SecuriTricks - security-advisories@github.com

Version(s): 9.0.0 - 9.5.47, 9.5.48 ELTS, 10.0.0 - 10.4.44, 10.4.45 ELTS, 11.0.0 - 11.5.36, 11.5.37 LTS, 12.0.0 - 12.4.14, 12.4.15 LTS, 13.0.0 - 13.1.0, 13.1.1

TYPO3

Version(s): 9.0.0, 9.5.48 ELTS, 10.4.45 ELTS, 11.5.37 LTS, 12.4.15 LTS, 13.1.1

Published: May 14, 2024

CVE-2024-34357

5.4

TYPO3

Version(s): 9.0.0, 9.5.48 ELTS, 10.4.45 ELTS, 11.5.37 LTS, 12.4.15 LTS, 13.1.1

TYPO3

Version(s): 9.0.0 - 9.5.47, 10.0.0 - 10.4.44, 11.0.0 - 11.5.36, 12.0.0 - 12.4.14, 13.0.0 - 13.1.0

Published: May 14, 2024

CVE-2024-34083

5.4

aiosmptd

Version(s): before 1.4.6

Published: May 18, 2024

CVE-2024-35197

5.4

gitoxide

Published: May 23, 2024

CVE-2024-35240

5.4

Umbraco Commerce

Version(s): 12.1.4, 10.0.5

Published: May 28, 2024

CVE-2024-28103

5.4

Action Pack

Version(s): 6.1.0 - 6.1.7.7, 7.0.0 - 7.0.8.1, 7.1.0 - 7.1.3.2

Published: June 4, 2024

CVE-2024-36406

5.4

SuiteCRM

Version(s): before 7.14.4, before 8.6.1

Published: June 10, 2024

CVE-2024-37297

5.4

WooCommerce

Version(s): 8.8, 8.8.5, 8.9.3

Published: June 12, 2024

CVE-2024-37308

5.4

Cooked Pro recipe plugin for WordPress

Version(s): up to 1.7.15.4

Cooked Pro recipe plugin for WordPress

Version(s): 1.7.15.4, 1.8.0

Published: June 13, 2024

CVE-2024-37886

5.4

Nextcloud user_oidc app

Version(s): 1.3.5, 2.0.0, 3.0.0, 4.0.0, 5.0.0

Published: June 14, 2024

CVE-2024-38351

5.4

Pocketbase

Version(s): 0.22.14

Published: June 18, 2024

CVE-2024-37897

5.4

SFTPGo

Version(s): before v2.6.1

Published: June 20, 2024

CVE-2024-38527

5.4

ZenUML

Version(s): 3.23.25 and below

Published: June 26, 2024

CVE-2024-39900

5.4

OpenSearch Dashboards

Version(s): 2.14

Published: July 9, 2024

CVE-2024-39901

5.4

OpenSearch Observability

Version(s): 2.14

Published: July 9, 2024

CVE-2024-27095

5.4

Decidim

Version(s): 0.27.6, 0.28.1

Published: July 10, 2024

CVE-2024-32981

5.4

Silverstripe framework

Version(s): 5.2.16

Published: July 17, 2024

CVE-2024-39680

5.4

Cooked plugin for WordPress

Version(s): up to 1.7.15.4

Published: July 18, 2024

CVE-2024-39681

5.4

Cooked plugin for WordPress

Version(s): 1.7.15.4, 1.8.0

Published: July 18, 2024

CVE-2024-40648

5.4

matrix-rust-sdk

Version(s): before 0.7.2

Published: July 18, 2024

CVE-2024-41130

5.4

UNKNOWN

Published: July 22, 2024

CVE-2024-41664

5.4

Canarytokens

Version(s): before sha-8ea5315

Published: July 23, 2024

CVE-2024-39318

5.4

Ibexa DXP

Published: July 31, 2024

CVE-2024-41816

5.4

Cooked plugin for WordPress

Version(s): up to 1.8.0

Published: August 5, 2024

CVE-2024-25633

5.4

eLabFTW

Version(s): 5.0.0

Published: August 15, 2024

CVE-2024-42486

5.4

Cilium

Version(s): 1.15.8, 1.16.1

Published: August 16, 2024

CVE-2024-43381

5.4

Yogeshojha

Rengine

Published: August 16, 2024

CVE-2024-43400

5.4

Xwiki

Xwiki

Published: August 19, 2024

CVE-2024-43396

5.4

Khoj

Khoj

Published: August 20, 2024

CVE-2024-45046

5.4

Phpoffice

Phpspreadsheet

Published: August 28, 2024

CVE-2024-28100

5.4

Elabftw

Elabftw

Published: September 2, 2024

CVE-2024-43801

5.4

Jellyfin

Jellyfin

Published: September 2, 2024

CVE-2024-45313

5.4

Overleaf

Overleaf

Published: September 2, 2024

CVE-2024-43412

5.4

Xibosignage

Xibo

Published: September 3, 2024

CVE-2024-45389

5.4

Cloudcannon

Pagefinder

Published: September 3, 2024

CVE-2024-46976

5.4

Backstage

Backstage

Published: September 17, 2024

CVE-2024-47172

5.4

Computer Vision Annotation Tool (CVAT)

Version(s): 2.19.1 or any later version

Published: September 30, 2024

CVE-2024-47530

5.4

Scout

Version(s): before 4.89

Published: September 30, 2024

CVE-2024-47523

5.4

Librenms

Librenms

Published: October 1, 2024

CVE-2024-47525

5.4

Librenms

Librenms

Published: October 1, 2024

CVE-2024-47527

5.4

Librenms

Librenms

Published: October 1, 2024

CVE-2024-47528

5.4

LibreNMS

Version(s): before 24.9.0

Published: October 1, 2024

CVE-2024-47618

5.4

Sulu

Sulu

Published: October 3, 2024

CVE-2024-45292

5.4

PHPSpreadsheet

Version(s): 1.29.2, 2.1.1, 2.3.0

Published: October 7, 2024

CVE-2024-43362

5.4

Cacti

Cacti

Published: October 7, 2024

CVE-2024-47165

5.4

Gradio Project

Gradio

Published: October 10, 2024

CVE-2024-47872

5.4

Gradio Project

Gradio

Published: October 10, 2024

CVE-2024-45614

5.4

Puma

Puma

Published: September 19, 2024

CVE-2024-46994

5.4

Basercms

Basercms

Published: October 24, 2024

CVE-2024-46996

5.4

Basercms

Basercms

Published: October 24, 2024

CVE-2024-46998

5.4

Basercms

Basercms

Published: October 24, 2024

CVE-2024-50348

5.4

Instantcms

Instantcms

Published: October 29, 2024

CVE-2024-51987

5.4

Duende.AccessTokenManagement.OpenIdConnect

Version(s): 3.0.1

Published: November 8, 2024

CVE-2024-51488

5.4

Ampache

Ampache

Published: November 11, 2024

CVE-2024-51489

5.4

Ampache

Ampache

Published: November 11, 2024

CVE-2024-52505

5.4

matrix-appservice-irc

Version(s): up to 3.0.2

Published: November 14, 2024

CVE-2024-32468

5.4

Deno

Published: November 25, 2024

CVE-2024-53983

5.4

@backstage/plugin-scaffolder-node

Version(s): v0.4.12, v0.5.1, v0.6.1

Published: November 29, 2024

CVE-2024-52586

5.4

eLabFTW

Version(s): 4.6.0 - 5.0.9

Published: December 9, 2024

CVE-2024-52599

5.4

Tuleap Community Edition

Version(s): before 16.1.99.50

Tuleap Enterprise Edition

Version(s): before 16.1-4, before 16.0-7

Published: December 9, 2024

CVE-2024-55876

5.4

XWiki Platform

Version(s): 1.2-milestone-2 - 15.10.9, 16.3.0

Published: December 12, 2024

CVE-2024-56364

5.4

SimpleXLSX

Version(s): 1.0.12 - 1.1.13

Published: December 23, 2024

CVE-2025-21616

5.4

Plane

Version(s): before 0.23

Published: January 6, 2025

CVE-2024-55922

5.4

TYPO3

Version(s): 11.5.42 ELTS, 12.4.25 LTS, 13.4.3 LTS

Published: January 14, 2025

CVE-2024-47605

5.4

silverstripe/framework

Version(s): 5.3.8

Published: January 14, 2025

CVE-2024-53277

5.4

Silverstripe Framework

Version(s): 5.3.8

Published: January 14, 2025

CVE-2025-23201

5.4

librenms

Version(s): up to 24.10.1

Published: January 16, 2025

CVE-2025-23221

5.4

Fedify

Version(s): 1.0.14, 1.1.11, 1.2.11, 1.3.4

Published: January 20, 2025

CVE-2025-27089

5.4

Monospace

Directus

Published: February 19, 2025

CVE-2025-27094

5.4

Tuleap Community Edition

Version(s): 16.4.99.1739806825 to 16.4.99.1739877910

Tuleap Enterprise Edition

Version(s): 16.3-9, 16.4-4

Published: March 3, 2025

CVE-2025-27411

5.4

REDAXO

Version(s): before 5.18.3

Published: March 5, 2025

CVE-2025-27506

5.4

NocoDB

Version(s): 0.0.1 - 0.257.0

Published: March 6, 2025

CVE-2024-52812

5.4

LF Edge eKuiper

Version(s): before 2.0.8

Published: March 10, 2025

CVE-2025-29914

5.4

Owasp

Coraza

Published: March 20, 2025

CVE-2024-32967

5.3

Zitadel

Version(s): UNKNOWN

Published: May 1, 2024

CVE-2024-32664

5.3

Suricata

Version(s): before 7.0.5, before 6.0.19

Suricata

Version(s): 6.0.19, before 7.0.5

Published: May 7, 2024

CVE-2024-32867

5.3

Suricata

Version(s): before 7.0.5, before 6.0.19

Suricata

Version(s): 7.0.5, 6.0.19

Published: May 7, 2024

CVE-2024-34080

5.3

MantisBT

Version(s): 2.26.2

Published: May 14, 2024

CVE-2024-34358

5.3

TYPO3

Version(s): 9.0.0, 9.5.48 ELTS, 10.4.45 ELTS, 11.5.37 LTS, 12.4.15 LTS, 13.1.1

TYPO3

Version(s): 9.0.0 - 9.5.47 ELTS, 10.0.0 - 10.4.44 ELTS, 11.0.0 - 11.5.36 LTS, 12.0.0 - 12.4.14 LTS, 13.0.0 - 13.1.0

