Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-21157 |
7.8 (3.1)
|
InDesign Desktop | Out-of-bounds Write (CWE-787) |
Adobe |
InDesign Desktop |
2025-02-11T17:10:45.344Z | 2026-02-26T19:09:15.055Z |
| CVE-2025-21403 |
6.4 (3.1)
|
On-Premises Data Gateway Information Disclosure Vulner… |
Microsoft |
On-Premises Data Gateway |
2025-01-14T18:04:13.337Z | 2026-02-26T19:09:14.864Z |
| CVE-2025-1974 |
9.8 (3.1)
|
ingress-nginx admission controller RCE escalation |
kubernetes |
ingress-nginx |
2025-03-24T23:28:48.985Z | 2026-02-26T19:09:14.726Z |
| CVE-2025-21158 |
7.8 (3.1)
|
InDesign Desktop | Integer Underflow (Wrap or Wraparou… |
Adobe |
InDesign Desktop |
2025-02-11T17:10:47.804Z | 2026-02-26T19:09:14.593Z |
| CVE-2025-21335 |
7.8 (3.1)
|
Windows Hyper-V NT Kernel Integration VSP Elevation of… |
Microsoft |
Windows 10 Version 21H2 |
2025-01-14T18:04:17.808Z | 2026-02-26T19:09:14.341Z |
| CVE-2025-21156 |
7.8 (3.1)
|
InCopy | Integer Underflow (Wrap or Wraparound) (CWE-191) |
Adobe |
InCopy |
2025-02-11T17:21:25.696Z | 2026-02-26T19:09:14.174Z |
| CVE-2025-1097 |
8.8 (3.1)
|
ingress-nginx controller - configuration injection via… |
kubernetes |
ingress-nginx |
2025-03-24T23:29:05.879Z | 2026-02-26T19:09:14.028Z |
| CVE-2025-21187 |
7.8 (3.1)
|
Microsoft Power Automate Remote Code Execution Vulnerability |
Microsoft |
Power Automate for Desktop |
2025-01-14T18:04:20.259Z | 2026-02-26T19:09:13.876Z |
| CVE-2025-21159 |
7.8 (3.1)
|
Illustrator | Use After Free (CWE-416) |
Adobe |
Illustrator |
2025-02-11T17:27:39.557Z | 2026-02-26T19:09:13.710Z |
| CVE-2025-21186 |
7.8 (3.1)
|
Microsoft Access Remote Code Execution Vulnerability |
Microsoft |
Microsoft 365 Apps for Enterprise |
2025-01-14T18:04:20.776Z | 2026-02-26T19:09:13.442Z |
| CVE-2025-1098 |
8.8 (3.1)
|
ingress-nginx controller - configuration injection via… |
kubernetes |
ingress-nginx |
2025-03-24T23:29:15.610Z | 2026-02-26T19:09:13.280Z |
| CVE-2025-21163 |
7.8 (3.1)
|
Illustrator | Stack-based Buffer Overflow (CWE-121) |
Adobe |
Illustrator |
2025-02-11T17:27:40.356Z | 2026-02-26T19:09:13.139Z |
| CVE-2025-21224 |
8.1 (3.1)
|
Windows Line Printer Daemon (LPD) Service Remote Code … |
Microsoft |
Windows 10 Version 21H2 |
2025-01-14T18:04:22.623Z | 2026-02-26T19:09:12.951Z |
| CVE-2025-24514 |
8.8 (3.1)
|
ingress-nginx controller - configuration injection via… |
kubernetes |
ingress-nginx |
2025-03-24T23:29:36.802Z | 2026-02-26T19:09:12.808Z |
| CVE-2025-21160 |
7.8 (3.1)
|
Illustrator | Integer Underflow (Wrap or Wraparound) (… |
Adobe |
Illustrator |
2025-02-11T17:27:41.155Z | 2026-02-26T19:09:12.642Z |
| CVE-2025-21172 |
7.5 (3.1)
|
.NET and Visual Studio Remote Code Execution Vulnerability |
Microsoft |
.NET 8.0 |
2025-01-14T18:04:38.469Z | 2026-02-26T19:09:12.470Z |
| CVE-2024-58104 |
7.3 (3.1)
|
A vulnerability in the Trend Micro Apex One Secu… |
Trend Micro, Inc. |
Trend Micro Apex One |
2025-03-25T17:37:28.783Z | 2026-02-26T19:09:12.303Z |
| CVE-2025-24410 |
8.7 (3.1)
|
Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) |
Adobe |
Adobe Commerce |
2025-02-11T17:37:33.017Z | 2026-02-26T19:09:12.134Z |
| CVE-2025-21361 |
7.8 (3.1)
|
Microsoft Outlook Remote Code Execution Vulnerability |
Microsoft |
Microsoft Office LTSC for Mac 2021 |
2025-01-14T18:04:43.571Z | 2026-02-26T19:09:11.962Z |
| CVE-2024-58105 |
7.3 (3.1)
|
A vulnerability in the Trend Micro Apex One Secu… |
Trend Micro, Inc. |
Trend Micro Apex One |
2025-03-25T17:37:39.464Z | 2026-02-26T19:09:11.806Z |
| CVE-2025-24412 |
8.7 (3.1)
|
Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) |
Adobe |
Adobe Commerce |
2025-02-11T17:37:36.216Z | 2026-02-26T19:09:11.638Z |
| CVE-2025-21372 |
7.8 (3.1)
|
Microsoft Brokering File System Elevation of Privilege… |
Microsoft |
Windows 11 Version 24H2 |
2025-01-14T18:04:44.826Z | 2026-02-26T19:09:11.485Z |
| CVE-2025-24417 |
8.7 (3.1)
|
Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) |
Adobe |
Adobe Commerce |
2025-02-11T17:37:39.575Z | 2026-02-26T19:09:11.348Z |
| CVE-2025-21402 |
7.8 (3.1)
|
Microsoft Office OneNote Remote Code Execution Vulnerability |
Microsoft |
Microsoft Office LTSC for Mac 2021 |
2025-01-14T18:04:46.460Z | 2026-02-26T19:09:11.196Z |
| CVE-2025-2783 |
8.3 (3.1)
|
Incorrect handle provided in unspecified circumst… |
Google |
Chrome |
2025-03-26T16:07:51.034Z | 2026-02-26T19:09:11.033Z |
| CVE-2025-24418 |
8.1 (3.1)
|
Adobe Commerce | Improper Authorization (CWE-285) |
Adobe |
Adobe Commerce |
2025-02-11T17:37:41.236Z | 2026-02-26T19:09:10.892Z |
| CVE-2025-21333 |
7.8 (3.1)
|
Windows Hyper-V NT Kernel Integration VSP Elevation of… |
Microsoft |
Windows 10 Version 21H2 |
2025-01-14T18:04:50.962Z | 2026-02-26T19:09:10.751Z |
| CVE-2025-30407 |
6.3 (3.0)
|
Local privilege escalation due to a binary hijack… |
Acronis |
Acronis Cyber Protect Cloud Agent |
2025-03-26T21:32:30.085Z | 2026-02-26T19:09:10.614Z |
| CVE-2025-24438 |
8.7 (3.1)
|
Adobe Commerce | Cross-site Scripting (Stored XSS) (CWE-79) |
Adobe |
Adobe Commerce |
2025-02-11T17:37:42.877Z | 2026-02-26T19:09:10.474Z |
| CVE-2025-21334 |
7.8 (3.1)
|
Windows Hyper-V NT Kernel Integration VSP Elevation of… |
Microsoft |
Windows 10 Version 21H2 |
2025-01-14T18:04:51.608Z | 2026-02-26T19:09:10.178Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2026-2878 | In Progress® Telerik® UI for AJAX, versions prior to 2026.1.225, an insufficient entropy vulnerabil… | 2026-02-25T15:20:54.293 | 2026-02-26T15:23:31.757 |
| fkie_cve-2026-3071 | Deserialization of untrusted data in the LanguageModel class of Flair from versions 0.4.1 to latest… | 2026-02-26T15:17:48.803 | 2026-02-26T15:17:48.803 |
| fkie_cve-2026-2780 | Privilege escalation in the Netmonitor component. This vulnerability affects Firefox < 148, Firefox… | 2026-02-24T14:16:26.437 | 2026-02-26T15:17:47.160 |
| fkie_cve-2026-2244 | A vulnerability in Google Cloud Vertex AI Workbench from 7/21/2025 to 01/30/2026 allows an attacker… | 2026-02-26T15:17:45.250 | 2026-02-26T15:17:45.250 |
| fkie_cve-2026-28138 | Deserialization of Untrusted Data vulnerability in Stylemix uListing ulisting allows Object Injecti… | 2026-02-26T09:16:15.510 | 2026-02-26T15:17:43.900 |
| fkie_cve-2026-28132 | Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in vill… | 2026-02-26T09:16:15.217 | 2026-02-26T15:17:43.660 |
| fkie_cve-2026-28083 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-02-26T09:16:14.857 | 2026-02-26T15:17:43.413 |
| fkie_cve-2026-27966 | Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.8… | 2026-02-26T02:16:23.833 | 2026-02-26T15:17:42.780 |
| fkie_cve-2026-27837 | Dottie provides nested object access and manipulation in JavaScript. Versions 2.0.4 through 2.0.6 c… | 2026-02-26T01:16:24.937 | 2026-02-26T15:17:39.733 |
| fkie_cve-2026-26077 | Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.… | 2026-02-26T15:17:36.653 | 2026-02-26T15:17:36.653 |
| fkie_cve-2026-3187 | A vulnerability was identified in feiyuchuixue sz-boot-parent up to 1.3.2-beta. Affected by this is… | 2026-02-25T15:20:55.277 | 2026-02-26T15:11:34.407 |
| fkie_cve-2025-71243 | The 'Saisies pour formulaire' (Saisies) plugin for SPIP versions 5.4.0 through 5.11.0 contains a cr… | 2026-02-19T16:27:12.303 | 2026-02-26T15:07:48.140 |
