Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-70810 | N/A | Cross Site Request Forgery vulnerability in Phpbb… |
n/a |
n/a |
2026-04-09T00:00:00.000Z | 2026-04-14T16:35:39.523Z |
| cve-2026-24287 | 7.8 (v3.1) | Windows Kernel Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1809 |
2026-03-10T17:04:41.091Z | 2026-04-14T16:35:39.270Z |
| cve-2026-24285 | 7 (v3.1) | Win32k Elevation of Privilege Vulnerability |
Microsoft |
Microsoft Office for Android |
2026-03-10T17:04:40.447Z | 2026-04-14T16:35:38.564Z |
| cve-2026-24283 | 8.8 (v3.1) | Multiple UNC Provider Kernel Driver Elevation of Privi… |
Microsoft |
Windows 11 Version 24H2 |
2026-03-10T17:04:39.725Z | 2026-04-14T16:35:37.939Z |
| cve-2026-24282 | 5.5 (v3.1) | Push message Routing Service Elevation of Privilege Vu… |
Microsoft |
Windows 10 Version 1607 |
2026-03-10T17:04:39.143Z | 2026-04-14T16:35:36.978Z |
| cve-2026-23673 | 7.8 (v3.1) | Windows Resilient File System (ReFS) Elevation of Priv… |
Microsoft |
Windows 10 Version 1607 |
2026-03-10T17:04:38.570Z | 2026-04-14T16:35:36.145Z |
| cve-2026-23672 | 7.8 (v3.1) | Windows Universal Disk Format File System Driver (UDFS… |
Microsoft |
Windows 10 Version 1607 |
2026-03-10T17:04:37.937Z | 2026-04-14T16:35:35.331Z |
| cve-2026-23671 | 7 (v3.1) | Windows Bluetooth RFCOM Protocol Driver Elevation of P… |
Microsoft |
Windows 10 Version 1607 |
2026-03-10T17:04:37.217Z | 2026-04-14T16:35:34.601Z |
| cve-2025-70811 | N/A | Cross Site Request Forgery vulnerability in Phpbb… |
n/a |
n/a |
2026-04-09T00:00:00.000Z | 2026-04-14T16:35:34.486Z |
| cve-2026-23669 | 8.8 (v3.1) | RPC Runtime Library Remote Code Execution Vulnerability |
Microsoft |
Windows 10 Version 1607 |
2026-03-10T17:04:36.614Z | 2026-04-14T16:35:33.986Z |
| cve-2026-23668 | 7 (v3.1) | Windows Graphics Component Elevation of Privilege Vuln… |
Microsoft |
Windows 10 Version 1607 |
2026-03-10T17:04:35.810Z | 2026-04-14T16:35:33.177Z |
| cve-2026-23667 | 7 (v3.1) | Broadcast DVR Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1809 |
2026-03-10T17:04:34.888Z | 2026-04-14T16:35:29.488Z |
| cve-2026-23664 | 7.5 (v3.1) | Azure IoT Explorer Information Disclosure Vulnerability |
Microsoft |
Azure IoT Explorer |
2026-03-10T17:04:34.104Z | 2026-04-14T16:35:28.776Z |
| cve-2026-23660 | 7.8 (v3.1) | Windows Admin Center in Azure Portal Elevation of Priv… |
Microsoft |
Windows Admin Center in Azure Portal |
2026-03-10T17:04:33.270Z | 2026-04-14T16:35:27.660Z |
| cve-2026-21262 | 8.8 (v3.1) | SQL Server Elevation of Privilege Vulnerability |
Microsoft |
Microsoft SQL Server 2016 Service Pack 3 (GDR) |
2026-03-10T17:04:32.361Z | 2026-04-14T16:35:25.676Z |
| cve-2026-30479 | N/A | A Dynamic-link Library Injection vulnerability in… |
n/a |
n/a |
2026-04-09T00:00:00.000Z | 2026-04-14T16:35:23.231Z |
| cve-2026-31170 | N/A | An issue was discovered in ToToLink A3300R firmwa… |
n/a |
n/a |
2026-04-09T00:00:00.000Z | 2026-04-14T16:35:16.705Z |
| cve-2026-29923 | N/A | The pstrip64.sys driver in EnTech Taiwan PowerStr… |
n/a |
n/a |
2026-04-09T00:00:00.000Z | 2026-04-14T16:35:10.310Z |
| cve-2026-5441 | N/A | Out-of-Bounds Read in DicomImageDecoder (PMSCT_RLE1 De… |
Orthanc |
DICOM Server |
