Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-58295 |
8.3 (3.1)
|
Microsoft Edge (Chromium-based) Security Feature Bypas… |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:32.479Z | 2026-07-03T21:26:22.183Z |
| CVE-2026-58294 |
7.5 (3.1)
|
Microsoft Edge (Chromium-based) Remote Code Execution … |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:31.928Z | 2026-07-03T21:26:21.641Z |
| CVE-2026-58293 |
8.1 (3.1)
|
Microsoft Edge (Chromium-based) Remote Code Execution … |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:31.401Z | 2026-07-03T21:26:21.026Z |
| CVE-2026-58292 |
7.5 (3.1)
|
Microsoft Edge (Chromium-based) Remote Code Execution … |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:30.853Z | 2026-07-03T21:26:20.487Z |
| CVE-2026-58290 |
7.5 (3.1)
|
Microsoft Edge (Chromium-based) Remote Code Execution … |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:30.311Z | 2026-07-03T21:26:19.954Z |
| CVE-2026-58289 |
9 (3.1)
|
Microsoft Edge (Chromium-based) Remote Code Execution … |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:29.711Z | 2026-07-03T21:26:19.336Z |
| CVE-2026-58288 |
8.3 (3.1)
|
Microsoft Edge (Chromium-based) Remote Code Execution … |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:24.560Z | 2026-07-03T21:26:18.728Z |
| CVE-2026-58286 |
8.1 (3.1)
|
Microsoft Edge (Chromium-based) Spoofing Vulnerability |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:24.011Z | 2026-07-03T21:26:18.193Z |
| CVE-2026-58285 |
8.3 (3.1)
|
Microsoft Edge (Chromium-based) Remote Code Execution … |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:23.474Z | 2026-07-03T21:26:17.576Z |
| CVE-2026-58284 |
8.3 (3.1)
|
Microsoft Edge (Chromium-based) Remote Code Execution … |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:22.999Z | 2026-07-03T21:26:16.960Z |
| CVE-2026-58278 |
5.4 (3.1)
|
Microsoft Edge (Chromium-based) Spoofing Vulnerability |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:22.461Z | 2026-07-03T21:26:16.499Z |
| CVE-2026-58276 |
7.5 (3.1)
|
Microsoft Edge (Chromium-based) Remote Code Execution … |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:22.006Z | 2026-07-03T21:26:15.883Z |
| CVE-2026-57991 |
7.4 (3.1)
|
Microsoft Edge (Chromium-based) Information Disclosure… |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:21.276Z | 2026-07-03T21:26:15.402Z |
| CVE-2026-57986 |
7.5 (3.1)
|
Microsoft Edge (Chromium-based) Remote Code Execution … |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:20.815Z | 2026-07-03T21:26:14.864Z |
| CVE-2026-57981 |
8.8 (3.1)
|
Microsoft Edge (Chromium-based) Remote Code Execution … |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:20.280Z | 2026-07-03T21:26:14.356Z |
| CVE-2026-57977 |
7.1 (3.1)
|
Microsoft Edge (Chromium-based) Spoofing Vulnerability |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:19.684Z | 2026-07-03T21:26:13.646Z |
| CVE-2026-57974 |
8.8 (3.1)
|
Microsoft Edge (Chromium-based) Remote Code Execution … |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:19.152Z | 2026-07-03T21:26:13.106Z |
| CVE-2026-45488 |
5.4 (3.1)
|
Microsoft Edge (Chromium-based) Spoofing Vulnerability |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:18.605Z | 2026-07-03T21:26:12.565Z |
| CVE-2026-58522 |
6.8 (3.1)
|
Microsoft Edge for Android Information Disclosure Vuln… |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:17.493Z | 2026-07-03T21:26:11.954Z |
| CVE-2026-58299 |
7.5 (3.1)
|
Microsoft Edge for Android Remote Code Execution Vulne… |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:16.879Z | 2026-07-03T21:26:11.487Z |
| CVE-2026-58287 |
8.3 (3.1)
|
Microsoft Edge (Chromium-based) Remote Code Execution … |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:16.144Z | 2026-07-03T21:26:10.850Z |
| CVE-2026-58283 |
8.1 (3.1)
|
Microsoft Edge (Chromium-based) Spoofing Vulnerability |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:15.564Z | 2026-07-03T21:26:10.220Z |
| CVE-2026-58282 |
8.1 (3.1)
|
Microsoft Edge (Chromium-based) Spoofing Vulnerability |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:14.923Z | 2026-07-03T21:26:09.579Z |
| CVE-2026-56646 |
6.5 (3.1)
|
Microsoft Edge (Chromium-based) Spoofing Vulnerability |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:14.383Z | 2026-07-03T21:26:09.024Z |
| CVE-2026-57993 |
7.4 (3.1)
|
Microsoft Edge (Chromium-based) Spoofing Vulnerability |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:13.823Z | 2026-07-03T21:26:08.455Z |
| CVE-2026-57992 |
7.5 (3.1)
|
Microsoft Edge (Chromium-based) Remote Code Execution … |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:13.349Z | 2026-07-03T21:26:07.884Z |
| CVE-2026-57988 |
7.1 (3.1)
|
Microsoft Edge (Chromium-based) Remote Code Execution … |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:12.756Z | 2026-07-03T21:26:07.248Z |
| CVE-2026-57987 |
6.5 (3.1)
|
Microsoft Edge (Chromium-based) Spoofing Vulnerability |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:11.933Z | 2026-07-03T21:26:06.758Z |
| CVE-2026-57985 |
7.6 (3.1)
|
Microsoft Edge (Chromium-based) Remote Code Execution … |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:11.415Z | 2026-07-03T21:26:06.070Z |
| CVE-2026-57984 |
7.5 (3.1)
|
Microsoft Edge (Chromium-based) Remote Code Execution … |
Microsoft |
Microsoft Edge (Chromium-based) |
2026-07-03T20:35:10.727Z | 2026-07-03T21:26:05.546Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2026-58283 | Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) al… | 2026-07-03T21:17:02.943 | 2026-07-03T21:17:02.943 |
| fkie_cve-2026-58282 | Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perfo… | 2026-07-03T21:17:02.820 | 2026-07-03T21:17:02.820 |
| fkie_cve-2026-58278 | Server-side request forgery (ssrf) in Microsoft Edge (Chromium-based) allows an unauthorized attack… | 2026-07-03T21:17:02.707 | 2026-07-03T21:17:02.707 |
| fkie_cve-2026-58276 | Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o… | 2026-07-03T21:17:02.573 | 2026-07-03T21:17:02.573 |
| fkie_cve-2026-57993 | Server-side request forgery (ssrf) in Microsoft Edge (Chromium-based) allows an unauthorized attack… | 2026-07-03T21:17:02.443 | 2026-07-03T21:17:02.443 |
| fkie_cve-2026-57992 | Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o… | 2026-07-03T21:17:02.310 | 2026-07-03T21:17:02.310 |
| fkie_cve-2026-57991 | Improper link resolution before file access ('link following') in Microsoft Edge (Chromium-based) a… | 2026-07-03T21:17:02.180 | 2026-07-03T21:17:02.180 |
| fkie_cve-2026-57988 | Relative path traversal in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execu… | 2026-07-03T21:17:02.023 | 2026-07-03T21:17:02.023 |
| fkie_cve-2026-57987 | Server-side request forgery (ssrf) in Microsoft Edge (Chromium-based) allows an unauthorized attack… | 2026-07-03T21:17:01.903 | 2026-07-03T21:17:01.903 |
| fkie_cve-2026-57986 | Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o… | 2026-07-03T21:17:01.780 | 2026-07-03T21:17:01.780 |
| fkie_cve-2026-57985 | Improper input validation in Microsoft Edge (Chromium-based) allows an unauthorized attacker to exe… | 2026-07-03T21:17:01.663 | 2026-07-03T21:17:01.663 |
| fkie_cve-2026-57984 | Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o… | 2026-07-03T21:17:01.550 | 2026-07-03T21:17:01.550 |
| fkie_cve-2026-57983 | Improper authorization in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass… | 2026-07-03T21:17:01.433 | 2026-07-03T21:17:01.433 |
| fkie_cve-2026-57981 | Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o… | 2026-07-03T21:17:01.313 | 2026-07-03T21:17:01.313 |
| fkie_cve-2026-57977 | Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft E… | 2026-07-03T21:17:01.193 | 2026-07-03T21:17:01.193 |
| fkie_cve-2026-57975 | Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) al… | 2026-07-03T21:17:01.077 | 2026-07-03T21:17:01.077 |
| fkie_cve-2026-57974 | Integer overflow or wraparound in Microsoft Edge (Chromium-based) allows an unauthorized attacker t… | 2026-07-03T21:17:00.957 | 2026-07-03T21:17:00.957 |
| fkie_cve-2026-56646 | Exposure of sensitive information to an unauthorized actor in Microsoft Edge (Chromium-based) allow… | 2026-07-03T21:17:00.783 | 2026-07-03T21:17:00.783 |
| fkie_cve-2026-56645 | Heap-based buffer overflow in Microsoft Edge (Chromium-based) allows an unauthorized attacker to ex… | 2026-07-03T21:17:00.670 | 2026-07-03T21:17:00.670 |
| fkie_cve-2026-55945 | Concurrent execution using shared resource with improper synchronization ('race condition') in Micr… | 2026-07-03T21:17:00.550 | 2026-07-03T21:17:00.550 |
