Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-3847 | N/A | Memory safety bugs fixed in Firefox 148.0.2 |
Mozilla |
Firefox |
2026-03-10T15:03:51.113Z | 2026-04-13T13:54:06.636Z |
| cve-2026-3846 | N/A | Same-origin policy bypass in the CSS Parsing and Compu… |
Mozilla |
Firefox |
2026-03-10T15:03:50.043Z | 2026-04-13T13:54:04.223Z |
| cve-2026-3845 | N/A | Heap buffer overflow in the Audio/Video: Playback comp… |
Mozilla |
Firefox |
2026-03-10T15:03:48.867Z | 2026-04-13T13:53:59.701Z |
| cve-2026-3862 | 4.6 (v4.0) | Cross-Site Scripting Vulnerability in SiteMinder Admin… |
Broadcom |
SiteMinder |
2026-03-10T14:52:52.344Z | 2026-03-10T15:40:24.948Z |
| cve-2026-3483 | 7.8 (v3.1) | An exposed dangerous method in Ivanti DSM before … |
Ivanti |
Desktop and Server Management |
2026-03-10T14:19:25.340Z | 2026-03-11T03:56:43.597Z |
| cve-2026-2339 | 7.5 (v3.1) | RCE in TUBITAK BILGEM's Liderahenk |
TUBITAK BILGEM Software Technologies Research Institute |
Liderahenk |
2026-03-10T12:39:12.987Z | 2026-03-27T07:28:49.302Z |
| cve-2025-11739 | 8.5 (v4.0) | CWE‑502: Deserialization of Untrusted Data vulner… |
Schneider Electric |
EcoStruxure™ Power Monitoring Expert (PME) |
2026-03-10T12:25:14.501Z | 2026-03-10T17:26:25.203Z |
| cve-2025-13957 | 7.5 (v4.0) | CWE-798: Use of Hard-coded Credentials vulnerabil… |
Schneider Electric |
EcoStruxure™ IT Data Center Expert (Formerly known as StruxureWare Data Center Expert) |
2026-03-10T12:19:04.041Z | 2026-03-10T17:21:41.222Z |
| cve-2026-2742 | 5.3 (v4.0) | Unauthorized session creation via reserved framework p… |
vaadin |
vaadin |
2026-03-10T12:08:48.738Z | 2026-03-16T10:52:30.637Z |
| cve-2026-2741 | 2.3 (v4.0) | Zip Slip Path Traversal on Node Unpack |
vaadin |
vaadin |
2026-03-10T12:08:30.515Z | 2026-03-16T10:52:34.173Z |
| cve-2026-3843 | 9.8 (v3.1) 9.3 (v4.0) | SQL Injection in Nefteprodukttekhnika BUK TS-G Allows … |
Nefteprodukttekhnika LLC |
BUK TS-G Gas Station Automation System |
2026-03-10T11:07:07.393Z | 2026-03-10T14:10:41.086Z |
| cve-2026-22614 | 6.1 (v3.1) | The encryption mechanism used in Eaton's EasySoft… |
Eaton |
EasySoft |
2026-03-10T10:24:35.909Z | 2026-03-10T13:49:27.224Z |
| cve-2026-21791 | 3.3 (v3.1) | HCL Sametime for Android is affected by sensitive info… |
HCL |
Sametime |
2026-03-10T10:10:58.430Z | 2026-03-10T16:51:09.483Z |
| cve-2026-3228 | NextScripts: Social Networks Auto-Poster <= 4.4.6 - Au… |
nextscripts |
NextScripts: Social Networks Auto-Poster |
2026-03-10T09:58:59.045Z | 2026-04-08T17:09:22.134Z | |
| cve-2026-2724 | Unlimited Elements For Elementor <= 2.0.5 - Unauthenti… |
unitecms |
Unlimited Elements For Elementor |
2026-03-10T09:58:58.447Z | 2026-04-08T16:58:31.816Z | |
| cve-2026-23907 | Apache PDFBox Examples: Path Traversal in PDFBox Extra… |
Apache Software Foundation |
Apache PDFBox Examples |
2026-03-10T09:43:40.384Z | 2026-03-10T17:51:53.261Z | |
| cve-2026-3315 | 5.8 (v4.0) | Local Privilege Escalation Due to Writable Executable … |
ASSA ABLOY |
Visionline |
2026-03-10T09:35:42.236Z | 2026-03-11T05:13:30.886Z |