Published: May 14, 2024

CVE-2024-34717

5.3

PrestaShop

Version(s): 8.1.5

Published: May 14, 2024

CVE-2024-35175

5.3

sshpiper

Version(s): 1.0.50 - 1.2.9

Published: May 14, 2024

CVE-2024-35176

5.3

REXML gem

Version(s): before 3.2.6

Published: May 16, 2024

CVE-2024-35185

5.3

Minder

Version(s): before 0.0.49

Published: May 16, 2024

CVE-2024-35194

5.3

Minder

Version(s): before 0.0.50

Published: May 20, 2024

CVE-2024-35223

5.3

Dapr

Version(s): 1.0 - 1.13.2

Published: May 23, 2024

CVE-2024-28188

5.3

Jupyter Scheduler

Version(s): 1.1.6, 1.2.1, 1.8.2, 2.5.2

Published: May 23, 2024

CVE-2024-35229

5.3

ZKsync Era

Version(s): < 1.3.10

Published: May 27, 2024

CVE-2024-35238

5.3

Minder by Stacklok

Version(s): before 0.0.51

Published: May 27, 2024

CVE-2024-36105

5.3

dbt-core

Version(s): 1.6.15, 1.7.15, 1.8.1

Published: May 27, 2024

CVE-2024-36107

5.3

MinIO

Version(s): before RELEASE.2024-05-27T19-17-46Z

Published: May 28, 2024

CVE-2024-36124

5.3

iq80 Snappy

Version(s): 0.5

Published: June 3, 2024

CVE-2024-37152

5.3

Argo CD

Version(s): 2.11.3, 2.10.12, 2.9.17

Published: June 6, 2024

CVE-2024-37168

5.3

@grpc/grps-js

Version(s): before 1.8.22, before 1.9.15, before 1.10.9

Published: June 10, 2024

CVE-2024-37169

5.3

@jmondi/url-to-png

Version(s): 2.0.3

Published: June 10, 2024

CVE-2024-37296

5.3

Aimeos HTML client

Version(s): 2020.04.1 - 2020.10.27, 2021.10.21, 2022.10.12, 2023.10.14, 2024.04.5

Published: June 11, 2024

CVE-2024-31217

5.3

Strapi

Version(s): before 4.22.0

Published: June 12, 2024

CVE-2024-37309

5.3

CrateDB

Version(s): before 5.7.2

Published: June 13, 2024

CVE-2024-38375

5.3

@fastly/js-compute

Version(s): 3.16.0

Published: June 26, 2024

CVE-2024-39325

5.3

aimeos/ai-controller-frontend

Version(s): 2024.04.2, 2023.10.9, 2022.10.8, 2021.10.8, 2020.10.15

Published: July 2, 2024

CVE-2024-31223

5.3

Fides

Version(s): 2.19.0 - 2.39.1

Published: July 3, 2024

CVE-2024-39695

5.3

Exiv2

Version(s): 0.28.2

Published: July 8, 2024

CVE-2024-34702

5.3

Botan

Version(s): 3.5.0, 2.19.5

Published: July 8, 2024

CVE-2024-39312

5.3

Botan

Version(s): 3.5.0, 2.19.5

Published: July 8, 2024

CVE-2024-39899

5.3

PrivateBin

Version(s): 1.5 - 1.7.3

Published: July 9, 2024

CVE-2024-27090

5.3

Decidim participatory democracy framework

Version(s): 0.0.1 - 0.27.6

Published: July 10, 2024

CVE-2024-38353

5.3

CodiMD

Version(s): before 2.5.4

Published: July 10, 2024

CVE-2024-39912

5.3

web-auth/webauthn-lib

Version(s): 4.9.0

Published: July 15, 2024

CVE-2024-40633

5.3

Sylius

Version(s): 1.12.19, 1.13.4 and above

Published: July 17, 2024

CVE-2024-40636

5.3

Steeltoe.Discovery.Eureka

Version(s): 3.2.8

Published: July 17, 2024

CVE-2024-40647

5.3

sentry-sdk

Version(s): <2.8.0

Published: July 18, 2024

CVE-2024-41132

5.3

ImageSharp

Version(s): 2.1.9, 3.1.5

Published: July 22, 2024

CVE-2024-41952

5.3

Zitadel

Version(s): 2.58.1, 2.57.1, 2.56.2, 2.55.5, 2.54.8, 2.53.9

Published: July 31, 2024

CVE-2024-41954

5.3

FOG

Version(s): 1.5.10.41

Published: July 31, 2024

CVE-2024-41123

5.3

REXML gem for Ruby

Version(s): before 3.3.2

Published: August 1, 2024

CVE-2024-41946

5.3

REXML gem for Ruby

Version(s): 3.3.2

Published: August 1, 2024

CVE-2024-42349

5.3

FOG

Version(s): 1.5.10.41.4 and earlier

Published: August 2, 2024

CVE-2024-42468

5.3

openHAB

Version(s): before 4.2.1

Published: August 12, 2024

CVE-2024-42477

5.3

UNKNOWN

Published: August 12, 2024

CVE-2024-42478

5.3

UNKNOWN

Published: August 12, 2024

CVE-2024-42369

5.3

Matrix

Javascript Sdk

Published: August 20, 2024

CVE-2024-43376

5.3

Umbraco

Umbraco Cms

Published: August 20, 2024

CVE-2024-41674

5.3

Okfn

Ckan

Published: August 21, 2024

CVE-2024-45043

5.3

OpenTelemetry Collector

Version(s): v0.49.0 - v0.108.0

Published: August 28, 2024

CVE-2024-45312

5.3

Overleaf

Overleaf

Published: September 2, 2024

CVE-2024-45407

5.3

Lizardbyte

Sunshine

Published: September 10, 2024

CVE-2024-45591

5.3

Xwiki

Xwiki

Published: September 10, 2024

CVE-2024-45597

5.3

Pluto

Version(s): UNKNOWN

Published: September 10, 2024

CVE-2024-45612

5.3

Contao

Contao

Published: September 17, 2024

CVE-2024-45813

5.3

find-my-way

Version(s): 8.2.2, 9.0.1

Published: September 18, 2024

CVE-2024-46979

5.3

XWiki Platform

Version(s): 13.2-rc-1 - 14.10.21, 15.5.5, 15.10.1, 16.0RC1

Published: September 18, 2024

CVE-2024-39319

5.3

aimeos/ai-controller-frontend

Version(s): < 2020.10.15, 2020.10.15, 2021.10.8, 2022.10.8, 2023.10.9, 2024.4.2

Published: September 26, 2024

CVE-2024-47176

5.3

CUPS

Published: September 26, 2024

CVE-2024-47166

5.3

Gradio Project

Gradio

Published: October 10, 2024

CVE-2024-45607

5.3

Secreto31126

Whatsapp-Api-Js

Published: September 12, 2024

CVE-2024-45052

5.3

Ethyca

Fides

Published: September 4, 2024

CVE-2024-45796

5.3

Oisf

Suricata

Published: October 16, 2024

CVE-2024-49756

5.3

AshPostgres

Version(s): 2.0.0 - 2.4.9

Published: October 23, 2024

CVE-2024-48932

5.3

Zimaspace

Zimaos

Published: October 24, 2024

CVE-2024-49358

5.3

Zimaspace

Zimaos

Published: October 24, 2024

CVE-2024-49760

5.3

Openrefine

Openrefine

Published: October 24, 2024

CVE-2024-49771

5.3

MPXJ

Version(s): 13.5.1

Published: October 28, 2024

CVE-2024-50334

5.3

Erudika

Scoold

Published: October 29, 2024

CVE-2024-50353

5.3

Iowacomputergurus

Aspnetcore.Utilities.Cloudstorage

Published: October 30, 2024

CVE-2024-51500

5.3

Meshtastic firmware

Version(s): 2.5.6 and later

Published: November 4, 2024

CVE-2024-49773

5.3

Salesagility

Suitecrm

Published: November 5, 2024

CVE-2024-51493

5.3

OctoPrint

Version(s): up until 1.10.2

Published: November 5, 2024

CVE-2024-38370

5.3

GLPI

Version(s): 9.2.0 - 10.0.15

Published: November 15, 2024

CVE-2024-52600

5.3

Statmatic

Version(s): before 5.17.0

Published: November 19, 2024

CVE-2024-52796

5.3

Password Pusher

Version(s): before 1.49.0

Published: November 20, 2024

CVE-2024-53253

5.3

Sentry

Version(s): 24.11.0

Published: November 22, 2024

CVE-2024-37303

5.3

Synapse

Version(s): before 1.106

Published: December 3, 2024

CVE-2024-54002

5.3

Dependency-Track

Version(s): 4.12.2

Published: December 4, 2024

CVE-2024-50339

5.3

Glpi-Project

Glpi

Published: December 12, 2024

CVE-2024-35230

5.3

GeoServer

Version(s): 2.26.0

Published: December 16, 2024

CVE-2024-49765

5.3

Discourse

Published: December 19, 2024

CVE-2024-56510

5.3

@marp-team/marp-core

Version(s): 3.0.2 - 3.9.0, 4.0.0

Published: December 26, 2024

CVE-2025-21610

5.3

Trix editor

Version(s): < 2.1.12

Published: January 3, 2025

CVE-2024-56332

5.3

Next.js

Version(s): 13.0.0 - 13.5.7

Published: January 3, 2025

CVE-2024-36402

5.3

Matrix Media Repo (MMR)