| fkie_cve-2026-45489 | Microsoft Edge (Chromium-based) Spoofing Vulnerability | 2026-07-03T21:17:00.307 | 2026-07-03T21:17:00.307 |
| fkie_cve-2026-45488 | User interface (ui) misrepresentation of critical information in Microsoft Edge (Chromium-based) al… | 2026-07-03T21:17:00.183 | 2026-07-03T21:17:00.183 |
| fkie_cve-2026-28744 | Gitea versions up to and including 1.26.1 allow Git smart HTTP requests authenticated with bearer t… | 2026-07-03T21:17:00.003 | 2026-07-03T21:17:00.003 |
| fkie_cve-2026-28740 | Gitea versions up to and including 1.26.2 allow Git LFS object reuse to authorize private source ob… | 2026-07-03T21:16:59.890 | 2026-07-03T21:16:59.890 |
| fkie_cve-2026-28737 | Gitea versions from 1.25.0 before 1.26.0 allow stored cross-site scripting through the extensionsRe… | 2026-07-03T21:16:59.787 | 2026-07-03T21:16:59.787 |
| fkie_cve-2026-28705 | Gitea versions before 1.25.5 use release tag names and asset names as filesystem path components wh… | 2026-07-03T21:16:59.683 | 2026-07-03T21:16:59.683 |
| fkie_cve-2026-28699 | Gitea versions up to and including 1.26.1 allow OAuth2 access token scope enforcement to be bypasse… | 2026-07-03T21:16:59.567 | 2026-07-03T21:16:59.567 |
| fkie_cve-2026-27783 | Gitea versions up to and including 1.26.1 do not enforce repository-unit authorization on issue-tem… | 2026-07-03T21:16:59.450 | 2026-07-03T21:16:59.450 |
| fkie_cve-2026-27780 | Gitea versions before 1.26.0 do not fail closed on bufio.Scanner errors while processing pre-receiv… | 2026-07-03T21:16:59.347 | 2026-07-03T21:16:59.347 |
| fkie_cve-2026-27779 | Gitea versions before 1.25.5 accept malformed or injected forwarded-proto values when detecting pub… | 2026-07-03T21:16:59.257 | 2026-07-03T21:16:59.257 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-rp87-gqr5-74pm |
7.5 (3.1)
|
Improper input validation in Microsoft Edge (Chromium-based) allows an unauthorized attacker to exe… | 2026-07-03T21:31:40Z | 2026-07-03T21:31:40Z |
| ghsa-qqhm-6qqw-68j4 |
7.5 (3.1)
|
Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o… | 2026-07-03T21:31:40Z | 2026-07-03T21:31:40Z |
| ghsa-pp6w-gfj2-hq6c |
7.1 (3.1)
|
Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android all… | 2026-07-03T21:31:40Z | 2026-07-03T21:31:40Z |
| ghsa-mm5h-w49f-qxp5 |
8.1 (3.1)
|
External control of file name or path in Microsoft Edge (Chromium-based) allows an unauthorized att… | 2026-07-03T21:31:40Z | 2026-07-03T21:31:40Z |
| ghsa-jjfj-r463-g4c7 |
8.3 (3.1)
|
Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) al… | 2026-07-03T21:31:40Z | 2026-07-03T21:31:40Z |
| ghsa-7xpx-9crg-rx5q |
8.3 (3.1)
|
Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o… | 2026-07-03T21:31:40Z | 2026-07-03T21:31:40Z |
| ghsa-6p36-3w3p-mr82 |
8.1 (3.1)
|
Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perfo… | 2026-07-03T21:31:40Z | 2026-07-03T21:31:40Z |
| ghsa-4prc-gc25-x2h7 |
8.3 (3.1)
|
Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) al… | 2026-07-03T21:31:40Z | 2026-07-03T21:31:40Z |
| ghsa-39f3-ggrp-rph3 |
9.0 (3.1)
|
Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) al… | 2026-07-03T21:31:40Z | 2026-07-03T21:31:40Z |
| ghsa-36w9-qq4h-pv36 |
6.1 (3.1)
|
Operation on a resource after expiration or release in Microsoft Edge (Chromium-based) allows an un… | 2026-07-03T21:31:40Z | 2026-07-03T21:31:40Z |
| ghsa-28f5-cgmh-4pfj |
8.3 (3.1)
|
Improper authorization in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execut… | 2026-07-03T21:31:40Z | 2026-07-03T21:31:40Z |
| ghsa-vw2p-73gr-hwh5 |
7.5 (3.1)
|
Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o… | 2026-07-03T21:31:39Z | 2026-07-03T21:31:39Z |
| ghsa-vfww-fwcc-xcp7 |
8.1 (3.1)
|
Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perfo… | 2026-07-03T21:31:39Z | 2026-07-03T21:31:39Z |
| ghsa-pwgr-7g5c-fjgv |
7.5 (3.1)
|
Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o… | 2026-07-03T21:31:39Z | 2026-07-03T21:31:39Z |
| ghsa-pgfj-jh8g-79g5 |
6.5 (3.1)
|
Server-side request forgery (ssrf) in Microsoft Edge (Chromium-based) allows an unauthorized attack… | 2026-07-03T21:31:38Z | 2026-07-03T21:31:39Z |
| ghsa-mp46-jq23-75j9 |
7.6 (3.1)
|
Improper input validation in Microsoft Edge (Chromium-based) allows an unauthorized attacker to exe… | 2026-07-03T21:31:38Z | 2026-07-03T21:31:39Z |
| ghsa-hq62-8562-72xh |
7.4 (3.1)
|
Server-side request forgery (ssrf) in Microsoft Edge (Chromium-based) allows an unauthorized attack… | 2026-07-03T21:31:39Z | 2026-07-03T21:31:39Z |
| ghsa-c7hg-fxjp-q9jp |
7.4 (3.1)
|
Improper link resolution before file access ('link following') in Microsoft Edge (Chromium-based) a… | 2026-07-03T21:31:39Z | 2026-07-03T21:31:39Z |
| ghsa-9h2j-pmwx-xhhx |
8.1 (3.1)
|
Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) al… | 2026-07-03T21:31:39Z | 2026-07-03T21:31:39Z |
| ghsa-89m8-6fh5-pgm5 |
5.4 (3.1)
|
Server-side request forgery (ssrf) in Microsoft Edge (Chromium-based) allows an unauthorized attack… | 2026-07-03T21:31:39Z | 2026-07-03T21:31:39Z |
| ghsa-7q4c-v8r2-pc77 |
7.5 (3.1)
|
Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o… | 2026-07-03T21:31:38Z | 2026-07-03T21:31:39Z |
| ghsa-62v5-4xc7-qm62 |
7.1 (3.1)
|
Relative path traversal in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execu… | 2026-07-03T21:31:39Z | 2026-07-03T21:31:39Z |
| ghsa-wf54-w5mv-jcf9 |
7.5 (3.1)
|
Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o… | 2026-07-03T21:31:38Z | 2026-07-03T21:31:38Z |
| ghsa-vr8w-r9rr-cvrq |
4.2 (3.1)
|
Concurrent execution using shared resource with improper synchronization ('race condition') in Micr… | 2026-07-03T21:31:38Z | 2026-07-03T21:31:38Z |
| ghsa-vqcc-q5p5-r9q5 |
8.8 (3.1)
|
Heap-based buffer overflow in Microsoft Edge (Chromium-based) allows an unauthorized attacker to ex… | 2026-07-03T21:31:38Z | 2026-07-03T21:31:38Z |
| ghsa-vp7p-4fxv-645q |
7.5 (3.1)
|
Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) al… | 2026-07-03T21:31:38Z | 2026-07-03T21:31:38Z |
| ghsa-vhq7-fwwh-7hjf |
|
Gitea versions before 1.26.0 do not fail closed on bufio.Scanner errors while processing pre-receiv… | 2026-07-03T21:31:38Z | 2026-07-03T21:31:38Z |
| ghsa-vgq6-3mhg-7562 |
6.5 (3.1)
|
Exposure of sensitive information to an unauthorized actor in Microsoft Edge (Chromium-based) allow… | 2026-07-03T21:31:38Z | 2026-07-03T21:31:38Z |
| ghsa-v8f2-2ghq-9whv |
|
Gitea versions before 1.25.5 accept malformed or injected forwarded-proto values when detecting pub… | 2026-07-03T21:31:38Z | 2026-07-03T21:31:38Z |
| ghsa-mcm4-vwcv-x3pp |
8.8 (3.1)
|
Integer overflow or wraparound in Microsoft Edge (Chromium-based) allows an unauthorized attacker t… | 2026-07-03T21:31:38Z | 2026-07-03T21:31:38Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2026-601 |
8.8 (3.1)
|
An issue was discovered in OpenStack Keystone before 29.0.2. When combined with an applic… | keystone | 2026-05-28T19:16:37.773Z | 2026-07-02T12:26:33.050605Z |
| pysec-2026-600 |
8.8 (3.1)
|
An issue was discovered in OpenStack Keystone before 29.0.2. The Keystone RBAC policy enf… | keystone | 2026-05-28T19:16:37.630Z | 2026-07-02T12:26:32.954749Z |
| pysec-2026-599 |
8.8 (3.1)
|
An issue was discovered in OpenStack Keystone before 29.0.2. The Keystone application cre… | keystone | 2026-05-28T19:16:37.483Z | 2026-07-02T12:26:32.863516Z |
| pysec-2023-298 |
5.3 (3.1)
|
isInList in the safeurl-python package before 1.2 for Python has an insufficiently restri… | safeurl-python | 2023-01-30T05:15:00Z | 2026-07-02T10:13:12.352047Z |
| pysec-2008-12 |
|
The user form processing (userform.py) in MoinMoin before 1.6.3, when using ACLs or a non… | moin | 2008-04-25T06:05:00Z | 2026-07-02T10:13:07.338482Z |
| pysec-2015-38 |
|
OpenStack Image Registry and Delivery Service (Glance) 2014.2 through 2014.2.2 does not p… | glance | 2015-02-24T15:59:00Z | 2026-07-02T10:13:02.658153Z |
| pysec-2015-37 |
|
OpenStack Image Registry and Delivery Service (Glance) 2014.2 through 2014.2.2 does not p… | glance | 2015-02-24T15:59:00Z | 2026-07-02T10:13:02.652048Z |
| pysec-2026-598 |
6.5 (3.1)
|
Chainlit versions prior to 2.9.4 contain an arbitrary file read vulnerability in the /pro… | chainlit | 2026-01-20T00:15:48.910Z | 2026-07-02T07:41:22.724538Z |
| pysec-2026-611 |
|
Part of the "Hades" wave of the Shai-Hulud supply-chain campaign. On 2026-06-08, maliciou… | uprobe | 2026-07-01T22:17:57Z | 2026-07-01T22:17:57Z |
| pysec-2026-610 |
|
Part of the "Hades" wave of the Shai-Hulud supply-chain campaign. On 2026-06-08, maliciou… | ufish | 2026-07-01T22:08:28Z | 2026-07-01T22:08:28Z |
| pysec-2026-609 |
|
Part of the "Hades" wave of the Shai-Hulud supply-chain campaign. On 2026-06-08, maliciou… | synago | 2026-07-01T21:35:49Z | 2026-07-01T21:35:49Z |
| pysec-2026-608 |
|
Part of the "Hades" wave of the Shai-Hulud supply-chain campaign. On 2026-06-08, maliciou… | pantheon-toolsets | 2026-07-01T21:33:35Z | 2026-07-01T21:33:35Z |
| pysec-2026-607 |
|
Part of the "Hades" wave of the Shai-Hulud supply-chain campaign. On 2026-06-08, maliciou… | pantheon-agents | 2026-07-01T21:24:58Z | 2026-07-01T21:24:58Z |
| pysec-2026-577 |
9.9 (4.0)
|
## Summary Alice exposes a Python SDK `ProxyShare` with a fixed target URL. Bob sends a … | zrok | 2026-06-29T11:50:50.353793Z | 2026-07-01T20:23:12.283893Z |
| pysec-2010-32 |
|
ZServer in Zope 2.10.x before 2.10.12 and 2.11.x before 2.11.7 allows remote attackers to… | Zope | 2010-09-08T20:00:00Z | 2026-07-01T20:23:12.207672Z |
| pysec-2026-576 |
9.8 (3.1)
|
A heap-based buffer overflow exists in the qr_reader_match_centers function of ZBar 0.23.… | zbar | 2026-06-29T11:50:44.123752Z | 2026-07-01T20:23:12.100943Z |
| pysec-2026-575 |
9.3 (4.0)
|
A vulnerability in the handling of verify_mode = CERT_REQUIRED in the wolfssl Python pack… | wolfssl | 2026-06-29T11:50:51.846296Z | 2026-07-01T20:23:12.060789Z |
| pysec-2022-43174 |
9.8 (3.1)
|
WMAgent v1.3.3rc2 and 1.3.3rc1, reqmgr 2 1.4.1rc5 and 1.4.0rc2, reqmon 1.4.1rc5, and glob… | wmagent | 2022-07-28T23:15:00Z | 2026-07-01T20:23:12.054462Z |
| pysec-2026-574 |
9.9 (3.1)
|
### Summary The `reset_user_password` and `gym_permissions_user_edit` views in wger perf… | wger | 2026-06-29T11:50:48.728363Z | 2026-07-01T20:23:12.000871Z |
| pysec-2026-573 |
9.8 (3.1)
|
Improper Restriction of Excessive Authentication Attempts in GitHub repository wger-proje… | wger | 2026-06-29T11:50:33.145504Z | 2026-07-01T20:23:11.992618Z |
| pysec-2026-572 |
9.8 (3.1)
|
A vulnerability was found in zwczou WeChat SDK Python 0.3.0 and classified as critical. T… | weixin-python | 2026-06-29T11:50:42.538947Z | 2026-07-01T20:23:11.940577Z |
| pysec-2026-571 |
9.1 (3.1)
|
### Impact It was possible to overwrite Git configuration remotely and override some of … | weblate | 2026-06-29T11:50:38.662670Z | 2026-07-01T20:23:11.903329Z |
| pysec-2026-570 |
9.8 (3.1)
|
The sample web application in web2py before 2.14.2 might allow remote attackers to execut… | web2py | 2026-06-29T11:50:32.809887Z | 2026-07-01T20:23:11.781906Z |
| pysec-2026-569 |
9.8 (3.1)
|
web2py before 2.14.6 does not properly check if a host is denied before verifying passwor… | web2py | 2026-06-29T11:50:32.485181Z | 2026-07-01T20:23:11.774432Z |
| pysec-2026-568 |
9.8 (3.1)
|
vllm-project vllm version 0.6.0 contains a vulnerability in the distributed training API.… | vllm | 2026-06-29T11:50:34.951406Z | 2026-07-01T20:23:11.311128Z |
| pysec-2026-567 |
9.8 (3.1)
|
### Impacted Environments This issue ONLY impacts environments using the `PyNcclPipe` KV… | vllm | 2026-06-29T11:50:35.995027Z | 2026-07-01T20:23:11.300418Z |
| pysec-2026-566 |
9.8 (3.1)
|
vllm-project vllm version v0.6.2 contains a vulnerability in the MessageQueue.dequeue() A… | vllm | 2026-06-29T11:50:35.177170Z | 2026-07-01T20:23:11.291562Z |
| pysec-2026-565 |
9.8 (3.1)
|
## Summary **A chain of vulnerabilities in vLLM allow Remote Code Execution (RCE):** 1.… | vllm | 2026-06-29T11:50:51.569348Z | 2026-07-01T20:23:11.278808Z |
| pysec-2026-563 |
8.1 (3.1)
9.3 (4.0)
|
The package libvcs before 0.11.1 are vulnerable to Command Injection via argument injecti… | vcspull | 2026-06-29T11:50:31.953566Z | 2026-07-01T20:23:11.167334Z |
| pysec-2026-562 |
9.8 (3.1)
|
In the latest version of vanna-ai/vanna, the `vanna.ask` function is vulnerable to remote… | vanna | 2026-06-29T11:50:42.052160Z | 2026-07-01T20:23:10.996611Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-28875 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:20.401696Z |
| gsd-2024-33786 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.606155Z |
| gsd-2024-33697 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-27T05:02:18.598872Z |
| gsd-2024-33784 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.595808Z |
| gsd-2024-33788 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.591276Z |
| gsd-2024-33701 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.589032Z |
| gsd-2024-33776 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.587852Z |
| gsd-2024-33838 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.585807Z |
| gsd-2024-33839 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.579161Z |
| gsd-2024-33845 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.569462Z |
| gsd-2024-33741 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.568527Z |
| gsd-2024-33769 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.558897Z |
| gsd-2024-33794 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.557396Z |
| gsd-2024-33835 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.550838Z |
| gsd-2024-33744 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.543395Z |
| gsd-2024-33789 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.534336Z |
| gsd-2024-33702 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.530768Z |
| gsd-2024-33797 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.530297Z |
| gsd-2024-33810 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.527741Z |
| gsd-2024-33807 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.526483Z |
| gsd-2024-33688 | Cross-Site Request Forgery (CSRF) vulnerability in Extend Themes Teluro.This issue affect… | 2024-04-27T05:02:18.524420Z |
| gsd-2024-33713 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.522989Z |
| gsd-2024-33768 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.521409Z |
| gsd-2024-33720 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.519711Z |
| gsd-2024-33727 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.514916Z |
| gsd-2024-33732 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.513959Z |
| gsd-2024-33714 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.510684Z |
| gsd-2024-33693 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-27T05:02:18.509326Z |
| gsd-2024-33792 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.507383Z |
| gsd-2024-33710 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:18.499457Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2026-6728 | Malicious code in dt-validator (PyPI) | 2026-07-02T17:39:30Z | 2026-07-02T17:39:30Z |
| mal-2026-6495 | Malicious code in animatecss-postcss-plugin (npm) | 2026-06-26T01:42:36Z | 2026-07-02T15:02:07Z |
| mal-2026-6727 | Malicious code in tailwind-animates (npm) | 2026-07-02T14:55:45Z | 2026-07-02T14:55:46Z |
| mal-2026-4681 | Malicious code in tailwind-typography-stylecss (npm) | 2026-05-24T03:14:39Z | 2026-07-02T13:56:15Z |
| mal-2026-6538 | Malicious code in db-plog (npm) | 2026-06-26T21:08:49Z | 2026-07-02T13:56:11Z |
| mal-2026-6142 | Malicious code in db-connector-log (npm) | 2026-06-18T22:29:10Z | 2026-07-02T13:56:11Z |
| mal-2026-5604 | Malicious code in cache-section-helper (npm) | 2026-06-11T07:24:13Z | 2026-07-02T13:56:11Z |
| mal-2026-6726 | Malicious code in db-convertor (npm) | 2026-07-02T13:17:43Z | 2026-07-02T13:17:50Z |
| mal-2026-6725 | Malicious code in @modhamanish/rn-mm-template (npm) | 2026-07-02T13:02:29Z | 2026-07-02T13:02:30Z |
| mal-2026-6710 | Malicious code in vitest-agent (npm) | 2026-07-01T19:15:53Z | 2026-07-02T11:10:03Z |
| mal-2026-6711 | Malicious code in twrap-tool (PyPI) | 2026-07-01T20:05:39Z | 2026-07-01T22:56:41Z |
| mal-2026-6724 | Malicious code in starlette-healthcheck (PyPI) | 2026-07-01T21:08:27Z | 2026-07-01T22:04:56Z |
| mal-2026-6561 | Malicious code in skillspector (PyPI) | 2026-06-28T21:50:42Z | 2026-07-01T22:04:56Z |
| mal-2026-6690 | Malicious code in log-taker1 (npm) | 2026-06-30T00:00:00Z | 2026-07-01T22:04:52Z |
| mal-2026-6723 | Malicious code in electron-orbit (npm) | 2026-07-01T21:15:10Z | 2026-07-01T22:04:51Z |
| mal-2026-6722 | Malicious code in date-fns-lite (npm) | 2026-07-01T21:19:37Z | 2026-07-01T22:04:50Z |
| mal-2026-6721 | Malicious code in ts-eslint-helper (npm) | 2026-07-01T20:28:12Z | 2026-07-01T21:06:13Z |
| mal-2026-6346 | Malicious code in triage-bot (npm) | 2026-06-23T20:18:45Z | 2026-07-01T21:06:13Z |
| mal-2026-6718 | Malicious code in test-pkg-yarn (npm) | 2026-07-01T20:47:51Z | 2026-07-01T21:06:12Z |
| mal-2026-6717 | Malicious code in test-pkg-x0 (npm) | 2026-07-01T20:46:56Z | 2026-07-01T21:06:12Z |
| mal-2026-6716 | Malicious code in test-pkg-pnpm (npm) | 2026-07-01T20:47:19Z | 2026-07-01T21:06:12Z |
| mal-2026-6715 | Malicious code in svgcraft-core (npm) | 2026-07-01T20:48:15Z | 2026-07-01T21:06:12Z |
| mal-2026-6405 | Malicious code in sypoi1 (npm) | 2026-06-24T22:18:30Z | 2026-07-01T21:06:12Z |
| mal-2026-6692 | Malicious code in polymarket-trading-developer-tools (npm) | 2026-06-30T00:00:00Z | 2026-07-01T21:06:11Z |
| mal-2026-6691 | Malicious code in polymarket-clob-maths (npm) | 2026-06-30T00:00:00Z | 2026-07-01T21:06:11Z |
| mal-2026-6713 | Malicious code in polymarket-toolkit (npm) | 2026-07-01T20:37:33Z | 2026-07-01T20:37:33Z |
| mal-2026-6714 | Malicious code in polymarket-trading-developer-tool (npm) | 2026-07-01T20:37:24Z | 2026-07-01T20:37:24Z |
| mal-2026-6712 | Malicious code in polymarket-risk-manager (npm) | 2026-07-01T20:37:17Z | 2026-07-01T20:37:17Z |
| mal-2026-6719 | Malicious code in ts-clob-math-v2 (npm) | 2026-07-01T20:28:46Z | 2026-07-01T20:28:46Z |
| mal-2026-6720 | Malicious code in ts-elinter (npm) | 2026-07-01T20:28:27Z | 2026-07-01T20:28:27Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-libpython-2026-0864 | Configuration Injection via Carriage Return (\r) in write() method | 2026-06-29T11:10:21.165Z | 2026-06-29T11:33:52.451Z |
| bit-node-2026-48936 | 2026-06-29T05:48:59.341Z | 2026-06-29T06:04:07.500Z | |
| bit-node-2026-48935 | 2026-06-29T05:48:58.171Z | 2026-06-29T06:04:07.500Z | |
| bit-node-2026-48934 | 2026-06-29T05:48:56.982Z | 2026-06-29T06:04:07.500Z | |
| bit-node-2026-48933 | 2026-06-29T05:48:55.780Z | 2026-06-29T06:04:07.500Z | |
| bit-node-2026-48930 | 2026-06-29T05:48:53.525Z | 2026-06-29T06:04:07.500Z | |
| bit-node-2026-48928 | 2026-06-29T05:48:52.419Z | 2026-06-29T06:04:07.500Z | |
| bit-node-2026-48619 | 2026-06-29T05:48:51.254Z | 2026-06-29T06:04:07.500Z | |
| bit-node-2026-48618 | 2026-06-29T05:48:50.266Z | 2026-06-29T06:04:07.500Z | |
| bit-node-2026-48615 | 2026-06-29T05:48:48.071Z | 2026-06-29T06:04:07.500Z | |
| bit-nginx-2026-42945 | NGINX ngx_http_rewrite_module vulnerability | 2026-05-15T08:50:08.298Z | 2026-06-29T06:04:07.500Z |
| bit-mlflow-2026-2651 | Missing Authorization Validation in mlflow/mlflow | 2026-06-05T08:52:14.527Z | 2026-06-29T06:04:07.500Z |
| bit-mlflow-2026-2611 | Improper Origin Validation in mlflow/mlflow | 2026-05-29T08:48:33.396Z | 2026-06-29T06:04:07.500Z |
| bit-haproxy-2026-55204 | HAProxy - NULL Pointer Dereference in hpack_dht_insert Function | 2026-06-29T05:40:50.508Z | 2026-06-29T06:04:07.500Z |
| bit-haproxy-2026-55203 | HAProxy - Integer Overflow in FCGI Demux Record Length Field | 2026-06-29T05:40:49.435Z | 2026-06-29T06:04:07.500Z |
| bit-grafana-2026-27876 | RCE on Grafana via sqlExpressions | 2026-04-01T08:41:07.673Z | 2026-06-29T06:04:07.500Z |
| bit-gitlab-2026-8330 | Insertion of Sensitive Information into Log File in GitLab | 2026-06-29T06:02:37.310Z | 2026-06-29T06:04:07.500Z |
| bit-gitlab-2026-5952 | Incorrect Authorization in GitLab | 2026-06-29T06:02:15.127Z | 2026-06-29T06:04:07.500Z |
| bit-gitlab-2026-5796 | Incorrect Authorization in GitLab | 2026-06-29T06:02:12.651Z | 2026-06-29T06:04:07.500Z |
| bit-gitlab-2026-5309 | Authorization Bypass Through User-Controlled Key in GitLab | 2026-06-29T06:02:09.947Z | 2026-06-29T06:04:07.500Z |
| bit-gitlab-2026-3176 | Missing Authorization in GitLab | 2026-06-29T06:01:47.612Z | 2026-06-29T06:04:07.500Z |
| bit-gitlab-2026-2238 | Missing Authorization in GitLab | 2026-06-29T06:01:30.675Z | 2026-06-29T06:04:07.500Z |
| bit-gitlab-2026-1606 | Improper Control of Generation of Code ('Code Injection') in GitLab | 2026-06-29T06:01:15.000Z | 2026-06-29T06:04:07.500Z |
| bit-gitlab-2026-12635 | Reliance on Reverse DNS Resolution for a Security-Critical Action in GitLab | 2026-06-29T06:01:01.803Z | 2026-06-29T06:04:07.500Z |
| bit-gitlab-2026-12053 | Insertion of Sensitive Information into Log File in GitLab | 2026-06-29T06:00:59.147Z | 2026-06-29T06:04:07.500Z |
| bit-gitlab-2026-11379 | Incorrect Authorization in GitLab | 2026-06-29T06:00:55.333Z | 2026-06-29T06:04:07.500Z |
| bit-gitlab-2026-10712 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab | 2026-06-29T06:00:46.080Z | 2026-06-29T06:04:07.500Z |
| bit-gitlab-2026-10086 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab | 2026-06-29T06:00:42.268Z | 2026-06-29T06:04:07.500Z |
| bit-gitlab-2026-0934 | Incorrect Authorization in GitLab | 2026-06-29T06:00:39.725Z | 2026-06-29T06:04:07.500Z |
| bit-gitea-2026-20912 | Gitea: Cross-Repository Authorization Bypass via Release Attachment Linking Leads to Private Attachment Disclosure | 2026-01-30T08:40:49.607Z | 2026-06-29T06:04:07.500Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cleanstart-2026-lx00456 | url | 2026-06-10T00:47:54.637397Z | 2026-06-09T07:38:09Z |
| cleanstart-2026-gz11549 | Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger excessive CPU exhaustion and memory allocations | 2026-06-10T01:03:54.943567Z | 2026-06-09T07:26:31Z |
| cleanstart-2026-em89202 | OpenTelemetry-Go is the Go implementation of OpenTelemetry | 2026-06-10T00:54:54.613080Z | 2026-06-09T07:21:35Z |
| cleanstart-2026-hm14899 | url | 2026-06-10T01:00:54.960504Z | 2026-06-09T07:13:16Z |
| cleanstart-2026-ex51963 | Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU | 2026-06-10T01:00:54.827821Z | 2026-06-09T07:02:56Z |
| cleanstart-2026-hn49173 | Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU | 2026-06-10T01:02:24.631492Z | 2026-06-09T07:02:07Z |
| cleanstart-2026-jn91167 | Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU | 2026-06-10T01:02:24.738972Z | 2026-06-09T07:00:50Z |
| cleanstart-2026-ft24360 | Flask is a web server gateway interface (WSGI) web application framework | 2026-06-10T01:08:55.464614Z | 2026-06-09T06:47:38Z |
| cleanstart-2026-wo73902 | Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU | 2026-06-10T01:03:54.739413Z | 2026-06-09T06:38:43Z |
| cleanstart-2026-df67461 | Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU | 2026-06-10T01:03:24.802338Z | 2026-06-09T06:38:02Z |
| cleanstart-2026-vn16911 | ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only label | 2026-06-10T01:16:28.112574Z | 2026-06-09T06:34:59Z |
| cleanstart-2026-bl76821 | During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed handshake, the resumed handshake may succ... | 2026-06-10T01:04:24.950530Z | 2026-06-09T06:34:47Z |
| cleanstart-2026-vq22894 | Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU | 2026-06-10T01:04:54.790348Z | 2026-06-09T06:34:24Z |
| cleanstart-2026-kg30406 | Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU | 2026-06-10T01:04:54.659789Z | 2026-06-09T06:30:58Z |
| cleanstart-2026-ue70720 | Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU | 2026-06-10T01:05:24.634627Z | 2026-06-09T06:27:27Z |
| cleanstart-2026-pu64425 | Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU | 2026-06-10T01:05:24.697903Z | 2026-06-09T06:25:45Z |
| cleanstart-2026-it61881 | Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU | 2026-06-10T01:05:54.646913Z | 2026-06-09T06:19:50Z |
| cleanstart-2026-lj67798 | Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU | 2026-06-10T01:05:54.764046Z | 2026-06-09T06:19:08Z |
| cleanstart-2026-wo91797 | Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU | 2026-06-10T01:06:24.611603Z | 2026-06-09T06:18:18Z |
| cleanstart-2026-je84467 | Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU | 2026-06-10T01:06:24.663418Z | 2026-06-09T06:16:10Z |
| cleanstart-2026-cp20786 | Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU | 2026-06-10T01:14:55.975405Z | 2026-06-09T06:14:32Z |
| cleanstart-2026-fu07345 | Security fixes for CVE-2024-12797, CVE-2024-52303, CVE-2024-52304, CVE-2024-56201, CVE-2024-56326, CVE-2025-24023, CVE-2025-27516, CVE-2025-32962, CVE-2025-43859, CVE-2025-4565, CVE-2025-53643, CVE-2025-57804, CVE-2025-58065, CVE-2025-68480, CVE-2025-69223, CVE-2025-69224, CVE-2025-69225, CVE-2025-69226, CVE-2025-69227, CVE-2025-69228, CVE-2025-69229, CVE-2025-69230, CVE-2026-0994, CVE-2026-21226, CVE-2026-22815, CVE-2026-23490, CVE-2026-26007, CVE-2026-27205, CVE-2026-34073, CVE-2026-34513, CVE-2026-34514, CVE-2026-34515, CVE-2026-34516, CVE-2026-34517, CVE-2026-34518, CVE-2026-34519, CVE-2026-34520, CVE-2026-34525, CVE-2026-41066, CVE-2026-41205, CVE-2026-44307, CVE-2026-44405, CVE-2026-44503, CVE-2026-45409, ghsa-27jp-wm6q-gp25, ghsa-27mf-ghqm-j3j8, ghsa-29h4-r29x-hchv, ghsa-2g68-c3qc-8985, ghsa-2h4p-vjrc-8xpq, ghsa-2vrm-gr82-f7m5, ghsa-2xpw-w6gg-jr37, ghsa-38jv-5279-wg99, ghsa-3wq7-rqq7-wx6j, ghsa-428g-f7cq-pgp5, ghsa-5239-wwwm-4pmq, ghsa-54jq-c3m8-4m76, ghsa-58pv-8j8x-9vj2, ghsa-5rjg-fvgr-3xxf, ghsa-63hf-3vf5-4wqf, ghsa-63vm-454h-vhhq, ghsa-65pc-fj4g-8rjx, ghsa-68rp-wp8r-4726, ghsa-6jhg-hg63-jvvf, ghsa-6mq8-rvhq-8wgg, ghsa-752w-5fwx-jx9f, ghsa-765j-9r45-w2q2, ghsa-78cv-mqj4-43f7, ghsa-79v4-65xg-pq4g, ghsa-7cx3-6m66-7c5m, ghsa-7gcm-g887-7qv7, ghsa-7j59-v9qr-6fq9, ghsa-847f-9342-265h, ghsa-8495-4g3g-x7pr, ghsa-87hc-h4r5-73f7, ghsa-8qvm-5x2c-j2w7, ghsa-8rrh-rw8j-w5fx, ghsa-8w49-h785-mj3c, ghsa-9548-qrrj-x5pj, ghsa-966j-vmvw-g2g9, ghsa-9hjg-9r4m-mvj7, ghsa-c427-h43c-vf67, ghsa-cpwx-vrp4-4pq7, ghsa-f9vj-2wh5-fj8j, ghsa-fh55-r93g-j68g, ghsa-fqwm-6jpj-5wxc, ghsa-g84x-mcqj-x9qq, ghsa-gc5v-m9x4-r6x2, ghsa-gm62-xv2j-4w53, ghsa-gmj6-6f8f-6699, ghsa-h4gh-qq45-vh27, ghsa-hcc4-c3v8-rx92, ghsa-hgf8-39gv-g3f2, ghsa-hrfv-mqp8-q5rw, ghsa-jm66-cg57-jjv5, ghsa-jr27-m4p2-rc6r, ghsa-m5qp-6w8w-w647, ghsa-mf9w-mj56-hr94, ghsa-mrfv-m5wm-5w6w, ghsa-mwh4-6h8g-pg8w, ghsa-p8q5-cvwx-wvwp, ghsa-p998-jp59-783m, ghsa-pq67-6m6q-mj2v, ghsa-q2x7-8rv6-6q7h, ghsa-q34m-jh98-gwm2, ghsa-qccp-gfcp-xxvc, ghsa-qjxf-f2mg-c6mc, ghsa-r244-wg5g-6w2r, ghsa-r6ph-v2qm-q3c2, ghsa-v92g-xgxw-vvmm, ghsa-vfmq-68hx-4jfw, ghsa-vqfr-h8mv-ghfj, ghsa-w2fm-2cpv-w7v5 applied in versions: 2.10.3-r0, 2.10.3-r2 | 2026-06-08T12:34:30.162472Z | 2026-06-07T16:46:23Z |
