025-11-18T00:06:24.423Z |
| bit-moodle-2025-62394 | Moodle: quiz notifications sent to suspended participants | 2025-11-17T23:47:40.687Z | 2025-11-18T00:06:24.423Z |
| bit-moodle-2025-62393 | Moodle: course access permissions not properly checked in course_output_fragment_course_overview | 2025-11-17T23:47:39.287Z | 2025-11-18T00:06:24.423Z |
| bit-mongodb-2025-10061 | Malformed $group Query May Cause MongoDB Server to Crash | 2025-09-19T09:58:18.588Z | 2025-11-14T15:09:14.122Z |
| bit-kibana-2025-37734 | Kibana Origin Validation Error | 2025-11-14T14:40:47.948Z | 2025-11-14T15:09:14.122Z |
| bit-elk-2025-37734 | Kibana Origin Validation Error | 2025-11-14T14:38:05.480Z | 2025-11-14T15:09:14.122Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| drupal-contrib-2022-028 | 2022-03-09T18:28:39.000Z | 2023-08-10T21:39:01.000Z | |
| drupal-contrib-2022-027 | 2022-02-23T17:18:07.000Z | 2023-08-10T21:37:54.000Z | |
| drupal-contrib-2022-048 | 2022-07-13T15:44:42.000Z | 2023-08-10T21:36:29.000Z | |
| drupal-contrib-2022-047 | 2022-06-29T17:25:39.000Z | 2023-08-10T21:35:49.000Z | |
| drupal-contrib-2022-046 | 2022-06-29T16:51:17.000Z | 2023-08-10T21:35:30.000Z | |
| drupal-contrib-2022-045 | 2022-05-25T17:03:55.000Z | 2023-08-10T21:35:00.000Z | |
| drupal-contrib-2022-044 | 2022-05-25T16:53:45.000Z | 2023-08-10T21:33:53.000Z | |
| drupal-contrib-2022-043 | 2022-05-25T16:49:46.000Z | 2023-08-10T21:32:49.000Z | |
| drupal-contrib-2022-040 | 2022-05-18T17:13:43.000Z | 2023-08-10T21:05:48.000Z | |
| drupal-contrib-2022-042 | 2022-05-25T16:45:17.000Z | 2023-08-10T21:02:21.000Z | |
| drupal-contrib-2022-038 | 2022-05-04T16:26:47.000Z | 2023-08-10T21:00:44.000Z | |
| drupal-contrib-2022-058 | 2022-10-12T19:41:07.000Z | 2023-08-10T19:30:04.000Z | |
| drupal-contrib-2022-056 | 2022-09-07T17:06:06.000Z | 2023-08-10T19:28:12.000Z | |
| drupal-contrib-2022-055 | 2022-09-07T17:04:31.000Z | 2023-08-10T19:27:28.000Z | |
| drupal-contrib-2022-054 | 2022-09-07T16:57:28.000Z | 2023-08-10T19:26:43.000Z | |
| drupal-contrib-2022-053 | 2022-08-24T18:21:02.000Z | 2023-08-10T19:26:24.000Z | |
| drupal-contrib-2022-052 | 2022-08-10T15:09:36.000Z | 2023-08-10T19:25:47.000Z | |
| drupal-contrib-2022-051 | 2022-07-27T17:07:39.000Z | 2023-08-10T19:25:28.000Z | |
| drupal-contrib-2022-050 | 2022-07-27T17:03:38.000Z | 2023-08-10T19:24:22.000Z | |
| drupal-contrib-2022-061 | 2022-11-30T15:28:44.000Z | 2023-08-10T18:25:19.000Z | |
| drupal-contrib-2022-062 | 2022-11-30T15:34:03.000Z | 2023-08-10T18:25:13.000Z | |
| drupal-contrib-2022-060 | 2022-11-30T15:20:10.000Z | 2023-08-10T18:23:08.000Z | |
| drupal-contrib-2022-059 | 2022-10-19T20:28:24.000Z | 2023-08-10T18:22:23.000Z | |
| drupal-contrib-2023-011 | 2023-03-15T17:40:02.000Z | 2023-08-10T15:37:51.000Z | |
| drupal-contrib-2023-003 | 2023-01-18T17:36:56.000Z | 2023-08-10T14:25:39.000Z | |
| drupal-contrib-2023-002 | 2023-01-18T17:28:05.000Z | 2023-08-10T14:25:24.000Z | |
| drupal-contrib-2023-001 | 2023-01-11T17:15:37.000Z | 2023-08-10T14:25:04.000Z | |
| drupal-contrib-2023-004 | 2023-01-18T17:49:04.000Z | 2023-08-10T14:23:53.000Z | |
| drupal-contrib-2023-005 | 2023-02-01T16:13:42.000Z | 2023-08-10T14:23:38.000Z | |
| drupal-contrib-2023-006 | 2023-03-01T15:15:08.000Z | 2023-08-10T14:22:32.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2022-000057 | WordPress Plugin "Newsletter" vulnerable to cross-site scripting | 2022-07-25T14:30+09:00 | 2024-06-18T11:21+09:00 |
| jvndb-2022-000033 | Strapi vulnerable to cross-site scripting | 2022-05-13T16:45+09:00 | 2024-06-18T11:17+09:00 |
| jvndb-2022-000043 | SHIRASAGI vulnerable to cross-site scripting | 2022-06-09T13:31+09:00 | 2024-06-18T11:13+09:00 |