| fkie_cve-2019-25400 | IPFire 2.21 Core Update 127 contains multiple reflected cross-site scripting vulnerabilities in the… | 2026-02-18T22:16:23.343 | 2026-02-26T15:07:02.957 |
| fkie_cve-2019-25399 | IPFire 2.21 Core Update 127 contains multiple stored cross-site scripting vulnerabilities in the ex… | 2026-02-18T22:16:23.177 | 2026-02-26T15:06:58.533 |
| fkie_cve-2019-25398 | IPFire 2.21 Core Update 127 contains multiple cross-site scripting vulnerabilities in the ovpnmain.… | 2026-02-18T22:16:23.003 | 2026-02-26T15:06:53.747 |
| fkie_cve-2019-25397 | IPFire 2.21 Core Update 127 contains multiple reflected cross-site scripting vulnerabilities in the… | 2026-02-18T22:16:22.833 | 2026-02-26T15:06:49.083 |
| fkie_cve-2019-25396 | IPFire 2.21 Core Update 127 contains a reflected cross-site scripting vulnerability in the updatexl… | 2026-02-18T22:16:22.620 | 2026-02-26T15:06:06.327 |
| fkie_cve-2024-4040 | A server side template injection vulnerability in CrushFTP in all versions before 10.7.1 and 11.1.0… | 2024-04-22T20:15:07.803 | 2026-02-26T15:04:22.973 |
| fkie_cve-2024-28995 | SolarWinds Serv-U was susceptible to a directory transversal vulnerability that would allow access … | 2024-06-06T09:15:14.167 | 2026-02-26T15:04:20.280 |
| fkie_cve-2024-1709 | ConnectWise ScreenConnect 23.9.7 and prior are affected by an Authentication Bypass Using an Altern… | 2024-02-21T16:15:50.420 | 2026-02-26T15:04:18.213 |
| fkie_cve-2024-1212 | Unauthenticated remote attackers can access the system through the LoadMaster management interface,… | 2024-02-21T18:15:50.417 | 2026-02-26T15:04:16.093 |
| fkie_cve-2023-6549 | Improper Restriction of Operations within the Bounds of a Memory Buffer in NetScaler ADC and NetSca… | 2024-01-17T21:15:11.690 | 2026-02-26T15:04:13.563 |
| fkie_cve-2023-6448 | Unitronics VisiLogic before version 9.9.00, used in Vision and Samba PLCs and HMIs, uses a default … | 2023-12-05T18:15:12.643 | 2026-02-26T15:04:11.377 |
| fkie_cve-2023-4211 | A local non-privileged user can make improper GPU memory processing operations to gain access to a… | 2023-10-01T18:15:09.927 | 2026-02-26T15:04:09.357 |
| fkie_cve-2023-47565 | An OS command injection vulnerability has been found to affect legacy QNAP VioStor NVR models runni… | 2023-12-08T16:15:16.367 | 2026-02-26T15:04:06.667 |
| fkie_cve-2023-36851 | A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on SRX Se… | 2023-09-27T15:18:54.877 | 2026-02-26T15:04:04.180 |
| fkie_cve-2023-36847 | A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on EX Ser… | 2023-08-17T20:15:10.553 | 2026-02-26T15:04:01.340 |
| fkie_cve-2023-36846 | A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on SRX Se… | 2023-08-17T20:15:10.457 | 2026-02-26T15:03:59.110 |
| fkie_cve-2023-33009 | A buffer overflow vulnerability in the notification function in Zyxel ATP series firmware versions … | 2023-05-24T13:15:09.560 | 2026-02-26T15:03:56.120 |
| fkie_cve-2023-2533 | A Cross-Site Request Forgery (CSRF) vulnerability has been identified in PaperCut NG/MF, which, und… | 2023-06-20T15:15:11.560 | 2026-02-26T15:03:53.690 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-2phg-qgmm-r638 |
7.7 (4.0)
|
Sliver has Potential Zip Bomb Denial of Service in GzipEncoder | 2026-02-25T17:36:44Z | 2026-02-25T17:36:44Z |
| ghsa-f229-3862-4942 |
10.0 (3.1)
|
@enclave-vm/core is vulnerable to Sandbox Escape | 2026-02-25T17:26:23Z | 2026-02-25T17:26:23Z |
| ghsa-49gm-hh7w-wfvf |
9.9 (3.1)
|
OliveTin: OS Command Injection via `password` argument type and webhook JSON extraction bypasses sh… | 2026-02-25T16:18:22Z | 2026-02-25T16:18:22Z |
| ghsa-2rw7-x74f-jg35 |
1.2 (4.0)
|
pypdf has a possible infinite loop when loading circular /Prev entries in cross-reference streams | 2026-02-25T16:09:03Z | 2026-02-25T16:09:03Z |
| ghsa-xfvg-8v67-j7wp |
6.8 (4.0)
|
TypiCMS Core has Stored Cross-Site Scripting (XSS) via SVG File Upload | 2026-02-25T16:06:59Z | 2026-02-25T16:06:59Z |
| ghsa-vp6q-7m36-pq3w |
9.3 (3.1)
|
Bugsink is vulnerable to Stored XSS via Pygments fallback in stacktrace rendering | 2026-02-25T16:06:00Z | 2026-02-25T16:06:00Z |
| ghsa-fm8c-6m29-rp6j |
6.1 (3.1)
|
repostat: Reflected Cross-Site Scripting (XSS) via repo prop in RepoCard | 2026-02-25T16:04:41Z | 2026-02-25T16:04:41Z |
| ghsa-8vrh-3pm2-v4v6 |
7.1 (4.0)
|
FileBrowser Quantum: Password Protection Not Enforced on Shared File Links | 2026-02-25T16:00:49Z | 2026-02-25T16:00:49Z |
| ghsa-ggxq-2mg9-8966 |
7.2 (3.1)
|
Moodle has a Remote Code Execution risk via file restore | 2026-02-21T06:30:16Z | 2026-02-25T15:52:47Z |
| ghsa-cg8j-5cr2-568q |
6.5 (3.1)
|
Moodle TeX formula editor is vulnerable to DoS through lack of execution time limits | 2026-02-21T06:30:16Z | 2026-02-25T15:50:58Z |
| ghsa-gfw7-2v73-69wg |
6.5 (3.1)
|
Apache Airflow error reporting may expose full kwargs | 2026-02-21T03:31:39Z | 2026-02-25T15:42:56Z |
| ghsa-vx9q-rhv9-3jvg |
8.2 (4.0)
|
aircompressor Snappy and LZ4 Java-based decompressor implementation can leak information from reuse… | 2025-12-12T22:12:22Z | 2026-02-25T15:32:27Z |
| ghsa-qrr9-2772-633f |
5.5 (3.1)
|
RF4CE Profile protocol dissector crash in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denia… | 2026-02-25T15:31:43Z | 2026-02-25T15:31:43Z |
| ghsa-g4x4-mr34-3pw3 |
4.7 (3.1)
|
NTS-KE protocol dissector crash in Wireshark 4.6.0 to 4.6.3 allows denial of service | 2026-02-25T15:31:43Z | 2026-02-25T15:31:43Z |
| ghsa-8p92-v8gg-gvcv |
6.3 (3.1)
2.1 (4.0)
|
A vulnerability was identified in feiyuchuixue sz-boot-parent up to 1.3.2-beta. Affected by this is… | 2026-02-25T15:31:43Z | 2026-02-25T15:31:43Z |
| ghsa-3g96-v3mg-9xp9 |
4.7 (3.1)
|
USB HID protocol dissector memory exhaustion in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows… | 2026-02-25T15:31:43Z | 2026-02-25T15:31:43Z |
| ghsa-whqp-34xh-xmxr |
4.3 (3.1)
|
In JetBrains TeamCity before 2025.11.3 missing authorization allowed project developers to add para… | 2026-02-25T15:31:40Z | 2026-02-25T15:31:40Z |
| ghsa-px6f-q5hr-gqcp |
6.3 (3.1)
2.1 (4.0)
|
A vulnerability was determined in feiyuchuixue sz-boot-parent up to 1.3.2-beta. Affected by this vu… | 2026-02-25T15:31:40Z | 2026-02-25T15:31:40Z |
| ghsa-c7jf-2rmf-hc7w |
4.3 (3.1)
|
In JetBrains TeamCity before 2025.11.3 open redirect was possible in the React project creation flow | 2026-02-25T15:31:40Z | 2026-02-25T15:31:40Z |
| ghsa-4x44-gf2f-7mh8 |
2.3 (3.1)
|
In JetBrains TeamCity before 2025.11.3 disabling versioned settings left a credentials config on disk | 2026-02-25T15:31:40Z | 2026-02-25T15:31:40Z |
| ghsa-26wv-wm3r-6rvc |
5.3 (3.1)
5.5 (4.0)
|
A vulnerability was found in feiyuchuixue sz-boot-parent up to 1.3.2-beta. Affected is an unknown f… | 2026-02-25T15:31:40Z | 2026-02-25T15:31:40Z |
| ghsa-w36g-f98m-wm99 |
2.6 (3.1)
|
A time-of-create-to-time-of-use (TOCTOU) vulnerability lets recently deleted-then-recreated data so… | 2026-02-25T15:31:39Z | 2026-02-25T15:31:39Z |
| ghsa-jqcj-pmgf-5g3q |
9.8 (3.1)
|
Missing Authentication for Critical Function vulnerability in ePati Cyber Security Technologies I… | 2026-02-25T15:31:39Z | 2026-02-25T15:31:39Z |
| ghsa-8p8j-jq9g-4f8j |
8.8 (3.1)
|
