Recent vulnerabilities


ID CVSS Description Vendor Product Published Updated
CVE-2026-58295
8.3 (3.1)
Microsoft Edge (Chromium-based) Security Feature Bypas… Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:32.479Z 2026-07-03T21:26:22.183Z
CVE-2026-58294
7.5 (3.1)
Microsoft Edge (Chromium-based) Remote Code Execution … Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:31.928Z 2026-07-03T21:26:21.641Z
CVE-2026-58293
8.1 (3.1)
Microsoft Edge (Chromium-based) Remote Code Execution … Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:31.401Z 2026-07-03T21:26:21.026Z
CVE-2026-58292
7.5 (3.1)
Microsoft Edge (Chromium-based) Remote Code Execution … Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:30.853Z 2026-07-03T21:26:20.487Z
CVE-2026-58290
7.5 (3.1)
Microsoft Edge (Chromium-based) Remote Code Execution … Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:30.311Z 2026-07-03T21:26:19.954Z
CVE-2026-58289
9 (3.1)
Microsoft Edge (Chromium-based) Remote Code Execution … Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:29.711Z 2026-07-03T21:26:19.336Z
CVE-2026-58288
8.3 (3.1)
Microsoft Edge (Chromium-based) Remote Code Execution … Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:24.560Z 2026-07-03T21:26:18.728Z
CVE-2026-58286
8.1 (3.1)
Microsoft Edge (Chromium-based) Spoofing Vulnerability Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:24.011Z 2026-07-03T21:26:18.193Z
CVE-2026-58285
8.3 (3.1)
Microsoft Edge (Chromium-based) Remote Code Execution … Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:23.474Z 2026-07-03T21:26:17.576Z
CVE-2026-58284
8.3 (3.1)
Microsoft Edge (Chromium-based) Remote Code Execution … Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:22.999Z 2026-07-03T21:26:16.960Z
CVE-2026-58278
5.4 (3.1)
Microsoft Edge (Chromium-based) Spoofing Vulnerability Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:22.461Z 2026-07-03T21:26:16.499Z
CVE-2026-58276
7.5 (3.1)
Microsoft Edge (Chromium-based) Remote Code Execution … Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:22.006Z 2026-07-03T21:26:15.883Z
CVE-2026-57991
7.4 (3.1)
Microsoft Edge (Chromium-based) Information Disclosure… Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:21.276Z 2026-07-03T21:26:15.402Z
CVE-2026-57986
7.5 (3.1)
Microsoft Edge (Chromium-based) Remote Code Execution … Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:20.815Z 2026-07-03T21:26:14.864Z
CVE-2026-57981
8.8 (3.1)
Microsoft Edge (Chromium-based) Remote Code Execution … Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:20.280Z 2026-07-03T21:26:14.356Z
CVE-2026-57977
7.1 (3.1)
Microsoft Edge (Chromium-based) Spoofing Vulnerability Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:19.684Z 2026-07-03T21:26:13.646Z
CVE-2026-57974
8.8 (3.1)
Microsoft Edge (Chromium-based) Remote Code Execution … Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:19.152Z 2026-07-03T21:26:13.106Z
CVE-2026-45488
5.4 (3.1)
Microsoft Edge (Chromium-based) Spoofing Vulnerability Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:18.605Z 2026-07-03T21:26:12.565Z
CVE-2026-58522
6.8 (3.1)
Microsoft Edge for Android Information Disclosure Vuln… Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:17.493Z 2026-07-03T21:26:11.954Z
CVE-2026-58299
7.5 (3.1)
Microsoft Edge for Android Remote Code Execution Vulne… Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:16.879Z 2026-07-03T21:26:11.487Z
CVE-2026-58287
8.3 (3.1)
Microsoft Edge (Chromium-based) Remote Code Execution … Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:16.144Z 2026-07-03T21:26:10.850Z
CVE-2026-58283
8.1 (3.1)
Microsoft Edge (Chromium-based) Spoofing Vulnerability Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:15.564Z 2026-07-03T21:26:10.220Z
CVE-2026-58282
8.1 (3.1)
Microsoft Edge (Chromium-based) Spoofing Vulnerability Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:14.923Z 2026-07-03T21:26:09.579Z
CVE-2026-56646
6.5 (3.1)
Microsoft Edge (Chromium-based) Spoofing Vulnerability Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:14.383Z 2026-07-03T21:26:09.024Z
CVE-2026-57993
7.4 (3.1)
Microsoft Edge (Chromium-based) Spoofing Vulnerability Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:13.823Z 2026-07-03T21:26:08.455Z
CVE-2026-57992
7.5 (3.1)
Microsoft Edge (Chromium-based) Remote Code Execution … Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:13.349Z 2026-07-03T21:26:07.884Z
CVE-2026-57988
7.1 (3.1)
Microsoft Edge (Chromium-based) Remote Code Execution … Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:12.756Z 2026-07-03T21:26:07.248Z
CVE-2026-57987
6.5 (3.1)
Microsoft Edge (Chromium-based) Spoofing Vulnerability Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:11.933Z 2026-07-03T21:26:06.758Z
CVE-2026-57985
7.6 (3.1)
Microsoft Edge (Chromium-based) Remote Code Execution … Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:11.415Z 2026-07-03T21:26:06.070Z
CVE-2026-57984
7.5 (3.1)
Microsoft Edge (Chromium-based) Remote Code Execution … Microsoft
Microsoft Edge (Chromium-based)
2026-07-03T20:35:10.727Z 2026-07-03T21:26:05.546Z
ID CVSS Description Vendor Product Published Updated
ID Description Published Updated
fkie_cve-2026-58283 Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) al… 2026-07-03T21:17:02.943 2026-07-03T21:17:02.943
fkie_cve-2026-58282 Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perfo… 2026-07-03T21:17:02.820 2026-07-03T21:17:02.820
fkie_cve-2026-58278 Server-side request forgery (ssrf) in Microsoft Edge (Chromium-based) allows an unauthorized attack… 2026-07-03T21:17:02.707 2026-07-03T21:17:02.707
fkie_cve-2026-58276 Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o… 2026-07-03T21:17:02.573 2026-07-03T21:17:02.573
fkie_cve-2026-57993 Server-side request forgery (ssrf) in Microsoft Edge (Chromium-based) allows an unauthorized attack… 2026-07-03T21:17:02.443 2026-07-03T21:17:02.443
fkie_cve-2026-57992 Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o… 2026-07-03T21:17:02.310 2026-07-03T21:17:02.310
fkie_cve-2026-57991 Improper link resolution before file access ('link following') in Microsoft Edge (Chromium-based) a… 2026-07-03T21:17:02.180 2026-07-03T21:17:02.180
fkie_cve-2026-57988 Relative path traversal in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execu… 2026-07-03T21:17:02.023 2026-07-03T21:17:02.023
fkie_cve-2026-57987 Server-side request forgery (ssrf) in Microsoft Edge (Chromium-based) allows an unauthorized attack… 2026-07-03T21:17:01.903 2026-07-03T21:17:01.903
fkie_cve-2026-57986 Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o… 2026-07-03T21:17:01.780 2026-07-03T21:17:01.780
fkie_cve-2026-57985 Improper input validation in Microsoft Edge (Chromium-based) allows an unauthorized attacker to exe… 2026-07-03T21:17:01.663 2026-07-03T21:17:01.663
fkie_cve-2026-57984 Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o… 2026-07-03T21:17:01.550 2026-07-03T21:17:01.550
fkie_cve-2026-57983 Improper authorization in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass… 2026-07-03T21:17:01.433 2026-07-03T21:17:01.433
fkie_cve-2026-57981 Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o… 2026-07-03T21:17:01.313 2026-07-03T21:17:01.313
fkie_cve-2026-57977 Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft E… 2026-07-03T21:17:01.193 2026-07-03T21:17:01.193
fkie_cve-2026-57975 Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) al… 2026-07-03T21:17:01.077 2026-07-03T21:17:01.077
fkie_cve-2026-57974 Integer overflow or wraparound in Microsoft Edge (Chromium-based) allows an unauthorized attacker t… 2026-07-03T21:17:00.957 2026-07-03T21:17:00.957
fkie_cve-2026-56646 Exposure of sensitive information to an unauthorized actor in Microsoft Edge (Chromium-based) allow… 2026-07-03T21:17:00.783 2026-07-03T21:17:00.783
fkie_cve-2026-56645 Heap-based buffer overflow in Microsoft Edge (Chromium-based) allows an unauthorized attacker to ex… 2026-07-03T21:17:00.670 2026-07-03T21:17:00.670
fkie_cve-2026-55945 Concurrent execution using shared resource with improper synchronization ('race condition') in Micr… 2026-07-03T21:17:00.550 2026-07-03T21:17:00.550