| jvndb-2022-000040 | Mobaoku-Auction & Flea Market App for iOS vulnerable to improper server certificate verification | 2022-05-27T15:48+09:00 | 2024-06-18T11:06+09:00 |
| jvndb-2022-000044 | Cisco Catalyst 2940 Series Switches vulnerable to cross-site scripting | 2022-06-14T13:46+09:00 | 2024-06-18T10:51+09:00 |
| jvndb-2022-000047 | web2py vulnerable to open redirect | 2022-06-23T14:21+09:00 | 2024-06-18T10:48+09:00 |
| jvndb-2022-000048 | L2Blocker Sensor setup screen vulnerable to authentication bypass | 2022-06-24T14:21+09:00 | 2024-06-18T10:45+09:00 |
| jvndb-2022-000041 | WordPress Plugin "Modern Events Calendar Lite" vulnerable to cross-site scripting | 2022-06-01T13:39+09:00 | 2024-06-18T10:42+09:00 |
| jvndb-2022-000042 | T&D Data Server and THERMO RECORDER DATA SERVER contain a directory traversal vulnerability. | 2022-06-01T16:12+09:00 | 2024-06-18T10:34+09:00 |
| jvndb-2022-000051 | Multiple vulnerabilities in Cybozu Garoon | 2022-07-04T14:17+09:00 | 2024-06-17T16:49+09:00 |
| jvndb-2022-000035 | Multiple vulnerabilities in Cybozu Garoon | 2022-05-16T14:25+09:00 | 2024-06-17T16:34+09:00 |
| jvndb-2024-003539 | Multiple vulnerabilities in Toshiba Tec and Oki Electric Industry MFPs | 2024-06-17T15:21+09:00 | 2024-06-17T15:21+09:00 |
| jvndb-2022-000058 | Multiple vulnerabilities in untangle | 2022-07-25T14:18+09:00 | 2024-06-17T11:03+09:00 |
| jvndb-2022-000049 | HOME SPOT CUBE2 vulnerable to OS command injection | 2022-06-29T13:42+09:00 | 2024-06-17T10:45+09:00 |
| jvndb-2022-000050 | LiteCart vulnerable to cross-site scripting | 2022-07-04T14:12+09:00 | 2024-06-17T10:39+09:00 |
| jvndb-2022-002017 | U-Boot squashfs filesystem implementation vulnerable to heap-based buffer overflow | 2022-07-14T15:59+09:00 | 2024-06-14T17:53+09:00 |
| jvndb-2022-000052 | Passage Drive vulnerable to insufficient data verification | 2022-07-08T13:42+09:00 | 2024-06-14T17:48+09:00 |
| jvndb-2022-000055 | Booked vulnerable to open redirect | 2022-07-22T13:40+09:00 | 2024-06-14T17:43+09:00 |
| jvndb-2022-002265 | Trend Micro Endpoint security products for enterprises vulnerable to Link Following Local Privilege Escalation | 2022-08-18T15:45+09:00 | 2024-06-14T17:11+09:00 |
| jvndb-2022-000056 | Multiple vulnerabilities in Nintendo Wi-Fi Network Adaptor WAP-001 | 2022-07-29T13:43+09:00 | 2024-06-14T16:27+09:00 |
| jvndb-2023-001215 | Zuken Elmic KASAGO uses insufficient random values for TCP Initial Sequence Numbers | 2023-02-13T14:18+09:00 | 2024-06-14T15:45+09:00 |
| jvndb-2022-002112 | CONTEC SolarView Compact vulnerable to insufficient verification in uploading files | 2022-08-03T17:40+09:00 | 2024-06-14T15:21+09:00 |
| jvndb-2022-000059 | "Hulu" App for Android uses a hard-coded API key for an external service | 2022-07-28T09:14+09:00 | 2024-06-14T14:42+09:00 |
| jvndb-2022-002338 | PLANEX MZK-DP150N contains hidden administrative functionality | 2022-08-23T15:02+09:00 | 2024-06-14T14:06+09:00 |
| jvndb-2022-000054 | Multiple vulnerabilities in Cybozu Office | 2022-07-20T17:28+09:00 | 2024-06-14T14:02+09:00 |
| jvndb-2022-000060 | "Hulu" App for iOS vulnerable to improper server certificate verification | 2022-07-28T09:51+09:00 | 2024-06-14T12:25+09:00 |
| jvndb-2022-000063 | PukiWiki vulnerable to cross-site scripting | 2022-08-23T14:40+09:00 | 2024-06-14T12:00+09:00 |
| jvndb-2022-002339 | Multiple vulnerabilities in PukiWiki | 2022-08-24T14:17+09:00 | 2024-06-14T11:55+09:00 |
| jvndb-2022-000065 | Multiple vulnerabilities in Exment | 2022-08-24T14:23+09:00 | 2024-06-14T11:09+09:00 |