In JetBrains YouTrack before 2025.3.121962 apps were able to send requests to the app permissions e… | 2026-02-25T15:31:39Z | 2026-02-25T15:31:39Z |
| ghsa-xx53-6qqj-gr7w |
9.8 (3.1)
|
Memory safety bugs present in Firefox 147 and Thunderbird 147. Some of these bugs showed evidence o… | 2026-02-24T15:30:33Z | 2026-02-25T15:31:37Z |
| ghsa-xchm-7954-5wvg |
9.8 (3.1)
|
Use-after-free in the DOM: Window and Location component. This vulnerability affects Firefox < 148,… | 2026-02-24T15:30:32Z | 2026-02-25T15:31:37Z |
| ghsa-vxjv-c6cq-74m6 |
9.8 (3.1)
|
Mitigation bypass in the Networking: Cache component. This vulnerability affects Firefox < 148 and … | 2026-02-24T15:30:32Z | 2026-02-25T15:31:37Z |
| ghsa-vmmw-c3hw-gvm3 |
9.8 (3.1)
|
Out of bounds read and write in Tint in Google Chrome on Mac prior to 145.0.7632.116 allowed a remo… | 2026-02-24T00:31:34Z | 2026-02-25T15:31:37Z |
| ghsa-qvmx-rqmx-pvfg |
9.1 (3.1)
|
Out of bounds read in Media in Google Chrome prior to 145.0.7632.116 allowed a remote attacker to p… | 2026-02-24T00:31:34Z | 2026-02-25T15:31:37Z |
| ghsa-p9m7-fwrr-649p |
9.8 (3.1)
|
TOTOLINK X5000R v9.1.0cu_2415_B20250515 contains an argument injection vulnerability in the setDiag… | 2026-02-23T21:31:27Z | 2026-02-25T15:31:37Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2012-28 |
|
The ELF file parser in AhnLab V3 Internet Security 2011.01.18.00, Bitdefender 7.2, Quick … | bitdefender | 2012-03-21T10:11:00Z | 2024-11-21T14:22:41.328571Z |
| pysec-2012-27 |
|
The Gzip file parser in AVG Anti-Virus 10.0.0.1190, Bitdefender 7.2, Command Antivirus 5.… | bitdefender | 2012-03-21T10:11:00Z | 2024-11-21T14:22:41.276629Z |
| pysec-2012-26 |
|
The TAR file parser in AhnLab V3 Internet Security 2011.01.18.00, Avira AntiVir 7.11.1.16… | bitdefender | 2012-03-21T10:11:00Z | 2024-11-21T14:22:41.220887Z |
| pysec-2012-25 |
|
The TAR file parser in Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, avast! Antiv… | bitdefender | 2012-03-21T10:11:00Z | 2024-11-21T14:22:41.165409Z |
| pysec-2012-24 |
|
The RAR file parser in ClamAV 0.96.4, Rising Antivirus 22.83.00.03, Quick Heal (aka Cat Q… | bitdefender | 2012-03-21T10:11:00Z | 2024-11-21T14:22:41.111226Z |
| pysec-2012-23 |
|
The ELF file parser in Bitdefender 7.2, Command Antivirus 5.2.11.5, Comodo Antivirus 7424… | bitdefender | 2012-03-21T10:11:00Z | 2024-11-21T14:22:41.056758Z |
| pysec-2012-22 |
|
The ELF file parser in Bitdefender 7.2, Comodo Antivirus 7424, eSafe 7.0.17.0, F-Secure A… | bitdefender | 2012-03-21T10:11:00Z | 2024-11-21T14:22:41.00719Z |
| pysec-2022-43070 |
7.5 (3.1)
|
Apache IoTDB grafana-connector version 0.13.0 contains an interface without authorization… | apache-iotdb | 2022-09-05T10:15:00Z | 2024-11-21T14:22:40.90699Z |
| pysec-2023-268 |
7.5 (3.1)
|
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Dolphi… | apache-dolphinscheduler | 2023-11-24T08:15:00+00:00 | 2024-11-21T14:22:40.797843+00:00 |
| pysec-2023-267 |
6.5 (3.1)
|
Apache Airflow, versions before 2.8.0, is affected by a vulnerability that allows an auth… | apache-airflow | 2023-12-21T10:15:00+00:00 | 2024-11-21T14:22:40.744438+00:00 |
| pysec-2023-266 |
6.5 (3.1)
|
Apache Airflow, version 2.7.0 through 2.7.3, has a vulnerability that allows an attacker … | apache-airflow | 2023-12-21T10:15:00+00:00 | 2024-11-21T14:22:40.683792+00:00 |
| pysec-2023-265 |
4.3 (3.1)
|
Apache Airflow, in versions prior to 2.8.0, contains a security vulnerability that allows… | apache-airflow | 2023-12-21T10:15:00+00:00 | 2024-11-21T14:22:40.621314+00:00 |
| pysec-2023-264 |
5.4 (3.1)
|
Apache Airflow, versions 2.6.0 through 2.7.3 has a stored XSS vulnerability that allows a… | apache-airflow | 2023-12-21T10:15:00+00:00 | 2024-11-21T14:22:40.559945+00:00 |
| pysec-2023-263 |
8.8 (3.1)
|
An improper array index validation vulnerability exists in the stl_fix_normal_directions … | admesh | 2023-04-03T16:15:00Z | 2024-11-21T14:22:40.308634Z |
| pysec-2022-43066 |
9.8 (3.1)
|
The AAmiles package in PyPI v0.1.0 was discovered to contain a code execution backdoor vi… | aamiles | 2022-06-24T21:15:00Z | 2024-11-21T14:22:40.256677Z |
| pysec-2024-124 |
4.8 (3.1)
|
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting… | django-cms | 2024-11-18T12:15:00Z | 2024-11-20T16:23:43.554559Z |
| pysec-2024-123 |
6.1 (3.1)
|
An open redirection vulnerability exists in pyload/pyload version 0.5.0. The vulnerabilit… | pyload-ng | 2024-11-15T11:15:00+00:00 | 2024-11-19T22:22:34.280606+00:00 |
| pysec-2024-122 |
4.4 (3.1)
|
A path traversal vulnerability exists in the api open_personality_folder endpoint of pari… | lollms | 2024-10-11T16:15:00+00:00 | 2024-11-15T20:23:01.816492+00:00 |
| pysec-2024-121 |
6.5 (3.1)
|
OpenC3 COSMOS provides the functionality needed to send commands to and receive data from… | openc3 | 2024-10-02T20:15:00+00:00 | 2024-11-13T20:22:56.434107+00:00 |
| pysec-2024-115 |
9.8 (3.1)
|
A vulnerability in the GraphCypherQAChain class of langchain-ai/langchain-community versi… | langchain | 2024-11-05T16:04:14Z | 2024-11-12T19:19:57.535206Z |
| pysec-2024-120 |
7.8 (3.1)
|
An issue in assimp v.5.4.3 allows a local attacker to execute arbitrary code via the Call… | pyassimp | 2024-10-24T21:15:00+00:00 | 2024-11-05T20:22:53.185968+00:00 |
| pysec-2024-119 |
7.5 (3.1)
|
A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240628 allows for a Denial of Ser… | chuanhuchatgpt | 2024-10-29T13:15:00+00:00 | 2024-11-04T22:22:08.835024+00:00 |
| pysec-2024-114 |
9.8 (3.1)
|
A vulnerability in the GraphCypherQAChain class of langchain-ai/langchainjs versions 0.2.… | langchain | 2024-10-29T13:15:00Z | 2024-11-04T19:21:44.923698Z |
| pysec-2024-118 |
4.7 (3.1)
|
A Denial-of-Service (DoS) vulnerability exists in the `SitemapLoader` class of the `langc… | langchain | 2024-06-06T19:15:00+00:00 | 2024-11-03T20:22:34.854295+00:00 |
| pysec-2024-117 |
9.8 (3.1)
|
man-group/dtale version 3.10.0 is vulnerable to an authentication bypass and remote code … | dtale | 2024-06-06T19:16:00+00:00 | 2024-11-03T20:22:34.425699+00:00 |
| pysec-2024-116 |
9.0 (3.1)
|
A vulnerability in the discussion image upload function of the Lollms application, versio… | lollms | 2024-10-29T13:15:00+00:00 | 2024-11-01T21:22:09.060172+00:00 |
| pysec-2024-113 |
4.3 (3.1)
|
In the latest version (20240628) of gaizhenbiao/chuanhuchatgpt, an issue exists in the /f… | chuanhuchatgpt | 2024-10-29T13:15:00+00:00 | 2024-10-31T19:20:49.353218+00:00 |
| pysec-2024-112 |
7.5 (3.1)
|
An arbitrary file read vulnerability exists in gaizhenbiao/chuanhuchatgpt version 2024062… | chuanhuchatgpt | 2024-10-29T13:15:00+00:00 | 2024-10-31T19:20:49.309758+00:00 |
| pysec-2024-110 |
4.7 (3.1)
|
A sensitive data leakage vulnerability was identified in scikit-learn's TfidfVectorizer, … | scikit-learn | 2024-06-06T19:16:00+00:00 | 2024-10-24T21:22:05.950602+00:00 |
| pysec-2024-107 |
5.0 (3.1)
|
Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modif… | exiv2 | 2024-02-12T23:15:00+00:00 | 2024-10-23T00:00:00+00:00 |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-4134 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-25T05:02:08.607699Z |
| gsd-2024-4135 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-25T05:02:08.607498Z |
| gsd-2024-4123 | A vulnerability, which was classified as critical, has been found in Tenda W15E 15.11.0.1… | 2024-04-25T05:02:08.605274Z |
| gsd-2024-4159 | Brocade SANnav before Brocade SANnav v2.3.1 lacks protection mechanisms on port 2377/TCP… | 2024-04-25T05:02:08.603616Z |
| gsd-2024-4132 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-25T05:02:08.603383Z |
| gsd-2024-4155 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-25T05:02:08.601522Z |
| gsd-2024-4141 | Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by an invalid character cod… | 2024-04-25T05:02:08.599260Z |
| gsd-2024-4140 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-25T05:02:08.598688Z |
| gsd-2024-4125 | A vulnerability has been found in Tenda W15E 15.11.0.14 and classified as critical. This … | 2024-04-25T05:02:08.598016Z |
| gsd-2024-4161 | In Brocade SANnav, before Brocade SANnav v2.3.0, syslog traffic received clear text. Thi… | 2024-04-25T05:02:08.597600Z |
| gsd-2024-4124 | A vulnerability, which was classified as critical, was found in Tenda W15E 15.11.0.14. Th… | 2024-04-25T05:02:08.595964Z |
| gsd-2024-4145 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-25T05:02:08.595097Z |
| gsd-2024-4136 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-25T05:02:08.593613Z |
| gsd-2024-4157 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-25T05:02:08.593416Z |
| gsd-2024-4129 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-25T05:02:08.593215Z |
| gsd-2024-4127 | A vulnerability was found in Tenda W15E 15.11.0.14. It has been classified as critical. A… | 2024-04-25T05:02:08.589629Z |
| gsd-2024-4149 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-25T05:02:08.587714Z |
| gsd-2024-4139 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-25T05:02:08.586673Z |
| gsd-2024-4154 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-25T05:02:08.584972Z |
| gsd-2024-4115 | A vulnerability, which was classified as critical, was found in Tenda W15E 15.11.0.14. Af… | 2024-04-25T05:02:08.583677Z |
| gsd-2024-4162 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-25T05:02:08.583385Z |
| gsd-2024-4113 | A vulnerability classified as critical was found in Tenda TX9 22.03.02.10. This vulnerabi… | 2024-04-25T05:02:08.582728Z |
| gsd-2024-4160 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-25T05:02:08.580915Z |
| gsd-2024-4143 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-25T05:02:08.577665Z |
| gsd-2024-4137 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-25T05:02:08.577471Z |
| gsd-2024-4163 | The Skylab IGX IIoT Gateway allowed users to connect to it via a limited shell terminal (… | 2024-04-25T05:02:08.576986Z |
| gsd-2024-4151 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-25T05:02:08.570377Z |
| gsd-2024-4121 | A vulnerability classified as critical has been found in Tenda W15E 15.11.0.14. Affected … | 2024-04-25T05:02:08.568351Z |
| gsd-2024-4118 | A vulnerability was found in Tenda W15E 15.11.0.14. It has been classified as critical. T… | 2024-04-25T05:02:08.567594Z |
| gsd-2024-4126 | A vulnerability was found in Tenda W15E 15.11.0.14 and classified as critical. This issue… | 2024-04-25T05:02:08.564980Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2026-534 | Malicious code in internallib_v828 (npm) | 2026-01-27T08:12:56Z | 2026-02-02T05:56:28Z |
| mal-2026-533 | Malicious code in hiagentxhjrceme (npm) | 2026-01-27T08:08:59Z | 2026-02-02T05:56:28Z |
| mal-2026-532 | Malicious code in hiagentxhjrce (npm) | 2026-01-27T08:08:59Z | 2026-02-02T05:56:28Z |
| mal-2026-524 | Malicious code in mapkit-example-vue (npm) | 2026-01-27T02:25:01Z | 2026-02-02T05:56:28Z |
| mal-2026-523 | Malicious code in mapkit-example-svelte (npm) | 2026-01-27T02:25:01Z | 2026-02-02T05:56:28Z |
| mal-2026-522 | Malicious code in magento-coding-standard-eslint-plugin (npm) | 2026-01-27T02:25:01Z | 2026-02-02T05:56:28Z |
| mal-2026-609 | Malicious code in euskalplantxa (npm) | 2026-01-30T15:31:12Z | 2026-02-02T05:56:27Z |
| mal-2026-608 | Malicious code in ezviz-shop-mall (npm) | 2026-01-30T13:08:07Z | 2026-02-02T05:56:27Z |
| mal-2026-605 | Malicious code in dhgshop (npm) | 2026-01-29T15:50:42Z | 2026-02-02T05:56:27Z |
| mal-2026-589 | Malicious code in dotenv-embed (npm) | 2026-01-28T14:56:54Z | 2026-02-02T05:56:27Z |
| mal-2026-569 | Malicious code in ern-picking2-api (npm) | 2026-01-28T07:48:24Z | 2026-02-02T05:56:27Z |
| mal-2026-568 | Malicious code in equimper (npm) | 2026-01-28T07:43:53Z | 2026-02-02T05:56:27Z |
| mal-2026-567 | Malicious code in debug-glitz (npm) | 2026-01-28T07:37:08Z | 2026-02-02T05:56:27Z |
| mal-2026-566 | Malicious code in debug-fmt (npm) | 2026-01-28T07:37:08Z | 2026-02-02T05:56:27Z |
| mal-2026-556 | Malicious code in digital-music-dynmsg-ribbon (npm) | 2026-01-28T06:52:12Z | 2026-02-02T05:56:27Z |
| mal-2026-551 | Malicious code in express-lists-routes (npm) | 2026-01-28T03:26:59Z | 2026-02-02T05:56:27Z |
| mal-2026-531 | Malicious code in hackerxhj (npm) | 2026-01-27T08:09:00Z | 2026-02-02T05:56:27Z |
| mal-2026-530 | Malicious code in grepleaks (npm) | 2026-01-27T08:09:32Z | 2026-02-02T05:56:27Z |
| mal-2026-529 | Malicious code in fileupload-core (npm) | 2026-01-27T07:56:49Z | 2026-02-02T05:56:27Z |
| mal-2026-521 | Malicious code in hammer-jquery (npm) | 2026-01-27T02:25:01Z | 2026-02-02T05:56:27Z |
| mal-2026-520 | Malicious code in ftm-noderpc (npm) | 2026-01-27T02:44:52Z | 2026-02-02T05:56:27Z |
| mal-2026-588 | Malicious code in chai-sub (npm) | 2026-01-28T14:53:28Z | 2026-02-02T05:56:26Z |
| mal-2026-587 | Malicious code in chai-px (npm) | 2026-01-28T14:48:04Z | 2026-02-02T05:56:26Z |
| mal-2026-586 | Malicious code in chai-chains-async (npm) | 2026-01-28T14:46:57Z | 2026-02-02T05:56:26Z |
| mal-2026-585 | Malicious code in chai-async-tests (npm) | 2026-01-28T14:56:54Z | 2026-02-02T05:56:26Z |
| mal-2026-584 | Malicious code in chai-as-extended (npm) | 2026-01-28T15:06:22Z | 2026-02-02T05:56:26Z |
| mal-2026-565 | Malicious code in converse-rn-lib (npm) | 2026-01-28T07:50:39Z | 2026-02-02T05:56:26Z |
| mal-2026-564 | Malicious code in chai-as-hashed (npm) | 2026-01-28T07:53:44Z | 2026-02-02T05:56:26Z |
| mal-2026-555 | Malicious code in acuitymobileapp (npm) | 2026-01-28T07:13:15Z | 2026-02-02T05:56:26Z |
| mal-2026-550 | Malicious code in cdnhost (npm) | 2026-01-28T03:21:37Z | 2026-02-02T05:56:26Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-python-2023-6597 | 2024-12-13T12:41:26.412Z | 2025-11-06T13:25:46.476Z | |
| bit-python-2023-40217 | 2024-03-06T11:03:14.481Z | 2025-11-06T13:25:46.476Z | |
| bit-python-2023-27043 | 2024-10-22T12:06:11.918Z | 2025-11-06T13:25:46.476Z | |
| bit-python-2023-24329 | 2024-03-06T11:04:03.580Z | 2025-11-06T13:25:46.476Z | |
| bit-python-2022-42919 | 2024-03-06T11:05:06.167Z | 2025-11-06T13:25:46.476Z | |
| bit-python-2022-0391 | 2024-03-06T11:05:40.083Z | 2025-11-06T13:25:46.476Z | |
| bit-python-2021-4189 | 2024-03-06T11:05:50.693Z | 2025-11-06T13:25:46.476Z | |
| bit-python-2021-3737 | 2024-03-06T11:06:04.065Z | 2025-11-06T13:25:46.476Z | |
| bit-python-2021-3733 | 2024-03-06T11:06:14.679Z | 2025-11-06T13:25:46.476Z | |
| bit-python-2021-3426 | 2024-03-06T11:06:24.568Z | 2025-11-06T13:25:46.476Z | |