Version(s): before 1.3.5

Published: January 16, 2025

CVE-2024-36403

5.3

Matrix Media Repo (MMR)

Version(s): before 1.3.5

Published: January 16, 2025

CVE-2024-52791

5.3

Matrix Media Repo

Version(s): 1.3.8

Published: January 16, 2025

CVE-2025-24013

5.3

CodeIgniter

Version(s): before 4.5.8

Published: January 20, 2025

CVE-2025-24011

5.3

Umbraco

Version(s): 14.0.0, before 14.3.2, 15.1.2

Published: January 21, 2025

CVE-2025-23028

5.3

Cilium

Version(s): 1.14.0 - 1.14.7, 1.15.0 - 1.15.11, 1.16.0 - 1.16.4

Published: January 22, 2025

CVE-2025-24360

5.3

Nuxt.js

Version(s): 3.8.1 - 3.15.2

Published: January 25, 2025

CVE-2025-24361

5.3

Nuxt.js

Version(s): 3.0.0 - 3.15.12, 3.12.2 - 3.15.2

Published: January 25, 2025

CVE-2025-24354

5.3

imgproxy

Version(s): 3.27.2

Published: January 27, 2025

CVE-2025-24029

5.3

Tuleap Community Edition

Version(s): 16.3.99.1737562605

Tuleap Enterprise Edition

Version(s): 16.3-5, 16.2-7

Published: February 3, 2025

CVE-2025-25285

5.3

@octokit/endpoint

Version(s): 4.1.0, before 10.1.3

Published: February 14, 2025

CVE-2025-25288

5.3

@octokit/plugin-paginate-rest

Version(s): 1.0.0 - 11.4.0

Published: February 14, 2025

CVE-2025-25289

5.3

@octokit/request-error

Version(s): 1.0.0 - 6.1.6

Published: February 14, 2025

CVE-2025-25290

5.3

@octokit/request

Version(s): 1.0.0 - 9.2.0

Published: February 14, 2025

CVE-2025-27090

5.3

Bishopfox

Sliver

Published: February 19, 2025

CVE-2025-27157

5.3

Mastodon

Version(s): 4.2.0, 4.2.1, 4.2.2, 4.2.3, 4.2.4, 4.2.5, 4.2.6, 4.2.7, 4.2.8, 4.2.9, 4.2.10, 4.2.11, 4.2.12, 4.2.13, 4.2.14, 4.2.15

Published: February 27, 2025

CVE-2025-27399

5.3

Mastodon

Version(s): 4.1.23, 4.2.16, 4.3.4

Published: February 27, 2025

CVE-2025-27150

5.3

Tuleap

Version(s): 16.4.99.1740492866, 16.4-6, 16.3-11

Published: March 4, 2025

CVE-2025-25294

5.3

Envoy Gateway

Version(s): before 1.2.7, before 1.3.1

Published: March 6, 2025

CVE-2025-30208

5.3

Vite

Vite

Published: March 24, 2025

CVE-2025-30225

5.3

Directus

Directus
Storage-Driver-S3

Published: March 26, 2025

CVE-2025-30350

5.3

Directus

Storage-Driver-S3
Directus

Published: March 26, 2025

CVE-2025-30352

5.3

Directus

Directus

Published: March 26, 2025

CVE-2025-26619

5.3

Vega

Vega
Vega-Functions

Published: March 27, 2025

CVE-2025-27793

5.3

Vega

Vega
Vega-Functions

Published: March 27, 2025

CVE-2024-41955

5.2

Mobile Security Framework (MobSF)

Version(s): 4.0.5

Published: July 31, 2024

CVE-2024-56199

5.2

phpMyFAQ

Version(s): 3.2.10 - 4.0.1

Published: January 2, 2025

CVE-2025-23039

5.2

Caido

Version(s): 0.45.0

Published: January 17, 2025

CVE-2025-24882

5.2

regclient

Version(s): 0.7.1

Published: January 29, 2025

CVE-2024-31216

5.1

source-controller

Version(s): before 1.2.5

Published: May 15, 2024

CVE-2024-52288

5.1

libosdp

Version(s): 3.0.0

Published: November 11, 2024

CVE-2025-27606

5.1

Element

Element Android

Published: March 14, 2025

CVE-2024-23336

5.0

MyBB

Version(s): 1.8.38

MyBB

Version(s): 1.8.37 and earlier

Published: May 1, 2024

CVE-2024-39699

5.0

Directus

Version(s): 10.9.3

Published: July 8, 2024

CVE-2024-43787

5.0

Hono Web application framework

Version(s): 4.5.8

Published: August 22, 2024

CVE-2024-45800

5.0

Snappymail

Version(s): 2.38.0 and above

Published: September 16, 2024

CVE-2024-46990

5.0

Directus

Version(s): 10.13.3, 11.1.0

Published: September 18, 2024

CVE-2024-51750

5.0

Element Web

Version(s): 1.11.85

Element Desktop

Version(s): 1.11.85

Published: November 12, 2024

CVE-2024-52602

5.0

Matrix Media Repo (MMR)

Version(s): 1.3.8

Published: January 16, 2025

CVE-2025-22620

5.0

gitoxide

Version(s): before 0.17.0

Published: January 20, 2025

CVE-2025-24353

5.0

Directus

Version(s): before 11.2.0

Published: January 23, 2025

CVE-2025-24788

5.0

snowflake-connector-net

Version(s): 2.0.12 - 4.2.0

Published: January 29, 2025

CVE-2024-32886

4.9

Vitess

Version(s): 17.0.7, 18.0.5, 19.0.4

Vitess

Version(s): 19.0.4, 18.0.5, 17.0.7

Published: May 8, 2024

CVE-2024-34708

4.9

Directus

Version(s): 10.11.0

Published: May 14, 2024

CVE-2024-31226

4.9

Sunshine

Version(s): 0.17.0 - 0.22.2

Published: May 16, 2024

CVE-2024-36113

4.9

Discourse

Version(s): < 3.2.3, 3.3.0.beta3, 3.3.0.beta4-dev

Published: July 3, 2024

CVE-2024-38360

4.9

Discourse

Version(s): 3.2.3

Published: July 15, 2024

CVE-2024-37299

4.9

Discourse

Version(s): before 3.2.5, before 3.3.0.beta5

Published: July 30, 2024

CVE-2024-41803

4.9

Xibo

Version(s): 3.3.12, 4.0.14

Published: July 30, 2024

CVE-2024-43803

4.9

Bare Metal Operator (BMO)

Version(s): 0.8.0, 0.6.2, 0.5.2

Published: September 3, 2024

CVE-2024-47766

4.9

Enalean

Tuleap

Published: October 14, 2024

CVE-2024-49370

4.9

Pimcore

Pimcore

Published: October 23, 2024

CVE-2024-50335

4.9

Salesagility

Suitecrm

Published: November 5, 2024

CVE-2024-53257

4.9

Vitess

Version(s): 19.0.8, 20.0.4, 21.0.1

Published: December 3, 2024

CVE-2024-55889

4.9

phpMyFAQ

Version(s): before 3.2.10

Published: December 13, 2024

CVE-2025-27602

4.9

Umbraco

Umbraco

Published: March 11, 2025

CVE-2024-32973

4.8

Pluto

Version(s): 0.9.3

Published: May 1, 2024

CVE-2024-34062

4.8

tqdm

Version(s): 4.66.3

tqdm

Version(s): >=4.66.3

Published: May 3, 2024

CVE-2024-35236

4.8

Audiobookshelf

Version(s): before 2.10.0

Published: May 27, 2024

CVE-2024-37160

4.8

Formwork

Version(s): 1.13.1 and above

Published: June 7, 2024

CVE-2024-39902

4.8

Tuleap Community Edition

Version(s): 15.10.99.128

Tuleap Enterprise Edition

Version(s): 15.10-6, 15.9-8

Published: July 22, 2024

CVE-2024-42367

4.8

aiohttp

Version(s): before 3.10.2

Published: August 12, 2024

CVE-2024-42482

4.8

fish-shop/syntax-check GitHub action

Version(s): v1.6.12, v2.0.0

Published: August 12, 2024

CVE-2024-43413

4.8

Xibosignage

Xibo

Published: September 3, 2024

CVE-2024-45406

4.8

Craftcms

Craft Cms

Published: September 9, 2024

CVE-2024-32034

4.8

Decidim

Decidim

Published: September 16, 2024

CVE-2024-39910

4.8

Decidim

Decidim

Published: September 16, 2024

CVE-2024-45811

4.8

Vite

Version(s): 3.2.11, 4.5.5, 5.2.14, 5.3.6, 5.4.6

Published: September 17, 2024

CVE-2024-45793

4.8

Confidant

Version(s): 6.6.2

Published: September 20, 2024

CVE-2024-46980

4.8

Enalean

Tuleap

Published: October 14, 2024

CVE-2024-47184

4.8

Ampache

Ampache

Published: September 27, 2024

CVE-2024-47827

4.8

Argo Workflows Project

Argo Workflows

Published: October 28, 2024

CVE-2024-49758

4.8

Librenms

Librenms

Published: November 15, 2024

CVE-2024-49759

4.8

Librenms

Librenms

Published: November 15, 2024

CVE-2024-49764

4.8

Librenms

Librenms

Published: November 15, 2024

CVE-2024-50350

4.8

Librenms

Librenms

Published: November 15, 2024

CVE-2024-50351

4.8

Librenms

Librenms

Published: November 15, 2024

CVE-2024-50352

4.8

Librenms

Librenms

Published: November 15, 2024

CVE-2024-50355

4.8

Librenms

Librenms

Published: November 15, 2024

CVE-2024-51494

4.8

Librenms

Librenms

Published: November 15, 2024

CVE-2024-51495

4.8

Librenms

Librenms

Published: November 15, 2024

CVE-2024-51496

4.8

Librenms

Librenms

Published: November 15, 2024

CVE-2024-51497

4.8

Librenms

Librenms

Published: November 15, 2024

CVE-2024-52526

4.8

Librenms

Librenms

Published: November 15, 2024

CVE-2024-55892

4.8

TYPO3

Version(s): 9.5.49 ELTS, 10.4.48 ELTS, 11.5.42 LTS, 12.4.25 LTS, 13.4.3

Published: January 14, 2025

CVE-2025-27408

4.8

Manifest

Version(s): 4.9.0, 4.9.1

Published: February 28, 2025

CVE-2025-27099

4.8

Tuleap Community Edition

Version(s): 16.4.99.1740067916

Tuleap Enterprise Edition

Version(s): 16.4-5, 16.3-10

Published: March 3, 2025

CVE-2024-55604

4.8

Appsmith

Appsmith

Published: March 25, 2025

CVE-2024-23335

4.7

MyBB

Version(s): 1.8.38 and earlier

MyBB

Version(s): 1.8.37 and prior

Published: May 1, 2024

CVE-2024-35199

4.7

TorchServe

Version(s): 0.11.0

Published: July 19, 2024

CVE-2024-41666

4.7

Argo CD

Version(s): 2.11.7, 2.10.16, 2.9.21

Published: July 24, 2024

CVE-2024-39694

4.7

Duende IdentityServer

Version(s): 7.0.6, 6.3.10, 6.2.5, 6.1.8, 6.0.5

Published: July 31, 2024

CVE-2024-43796

4.7

Openjsf

Express

Published: September 10, 2024

CVE-2024-43799

4.7

Send Project

Send

Published: September 10, 2024

CVE-2024-43800

4.7

Openjsf

Serve-Static

Published: September 10, 2024

CVE-2024-52582

4.7

Cachi2

Version(s): before 0.14.0

Published: November 19, 2024

CVE-2025-25287

4.7

MediaWiki - Lakeus skin

Version(s): 1.8.0 - 1.3.0+REL1.39, 1.3.1+REL1.42, 1.4.0

Published: February 13, 2025

CVE-2024-31444

4.6

Cacti

Version(s): < 1.2.27

Published: May 14, 2024

CVE-2024-31458

4.6

Cacti

Version(s): before 1.2.27

Published: May 14, 2024

CVE-2024-34698

4.6

FreeScout

Version(s): before 1.8.139

Published: May 14, 2024

CVE-2024-37316

4.6

Nextcloud Calendar App

Version(s): 4.6.8, 4.7.2

Published: June 14, 2024

CVE-2024-37317

4.6

Nextcloud Notes app

Version(s): before 4.9.3

Published: June 14, 2024

CVE-2024-38518

4.6

BigBlueButton

Version(s): 2.6.18, 2.7.8, 3.0.0-alpha.7

Published: June 28, 2024

CVE-2024-41943

4.6

I, Librarian

Version(s): 5.11.1

Published: July 30, 2024

CVE-2024-41962

4.6

Bostr

Version(s): 3.0.10

Published: August 1, 2024

CVE-2024-47531

4.6

Scout

Version(s): 4.0, 4.1, 4.2, 4.3, 4.4, 4.5, 4.6.x-4.88

Published: September 30, 2024

CVE-2024-48927

4.6

Umbraco

Umbraco Cms

Published: October 22, 2024

CVE-2024-49762

4.6

Pterodactyl

Version(s): before 1.11.8

Published: October 24, 2024

CVE-2024-50344

4.6

I, Librarian

Version(s): before 5.11.2

Published: October 30, 2024

CVE-2024-52517

4.6

Nextcloud Server

Version(s): 28.0.11, 29.0.8, 30.0.1

Nextcloud Enterprise Server

Version(s): 25.0.13.13, 26.0.13.9, 27.1.11.9, 28.0.11, 29.0.8, 30.0.1

Published: November 15, 2024

CVE-2024-52523

4.6

Nextcloud Server

Version(s): 28.0.12, 29.0.9, 30.0.2

Nextcloud Enterprise Server

Version(s): 25.0.13.14, 26.0.13.10, 27.1.11.10, 28.0.12, 29.0.9, 30.0.2

Published: November 15, 2024

CVE-2024-56507

4.6

LinkAce

Version(s): before 1.15.6

Published: December 27, 2024

CVE-2024-56144

4.6

LibreNMS

Version(s): up to 24.11.0

Published: January 16, 2025

CVE-2025-23198

4.6

LibreNMS

Version(s): up to 24.10.1

Published: January 16, 2025

CVE-2025-23199

4.6

LibreNMS

Version(s): up to 24.10.1

Published: January 16, 2025

CVE-2025-23200

4.6

LibreNMS

Version(s): up to 24.10.1

Published: January 16, 2025

CVE-2025-24012

4.6

Umbraco

Version(s): 14.0.0 - 14.3.1, 15.0.0 - 15.1.1

Published: January 21, 2025

CVE-2024-47770

4.6

Wazuh

Version(s): 4.9.1

Published: February 3, 2025

CVE-2025-27401

4.6

Tuleap

Version(s): Community Edition 16.4.99.1740498975, Enterprise Edition 16.4-6, 16.3-11

Published: March 4, 2025

CVE-2025-27402

4.6

Tuleap

Version(s): 16.4.99.1740414959, 16.4-6, 16.3-11

Published: March 4, 2025

CVE-2024-40635

4.6

Containerd

Containerd

Published: March 17, 2025

CVE-2025-29789

4.6

Openemr

Openemr

Published: March 25, 2025

CVE-2025-30217

4.6

Frappe

Frappe Framework

Published: March 26, 2025

CVE-2024-41957

4.5

Vim

Version(s): < 9.1.0647

Published: August 1, 2024

CVE-2024-43374

4.5

Vim

Version(s): before 9.1.0678

Published: August 16, 2024

CVE-2024-43790

4.5

Vim

Version(s): 9.1.0689

Published: August 22, 2024

CVE-2024-43802

4.5

Vim

Version(s): 9.1.0697

Published: August 26, 2024

CVE-2024-53269

4.5

Envoy Proxy

Version(s): 1.32.2, 1.31.4, 1.30.8

Published: December 18, 2024

CVE-2025-24889

4.5

SecureDrop Client

Version(s): 0.14.1, 1.0.1

Published: February 13, 2025

CVE-2024-35183

4.4

wolfictl

Version(s): before 0.16.10

Published: May 15, 2024

CVE-2024-35191

4.4

Formie

Version(s): before 2.1.6

Published: May 20, 2024

CVE-2024-35235

4.4

OpenPrinting CUPS

Version(s): 2.4.8 and earlier

Published: June 11, 2024

CVE-2024-37891

4.4

urllib3

Version(s): 1.26.19, 2.2.2

Published: June 17, 2024

CVE-2024-39326

4.4

SkillTree

Version(s): before 2.12.6

Published: July 2, 2024

CVE-2024-41129

4.4

Juju

Version(s): >=3.0

Published: July 22, 2024

CVE-2024-41951

4.4

Pheonix App

Version(s): 0.2.4

Published: July 31, 2024

CVE-2024-45042

4.4

Ory Kratos

Version(s): < 1.3.0

Published: September 26, 2024

CVE-2024-31227

4.4

Redis

Version(s): 7, 7.2.6, 7.4.1

Published: October 7, 2024

CVE-2024-52518

4.4

Nextcloud Server

Version(s): 28.0.12, 29.0.9, 30.0.2

Published: November 15, 2024

CVE-2024-51741

4.4

Redis

Version(s): 7.2.7, 7.4.2

Published: January 6, 2025

CVE-2025-24792

4.4

Snowflake PHP PDO Driver

Version(s): 0.2.0, 3.0.3

Published: January 29, 2025

CVE-2025-24791

4.4

snowflake-connector-nodejs

Version(s): 1.12.0 - 2.0.1

Published: January 29, 2025

CVE-2025-24790

4.4

Snowflake JDBC Driver

Version(s): 3.6.8, 3.7.0, 3.8.0, 3.9.0, 3.10.0, 3.11.0, 3.12.0, 3.13.0, 3.14.0, 3.15.0, 3.16.0, 3.17.0, 3.18.0, 3.19.0, 3.20.0, 3.21.0

Published: January 29, 2025

CVE-2025-24795

4.4

Snowflake Connector for Python

Version(s): 2.3.7 - 3.13.0

Published: January 29, 2025

CVE-2025-27137

4.4

Dependency-Track

Version(s): < 4.12.6

Published: February 24, 2025

CVE-2025-29768

4.4

Vim

Vim

Published: March 13, 2025

CVE-2025-23204

4.4

Api Platform

Api Platform Core

Published: March 24, 2025

CVE-2024-34061

4.3

changedetection.io

Version(s): 0.45.22

Published: May 2, 2024

CVE-2024-35221

4.3

Rubygems.org

Published: May 29, 2024

CVE-2024-36106

4.3

Argo CD

Version(s): 2.11.3, 2.10.12, 2.9.17

Published: June 6, 2024

CVE-2024-36419

4.3

SuiteCRM

Version(s): before 8.6.1

Published: June 10, 2024

CVE-2024-37883

4.3

Nextcloud Deck

Version(s): 1.6.6, 1.7.5, 1.8.7, 1.9.6, 1.11.3, 1.12.1

Published: June 14, 2024

CVE-2024-37167

4.3

Tuleap Community Edition

Version(s): 15.9.99.97

Published: June 25, 2024

CVE-2024-29038

4.3

tpm2-tools

Version(s): 5.7

Published: June 28, 2024

CVE-2024-29040

4.3

Trusted Computing Group's (TCG) TPM2 Software Stack (TSS)