fkie_cve-2026-45489 Microsoft Edge (Chromium-based) Spoofing Vulnerability 2026-07-03T21:17:00.307 2026-07-03T21:17:00.307
fkie_cve-2026-45488 User interface (ui) misrepresentation of critical information in Microsoft Edge (Chromium-based) al… 2026-07-03T21:17:00.183 2026-07-03T21:17:00.183
fkie_cve-2026-28744 Gitea versions up to and including 1.26.1 allow Git smart HTTP requests authenticated with bearer t… 2026-07-03T21:17:00.003 2026-07-03T21:17:00.003
fkie_cve-2026-28740 Gitea versions up to and including 1.26.2 allow Git LFS object reuse to authorize private source ob… 2026-07-03T21:16:59.890 2026-07-03T21:16:59.890
fkie_cve-2026-28737 Gitea versions from 1.25.0 before 1.26.0 allow stored cross-site scripting through the extensionsRe… 2026-07-03T21:16:59.787 2026-07-03T21:16:59.787
fkie_cve-2026-28705 Gitea versions before 1.25.5 use release tag names and asset names as filesystem path components wh… 2026-07-03T21:16:59.683 2026-07-03T21:16:59.683
fkie_cve-2026-28699 Gitea versions up to and including 1.26.1 allow OAuth2 access token scope enforcement to be bypasse… 2026-07-03T21:16:59.567 2026-07-03T21:16:59.567
fkie_cve-2026-27783 Gitea versions up to and including 1.26.1 do not enforce repository-unit authorization on issue-tem… 2026-07-03T21:16:59.450 2026-07-03T21:16:59.450
fkie_cve-2026-27780 Gitea versions before 1.26.0 do not fail closed on bufio.Scanner errors while processing pre-receiv… 2026-07-03T21:16:59.347 2026-07-03T21:16:59.347
fkie_cve-2026-27779 Gitea versions before 1.25.5 accept malformed or injected forwarded-proto values when detecting pub… 2026-07-03T21:16:59.257 2026-07-03T21:16:59.257
ID Severity Description Published Updated
ghsa-89m8-6fh5-pgm5
5.4 (3.1)
Server-side request forgery (ssrf) in Microsoft Edge (Chromium-based) allows an unauthorized attack… 2026-07-03T21:31:39Z 2026-07-03T21:31:39Z
ghsa-7q4c-v8r2-pc77
7.5 (3.1)
Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o… 2026-07-03T21:31:38Z 2026-07-03T21:31:39Z
ghsa-62v5-4xc7-qm62
7.1 (3.1)
Relative path traversal in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execu… 2026-07-03T21:31:39Z 2026-07-03T21:31:39Z
ghsa-wf54-w5mv-jcf9
7.5 (3.1)
Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o… 2026-07-03T21:31:38Z 2026-07-03T21:31:38Z
ghsa-vr8w-r9rr-cvrq
4.2 (3.1)
Concurrent execution using shared resource with improper synchronization ('race condition') in Micr… 2026-07-03T21:31:38Z 2026-07-03T21:31:38Z
ghsa-vqcc-q5p5-r9q5
8.8 (3.1)
Heap-based buffer overflow in Microsoft Edge (Chromium-based) allows an unauthorized attacker to ex… 2026-07-03T21:31:38Z 2026-07-03T21:31:38Z
ghsa-vp7p-4fxv-645q
7.5 (3.1)
Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) al… 2026-07-03T21:31:38Z 2026-07-03T21:31:38Z
ghsa-vhq7-fwwh-7hjf
Gitea versions before 1.26.0 do not fail closed on bufio.Scanner errors while processing pre-receiv… 2026-07-03T21:31:38Z 2026-07-03T21:31:38Z
ghsa-vgq6-3mhg-7562
6.5 (3.1)
Exposure of sensitive information to an unauthorized actor in Microsoft Edge (Chromium-based) allow… 2026-07-03T21:31:38Z 2026-07-03T21:31:38Z
ghsa-v8f2-2ghq-9whv
Gitea versions before 1.25.5 accept malformed or injected forwarded-proto values when detecting pub… 2026-07-03T21:31:38Z 2026-07-03T21:31:38Z
ghsa-mcm4-vwcv-x3pp
8.8 (3.1)
Integer overflow or wraparound in Microsoft Edge (Chromium-based) allows an unauthorized attacker t… 2026-07-03T21:31:38Z 2026-07-03T21:31:38Z
ghsa-h8wv-x2gq-wqw9
6.5 (3.1)
Microsoft Edge (Chromium-based) Spoofing Vulnerability 2026-07-03T21:31:38Z 2026-07-03T21:31:38Z
ghsa-8xhm-6cw5-pfjj
8.7 (3.1)
Improper authorization in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass… 2026-07-03T21:31:38Z 2026-07-03T21:31:38Z
ghsa-7x68-7683-mh57
8.8 (3.1)
Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o… 2026-07-03T21:31:38Z 2026-07-03T21:31:38Z
ghsa-7jvx-g65v-r899
Gitea versions before 1.25.5 use release tag names and asset names as filesystem path components wh… 2026-07-03T21:31:38Z 2026-07-03T21:31:38Z
ghsa-4w42-h73x-mj6m
7.1 (3.1)
Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft E… 2026-07-03T21:31:38Z 2026-07-03T21:31:38Z
ghsa-3xgf-55j3-v68w
5.4 (3.1)
User interface (ui) misrepresentation of critical information in Microsoft Edge (Chromium-based) al… 2026-07-03T21:31:38Z 2026-07-03T21:31:38Z
ghsa-x92v-f5gc-r34v
Gitea versions before 1.25.5 allow draft release data or attachments to be accessed without the req… 2026-07-03T21:31:37Z 2026-07-03T21:31:37Z
ghsa-rc6p-2pj8-p4v9
5.3 (3.1)
1.9 (4.0)
A flaw has been found in Open Asset Import Library Assimp up to 6.0.5. Impacted is the function Ass… 2026-07-03T21:31:36Z 2026-07-03T21:31:37Z
ghsa-rc56-rj3f-xggf
Gitea versions before 1.25.5 do not use the migration HTTP transport for LFS push and sync mirror o… 2026-07-03T21:31:37Z 2026-07-03T21:31:37Z
ghsa-qm72-8prh-g92x
Gitea versions before 1.25.5 look up tracked-time entries by time ID without scoping the lookup to … 2026-07-03T21:31:37Z 2026-07-03T21:31:37Z
ghsa-m5ch-ppfx-xv3v
Gitea versions before 1.25.5 do not persist the OAuth2 PKCE S256 challenge method correctly during … 2026-07-03T21:31:37Z 2026-07-03T21:31:37Z
ghsa-h9c5-x7g8-4q7f
Gitea versions before 1.25.5 do not enforce a timeout on git grep searches, allowing expensive sear… 2026-07-03T21:31:37Z 2026-07-03T21:31:37Z
ghsa-h697-89cp-24q8
Gitea versions before 1.25.5 mishandle path resolution during template repository generation, allow… 2026-07-03T21:31:37Z 2026-07-03T21:31:37Z
ghsa-fwpr-59hh-gr98
4.3 (3.1)
5.3 (4.0)
A vulnerability has been found in DeepMyst Mysti up to 0.4.0. The affected element is the function … 2026-07-03T21:31:37Z 2026-07-03T21:31:37Z
ghsa-fhq3-p242-2qpf
Gitea versions before 1.25.5 have insufficient permission checks when listing tracked time entries. 2026-07-03T21:31:37Z 2026-07-03T21:31:37Z
ghsa-922f-hfwp-p56f
Gitea versions before 1.25.5 lack validation constraints for repository creation fields, including … 2026-07-03T21:31:37Z 2026-07-03T21:31:37Z
ghsa-5v69-g2m3-3hq3
Gitea versions before 1.25.5 do not consistently enforce OAuth2 authorization code expiry and singl… 2026-07-03T21:31:37Z 2026-07-03T21:31:37Z
ghsa-4c8f-3m6h-m56r
Gitea versions before 1.25.5 allow a user to change another user's primary email address. 2026-07-03T21:31:37Z 2026-07-03T21:31:37Z
ghsa-47rq-xp99-92mx
Gitea versions before 1.25.5 have insufficient permission checks for updating or rebasing pull requ… 2026-07-03T21:31:37Z 2026-07-03T21:31:37Z
ID Severity Description Package Published Updated
pysec-2026-601
8.8 (3.1)
An issue was discovered in OpenStack Keystone before 29.0.2. When combined with an applic… keystone 2026-05-28T19:16:37.773Z 2026-07-02T12:26:33.050605Z
pysec-2026-600
8.8 (3.1)
An issue was discovered in OpenStack Keystone before 29.0.2. The Keystone RBAC policy enf… keystone 2026-05-28T19:16:37.630Z 2026-07-02T12:26:32.954749Z
pysec-2026-599
8.8 (3.1)
An issue was discovered in OpenStack Keystone before 29.0.2. The Keystone application cre… keystone 2026-05-28T19:16:37.483Z 2026-07-02T12:26:32.863516Z
pysec-2023-298
5.3 (3.1)
isInList in the safeurl-python package before 1.2 for Python has an insufficiently restri… safeurl-python 2023-01-30T05:15:00Z 2026-07-02T10:13:12.352047Z
pysec-2008-12
The user form processing (userform.py) in MoinMoin before 1.6.3, when using ACLs or a non… moin 2008-04-25T06:05:00Z 2026-07-02T10:13:07.338482Z
pysec-2015-38
OpenStack Image Registry and Delivery Service (Glance) 2014.2 through 2014.2.2 does not p… glance 2015-02-24T15:59:00Z 2026-07-02T10:13:02.658153Z
pysec-2015-37
OpenStack Image Registry and Delivery Service (Glance) 2014.2 through 2014.2.2 does not p… glance 2015-02-24T15:59:00Z 2026-07-02T10:13:02.652048Z
pysec-2026-598
6.5 (3.1)
Chainlit versions prior to 2.9.4 contain an arbitrary file read vulnerability in the /pro… chainlit 2026-01-20T00:15:48.910Z 2026-07-02T07:41:22.724538Z
pysec-2026-611
Part of the "Hades" wave of the Shai-Hulud supply-chain campaign. On 2026-06-08, maliciou… uprobe 2026-07-01T22:17:57Z 2026-07-01T22:17:57Z
pysec-2026-610