| bit-python-2021-29921 | 2024-03-06T11:06:43.578Z | 2025-11-06T13:25:46.476Z | |
| bit-python-2021-28861 | 2024-03-06T11:06:51.991Z | 2025-11-06T13:25:46.476Z | |
| bit-python-2020-10735 | 2024-03-06T11:08:16.884Z | 2025-11-06T13:25:46.476Z | |
| bit-postgresql-2024-10979 | PostgreSQL PL/Perl environment variable changes execute arbitrary code | 2024-11-16T07:16:38.797Z | 2025-11-06T13:25:46.476Z |
| bit-postgresql-2024-10978 | PostgreSQL SET ROLE, SET SESSION AUTHORIZATION reset to wrong user ID | 2024-11-16T07:16:45.984Z | 2025-11-06T13:25:46.476Z |
| bit-postgresql-2024-10977 | PostgreSQL libpq retains an error message from man-in-the-middle | 2024-11-16T07:16:52.278Z | 2025-11-06T13:25:46.476Z |
| bit-postgresql-2024-10976 | PostgreSQL row security below e.g. subqueries disregards user ID changes | 2024-11-16T07:16:59.886Z | 2025-11-06T13:25:46.476Z |
| bit-postgresql-2023-5870 | Postgresql: role pg_signal_backend can signal certain superuser processes. | 2024-03-06T11:02:29.084Z | 2025-11-06T13:25:46.476Z |
| bit-postgresql-2023-5869 | Postgresql: buffer overrun from integer overflow in array modification | 2024-03-06T11:02:41.294Z | 2025-11-06T13:25:46.476Z |
| bit-postgresql-2023-5868 | Postgresql: memory disclosure in aggregate function calls | 2024-03-06T11:02:52.082Z | 2025-11-06T13:25:46.476Z |
| bit-pip-2025-8869 | Fallback tar extraction in pip doesn't check symbolic links point to extraction directory | 2025-09-26T08:48:13.610Z | 2025-11-06T13:25:46.476Z |
| bit-pip-2023-5752 | Mercurial configuration injectable in repo revision when installing via pip | 2024-03-06T11:01:43.973Z | 2025-11-06T13:25:46.476Z |
| bit-phpmyadmin-2025-24530 | 2025-04-24T07:21:48.097Z | 2025-11-06T13:25:46.476Z | |
| bit-phpmyadmin-2025-24529 | 2025-04-24T07:21:41.489Z | 2025-11-06T13:25:46.476Z | |
| bit-phpmyadmin-2023-25727 | 2024-03-06T11:01:27.502Z | 2025-11-06T13:25:46.476Z | |
| bit-php-2025-6491 | NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix | 2025-07-16T08:19:30.475Z | 2025-11-06T13:25:46.476Z |
| bit-php-2025-1861 | Stream HTTP wrapper truncates redirect location to 1024 bytes | 2025-04-14T11:39:29.979Z | 2025-11-06T13:25:46.476Z |
| bit-php-2025-1736 | Stream HTTP wrapper header check might omit basic auth header | 2025-04-14T11:39:27.066Z | 2025-11-06T13:25:46.476Z |
| bit-php-2025-1735 | pgsql extension does not check for errors during escaping | 2025-07-16T08:19:20.063Z | 2025-11-06T13:25:46.476Z |
| bit-php-2025-1734 | Streams HTTP wrapper does not fail for headers with invalid name and no colon | 2025-04-14T11:39:23.775Z | 2025-11-06T13:25:46.476Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2023-003770 | DoS Vulnerability in Hitachi Ops Center Common Services | 2023-10-04T15:23+09:00 | 2024-05-22T15:31+09:00 |
| jvndb-2023-003769 | Information Exposure Vulnerability in Hitachi Ops Center Administrator | 2023-10-04T15:23+09:00 | 2024-05-22T15:20+09:00 |
| jvndb-2023-000095 | Shihonkanri Plus vulnerable to relative path traversal | 2023-09-27T13:49+09:00 | 2024-05-21T17:16+09:00 |
| jvndb-2023-000097 | Citadel WebCit vulnerable to cross-site scripting on Instant Messaging facility | 2023-10-04T14:07+09:00 | 2024-05-21T17:08+09:00 |
| jvndb-2024-000046 | Android App "TP-Link Tether" and "TP-Link Tapo" vulnerable to improper server certificate verification | 2024-05-21T13:33+09:00 | 2024-05-21T13:33+09:00 |
| jvndb-2023-004294 | Advanced Micro Devices Windows kernel drivers vulnerable to insufficient access control on its IOCTL | 2023-10-27T16:10+09:00 | 2024-05-20T17:49+09:00 |
| jvndb-2023-000098 | e-Gov Client Application fails to restrict custom URL schemes properly | 2023-10-06T14:57+09:00 | 2024-05-17T17:55+09:00 |
| jvndb-2024-003188 | Panasonic KW Watcher vulnerable to memory buffer error | 2024-05-17T15:46+09:00 | 2024-05-17T15:46+09:00 |
| jvndb-2023-021762 | Ruijie BCR810W/BCR860 vulnerable to OS command injection | 2024-05-17T13:54+09:00 | 2024-05-17T13:54+09:00 |
| jvndb-2024-000049 | WordPress Plugin "Download Plugins and Themes from Dashboard" vulnerable to path traversal | 2024-05-17T13:33+09:00 | 2024-05-17T13:33+09:00 |
| jvndb-2024-003187 | Multiple vulnerabilities in Field Logic DataCube | 2024-05-17T12:05+09:00 | 2024-05-17T12:05+09:00 |
| jvndb-2023-003913 | Multiple vulnerabilities in JTEKT ELECTRONICS OnSinView2 | 2023-10-18T14:13+09:00 | 2024-05-16T17:28+09:00 |
| jvndb-2023-003788 | Out-of-bounds read vulnerability in Keyence KV STUDIO and KV REPLAY VIEWER | 2023-10-11T15:23+09:00 | 2024-05-16T17:09+09:00 |
| jvndb-2023-000093 | Pyramid vulnerable to directory traversal | 2023-09-11T13:53+09:00 | 2024-05-16T16:52+09:00 |
| jvndb-2023-000102 | Multiple vulnerabilities in JustSystems products | 2023-10-19T15:16+09:00 | 2024-05-16T16:44+09:00 |
| jvndb-2023-000087 | SYNCK GRAPHICA Mailform Pro CGI vulnerable to Regular expression Denial-of-Service (ReDoS) | 2023-08-24T14:12+09:00 | 2024-05-15T17:12+09:00 |
| jvndb-2023-000104 | Improper restriction of XML external entity references (XXE) in Proself | 2023-10-18T18:00+09:00 | 2024-05-15T17:08+09:00 |
| jvndb-2014-000006 | EC-CUBE vulnerable to authorization bypass | 2014-01-22T15:28+09:00 | 2024-05-15T14:59+09:00 |
| jvndb-2023-000091 | Multiple vulnerabilities in F-RevoCRM | 2023-09-05T15:51+09:00 | 2024-05-14T18:06+09:00 |
| jvndb-2023-000089 | Multiple vulnerabilities in i-PRO VI Web Client | 2023-08-31T14:13+09:00 | 2024-05-14T18:05+09:00 |
| jvndb-2023-000088 | Multiple vulnerabilities in SHIRASAGI | 2023-09-04T13:41+09:00 | 2024-05-14T17:58+09:00 |
| jvndb-2014-000123 | GIGAPOD vulnerable to denial-of-service (DoS) | 2014-10-16T13:51+09:00 | 2024-05-13T18:10+09:00 |
| jvndb-2024-002342 | Central Dogma vulnerable to cross-site scripting | 2024-05-13T17:27+09:00 | 2024-05-13T17:27+09:00 |
| jvndb-2024-000047 | Multiple vulnerabilities in Cybozu Garoon | 2024-05-13T15:19+09:00 | 2024-05-13T15:19+09:00 |
| jvndb-2023-003956 | Improper restriction of XML external entity reference (XXE) vulnerability in OMRON CX-Designer | 2023-10-24T16:11+09:00 | 2024-05-10T17:47+09:00 |
| jvndb-2023-000105 | Movable Type vulnerable to cross-site scripting | 2023-10-25T15:18+09:00 | 2024-05-10T17:47+09:00 |
| jvndb-2024-000045 | "OfferBox" App uses a hard-coded secret key | 2024-05-10T15:11+09:00 | 2024-05-10T15:11+09:00 |
| jvndb-2024-003181 | Hidden Functionality vulnerability in DT900 | 2024-05-10T13:59+09:00 | 2024-05-10T13:59+09:00 |
| jvndb-2024-000048 | Phormer vulnerable to cross-site scripting | 2024-05-10T13:48+09:00 | 2024-05-10T13:48+09:00 |
| jvndb-2023-003721 | Trend Micro Endpoint security products for enterprises vulnerable to arbitrary code execution | 2023-09-20T13:58+09:00 | 2024-05-09T18:22+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2026-04445 | 北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞(CNVD-C-2025-976459) | 2025-12-03 | 2026-01-21 |
| cnvd-2026-04444 | 北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞(CNVD-C-2025-976458) | 2025-12-03 | 2026-01-21 |
| cnvd-2026-04443 | 北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞(CNVD-C-2025-976457) | 2025-12-03 | 2026-01-21 |
| cnvd-2026-04442 | 北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞(CNVD-C-2025-976455) | 2025-12-03 | 2026-01-21 |