Version(s): 4.1.0

Published: June 28, 2024

CVE-2024-39691

4.3

matrix-appservice-irc

Version(s): 2.0.0, before 2.0.1

Published: July 5, 2024

CVE-2024-39897

4.3

Zot OCI image registry

Version(s): before 2.1.0

Published: July 9, 2024

CVE-2024-37147

4.3

GLPI

Version(s): 10.0.16

Published: July 10, 2024

CVE-2024-39918

4.3

@jmondi/url-to-png

Version(s): 2.1.2

Published: July 15, 2024

CVE-2024-40630

4.3

OpenImageIO

Version(s): 2.5.13.1

Published: July 15, 2024

CVE-2024-39908

4.3

REXML gem

Version(s): < 3.3.1

Published: July 16, 2024

CVE-2024-29885

4.3

Silverstripe Framework

Version(s): 5.2.3 and above

Published: July 17, 2024

CVE-2024-39678

4.3

Cooked plugin for WordPress

Version(s): 1.7.15.4, before 1.8.0

Published: July 18, 2024

CVE-2024-39679

4.3

Cooked plugin for WordPress

Version(s): up to 1.7.15.4

Published: July 18, 2024

CVE-2024-37898

4.3

XWiki Platform

Version(s): 14.10.21, 15.5.5, 15.10.6

Published: July 31, 2024

CVE-2024-41953

4.3

Zitadel

Version(s): 2.58.1, 2.57.1, 2.56.2, 2.55.5, 2.54.8, 2.53.9, 2.52.3

Published: July 31, 2024

CVE-2024-43377

4.3

Umbraco

Umbraco Cms

Published: August 20, 2024

CVE-2024-43397

4.3

Apolloconfig

Apollo

Published: August 20, 2024

CVE-2024-21658

4.3

Discourse

Discourse Calendar

Published: August 30, 2024

CVE-2024-43797

4.3

Audiobookshelf

Audiobookshelf

Published: September 2, 2024

CVE-2024-45392

4.3

Salesagility

Suitecrm

Published: September 5, 2024

CVE-2024-45604

4.3

Contao

Contao

Published: September 17, 2024

CVE-2024-45605

4.3

Sentry

Sentry

Published: September 17, 2024

CVE-2024-45606

4.3

Sentry

Sentry

Published: September 17, 2024

CVE-2024-45298

4.3

Wiki.js

Version(s): 2.5.303

Published: September 18, 2024

CVE-2024-47170

4.3

Agnai

Version(s): prior to 1.0.330

Published: September 26, 2024

CVE-2024-47171

4.3

Agnai

Version(s): before 1.0.330

Published: September 26, 2024

CVE-2024-43789

4.3

Discourse

Discourse

Published: October 7, 2024

CVE-2024-45297

4.3

Discourse

Discourse

Published: October 7, 2024

CVE-2024-47168

4.3

Gradio Project

Gradio

Published: October 10, 2024

CVE-2024-47767

4.3

Enalean

Tuleap

Published: October 14, 2024

CVE-2024-45036

4.3

Tophat

Version(s): 1.10.0

Published: August 26, 2024

CVE-2024-49373

4.3

Nofusscomputing

Centurion Erp

Published: October 22, 2024

CVE-2024-51740

4.3

Combodo

Itop

Published: November 5, 2024

CVE-2024-52001

4.3

Combodo iTop

Version(s): 3.2.0

Published: November 8, 2024

CVE-2024-53984

4.3

Nanopb

Version(s): 0.4.9.1

Published: December 2, 2024

CVE-2024-53867

4.3

Synapse

Version(s): 1.113.0rc1 - 1.120.0

Published: December 3, 2024

CVE-2024-53275

4.3

Home-Gallery.org

Version(s): 1.15.0 and earlier

Published: December 23, 2024

CVE-2024-45805

4.3

OpenCTI

Version(s): before 6.3.0

Published: December 26, 2024

CVE-2024-52294

4.3

Khoj

Version(s): < 1.29.10

Published: December 30, 2024

CVE-2024-52813

4.3

matrix-rust-sdk

Version(s): before 0.8.0

Published: January 7, 2025

CVE-2024-55893

4.3

TYPO3

Version(s): 11.5.42 ELTS, 12.4.25 LTS, 13.4.3 LTS

Published: January 14, 2025

CVE-2024-55894

4.3

TYPO3

Version(s): 11.5.42 ELTS, 12.4.25 LTS, 13.4.3 LTS

Published: January 14, 2025

CVE-2024-55920

4.3

TYPO3

Version(s): 11.5.42 ELTS, 12.4.25 LTS, 13.4.3 LTS

Published: January 14, 2025

CVE-2024-55923

4.3

TYPO3

Version(s): 11.5.42 ELTS, 12.4.25 LTS, 13.4.3 LTS

Published: January 14, 2025

CVE-2024-55945

4.3

TYPO3

Version(s): 11.5.42 ELTS

Published: January 14, 2025

CVE-2024-52594

4.3

UNKNOWN

Published: January 16, 2025

CVE-2025-24374

4.3

Twig

Version(s): 3.19.0

Published: January 29, 2025

CVE-2025-24784

4.3

kubewarden-controller

Version(s): 1.17.0 - 1.20.9

Published: January 30, 2025

CVE-2025-22129

4.3

Tuleap

Version(s): Community Edition 16.3.99.1736242932, Enterprise Edition 16.2-5, Enterprise Edition 16.3-2

Published: February 3, 2025

CVE-2024-53266

4.3

Discourse

Version(s): Unknown

Published: February 4, 2025

CVE-2024-53851

4.3

Discourse

Version(s): latest stable, beta, tests-passed

Published: February 4, 2025

CVE-2024-53994

4.3

Discourse

Version(s): before 2.7.2

Published: February 4, 2025

CVE-2025-25195

4.3

Zulip

Published: February 13, 2025

CVE-2025-23024

4.3

Glpi-Project

Glpi

Published: February 25, 2025

CVE-2025-27601

4.3

Umbraco

Umbraco

Published: March 11, 2025

CVE-2025-24808

4.3

Discourse

Discourse

Published: March 26, 2025

CVE-2025-24972

4.3

Discourse

Discourse

Published: March 26, 2025

CVE-2025-30221

4.3

Pitchfork

Pitchfork

Rack

Published: March 27, 2025

CVE-2024-32963

4.2

Navidrome

Version(s): 0.52.0

Published: May 1, 2024

CVE-2024-35218

4.2

Umbraco CMS

Version(s): 8.18.13, 10.8.4, 12.3.7, 13.1.1

Published: May 21, 2024

CVE-2024-32877

4.2

Yii 2

Version(s): 2.0.49.3, 2.0.50

Published: May 30, 2024

CVE-2024-35234

4.2

Discourse

Version(s): < 3.2.3 on the `stable` branch, < 3.3.0.beta3 on the `tests-passed` branch

Published: July 3, 2024

CVE-2024-41965

4.2

Vim

Version(s): 9.1.0648 and below

Published: August 1, 2024

CVE-2024-47822

4.2

Directus

Version(s): 10.13.2 and newer

Published: October 8, 2024

CVE-2024-48929

4.2

Umbraco

Umbraco Cms

Published: October 22, 2024

CVE-2024-52510

4.2

Nextcloud Desktop Client

Version(s): 3.14.1, before 3.14.2

Published: November 15, 2024

CVE-2025-22134

4.2

Vim

Version(s): 9.1.1003

Published: January 13, 2025

CVE-2025-24014

4.2

Vim

Version(s): before 9.1.1043

Published: January 20, 2025

CVE-2025-24363

4.2

HL7 FHIR IG Publisher

Version(s): before 1.8.9

Published: January 24, 2025

CVE-2025-26603

4.2

Vim

Version(s): pre 9.1.1115

Published: February 18, 2025

CVE-2024-41676

4.1

Magento-lts

Version(s): 20.10.1 or higher

Published: July 29, 2024

CVE-2024-51992

4.1

Orchid Platform

Version(s): 8.0 - 14.42.x

Published: November 11, 2024

CVE-2024-52514

4.1

Nextcloud Server

Version(s): 27.1.9, 28.0.5, 29.0.0

Nextcloud Enterprise Server

Version(s): 21.0.9.18, 22.2.10.23, 23.0.12.18, 24.0.12.14, 25.0.13.9, 26.0.13.3, 27.1.9, 28.0.5, 29.0.0