2026-04-09T14:42:04.597Z | 2026-04-14T16:35:04.748Z |
| cve-2026-5444 | N/A | Heap Buffer Overflow in PAM Image Buffer Allocation |
Orthanc |
DICOM Server |
2026-04-09T14:42:30.696Z | 2026-04-14T16:34:57.706Z |
| cve-2026-5445 | N/A | Out-of-Bounds Read in DicomImageDecoder (DecodeLookupTable) |
Orthanc |
DICOM Server |
2026-04-09T14:42:51.673Z | 2026-04-14T16:34:52.024Z |
| cve-2026-5443 | N/A | Heap Buffer Overflow in DICOM Image Decoder (Palette C… |
Orthanc |
DICOM Server |
2026-04-09T14:43:15.227Z | 2026-04-14T16:34:45.930Z |
| cve-2026-5442 | N/A | Heap Buffer Overflow in DICOM Image Decoder via VR UL … |
Orthanc |
DICOM Server |
2026-04-09T14:43:43.571Z | 2026-04-14T16:34:39.322Z |
| cve-2026-5440 | N/A | Memory Exhaustion via Unbounded Content-Length |
Orthanc |
DICOM Server |
2026-04-09T14:43:55.684Z | 2026-04-14T16:34:31.991Z |
| cve-2026-5438 | N/A | Gzip Decompression Bomb via Content-Encoding Header |
Orthanc |
DICOM Server |
2026-04-09T14:44:05.375Z | 2026-04-14T16:34:26.623Z |
| cve-2026-5437 | N/A | Out-of-Bounds Read in DicomStreamReader |
Orthanc |
DICOM Server |
2026-04-09T14:44:17.972Z | 2026-04-14T16:34:20.487Z |
| cve-2026-5439 | N/A | Memory Exhaustion via Forged ZIP Metadata |
Orthanc |
DICOM Server |
2026-04-09T14:44:37.078Z | 2026-04-14T16:34:14.439Z |
| cve-2026-5973 | FoundationAgents MetaGPT common.py get_mime_type os co… |
FoundationAgents |
MetaGPT |
2026-04-09T19:15:13.464Z | 2026-04-14T16:34:08.668Z | |
| cve-2026-5978 | Totolink A7100RU CGI cstecgi.cgi setWiFiAclRules os co… |
Totolink |
A7100RU |
2026-04-09T20:30:15.179Z | 2026-04-14T16:34:03.036Z | |
| cve-2026-5983 | D-Link DIR-605L POST Request formSetDDNS buffer overflow |
D-Link |
DIR-605L |
2026-04-09T21:45:14.227Z | 2026-04-14T16:33:56.691Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2013-000004 | WebSphere Application Server (WAS) vulnerable to cross-site scripting | 2013-01-25T12:32+09:00 | 2013-01-25T12:32+09:00 |
| jvndb-2013-000003 | myu-s / PHP WeblogSystem by netmania vulnerable to cross-site scripting | 2013-01-22T15:22+09:00 | 2013-01-22T15:22+09:00 |
| jvndb-2013-000002 | Documents Pro (formerly Files HD) vulnerable to directory traversal | 2013-01-18T13:39+09:00 | 2013-01-18T13:39+09:00 |
| jvndb-2013-000001 | Documents Pro (formerly Files HD) vulnerable to cross-site scripting | 2013-01-18T13:36+09:00 | 2013-01-18T13:36+09:00 |
| jvndb-2012-005827 | Cross-site Scripting Vulnerability in Collaboration - Bulletin board in Multiple Hitachi Products | 2012-12-28T16:43+09:00 | 2012-12-28T16:43+09:00 |
| jvndb-2012-000112 | Opera Mini / Opera Mobile for Android vulnerable in the WebView class | 2012-12-20T15:04+09:00 | 2012-12-28T16:13+09:00 |
| jvndb-2012-000063 | Python SimpleHTTPServer vulnerable to cross-site scripting | 2012-06-19T14:38+09:00 | 2012-12-26T18:01+09:00 |
| jvndb-2011-002111 | Samba Web Administration Tool vulnerable to cross-site scripting | 2011-08-26T17:14+09:00 | 2012-12-26T11:42+09:00 |
| jvndb-2011-002110 | Samba Web Administration Tool vulnerable to cross-site request forgery | 2011-08-26T17:12+09:00 | 2012-12-26T11:37+09:00 |
| jvndb-2012-000115 | Loctouch for Android information management vulnerability | 2012-12-21T12:37+09:00 | 2012-12-21T12:37+09:00 |