| cnvd-2026-05137 | Kentico Xperience存在未明漏洞 | 2025-03-28 | 2026-01-20 |
| cnvd-2026-05136 | Kentico Xperience跨站脚本漏洞 | 2025-03-28 | 2026-01-20 |
| cnvd-2026-05135 | Kentico Xperience身份验证绕过漏洞 | 2025-03-28 | 2026-01-20 |
| cnvd-2026-05134 | Kentico Xperience身份验证绕过漏洞(CNVD-2026-05134) | 2025-03-28 | 2026-01-20 |
| cnvd-2026-05133 | Kentico Xperience跨站脚本漏洞(CNVD-2026-05133) | 2025-04-10 | 2026-01-20 |
| cnvd-2026-05132 | Kentico Xperience跨站脚本漏洞(CNVD-2026-05132) | 2025-04-16 | 2026-01-20 |
| cnvd-2026-05131 | Kentico Xperience拒绝服务漏洞 | 2025-04-16 | 2026-01-20 |
| cnvd-2026-05130 | Kentico Xperience信息泄露漏洞 | 2025-12-25 | 2026-01-20 |
| cnvd-2026-05129 | Kentico Xperience文件上传漏洞 | 2025-12-25 | 2026-01-20 |
| cnvd-2026-05128 | Kentico Xperience HTML注入漏洞 | 2025-12-25 | 2026-01-20 |
| cnvd-2026-05127 | Kentico Xperience跨站脚本漏洞(CNVD-2026-05127) | 2025-12-25 | 2026-01-20 |
| cnvd-2026-05126 | Kentico Xperience富文本编辑器组件跨站脚本漏洞 | 2025-12-25 | 2026-01-20 |
| cnvd-2026-05125 | Kentico Xperience电子邮件营销模板跨站脚本漏洞 | 2025-12-25 | 2026-01-20 |
| cnvd-2026-05124 | Kentico Xperience跨站脚本漏洞(CNVD-2026-05124) | 2025-12-25 | 2026-01-20 |
| cnvd-2026-05123 | Kentico Xperience跨站脚本漏洞(CNVD-2026-05123) | 2025-12-25 | 2026-01-20 |
| cnvd-2026-05122 | Kentico Xperience跨站脚本漏洞(CNVD-2026-05122) | 2025-12-25 | 2026-01-20 |
| cnvd-2026-05121 | Kentico Xperience跨站脚本漏洞(CNVD-2026-05121) | 2025-12-25 | 2026-01-20 |
| cnvd-2026-05120 | Kentico Xperience跨站脚本漏洞(CNVD-2026-05120) | 2025-12-25 | 2026-01-20 |
| cnvd-2026-05119 | Kentico Xperience跨站脚本漏洞(CNVD-2026-05119) | 2025-12-25 | 2026-01-20 |
| cnvd-2026-05118 | Kentico Xperience跨站脚本漏洞(CNVD-2026-05118) | 2026-01-19 | 2026-01-20 |
| cnvd-2026-06433 | D-Link DIR-806A命令注入漏洞 | 2026-01-19 | 2026-01-19 |
| cnvd-2026-05363 | ChurchCRM EventEditor.php页面SQL注入漏洞 | 2025-05-13 | 2026-01-19 |
| cnvd-2026-05362 | ChurchCRM 时间型盲SQL注入漏洞 | 2025-12-03 | 2026-01-19 |
| cnvd-2026-05361 | ChurchCRM legacy端点SQL注入漏洞 | 2025-12-19 | 2026-01-19 |
| cnvd-2026-05360 | ChurchCRM跨站脚本漏洞(CNVD-2026-0536090) | 2025-12-25 | 2026-01-19 |
| cnvd-2026-05359 | ChurchCRM信息泄露漏洞 | 2025-12-25 | 2026-01-19 |
| ID | Description | Published | Updated |
|---|---|---|---|
| bdu:2025-11903 | Уязвимость расширения Big Requests реализации протокола Wayland для X.Org XWayland и реал… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11901 | Уязвимость функции rtnl_vfinfo_size() компонента net/core/rtnetlink.c ядра операционной с… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11900 | Уязвимость компонента irq-qcom-mpm.c ядра операционной системы Linux, позволяющая нарушит… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11896 | Уязвимость компонента f2fs ядра операционной системы Linux, позволяющая нарушителю вызват… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11895 | Уязвимость компонента clk ядра операционной системы Linux, позволяющая нарушителю вызвать… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11893 | Уязвимость компонента hfi_parser ядра операционной системы Linux, позволяющая нарушителю … | 28.09.2025 | 16.02.2026 |
| bdu:2025-11892 | Уязвимость ядра операционной системы Linux, связанная с чтением за допустимыми границами … | 28.09.2025 | 16.02.2026 |
| bdu:2025-11888 | Уязвимость компонента hfi_parser ядра операционной системы Linux, позволяющая нарушителю … | 28.09.2025 | 16.02.2026 |
| bdu:2025-11886 | Уязвимость компонента drivers/ntb/hw/mscc/ntb_hw_switchtec.c ядра операционной системы Li… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11873 | Уязвимость компонента ksmbd ядра операционной системы Linux, позволяющая нарушителю получ… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11871 | Уязвимость компонента ocfs2 ядра операционной системы Linux, позволяющая нарушителю вызва… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11870 | Уязвимость компонента drivers/net/ppp/ppp_synctty.c ядра операционной системы Linux, позв… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11868 | Уязвимость компонента isofs ядра операционной системы Linux, позволяющая нарушителю вызва… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11867 | Уязвимость компонента st.c ядра операционной системы Linux, позволяющая нарушителю вызват… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11866 | Уязвимость компонента trace.c ядра операционной системы Linux, позволяющая нарушителю ока… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11865 | Уязвимость компонента vfs.c ядра операционной системы Linux, позволяющая нарушителю оказа… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11862 | Уязвимость компонента net/can/bcm.c ядра операционной системы Linux, позволяющая нарушите… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11860 | Уязвимость функции ea_get() компонента fs/jfs/xattr.c ядра операционной системы Linux, по… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11858 | Уязвимость расширения X Rendering реализации сервера X Window System X.Org Server и реали… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11857 | Уязвимость компонента sch_ets.c ядра операционной системы Linux, позволяющая нарушителю о… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11844 | Уязвимость компонента nilfs2 ядра операционной системы Linux, позволяющая нарушителю вызв… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11838 | Уязвимость компонента dm-bufio.c ядра операционной системы Linux, позволяющая нарушителю … | 28.09.2025 | 16.02.2026 |
| bdu:2025-11836 | Уязвимость компонента qcom/lpass.h ядра операционной системы Linux, позволяющая нарушител… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11835 | Уязвимость функции pktgen_thread_write() компонента net/core/pktgen.c ядра операционной с… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11834 | Уязвимость модулей crypto, lzo ядра операционной системы Linux, позволяющая нарушителю на… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11833 | Уязвимость функции current_password_store() драйвера dell-wmi-sysman ядра операционной си… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11832 | Уязвимость компонента drm/amd/display ядра операционной системы Linux, позволяющая наруши… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11830 | Уязвимость компонента vxlan_vnifilter.c ядра операционной системы Linux, позволяющая нару… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11829 | Уязвимость компонента nouveau_fence.c ядра операционной системы Linux, позволяющая наруши… | 28.09.2025 | 16.02.2026 |
| bdu:2025-11828 | Уязвимость компонента sch_htb.c ядра операционной системы Linux, позволяющая нарушителю в… | 28.09.2025 | 16.02.2026 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2025-avi-0826 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-09-26T00:00:00.000000 | 2025-09-26T00:00:00.000000 |
| certfr-2025-avi-0825 | Multiples vulnérabilités dans le noyau Linux de Debian | 2025-09-26T00:00:00.000000 | 2025-09-26T00:00:00.000000 |
| certfr-2025-avi-0824 | Multiples vulnérabilités dans les produits FoxIT | 2025-09-26T00:00:00.000000 | 2025-09-26T00:00:00.000000 |
| certfr-2025-avi-0823 | Vulnérabilité dans Liferay | 2025-09-26T00:00:00.000000 | 2025-09-26T00:00:00.000000 |