Part of the "Hades" wave of the Shai-Hulud supply-chain campaign. On 2026-06-08, maliciou… ufish 2026-07-01T22:08:28Z 2026-07-01T22:08:28Z
pysec-2026-609
Part of the "Hades" wave of the Shai-Hulud supply-chain campaign. On 2026-06-08, maliciou… synago 2026-07-01T21:35:49Z 2026-07-01T21:35:49Z
pysec-2026-608
Part of the "Hades" wave of the Shai-Hulud supply-chain campaign. On 2026-06-08, maliciou… pantheon-toolsets 2026-07-01T21:33:35Z 2026-07-01T21:33:35Z
pysec-2026-607
Part of the "Hades" wave of the Shai-Hulud supply-chain campaign. On 2026-06-08, maliciou… pantheon-agents 2026-07-01T21:24:58Z 2026-07-01T21:24:58Z
pysec-2026-577
9.9 (4.0)
## Summary Alice exposes a Python SDK `ProxyShare` with a fixed target URL. Bob sends a … zrok 2026-06-29T11:50:50.353793Z 2026-07-01T20:23:12.283893Z
pysec-2010-32
ZServer in Zope 2.10.x before 2.10.12 and 2.11.x before 2.11.7 allows remote attackers to… Zope 2010-09-08T20:00:00Z 2026-07-01T20:23:12.207672Z
pysec-2026-576
9.8 (3.1)
A heap-based buffer overflow exists in the qr_reader_match_centers function of ZBar 0.23.… zbar 2026-06-29T11:50:44.123752Z 2026-07-01T20:23:12.100943Z
pysec-2026-575
9.3 (4.0)
A vulnerability in the handling of verify_mode = CERT_REQUIRED in the wolfssl Python pack… wolfssl 2026-06-29T11:50:51.846296Z 2026-07-01T20:23:12.060789Z
pysec-2022-43174
9.8 (3.1)
WMAgent v1.3.3rc2 and 1.3.3rc1, reqmgr 2 1.4.1rc5 and 1.4.0rc2, reqmon 1.4.1rc5, and glob… wmagent 2022-07-28T23:15:00Z 2026-07-01T20:23:12.054462Z
pysec-2026-574
9.9 (3.1)
### Summary The `reset_user_password` and `gym_permissions_user_edit` views in wger perf… wger 2026-06-29T11:50:48.728363Z 2026-07-01T20:23:12.000871Z
pysec-2026-573
9.8 (3.1)
Improper Restriction of Excessive Authentication Attempts in GitHub repository wger-proje… wger 2026-06-29T11:50:33.145504Z 2026-07-01T20:23:11.992618Z
pysec-2026-572
9.8 (3.1)
A vulnerability was found in zwczou WeChat SDK Python 0.3.0 and classified as critical. T… weixin-python 2026-06-29T11:50:42.538947Z 2026-07-01T20:23:11.940577Z
pysec-2026-571
9.1 (3.1)
### Impact It was possible to overwrite Git configuration remotely and override some of … weblate 2026-06-29T11:50:38.662670Z 2026-07-01T20:23:11.903329Z
pysec-2026-570
9.8 (3.1)
The sample web application in web2py before 2.14.2 might allow remote attackers to execut… web2py 2026-06-29T11:50:32.809887Z 2026-07-01T20:23:11.781906Z
pysec-2026-569
9.8 (3.1)
web2py before 2.14.6 does not properly check if a host is denied before verifying passwor… web2py 2026-06-29T11:50:32.485181Z 2026-07-01T20:23:11.774432Z
pysec-2026-568
9.8 (3.1)
vllm-project vllm version 0.6.0 contains a vulnerability in the distributed training API.… vllm 2026-06-29T11:50:34.951406Z 2026-07-01T20:23:11.311128Z
pysec-2026-567
9.8 (3.1)
### Impacted Environments This issue ONLY impacts environments using the `PyNcclPipe` KV… vllm 2026-06-29T11:50:35.995027Z 2026-07-01T20:23:11.300418Z
pysec-2026-566
9.8 (3.1)
vllm-project vllm version v0.6.2 contains a vulnerability in the MessageQueue.dequeue() A… vllm 2026-06-29T11:50:35.177170Z 2026-07-01T20:23:11.291562Z
pysec-2026-565
9.8 (3.1)
## Summary **A chain of vulnerabilities in vLLM allow Remote Code Execution (RCE):** 1.… vllm 2026-06-29T11:50:51.569348Z 2026-07-01T20:23:11.278808Z
pysec-2026-563
8.1 (3.1)
9.3 (4.0)
The package libvcs before 0.11.1 are vulnerable to Command Injection via argument injecti… vcspull 2026-06-29T11:50:31.953566Z 2026-07-01T20:23:11.167334Z
pysec-2026-562
9.8 (3.1)
In the latest version of vanna-ai/vanna, the `vanna.ask` function is vulnerable to remote… vanna 2026-06-29T11:50:42.052160Z 2026-07-01T20:23:10.996611Z
ID Description Type
ID Description Updated
gsd-2024-28875 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:20.401696Z
gsd-2024-33786 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.606155Z
gsd-2024-33697 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… 2024-04-27T05:02:18.598872Z
gsd-2024-33784 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.595808Z
gsd-2024-33788 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.591276Z
gsd-2024-33701 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.589032Z
gsd-2024-33776 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.587852Z
gsd-2024-33838 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.585807Z
gsd-2024-33839 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.579161Z
gsd-2024-33845 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.569462Z
gsd-2024-33741 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.568527Z
gsd-2024-33769 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.558897Z
gsd-2024-33794 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.557396Z
gsd-2024-33835 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.550838Z
gsd-2024-33744 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.543395Z
gsd-2024-33789 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.534336Z
gsd-2024-33702 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.530768Z
gsd-2024-33797 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.530297Z
gsd-2024-33810 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.527741Z
gsd-2024-33807 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.526483Z
gsd-2024-33688 Cross-Site Request Forgery (CSRF) vulnerability in Extend Themes Teluro.This issue affect… 2024-04-27T05:02:18.524420Z
gsd-2024-33713 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.522989Z
gsd-2024-33768 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.521409Z
gsd-2024-33720 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.519711Z
gsd-2024-33727 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.514916Z
gsd-2024-33732 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.513959Z
gsd-2024-33714 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.510684Z
gsd-2024-33693 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… 2024-04-27T05:02:18.509326Z
gsd-2024-33792 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.507383Z
gsd-2024-33710 The format of the source doesn't require a description, click on the link for more details. 2024-04-27T05:02:18.499457Z
ID Description Published Updated
mal-2026-6728 Malicious code in dt-validator (PyPI) 2026-07-02T17:39:30Z 2026-07-02T17:39:30Z
mal-2026-6495 Malicious code in animatecss-postcss-plugin (npm) 2026-06-26T01:42:36Z 2026-07-02T15:02:07Z
mal-2026-6727 Malicious code in tailwind-animates (npm) 2026-07-02T14:55:45Z 2026-07-02T14:55:46Z
mal-2026-4681 Malicious code in tailwind-typography-stylecss (npm) 2026-05-24T03:14:39Z 2026-07-02T13:56:15Z
mal-2026-6538 Malicious code in db-plog (npm) 2026-06-26T21:08:49Z 2026-07-02T13:56:11Z
mal-2026-6142 Malicious code in db-connector-log (npm) 2026-06-18T22:29:10Z 2026-07-02T13:56:11Z
mal-2026-5604 Malicious code in cache-section-helper (npm) 2026-06-11T07:24:13Z 2026-07-02T13:56:11Z
mal-2026-6726 Malicious code in db-convertor (npm) 2026-07-02T13:17:43Z 2026-07-02T13:17:50Z
mal-2026-6725 Malicious code in @modhamanish/rn-mm-template (npm) 2026-07-02T13:02:29Z 2026-07-02T13:02:30Z
mal-2026-6710 Malicious code in vitest-agent (npm) 2026-07-01T19:15:53Z 2026-07-02T11:10:03Z
mal-2026-6711 Malicious code in twrap-tool (PyPI) 2026-07-01T20:05:39Z 2026-07-01T22:56:41Z
mal-2026-6724 Malicious code in starlette-healthcheck (PyPI) 2026-07-01T21:08:27Z 2026-07-01T22:04:56Z
mal-2026-6561 Malicious code in skillspector (PyPI) 2026-06-28T21:50:42Z 2026-07-01T22:04:56Z
mal-2026-6690 Malicious code in log-taker1 (npm) 2026-06-30T00:00:00Z 2026-07-01T22:04:52Z
mal-2026-6723 Malicious code in electron-orbit (npm) 2026-07-01T21:15:10Z 2026-07-01T22:04:51Z
mal-2026-6722 Malicious code in date-fns-lite (npm) 2026-07-01T21:19:37Z 2026-07-01T22:04:50Z
mal-2026-6721 Malicious code in ts-eslint-helper (npm) 2026-07-01T20:28:12Z 2026-07-01T21:06:13Z
mal-2026-6346 Malicious code in triage-bot (npm) 2026-06-23T20:18:45Z 2026-07-01T21:06:13Z
mal-2026-6718 Malicious code in test-pkg-yarn (npm) 2026-07-01T20:47:51Z 2026-07-01T21:06:12Z
mal-2026-6717 Malicious code in test-pkg-x0 (npm) 2026-07-01T20:46:56Z 2026-07-01T21:06:12Z