Published: November 15, 2024

CVE-2025-27156

4.1

Tuleap

Version(s): 16.4.99.1740567344, 16.4-6, 16.3-11

Published: March 4, 2025

CVE-2025-30164

4.1

Icinga

Icinga Web 2

Published: March 26, 2025

CVE-2024-37162

4.0

zsa

Version(s): 0.3.3

zsa

Version(s): 0.3.3 and below

Published: June 7, 2024

CVE-2024-37161

4.0

MeterSphere

Version(s): before 1.10.1-lts

Published: June 11, 2024

CVE-2024-42487

4.0

Cilium

Version(s): 1.15.8, 1.16.1

Published: August 15, 2024

CVE-2024-47825

4.0

Cilium

Version(s): 1.14.0 - 1.14.15, 1.15.0 - 1.15.9

Published: October 21, 2024

CVE-2024-56138

4.0

notation-go

Version(s): 1.3.0-rc.2 and below

Published: January 13, 2025

CVE-2025-25194

4.0

activitypub_federation

Version(s): 0.6.2 and prior

Lemmy

Version(s): 0.19.8 and prior

Published: February 10, 2025

CVE-2025-25201

4.0

Nitrokey 3 Firmware

Version(s): 1.8.0, test releases with PIV enabled prior to 1.8.0

Published: February 12, 2025

CVE-2024-32020

3.9

Git

Version(s): 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, 2.39.4

Published: May 14, 2024

CVE-2024-32021

3.9

Git

Version(s): 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, 2.39.4

Published: May 14, 2024

CVE-2024-41811

3.9

ipl/web

Version(s): 0.10.1

icinga-php-library

Version(s): before 0.14.1

Published: August 5, 2024

CVE-2024-47814

3.9

Vim

Version(s): < 9.1.0764

Published: October 7, 2024

CVE-2024-37885

3.8

Nextcloud Desktop Client for macOS

Version(s): 3.12.0

Published: June 14, 2024

CVE-2024-39324

3.8

aimeos/ai-admin-graphql

Version(s): 2022.04.1, before 2022.10.10, before 2023.10.6, before 2024.4.2

Published: July 2, 2024

CVE-2024-41960

3.8

mailcow: dockerized

Version(s): 2024-07

Published: August 5, 2024

CVE-2024-45599

3.8

Cursor

Version(s): before 0.41.0

Published: September 25, 2024

CVE-2024-56321

3.8

GoCD

Version(s): 18.9.0 through 24.4.0

Published: January 3, 2025

CVE-2024-34079

3.7

octo-sts

Version(s): 0.1.0

Published: May 14, 2024

CVE-2024-35232

3.7

github.com/huandu/facebook

Version(s): 2.7.2

Published: May 24, 2024

CVE-2024-36407

3.7

SuiteCRM

Version(s): before 7.14.4, before 8.6.1

Published: June 10, 2024

CVE-2024-39302

3.7

BigBlueButton

Version(s): 2.6.18, 2.7.8, 3.0.0-alpha.7

Published: June 28, 2024

CVE-2024-40632

3.7

Linkerd

Version(s): edge-24.6.2

Published: July 15, 2024

CVE-2024-46989

3.7

spicedb

Version(s): 1.35.3 and below

Published: September 18, 2024

CVE-2024-45403

3.7

h2o HTTP server

Published: October 11, 2024

CVE-2024-47869

3.7

Gradio Project

Gradio

Published: October 10, 2024

CVE-2025-22151

3.7

Strawberry GraphQL

Version(s): 0.182.0, before 0.257.0

Django ORM

Version(s): UNKNOWN

SQLAlchemy ORM

Version(s): UNKNOWN

Pydantic ORM

Version(s): UNKNOWN

Published: January 9, 2025

CVE-2025-24023

3.7

Dpgaspar

Flask-Appbuilder

Published: March 3, 2025

CVE-2025-29923

3.7

Go-Redis

Go-Redis

Published: March 20, 2025

CVE-2024-38531

3.6

Nix package manager

Version(s): 2.23.1, 2.22.2, 2.21.3, 2.20.7, 2.19.5, 2.18.4

Published: June 28, 2024

CVE-2024-45310

3.6

Docker

Kubernetes

runc

Version(s): 1.1.14, 1.2.0-rc3

Published: September 3, 2024

CVE-2025-27145

3.6

copyparty

Version(s): before 1.16.15

Published: February 25, 2025

CVE-2024-34355

3.5

TYPO3

Version(s): 13.0.0, before 13.1.1

Published: May 14, 2024

CVE-2024-34713

3.5

sshproxy

Version(s): 1.6.3 and later

sshproxy

Version(s): before 1.6.3

Published: May 14, 2024

CVE-2024-36118

3.5

MeterSphere

Version(s): 2.10.15-lts

Published: May 30, 2024

CVE-2024-37314

3.5

Nextcloud Server

Version(s): 25.0.7, 26.0.2

Published: June 14, 2024

CVE-2024-37315

3.5

Nextcloud Server

Version(s): 26.0.12, 27.1.7, 28.0.3

Published: June 14, 2024

CVE-2024-37884

3.5

Nextcloud Server

Version(s): 26.0.12, 27.1.7, 28.0.3

Published: June 14, 2024

CVE-2024-37887

3.5

Nextcloud Server

Version(s): 27.1.10, 28.0.6, 29.0.1

Published: June 14, 2024

CVE-2024-37158

3.5

Evmos

Version(s): 18.0.0

Published: June 17, 2024

CVE-2024-37159

3.5

Evmos

Version(s): 18.0.0

Published: June 17, 2024

CVE-2024-24764

3.5

October CMS

Version(s): 3.5.15

Published: June 26, 2024

CVE-2024-39307

3.5

Kavita

Version(s): 0.8.1

Published: June 28, 2024

CVE-2024-41663

3.5

Canarytokens

Published: July 23, 2024

CVE-2024-47526

3.5

LibreNMS

Published: October 1, 2024

CVE-2024-47612

3.5

MediaWiki DataDump extension

Published: October 2, 2024

CVE-2024-47836

3.5

Admidio

Version(s): before 4.3.12

Published: October 16, 2024

CVE-2024-51749

3.5

Element Web

Version(s): < 1.11.85

Published: November 12, 2024

CVE-2024-52507

3.5

Nextcloud Tables app

Version(s): 0.8.1

Published: November 15, 2024

CVE-2024-52509

3.5

Nextcloud Mail

Version(s): 2.2.10, 3.6.2, 3.7.2

Published: November 15, 2024

CVE-2025-24892

3.5

OpenProject

Version(s): before 15.2.1

Published: February 10, 2025

CVE-2025-30351

3.5

Directus

Directus

Published: March 26, 2025

CVE-2024-51993

3.4

Combodo iTop

Version(s): 3.2.0

Published: November 7, 2024

CVE-2025-30163

3.4

Cilium

Cilium

Published: March 24, 2025

CVE-2024-52512

3.3

Nextcloud User OIDC app

Version(s): 6.1.0

Published: November 15, 2024

CVE-2024-55626

3.3

Suricata

Version(s): before 7.0.8

Published: January 6, 2025

CVE-2024-51491

3.3

notation-go

Version(s): 1.3.0-rc.2

Published: January 13, 2025

CVE-2024-55630

3.3

Joplin

Version(s): 3.2.8

Published: February 7, 2025

CVE-2025-27496

3.3

Snowflake

Jdbc Driver

Published: March 13, 2025

CVE-2025-24034

3.2

Himmelblau

Version(s): 0.7.0 - 0.7.14, 0.8.0 - 0.8.2

Published: January 23, 2025

CVE-2025-30162

3.2

Cilium

Cilium

Published: March 24, 2025

CVE-2024-28866

3.1

GoCD

Version(s): 19.4.0 - 23.5.0

Published: May 14, 2024

CVE-2024-25637

3.1

October CMS

Version(s): 3.5.15

Published: June 26, 2024

CVE-2024-39919

3.1

@jmondi/url-to-png

Version(s): 2.1.1

Published: July 15, 2024

CVE-2024-41945

3.1

fuels-ts

Published: July 30, 2024

CVE-2024-43379

3.1

Trufflesecurity

Trufflehog

Published: August 19, 2024

CVE-2024-43411

3.1

CKEditor 4

Version(s): 4.22 - 4.24.0-lts

Published: August 21, 2024

CVE-2024-47780

3.1

TYPO3

Version(s): 10.4.46 ELTS, 11.5.40 LTS, 12.4.21 LTS, 13.3.1

Published: October 8, 2024

CVE-2024-25622

3.1

h2o HTTP Server

Published: October 11, 2024

CVE-2024-48926

3.1

Umbraco

Umbraco Cms

Published: October 22, 2024

CVE-2024-49755

3.1

Duende IdentityServer

Version(s): 7.0.8

Published: October 28, 2024

CVE-2024-51744

3.1

golang-jwt

Version(s): 4.5.1

Published: November 4, 2024

CVE-2024-50341

3.1

symfony/security-bundle

Version(s): 6.4.10, 7.0.10, 7.1.3

Published: November 6, 2024

CVE-2024-50342

3.1

Symfony PHP framework

Version(s): 5.4.46, 6.4.14, 7.1.7

Published: November 6, 2024

CVE-2024-50343

3.1

Symfony

Version(s): 5.4.43, 6.4.11, 7.1.4

Published: November 6, 2024

CVE-2024-50345

3.1

Symfony PHP framework

Version(s): 5.4.46, 6.4.14, 7.1.7

Published: November 6, 2024

CVE-2024-55891

3.1

TYPO3

Version(s): 13.4.3 ELTS

Published: January 14, 2025

CVE-2025-22601

3.1

Discourse

Version(s): unknown

Published: February 4, 2025

CVE-2024-41948

3.0

biscuit-java

Version(s): before 4.0.0

Published: August 1, 2024

CVE-2024-41949

3.0

biscuit-rust

Published: August 1, 2024

CVE-2024-42350

3.0

Biscuit Token

Version(s): 4.x

Published: August 5, 2024

CVE-2024-52516

3.0

Nextcloud Server

Version(s): 22.2.11, 23.0.11, 24.0.6

Published: November 15, 2024

CVE-2024-38358

2.9

Wasmer

Version(s): 4.3.2 and below

Published: June 19, 2024

CVE-2024-40640

2.9

vodozemac

Version(s): before 0.7.0

Published: July 17, 2024

CVE-2024-47813

2.9

Wasmtime

Version(s): 21.0.2, 22.0.1, 23.0.3, 24.0.1, 25.0.2

Published: October 9, 2024

CVE-2025-27400

2.9

Magento Long Term Support (LTS)