| certfr-2025-avi-0822 | Multiples vulnérabilités dans Tenable Security Center | 2025-09-26T00:00:00.000000 | 2025-09-26T00:00:00.000000 |
| certfr-2025-avi-0821 | Multiples vulnérabilités dans Microsoft Edge | 2025-09-26T00:00:00.000000 | 2025-09-26T00:00:00.000000 |
| certfr-2025-avi-0820 | Multiples vulnérabilités dans GitLab | 2025-09-26T00:00:00.000000 | 2025-09-26T00:00:00.000000 |
| certfr-2025-avi-0819 | Multiples vulnérabilités dans les produits Cisco | 2025-09-25T00:00:00.000000 | 2025-09-25T00:00:00.000000 |
| certfr-2025-avi-0818 | Multiples vulnérabilités dans Cisco IOS et IOS XE | 2025-09-25T00:00:00.000000 | 2025-09-25T00:00:00.000000 |
| certfr-2025-avi-0817 | Vulnérabilité dans Microsoft OmniParser | 2025-09-25T00:00:00.000000 | 2025-09-25T00:00:00.000000 |
| certfr-2025-avi-0816 | Vulnérabilité dans StormShield Network Security | 2025-09-25T00:00:00.000000 | 2025-09-25T00:00:00.000000 |
| certfr-2025-avi-0815 | Vulnérabilité dans Liferay | 2025-09-24T00:00:00.000000 | 2025-09-24T00:00:00.000000 |
| certfr-2025-avi-0814 | Multiples vulnérabilités dans Google Chrome | 2025-09-24T00:00:00.000000 | 2025-09-24T00:00:00.000000 |
| certfr-2025-avi-0813 | Vulnérabilité dans SolarWinds Web Help Desk | 2025-09-23T00:00:00.000000 | 2025-09-23T00:00:00.000000 |
| certfr-2025-avi-0812 | Vulnérabilité dans Synology Safe Access pour SRM | 2025-09-23T00:00:00.000000 | 2025-09-23T00:00:00.000000 |
| certfr-2025-avi-0811 | Multiples vulnérabilités dans Liferay | 2025-09-23T00:00:00.000000 | 2025-09-23T00:00:00.000000 |
| certfr-2025-avi-0810 | Vulnérabilité dans Liferay | 2025-09-22T00:00:00.000000 | 2025-09-22T00:00:00.000000 |
| certfr-2025-avi-0809 | Multiples vulnérabilités dans Microsoft Edge | 2025-09-22T00:00:00.000000 | 2025-09-22T00:00:00.000000 |
| certfr-2025-avi-0808 | Multiples vulnérabilités dans les produits IBM | 2025-09-19T00:00:00.000000 | 2025-09-19T00:00:00.000000 |
| certfr-2025-avi-0807 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-09-19T00:00:00.000000 | 2025-09-19T00:00:00.000000 |
| certfr-2025-avi-0806 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-09-19T00:00:00.000000 | 2025-09-19T00:00:00.000000 |
| certfr-2025-avi-0805 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-09-19T00:00:00.000000 | 2025-09-19T00:00:00.000000 |
| certfr-2025-avi-0804 | Multiples vulnérabilités dans Microsoft Windows | 2025-09-19T00:00:00.000000 | 2025-09-19T00:00:00.000000 |
| certfr-2025-avi-0766 | Multiples vulnérabilités dans les produits Liferay | 2025-09-09T00:00:00.000000 | 2025-09-19T00:00:00.000000 |
| certfr-2025-avi-0803 | Vulnérabilité dans HPE Aruba Networking ClearPass Policy Manager | 2025-09-18T00:00:00.000000 | 2025-09-18T00:00:00.000000 |
| certfr-2025-avi-0802 | Multiples vulnérabilités dans Google Chrome | 2025-09-18T00:00:00.000000 | 2025-09-18T00:00:00.000000 |
| certfr-2025-avi-0800 | Multiples vulnérabilités dans Liferay | 2025-09-17T00:00:00.000000 | 2025-09-17T00:00:00.000000 |
| certfr-2025-avi-0799 | Vulnérabilité dans les produits Microsoft | 2025-09-17T00:00:00.000000 | 2025-09-17T00:00:00.000000 |
| certfr-2025-avi-0798 | Vulnérabilité dans Microsoft Edge | 2025-09-17T00:00:00.000000 | 2025-09-17T00:00:00.000000 |
| certfr-2025-avi-0797 | Multiples vulnérabilités dans les produits Mozilla | 2025-09-17T00:00:00.000000 | 2025-09-17T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| osv-2024-1411 | Use-of-uninitialized-value in mark_context | 2024-12-29T00:03:28.881713Z | 2024-12-29T00:03:28.882100Z |
| osv-2024-1406 | UNKNOWN READ in _TIFFVSetField | 2024-12-27T00:16:38.077175Z | 2024-12-27T00:16:38.077756Z |
| osv-2024-384 | Heap-use-after-free in json_fixed_string | 2024-04-30T00:12:26.560732Z | 2024-12-25T14:21:22.172697Z |
| osv-2024-1391 | Heap-buffer-overflow in gsicc_create_getv2buffer | 2024-12-20T00:03:10.307442Z | 2024-12-20T00:03:10.308031Z |
| osv-2023-536 | Heap-buffer-overflow in Assimp::MD5::MD5Parser::ParseHeader | 2023-07-02T14:00:19.269762Z | 2024-12-19T14:05:46.818834Z |
| osv-2024-1388 | Security exception in com.google.gson.internal.bind.TypeAdapters$28.write | 2024-12-18T00:02:54.357847Z | 2024-12-18T00:02:54.358393Z |
| osv-2024-1380 | Index-out-of-bounds in ndpi_search_dns | 2024-12-15T00:12:21.687565Z | 2024-12-15T00:12:21.687988Z |
| osv-2024-1372 | Bad-cast to Assimp::LogStream from Assimp::OptimizeMeshesProcess | 2024-12-14T00:00:14.982156Z | 2024-12-14T00:00:14.982614Z |
| osv-2023-984 | Stack-buffer-overflow in TranslateWord3 | 2023-10-08T13:00:48.222080Z | 2024-12-12T14:15:21.369705Z |
| osv-2023-467 | Stack-buffer-overflow in SetPitchGradient | 2023-06-08T14:01:12.964629Z | 2024-12-12T14:12:48.510389Z |
| osv-2022-595 | Stack-buffer-overflow in Lookup | 2022-07-19T00:01:42.567408Z | 2024-12-12T14:09:48.779445Z |
| osv-2021-1041 | Global-buffer-overflow in SetUpPhonemeTable | 2021-07-23T00:00:14.684306Z | 2024-12-12T14:04:27.209318Z |
| osv-2021-1024 | Global-buffer-overflow in GetSsmlAttribute | 2021-07-17T00:00:48.123388Z | 2024-12-12T14:04:16.162668Z |
| osv-2024-1356 | Heap-buffer-overflow in ChunkAssignData | 2024-12-10T00:13:56.481718Z | 2024-12-10T00:13:56.482170Z |
| osv-2024-1351 | Use-of-uninitialized-value in Archive::UnexpEndArcMsg | 2024-12-10T00:05:42.992615Z | 2024-12-10T00:05:42.992960Z |
| osv-2024-1336 | Security exception in org.checkerframework.checker.formatter.util.FormatUtil.formatParameterCategories | 2024-11-26T00:01:25.736998Z | 2024-11-26T00:01:25.737632Z |
| osv-2024-1332 | Negative-size-param in extract_mr_data | 2024-11-21T00:04:16.535838Z | 2024-11-21T00:04:16.536469Z |
| osv-2024-1330 | Heap-buffer-overflow in zoom_search_again | 2024-11-20T00:15:27.562125Z | 2024-11-20T14:27:37.875526Z |
| osv-2024-324 | Use-of-uninitialized-value in do_callout_jit | 2024-04-29T05:41:58.770090Z | 2024-11-19T21:52:42.928598Z |
| osv-2024-1326 | Heap-buffer-overflow in ndpi_search_mikrotik | 2024-11-18T00:12:17.790747Z | 2024-11-18T00:12:17.791146Z |
| osv-2024-1324 | Heap-buffer-overflow in Assimp::FBXExporter::WriteObjects | 2024-11-18T00:01:13.979270Z | 2024-11-18T00:01:13.979758Z |
| osv-2024-1320 | Heap-buffer-overflow in process_page_ | 2024-11-17T00:15:09.627790Z | 2024-11-17T00:15:09.628193Z |
| osv-2024-1310 | Use-of-uninitialized-value in decompress_yuv.cc | 2024-11-15T00:03:32.569897Z | 2024-11-15T00:03:32.570195Z |
| osv-2022-1248 | Object-size in wabt::BinaryReaderIR::OnCodeMetadataCount | 2022-12-08T13:00:53.255456Z | 2024-11-09T14:06:27.702972Z |
| osv-2024-1297 | Heap-buffer-overflow in rijndaelSetupEncrypt | 2024-11-09T00:13:03.370689Z | 2024-11-09T00:13:03.371200Z |
| osv-2024-1293 | Use-of-uninitialized-value in k5_hashtab_add | 2024-11-08T00:16:09.025852Z | 2024-11-08T00:16:09.026399Z |
| osv-2024-1244 | Heap-buffer-overflow in extract_fmtp | 2024-10-27T00:10:45.337287Z | 2024-11-06T14:24:14.483448Z |
| osv-2024-1282 | Segv on unknown address in udiv | 2024-11-05T00:16:47.572692Z | 2024-11-05T00:16:47.573042Z |
| osv-2024-1279 | Heap-buffer-overflow in opj_j2k_read_tile_header | 2024-11-05T00:12:57.052133Z | 2024-11-05T00:12:57.052585Z |