mal-2026-6716 Malicious code in test-pkg-pnpm (npm) 2026-07-01T20:47:19Z 2026-07-01T21:06:12Z
mal-2026-6715 Malicious code in svgcraft-core (npm) 2026-07-01T20:48:15Z 2026-07-01T21:06:12Z
mal-2026-6405 Malicious code in sypoi1 (npm) 2026-06-24T22:18:30Z 2026-07-01T21:06:12Z
mal-2026-6692 Malicious code in polymarket-trading-developer-tools (npm) 2026-06-30T00:00:00Z 2026-07-01T21:06:11Z
mal-2026-6691 Malicious code in polymarket-clob-maths (npm) 2026-06-30T00:00:00Z 2026-07-01T21:06:11Z
mal-2026-6713 Malicious code in polymarket-toolkit (npm) 2026-07-01T20:37:33Z 2026-07-01T20:37:33Z
mal-2026-6714 Malicious code in polymarket-trading-developer-tool (npm) 2026-07-01T20:37:24Z 2026-07-01T20:37:24Z
mal-2026-6712 Malicious code in polymarket-risk-manager (npm) 2026-07-01T20:37:17Z 2026-07-01T20:37:17Z
mal-2026-6719 Malicious code in ts-clob-math-v2 (npm) 2026-07-01T20:28:46Z 2026-07-01T20:28:46Z
mal-2026-6720 Malicious code in ts-elinter (npm) 2026-07-01T20:28:27Z 2026-07-01T20:28:27Z
ID Description Published Updated
bit-libpython-2026-0864 Configuration Injection via Carriage Return (\r) in write() method 2026-06-29T11:10:21.165Z 2026-06-29T11:33:52.451Z
bit-node-2026-48936 2026-06-29T05:48:59.341Z 2026-06-29T06:04:07.500Z
bit-node-2026-48935 2026-06-29T05:48:58.171Z 2026-06-29T06:04:07.500Z
bit-node-2026-48934 2026-06-29T05:48:56.982Z 2026-06-29T06:04:07.500Z
bit-node-2026-48933 2026-06-29T05:48:55.780Z 2026-06-29T06:04:07.500Z
bit-node-2026-48930 2026-06-29T05:48:53.525Z 2026-06-29T06:04:07.500Z
bit-node-2026-48928 2026-06-29T05:48:52.419Z 2026-06-29T06:04:07.500Z
bit-node-2026-48619 2026-06-29T05:48:51.254Z 2026-06-29T06:04:07.500Z
bit-node-2026-48618 2026-06-29T05:48:50.266Z 2026-06-29T06:04:07.500Z
bit-node-2026-48615 2026-06-29T05:48:48.071Z 2026-06-29T06:04:07.500Z
bit-nginx-2026-42945 NGINX ngx_http_rewrite_module vulnerability 2026-05-15T08:50:08.298Z 2026-06-29T06:04:07.500Z
bit-mlflow-2026-2651 Missing Authorization Validation in mlflow/mlflow 2026-06-05T08:52:14.527Z 2026-06-29T06:04:07.500Z
bit-mlflow-2026-2611 Improper Origin Validation in mlflow/mlflow 2026-05-29T08:48:33.396Z 2026-06-29T06:04:07.500Z
bit-haproxy-2026-55204 HAProxy - NULL Pointer Dereference in hpack_dht_insert Function 2026-06-29T05:40:50.508Z 2026-06-29T06:04:07.500Z
bit-haproxy-2026-55203 HAProxy - Integer Overflow in FCGI Demux Record Length Field 2026-06-29T05:40:49.435Z 2026-06-29T06:04:07.500Z
bit-grafana-2026-27876 RCE on Grafana via sqlExpressions 2026-04-01T08:41:07.673Z 2026-06-29T06:04:07.500Z
bit-gitlab-2026-8330 Insertion of Sensitive Information into Log File in GitLab 2026-06-29T06:02:37.310Z 2026-06-29T06:04:07.500Z
bit-gitlab-2026-5952 Incorrect Authorization in GitLab 2026-06-29T06:02:15.127Z 2026-06-29T06:04:07.500Z
bit-gitlab-2026-5796 Incorrect Authorization in GitLab 2026-06-29T06:02:12.651Z 2026-06-29T06:04:07.500Z
bit-gitlab-2026-5309 Authorization Bypass Through User-Controlled Key in GitLab 2026-06-29T06:02:09.947Z 2026-06-29T06:04:07.500Z
bit-gitlab-2026-3176 Missing Authorization in GitLab 2026-06-29T06:01:47.612Z 2026-06-29T06:04:07.500Z
bit-gitlab-2026-2238 Missing Authorization in GitLab 2026-06-29T06:01:30.675Z 2026-06-29T06:04:07.500Z
bit-gitlab-2026-1606 Improper Control of Generation of Code ('Code Injection') in GitLab 2026-06-29T06:01:15.000Z 2026-06-29T06:04:07.500Z
bit-gitlab-2026-12635 Reliance on Reverse DNS Resolution for a Security-Critical Action in GitLab 2026-06-29T06:01:01.803Z 2026-06-29T06:04:07.500Z
bit-gitlab-2026-12053 Insertion of Sensitive Information into Log File in GitLab 2026-06-29T06:00:59.147Z 2026-06-29T06:04:07.500Z
bit-gitlab-2026-11379 Incorrect Authorization in GitLab 2026-06-29T06:00:55.333Z 2026-06-29T06:04:07.500Z
bit-gitlab-2026-10712 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab 2026-06-29T06:00:46.080Z 2026-06-29T06:04:07.500Z
bit-gitlab-2026-10086 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab 2026-06-29T06:00:42.268Z 2026-06-29T06:04:07.500Z
bit-gitlab-2026-0934 Incorrect Authorization in GitLab 2026-06-29T06:00:39.725Z 2026-06-29T06:04:07.500Z
bit-gitea-2026-20912 Gitea: Cross-Repository Authorization Bypass via Release Attachment Linking Leads to Private Attachment Disclosure 2026-01-30T08:40:49.607Z 2026-06-29T06:04:07.500Z
ID Description Published Updated
cleanstart-2026-lx00456 url 2026-06-10T00:47:54.637397Z 2026-06-09T07:38:09Z
cleanstart-2026-gz11549 Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger excessive CPU exhaustion and memory allocations 2026-06-10T01:03:54.943567Z 2026-06-09T07:26:31Z
cleanstart-2026-em89202 OpenTelemetry-Go is the Go implementation of OpenTelemetry 2026-06-10T00:54:54.613080Z 2026-06-09T07:21:35Z
cleanstart-2026-hm14899 url 2026-06-10T01:00:54.960504Z 2026-06-09T07:13:16Z
cleanstart-2026-ex51963 Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU 2026-06-10T01:00:54.827821Z 2026-06-09T07:02:56Z
cleanstart-2026-hn49173 Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU 2026-06-10T01:02:24.631492Z 2026-06-09T07:02:07Z
cleanstart-2026-jn91167 Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU 2026-06-10T01:02:24.738972Z 2026-06-09T07:00:50Z
cleanstart-2026-ft24360 Flask is a web server gateway interface (WSGI) web application framework 2026-06-10T01:08:55.464614Z 2026-06-09T06:47:38Z
cleanstart-2026-wo73902 Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU 2026-06-10T01:03:54.739413Z 2026-06-09T06:38:43Z
cleanstart-2026-df67461 Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU 2026-06-10T01:03:24.802338Z 2026-06-09T06:38:02Z
cleanstart-2026-vn16911 ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only label 2026-06-10T01:16:28.112574Z 2026-06-09T06:34:59Z
cleanstart-2026-bl76821 During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed handshake, the resumed handshake may succ... 2026-06-10T01:04:24.950530Z 2026-06-09T06:34:47Z
cleanstart-2026-vq22894 Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU 2026-06-10T01:04:54.790348Z 2026-06-09T06:34:24Z
cleanstart-2026-kg30406 Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU 2026-06-10T01:04:54.659789Z 2026-06-09T06:30:58Z
cleanstart-2026-ue70720 Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU 2026-06-10T01:05:24.634627Z 2026-06-09T06:27:27Z
cleanstart-2026-pu64425 Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU 2026-06-10T01:05:24.697903Z 2026-06-09T06:25:45Z
cleanstart-2026-it61881 Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU 2026-06-10T01:05:54.646913Z 2026-06-09T06:19:50Z
cleanstart-2026-lj67798 Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU 2026-06-10T01:05:54.764046Z 2026-06-09T06:19:08Z
cleanstart-2026-wo91797 Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU 2026-06-10T01:06:24.611603Z 2026-06-09T06:18:18Z
cleanstart-2026-je84467 Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU 2026-06-10T01:06:24.663418Z 2026-06-09T06:16:10Z
cleanstart-2026-cp20786 Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU 2026-06-10T01:14:55.975405Z 2026-06-09T06:14:32Z
cleanstart-2026-fu07345 Security fixes for CVE-2024-12797, CVE-2024-52303, CVE-2024-52304, CVE-2024-56201, CVE-2024-56326, CVE-2025-24023, CVE-2025-27516, CVE-2025-32962, CVE-2025-43859, CVE-2025-4565, CVE-2025-53643, CVE-2025-57804, CVE-2025-58065, CVE-2025-68480, CVE-2025-69223, CVE-2025-69224, CVE-2025-69225, CVE-2025-69226, CVE-2025-69227, CVE-2025-69228, CVE-2025-69229, CVE-2025-69230, CVE-2026-0994, CVE-2026-21226, CVE-2026-22815, CVE-2026-23490, CVE-2026-26007, CVE-2026-27205, CVE-2026-34073, CVE-2026-34513, CVE-2026-34514, CVE-2026-34515, CVE-2026-34516, CVE-2026-34517, CVE-2026-34518, CVE-2026-34519, CVE-2026-34520, CVE-2026-34525, CVE-2026-41066, CVE-2026-41205, CVE-2026-44307, CVE-2026-44405, CVE-2026-44503, CVE-2026-45409, ghsa-27jp-wm6q-gp25, ghsa-27mf-ghqm-j3j8, ghsa-29h4-r29x-hchv, ghsa-2g68-c3qc-8985, ghsa-2h4p-vjrc-8xpq, ghsa-2vrm-gr82-f7m5, ghsa-2xpw-w6gg-jr37, ghsa-38jv-5279-wg99, ghsa-3wq7-rqq7-wx6j, ghsa-428g-f7cq-pgp5, ghsa-5239-wwwm-4pmq, ghsa-54jq-c3m8-4m76, ghsa-58pv-8j8x-9vj2, ghsa-5rjg-fvgr-3xxf, ghsa-63hf-3vf5-4wqf, ghsa-63vm-454h-vhhq, ghsa-65pc-fj4g-8rjx, ghsa-68rp-wp8r-4726, ghsa-6jhg-hg63-jvvf, ghsa-6mq8-rvhq-8wgg, ghsa-752w-5fwx-jx9f, ghsa-765j-9r45-w2q2, ghsa-78cv-mqj4-43f7, ghsa-79v4-65xg-pq4g, ghsa-7cx3-6m66-7c5m, ghsa-7gcm-g887-7qv7, ghsa-7j59-v9qr-6fq9, ghsa-847f-9342-265h, ghsa-8495-4g3g-x7pr, ghsa-87hc-h4r5-73f7, ghsa-8qvm-5x2c-j2w7, ghsa-8rrh-rw8j-w5fx, ghsa-8w49-h785-mj3c, ghsa-9548-qrrj-x5pj, ghsa-966j-vmvw-g2g9, ghsa-9hjg-9r4m-mvj7, ghsa-c427-h43c-vf67, ghsa-cpwx-vrp4-4pq7, ghsa-f9vj-2wh5-fj8j, ghsa-fh55-r93g-j68g, ghsa-fqwm-6jpj-5wxc, ghsa-g84x-mcqj-x9qq, ghsa-gc5v-m9x4-r6x2, ghsa-gm62-xv2j-4w53, ghsa-gmj6-6f8f-6699, ghsa-h4gh-qq45-vh27, ghsa-hcc4-c3v8-rx92, ghsa-hgf8-39gv-g3f2, ghsa-hrfv-mqp8-q5rw, ghsa-jm66-cg57-jjv5, ghsa-jr27-m4p2-rc6r, ghsa-m5qp-6w8w-w647, ghsa-mf9w-mj56-hr94, ghsa-mrfv-m5wm-5w6w, ghsa-mwh4-6h8g-pg8w, ghsa-p8q5-cvwx-wvwp, ghsa-p998-jp59-783m, ghsa-pq67-6m6q-mj2v, ghsa-q2x7-8rv6-6q7h, ghsa-q34m-jh98-gwm2, ghsa-qccp-gfcp-xxvc, ghsa-qjxf-f2mg-c6mc, ghsa-r244-wg5g-6w2r, ghsa-r6ph-v2qm-q3c2, ghsa-v92g-xgxw-vvmm, ghsa-vfmq-68hx-4jfw, ghsa-vqfr-h8mv-ghfj, ghsa-w2fm-2cpv-w7v5 applied in versions: 2.10.3-r0, 2.10.3-r2 2026-06-08T12:34:30.162472Z 2026-06-07T16:46:23Z
cleanstart-2026-cq05396 Security fixes for CVE-2025-32962, CVE-2025-58065, CVE-2026-22815, CVE-2026-25645, CVE-2026-26007, CVE-2026-27205, CVE-2026-27459, CVE-2026-30922, CVE-2026-31958, CVE-2026-32597, CVE-2026-33936, CVE-2026-34513, CVE-2026-34514, CVE-2026-34515, CVE-2026-34516, CVE-2026-34517, CVE-2026-34518, CVE-2026-34519, CVE-2026-34520, CVE-2026-34525, CVE-2026-35536, CVE-2026-39892, CVE-2026-41066, CVE-2026-41205, CVE-2026-41425, CVE-2026-42561, CVE-2026-44307, CVE-2026-44431, CVE-2026-44432, CVE-2026-44503, CVE-2026-44681, CVE-2026-45309, CVE-2026-4539, CVE-2026-45409, CVE-2026-48522, CVE-2026-48523, CVE-2026-48524, CVE-2026-48525, CVE-2026-48526, CVE-2026-8838, ghsa-78cv-mqj4-43f7, ghsa-7j59-v9qr-6fq9 applied in versions: 2.11.0-r2, 2.11.2-r1, 2.11.2-r2, 2.11.2-r3 2026-06-08T12:19:32.128434Z 2026-06-07T16:46:03Z
cleanstart-2026-mr94452 Security fixes for CVE-2023-46136, CVE-2024-12797, CVE-2024-34069, CVE-2024-49766, CVE-2024-49767, CVE-2025-62727, CVE-2025-66221, CVE-2026-0994, CVE-2026-21860, CVE-2026-22815, CVE-2026-25645, CVE-2026-26007, CVE-2026-27199, CVE-2026-27205, CVE-2026-27448, CVE-2026-27459, CVE-2026-30922, CVE-2026-31958, CVE-2026-32597, CVE-2026-34073, CVE-2026-34513, CVE-2026-34514, CVE-2026-34515, CVE-2026-34516, CVE-2026-34517, CVE-2026-34518, CVE-2026-34519, CVE-2026-34520, CVE-2026-34525, CVE-2026-35536, CVE-2026-40217, CVE-2026-40347, CVE-2026-41066, CVE-2026-44307, CVE-2026-44431, CVE-2026-44432, CVE-2026-44681, CVE-2026-45309, CVE-2026-4539, CVE-2026-48522, CVE-2026-48523, CVE-2026-48524, CVE-2026-48525, CVE-2026-48526, CVE-2026-48710, CVE-2026-8838, ghsa-29h4-r29x-hchv, ghsa-29vq-49wr-vm6x, ghsa-2g68-c3qc-8985, ghsa-2h4p-vjrc-8xpq, ghsa-2vrm-gr82-f7m5, ghsa-3wq7-rqq7-wx6j, ghsa-5239-wwwm-4pmq, ghsa-53mr-6c8q-9789, ghsa-63hf-3vf5-4wqf, ghsa-68rp-wp8r-4726, ghsa-752w-5fwx-jx9f, ghsa-78cv-mqj4-43f7, ghsa-79v4-65xg-pq4g, ghsa-7f5h-v6xp-fcq8, ghsa-7gcm-g887-7qv7, ghsa-87hc-h4r5-73f7, ghsa-966j-vmvw-g2g9, ghsa-c427-h43c-vf67, ghsa-f9vj-2wh5-fj8j, ghsa-fqwm-6jpj-5wxc, ghsa-g794-3fmp-753h, ghsa-gc5v-m9x4-r6x2, ghsa-h4gh-qq45-vh27, ghsa-hcc4-c3v8-rx92, ghsa-hgf8-39gv-g3f2, ghsa-hrfv-mqp8-q5rw, ghsa-jj8c-mmj3-mmgv, ghsa-jjhc-v7c2-5hh6, ghsa-jr27-m4p2-rc6r, ghsa-m5qp-6w8w-w647, ghsa-m959-cc7f-wv43, ghsa-mf9v-mfxr-j63j, ghsa-mj87-hwqh-73pj, ghsa-mwh4-6h8g-pg8w, ghsa-p998-jp59-783m, ghsa-q34m-jh98-gwm2, ghsa-qccp-gfcp-xxvc, ghsa-qjxf-f2mg-c6mc, ghsa-r6ph-v2qm-q3c2, ghsa-r95x-qfjj-fjj2, ghsa-v92g-xgxw-vvmm, ghsa-vfmq-68hx-4jfw, ghsa-w2fm-2cpv-w7v5, ghsa-wxxx-gvqv-xp7p, ghsa-xqmj-j6mv-4862 applied in versions: 3.1.8-r0, 3.1.8-r1, 3.1.8-r2, 3.1.8-r3 2026-06-08T12:29:26.603264Z 2026-06-07T16:45:27Z
cleanstart-2026-az09261 Security fixes for CVE-2023-46136, CVE-2024-12797, CVE-2024-34069, CVE-2024-49766, CVE-2024-49767, CVE-2025-62727, CVE-2025-66221, CVE-2026-0994, CVE-2026-21860, CVE-2026-22815, CVE-2026-25645, CVE-2026-26007, CVE-2026-27199, CVE-2026-27205, CVE-2026-27448, CVE-2026-27459, CVE-2026-30922, CVE-2026-31958, CVE-2026-32597, CVE-2026-34073, CVE-2026-34513, CVE-2026-34514, CVE-2026-34515, CVE-2026-34516, CVE-2026-34517, CVE-2026-34518, CVE-2026-34519, CVE-2026-34520, CVE-2026-34525, CVE-2026-35536, CVE-2026-40217, CVE-2026-40347, CVE-2026-41016, CVE-2026-41018, CVE-2026-41066, CVE-2026-42561, CVE-2026-44307, CVE-2026-44405, CVE-2026-44431, CVE-2026-44432, CVE-2026-44681, CVE-2026-45309, CVE-2026-4539, CVE-2026-45409, CVE-2026-48522, CVE-2026-48523, CVE-2026-48524, CVE-2026-48525, CVE-2026-48526, CVE-2026-48710, CVE-2026-8328, CVE-2026-8838, ghsa-29h4-r29x-hchv, ghsa-29vq-49wr-vm6x, ghsa-2g68-c3qc-8985, ghsa-2vrm-gr82-f7m5, ghsa-3wq7-rqq7-wx6j, ghsa-5239-wwwm-4pmq, ghsa-53mr-6c8q-9789, ghsa-63hf-3vf5-4wqf, ghsa-68rp-wp8r-4726, ghsa-752w-5fwx-jx9f, ghsa-78cv-mqj4-43f7, ghsa-79v4-65xg-pq4g, ghsa-7f5h-v6xp-fcq8, ghsa-7gcm-g887-7qv7, ghsa-87hc-h4r5-73f7, ghsa-966j-vmvw-g2g9, ghsa-c427-h43c-vf67, ghsa-f9vj-2wh5-fj8j, ghsa-fqwm-6jpj-5wxc, ghsa-gc5v-m9x4-r6x2, ghsa-h4gh-qq45-vh27, ghsa-hcc4-c3v8-rx92, ghsa-hg6j-4rv6-33pg, ghsa-hgf8-39gv-g3f2, ghsa-hrfv-mqp8-q5rw, ghsa-jj8c-mmj3-mmgv, ghsa-jjhc-v7c2-5hh6, ghsa-jr27-m4p2-rc6r, ghsa-m5qp-6w8w-w647, ghsa-m959-cc7f-wv43, ghsa-mj87-hwqh-73pj, ghsa-mwh4-6h8g-pg8w, ghsa-p998-jp59-783m, ghsa-q34m-jh98-gwm2, ghsa-qjxf-f2mg-c6mc, ghsa-r6ph-v2qm-q3c2, ghsa-v92g-xgxw-vvmm, ghsa-vfmq-68hx-4jfw, ghsa-w2fm-2cpv-w7v5, ghsa-xqmj-j6mv-4862 applied in versions: 3.2.0-r0, 3.2.0-r1, 3.2.1-r2, 3.2.1-r3 2026-06-08T12:29:23.792179Z 2026-06-07T16:45:03Z
cleanstart-2026-yj88870 Security fixes for CVE-2026-42504 applied in versions: 3.31.4-r3 2026-06-08T12:11:56.938373Z 2026-06-07T16:42:42Z
cleanstart-2026-ap10784 Security fixes for CVE-2026-27145, CVE-2026-29181, CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32288, CVE-2026-32289, CVE-2026-33186, CVE-2026-33810, CVE-2026-33811, CVE-2026-33814, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39827, CVE-2026-39828, CVE-2026-39829, CVE-2026-39830, CVE-2026-39831, CVE-2026-39832, CVE-2026-39833, CVE-2026-39834, CVE-2026-39835, CVE-2026-39836, CVE-2026-39883, CVE-2026-42499, CVE-2026-42504, CVE-2026-42507, CVE-2026-42508, CVE-2026-46595, CVE-2026-46597, CVE-2026-46598, ghsa-p77j-4mvh-x3m3 applied in versions: 3.30.7-r0, 3.30.7-r1, 3.30.7-r2, 3.30.7-r3 2026-06-08T12:17:22.012878Z 2026-06-07T16:42:16Z
cleanstart-2026-cn27900 Security fixes for CVE-2025-63811, CVE-2026-1229, CVE-2026-24051, CVE-2026-25680, CVE-2026-25681, CVE-2026-26958, CVE-2026-27136, CVE-2026-27145, CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32288, CVE-2026-32289, CVE-2026-32952, CVE-2026-33186, CVE-2026-33810, CVE-2026-33811, CVE-2026-33814, CVE-2026-33816, CVE-2026-34986, CVE-2026-39817, CVE-2026-39819, CVE-2026-39820, CVE-2026-39821, CVE-2026-39823, CVE-2026-39824, CVE-2026-39825, CVE-2026-39826, CVE-2026-39827, CVE-2026-39828, CVE-2026-39829, CVE-2026-39830, CVE-2026-39831, CVE-2026-39832, CVE-2026-39833, CVE-2026-39834, CVE-2026-39835, CVE-2026-39836, CVE-2026-39883, CVE-2026-41602, CVE-2026-41889, CVE-2026-42499, CVE-2026-42501, CVE-2026-42502, CVE-2026-42504, CVE-2026-42506, CVE-2026-42507, CVE-2026-42508, CVE-2026-44503, CVE-2026-46595, CVE-2026-46597, CVE-2026-46598, ghsa-78h2-9frx-2jm8, ghsa-7j59-v9qr-6fq9, ghsa-j88v-2chj-qfwx, ghsa-p77j-4mvh-x3m3, ghsa-pjcq-xvwq-hhpj, ghsa-wf45-q9ch-q8gh, ghsa-xmrv-pmrh-hhx2 applied in versions: 1.20.4-r0, 1.20.4-r1, 1.20.4-r2, 1.20.4-r3, 1.20.4-r4, 1.20.4-r5, 1.20.4-r6, 1.21.4-r0 2026-06-08T12:27:11.545162Z 2026-06-05T11:41:04Z
cleanstart-2026-in26303 Security fixes for CVE-2026-25680, CVE-2026-25681, CVE-2026-26958, CVE-2026-27145, CVE-2026-29181, CVE-2026-32952, CVE-2026-33186, CVE-2026-33487, CVE-2026-33810, CVE-2026-33814, CVE-2026-34986, CVE-2026-39821, CVE-2026-39834, CVE-2026-42504, CVE-2026-42507, CVE-2026-42508, CVE-2026-46595, ghsa-78h2-9frx-2jm8 applied in versions: 2.44.0-r0, 2.44.0-r1, 2.44.0-r2, 2.44.0-r3, 2.44.0-r4 2026-06-08T12:22:51.546946Z 2026-06-05T11:35:19Z
cleanstart-2026-sy48547 Security fixes for CVE-2026-25680, CVE-2026-25681, CVE-2026-27140, CVE-2026-27143, CVE-2026-27144, CVE-2026-27145, CVE-2026-29181, CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32288, CVE-2026-32289, CVE-2026-32952, CVE-2026-33186, CVE-2026-33487, CVE-2026-33810, CVE-2026-33811, CVE-2026-33814, CVE-2026-34986, CVE-2026-39817, CVE-2026-39819, CVE-2026-39820, CVE-2026-39821, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39834, CVE-2026-39836, CVE-2026-42499, CVE-2026-42501, CVE-2026-42504, CVE-2026-42507, CVE-2026-42508, CVE-2026-46595, ghsa-78h2-9frx-2jm8, ghsa-mh2q-q3fh-2475, ghsa-pjcq-xvwq-hhpj applied in versions: 2.45.1-r0, 2.45.1-r1, 2.45.1-r2, 2.45.1-r3, 2.45.1-r4 2026-06-08T12:28:49.335173Z 2026-06-05T11:34:59Z
ID Description Published Updated
drupal-contrib-2026-039 2026-06-03T16:10:48.000Z 2026-06-03T16:10:48.000Z
drupal-contrib-2026-038 2026-05-27T18:32:18.000Z 2026-05-27T18:32:18.000Z
drupal-contrib-2026-034 2026-05-13T17:16:59.000Z 2026-05-13T18:16:36.000Z
drupal-contrib-2026-037 2026-05-13T17:19:25.000Z 2026-05-13T17:19:25.000Z
drupal-contrib-2026-036 2026-05-13T17:18:29.000Z 2026-05-13T17:18:29.000Z
drupal-contrib-2026-035 2026-05-13T17:17:42.000Z 2026-05-13T17:17:42.000Z
drupal-contrib-2026-033 2026-04-22T17:47:43.000Z 2026-04-22T17:47:43.000Z
drupal-contrib-2026-032 2026-04-08T16:09:54.000Z 2026-04-10T16:51:06.000Z
drupal-contrib-2026-031 2026-04-01T16:38:14.000Z 2026-04-02T14:13:13.000Z
drupal-contrib-2026-029 2026-03-11T16:35:02.000Z 2026-03-26T19:50:52.000Z
drupal-contrib-2026-028 2026-03-11T16:33:14.000Z 2026-03-26T19:43:59.000Z
drupal-contrib-2026-030 2026-03-18T16:10:00.000Z 2026-03-18T16:10:00.000Z
drupal-contrib-2026-015 2026-02-25T18:47:57.000Z 2026-03-17T13:20:54.000Z
drupal-contrib-2026-024 2026-03-04T17:59:51.000Z 2026-03-05T14:03:05.000Z
drupal-contrib-2026-027 2026-03-04T18:02:59.000Z 2026-03-04T18:02:59.000Z
drupal-contrib-2026-026 2026-03-04T18:02:14.000Z 2026-03-04T18:02:14.000Z
drupal-contrib-2026-025 2026-03-04T18:00:41.000Z 2026-03-04T18:00:41.000Z
drupal-contrib-2026-023 2026-03-04T17:58:55.000Z 2026-03-04T17:58:55.000Z
drupal-contrib-2026-022 2026-03-04T17:57:58.000Z 2026-03-04T17:57:58.000Z
drupal-contrib-2026-021 2026-03-04T17:56:18.000Z 2026-03-04T17:56:18.000Z
drupal-contrib-2026-020 2026-03-04T17:54:27.000Z 2026-03-04T17:54:27.000Z
drupal-contrib-2026-016 2026-02-25T18:49:59.000Z 2026-02-25T19:30:03.000Z
drupal-contrib-2026-019 2026-02-25T18:51:43.000Z 2026-02-25T18:51:43.000Z
drupal-contrib-2026-018 2026-02-25T18:51:26.000Z 2026-02-25T18:51:26.000Z
drupal-contrib-2026-017 2026-02-25T18:51:01.000Z 2026-02-25T18:51:01.000Z
drupal-contrib-2026-014 2026-02-25T18:46:10.000Z 2026-02-25T18:46:10.000Z
drupal-contrib-2026-013 2026-02-25T18:45:13.000Z 2026-02-25T18:45:13.000Z
drupal-contrib-2026-012 2026-02-25T18:44:38.000Z 2026-02-25T18:44:38.000Z
drupal-contrib-2026-011 2026-02-25T18:43:32.000Z 2026-02-25T18:43:32.000Z
drupal-contrib-2026-010 2026-02-11T16:54:18.000Z 2026-02-25T17:17:46.000Z
ID Description Updated
ID Description Updated
ts-2023-003 TS-2023-003 2023-03-22T00:00
ts-2023-002 TS-2023-002 2023-01-24T00:00
ts-2023-001 TS-2023-001 2023-01-17T00:00
ts-2022-005 TS-2022-005 2022-11-21T00:00
ts-2022-004 TS-2022-004 2022-11-21T00:00
ts-2022-003 TS-2022-003 2022-06-14T00:00
ts-2022-002 TS-2022-002 2022-05-11T00:00
ts-2022-001 TS-2022-001 2022-02-07T00:00
ID Description
ID Description Published Updated
cnvd-2026-25140 Huawei EMUI和Huawei HarmonyOS授权问题漏洞 2026-06-11 2026-06-24
cnvd-2026-25139 Huawei HarmonyOS授权问题漏洞(CNVD-2026-25139) 2026-06-11 2026-06-24
cnvd-2026-25138 Huawei HarmonyOS print模块权限控制漏洞 2026-06-11 2026-06-24
cnvd-2026-25137 Huawei HarmonyOS IPC模块越界写入漏洞(CNVD-2026-25137) 2026-06-11 2026-06-24
cnvd-2026-25124 Google Chrome输入验证错误漏洞(CNVD-2026-25124) 2026-06-15 2026-06-24
cnvd-2026-25123 Google Chrome资源管理错误漏洞(CNVD-2026-25123) 2026-06-15 2026-06-24
cnvd-2026-25122 Google Chrome资源管理错误漏洞(CNVD-2026-25122) 2026-06-15 2026-06-24
cnvd-2026-25121 Google Chrome输入验证错误漏洞(CNVD-2026-25121) 2026-06-15 2026-06-24
cnvd-2026-25120 Google Chrome输入验证错误漏洞(CNVD-2026-25120) 2026-06-15 2026-06-24
cnvd-2026-25119 Google Chrome Codecs堆缓冲区溢出漏洞(CNVD-2026-25119) 2026-06-15 2026-06-24
cnvd-2026-25118 Google Chrome Video组件缓冲区溢出漏洞(CNVD-2026-25118) 2026-06-15 2026-06-24
cnvd-2026-25117 Google Chrome GPU资源管理错误漏洞(CNVD-2026-25117) 2026-06-15 2026-06-24
cnvd-2026-25116 Google Chrome VideoCapture越界读取漏洞(CNVD-2026-25116) 2026-06-15 2026-06-24
cnvd-2026-25115 Google Chrome Views组件资源管理错误漏洞(CNVD-2026-25115) 2026-06-15 2026-06-24
cnvd-2026-25114 OpenClaw路径遍历漏洞(CNVD-2026-25114) 2026-06-22 2026-06-23
cnvd-2026-25113 OpenClaw授权问题漏洞(CNVD-2026-25113) 2026-06-22 2026-06-23
cnvd-2026-24919 Microsoft Hyper-V代码执行漏洞(CNVD-2026-24919) 2026-06-11 2026-06-23
cnvd-2026-24918 Microsoft Hyper-V代码执行漏洞(CNVD-2026-24918) 2026-06-11 2026-06-23
cnvd-2026-24917 Microsoft Excel信息泄露漏洞(CNVD-2026-24917) 2026-06-11 2026-06-23
cnvd-2026-24916 Microsoft Excel代码执行漏洞(CNVD-2026-24916) 2026-06-11 2026-06-23
cnvd-2026-24915 Microsoft Excel代码执行漏洞(CNVD-2026-24915) 2026-06-11 2026-06-23
cnvd-2026-24914 Microsoft Excel信息泄露漏洞(CNVD-2026-24914) 2026-06-11 2026-06-23
cnvd-2026-24913 Microsoft Excel代码执行漏洞(CNVD-2026-24913) 2026-06-11 2026-06-23
cnvd-2026-24912 Microsoft Office代码执行漏洞(CNVD-2026-24912) 2026-06-11 2026-06-23
cnvd-2026-24910 Adobe Experience Manager跨站脚本漏洞(CNVD-2026-24910) 2026-06-11 2026-06-22
cnvd-2026-24909 Adobe Experience Manager跨站脚本漏洞(CNVD-2026-24909) 2026-06-11 2026-06-22
cnvd-2026-24908 Adobe Experience Manager跨站脚本漏洞(CNVD-2026-24908) 2026-06-11 2026-06-22
cnvd-2026-24907 Adobe Experience Manager跨站脚本漏洞(CNVD-2026-24907) 2026-06-11 2026-06-22
cnvd-2026-24906 Adobe Experience Manager跨站脚本漏洞(CNVD-2026-24906) 2026-06-11 2026-06-22
cnvd-2026-24905 Adobe Experience Manager跨站脚本漏洞(CNVD-2026-24905) 2026-06-11 2026-06-22
ID Description Published Updated
bdu:2026-01814 Уязвимость программного обеспечения Microsoft ACI Confidential Containers, связанная с хр… 16.02.2026 16.02.2026
bdu:2026-01813 Уязвимость программного обеспечения Azure IoT Explorer, связанная с привязкой к открытым … 16.02.2026 16.02.2026
bdu:2026-01812 Уязвимость почтового сервера Microsoft Exchange Server, связанная с ошибками представлени… 16.02.2026 16.02.2026
bdu:2026-01811 Уязвимость службы аналитики данных Azure HDInsights, связанная с непринятием мер по защит… 16.02.2026 16.02.2026
bdu:2026-01810 Уязвимость редактора электронных таблиц Microsoft Excel пакетов программ Microsoft Office… 16.02.2026 16.02.2026
bdu:2026-01809 Уязвимость службы хранилища данных Windows Storage Services операционных систем Windows, … 16.02.2026 16.02.2026
bdu:2026-01808 Уязвимость реализации протокола NTLM операционных систем Windows, позволяющая нарушителю … 16.02.2026 16.02.2026
bdu:2026-01807 Уязвимость системы аппаратной виртуализации Hyper-V операционной системы Windows, позволя… 16.02.2026 16.02.2026
bdu:2026-01806 Уязвимость механизма CCF (Cluster Client Failover) операционных систем Windows, позволяющ… 16.02.2026 16.02.2026
bdu:2026-01805 Уязвимость драйвера HTTP.sys операционных систем Windows, позволяющая нарушителю повысить… 16.02.2026 16.02.2026
bdu:2026-01804 Уязвимость ядра операционных систем Windows, позволяющая нарушителю повысить свои привилегии 16.02.2026 16.02.2026
bdu:2026-01803 Уязвимость драйвера WinSock операционных систем Windows, позволяющая нарушителю повысить … 16.02.2026 16.02.2026
bdu:2026-01802 Уязвимость ядра операционных систем Windows, позволяющая нарушителю повысить свои привилегии 16.02.2026 16.02.2026
bdu:2026-01801 Уязвимость драйвера HTTP.sys операционных систем Windows, позволяющая нарушителю повысить… 16.02.2026 16.02.2026
bdu:2026-01800 Уязвимость ядра операционных систем Windows, позволяющая нарушителю повысить свои привилегии 16.02.2026 16.02.2026
bdu:2026-01799 Уязвимость ядра операционных систем Windows, позволяющая нарушителю раскрыть защищаемую и… 16.02.2026 16.02.2026
bdu:2026-01798 Уязвимость программы для шифрования информации и создания электронных цифровых подписей G… 16.02.2026 16.02.2026