| cleanstart-2026-cq05396 | Security fixes for CVE-2025-32962, CVE-2025-58065, CVE-2026-22815, CVE-2026-25645, CVE-2026-26007, CVE-2026-27205, CVE-2026-27459, CVE-2026-30922, CVE-2026-31958, CVE-2026-32597, CVE-2026-33936, CVE-2026-34513, CVE-2026-34514, CVE-2026-34515, CVE-2026-34516, CVE-2026-34517, CVE-2026-34518, CVE-2026-34519, CVE-2026-34520, CVE-2026-34525, CVE-2026-35536, CVE-2026-39892, CVE-2026-41066, CVE-2026-41205, CVE-2026-41425, CVE-2026-42561, CVE-2026-44307, CVE-2026-44431, CVE-2026-44432, CVE-2026-44503, CVE-2026-44681, CVE-2026-45309, CVE-2026-4539, CVE-2026-45409, CVE-2026-48522, CVE-2026-48523, CVE-2026-48524, CVE-2026-48525, CVE-2026-48526, CVE-2026-8838, ghsa-78cv-mqj4-43f7, ghsa-7j59-v9qr-6fq9 applied in versions: 2.11.0-r2, 2.11.2-r1, 2.11.2-r2, 2.11.2-r3 | 2026-06-08T12:19:32.128434Z | 2026-06-07T16:46:03Z |
| cleanstart-2026-mr94452 | Security fixes for CVE-2023-46136, CVE-2024-12797, CVE-2024-34069, CVE-2024-49766, CVE-2024-49767, CVE-2025-62727, CVE-2025-66221, CVE-2026-0994, CVE-2026-21860, CVE-2026-22815, CVE-2026-25645, CVE-2026-26007, CVE-2026-27199, CVE-2026-27205, CVE-2026-27448, CVE-2026-27459, CVE-2026-30922, CVE-2026-31958, CVE-2026-32597, CVE-2026-34073, CVE-2026-34513, CVE-2026-34514, CVE-2026-34515, CVE-2026-34516, CVE-2026-34517, CVE-2026-34518, CVE-2026-34519, CVE-2026-34520, CVE-2026-34525, CVE-2026-35536, CVE-2026-40217, CVE-2026-40347, CVE-2026-41066, CVE-2026-44307, CVE-2026-44431, CVE-2026-44432, CVE-2026-44681, CVE-2026-45309, CVE-2026-4539, CVE-2026-48522, CVE-2026-48523, CVE-2026-48524, CVE-2026-48525, CVE-2026-48526, CVE-2026-48710, CVE-2026-8838, ghsa-29h4-r29x-hchv, ghsa-29vq-49wr-vm6x, ghsa-2g68-c3qc-8985, ghsa-2h4p-vjrc-8xpq, ghsa-2vrm-gr82-f7m5, ghsa-3wq7-rqq7-wx6j, ghsa-5239-wwwm-4pmq, ghsa-53mr-6c8q-9789, ghsa-63hf-3vf5-4wqf, ghsa-68rp-wp8r-4726, ghsa-752w-5fwx-jx9f, ghsa-78cv-mqj4-43f7, ghsa-79v4-65xg-pq4g, ghsa-7f5h-v6xp-fcq8, ghsa-7gcm-g887-7qv7, ghsa-87hc-h4r5-73f7, ghsa-966j-vmvw-g2g9, ghsa-c427-h43c-vf67, ghsa-f9vj-2wh5-fj8j, ghsa-fqwm-6jpj-5wxc, ghsa-g794-3fmp-753h, ghsa-gc5v-m9x4-r6x2, ghsa-h4gh-qq45-vh27, ghsa-hcc4-c3v8-rx92, ghsa-hgf8-39gv-g3f2, ghsa-hrfv-mqp8-q5rw, ghsa-jj8c-mmj3-mmgv, ghsa-jjhc-v7c2-5hh6, ghsa-jr27-m4p2-rc6r, ghsa-m5qp-6w8w-w647, ghsa-m959-cc7f-wv43, ghsa-mf9v-mfxr-j63j, ghsa-mj87-hwqh-73pj, ghsa-mwh4-6h8g-pg8w, ghsa-p998-jp59-783m, ghsa-q34m-jh98-gwm2, ghsa-qccp-gfcp-xxvc, ghsa-qjxf-f2mg-c6mc, ghsa-r6ph-v2qm-q3c2, ghsa-r95x-qfjj-fjj2, ghsa-v92g-xgxw-vvmm, ghsa-vfmq-68hx-4jfw, ghsa-w2fm-2cpv-w7v5, ghsa-wxxx-gvqv-xp7p, ghsa-xqmj-j6mv-4862 applied in versions: 3.1.8-r0, 3.1.8-r1, 3.1.8-r2, 3.1.8-r3 | 2026-06-08T12:29:26.603264Z | 2026-06-07T16:45:27Z |
| cleanstart-2026-az09261 | Security fixes for CVE-2023-46136, CVE-2024-12797, CVE-2024-34069, CVE-2024-49766, CVE-2024-49767, CVE-2025-62727, CVE-2025-66221, CVE-2026-0994, CVE-2026-21860, CVE-2026-22815, CVE-2026-25645, CVE-2026-26007, CVE-2026-27199, CVE-2026-27205, CVE-2026-27448, CVE-2026-27459, CVE-2026-30922, CVE-2026-31958, CVE-2026-32597, CVE-2026-34073, CVE-2026-34513, CVE-2026-34514, CVE-2026-34515, CVE-2026-34516, CVE-2026-34517, CVE-2026-34518, CVE-2026-34519, CVE-2026-34520, CVE-2026-34525, CVE-2026-35536, CVE-2026-40217, CVE-2026-40347, CVE-2026-41016, CVE-2026-41018, CVE-2026-41066, CVE-2026-42561, CVE-2026-44307, CVE-2026-44405, CVE-2026-44431, CVE-2026-44432, CVE-2026-44681, CVE-2026-45309, CVE-2026-4539, CVE-2026-45409, CVE-2026-48522, CVE-2026-48523, CVE-2026-48524, CVE-2026-48525, CVE-2026-48526, CVE-2026-48710, CVE-2026-8328, CVE-2026-8838, ghsa-29h4-r29x-hchv, ghsa-29vq-49wr-vm6x, ghsa-2g68-c3qc-8985, ghsa-2vrm-gr82-f7m5, ghsa-3wq7-rqq7-wx6j, ghsa-5239-wwwm-4pmq, ghsa-53mr-6c8q-9789, ghsa-63hf-3vf5-4wqf, ghsa-68rp-wp8r-4726, ghsa-752w-5fwx-jx9f, ghsa-78cv-mqj4-43f7, ghsa-79v4-65xg-pq4g, ghsa-7f5h-v6xp-fcq8, ghsa-7gcm-g887-7qv7, ghsa-87hc-h4r5-73f7, ghsa-966j-vmvw-g2g9, ghsa-c427-h43c-vf67, ghsa-f9vj-2wh5-fj8j, ghsa-fqwm-6jpj-5wxc, ghsa-gc5v-m9x4-r6x2, ghsa-h4gh-qq45-vh27, ghsa-hcc4-c3v8-rx92, ghsa-hg6j-4rv6-33pg, ghsa-hgf8-39gv-g3f2, ghsa-hrfv-mqp8-q5rw, ghsa-jj8c-mmj3-mmgv, ghsa-jjhc-v7c2-5hh6, ghsa-jr27-m4p2-rc6r, ghsa-m5qp-6w8w-w647, ghsa-m959-cc7f-wv43, ghsa-mj87-hwqh-73pj, ghsa-mwh4-6h8g-pg8w, ghsa-p998-jp59-783m, ghsa-q34m-jh98-gwm2, ghsa-qjxf-f2mg-c6mc, ghsa-r6ph-v2qm-q3c2, ghsa-v92g-xgxw-vvmm, ghsa-vfmq-68hx-4jfw, ghsa-w2fm-2cpv-w7v5, ghsa-xqmj-j6mv-4862 applied in versions: 3.2.0-r0, 3.2.0-r1, 3.2.1-r2, 3.2.1-r3 | 2026-06-08T12:29:23.792179Z | 2026-06-07T16:45:03Z |
| cleanstart-2026-yj88870 | Security fixes for CVE-2026-42504 applied in versions: 3.31.4-r3 | 2026-06-08T12:11:56.938373Z | 2026-06-07T16:42:42Z |
| cleanstart-2026-ap10784 | Security fixes for CVE-2026-27145, CVE-2026-29181, CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32288, CVE-2026-32289, CVE-2026-33186, CVE-2026-33810, CVE-2026-33811, CVE-2026-33814, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39827, CVE-2026-39828, CVE-2026-39829, CVE-2026-39830, CVE-2026-39831, CVE-2026-39832, CVE-2026-39833, CVE-2026-39834, CVE-2026-39835, CVE-2026-39836, CVE-2026-39883, CVE-2026-42499, CVE-2026-42504, CVE-2026-42507, CVE-2026-42508, CVE-2026-46595, CVE-2026-46597, CVE-2026-46598, ghsa-p77j-4mvh-x3m3 applied in versions: 3.30.7-r0, 3.30.7-r1, 3.30.7-r2, 3.30.7-r3 | 2026-06-08T12:17:22.012878Z | 2026-06-07T16:42:16Z |
| cleanstart-2026-cn27900 | Security fixes for CVE-2025-63811, CVE-2026-1229, CVE-2026-24051, CVE-2026-25680, CVE-2026-25681, CVE-2026-26958, CVE-2026-27136, CVE-2026-27145, CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32288, CVE-2026-32289, CVE-2026-32952, CVE-2026-33186, CVE-2026-33810, CVE-2026-33811, CVE-2026-33814, CVE-2026-33816, CVE-2026-34986, CVE-2026-39817, CVE-2026-39819, CVE-2026-39820, CVE-2026-39821, CVE-2026-39823, CVE-2026-39824, CVE-2026-39825, CVE-2026-39826, CVE-2026-39827, CVE-2026-39828, CVE-2026-39829, CVE-2026-39830, CVE-2026-39831, CVE-2026-39832, CVE-2026-39833, CVE-2026-39834, CVE-2026-39835, CVE-2026-39836, CVE-2026-39883, CVE-2026-41602, CVE-2026-41889, CVE-2026-42499, CVE-2026-42501, CVE-2026-42502, CVE-2026-42504, CVE-2026-42506, CVE-2026-42507, CVE-2026-42508, CVE-2026-44503, CVE-2026-46595, CVE-2026-46597, CVE-2026-46598, ghsa-78h2-9frx-2jm8, ghsa-7j59-v9qr-6fq9, ghsa-j88v-2chj-qfwx, ghsa-p77j-4mvh-x3m3, ghsa-pjcq-xvwq-hhpj, ghsa-wf45-q9ch-q8gh, ghsa-xmrv-pmrh-hhx2 applied in versions: 1.20.4-r0, 1.20.4-r1, 1.20.4-r2, 1.20.4-r3, 1.20.4-r4, 1.20.4-r5, 1.20.4-r6, 1.21.4-r0 | 2026-06-08T12:27:11.545162Z | 2026-06-05T11:41:04Z |
| cleanstart-2026-in26303 | Security fixes for CVE-2026-25680, CVE-2026-25681, CVE-2026-26958, CVE-2026-27145, CVE-2026-29181, CVE-2026-32952, CVE-2026-33186, CVE-2026-33487, CVE-2026-33810, CVE-2026-33814, CVE-2026-34986, CVE-2026-39821, CVE-2026-39834, CVE-2026-42504, CVE-2026-42507, CVE-2026-42508, CVE-2026-46595, ghsa-78h2-9frx-2jm8 applied in versions: 2.44.0-r0, 2.44.0-r1, 2.44.0-r2, 2.44.0-r3, 2.44.0-r4 | 2026-06-08T12:22:51.546946Z | 2026-06-05T11:35:19Z |
| cleanstart-2026-sy48547 | Security fixes for CVE-2026-25680, CVE-2026-25681, CVE-2026-27140, CVE-2026-27143, CVE-2026-27144, CVE-2026-27145, CVE-2026-29181, CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32288, CVE-2026-32289, CVE-2026-32952, CVE-2026-33186, CVE-2026-33487, CVE-2026-33810, CVE-2026-33811, CVE-2026-33814, CVE-2026-34986, CVE-2026-39817, CVE-2026-39819, CVE-2026-39820, CVE-2026-39821, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39834, CVE-2026-39836, CVE-2026-42499, CVE-2026-42501, CVE-2026-42504, CVE-2026-42507, CVE-2026-42508, CVE-2026-46595, ghsa-78h2-9frx-2jm8, ghsa-mh2q-q3fh-2475, ghsa-pjcq-xvwq-hhpj applied in versions: 2.45.1-r0, 2.45.1-r1, 2.45.1-r2, 2.45.1-r3, 2.45.1-r4 | 2026-06-08T12:28:49.335173Z | 2026-06-05T11:34:59Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| drupal-contrib-2026-039 | 2026-06-03T16:10:48.000Z | 2026-06-03T16:10:48.000Z | |
| drupal-contrib-2026-038 | 2026-05-27T18:32:18.000Z | 2026-05-27T18:32:18.000Z | |
| drupal-contrib-2026-034 | 2026-05-13T17:16:59.000Z | 2026-05-13T18:16:36.000Z | |
| drupal-contrib-2026-037 | 2026-05-13T17:19:25.000Z | 2026-05-13T17:19:25.000Z | |
| drupal-contrib-2026-036 | 2026-05-13T17:18:29.000Z | 2026-05-13T17:18:29.000Z | |
| drupal-contrib-2026-035 | 2026-05-13T17:17:42.000Z | 2026-05-13T17:17:42.000Z | |
| drupal-contrib-2026-033 | 2026-04-22T17:47:43.000Z | 2026-04-22T17:47:43.000Z | |
| drupal-contrib-2026-032 | 2026-04-08T16:09:54.000Z | 2026-04-10T16:51:06.000Z | |
| drupal-contrib-2026-031 | 2026-04-01T16:38:14.000Z | 2026-04-02T14:13:13.000Z | |
| drupal-contrib-2026-029 | 2026-03-11T16:35:02.000Z | 2026-03-26T19:50:52.000Z | |
| drupal-contrib-2026-028 | 2026-03-11T16:33:14.000Z | 2026-03-26T19:43:59.000Z | |
| drupal-contrib-2026-030 | 2026-03-18T16:10:00.000Z | 2026-03-18T16:10:00.000Z | |
| drupal-contrib-2026-015 | 2026-02-25T18:47:57.000Z | 2026-03-17T13:20:54.000Z | |
| drupal-contrib-2026-024 | 2026-03-04T17:59:51.000Z | 2026-03-05T14:03:05.000Z | |
| drupal-contrib-2026-027 | 2026-03-04T18:02:59.000Z | 2026-03-04T18:02:59.000Z | |
| drupal-contrib-2026-026 | 2026-03-04T18:02:14.000Z | 2026-03-04T18:02:14.000Z | |
| drupal-contrib-2026-025 | 2026-03-04T18:00:41.000Z | 2026-03-04T18:00:41.000Z | |
| drupal-contrib-2026-023 | 2026-03-04T17:58:55.000Z | 2026-03-04T17:58:55.000Z | |
| drupal-contrib-2026-022 | 2026-03-04T17:57:58.000Z | 2026-03-04T17:57:58.000Z | |
| drupal-contrib-2026-021 | 2026-03-04T17:56:18.000Z | 2026-03-04T17:56:18.000Z | |
| drupal-contrib-2026-020 | 2026-03-04T17:54:27.000Z | 2026-03-04T17:54:27.000Z | |
| drupal-contrib-2026-016 | 2026-02-25T18:49:59.000Z | 2026-02-25T19:30:03.000Z | |
| drupal-contrib-2026-019 | 2026-02-25T18:51:43.000Z | 2026-02-25T18:51:43.000Z | |
| drupal-contrib-2026-018 | 2026-02-25T18:51:26.000Z | 2026-02-25T18:51:26.000Z | |
| drupal-contrib-2026-017 | 2026-02-25T18:51:01.000Z | 2026-02-25T18:51:01.000Z | |
| drupal-contrib-2026-014 | 2026-02-25T18:46:10.000Z | 2026-02-25T18:46:10.000Z | |
| drupal-contrib-2026-013 | 2026-02-25T18:45:13.000Z | 2026-02-25T18:45:13.000Z | |
| drupal-contrib-2026-012 | 2026-02-25T18:44:38.000Z | 2026-02-25T18:44:38.000Z | |
| drupal-contrib-2026-011 | 2026-02-25T18:43:32.000Z | 2026-02-25T18:43:32.000Z | |
| drupal-contrib-2026-010 | 2026-02-11T16:54:18.000Z | 2026-02-25T17:17:46.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|---|---|
| ts-2023-003 | TS-2023-003 | 2023-03-22T00:00 |
| ts-2023-002 | TS-2023-002 | 2023-01-24T00:00 |
| ts-2023-001 | TS-2023-001 | 2023-01-17T00:00 |
| ts-2022-005 | TS-2022-005 | 2022-11-21T00:00 |
| ts-2022-004 | TS-2022-004 | 2022-11-21T00:00 |
| ts-2022-003 | TS-2022-003 | 2022-06-14T00:00 |
| ts-2022-002 | TS-2022-002 | 2022-05-11T00:00 |
| ts-2022-001 | TS-2022-001 | 2022-02-07T00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2026-25140 | Huawei EMUI和Huawei HarmonyOS授权问题漏洞 | 2026-06-11 | 2026-06-24 |
| cnvd-2026-25139 | Huawei HarmonyOS授权问题漏洞(CNVD-2026-25139) | 2026-06-11 | 2026-06-24 |
| cnvd-2026-25138 | Huawei HarmonyOS print模块权限控制漏洞 | 2026-06-11 | 2026-06-24 |
| cnvd-2026-25137 | Huawei HarmonyOS IPC模块越界写入漏洞(CNVD-2026-25137) | 2026-06-11 | 2026-06-24 |
| cnvd-2026-25124 | Google Chrome输入验证错误漏洞(CNVD-2026-25124) | 2026-06-15 | 2026-06-24 |
| cnvd-2026-25123 | Google Chrome资源管理错误漏洞(CNVD-2026-25123) | 2026-06-15 | 2026-06-24 |
| cnvd-2026-25122 | Google Chrome资源管理错误漏洞(CNVD-2026-25122) | 2026-06-15 | 2026-06-24 |
| cnvd-2026-25121 | Google Chrome输入验证错误漏洞(CNVD-2026-25121) | 2026-06-15 | 2026-06-24 |
| cnvd-2026-25120 | Google Chrome输入验证错误漏洞(CNVD-2026-25120) | 2026-06-15 | 2026-06-24 |
| cnvd-2026-25119 | Google Chrome Codecs堆缓冲区溢出漏洞(CNVD-2026-25119) | 2026-06-15 | 2026-06-24 |
| cnvd-2026-25118 | Google Chrome Video组件缓冲区溢出漏洞(CNVD-2026-25118) | 2026-06-15 | 2026-06-24 |
| cnvd-2026-25117 | Google Chrome GPU资源管理错误漏洞(CNVD-2026-25117) | 2026-06-15 | 2026-06-24 |
| cnvd-2026-25116 | Google Chrome VideoCapture越界读取漏洞(CNVD-2026-25116) | 2026-06-15 | 2026-06-24 |
| cnvd-2026-25115 | Google Chrome Views组件资源管理错误漏洞(CNVD-2026-25115) | 2026-06-15 | 2026-06-24 |
| cnvd-2026-25114 | OpenClaw路径遍历漏洞(CNVD-2026-25114) | 2026-06-22 | 2026-06-23 |
| cnvd-2026-25113 | OpenClaw授权问题漏洞(CNVD-2026-25113) | 2026-06-22 | 2026-06-23 |
| cnvd-2026-24919 | Microsoft Hyper-V代码执行漏洞(CNVD-2026-24919) | 2026-06-11 | 2026-06-23 |
| cnvd-2026-24918 | Microsoft Hyper-V代码执行漏洞(CNVD-2026-24918) | 2026-06-11 | 2026-06-23 |
| cnvd-2026-24917 | Microsoft Excel信息泄露漏洞(CNVD-2026-24917) | 2026-06-11 | 2026-06-23 |
| cnvd-2026-24916 | Microsoft Excel代码执行漏洞(CNVD-2026-24916) | 2026-06-11 | 2026-06-23 |
| cnvd-2026-24915 | Microsoft Excel代码执行漏洞(CNVD-2026-24915) | 2026-06-11 | 2026-06-23 |
| cnvd-2026-24914 | Microsoft Excel信息泄露漏洞(CNVD-2026-24914) | 2026-06-11 | 2026-06-23 |
| cnvd-2026-24913 | Microsoft Excel代码执行漏洞(CNVD-2026-24913) | 2026-06-11 | 2026-06-23 |
| cnvd-2026-24912 | Microsoft Office代码执行漏洞(CNVD-2026-24912) | 2026-06-11 | 2026-06-23 |
| cnvd-2026-24910 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-24910) | 2026-06-11 | 2026-06-22 |
| cnvd-2026-24909 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-24909) | 2026-06-11 | 2026-06-22 |
| cnvd-2026-24908 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-24908) | 2026-06-11 | 2026-06-22 |
| cnvd-2026-24907 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-24907) | 2026-06-11 | 2026-06-22 |
| cnvd-2026-24906 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-24906) | 2026-06-11 | 2026-06-22 |
| cnvd-2026-24905 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-24905) | 2026-06-11 | 2026-06-22 |
| ID | Description | Published | Updated |
|---|---|---|---|
| bdu:2026-01814 | Уязвимость программного обеспечения Microsoft ACI Confidential Containers, связанная с хр… | 16.02.2026 | 16.02.2026 |
| bdu:2026-01813 | Уязвимость программного обеспечения Azure IoT Explorer, связанная с привязкой к открытым … | 16.02.2026 | 16.02.2026 |
| bdu:2026-01812 | Уязвимость почтового сервера Microsoft Exchange Server, связанная с ошибками представлени… | 16.02.2026 | 16.02.2026 |
| bdu:2026-01811 | Уязвимость службы аналитики данных Azure HDInsights, связанная с непринятием мер по защит… | 16.02.2026 | 16.02.2026 |
| bdu:2026-01810 | Уязвимость редактора электронных таблиц Microsoft Excel пакетов программ Microsoft Office… | 16.02.2026 | 16.02.2026 |
| bdu:2026-01809 | Уязвимость службы хранилища данных Windows Storage Services операционных систем Windows, … | 16.02.2026 | 16.02.2026 |
| bdu:2026-01808 | Уязвимость реализации протокола NTLM операционных систем Windows, позволяющая нарушителю … | 16.02.2026 | 16.02.2026 |
| bdu:2026-01807 | Уязвимость системы аппаратной виртуализации Hyper-V операционной системы Windows, позволя… | 16.02.2026 | 16.02.2026 |
| bdu:2026-01806 | Уязвимость механизма CCF (Cluster Client Failover) операционных систем Windows, позволяющ… | 16.02.2026 | 16.02.2026 |
| bdu:2026-01805 | Уязвимость драйвера HTTP.sys операционных систем Windows, позволяющая нарушителю повысить… | 16.02.2026 | 16.02.2026 |
| bdu:2026-01804 | Уязвимость ядра операционных систем Windows, позволяющая нарушителю повысить свои привилегии | 16.02.2026 | 16.02.2026 |
| bdu:2026-01803 | Уязвимость драйвера WinSock операционных систем Windows, позволяющая нарушителю повысить … | 16.02.2026 | 16.02.2026 |
| bdu:2026-01802 | Уязвимость ядра операционных систем Windows, позволяющая нарушителю повысить свои привилегии | 16.02.2026 | 16.02.2026 |
| bdu:2026-01801 | Уязвимость драйвера HTTP.sys операционных систем Windows, позволяющая нарушителю повысить… | 16.02.2026 | 16.02.2026 |
| bdu:2026-01800 | Уязвимость ядра операционных систем Windows, позволяющая нарушителю повысить свои привилегии | 16.02.2026 | 16.02.2026 |
| bdu:2026-01799 | Уязвимость ядра операционных систем Windows, позволяющая нарушителю раскрыть защищаемую и… | 16.02.2026 | 16.02.2026 |
| bdu:2026-01798 | Уязвимость программы для шифрования информации и создания электронных цифровых подписей G… | 16.02.2026 | 16.02.2026 |
| bdu:2026-01797 | Уязвимость функции _bfd_elf_slurp_version_tables() компонента bfd/elf.c программного сред… | 16.02.2026 | 16.02.2026 |
| bdu:2026-01796 | Уязвимость компонента libbfd.c программного средства разработки GNU Binutils, позволяющая… | 16.02.2026 | 16.02.2026 |
| bdu:2026-01795 | Уязвимость программного средства управления конечными точками Ivanti Endpoint Manager, св… | 16.02.2026 | 16.02.2026 |
| bdu:2026-01794 | Уязвимость функции usbg_make_tpg() модуля drivers/usb/gadget/function/f_tcm.c драйвера га… | 16.02.2026 | 16.02.2026 |
| bdu:2026-01792 | Уязвимость программного средства локальной инфраструктуры Azure Local, связанная с ошибка… | 13.02.2026 | 16.02.2026 |
| bdu:2026-01727 | Уязвимость функции оценки избирательности расширения Intarray системы управления базами д… | 11.02.2026 | 16.02.2026 |
| bdu:2026-01726 | Уязвимость функции обработки типов данных oidvector системы управления базами данных Post… | 11.02.2026 | 16.02.2026 |
| bdu:2026-01724 | Уязвимость компонента pg_trgm системы управления базами данных PostgreSQL, позволяющая на… | 11.02.2026 | 16.02.2026 |
| bdu:2026-01723 | Уязвимость системы управления базами данных PostgreSQL, связанная с неверным индексирован… | 11.02.2026 | 16.02.2026 |
| bdu:2026-01722 | Уязвимость компонента pgcrypto системы управления базами данных PostgreSQL, позволяющая н… | 11.02.2026 | 16.02.2026 |
| bdu:2026-01017 | Уязвимость ядра операционной системы Linux, позволяющая нарушителю выполнить произвольный код | 30.01.2026 | 16.02.2026 |
| bdu:2025-15831 | Уязвимость программного обеспечения для настройки безопасности astra-safepolicy, связанна… | 15.12.2025 | 16.02.2026 |
| bdu:2025-15830 | Уязвимость компонента net ядра операционной системы Linux, позволяющая нарушителю вызвать… | 15.12.2025 | 16.02.2026 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2026-avi-0799 | Multiples vulnérabilités dans GitLab | 2026-06-25T00:00:00.000000 | 2026-06-25T00:00:00.000000 |
| certfr-2026-avi-0798 | Multiples vulnérabilités dans Microsoft Azure Linux | 2026-06-24T00:00:00.000000 | 2026-06-24T00:00:00.000000 |
| certfr-2026-avi-0797 | Multiples vulnérabilités dans cURL et libcurl | 2026-06-24T00:00:00.000000 | 2026-06-24T00:00:00.000000 |
| certfr-2026-avi-0796 | Multiples vulnérabilités dans Tenable Identity Exposure | 2026-06-24T00:00:00.000000 | 2026-06-24T00:00:00.000000 |
| certfr-2026-avi-0795 | Multiples vulnérabilités dans Squid | 2026-06-23T00:00:00.000000 | 2026-06-23T00:00:00.000000 |
| certfr-2026-avi-0794 | Multiples vulnérabilités dans Moodle | 2026-06-23T00:00:00.000000 | 2026-06-23T00:00:00.000000 |
| certfr-2026-avi-0793 | Multiples vulnérabilités dans Postfix | 2026-06-22T00:00:00.000000 | 2026-06-22T00:00:00.000000 |
| certfr-2026-avi-0792 | Multiples vulnérabilités dans les produits Microsoft | 2026-06-22T00:00:00.000000 | 2026-06-22T00:00:00.000000 |
| certfr-2026-avi-0791 | Multiples vulnérabilités dans Microsoft Edge | 2026-06-22T00:00:00.000000 | 2026-06-22T00:00:00.000000 |
| certfr-2026-avi-0790 | Vulnérabilité dans CPython pour Windows | 2026-06-22T00:00:00.000000 | 2026-06-22T00:00:00.000000 |
| certfr-2026-avi-0789 | Vulnérabilité dans PaperCut Print Deploy Client | 2026-06-22T00:00:00.000000 | 2026-06-22T00:00:00.000000 |
| certfr-2026-avi-0788 | Multiples vulnérabilités dans les produits IBM | 2026-06-19T00:00:00.000000 | 2026-06-19T00:00:00.000000 |
| certfr-2026-avi-0787 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2026-06-19T00:00:00.000000 | 2026-06-19T00:00:00.000000 |
| certfr-2026-avi-0786 | Multiples vulnérabilités dans Node.js | 2026-06-19T00:00:00.000000 | 2026-06-19T00:00:00.000000 |
| certfr-2026-avi-0785 | Vulnérabilité dans Traefik | 2026-06-19T00:00:00.000000 | 2026-06-19T00:00:00.000000 |
| certfr-2026-avi-0784 | Multiples vulnérabilités dans le noyau Linux de Debian LTS | 2026-06-19T00:00:00.000000 | 2026-06-19T00:00:00.000000 |
| certfr-2026-avi-0783 | Multiples vulnérabilités dans Microsoft Azure | 2026-06-19T00:00:00.000000 | 2026-06-19T00:00:00.000000 |
| certfr-2026-avi-0782 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2026-06-19T00:00:00.000000 | 2026-06-19T00:00:00.000000 |
| certfr-2026-avi-0781 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2026-06-19T00:00:00.000000 | 2026-06-19T00:00:00.000000 |
| certfr-2026-avi-0780 | Vulnérabilité dans Apereo CAS | 2026-06-19T00:00:00.000000 | 2026-06-19T00:00:00.000000 |
| certfr-2026-avi-0779 | Multiples vulnérabilités dans Google Pixel | 2026-06-19T00:00:00.000000 | 2026-06-19T00:00:00.000000 |
| certfr-2026-avi-0778 | Multiples vulnérabilités dans Google Android 17 | 2026-06-18T00:00:00.000000 | 2026-06-18T00:00:00.000000 |
| certfr-2026-avi-0777 | Multiples vulnérabilités dans Mattermost Desktop App | 2026-06-18T00:00:00.000000 | 2026-06-18T00:00:00.000000 |
| certfr-2026-avi-0776 | Vulnérabilité dans Synacor Zimbra Collaboration | 2026-06-18T00:00:00.000000 | 2026-06-18T00:00:00.000000 |
| certfr-2026-avi-0775 | Multiples vulnérabilités dans Nginx | 2026-06-18T00:00:00.000000 | 2026-06-18T00:00:00.000000 |
| certfr-2026-avi-0774 | Multiples vulnérabilités dans Splunk AI Toolkit | 2026-06-18T00:00:00.000000 | 2026-06-18T00:00:00.000000 |
| certfr-2026-avi-0773 | Multiples vulnérabilités dans les produits Atlassian | 2026-06-18T00:00:00.000000 | 2026-06-18T00:00:00.000000 |
| certfr-2026-avi-0772 | Multiples vulnérabilités dans les produits Cisco | 2026-06-18T00:00:00.000000 | 2026-06-18T00:00:00.000000 |
| certfr-2026-avi-0771 | Multiples vulnérabilités dans Drupal | 2026-06-18T00:00:00.000000 | 2026-06-18T00:00:00.000000 |
| certfr-2026-avi-0770 | Multiples vulnérabilités dans les produits Mitel | 2026-06-18T00:00:00.000000 | 2026-06-18T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2024-ale-005 | [MàJ] Vulnérabilité dans Microsoft Outlook | 2024-02-15T00:00:00.000000 | 2024-04-15T00:00:00.000000 |
| certfr-2024-ale-003 | [MàJ] Incident affectant les solutions AnyDesk | 2024-02-05T00:00:00.000000 | 2024-04-15T00:00:00.000000 |
| certfr-2024-ale-001 | [MàJ] Multiples vulnérabilités dans Ivanti Connect Secure et Policy Secure Gateways | 2024-01-11T00:00:00.000000 | 2024-04-15T00:00:00.000000 |
| certfr-2024-ale-002 | [MàJ] Multiples Vulnérabilités dans GitLab | 2024-01-12T00:00:00.000000 | 2024-02-22T00:00:00.000000 |
| certfr-2023-ale-013 | Vulnérabilité dans Apache Struts 2 | 2023-12-13T00:00:00.000000 | 2024-02-16T00:00:00.000000 |
| certfr-2023-ale-012 | [MàJ] Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway | 2023-10-23T00:00:00.000000 | 2024-02-16T00:00:00.000000 |
| certfr-2023-ale-011 | [MàJ] Multiples vulnérabilités dans Cisco IOS XE | 2023-10-17T00:00:00.000000 | 2024-02-16T00:00:00.000000 |
| certfr-2023-ale-010 | Multiples vulnérabilités dans Exim | 2023-10-02T00:00:00.000000 | 2024-02-16T00:00:00.000000 |
| certfr-2023-ale-008 | [MàJ] Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway | 2023-07-19T00:00:00.000000 | 2024-01-02T00:00:00.000000 |
| certfr-2023-ale-007 | [MàJ] Vulnérabilité dans Zimbra Collaboration Suite | 2023-07-17T00:00:00.000000 | 2024-01-02T00:00:00.000000 |
| certfr-2023-ale-006 | Vulnérabilité dans les produits Microsoft | 2023-07-12T00:00:00.000000 | 2023-12-12T00:00:00.000000 |
| certfr-2023-ale-009 | [MàJ] Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile | 2023-07-26T00:00:00.000000 | 2023-09-15T00:00:00.000000 |
| certfr-2023-ale-005 | Synthèse sur l'exploitation d'une vulnérabilité dans MOVEit Transfer | 2023-07-05T00:00:00.000000 | 2023-09-11T00:00:00.000000 |
| certfr-2023-ale-004 | Vulnérabilité dans les produits Fortinet | 2023-06-13T00:00:00.000000 | 2023-09-11T00:00:00.000000 |
| certfr-2022-ale-014 | Multiples vulnérabilités dans AMI MegaRAC | 2022-12-16T00:00:00.000000 | 2023-09-11T00:00:00.000000 |
| certfr-2023-ale-002 | [MàJ] Vulnérabilité dans Microsoft Outlook | 2023-03-15T00:00:00.000000 | 2023-05-11T00:00:00.000000 |
| certfr-2023-ale-003 | [MàJ] Compromission de l'application 3CX Desktop App | 2023-03-31T00:00:00.000000 | 2023-04-12T00:00:00.000000 |
| certfr-2023-ale-015 | [MàJ] Campagne d'exploitation d'une vulnérabilité affectant VMware ESXi | 2023-02-03T00:00:00.000000 | 2023-03-14T00:00:00.000000 |
| certfr-2023-ale-001 | Vulnérabilité dans Fortinet FortiOS | 2023-03-14T00:00:00.000000 | 2023-03-14T00:00:00.000000 |
| certfr-2022-ale-013 | [MàJ] Vulnérabilité dans Citrix ADC et Gateway | 2022-12-13T00:00:00.000000 | 2023-03-14T00:00:00.000000 |
| certfr-2022-ale-010 | Multiples vulnérabilités dans GLPI | 2022-10-07T00:00:00.000000 | 2023-03-14T00:00:00.000000 |
| certfr-2022-ale-009 | [MaJ] Vulnérabilité dans Zimbra Collaboration | 2022-10-07T00:00:00.000000 | 2023-03-14T00:00:00.000000 |
| certfr-2022-ale-008 | [MaJ] Multiples vulnérabilités dans Microsoft Exchange | 2022-09-30T00:00:00.000000 | 2023-03-14T00:00:00.000000 |
| certfr-2022-ale-007 | Multiples vulnérabilités dans Microsoft Windows | 2022-09-16T00:00:00.000000 | 2023-03-14T00:00:00.000000 |
| certfr-2022-ale-012 | [MàJ] Vulnérabilité dans FortiOS SSL-VPN | 2022-12-13T00:00:00.000000 | 2022-12-20T00:00:00.000000 |
| certfr-2022-ale-011 | Vulnérabilité dans les produits Fortinet | 2022-10-14T00:00:00.000000 | 2022-10-14T00:00:00.000000 |
| certfr-2022-ale-006 | [MàJ] Vulnérabilité dans Atlassian Confluence | 2022-06-03T00:00:00.000000 | 2022-10-07T00:00:00.000000 |
| certfr-2022-ale-002 | Vulnérabilité dans VMware Spring Cloud Gateway | 2022-03-03T00:00:00.000000 | 2022-10-07T00:00:00.000000 |
| certfr-2022-ale-005 | [MàJ] Vulnérabilité dans Microsoft Windows | 2022-05-31T00:00:00.000000 | 2022-09-16T00:00:00.000000 |
| certfr-2022-ale-004 | Vulnérabilité dans F5 BIG-IP | 2022-05-11T00:00:00.000000 | 2022-09-16T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| osv-2024-696 | Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr | 2024-07-31T00:03:10.056663Z | 2026-06-29T14:29:21.218706Z |
| osv-2024-641 | Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr | 2024-07-14T00:06:37.034414Z | 2026-06-29T14:28:17.365773Z |
| osv-2024-400 | Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr | 2024-05-02T00:03:16.309384Z | 2026-06-29T14:27:58.907643Z |
| osv-2024-278 | Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr | 2024-04-19T00:12:11.684954Z | 2026-06-29T14:27:20.909352Z |
| osv-2023-319 | Heap-buffer-overflow in ZSTD_decompressSequencesLong_bmi2 | 2023-04-16T14:01:58.406534Z | 2026-06-27T14:21:51.285672Z |
| osv-2026-981 | Heap-buffer-overflow in std::__1::__function::__func<grk::FileFormatJP2Decompress::FileFormatJP2Decompre | 2026-06-27T00:19:11.500567Z | 2026-06-27T00:19:11.500860Z |
| osv-2026-974 | UNKNOWN READ in unsigned long std::__1::__tree<Ogre::VertexDeclaration*, std::__1::less<Ogre::Ve | 2026-06-27T00:10:28.246228Z | 2026-06-27T00:10:28.246505Z |
| osv-2026-970 | Use-of-uninitialized-value in ogs_cpystrn | 2026-06-27T00:01:55.134195Z | 2026-06-27T00:01:55.134654Z |
| osv-2025-202 | UNKNOWN READ in _blit_xrgb32_lerp_spans | 2025-03-15T00:01:51.127135Z | 2026-06-26T14:17:35.998236Z |
| osv-2023-606 | Heap-buffer-overflow in ZSTD_decompressMultiFrame | 2023-07-23T14:01:02.159160Z | 2026-06-26T14:10:17.847669Z |
| osv-2023-1129 | UNKNOWN READ in HeifPixelImage::overlay | 2023-11-09T13:00:44.441721Z | 2026-06-26T14:09:39.975161Z |
| osv-2023-1350 | Heap-buffer-overflow in inflate | 2023-12-23T00:12:38.562149Z | 2026-06-26T14:09:36.990544Z |
| osv-2021-1070 | Heap-buffer-overflow in ZSTD_decompressBlock_internal | 2021-07-29T00:01:10.187569Z | 2026-06-26T14:05:47.100221Z |
| osv-2021-1672 | Heap-buffer-overflow in blosc_d | 2021-12-12T00:01:29.747137Z | 2026-06-26T14:05:44.389334Z |
| osv-2020-2308 | Heap-buffer-overflow in derive_collocated_motion_vectors | 2021-02-10T00:00:17.357392Z | 2026-06-26T14:05:03.011504Z |
| osv-2022-1134 | Heap-buffer-overflow in ndlz8_decompress | 2022-11-04T00:02:11.463429Z | 2026-06-26T14:04:36.447273Z |
| osv-2026-969 | Heap-use-after-free in Ogre::VertexData::convertPackedColour | 2026-06-26T00:10:53.141269Z | 2026-06-26T00:10:53.141722Z |
| osv-2026-481 | Security exception in org.apache.lucene.analysis.miscellaneous.ASCIIFoldingFilter.foldToASCII | 2026-03-28T00:18:22.245546Z | 2026-06-25T14:38:39.641582Z |
| osv-2025-253 | Security exception in org.apache.lucene.analysis.ckb.SoraniNormalizer.normalize | 2025-04-03T00:17:24.000398Z | 2026-06-25T14:35:08.339881Z |
| osv-2023-390 | Heap-buffer-overflow in sdhci_write | 2023-05-12T14:00:08.854823Z | 2026-06-25T14:35:03.648487Z |
| osv-2022-581 | Heap-buffer-overflow in megasas_map_sgl | 2022-07-14T00:00:45.644503Z | 2026-06-25T14:34:59.399771Z |
| osv-2021-820 | UNKNOWN READ in virtio_gpu_disable_scanout | 2021-06-02T00:00:31.619765Z | 2026-06-25T14:30:43.277249Z |
| osv-2024-1254 | Security exception in org.apache.lucene.util.ArrayUtil.growExact | 2024-11-01T00:07:39.301298Z | 2026-06-25T14:30:30.755660Z |
| osv-2022-842 | Stack-buffer-overflow in wc_Shake256_Final | 2022-09-05T00:00:28.251072Z | 2026-06-25T14:24:03.465175Z |
| osv-2023-107 | Heap-buffer-overflow in DecodeBasicOcspResponse | 2023-02-25T13:00:07.390537Z | 2026-06-25T14:22:50.868185Z |
| osv-2022-937 | Use-after-poison in rx_ip | 2022-09-23T00:02:21.434097Z | 2026-06-25T14:14:49.506796Z |
| osv-2022-834 | Heap-use-after-free in mk_event_timeout_destroy | 2022-09-04T00:00:31.605787Z | 2026-06-24T14:20:45.161409Z |
| osv-2022-1277 | Heap-use-after-free in mk_event_timeout_destroy | 2023-06-26T14:01:01.876870Z | 2026-06-24T14:16:40.793493Z |
| osv-2026-963 | Bad-cast to Ogre::HardwareBuffer from invalid vptr | 2026-06-24T00:03:55.603785Z | 2026-06-24T00:03:55.604165Z |
| osv-2023-96 | Heap-buffer-overflow in load_buffer | 2023-02-23T13:00:28.515290Z | 2026-06-23T14:23:28.598822Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rustsec-2025-0163 | Unsound issue in Trailer | 2025-05-04T12:00:00Z | 2026-06-10T06:13:29Z |
| rustsec-2026-0174 | `Authorization::value` and `WwwAuthenticate::value` can violate ASCII invariants | 2026-03-11T12:00:00Z | 2026-06-08T16:24:35Z |
| rustsec-2026-0173 | proc-macro-error2 is unmaintained | 2026-06-07T12:00:00Z | 2026-06-07T20:48:51Z |
| rustsec-2024-0370 | proc-macro-error is unmaintained | 2024-09-01T12:00:00Z | 2026-06-07T19:54:51Z |
| rustsec-2026-0172 | Possible use after free when deserializing a SQLite database via `SqliteConnection::deserialize_readonly_database` | 2026-06-05T12:00:00Z | 2026-06-05T08:35:31Z |
| rustsec-2026-0171 | `logflux` was removed from crates.io for malicious code | 2026-06-03T12:00:00Z | 2026-06-04T19:46:31Z |
| rustsec-2026-0170 | tide is unmaintained | 2026-06-04T12:00:00Z | 2026-06-04T19:11:08Z |
| rustsec-2026-0169 | surf is unmaintained | 2026-06-04T12:00:00Z | 2026-06-04T19:11:08Z |
| rustsec-2026-0168 | `pqcrypto-hqc` is unmaintained: upstream PQClean project being archived | 2026-06-04T12:00:00Z | 2026-06-04T14:53:59Z |
| rustsec-2026-0167 | `pqcrypto-classicmceliece` is unmaintained: upstream PQClean project being archived | 2026-06-04T12:00:00Z | 2026-06-04T14:53:59Z |
| rustsec-2026-0166 | `pqcrypto-mldsa` is unmaintained: upstream PQClean project being archived | 2026-06-04T12:00:00Z | 2026-06-04T14:53:59Z |
| rustsec-2026-0165 | `pqcrypto-falcon` is unmaintained: upstream PQClean project being archived | 2026-06-04T12:00:00Z | 2026-06-04T14:53:59Z |
| rustsec-2026-0164 | `pqcrypto` is unmaintained: upstream PQClean project being archived | 2026-06-04T12:00:00Z | 2026-06-04T14:53:59Z |
| rustsec-2026-0163 | `pqcrypto-internals` is unmaintained: upstream PQClean project being archived | 2026-06-04T12:00:00Z | 2026-06-04T14:53:59Z |
| rustsec-2026-0162 | `pqcrypto-traits` is unmaintained: upstream PQClean project being archived | 2026-06-04T12:00:00Z | 2026-06-04T14:53:59Z |
| rustsec-2026-0161 | `pqcrypto-mlkem` is unmaintained: upstream PQClean project being archived | 2026-06-04T12:00:00Z | 2026-06-04T14:53:59Z |
| rustsec-2026-0160 | `pqcrypto-sphincsplus` is unmaintained: upstream PQClean project being archived | 2026-06-04T12:00:00Z | 2026-06-04T14:53:59Z |
| rustsec-2026-0159 | Sender-binding gaps in to-device messages | 2026-06-03T12:00:00Z | 2026-06-04T12:02:36Z |
| rustsec-2026-0158 | Incomplete message edit validation in matrix-sdk-ui | 2026-06-03T12:00:00Z | 2026-06-04T11:56:29Z |
| rustsec-2026-0157 | Several memory corruption issues via safe APIs | 2026-06-01T12:00:00Z | 2026-06-03T10:42:03Z |
| rustsec-2026-0156 | Bad-free in `MetaCallException::new` | 2026-06-01T12:00:00Z | 2026-06-03T10:42:03Z |
| rustsec-2026-0155 | `exploration` was removed from crates.io for malicious code | 2026-06-02T12:00:00Z | 2026-06-03T08:48:05Z |
| rustsec-2026-0154 | Unbounded 32-bit allocation | 2026-05-15T12:00:00Z | 2026-06-02T09:53:13Z |
| rustsec-2026-0153 | Unchecked `CryptoVec` allocation and growth handling | 2026-05-15T12:00:00Z | 2026-06-02T09:53:13Z |
| rustsec-2018-0019 | Multiple memory safety issues | 2018-06-08T12:00:00Z | 2026-06-01T14:16:58Z |
| rustsec-2026-0152 | Use-after-free | 2026-05-27T12:00:00Z | 2026-06-01T13:19:35Z |
| rustsec-2026-0150 | audiopus_sys is unmaintained | 2026-05-21T12:00:00Z | 2026-05-27T15:33:53Z |
| rustsec-2026-0149 | WASI path_open(TRUNCATE) bypasses `FilePerms::WRITE` host restriction | 2026-05-21T12:00:00Z | 2026-05-22T10:02:28Z |
| rustsec-2025-0162 | `VMABuffer::set_data` may allow out-of-bounds writes from safe code | 2025-04-23T12:00:00Z | 2026-05-20T13:32:31Z |
| rustsec-2026-0148 | OCI layer symlink escape → arbitrary host write | 2026-05-16T12:00:00Z | 2026-05-20T10:00:58Z |