Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2024-23104 | 5.4 (v3.1) | An exposure of sensitive information to an unauth… |
Fortinet |
FortiVoice |
2026-04-14T15:38:18.540Z | 2026-04-14T16:46:15.501Z |
| cve-2026-39811 | 4.4 (v3.1) | A integer overflow or wraparound vulnerability in… |
Fortinet |
FortiWeb |
2026-04-14T15:38:20.186Z | 2026-04-14T16:46:15.353Z |
| cve-2025-61886 | 4.9 (v3.1) | An Improper Neutralization of Input During Web Pa… |
Fortinet |
FortiSandbox PaaS |
2026-04-14T15:38:21.587Z | 2026-04-14T16:46:15.066Z |
| cve-2026-22573 | 6.2 (v3.1) | An improper limitation of a pathname to a restric… |
Fortinet |
FortiSOAR on-premise |
2026-04-14T15:38:22.081Z | 2026-04-14T16:46:14.901Z |
| cve-2025-68649 | 5.4 (v3.1) | An improper limitation of a pathname to a restric… |
Fortinet |
FortiManager Cloud |
2026-04-14T15:39:46.446Z | 2026-04-14T16:46:14.224Z |
| cve-2025-61624 | 5.4 (v3.1) | An Improper Limitation of a Pathname to a Restric… |
Fortinet |
FortiOS |
2026-04-14T15:39:51.445Z | 2026-04-14T16:46:14.073Z |
| cve-2026-0385 | 5 (v3.1) | Microsoft Edge (Chromium-based) for Android Spoofing V… |
Microsoft |
Microsoft Edge for Android |
2026-03-13T21:55:20.781Z | 2026-04-14T16:36:45.322Z |
| cve-2026-26133 | 7.1 (v3.1) | M365 Copilot Information Disclosure Vulnerability |
Microsoft |
Microsoft 365 Copilot for Android |
2026-03-13T21:10:13.535Z | 2026-04-14T16:36:44.731Z |
| cve-2026-26144 | 7.5 (v3.1) | Microsoft Excel Information Disclosure Vulnerability |
Microsoft |
Microsoft 365 Apps for Enterprise |
2026-03-10T17:05:23.445Z | 2026-04-14T16:36:43.710Z |
| cve-2026-26141 | 7.8 (v3.1) | Hybrid Worker Extension (Arc‑enabled Windows VMs) Elev… |
Microsoft |
Azure Automation Hybrid Worker Windows Extension |
2026-03-10T17:05:22.943Z | 2026-04-14T16:36:42.821Z |
| cve-2026-26130 | 7.5 (v3.1) | ASP.NET Core Denial of Service Vulnerability |
Microsoft |
ASP.NET Core 10.0 |
2026-03-10T17:05:22.367Z | 2026-04-14T16:36:42.136Z |
| cve-2026-26123 | 5.5 (v3.1) | Microsoft Authenticator Information Disclosure Vulnerability |
Microsoft |
Microsoft Authenticator for Android |
2026-03-10T19:01:31.904Z | 2026-04-14T16:36:41.358Z |
| cve-2026-26118 | 8.8 (v3.1) | Azure MCP Server Tools Elevation of Privilege Vulnerability |
Microsoft |
Azure MCP Server Tools 1.0.0 (npm) |
2026-03-10T17:05:21.115Z | 2026-04-14T16:36:40.631Z |
| cve-2026-26117 | 7.8 (v3.1) | Arc Enabled Servers - Azure Connected Machine Agent El… |
Microsoft |
Arc Enabled Servers - Azure Connected Machine Agent |
2026-03-10T17:05:20.543Z | 2026-04-14T16:36:39.995Z |
| cve-2026-26110 | 8.4 (v3.1) | Microsoft Office Remote Code Execution Vulnerability |
Microsoft |
Microsoft 365 Apps for Enterprise |
2026-03-10T17:05:19.883Z | 2026-04-14T16:36:39.349Z |
| cve-2026-26109 | 8.4 (v3.1) | Microsoft Excel Remote Code Execution Vulnerability |
Microsoft |
Microsoft 365 Apps for Enterprise |
2026-03-10T17:05:19.197Z | 2026-04-14T16:36:38.604Z |
| cve-2026-26108 | 7.8 (v3.1) | Microsoft Excel Remote Code Execution Vulnerability |
Microsoft |
Microsoft 365 Apps for Enterprise |
2026-03-10T17:05:18.677Z | 2026-04-14T16:36:37.813Z |
| cve-2026-26107 | 7.8 (v3.1) | Microsoft Excel Remote Code Execution Vulnerability |
Microsoft |
Microsoft 365 Apps for Enterprise |