| jvndb-2012-000114 | Loctouch for Android vulnerable in handling of implicit intents | 2012-12-21T12:29+09:00 | 2012-12-21T12:29+09:00 |
| jvndb-2012-000111 | Boat Browser / Boat Browser Mini vulnerable in the WebView class | 2012-12-20T15:00+09:00 | 2012-12-20T15:00+09:00 |
| jvndb-2012-000110 | WikkaWiki vulnerable to cross-site scripting | 2012-12-17T12:23+09:00 | 2012-12-17T12:23+09:00 |
| jvndb-2012-000109 | Welcart vulnerable to cross-site request forgery | 2012-12-14T12:52+09:00 | 2012-12-14T12:52+09:00 |
| jvndb-2012-000108 | Welcart vulnerable to cross-site scripting | 2012-12-14T12:50+09:00 | 2012-12-14T12:50+09:00 |
| jvndb-2012-000107 | KENT-WEB ACCESS REPORT vulnerable to cross-site scripting | 2012-12-06T12:41+09:00 | 2012-12-06T12:41+09:00 |
| jvndb-2012-000106 | KENT-WEB ACCESS REPORT vulnerable to cross-site scripting | 2012-12-06T12:40+09:00 | 2012-12-06T12:40+09:00 |
| jvndb-2012-000102 | Multiple Android devices vulnerable to denial-of-service (DoS) | 2012-11-14T15:07+09:00 | 2012-11-30T18:01+09:00 |
| jvndb-2012-000105 | Multiple KYOCERA mobile devices may reboot during email reception | 2012-11-30T13:58+09:00 | 2012-11-30T13:58+09:00 |
| jvndb-2012-005486 | Denial of Service (DoS) Vulnerability in JP1/Automatic Job Management System 3 and JP1/Automatic Job Management System 2 | 2012-11-29T15:23+09:00 | 2012-11-29T15:23+09:00 |
| jvndb-2012-005485 | Hitachi Device Manager Software Denial of Service (DoS) Vulnerability | 2012-11-29T14:48+09:00 | 2012-11-29T14:48+09:00 |
| jvndb-2012-005201 | Multiple Vulnerabilities in Hitachi JP1/File Transmission Server/FTP | 2012-11-05T17:58+09:00 | 2012-11-26T18:01+09:00 |
| jvndb-2012-000104 | BIGACE vulnerable to session fixation | 2012-11-21T14:34+09:00 | 2012-11-21T14:34+09:00 |
| jvndb-2012-000103 | Monaca Debugger for Android information management vulnerability | 2012-11-16T14:10+09:00 | 2012-11-16T14:10+09:00 |
| jvndb-2012-000101 | BeZIP vulnerable to directory traversal | 2012-11-07T16:01+09:00 | 2012-11-07T16:01+09:00 |
| jvndb-2012-000100 | Pebble vulnerable to open redirect | 2012-11-02T14:23+09:00 | 2012-11-02T14:23+09:00 |
| jvndb-2012-000099 | Pebble vulnerable to HTTP header injection | 2012-11-02T14:21+09:00 | 2012-11-02T14:21+09:00 |
| jvndb-2012-000098 | Pebble vulnerability where entries may become unviewable | 2012-11-02T14:20+09:00 | 2012-11-02T14:20+09:00 |
| jvndb-2012-000097 | MosP kintai kanri vulnerable to authentication bypass | 2012-11-02T14:18+09:00 | 2012-11-02T14:18+09:00 |
| jvndb-2012-000096 | MosP kintai kanri fails to restrict access permissions | 2012-11-02T14:16+09:00 | 2012-11-02T14:16+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2024-avi-0352 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2024-04-26T00:00:00.000000 | 2024-04-26T00:00:00.000000 |
| certfr-2024-avi-0351 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2024-04-26T00:00:00.000000 | 2024-04-26T00:00:00.000000 |
| certfr-2024-avi-0350 | Multiples vulnérabilités dans les produits IBM | 2024-04-26T00:00:00.000000 | 2024-04-26T00:00:00.000000 |
| certfr-2024-avi-0349 | Vulnérabilité dans les produits Belden | 2024-04-26T00:00:00.000000 | 2024-04-26T00:00:00.000000 |