| cve-2026-1261 | MetForm Pro <= 3.9.6 - Unauthenticated Stored Cross-Si… |
Wpmet |
MetForm Pro |
2026-03-10T09:25:30.353Z | 2026-04-08T17:30:08.199Z | |
| cve-2025-41712 | 6.5 (v3.1) | Incorrect Permission Assignment on power analyzer |
Janitza |
UMG 96RM-E 24V(5222063) |
2026-03-10T08:27:10.120Z | 2026-03-10T16:51:35.020Z |
| cve-2025-41711 | 5.3 (v3.1) | Use of a Broken or Risky Cryptographic Algorithm for f… |
Janitza |
UMG 96RM-E 24V(5222063) |
2026-03-10T08:26:48.759Z | 2026-03-10T16:51:40.984Z |
| cve-2025-41710 | 6.5 (v3.1) | Use of Hard-coded Credentials in power analyzer |
Janitza |
UMG 96RM-E 24V(5222063) |
2026-03-10T08:26:30.909Z | 2026-03-10T16:51:47.193Z |
| cve-2025-41709 | 9.8 (v3.1) | Command injection in power analyzer via Modbus-TCP and… |
Janitza |
UMG 96RM-E 24V(5222063) |
2026-03-10T08:26:14.936Z | 2026-03-18T08:16:28.698Z |
| cve-2026-2364 | 7.3 (v3.1) | CODESYS Installer TOCTOU Privilege Escalation |
CODESYS |
CODESYS Installer |
2026-03-10T07:22:42.658Z | 2026-03-10T16:51:59.328Z |
| cve-2026-1508 | N/A | Court Reservation < 1.10.9 - Event Deletion via CSRF |
Unknown |
Court Reservation |
2026-03-10T06:00:06.715Z | 2026-03-10T12:58:58.315Z |
| cve-2026-0953 | Tutor LMS Pro <= 3.9.5 - Authentication Bypass via Soc… |
themeum |
Tutor LMS Pro |
2026-03-10T05:26:28.745Z | 2026-04-08T17:09:29.685Z | |
| cve-2025-2399 | 5.9 (v3.1) | Denial of Service (DoS) Vulnerability in Mitsubishi El… |
Mitsubishi Electric Corporation |
Mitsubishi Electric CNC M800V Series M800VW |
2026-03-10T04:40:00.599Z | 2026-03-24T02:03:47.520Z |
| cve-2026-3585 | The Events Calendar <= 6.15.17 - Authenticated (Author… |
stellarwp |
The Events Calendar |
2026-03-10T03:33:51.369Z | 2026-04-08T17:09:33.116Z | |
| cve-2026-1919 | Booktics <= 1.0.16 - Missing Authorization to Get Item… |
arraytics |
Booktics – Booking Calendar for Appointments and Service Businesses |
2026-03-10T02:21:49.636Z | 2026-04-08T17:21:36.464Z | |
| cve-2026-1920 | Booktics <= 1.0.16 - Missing Authorization to Addon Pl… |
arraytics |
Booktics – Booking Calendar for Appointments and Service Businesses |
2026-03-10T02:21:49.040Z | 2026-04-08T17:14:30.512Z | |
| cve-2025-36173 | 6.1 (v3.1) | InfoSphere Data Architect (IDA) 9.2.1 Vulnerability Fixes. |
IBM |
InfoSphere Data Architect |
2026-03-10T01:40:26.895Z | 2026-03-10T13:53:12.231Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2010-avi-456 | Multiples vulnérabilités dans Cisco IOS | 2010-09-24T00:00:00.000000 | 2010-09-24T00:00:00.000000 |
| certa-2010-avi-455 | Vulnérabilité dans Cisco Unified Communications Manager | 2010-09-23T00:00:00.000000 | 2010-09-23T00:00:00.000000 |
| certa-2010-avi-454 | Vulnérabilités dans Alcatel-Lucent OmniTouch Contact Center Standard Edition | 2010-09-23T00:00:00.000000 | 2010-09-23T00:00:00.000000 |
| certa-2010-avi-453 | Vulnérabilité des produits Alcatel-Lucent OmniVista 4760 | 2010-09-23T00:00:00.000000 | 2010-09-23T00:00:00.000000 |
| certa-2010-avi-452 | Vulnérabilté dans RSA Authentication Agent | 2010-09-23T00:00:00.000000 | 2010-09-23T00:00:00.000000 |