| jvndb-2022-002337 | UNIMO Technology digital video recorders vulnerable to missing authentication for critical functions | 2022-08-23T14:31+09:00 | 2024-06-14T10:24+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2026-06362 | 瑞斯康达科技发展股份有限公司RAISECOM DR5374存在命令注入漏洞 | 2025-09-10 | 2026-01-23 |
| cnvd-2026-06289 | 用友网络科技股份有限公司用友U9多组织企业互联网应用平台存在任意文件下载漏洞 | 2025-11-24 | 2026-01-23 |
| cnvd-2026-06274 | 用友网络科技股份有限公司用友BIP数据应用服务存在SQL注入漏洞(CNVD-C-2025-879635) | 2025-11-18 | 2026-01-23 |
| cnvd-2026-06271 | 用友网络科技股份有限公司用友BIP数据应用服务存在目录遍历漏洞 | 2025-11-18 | 2026-01-23 |
| cnvd-2026-05793 | 深圳市绿联科技股份有限公司DH2100+ NAS存在命令执行漏洞 | 2025-11-21 | 2026-01-23 |
| cnvd-2026-05792 | 深圳市绿联科技股份有限公司DH2100+存在二进制漏洞 | 2025-11-20 | 2026-01-23 |
| cnvd-2026-08750 | Microsoft Graphics Kernel竞争条件问题漏洞 | 2026-01-19 | 2026-01-22 |
| cnvd-2026-08749 | Microsoft Graphics Component资源管理错误漏洞 | 2026-01-19 | 2026-01-22 |
| cnvd-2026-08748 | Microsoft Excel访问控制错误漏洞 | 2026-01-19 | 2026-01-22 |
| cnvd-2026-08747 | Microsoft Excel代码执行漏洞(CNVD-2026-08747) | 2026-01-19 | 2026-01-22 |
| cnvd-2026-08746 | Microsoft Excel代码执行漏洞(CNVD-2026-08746) | 2026-01-19 | 2026-01-22 |
| cnvd-2026-07247 | Google Chrome堆缓冲区溢出漏洞 | 2025-10-30 | 2026-01-22 |
| cnvd-2026-07246 | Google Chrome实现不当漏洞(CNVD-2026-07246) | 2025-11-11 | 2026-01-22 |
| cnvd-2026-07245 | Google Chrome释放后使用漏洞(CNVD-2026-07245) | 2025-12-05 | 2026-01-22 |
| cnvd-2026-07244 | Google Chrome实现不当漏洞 | 2025-12-08 | 2026-01-22 |
| cnvd-2026-07243 | Google Chrome类型混淆漏洞 | 2025-12-08 | 2026-01-22 |
| cnvd-2026-07242 | Google Chrome释放后重用漏洞 | 2025-12-15 | 2026-01-22 |
| cnvd-2026-07241 | Google Chrome策略执行不足漏洞 | 2026-01-09 | 2026-01-22 |
| cnvd-2026-07159 | Intern Membership Management System /add_admin.php文件SQL注入漏洞 | 2026-01-19 | 2026-01-22 |
| cnvd-2026-07158 | Intern Membership Management System /add_activity.php文件SQL注入漏洞 | 2026-01-19 | 2026-01-22 |
| cnvd-2026-07151 | Tenda M3 R7WebsSecurityHandler方法栈缓冲区溢出漏洞 | 2023-12-28 | 2026-01-22 |
| cnvd-2026-07150 | Tenda M3 fromSetLocalVlanInfo函数栈缓冲区溢出漏洞 | 2023-12-28 | 2026-01-22 |
| cnvd-2026-07149 | Tenda M3 formGetWeiXinConfig函数堆栈缓冲区溢出漏洞 | 2023-12-28 | 2026-01-22 |
| cnvd-2026-06808 | Cyber Cafe Management System add-users.php端点跨站脚本漏洞 | 2026-01-19 | 2026-01-22 |
| cnvd-2026-06807 | Cyber Cafe Management System add-users.php端点跨站脚本漏洞 | 2026-01-19 | 2026-01-22 |
| cnvd-2026-06806 | Cyber Cafe Management System add-users.php端点SQL注入漏洞 | 2026-01-19 | 2026-01-22 |
| cnvd-2026-06805 | Cyber Cafe Management System adminprofile.php端点SQL注入漏洞 | 2026-01-19 | 2026-01-22 |
| cnvd-2026-06140 | JeecgBoot路径遍历漏洞 | 2025-10-30 | 2026-01-22 |
| cnvd-2026-06139 | JeecgBoot getDeptRoleByUserId函数信息泄露漏洞 | 2026-01-09 | 2026-01-22 |
| cnvd-2026-06138 | JeecgBoot loadDatarule函数授权问题漏洞 | 2026-01-09 | 2026-01-22 |
| ID | Description | Published | Updated |
|---|---|---|---|
| bdu:2025-12241 | Уязвимость компонента drivers/md/dm-cache-target.c ядра операционной системы Linux, позво… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12237 | Уязвимость компонента mac.c ядра операционной системы Linux, позволяющая нарушителю вызва… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12236 | Уязвимость компонента net/sched/sch_skbprio.c ядра операционной системы Linux, позволяюща… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12233 | Уязвимость компонента net/mlx5 ядра операционной системы Linux, позволяющая нарушителю вы… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12232 | Уязвимость компонента vcodec ядра операционной системы Linux, позволяющая нарушителю вызв… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12231 | Уязвимость компонента vcodec ядра операционной системы Linux, позволяющая нарушителю вызв… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12230 | Уязвимость компонента net/mlx5 ядра операционной системы Linux, позволяющая нарушителю вы… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12228 | Уязвимость компонента displayport.c ядра операционной системы Linux, позволяющая нарушите… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12227 | Уязвимость функции find_format_by_pix() компонента drivers/usb/gadget/function/uvc_v4l2.c… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12226 | Уязвимость функции bnxt_set_rx_skb_mode() компонента bnxt_en ядра операционной системы Li… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12192 | Уязвимость компонента smb ядра операционной системы Linux, позволяющая нарушителю вызвать… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12191 | Уязвимость компонента acct ядра операционной системы Linux, позволяющая нарушителю вызват… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12189 | Уязвимость компонента bpf ядра операционной системы Linux, позволяющая нарушителю вызвать… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12185 | Уязвимость компонента tcp ядра операционной системы Linux, позволяющая нарушителю вызвать… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12184 | Уязвимость компонента qla1280.c ядра операционной системы Linux, позволяющая нарушителю в… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12182 | Уязвимость компонента sched ядра операционной системы Linux, позволяющая нарушителю вызва… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12180 | Уязвимость компонента mpc.c ядра операционной системы Linux, позволяющая нарушителю вызва… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12178 | Уязвимость компонента compat_alignment.c ядра операционной системы Linux, позволяющая нар… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12177 | Уязвимость компонента usbnet ядра операционной системы Linux, позволяющая нарушителю вызв… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12176 | Уязвимость компонента sysctl.c ядра операционной системы Linux, позволяющая нарушителю вы… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12175 | Уязвимость компонента calipso.c ядра операционной системы Linux, позволяющая нарушителю в… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12173 | Уязвимость компонента imx-card.c ядра операционной системы Linux, позволяющая нарушителю … | 28.09.2025 | 16.02.2026 |
| bdu:2025-12170 | Уязвимость компонента RDMA/mlx5 ядра операционной системы Linux, позволяющая нарушителю в… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12169 | Уязвимость компонента RDMA/core ядра операционной системы Linux, позволяющая нарушителю п… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12168 | Уязвимость компонента drm/amd/display ядра операционной системы Linux, позволяющая наруши… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12167 | Уязвимость компонента int3402_thermal.c ядра операционной системы Linux, позволяющая нару… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12166 | Уязвимость компонента mptcp ядра операционной системы Linux, позволяющая нарушителю вызва… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12165 | Уязвимость компонента ene-kb3930 ядра операционной системы Linux, позволяющая нарушителю … | 28.09.2025 | 16.02.2026 |
| bdu:2025-12164 | Уязвимость компонента i3c ядра операционной системы Linux, позволяющая нарушителю вызвать… | 28.09.2025 | 16.02.2026 |
| bdu:2025-12163 | Уязвимость ядра операционной системы Linux, связанная с ошибками разыменования нулеового … | 28.09.2025 | 16.02.2026 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2025-avi-0971 | Vulnérabilité dans Mattermost Server | 2025-11-06T00:00:00.000000 | 2025-11-06T00:00:00.000000 |