2026-03-10T17:05:18.106Z | 2026-04-14T16:36:37.182Z |
| cve-2026-26106 | 8.8 (v3.1) | Microsoft SharePoint Server Remote Code Execution Vuln… |
Microsoft |
Microsoft SharePoint Enterprise Server 2016 |
2026-03-10T17:05:17.483Z | 2026-04-14T16:36:36.408Z |
| cve-2026-23665 | 7.8 (v3.1) | Linux Azure Diagnostic extension (LAD) Elevation of Pr… |
Microsoft |
Azure Linux Virtual Machines with Azure Diagnostics extension |
2026-03-10T17:05:16.915Z | 2026-04-14T16:36:35.603Z |
| cve-2026-23662 | 7.5 (v3.1) | Azure IoT Explorer Information Disclosure Vulnerability |
Microsoft |
Azure IoT Explorer |
2026-03-10T17:05:16.330Z | 2026-04-14T16:36:34.918Z |
| cve-2026-23661 | 7.5 (v3.1) | Azure IoT Explorer Information Disclosure Vulnerability |
Microsoft |
Azure IoT Explorer |
2026-03-10T17:05:15.813Z | 2026-04-14T16:36:34.353Z |
| cve-2026-23654 | 8.8 (v3.1) | GitHub: Zero Shot SCFoundation Remote Code Execution V… |
Microsoft |
GitHub Repo: Zero Shot scFoundation |
2026-03-10T17:05:15.215Z | 2026-04-14T16:36:33.808Z |
| cve-2026-32194 | 9.8 (v3.1) | Microsoft Bing Images Remote Code Execution Vulnerability |
Microsoft |
Microsoft Bing Images |
2026-03-19T21:21:22.762Z | 2026-04-14T16:36:33.188Z |
| cve-2026-26137 | 9.9 (v3.1) | Microsoft Exchange Elevation of Privilege Vulnerability |
Microsoft |
Microsoft Exchange Online |
2026-03-19T21:06:26.050Z | 2026-04-14T16:36:32.258Z |
| cve-2026-26136 | 6.5 (v3.1) | Microsoft Copilot Information Disclosure Vulnerability |
Microsoft |
Microsoft Copilot |
2026-03-19T21:06:25.479Z | 2026-04-14T16:36:29.876Z |
| cve-2026-24299 | 5.3 (v3.1) | M365 Copilot Information Disclosure Vulnerability |
Microsoft |
Microsoft 365 Copilot |
2026-03-19T21:06:24.955Z | 2026-04-14T16:36:28.992Z |
| cve-2026-23659 | 8.6 (v3.1) | Azure Data Factory Information Disclosure Vulnerability |
Microsoft |
Azure Data Factory |
2026-03-19T21:06:24.369Z | 2026-04-14T16:36:27.958Z |
| cve-2026-26120 | 6.5 (v3.1) | Microsoft Bing Tampering Vulnerability |
Microsoft |
Microsoft Bing |
2026-03-19T21:06:23.690Z | 2026-04-14T16:36:26.777Z |
| cve-2026-23658 | 8.6 (v3.1) | Azure DevOps: msazure Elevation of Privilege Vulnerability |
Microsoft |
Azure DevOps: msazure |
2026-03-19T21:06:23.083Z | 2026-04-14T16:36:26.012Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2013-000084 | VMware ESX and ESXi vulnerable to directory traversal | 2013-09-06T13:59+09:00 | 2013-09-11T13:59+09:00 |
| jvndb-2013-000082 | Cybozu Office vulnerable to cross-site scripting | 2013-09-10T13:56+09:00 | 2013-09-11T13:34+09:00 |
| jvndb-2013-000081 | EC-CUBE vulnerable to directory traversal when used in Windows | 2013-08-30T14:38+09:00 | 2013-09-02T18:25+09:00 |
| jvndb-2013-000071 | Oracle Outside In vulnerable to denial-of-service (DoS) | 2013-07-17T13:56+09:00 | 2013-08-28T14:31+09:00 |
| jvndb-2013-000078 | Yafuoku! contains an issue where it fails to verify SSL server certificates | 2013-08-19T15:35+09:00 | 2013-08-23T18:43+09:00 |
| jvndb-2013-000079 | Yahoo! Japan Shopping for Android contains an issue where it fails to verify SSL server certificates | 2013-08-19T15:50+09:00 | 2013-08-23T18:42+09:00 |
| jvndb-2013-000080 | PHP OpenID Library vulnerable to XML external entity injection | 2013-08-21T14:26+09:00 | 2013-08-23T18:38+09:00 |
| jvndb-2013-000077 | Cybozu Mailwise vulnerable to information disclosure | 2013-08-13T12:22+09:00 | 2013-08-20T11:37+09:00 |
| jvndb-2013-000075 | docomo overseas usage application vulnerability in the connection process | 2013-08-07T15:01+09:00 | 2013-08-14T14:17+09:00 |
| jvndb-2013-000076 | JP1/IT Desktop Management - Manager and Hitachi IT Operations Director vulnerable to privilege escalation | 2013-07-29T13:39+09:00 | 2013-08-02T18:17+09:00 |
| jvndb-2012-002110 | WordPress vulnerable to cross-site scripting | 2013-07-26T13:33+09:00 | 2013-07-26T13:33+09:00 |
| jvndb-2013-000072 | JBoss RichFaces vulnerable to remote code execution | 2013-07-19T12:32+09:00 | 2013-07-24T16:16+09:00 |
| jvndb-2013-000069 | Cybozu Office session management vulnerability | 2013-07-16T12:27+09:00 | 2013-07-23T19:09+09:00 |
| jvndb-2013-003391 | Oracle Enterprise Manager vulnerable to cross-site scripting | 2013-07-22T15:00+09:00 | 2013-07-22T15:00+09:00 |
| jvndb-2007-000819 | Cross-site scripting vulnerability in Apache HTTP Server "mod_imap" and "mod_imagemap" | 2008-05-21T00:00+09:00 | 2013-07-18T18:58+09:00 |
| jvndb-2013-000068 | AQUOS PhotoPlayer HN-PP150 vulnerable to denial-of-service (DoS) | 2013-07-11T15:39+09:00 | 2013-07-16T14:21+09:00 |
| jvndb-2013-000065 | EC-CUBE vulnerable to directory traversal | 2013-06-27T14:33+09:00 | 2013-07-02T16:15+09:00 |
| jvndb-2013-000064 | EC-CUBE vulnerable to cross-site scripting | 2013-06-27T14:31+09:00 | 2013-07-02T16:10+09:00 |
| jvndb-2013-000063 | EC-CUBE vulnerable to cross-site scripting | 2013-06-27T14:31+09:00 | 2013-07-02T16:06+09:00 |
| jvndb-2013-000062 | EC-CUBE vulnerable to code injection | 2013-06-27T14:29+09:00 | 2013-07-02T16:01+09:00 |
| jvndb-2013-000061 | EC-CUBE vulnerable to directory traversal | 2013-06-27T14:29+09:00 | 2013-07-02T15:57+09:00 |
| jvndb-2013-000067 | CLIP-MAIL vulnerable to cross-site scripting | 2013-06-27T14:35+09:00 | 2013-07-02T15:52+09:00 |
| jvndb-2013-000066 | POST-MAIL vulnerable to cross-site scripting | 2013-06-27T14:38+09:00 | 2013-07-02T15:47+09:00 |
| jvndb-2013-000058 | Ichitaro series vulnerable to arbitrary code execution | 2013-06-18T15:17+09:00 | 2013-06-26T14:49+09:00 |
| jvndb-2013-000059 | Cybozu Live for Android vulnerable to arbitrary Java method execution | 2013-06-18T15:19+09:00 | 2013-06-26T14:46+09:00 |
| jvndb-2013-000060 | Cybozu Live for Android vulnerable in the WebView class | 2013-06-18T15:20+09:00 | 2013-06-26T14:43+09:00 |
| jvndb-2012-000080 | Opera address bar spoofing vulnerability | 2012-08-30T14:00+09:00 | 2013-06-26T13:48+09:00 |
| jvndb-2013-000034 | Multiple Cybozu products vulnerable to cross-site request forgery | 2013-04-15T17:08+09:00 | 2013-06-25T18:36+09:00 |
| jvndb-2013-000031 | Active! mail vulnerable to information disclosure | 2013-04-04T14:43+09:00 | 2013-06-25T18:30+09:00 |
| jvndb-2013-000024 | Multiple NEC mobile routers vulnerable to cross-site request forgery | 2013-03-19T13:45+09:00 | 2013-06-25T18:19+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2024-avi-0440 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2024-05-24T00:00:00.000000 | 2024-05-24T00:00:00.000000 |
| certfr-2024-avi-0439 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2024-05-24T00:00:00.000000 | 2024-05-24T00:00:00.000000 |