Version(s): before 20.12.3, 20.13.0

Published: February 28, 2025

CVE-2024-52814

2.8

Argo Helm

Version(s): before 0.45.0

Published: November 22, 2024

CVE-2024-32882

2.7

Wagtail

Version(s): 6.0.3, 6.1

Published: May 2, 2024

CVE-2024-32969

2.7

vantage6

Version(s): 4.5.0rc3

Published: May 23, 2024

CVE-2024-35239

2.7

Umbraco Commerce

Version(s): 13.0.1, 12.2.2, 10.5.3, 8.13.13

Published: May 28, 2024

CVE-2024-48921

2.7

Nirmata

Kyverno

Published: October 29, 2024

CVE-2024-52519

2.7

Nextcloud Server

Version(s): 28.0.10, 29.0.7

Published: November 15, 2024

CVE-2025-27146

2.7

Matrix

Matrix Irc Bridge

Published: February 25, 2025

CVE-2024-38364

2.6

DSpace

Version(s): 7.0 - 7.6.1

Published: June 26, 2024

CVE-2024-52521

2.6

Nextcloud Server

Version(s): 28.0.10, 29.0.7, 30.0.0

Published: November 15, 2024

CVE-2024-52513

2.6

Nextcloud Server

Version(s): 28.0.11, 29.0.8, 30.0.1

Nextcloud Enterprise Server

Version(s): 25.0.13.13, 26.0.13.9, 27.1.11.9, 28.0.11, 29.0.8, 30.0.1

Published: November 15, 2024

CVE-2025-25183

2.6

vLLM

Version(s): 0.7.2

Published: February 7, 2025

CVE-2024-34063

2.5

vodozemac

Version(s): 0.5.0, 0.5.1

Published: May 3, 2024

CVE-2024-43785

2.5

gitoxide

Published: August 22, 2024

CVE-2024-45305

2.5

gix-path

Version(s): 0.10.10

Published: September 2, 2024

CVE-2024-36122

2.4

Discourse

Version(s): < 3.2.3, 3.3.0.beta4

Published: July 3, 2024

CVE-2024-48909

2.4

Authzed

Spicedb

Published: October 14, 2024

CVE-2024-34715

2.3

Fides

Version(s): 2.37.0

Published: May 29, 2024

CVE-2024-29181

2.3

Strapi

Version(s): before 4.19.1

Published: June 12, 2024

CVE-2024-51754

2.2

Twig

Version(s): 3.11.2, 3.14.1

Published: November 6, 2024

CVE-2024-51755

2.2

Twig

Version(s): 3.11.2, 3.14.1

Published: November 6, 2024

CVE-2024-53861

2.2

pyjwt

Version(s): 2.10.0

Published: November 29, 2024

CVE-2024-52589

2.2

Discourse

Version(s): UNKNOWN

Published: December 19, 2024

CVE-2024-56197

2.2

Discourse

Published: February 4, 2025

CVE-2025-30222

2.1

Shescape

Shescape

Published: March 25, 2025

CVE-2025-30371

2.1

Metabase

Metabase

Published: March 28, 2025

CVE-2024-35196

2.0

Sentry

Version(s): 24.5.0

Published: May 31, 2024

CVE-2024-38372

2.0

Undici

Version(s): 6.19.2

Published: July 8, 2024

CVE-2024-53855

1.9

Centurion ERP

Version(s): 1.3.1

Published: November 27, 2024

CVE-2024-36119

1.8

Statamic

Version(s): 5.3.0 - 5.6.1

Published: May 30, 2024

CVE-2024-52525

1.8

Nextcloud Server

Version(s): 28.0.12, 29.0.9, 30.0.2

Published: November 15, 2024

CVE-2024-39311

1.8

Publify

Publify
Publify Core

Published: March 28, 2025

CVE-2025-27609

1.1

Icinga

Icinga Web

Published: March 26, 2025

CVE-2024-38537

0.0

Fides

Version(s): 2.39.1

Published: July 2, 2024

CVE-2024-43359

0.0

ZoneMinder

Version(s): 1.36.34, 1.37.61

Published: August 12, 2024

CVE-2024-47534

0.0

go-tuf

Version(s): 2.0.1

Published: October 1, 2024

CVE-2024-47609

0.0

Tonic

Version(s): 0.12.0, 0.12.1, 0.12.2

Published: October 1, 2024

CVE-2024-47611

0.0

XZ Utils

Version(s): 5.6.2, older

Published: October 2, 2024

CVE-2024-47824

0.0

matrix-react-sdk

Version(s): 3.18.0 - 3.101.9

Published: October 15, 2024

CVE-2024-47874

0.0

Starlette

Version(s): before 0.40.0

Published: October 15, 2024

CVE-2024-47876

0.0

Sakai

Version(s): 23.0 - 23.2

Published: October 15, 2024

CVE-2024-48915

0.0

Agent Dart

Version(s): before 1.0.0-dev.29

Published: October 15, 2024

CVE-2024-50356

0.0

Frappe Cloud

Published: October 31, 2024

CVE-2024-51734

0.0

Zope AccessControl

Version(s): 7.2

Published: November 4, 2024

CVE-2024-51736

0.0

Symphony process module for Symphony PHP framework

Version(s): 5.4.46, 6.4.14, 7.1.7

Published: November 6, 2024

CVE-2024-32037

0.0

GeoNetwork

Version(s): before 4.2.10, before 4.4.5

Published: February 11, 2025

CVE-2024-32029

None

UNKNOWN

Published: May 30, 2024

CVE-2024-38352

None

UNKNOWN

Published: June 19, 2024

CVE-2024-38515

None

UNKNOWN

Published: June 27, 2024

CVE-2024-40639

None

Gotenberg

Version(s): before 8.1.0

Published: July 17, 2024

CVE-2024-41807

None

UNKNOWN

Published: July 26, 2024

CVE-2024-39306

None

UNKNOWN

Published: August 19, 2024

CVE-2024-43372

None

UNKNOWN

Published: August 19, 2024

CVE-2024-45295

None

UNKNOWN

Published: September 6, 2024

CVE-2024-45804

None

UNKNOWN

Published: September 17, 2024

CVE-2024-47062

None

Navidrome

Version(s): 0.53.0

Published: September 20, 2024

CVE-2024-45792

None

Mantis Bug Tracker

Version(s): 2.26.4

Published: September 30, 2024

CVE-2024-47063

None

Computer Vision Annotation Tool (CVAT)

Version(s): 2.19.0, later versions

Published: September 30, 2024

CVE-2024-47064

None

Computer Vision Annotation Tool (CVAT)

Version(s): 2.19.0

Published: September 30, 2024

CVE-2024-47067

None

AList

Version(s): 3.29.0

Published: September 30, 2024

CVE-2024-47178

None

basic-auth-connect

Version(s): <1.1.0

Published: September 30, 2024

CVE-2024-47532

None

RestrictedPython

Version(s): 7.3

Published: September 30, 2024

CVE-2024-47536

None

MediaWiki Citizen Skin

Version(s): 2.31.0

Published: September 30, 2024

CVE-2024-47529

None

OpenC3 COSMOS

Version(s): 5.19.0

Published: October 2, 2024

CVE-2024-47765

None

Minecraft MOTD Parser

Version(s): 1.0.6

Published: October 4, 2024

CVE-2024-47768

None

Lif Authentication Server

Version(s): 1.7.3

Published: October 4, 2024

CVE-2024-47764

None

cookie

Version(s): 0.7.0

Published: October 4, 2024

CVE-2024-47781

None

CreateWiki extension

Published: October 7, 2024

CVE-2024-47823

None

Livewire

Version(s): < 3.5.2

Published: October 8, 2024

CVE-2024-47832

None

ssoready

Version(s): 7f92a06 or later

Published: October 9, 2024

CVE-2023-25581

None

pac4j

Version(s): before 4.0.0

Published: October 10, 2024

CVE-2024-47074

None

DataEase

Version(s): 1.18.25

Published: October 11, 2024

CVE-2024-47877

None

Extract

Version(s): 4.0.0

Published: October 11, 2024

CVE-2024-47884

None

foxmarks

Version(s): 2.1.0

Published: October 11, 2024

CVE-2024-47867

None

Gradio

Published: October 10, 2024

CVE-2023-45817

None

UNKNOWN

Published: October 14, 2024

CVE-2024-47080

None

matrix-js-sdk

Version(s): 9.11.0, 34.7.0

Published: October 15, 2024

CVE-2024-47771

None

Element Desktop

Version(s): 1.11.70, 1.11.71, 1.11.72, 1.11.73, 1.11.74, 1.11.75, 1.11.76, 1.11.77, 1.11.78, 1.11.79, 1.11.80

Published: October 15, 2024

CVE-2024-47779

None

Element Web

Version(s): 1.11.70, 1.11.71, 1.11.72, 1.11.73, 1.11.74, 1.11.75, 1.11.76, 1.11.77, 1.11.78, 1.11.79, 1.11.80