| certfr-2024-avi-0348 | Vulnérabilité dans les produits MongoDB | 2024-04-25T00:00:00.000000 | 2024-04-25T00:00:00.000000 |
| certfr-2024-avi-0347 | Multiples vulnérabilités dans les produits Cisco | 2024-04-25T00:00:00.000000 | 2024-04-25T00:00:00.000000 |
| certfr-2024-avi-0346 | Multiples vulnérabilités dans GitLab | 2024-04-25T00:00:00.000000 | 2024-04-25T00:00:00.000000 |
| certfr-2024-avi-0345 | Vulnérabilité dans les produits Palo Alto Networks | 2024-04-25T00:00:00.000000 | 2024-04-25T00:00:00.000000 |
| certfr-2024-avi-0344 | Multiples vulnérabilités dans les produits Mitel | 2024-04-25T00:00:00.000000 | 2024-04-25T00:00:00.000000 |
| certfr-2024-avi-0343 | Multiples vulnérabilités dans Google Chrome | 2024-04-24T00:00:00.000000 | 2024-04-24T00:00:00.000000 |
| certfr-2024-avi-0342 | Multiples vulnérabilités dans NagiosXI | 2024-04-24T00:00:00.000000 | 2024-04-24T00:00:00.000000 |
| certfr-2024-avi-0341 | Multiples vulnérabilités dans Synacor Zimbra Collaboration | 2024-04-22T00:00:00.000000 | 2024-04-22T00:00:00.000000 |
| certfr-2024-avi-0340 | Multiples vulnérabilités dans les produits Moxa | 2024-04-22T00:00:00.000000 | 2024-04-22T00:00:00.000000 |
| certfr-2024-avi-0339 | Vulnérabilité dans Microsoft Edge | 2024-04-22T00:00:00.000000 | 2024-04-22T00:00:00.000000 |
| certfr-2024-avi-0338 | Vulnérabilité dans Siemens RUGGEDCOM APE1808 | 2024-04-22T00:00:00.000000 | 2024-04-22T00:00:00.000000 |
| certfr-2024-avi-0337 | Multiples vulnérabilités dans Mozilla Thunderbird | 2024-04-22T00:00:00.000000 | 2024-04-22T00:00:00.000000 |
| certfr-2024-avi-0336 | Multiples vulnérabilités dans les produits OwnCloud | 2024-04-22T00:00:00.000000 | 2024-04-22T00:00:00.000000 |
| certfr-2024-avi-0335 | Vulnérabilité dans SolarWinds Platform | 2024-04-22T00:00:00.000000 | 2024-04-22T00:00:00.000000 |
| certfr-2024-avi-0334 | Multiples vulnérabilités dans le noyau Linux de Debian | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| certfr-2024-avi-0333 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| certfr-2024-avi-0332 | Multiples vulnérabilités dans les produits Red Hat | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| certfr-2024-avi-0331 | Multiples vulnérabilités dans SolarWinds Platform | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| certfr-2024-avi-0330 | Multiples vulnérabilités dans les produits IBM | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| certfr-2024-avi-0329 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| certfr-2024-avi-0328 | Vulnérabilité dans Citrix uberAgent | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| certfr-2024-avi-0327 | Multiples vulnérabilités dans Microsoft Edge | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| certfr-2024-avi-0326 | Multiples vulnérabilités dans Oracle MySQL | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0325 | Multiples vulnérabilités dans Oracle PeopleSoft | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0324 | Multiples vulnérabilités dans Oracle Systems | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0323 | Multiples vulnérabilités dans Oracle Weblogic | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |