Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-28528 | 2.1 (v4.0) 4.6 (v3.1) | BlueKitchen BTstack < 1.8.1 AVRCP Browsing Target GET_… |
BlueKitchen GmbH |
BTstack |
2026-03-30T14:08:00.891Z | 2026-03-30T16:45:55.370Z |
| cve-2026-28527 | 2.1 (v4.0) 3.5 (v3.1) | BlueKitchen BTstack < 1.8.1 AVRCP Controller GET_PLAYE… |
BlueKitchen GmbH |
BTstack |
2026-03-30T14:07:21.480Z | 2026-04-01T18:08:46.863Z |
| cve-2026-28526 | 2.1 (v4.0) 3.5 (v3.1) | BlueKitchen BTstack < 1.8.1 AVRCP Controller LIST_PLAY… |
BlueKitchen GmbH |
BTstack |
2026-03-30T14:06:55.599Z | 2026-03-30T14:39:26.443Z |
| cve-2026-3321 | 8.7 (v4.0) | Authorization Bypass in ON24 Q&A chat |
ON24 |
ON24 Q&A chat |
2026-03-30T13:17:51.425Z | 2026-03-30T15:32:43.386Z |
| cve-2026-4315 | 7.1 (v4.0) | WatchGuard Firebox Cross-Site Request Forgery (CSRF) i… |
WatchGuard |
Fireware OS |
2026-03-30T12:38:15.842Z | 2026-03-30T13:27:05.601Z |
| cve-2026-4266 | 8.4 (v4.0) | WatchGuard Firebox Insecure Deserialization in Firewar… |
WatchGuard |
Fireware OS |
2026-03-30T12:38:01.593Z | 2026-03-31T03:55:35.825Z |
| cve-2019-25655 | 6.9 (v4.0) 6.2 (v3.1) | Device Monitoring Studio 8.10.00.8925 Denial of Service |
hdd |
Device Monitoring Studio |
2026-03-30T11:02:28.294Z | 2026-03-30T15:59:12.396Z |
| cve-2019-25654 | 8.7 (v4.0) 7.5 (v3.1) | Core FTP/SFTP Server 1.2 Denial of Service via Buffer … |
Coreftp |
Core FTP/SFTP Server |
2026-03-30T11:02:27.608Z | 2026-03-30T14:51:41.003Z |
| cve-2019-25653 | 6.9 (v4.0) 6.2 (v3.1) | Navicat for Oracle 12.1.15 Password Field Denial of Service |
Navicat |
Navicat for Oracle |
2026-03-30T11:02:27.002Z | 2026-03-30T13:53:07.017Z |
| cve-2018-25235 | 6.9 (v4.0) 6.2 (v3.1) | NetworkActiv Web Server 4.0 Username Field Buffer Over… |
Networkactiv |
NetworkActiv Web Server |
2026-03-30T11:02:26.215Z | 2026-03-30T11:23:08.378Z |
| cve-2018-25234 | 6.9 (v4.0) 6.2 (v3.1) | SmartFTP Client 9.0.2615.0 Denial of Service via Host Field |
Smartftp |
SmartFTP Client |
2026-03-30T11:02:25.501Z | 2026-04-01T18:06:41.161Z |
| cve-2018-25233 | 6.9 (v4.0) 6.2 (v3.1) | WebDrive 18.00.5057 Denial of Service via Secure WebDAV |
Webdrive |
WebDrive |
2026-03-30T11:02:24.755Z | 2026-03-30T13:38:57.879Z |
| cve-2018-25232 | 6.8 (v4.0) 5.5 (v3.1) | Softros LAN Messenger 9.2 Denial of Service via Log Fi… |
Messenger |
Softros LAN Messenger |
2026-03-30T11:02:23.817Z | 2026-03-30T15:59:46.180Z |
| cve-2018-25231 | 6.9 (v4.0) 6.2 (v3.1) | HeidiSQL 9.5.0.5196 Denial of Service via Preferences |
Heidisql |
HeidiSQL |
2026-03-30T11:02:23.160Z | 2026-03-30T14:51:48.071Z |
| cve-2018-25230 | 6.8 (v4.0) 5.5 (v3.1) | Free IP Switcher 3.1 Denial of Service via Computer Name |
Eusing |
Free IP Switcher |
2026-03-30T11:02:22.499Z | 2026-03-30T14:04:07.751Z |
| cve-2018-25229 | 6.8 (v4.0) 5.5 (v3.1) | BulletProof FTP Server 2019.0.0.50 Denial of Service v… |
Bpftpserver |
BulletProof FTP Server |
2026-03-30T11:02:21.772Z | 2026-03-30T11:23:59.161Z |
| cve-2018-25228 | 6.9 (v4.0) 6.2 (v3.1) | NetSetMan 4.7.1 Workgroup Buffer Overflow Denial of Service |
Netsetman |
NetSetMan |
2026-03-30T11:02:21.149Z | 2026-04-01T18:05:38.384Z |
| cve-2018-25227 | 6.9 (v4.0) 6.2 (v3.1) | Valentina Studio 9.0.4 Denial of Service via Host Parameter |
Valentina-Db |