bdu:2026-01797 Уязвимость функции _bfd_elf_slurp_version_tables() компонента bfd/elf.c программного сред… 16.02.2026 16.02.2026
bdu:2026-01796 Уязвимость компонента libbfd.c программного средства разработки GNU Binutils, позволяющая… 16.02.2026 16.02.2026
bdu:2026-01795 Уязвимость программного средства управления конечными точками Ivanti Endpoint Manager, св… 16.02.2026 16.02.2026
bdu:2026-01794 Уязвимость функции usbg_make_tpg() модуля drivers/usb/gadget/function/f_tcm.c драйвера га… 16.02.2026 16.02.2026
bdu:2026-01792 Уязвимость программного средства локальной инфраструктуры Azure Local, связанная с ошибка… 13.02.2026 16.02.2026
bdu:2026-01727 Уязвимость функции оценки избирательности расширения Intarray системы управления базами д… 11.02.2026 16.02.2026
bdu:2026-01726 Уязвимость функции обработки типов данных oidvector системы управления базами данных Post… 11.02.2026 16.02.2026
bdu:2026-01724 Уязвимость компонента pg_trgm системы управления базами данных PostgreSQL, позволяющая на… 11.02.2026 16.02.2026
bdu:2026-01723 Уязвимость системы управления базами данных PostgreSQL, связанная с неверным индексирован… 11.02.2026 16.02.2026
bdu:2026-01722 Уязвимость компонента pgcrypto системы управления базами данных PostgreSQL, позволяющая н… 11.02.2026 16.02.2026
bdu:2026-01017 Уязвимость ядра операционной системы Linux, позволяющая нарушителю выполнить произвольный код 30.01.2026 16.02.2026
bdu:2025-15831 Уязвимость программного обеспечения для настройки безопасности astra-safepolicy, связанна… 15.12.2025 16.02.2026
bdu:2025-15830 Уязвимость компонента net ядра операционной системы Linux, позволяющая нарушителю вызвать… 15.12.2025 16.02.2026
ID Description Published Updated
certfr-2026-avi-0799 Multiples vulnérabilités dans GitLab 2026-06-25T00:00:00.000000 2026-06-25T00:00:00.000000
certfr-2026-avi-0798 Multiples vulnérabilités dans Microsoft Azure Linux 2026-06-24T00:00:00.000000 2026-06-24T00:00:00.000000
certfr-2026-avi-0797 Multiples vulnérabilités dans cURL et libcurl 2026-06-24T00:00:00.000000 2026-06-24T00:00:00.000000
certfr-2026-avi-0796 Multiples vulnérabilités dans Tenable Identity Exposure 2026-06-24T00:00:00.000000 2026-06-24T00:00:00.000000
certfr-2026-avi-0795 Multiples vulnérabilités dans Squid 2026-06-23T00:00:00.000000 2026-06-23T00:00:00.000000
certfr-2026-avi-0794 Multiples vulnérabilités dans Moodle 2026-06-23T00:00:00.000000 2026-06-23T00:00:00.000000
certfr-2026-avi-0793 Multiples vulnérabilités dans Postfix 2026-06-22T00:00:00.000000 2026-06-22T00:00:00.000000
certfr-2026-avi-0792 Multiples vulnérabilités dans les produits Microsoft 2026-06-22T00:00:00.000000 2026-06-22T00:00:00.000000
certfr-2026-avi-0791 Multiples vulnérabilités dans Microsoft Edge 2026-06-22T00:00:00.000000 2026-06-22T00:00:00.000000
certfr-2026-avi-0790 Vulnérabilité dans CPython pour Windows 2026-06-22T00:00:00.000000 2026-06-22T00:00:00.000000
certfr-2026-avi-0789 Vulnérabilité dans PaperCut Print Deploy Client 2026-06-22T00:00:00.000000 2026-06-22T00:00:00.000000
certfr-2026-avi-0788 Multiples vulnérabilités dans les produits IBM 2026-06-19T00:00:00.000000 2026-06-19T00:00:00.000000
certfr-2026-avi-0787 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2026-06-19T00:00:00.000000 2026-06-19T00:00:00.000000
certfr-2026-avi-0786 Multiples vulnérabilités dans Node.js 2026-06-19T00:00:00.000000 2026-06-19T00:00:00.000000
certfr-2026-avi-0785 Vulnérabilité dans Traefik 2026-06-19T00:00:00.000000 2026-06-19T00:00:00.000000
certfr-2026-avi-0784 Multiples vulnérabilités dans le noyau Linux de Debian LTS 2026-06-19T00:00:00.000000 2026-06-19T00:00:00.000000
certfr-2026-avi-0783 Multiples vulnérabilités dans Microsoft Azure 2026-06-19T00:00:00.000000 2026-06-19T00:00:00.000000
certfr-2026-avi-0782 Multiples vulnérabilités dans le noyau Linux de SUSE 2026-06-19T00:00:00.000000 2026-06-19T00:00:00.000000
certfr-2026-avi-0781 Multiples vulnérabilités dans le noyau Linux de Red Hat 2026-06-19T00:00:00.000000 2026-06-19T00:00:00.000000
certfr-2026-avi-0780 Vulnérabilité dans Apereo CAS 2026-06-19T00:00:00.000000 2026-06-19T00:00:00.000000
certfr-2026-avi-0779 Multiples vulnérabilités dans Google Pixel 2026-06-19T00:00:00.000000 2026-06-19T00:00:00.000000
certfr-2026-avi-0778 Multiples vulnérabilités dans Google Android 17 2026-06-18T00:00:00.000000 2026-06-18T00:00:00.000000
certfr-2026-avi-0777 Multiples vulnérabilités dans Mattermost Desktop App 2026-06-18T00:00:00.000000 2026-06-18T00:00:00.000000
certfr-2026-avi-0776 Vulnérabilité dans Synacor Zimbra Collaboration 2026-06-18T00:00:00.000000 2026-06-18T00:00:00.000000
certfr-2026-avi-0775 Multiples vulnérabilités dans Nginx 2026-06-18T00:00:00.000000 2026-06-18T00:00:00.000000
certfr-2026-avi-0774 Multiples vulnérabilités dans Splunk AI Toolkit 2026-06-18T00:00:00.000000 2026-06-18T00:00:00.000000
certfr-2026-avi-0773 Multiples vulnérabilités dans les produits Atlassian 2026-06-18T00:00:00.000000 2026-06-18T00:00:00.000000
certfr-2026-avi-0772 Multiples vulnérabilités dans les produits Cisco 2026-06-18T00:00:00.000000 2026-06-18T00:00:00.000000
certfr-2026-avi-0771 Multiples vulnérabilités dans Drupal 2026-06-18T00:00:00.000000 2026-06-18T00:00:00.000000
certfr-2026-avi-0770 Multiples vulnérabilités dans les produits Mitel 2026-06-18T00:00:00.000000 2026-06-18T00:00:00.000000
ID Description Published Updated
certfr-2024-ale-005 [MàJ] Vulnérabilité dans Microsoft Outlook 2024-02-15T00:00:00.000000 2024-04-15T00:00:00.000000
certfr-2024-ale-003 [MàJ] Incident affectant les solutions AnyDesk 2024-02-05T00:00:00.000000 2024-04-15T00:00:00.000000
certfr-2024-ale-001 [MàJ] Multiples vulnérabilités dans Ivanti Connect Secure et Policy Secure Gateways 2024-01-11T00:00:00.000000 2024-04-15T00:00:00.000000
certfr-2024-ale-002 [MàJ] Multiples Vulnérabilités dans GitLab 2024-01-12T00:00:00.000000 2024-02-22T00:00:00.000000
certfr-2023-ale-013 Vulnérabilité dans Apache Struts 2 2023-12-13T00:00:00.000000 2024-02-16T00:00:00.000000
certfr-2023-ale-012 [MàJ] Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway 2023-10-23T00:00:00.000000 2024-02-16T00:00:00.000000
certfr-2023-ale-011 [MàJ] Multiples vulnérabilités dans Cisco IOS XE 2023-10-17T00:00:00.000000 2024-02-16T00:00:00.000000
certfr-2023-ale-010 Multiples vulnérabilités dans Exim 2023-10-02T00:00:00.000000 2024-02-16T00:00:00.000000
certfr-2023-ale-008 [MàJ] Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway 2023-07-19T00:00:00.000000 2024-01-02T00:00:00.000000
certfr-2023-ale-007 [MàJ] Vulnérabilité dans Zimbra Collaboration Suite 2023-07-17T00:00:00.000000 2024-01-02T00:00:00.000000
certfr-2023-ale-006 Vulnérabilité dans les produits Microsoft 2023-07-12T00:00:00.000000 2023-12-12T00:00:00.000000
certfr-2023-ale-009 [MàJ] Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile 2023-07-26T00:00:00.000000 2023-09-15T00:00:00.000000
certfr-2023-ale-005 Synthèse sur l'exploitation d'une vulnérabilité dans MOVEit Transfer 2023-07-05T00:00:00.000000 2023-09-11T00:00:00.000000
certfr-2023-ale-004 Vulnérabilité dans les produits Fortinet 2023-06-13T00:00:00.000000 2023-09-11T00:00:00.000000
certfr-2022-ale-014 Multiples vulnérabilités dans AMI MegaRAC 2022-12-16T00:00:00.000000 2023-09-11T00:00:00.000000
certfr-2023-ale-002 [MàJ] Vulnérabilité dans Microsoft Outlook 2023-03-15T00:00:00.000000 2023-05-11T00:00:00.000000
certfr-2023-ale-003 [MàJ] Compromission de l'application 3CX Desktop App 2023-03-31T00:00:00.000000 2023-04-12T00:00:00.000000
certfr-2023-ale-015 [MàJ] Campagne d'exploitation d'une vulnérabilité affectant VMware ESXi 2023-02-03T00:00:00.000000 2023-03-14T00:00:00.000000
certfr-2023-ale-001 Vulnérabilité dans Fortinet FortiOS 2023-03-14T00:00:00.000000 2023-03-14T00:00:00.000000
certfr-2022-ale-013 [MàJ] Vulnérabilité dans Citrix ADC et Gateway 2022-12-13T00:00:00.000000 2023-03-14T00:00:00.000000
certfr-2022-ale-010 Multiples vulnérabilités dans GLPI 2022-10-07T00:00:00.000000 2023-03-14T00:00:00.000000
certfr-2022-ale-009 [MaJ] Vulnérabilité dans Zimbra Collaboration 2022-10-07T00:00:00.000000 2023-03-14T00:00:00.000000