| certa-2010-avi-451 | Multiples vulnérabilités dans Plesk Sitebuilder | 2010-09-22T00:00:00.000000 | 2010-09-22T00:00:00.000000 |
| certa-2010-avi-450 | Vulnérabilité dans 7-zip | 2010-09-22T00:00:00.000000 | 2010-09-22T00:00:00.000000 |
| certa-2010-avi-449 | Vulnérabilité dans bzip2 | 2010-09-22T00:00:00.000000 | 2010-11-29T00:00:00.000000 |
| certa-2010-avi-448 | Vulnérabilité dans Mac OS X | 2010-09-21T00:00:00.000000 | 2010-09-21T00:00:00.000000 |
| certa-2010-avi-447 | Vulnérabilité dans Adobe Flash Player | 2010-09-21T00:00:00.000000 | 2010-09-21T00:00:00.000000 |
| certa-2010-avi-446 | Multiples vulnérabilités dans IBM WebSphere Application Server Community Edition | 2010-09-20T00:00:00.000000 | 2010-09-20T00:00:00.000000 |
| certa-2010-avi-445 | Vulnérabilités dans Splunk 4.1.5 | 2010-09-20T00:00:00.000000 | 2010-09-20T00:00:00.000000 |
| certa-2010-avi-444 | Vulnérabilité dans 3Com OfficeConnect Gigabit VPN Firewall | 2010-09-20T00:00:00.000000 | 2010-09-20T00:00:00.000000 |
| certa-2010-avi-443 | Vulnérabilités dans IBM DB2 | 2010-09-20T00:00:00.000000 | 2010-09-21T00:00:00.000000 |
| certa-2010-avi-442 | Vulnérabilité dans IBM Lotus Sametime | 2010-09-17T00:00:00.000000 | 2010-09-17T00:00:00.000000 |
| certa-2010-avi-441 | Vulnérabilités dans QuickTime | 2010-09-17T00:00:00.000000 | 2010-09-17T00:00:00.000000 |
| certa-2010-avi-440 | Vulnérabilité dans Lotus Domino iCalendar | 2010-09-16T00:00:00.000000 | 2010-09-16T00:00:00.000000 |
| certa-2010-avi-439 | Multiples vulnérabilités dans Google Chrome | 2010-09-15T00:00:00.000000 | 2010-09-15T00:00:00.000000 |
| certa-2010-avi-438 | Vulnérabilité dans Microsoft Windows CSRSS | 2010-09-15T00:00:00.000000 | 2010-09-15T00:00:00.000000 |
| certa-2010-avi-437 | Vulnérabilité dans Microsoft Active Directory | 2010-09-15T00:00:00.000000 | 2010-09-15T00:00:00.000000 |
| certa-2010-avi-436 | Vulnérabilité dans WordPad | 2010-09-15T00:00:00.000000 | 2010-09-15T00:00:00.000000 |
| certa-2010-avi-435 | Vulnérabilité dans Microsoft RPC | 2010-09-15T00:00:00.000000 | 2010-09-15T00:00:00.000000 |
| certa-2010-avi-434 | Vulnérabilités dans IIS | 2010-09-15T00:00:00.000000 | 2010-09-15T00:00:00.000000 |
| certa-2010-avi-433 | Vulnérabilité dans Microsoft Outlook | 2010-09-15T00:00:00.000000 | 2010-09-15T00:00:00.000000 |
| certa-2010-avi-432 | Vulnérabilité dans le processeur de scripts Unicode sous Microsoft Windows | 2010-09-15T00:00:00.000000 | 2010-09-15T00:00:00.000000 |
| certa-2010-avi-431 | Vulnérabilité dans le codec MPEG-4 | 2010-09-15T00:00:00.000000 | 2010-09-15T00:00:00.000000 |
| certa-2010-avi-430 | Vulnérabilité dans le service d'impression de Microsoft Windows | 2010-09-15T00:00:00.000000 | 2010-09-15T00:00:00.000000 |
| certa-2010-avi-429 | Vulnérabilité dans Samba | 2010-09-14T00:00:00.000000 | 2010-09-21T00:00:00.000000 |
| certa-2010-avi-428 | Vulnérabilités dans IBM AIX | 2010-09-14T00:00:00.000000 | 2010-09-14T00:00:00.000000 |
| certa-2010-avi-427 | Vulnérabilités dans phpMyAdmin | 2010-09-10T00:00:00.000000 | 2010-09-10T00:00:00.000000 |