Valentina Studio |
2026-03-30T11:02:20.479Z | 2026-03-30T13:39:24.628Z |
| cve-2018-25226 | 6.9 (v4.0) 6.2 (v3.1) | FTPShell Server 6.83 Denial of Service via Account Name |
Ftpshell |
FTPShell Server |
2026-03-30T11:02:19.723Z | 2026-03-30T16:00:21.098Z |
| cve-2026-1612 | 6.9 (v4.0) | Hard-coded AWS Key in AL-KO Robolinho Update Software |
AL-KO |
Robolinho Update Software |
2026-03-30T09:56:21.710Z | 2026-04-13T07:26:47.168Z |
| cve-2026-5128 | N/A | {'providerMetadata': {'orgId': '309f9ea4-e3e9-4c6c-b79d-e8eb01244f2c', 'shortName': 'TuranSec', 'dateUpdated': '2026-03-31T12:38:28.035Z'}, 'rejectedReasons': [{'lang': 'en', 'value': 'This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.', 'supportingMedia': [{'type': 'text/html', 'base64': False, 'value': 'This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.'}]}], 'x_generator': {'engine': 'Vulnogram 1.0.1'}} | N/A | N/A | 2026-03-30T09:18:05.381Z | 2026-03-31T12:38:28.035Z |
| cve-2026-4416 | 8.5 (v4.0) 7.8 (v3.1) | GIGABYTE|Performance Library - Insecure Deserialization |
GIGABYTE |
Performance Library |
2026-03-30T07:52:21.641Z | 2026-03-30T15:08:37.998Z |
| cve-2026-5121 | 7.5 (v3.1) | Libarchive: libarchive: arbitrary code execution via i… |
Red Hat |
Red Hat Enterprise Linux 7 Extended Lifecycle Support |
2026-03-30T07:47:28.562Z | 2026-05-05T20:35:19.300Z |
| cve-2026-25704 | 5.8 (v4.0) | Incomplete privilege drop for com.system76.CosmicGreet… |
pop-os |
cosmic-greeter |
2026-03-30T07:44:39.672Z | 2026-04-16T16:32:11.153Z |
| cve-2026-4415 | 9.2 (v4.0) 8.1 (v3.1) | GIGABYTE|Gigabyte Control Center - Arbitrary File Write |
GIGABYTE |
Gigabyte Control Center |
2026-03-30T07:36:16.066Z | 2026-03-31T03:55:38.063Z |
| cve-2025-3716 | 5.3 (v4.0) | User enumeration in ESET Protect (on-prem) |
ESET, spol. s.r.o |
ESET Protect (on-prem) |
2026-03-30T07:30:30.707Z | 2026-03-30T15:19:53.699Z |
| cve-2025-15379 | Command Injection in mlflow/mlflow |
mlflow |
mlflow/mlflow |
2026-03-30T07:16:57.610Z | 2026-03-31T13:50:57.378Z | |
| cve-2026-3945 | 7.8 (v2.0) 7.5 (v3.1) 8.7 (v4.0) | An integer overflow vulnerability in the HTTP chu… |
tinyproxy |
tinyproxy |
2026-03-30T07:05:23.295Z | 2026-03-30T15:02:33.584Z |
| cve-2026-2328 | 7.5 (v3.1) | Backend Access Due to Insufficient Input Validation |
WAGO |
Device Sphere |
2026-03-30T06:55:31.424Z | 2026-03-30T18:08:02.801Z |
| cve-2026-5119 | 5.9 (v3.1) | Libsoup: libsoup: information disclosure via cleartext… |
Red Hat |
Red Hat Enterprise Linux 10 |
2026-03-30T05:35:57.099Z | 2026-04-13T14:55:22.542Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2019-avi-494 | Multiples vulnérabilités dans les produits Intel | 2019-10-09T00:00:00.000000 | 2019-10-09T00:00:00.000000 |
| certfr-2019-avi-493 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2019-10-09T00:00:00.000000 | 2019-10-09T00:00:00.000000 |
| certfr-2019-avi-492 | Multiples vulnérabilités dans les produits Magento | 2019-10-09T00:00:00.000000 | 2019-10-09T00:00:00.000000 |
| certfr-2019-avi-491 | Multiples vulnérabilités dans OpenSSH | 2019-10-09T00:00:00.000000 | 2019-10-09T00:00:00.000000 |
| certfr-2019-avi-490 | Vulnérabilité dans Citrix Application Delivery Management | 2019-10-09T00:00:00.000000 | 2019-10-09T00:00:00.000000 |
| certfr-2019-avi-489 | Multiples vulnérabilités dans les produits Siemens | 2019-10-08T00:00:00.000000 | 2019-10-08T00:00:00.000000 |
| certfr-2019-avi-488 | Multiples vulnérabilités dans les produits Schneider Electric | 2019-10-08T00:00:00.000000 | 2019-10-08T00:00:00.000000 |
| certfr-2019-avi-487 | Vulnérabilité dans Fortinet FortiSIEM | 2019-10-08T00:00:00.000000 | 2019-10-08T00:00:00.000000 |
| certfr-2019-avi-486 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2019-10-08T00:00:00.000000 | 2019-10-31T00:00:00.000000 |
| certfr-2019-avi-485 | Multiples vulnérabilités dans IBM QRadar | 2019-10-08T00:00:00.000000 | 2019-10-08T00:00:00.000000 |
| certfr-2019-avi-484 | Multiples vulnérabilités dans Google Android | 2019-10-08T00:00:00.000000 | 2019-10-08T00:00:00.000000 |
| certfr-2019-avi-483 | Multiples vulnérabilités dans les produits Apple | 2019-10-08T00:00:00.000000 | 2019-10-08T00:00:00.000000 |
| certfr-2019-avi-482 | Multiples vulnérabilités dans le noyau linux d'Ubuntu | 2019-10-07T00:00:00.000000 | 2019-10-07T00:00:00.000000 |
| certfr-2019-avi-481 | Multiples vulnérabilités dans les produits Cisco | 2019-10-03T00:00:00.000000 | 2019-10-03T00:00:00.000000 |
| certfr-2019-avi-480 | Vulnérabilité dans les routeurs Moxa Séries EDR-810 | 2019-10-02T00:00:00.000000 | 2019-10-02T00:00:00.000000 |
| certfr-2019-avi-479 | Vulnérabilité dans le noyau Linux de RedHat | 2019-10-01T00:00:00.000000 | 2019-10-01T00:00:00.000000 |
| certfr-2019-avi-478 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2019-10-01T00:00:00.000000 | 2019-10-01T00:00:00.000000 |
| certfr-2019-avi-477 | Multiples vulnérabilités dans Zimbra | 2019-10-01T00:00:00.000000 | 2019-10-01T00:00:00.000000 |
| certfr-2019-avi-476 | Multiples vulnérabilités dans les routeurs Moxa Séries EDR-810 | 2019-09-30T00:00:00.000000 | 2019-09-30T00:00:00.000000 |
| certfr-2019-avi-475 | Multiples vulnérabilités dans Foxit Reader et 3D Plugin Beta | 2019-09-30T00:00:00.000000 | 2019-09-30T00:00:00.000000 |
| certfr-2019-avi-474 | Vulnérabilité dans Exim | 2019-09-30T00:00:00.000000 | 2019-09-30T00:00:00.000000 |
| certfr-2019-avi-473 | Vulnérabilité dans Apple iOS et iPadOS | 2019-09-30T00:00:00.000000 | 2019-09-30T00:00:00.000000 |
| certfr-2019-avi-472 | Multiples vulnérabilités dans Google Chrome OS | 2019-09-30T00:00:00.000000 | 2019-09-30T00:00:00.000000 |
| certfr-2019-avi-471 | Vulnérabilité dans LibreOffice | 2019-09-27T00:00:00.000000 | 2019-09-27T00:00:00.000000 |
| certfr-2019-avi-470 | Multiples vulnérabilités dans PHP | 2019-09-27T00:00:00.000000 | 2019-09-27T00:00:00.000000 |
| certfr-2019-avi-469 | Vulnérabilité dans les produits Apple | 2019-09-27T00:00:00.000000 | 2019-09-27T00:00:00.000000 |
| certfr-2019-avi-468 | Multiples vulnérabilités dans les produits Cisco | 2019-09-26T00:00:00.000000 | 2019-09-26T00:00:00.000000 |
| certfr-2019-avi-467 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2019-09-26T00:00:00.000000 | 2019-09-26T00:00:00.000000 |
| certfr-2019-avi-466 | Multiples vulnérabilités dans le noyau Linux de Debian | 2019-09-26T00:00:00.000000 | 2019-09-26T00:00:00.000000 |
| certfr-2019-avi-465 | Multiples vulnérabilités dans Citrix License Server | 2019-09-26T00:00:00.000000 | 2019-09-26T00:00:00.000000 |