certfr-2022-ale-008 [MaJ] Multiples vulnérabilités dans Microsoft Exchange 2022-09-30T00:00:00.000000 2023-03-14T00:00:00.000000
certfr-2022-ale-007 Multiples vulnérabilités dans Microsoft Windows 2022-09-16T00:00:00.000000 2023-03-14T00:00:00.000000
certfr-2022-ale-012 [MàJ] Vulnérabilité dans FortiOS SSL-VPN 2022-12-13T00:00:00.000000 2022-12-20T00:00:00.000000
certfr-2022-ale-011 Vulnérabilité dans les produits Fortinet 2022-10-14T00:00:00.000000 2022-10-14T00:00:00.000000
certfr-2022-ale-006 [MàJ] Vulnérabilité dans Atlassian Confluence 2022-06-03T00:00:00.000000 2022-10-07T00:00:00.000000
certfr-2022-ale-002 Vulnérabilité dans VMware Spring Cloud Gateway 2022-03-03T00:00:00.000000 2022-10-07T00:00:00.000000
certfr-2022-ale-005 [MàJ] Vulnérabilité dans Microsoft Windows 2022-05-31T00:00:00.000000 2022-09-16T00:00:00.000000
certfr-2022-ale-004 Vulnérabilité dans F5 BIG-IP 2022-05-11T00:00:00.000000 2022-09-16T00:00:00.000000
ID Description Published Updated
osv-2024-696 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr 2024-07-31T00:03:10.056663Z 2026-06-29T14:29:21.218706Z
osv-2024-641 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr 2024-07-14T00:06:37.034414Z 2026-06-29T14:28:17.365773Z
osv-2024-400 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr 2024-05-02T00:03:16.309384Z 2026-06-29T14:27:58.907643Z
osv-2024-278 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr 2024-04-19T00:12:11.684954Z 2026-06-29T14:27:20.909352Z
osv-2023-319 Heap-buffer-overflow in ZSTD_decompressSequencesLong_bmi2 2023-04-16T14:01:58.406534Z 2026-06-27T14:21:51.285672Z
osv-2026-981 Heap-buffer-overflow in std::__1::__function::__func<grk::FileFormatJP2Decompress::FileFormatJP2Decompre 2026-06-27T00:19:11.500567Z 2026-06-27T00:19:11.500860Z
osv-2026-974 UNKNOWN READ in unsigned long std::__1::__tree<Ogre::VertexDeclaration*, std::__1::less<Ogre::Ve 2026-06-27T00:10:28.246228Z 2026-06-27T00:10:28.246505Z
osv-2026-970 Use-of-uninitialized-value in ogs_cpystrn 2026-06-27T00:01:55.134195Z 2026-06-27T00:01:55.134654Z
osv-2025-202 UNKNOWN READ in _blit_xrgb32_lerp_spans 2025-03-15T00:01:51.127135Z 2026-06-26T14:17:35.998236Z
osv-2023-606 Heap-buffer-overflow in ZSTD_decompressMultiFrame 2023-07-23T14:01:02.159160Z 2026-06-26T14:10:17.847669Z
osv-2023-1129 UNKNOWN READ in HeifPixelImage::overlay 2023-11-09T13:00:44.441721Z 2026-06-26T14:09:39.975161Z
osv-2023-1350 Heap-buffer-overflow in inflate 2023-12-23T00:12:38.562149Z 2026-06-26T14:09:36.990544Z
osv-2021-1070 Heap-buffer-overflow in ZSTD_decompressBlock_internal 2021-07-29T00:01:10.187569Z 2026-06-26T14:05:47.100221Z
osv-2021-1672 Heap-buffer-overflow in blosc_d 2021-12-12T00:01:29.747137Z 2026-06-26T14:05:44.389334Z
osv-2020-2308 Heap-buffer-overflow in derive_collocated_motion_vectors 2021-02-10T00:00:17.357392Z 2026-06-26T14:05:03.011504Z
osv-2022-1134 Heap-buffer-overflow in ndlz8_decompress 2022-11-04T00:02:11.463429Z 2026-06-26T14:04:36.447273Z
osv-2026-969 Heap-use-after-free in Ogre::VertexData::convertPackedColour 2026-06-26T00:10:53.141269Z 2026-06-26T00:10:53.141722Z
osv-2026-481 Security exception in org.apache.lucene.analysis.miscellaneous.ASCIIFoldingFilter.foldToASCII 2026-03-28T00:18:22.245546Z 2026-06-25T14:38:39.641582Z
osv-2025-253 Security exception in org.apache.lucene.analysis.ckb.SoraniNormalizer.normalize 2025-04-03T00:17:24.000398Z 2026-06-25T14:35:08.339881Z
osv-2023-390 Heap-buffer-overflow in sdhci_write 2023-05-12T14:00:08.854823Z 2026-06-25T14:35:03.648487Z
osv-2022-581 Heap-buffer-overflow in megasas_map_sgl 2022-07-14T00:00:45.644503Z 2026-06-25T14:34:59.399771Z
osv-2021-820 UNKNOWN READ in virtio_gpu_disable_scanout 2021-06-02T00:00:31.619765Z 2026-06-25T14:30:43.277249Z
osv-2024-1254 Security exception in org.apache.lucene.util.ArrayUtil.growExact 2024-11-01T00:07:39.301298Z 2026-06-25T14:30:30.755660Z
osv-2022-842 Stack-buffer-overflow in wc_Shake256_Final 2022-09-05T00:00:28.251072Z 2026-06-25T14:24:03.465175Z
osv-2023-107 Heap-buffer-overflow in DecodeBasicOcspResponse 2023-02-25T13:00:07.390537Z 2026-06-25T14:22:50.868185Z
osv-2022-937 Use-after-poison in rx_ip 2022-09-23T00:02:21.434097Z 2026-06-25T14:14:49.506796Z
osv-2022-834 Heap-use-after-free in mk_event_timeout_destroy 2022-09-04T00:00:31.605787Z 2026-06-24T14:20:45.161409Z
osv-2022-1277 Heap-use-after-free in mk_event_timeout_destroy 2023-06-26T14:01:01.876870Z 2026-06-24T14:16:40.793493Z
osv-2026-963 Bad-cast to Ogre::HardwareBuffer from invalid vptr 2026-06-24T00:03:55.603785Z 2026-06-24T00:03:55.604165Z
osv-2023-96 Heap-buffer-overflow in load_buffer 2023-02-23T13:00:28.515290Z 2026-06-23T14:23:28.598822Z
ID Description Published Updated
rustsec-2025-0163 Unsound issue in Trailer 2025-05-04T12:00:00Z 2026-06-10T06:13:29Z
rustsec-2026-0174 `Authorization::value` and `WwwAuthenticate::value` can violate ASCII invariants 2026-03-11T12:00:00Z 2026-06-08T16:24:35Z
rustsec-2026-0173 proc-macro-error2 is unmaintained 2026-06-07T12:00:00Z 2026-06-07T20:48:51Z
rustsec-2024-0370 proc-macro-error is unmaintained 2024-09-01T12:00:00Z 2026-06-07T19:54:51Z
rustsec-2026-0172 Possible use after free when deserializing a SQLite database via `SqliteConnection::deserialize_readonly_database` 2026-06-05T12:00:00Z 2026-06-05T08:35:31Z
rustsec-2026-0171 `logflux` was removed from crates.io for malicious code 2026-06-03T12:00:00Z 2026-06-04T19:46:31Z
rustsec-2026-0170 tide is unmaintained 2026-06-04T12:00:00Z 2026-06-04T19:11:08Z
rustsec-2026-0169 surf is unmaintained 2026-06-04T12:00:00Z 2026-06-04T19:11:08Z
rustsec-2026-0168 `pqcrypto-hqc` is unmaintained: upstream PQClean project being archived 2026-06-04T12:00:00Z 2026-06-04T14:53:59Z
rustsec-2026-0167 `pqcrypto-classicmceliece` is unmaintained: upstream PQClean project being archived 2026-06-04T12:00:00Z 2026-06-04T14:53:59Z
rustsec-2026-0166 `pqcrypto-mldsa` is unmaintained: upstream PQClean project being archived 2026-06-04T12:00:00Z 2026-06-04T14:53:59Z
rustsec-2026-0165 `pqcrypto-falcon` is unmaintained: upstream PQClean project being archived 2026-06-04T12:00:00Z 2026-06-04T14:53:59Z
rustsec-2026-0164 `pqcrypto` is unmaintained: upstream PQClean project being archived 2026-06-04T12:00:00Z 2026-06-04T14:53:59Z
rustsec-2026-0163 `pqcrypto-internals` is unmaintained: upstream PQClean project being archived 2026-06-04T12:00:00Z 2026-06-04T14:53:59Z
rustsec-2026-0162 `pqcrypto-traits` is unmaintained: upstream PQClean project being archived 2026-06-04T12:00:00Z 2026-06-04T14:53:59Z
rustsec-2026-0161 `pqcrypto-mlkem` is unmaintained: upstream PQClean project being archived 2026-06-04T12:00:00Z 2026-06-04T14:53:59Z
rustsec-2026-0160 `pqcrypto-sphincsplus` is unmaintained: upstream PQClean project being archived 2026-06-04T12:00:00Z 2026-06-04T14:53:59Z
rustsec-2026-0159 Sender-binding gaps in to-device messages 2026-06-03T12:00:00Z 2026-06-04T12:02:36Z
rustsec-2026-0158 Incomplete message edit validation in matrix-sdk-ui 2026-06-03T12:00:00Z 2026-06-04T11:56:29Z
rustsec-2026-0157 Several memory corruption issues via safe APIs 2026-06-01T12:00:00Z 2026-06-03T10:42:03Z
rustsec-2026-0156 Bad-free in `MetaCallException::new` 2026-06-01T12:00:00Z 2026-06-03T10:42:03Z
rustsec-2026-0155 `exploration` was removed from crates.io for malicious code 2026-06-02T12:00:00Z 2026-06-03T08:48:05Z
rustsec-2026-0154 Unbounded 32-bit allocation 2026-05-15T12:00:00Z 2026-06-02T09:53:13Z
rustsec-2026-0153 Unchecked `CryptoVec` allocation and growth handling 2026-05-15T12:00:00Z 2026-06-02T09:53:13Z
rustsec-2018-0019 Multiple memory safety issues 2018-06-08T12:00:00Z 2026-06-01T14:16:58Z
rustsec-2026-0152 Use-after-free 2026-05-27T12:00:00Z 2026-06-01T13:19:35Z
rustsec-2026-0150 audiopus_sys is unmaintained 2026-05-21T12:00:00Z 2026-05-27T15:33:53Z
rustsec-2026-0149 WASI path_open(TRUNCATE) bypasses `FilePerms::WRITE` host restriction 2026-05-21T12:00:00Z 2026-05-22T10:02:28Z
rustsec-2025-0162 `VMABuffer::set_data` may allow out-of-bounds writes from safe code 2025-04-23T12:00:00Z 2026-05-20T13:32:31Z
rustsec-2026-0148 OCI layer symlink escape → arbitrary host write 2026-05-16T12:00:00Z 2026-05-20T10:00:58Z