| certfr-2025-avi-0969 | Multiples vulnérabilités dans les produits VMware | 2025-11-06T00:00:00.000000 | 2025-11-06T00:00:00.000000 |
| certfr-2025-avi-0968 | Multiples vulnérabilités dans les produits Cisco | 2025-11-06T00:00:00.000000 | 2025-11-06T00:00:00.000000 |
| certfr-2025-avi-0967 | Multiples vulnérabilités dans les produits VMware | 2025-11-05T00:00:00.000000 | 2025-11-05T00:00:00.000000 |
| certfr-2025-avi-0966 | Multiples vulnérabilités dans les produits Microsoft | 2025-11-05T00:00:00.000000 | 2025-11-05T00:00:00.000000 |
| certfr-2025-avi-0965 | Multiples vulnérabilités dans MISP | 2025-11-05T00:00:00.000000 | 2025-11-05T00:00:00.000000 |
| certfr-2025-avi-0964 | Vulnérabilité dans Curl | 2025-11-05T00:00:00.000000 | 2025-11-05T00:00:00.000000 |
| certfr-2025-avi-0963 | Multiples vulnérabilités dans Google Android | 2025-11-04T00:00:00.000000 | 2025-11-04T00:00:00.000000 |
| certfr-2025-avi-0962 | Vulnérabilité dans Dovecot | 2025-11-04T00:00:00.000000 | 2025-11-04T00:00:00.000000 |
| certfr-2025-avi-0961 | Multiples vulnérabilités dans les produits Apple | 2025-11-04T00:00:00.000000 | 2025-11-04T00:00:00.000000 |
| certfr-2025-avi-0960 | Multiples vulnérabilités dans VMware Tanzu | 2025-11-04T00:00:00.000000 | 2025-11-04T00:00:00.000000 |
| certfr-2025-avi-0959 | Vulnérabilité dans Python | 2025-11-04T00:00:00.000000 | 2025-11-04T00:00:00.000000 |
| certfr-2025-avi-0958 | Multiples vulnérabilités dans Tenable Identity Exposure | 2025-11-04T00:00:00.000000 | 2025-11-04T00:00:00.000000 |
| certfr-2025-avi-0957 | Multiples vulnérabilités dans Moodle | 2025-11-03T00:00:00.000000 | 2025-11-04T00:00:00.000000 |
| certfr-2025-avi-0956 | Multiples vulnérabilités dans MariaDB | 2025-11-03T00:00:00.000000 | 2025-11-03T00:00:00.000000 |
| certfr-2025-avi-0955 | Multiples vulnérabilités dans Microsoft Edge | 2025-11-03T00:00:00.000000 | 2025-11-03T00:00:00.000000 |
| certfr-2025-avi-0953 | Vulnérabilité dans Elastic Cloud Enterprise | 2025-11-03T00:00:00.000000 | 2025-11-03T00:00:00.000000 |
| certfr-2025-avi-0952 | Vulnérabilité dans Mattermost Server | 2025-11-03T00:00:00.000000 | 2025-11-03T00:00:00.000000 |
| certfr-2025-avi-0951 | Multiples vulnérabilités dans Axis OS | 2025-11-03T00:00:00.000000 | 2025-11-03T00:00:00.000000 |
| certfr-2025-avi-0950 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-10-31T00:00:00.000000 | 2025-10-31T00:00:00.000000 |
| certfr-2025-avi-0949 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-10-31T00:00:00.000000 | 2025-10-31T00:00:00.000000 |
| certfr-2025-avi-0948 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-10-31T00:00:00.000000 | 2025-10-31T00:00:00.000000 |
| certfr-2025-avi-0947 | Multiples vulnérabilités dans les produits IBM | 2025-10-31T00:00:00.000000 | 2025-10-31T00:00:00.000000 |
| certfr-2025-avi-0946 | Vulnérabilité dans Sonicwall Secure Mobile Access | 2025-10-31T00:00:00.000000 | 2025-10-31T00:00:00.000000 |
| certfr-2025-avi-0945 | Vulnérabilité dans Qnap NetBak PC Agent | 2025-10-31T00:00:00.000000 | 2025-10-31T00:00:00.000000 |
| certfr-2025-avi-0944 | Vulnérabilité dans Liferay | 2025-10-31T00:00:00.000000 | 2025-10-31T00:00:00.000000 |
| certfr-2025-avi-0943 | Multiples vulnérabilités dans les produits Centreon | 2025-10-31T00:00:00.000000 | 2025-10-31T00:00:00.000000 |
| certfr-2025-avi-0942 | Vulnérabilité dans Dovecot | 2025-10-31T00:00:00.000000 | 2025-10-31T00:00:00.000000 |
| certfr-2025-avi-0941 | Multiples vulnérabilités dans les produits Microsoft | 2025-10-30T00:00:00.000000 | 2025-10-30T00:00:00.000000 |
| certfr-2025-avi-0940 | Vulnérabilité dans Liferay | 2025-10-30T00:00:00.000000 | 2025-10-30T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| osv-2024-1186 | UNKNOWN READ in cfl_sds_len | 2024-10-08T00:15:47.433219Z | 2025-05-13T14:48:36.393777Z |
| osv-2025-354 | Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.statement | 2025-05-11T00:17:30.348393Z | 2025-05-11T00:17:30.348809Z |
| osv-2025-352 | Use-of-uninitialized-value in JS_FreeRuntime | 2025-05-10T00:17:01.243609Z | 2025-05-10T00:17:01.243981Z |
| osv-2025-346 | Heap-buffer-overflow in JS_CallInternal | 2025-05-09T00:16:48.213077Z | 2025-05-09T00:16:48.213425Z |
| osv-2025-326 | Heap-use-after-free in __JS_FreeValueRT | 2025-05-05T00:17:02.285374Z | 2025-05-05T00:17:02.285666Z |
| osv-2025-324 | Index-out-of-bounds in dwg_decode_eed | 2025-05-05T00:11:42.580777Z | 2025-05-05T00:11:42.581345Z |
| osv-2025-323 | Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr | 2025-05-04T00:19:17.568436Z | 2025-05-04T00:19:17.568755Z |
| osv-2025-321 | Use-of-uninitialized-value in JS_DefineProperty | 2025-05-04T00:16:03.249115Z | 2025-05-04T00:16:03.249427Z |
| osv-2024-1375 | Index-out-of-bounds in dwg_decode_eed | 2024-12-15T00:01:20.442440Z | 2025-05-03T14:23:13.369570Z |
| osv-2024-1251 | UNKNOWN WRITE in s_DCTD_process | 2024-11-01T00:02:31.749497Z | 2025-04-29T14:29:01.935923Z |
| osv-2025-300 | Negative-size-param in recurse_update_offsets | 2025-04-26T00:15:04.274172Z | 2025-04-26T00:15:04.274471Z |
| osv-2023-1135 | Segv on unknown address in flb_sds_cat_safe | 2023-11-11T13:00:21.019255Z | 2025-04-24T14:23:15.311238Z |
| osv-2022-679 | Heap-buffer-overflow in udiv | 2022-08-07T00:01:59.645310Z | 2025-04-20T14:43:08.863483Z |
| osv-2022-652 | Use-of-uninitialized-value in udiv | 2022-07-29T00:02:04.321859Z | 2025-04-20T14:42:50.964633Z |
| osv-2022-599 | Use-of-uninitialized-value in mrb_bint_as_int | 2022-07-20T00:00:11.865502Z | 2025-04-20T14:42:31.713755Z |
| osv-2025-291 | Use-of-uninitialized-value in Poco::Net::NTLMCredentials::parseChallengeMessage | 2025-04-20T00:07:34.286645Z | 2025-04-20T00:07:34.287298Z |
| osv-2025-289 | Stack-buffer-overflow in ot::Cli::Utils::OutputLine | 2025-04-19T00:05:17.593162Z | 2025-04-19T00:05:17.593788Z |
| osv-2025-275 | UNKNOWN READ in void std::__1::vector<unsigned char, std::__1::allocator<unsigned char>>::__cons | 2025-04-14T00:02:37.519708Z | 2025-04-17T14:43:50.559313Z |
| osv-2024-1272 | Segv on unknown address in std::__1::ios_base::~ios_base | 2024-11-05T00:03:30.787980Z | 2025-04-17T14:38:30.981292Z |
| osv-2024-987 | Heap-buffer-overflow in pcpp::NDPNeighborAdvertisementLayer::toString | 2024-08-16T00:15:31.057826Z | 2025-04-16T14:29:47.716122Z |
| osv-2024-801 | UNKNOWN READ in PointerVector.h | 2024-08-16T00:02:10.140304Z | 2025-04-16T14:27:34.855775Z |
| osv-2025-271 | Use-of-uninitialized-value in luaS_new | 2025-04-11T00:04:20.869490Z | 2025-04-11T00:04:20.869967Z |
| osv-2024-1218 | UNKNOWN READ in Poco::UTF16Encoding::queryConvert | 2024-10-14T00:08:40.382545Z | 2025-04-10T14:48:52.198172Z |
| osv-2025-264 | Security exception in org.joni.Parser.parseCharClass | 2025-04-08T00:00:08.174777Z | 2025-04-08T00:00:08.175341Z |
| osv-2025-260 | Heap-buffer-overflow in bfd_getb16 | 2025-04-06T00:00:51.202273Z | 2025-04-06T00:00:51.202704Z |
| osv-2024-1164 | Use-of-uninitialized-value in format_message | 2024-10-02T00:13:05.449687Z | 2025-04-05T14:45:16.595433Z |
| osv-2025-258 | Global-buffer-overflow in parseExtraField | 2025-04-05T00:05:58.760780Z | 2025-04-05T00:05:58.761154Z |
| osv-2025-256 | Global-buffer-overflow in QByteArray::QByteArray | 2025-04-05T00:02:36.742745Z | 2025-04-05T00:02:36.743233Z |
| osv-2024-947 | Heap-buffer-overflow in pcpp::SomeIpSdEntry::SomeIpSdEntry | 2024-08-16T00:13:30.824621Z | 2025-04-03T14:42:12.138019Z |
| osv-2025-251 | Heap-buffer-overflow in icu_78::RegexMatcher::MatchChunkAt | 2025-04-02T00:16:00.337471Z | 2025-04-02T00:16:00.337850Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rustsec-2022-0040 | Multiple soundness issues in `owning_ref` | 2022-01-26T12:00:00Z | 2023-10-14T21:21:18Z |
| rustsec-2023-0067 | `fehler` is unmaintained; use `culpa` instead | 2023-10-12T12:00:00Z | 2023-10-14T15:01:02Z |
| rustsec-2023-0052 | webpki: CPU denial of service in certificate path building | 2023-08-22T12:00:00Z | 2023-09-30T20:13:23Z |
| rustsec-2023-0065 | Tungstenite allows remote attackers to cause a denial of service | 2023-09-25T12:00:00Z | 2023-09-29T12:03:03Z |
| rustsec-2021-0139 | ansi_term is Unmaintained | 2021-08-18T12:00:00Z | 2023-09-06T22:52:31Z |
| rustsec-2023-0056 | Default functions in VolatileMemory trait lack bounds checks, potentially leading to out-of-bounds memory accesses | 2023-09-01T12:00:00Z | 2023-09-06T17:18:09Z |
| rustsec-2023-0054 | Use-after-free in `vec_insert_bytes` | 2023-08-07T12:00:00Z | 2023-08-27T15:52:52Z |
| rustsec-2023-0053 | rustls-webpki: CPU denial of service in certificate path building | 2023-08-22T12:00:00Z | 2023-08-27T15:52:52Z |
| rustsec-2022-0081 | json is unmaintained | 2022-02-01T12:00:00Z | 2023-08-25T17:52:15Z |
| rustsec-2023-0040 | `users` crate is unmaintained | 2023-06-01T12:00:00Z | 2023-08-21T10:35:45Z |
| rustsec-2023-0051 | `dlopen_derive` is unmaintained | 2023-07-30T12:00:00Z | 2023-08-19T10:29:52Z |
| rustsec-2023-0050 | multipart is Unmaintained | 2023-04-11T12:00:00Z | 2023-08-18T20:38:40Z |
| rustsec-2023-0049 | `tui` is unmaintained; use `ratatui` instead | 2023-08-07T12:00:00Z | 2023-08-07T13:27:47Z |
| rustsec-2023-0048 | Unsoundness in `intern` methods on `intaglio` symbol interners | 2023-07-26T12:00:00Z | 2023-07-29T17:20:00Z |
| rustsec-2023-0047 | impl `FromMdbValue` for bool is unsound | 2023-06-26T12:00:00Z | 2023-07-29T17:20:00Z |
| rustsec-2023-0021 | NULL pointer dereference in `stb_image` | 2023-03-19T12:00:00Z | 2023-07-15T15:07:13Z |
| rustsec-2023-0046 | Misaligned pointer dereference in `ChunkId::new` | 2023-06-15T12:00:00Z | 2023-07-08T12:30:19Z |
| rustsec-2023-0045 | memoffset allows reading uninitialized memory | 2023-06-21T12:00:00Z | 2023-07-08T12:30:19Z |
| rustsec-2023-0042 | Ouroboros is Unsound | 2023-06-11T12:00:00Z | 2023-07-08T12:30:19Z |
| rustsec-2021-0145 | Potential unaligned read | 2021-07-04T12:00:00Z | 2023-07-08T12:30:19Z |
| rustsec-2020-0078 | `net2` invalidly assumes the memory layout of std::net::SocketAddr | 2020-11-07T12:00:00Z | 2023-07-08T12:30:19Z |
| rustsec-2023-0043 | ftp is unmaintained, use suppaftp instead | 2023-02-20T12:00:00Z | 2023-06-14T13:23:36Z |
| rustsec-2023-0041 | Remote Attackers can cause Denial-of-Service (packet loops) with crafted DNS packets | 2023-06-01T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2023-0035 | Adverserial use of `make_bitflags!` macro can cause undefined behavior | 2023-04-17T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2023-0032 | Unsound FFI: Wrong API usage causes write past allocated area | 2023-03-22T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2023-0031 | Initialisation failure in `Once::try_call_once` can lead to undefined behaviour for other initialisers | 2023-03-31T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2023-0030 | `Versionize::deserialize` implementation for `FamStructWrapper<T>` is lacking bound checks, potentially leading to out of bounds memory accesses | 2023-03-24T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2023-0027 | TLS certificate common name validation bypass | 2023-03-24T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2023-0024 | `openssl` `X509Extension::new` and `X509Extension::new_nid` null pointer dereference | 2023-03-24T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2023-0023 | `openssl` `SubjectAlternativeName` and `ExtendedKeyUsage::other` allow arbitrary file read | 2023-03-24T12:00:00Z | 2023-06-13T13:10:24Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| alsa-2025:18983 | Important: thunderbird security update | 2025-10-22T00:00:00Z | 2025-10-27T08:16:53Z |
| alsa-2025:18097 | Important: webkit2gtk3 security update | 2025-10-15T00:00:00Z | 2025-10-23T12:50:53Z |
| alsa-2025:17084 | Important: ipa security update | 2025-09-30T00:00:00Z | 2025-10-22T13:15:47Z |
| alsa-2025:18321 | Important: thunderbird security update | 2025-10-20T00:00:00Z | 2025-10-22T10:38:17Z |
| alsa-2025:18320 | Important: thunderbird security update | 2025-10-20T00:00:00Z | 2025-10-22T10:33:35Z |
| alsa-2025:18318 | Moderate: kernel security update | 2025-10-20T00:00:00Z | 2025-10-22T10:27:59Z |
| alsa-2025:18281 | Moderate: kernel security update | 2025-10-20T00:00:00Z | 2025-10-22T10:16:53Z |
| alsa-2025:17163 | Moderate: perl-JSON-XS security update | 2025-10-01T00:00:00Z | 2025-10-20T12:34:11Z |
| alsa-2025:17162 | Moderate: perl-JSON-XS security update | 2025-10-01T00:00:00Z | 2025-10-20T12:33:11Z |
| alsa-2025:18155 | Important: firefox security update | 2025-10-15T00:00:00Z | 2025-10-20T12:31:42Z |
| alsa-2025:18154 | Important: firefox security update | 2025-10-15T00:00:00Z | 2025-10-20T12:30:08Z |
| alsa-2025:18149 | Important: .NET 8.0 security update | 2025-10-15T00:00:00Z | 2025-10-20T12:28:15Z |
| alsa-2025:18148 | Important: .NET 8.0 security update | 2025-10-15T00:00:00Z | 2025-10-20T12:11:02Z |
| alsa-2025:18298 | Moderate: kernel-rt security update | 2025-10-20T00:00:00Z | 2025-10-20T12:08:20Z |
| alsa-2025:18297 | Moderate: kernel security update | 2025-10-20T00:00:00Z | 2025-10-20T12:01:40Z |
| alsa-2025:18286 | Moderate: libssh security update | 2025-10-20T00:00:00Z | 2025-10-20T11:55:49Z |
| alsa-2025:18285 | Important: firefox security update | 2025-10-20T00:00:00Z | 2025-10-20T11:50:28Z |
| alsa-2025:17776 | Moderate: kernel security update | 2025-10-13T00:00:00Z | 2025-10-17T09:45:53Z |
| alsa-2025:18275 | Moderate: libssh security update | 2025-10-16T00:00:00Z | 2025-10-17T08:04:25Z |
| alsa-2025:18231 | Moderate: libssh security update | 2025-10-16T00:00:00Z | 2025-10-16T14:22:59Z |
| alsa-2025:18183 | Important: libsoup3 security update | 2025-10-15T00:00:00Z | 2025-10-16T08:01:45Z |
| alsa-2025:17760 | Moderate: kernel security update | 2025-10-13T00:00:00Z | 2025-10-16T07:33:20Z |
| alsa-2025:17742 | Moderate: vim security update | 2025-10-13T00:00:00Z | 2025-10-14T13:35:06Z |
| alsa-2025:17913 | Moderate: vim security update | 2025-10-14T00:00:00Z | 2025-10-14T13:33:05Z |
| alsa-2025:17797 | Moderate: kernel security update | 2025-10-13T00:00:00Z | 2025-10-14T10:15:00Z |
| alsa-2025:17802 | Important: webkit2gtk3 security update | 2025-10-13T00:00:00Z | 2025-10-14T10:09:21Z |
| alsa-2025:17812 | Moderate: kernel-rt security update | 2025-10-13T00:00:00Z | 2025-10-14T07:28:37Z |
| alsa-2025:17675 | Important: compat-libtiff3 security update | 2025-10-09T00:00:00Z | 2025-10-13T10:06:16Z |
| alsa-2025:17558 | Moderate: iputils security update | 2025-10-08T00:00:00Z | 2025-10-13T08:54:54Z |
| alsa-2025:17715 | Moderate: vim security update | 2025-10-09T00:00:00Z | 2025-10-13T08:30:41Z |