| osv-2022-859 | UNKNOWN READ in write_key | 2022-09-08T00:00:41.893865Z | 2024-11-03T14:10:16.487872Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rustsec-2021-0066 | Denial of service on EVM execution due to memory over-allocation | 2021-05-11T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0065 | anymap is unmaintained. | 2021-05-07T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0063 | XSS in `comrak` | 2021-05-04T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0058 | Null pointer deref in `X509_issuer_and_serial_hash()` | 2021-05-01T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0057 | Integer overflow in CipherUpdate | 2021-05-01T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0056 | CA certificate check bypass with X509_V_FLAG_X509_STRICT | 2021-05-01T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0055 | NULL pointer deref in signature_algorithms processing | 2021-05-01T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0054 | Archives may contain uninitialized memory | 2021-04-28T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0053 | 'merge_sort::merge()' crashes with double-free for `T: Drop` | 2021-03-07T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0052 | Multiple functions can cause double-frees | 2021-02-26T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0051 | KeyValueReader passes uninitialized memory to Read instance | 2021-01-31T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0050 | swap_index can write out of bounds and return uninitialized memory | 2021-02-24T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0049 | `through` and `through_and` causes a double free if the map function panics | 2021-02-18T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0048 | StackVec::extend can write out of bounds when size_hint is incorrect | 2021-02-19T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0047 | SliceDeque::drain_filter can double drop an element if the predicate panics | 2021-02-19T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0046 | misc::vec_with_size() can drop uninitialized memory if clone panics | 2021-02-17T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0045 | FromIterator implementation for Vector/Matrix can drop uninitialized memory | 2021-01-11T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0044 | Use after free possible in `uri::Formatter` on panic | 2021-02-09T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0043 | PartialReader passes uninitialized memory to user-provided Read | 2021-02-17T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0042 | insert_many can drop elements twice on panic | 2021-01-26T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0041 | Denial of service through parsing payloads with too big exponent | 2021-03-18T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0040 | panic safety: double drop or uninitialized drop of T upon panic | 2021-01-12T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0039 | panic in user-provided `Endian` impl triggers double drop of T | 2021-01-04T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0038 | Multiple memory safety issues | 2021-03-06T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0037 | Fix a use-after-free bug in diesels Sqlite backend | 2021-03-05T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0036 | Intern<T>: Data race allowed on T | 2021-03-03T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0035 | `quinn` invalidly assumes the memory layout of std::net::SocketAddr | 2021-03-04T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0033 | push_cloned can drop uninitialized memory or double free on panic | 2021-02-22T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0032 | Deserializing an array can drop uninitialized memory on panic | 2021-03-01T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0031 | split_at allows obtaining multiple mutable references to the same data | 2021-01-31T12:00:00Z | 2023-06-13T13:10:24Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| alsa-2025:13782 | Important: webkit2gtk3 security update | 2025-08-13T00:00:00Z | 2025-08-14T13:28:02Z |
| alsa-2025:12662 | Important: kernel security update | 2025-08-04T00:00:00Z | 2025-08-13T13:56:22Z |
| alsa-2025:13676 | Important: thunderbird security update | 2025-08-12T00:00:00Z | 2025-08-13T12:22:12Z |
| alsa-2025:13578 | Moderate: python3.11-setuptools security update | 2025-08-11T00:00:00Z | 2025-08-12T14:18:32Z |
| alsa-2025:13673 | Important: toolbox security update | 2025-08-12T00:00:00Z | 2025-08-12T14:16:36Z |
| alsa-2025:13604 | Moderate: python-requests security update | 2025-08-11T00:00:00Z | 2025-08-11T19:21:12Z |
| alsa-2025:13590 | Moderate: kernel-rt security update | 2025-08-11T00:00:00Z | 2025-08-11T15:42:47Z |
| alsa-2025:13589 | Moderate: kernel security update | 2025-08-11T00:00:00Z | 2025-08-11T15:39:13Z |
| alsa-2025:12280 | Important: jackson-annotations, jackson-core, jackson-databind, jackson-jaxrs-providers, and jackson-modules-base security update | 2025-07-30T00:00:00Z | 2025-08-09T13:24:27Z |
| alsa-2025:13429 | Moderate: libxml2 security update | 2025-08-07T00:00:00Z | 2025-08-07T22:17:37Z |
| alsa-2025:13428 | Moderate: libxml2 security update | 2025-08-07T00:00:00Z | 2025-08-07T21:44:30Z |
| alsa-2025:12746 | Important: kernel security update | 2025-08-04T00:00:00Z | 2025-08-07T11:25:17Z |
| alsa-2025:12752 | Important: kernel security update | 2025-08-04T00:00:00Z | 2025-08-07T10:29:22Z |
| alsa-2025:12753 | Important: kernel-rt security update | 2025-08-04T00:00:00Z | 2025-08-07T10:27:31Z |
| alsa-2025:12831 | Moderate: opentelemetry-collector security update | 2025-08-05T00:00:00Z | 2025-08-07T10:26:12Z |
| alsa-2025:12850 | Moderate: opentelemetry-collector security update | 2025-08-05T00:00:00Z | 2025-08-07T10:25:17Z |
| alsa-2025:13240 | Moderate: glibc security update | 2025-08-06T00:00:00Z | 2025-08-07T10:23:27Z |
| alsa-2025:13315 | Moderate: gdk-pixbuf2 security update | 2025-08-07T00:00:00Z | 2025-08-07T09:27:11Z |
| alsa-2025:11850 | Moderate: kernel security update | 2025-07-28T00:00:00Z | 2025-08-06T17:11:33Z |
| alsa-2025:13203 | Moderate: libxml2 security update | 2025-08-06T00:00:00Z | 2025-08-06T15:05:54Z |
| alsa-2025:13234 | Moderate: python-requests security update | 2025-08-06T00:00:00Z | 2025-08-06T15:03:44Z |
| alsa-2025:12980 | Moderate: glibc security update | 2025-08-05T00:00:00Z | 2025-08-06T14:24:57Z |
| alsa-2025:11855 | Moderate: kernel security update | 2025-07-28T00:00:00Z | 2025-08-06T06:59:49Z |
| alsa-2025:12834 | Moderate: python3.12-setuptools security update | 2025-08-05T00:00:00Z | 2025-08-06T05:36:51Z |
| alsa-2025:12519 | Moderate: python-requests security update | 2025-08-04T00:00:00Z | 2025-08-04T12:47:36Z |
| alsa-2025:11455 | Moderate: kernel security update | 2025-07-21T00:00:00Z | 2025-08-04T11:36:19Z |
| alsa-2025:11036 | Moderate: python-setuptools security update | 2025-07-15T00:00:00Z | 2025-08-04T11:32:31Z |
| alsa-2025:11035 | Moderate: lz4 security update | 2025-07-15T00:00:00Z | 2025-08-02T13:24:46Z |
| alsa-2025:12447 | Important: libxml2 security update | 2025-07-31T00:00:00Z | 2025-08-01T13:39:05Z |
| alsa-2025:12450 | Important: libxml2 security update | 2025-07-31T00:00:00Z | 2025-08-01T13:36:17Z |