| certfr-2024-avi-0438 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2024-05-24T00:00:00.000000 | 2024-05-24T00:00:00.000000 |
| certfr-2024-avi-0437 | Vulnérabilité dans Google Chrome | 2024-05-24T00:00:00.000000 | 2024-05-24T00:00:00.000000 |
| certfr-2024-avi-0436 | Multiples vulnérabilités dans les produits Mitel | 2024-05-24T00:00:00.000000 | 2024-05-24T00:00:00.000000 |
| certfr-2024-avi-0435 | Multiples vulnérabilités dans les produits Cisco | 2024-05-23T00:00:00.000000 | 2024-05-23T00:00:00.000000 |
| certfr-2024-avi-0434 | Multiples vulnérabilités dans les produits Ivanti | 2024-05-22T00:00:00.000000 | 2024-05-22T00:00:00.000000 |
| certfr-2024-avi-0433 | Multiples vulnérabilités dans GitLab | 2024-05-22T00:00:00.000000 | 2024-05-22T00:00:00.000000 |
| certfr-2024-avi-0432 | Multiples vulnérabilités dans les produits Atlassian | 2024-05-22T00:00:00.000000 | 2024-05-22T00:00:00.000000 |
| certfr-2024-avi-0431 | Multiples vulnérabilités dans les produits Veeam | 2024-05-22T00:00:00.000000 | 2024-05-22T00:00:00.000000 |
| certfr-2024-avi-0430 | Multiples vulnérabilités dans Google Chrome | 2024-05-22T00:00:00.000000 | 2024-05-22T00:00:00.000000 |
| certfr-2024-avi-0429 | Vulnérabilité dans les produits SolarWinds | 2024-05-22T00:00:00.000000 | 2024-05-22T00:00:00.000000 |
| certfr-2024-avi-0428 | Multiples vulnérabilités dans les produits Qnap | 2024-05-22T00:00:00.000000 | 2024-05-22T00:00:00.000000 |
| certfr-2024-avi-0427 | Multiples vulnérabilités dans les produits VMware | 2024-05-22T00:00:00.000000 | 2024-05-22T00:00:00.000000 |
| certfr-2024-avi-0425 | Vulnérabilité dans Ruby on Rails | 2024-05-21T00:00:00.000000 | 2024-05-21T00:00:00.000000 |
| certfr-2024-avi-0424 | Vulnérabilité dans Asterisk | 2024-05-21T00:00:00.000000 | 2024-05-21T00:00:00.000000 |
| certfr-2024-avi-0423 | Multiples vulnérabilités dans les produits NetApp | 2024-05-21T00:00:00.000000 | 2024-05-21T00:00:00.000000 |
| certfr-2024-avi-0422 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2024-avi-0421 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2024-avi-0420 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2024-avi-0419 | Multiples vulnérabilités dans les produits IBM | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2024-avi-0418 | Vulnérabilité dans Microsoft Azure Monitor Agent | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2024-avi-0417 | Multiples vulnérabilités dans Microsoft Edge | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2024-avi-0416 | Vulnérabilité dans OpenSSL | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2024-avi-0415 | Multiples vulnérabilités dans les produits Tenable | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2024-avi-0414 | Vulnérabilité dans les produits Palo Alto Networks | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2024-avi-0413 | Multiples vulnérabilités dans les produits MongoDB | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2024-avi-0412 | Multiples vulnérabilités dans les produits Mitel | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2022-avi-285 | [MàJ] Multiples vulnérabilités dans Joomla | 2022-03-30T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2021-avi-485 | Multiples vulnérabilités dans Citrix Hypervisor | 2021-06-24T00:00:00.000000 | 2024-05-17T00:00:00.000000 |