Published: October 15, 2024

CVE-2024-41128

None

Ruby on Rails

Version(s): 3.1.0 - 6.1.7.9, 7.0.8.5, 7.1.4.1, 7.2.1.1

Published: October 16, 2024

CVE-2024-47887

None

Action Pack

Version(s): 4.0.0 - 6.1.7.9, 7.0.8.5 - 7.2.1.1

Published: October 16, 2024

CVE-2024-47888

None

Action Text

Version(s): 6.0.0 - 6.1.7.8, 7.0.0 - 7.0.8.5, 7.1.0 - 7.1.4.1, 7.2.0 - 7.2.1.1

Published: October 16, 2024

CVE-2024-47889

None

Action Mailer

Version(s): 3.0.0 - 6.1.7.9, 7.0.8.5, 7.1.4.1, 7.2.1.1

Published: October 16, 2024

CVE-2024-48918

None

RDS Light

Version(s): before 1.1.0

Published: October 16, 2024

CVE-2024-48924

None

MessagePack-CSharp

Published: October 17, 2024

CVE-2024-49361

None

ACON library

Published: October 18, 2024

CVE-2024-48930

None

secp256k1-node

Version(s): 3.8.1, 4.0.4, 5.0.1

Published: October 21, 2024

CVE-2024-48919

None

Cursor code editor with AI

Version(s): before 0.42

Published: October 22, 2024

CVE-2024-49751

None

Frappe

Version(s): before commit 5d118a902872d7941f099ad1fb918e2421e79ccd

Published: October 23, 2024

CVE-2024-49380

None

Plenti

Version(s): before 0.7.2

Published: October 25, 2024

CVE-2024-49766

None

Werkzeug

Version(s): 3.0.6

Published: October 25, 2024

CVE-2020-26306

None

Knwl.js

Version(s): 1.0.2 and prior

Published: October 26, 2024

CVE-2020-26307

None

HTML2Markdown

Published: October 26, 2024

CVE-2020-26308

None

Validate.js

Version(s): 0.13.1 and prior

Published: October 26, 2024

CVE-2020-26309

None

Validate.js

Version(s): 0.11.3 and prior

Published: October 26, 2024

CVE-2020-26310

None

Validate.js

Published: October 26, 2024

CVE-2024-51481

None

Nix package manager

Version(s): 2.18.9, 2.19.7, 2.20.9, 2.21.5, 2.22.4, 2.23.4, 2.24.10

Published: October 31, 2024

CVE-2024-50347

None

Laravel Reverb

Version(s): before 1.4.0

Published: October 31, 2024

CVE-2024-49770

None

oak

Version(s): < 17.1.3

Published: November 1, 2024

CVE-2024-51483

None

changedetection.io

Version(s): before 0.47.5

Published: November 1, 2024

CVE-2024-50346

None

WebFeed browser extension

Version(s): 0.9.2 and below

Published: November 5, 2024

CVE-2024-51498

None

cobalt

Version(s): 10.2.1

Published: November 5, 2024

CVE-2024-51501

None

Refit library for .NET Core, Xamarin and .NET

Version(s): 8.0.0

Published: November 4, 2024

CVE-2024-51502

None

loona-hpack

Version(s): before 0.4.3

Published: November 4, 2024

CVE-2024-51735

None

Osmedeus

Published: November 5, 2024

CVE-2024-51746

None

gitsign

Published: November 5, 2024

CVE-2024-51752

None

AuthKit library for Next.js

Version(s): 0.0.1 - 0.13.1

Published: November 5, 2024

CVE-2024-51753

None

AuthKit library for Remix

Version(s): 0.4.1

Published: November 5, 2024

CVE-2024-51745

None

Wasmtime

Version(s): 24.0.2, 25.0.3, 26.0.1

Published: November 5, 2024

CVE-2024-51756

None

cap-std

Version(s): 3.4.1

cap-primitives

Version(s): 3.4.1

cap-async-std

Version(s): 3.4.1

Published: November 5, 2024

CVE-2024-51757

None

happy-dom

Version(s): before 15.10.2

Published: November 6, 2024

CVE-2024-51990

None

jj (Jujutsu VCS)

Version(s): 0.23.0

Published: November 7, 2024

CVE-2024-47073

None

DataEase

Version(s): 2.10.2

Published: November 7, 2024

CVE-2024-51758

None

Filament

Version(s): 3.2.123

Published: November 7, 2024

CVE-2024-52004

None

MediaCMS

Version(s): before v4.1.0

Published: November 8, 2024

CVE-2024-52009

None

Atlantis

Version(s): 0.30.0

Published: November 8, 2024

CVE-2024-52286

None

Stirling-PDF

Version(s): 0.32.0

Published: November 11, 2024

CVE-2024-50336

None

matrix-js-sdk

Version(s): before 34.11.0

Published: November 12, 2024

CVE-2024-52010

None

Zoraxy

Published: November 12, 2024

CVE-2024-52301

None

Laravel

Version(s): 6.20.45, 7.30.7, 8.83.28, 9.52.17, 10.48.23, 11.31.0

Published: November 12, 2024

CVE-2024-52295

None

DataEase

Version(s): before 2.10.2

Published: November 13, 2024

CVE-2024-49379

None

Umbrel

Version(s): before 1.2.2

Published: November 13, 2024

CVE-2024-52302

None

Spring Boot

Published: November 14, 2024

CVE-2024-52524

None

Giskard

Version(s): before 2.15.5

Published: November 14, 2024

CVE-2024-52528

None

Budget Control Gateway

Version(s): 1.0, 1.5.1

Published: November 15, 2024

CVE-2024-47759

None

GLPI

Version(s): 10.0.17

Published: November 15, 2024

CVE-2024-52522

None

Rclone

Version(s): 1.0 - 1.68.1

Published: November 15, 2024

CVE-2024-51499

None

MarkUs

Version(s): < 2.4.8

Published: November 18, 2024

CVE-2024-52304

None

aiohttp

Version(s): before 3.10.11

Published: November 18, 2024

CVE-2024-52506

None

Graylog

Version(s): 6.1.0, 6.1.1

Published: November 18, 2024

CVE-2024-52584

None

Autolab

Version(s): 3.0.1

Published: November 18, 2024

CVE-2024-52585

None

Autolab

Version(s): 3.0.1, 3.0.2

Published: November 18, 2024

CVE-2024-52287

None

authentik

Version(s): 2024.8.5, 2024.10.3

Published: November 21, 2024

CVE-2024-52289

None

authentik

Version(s): 2024.8.5, 2024.10.3

Published: November 21, 2024

CVE-2024-52307

None

authentik

Version(s): 2024.1.0, before 2024.8.5

Published: November 21, 2024

CVE-2024-52309

None

SFTPGo

Version(s): 2.6.3

Published: November 21, 2024

CVE-2024-52793

None

Deno Standard Library

Version(s): before 1.0.11

Published: November 22, 2024

CVE-2024-53255

None

BoidCMS

Version(s): 2.1.2

Published: November 25, 2024

CVE-2024-53258

None

Autolab

Version(s): 3.0.0, 3.0.1, 3.0.2

Published: November 25, 2024

CVE-2024-53261

None

SvelteKit

Version(s): 2.8.3

Published: November 25, 2024

CVE-2024-53262

None

SvelteKit

Version(s): 2.8.3

Published: November 25, 2024

CVE-2024-52008

None

Fides

Version(s): 2.50.0

Published: November 26, 2024

CVE-2024-53849

None

editorconfig-core-c

Version(s): 0.12.7

Published: November 27, 2024

CVE-2024-53254

None

UNKNOWN

Published: November 27, 2024

CVE-2023-29001

None

Contiki-NG

Published: November 27, 2024

CVE-2024-53264

None

bunkerweb

Version(s): 1.5.11 and below

Published: November 27, 2024

CVE-2024-52003

None

Traefik

Version(s): 2.11.14, 3.2.1

Published: November 29, 2024

CVE-2024-52800

None

veraPDF

Published: November 29, 2024

CVE-2024-52801

None

sftpgo

Version(s): 2.6.4

Published: November 29, 2024

CVE-2024-52809

None

vue-i18n

Version(s): 9.14.2, 10.0.5

Published: November 29, 2024

CVE-2024-52810

None

@intlify/shared

Version(s): 9.14.2, 10.0.5

Published: November 29, 2024

CVE-2024-53864

None

Ibexa DXP

Version(s): 4.6.14

Published: November 29, 2024

CVE-2024-53980

None

RIOT

Version(s): before PR #20998

Published: November 29, 2024

CVE-2024-53862

None

Argo Workflows

Version(s): 3.5.7, 3.5.8

Published: December 2, 2024

CVE-2024-49763

None

PlexRipper

Version(s): 0.24.0

Published: December 2, 2024

CVE-2024-52596

None

SimpleSAMLphp

Version(s): 1.19.0

Published: December 2, 2024

CVE-2024-53992

None

unzip-bot Telegram bot

Version(s): before 7.0.3a

Published: December 2, 2024

CVE-2024-53990

None

AsyncHttpClient (AHC) library

Published: December 2, 2024

CVE-2024-53989

None

Rails

Version(s): 1.6.0

Published: December 2, 2024

CVE-2024-53985

None

Rails::HTML::Sanitizer

Version(s): 1.6.0, 1.16.x-1.16.7

Published: December 2, 2024

CVE-2024-53986

None

Rails

Version(s): >= 7.1.0, 1.6.0

Published: December 2, 2024

CVE-2024-53987

None

Rails

Version(s): 7.1.0

Published: December 2, 2024

CVE-2024-53988

None

Rails

Version(s): 1.6.0 for Rails >= 7.1.0

Published: December 2, 2024

CVE-2024-52805

None

Synapse

Version(s): before 1.120.1

Published: December 3, 2024

CVE-2024-52815

None

Synapse

Version(s): before 1.120.1

Published: December 3, 2024

CVE-2024-53863

None

Synapse

Version(s): before 1.120.1

Published: December 3, 2024

CVE-2024-54131

None

Kolide Agent (Launcher)

Version(s): >= 1.5.3, < 1.12.3

Published: December 3, 2024

CVE-2024-54132

None

GitHub CLI

Version(s): 2.63.1

Published: December 4, 2024

CVE-2024-54134

None

@solana/web3.js

Version(s): 1.95.6, 1.95.7

Published: December 4, 2024

CVE-2024-53982

None

ZOO-Project

Published: December 4, 2024

CVE-2024-54129

None

NASA’s Interplanetary Overlay Network (ION) - ION-DTN BPv7 implementation

Version(s): 4.1.3

Published: December 5, 2024

CVE-2024-54130

None

NASA’s Interplanetary Overlay Network (ION) - ION-DTN BPv7 software

Version(s): 4.1.3

Published: December 5, 2024

CVE-2024-54140

None

sigstore-java

Version(s): 1.2.0

Published: December 5, 2024

CVE-2024-52798

None

path-to-regexp

Version(s): 0.1.12

Published: December 5, 2024

CVE-2024-54143

None

openwrt/asu

Published: December 6, 2024

CVE-2024-54138

None

NuGet Gallery

Version(s): <= 2024.12.06

Published: December 6, 2024

CVE-2024-53847

None

Trix rich text editor

Version(s): before 2.1.9, before 1.3.3

Published: December 9, 2024

CVE-2024-55601

None

Hugo

Version(s): 0.123.0 - 0.139.4

Published: December 9, 2024

CVE-2024-54152

None

Angular Expressions

Version(s): before 1.4.3

Published: December 10, 2024

CVE-2024-53866

None

pnpm

Version(s): before 9.15.0

Published: December 10, 2024

CVE-2024-54133

None

Action Pack

Version(s): 5.2.0 - 7.0.8.7, 7.1.5.1, 7.2.2.1, 8.0.0.1

Published: December 10, 2024

CVE-2024-55655

None

sigstore-python

Version(s): 2.0.0 - 3.5.9

Published: December 10, 2024

CVE-2024-47758

None

GLPI

Version(s): 9.3.0 - 10.0.16

Published: December 11, 2024

CVE-2024-47760

None

GLPI

Version(s): 9.1.0, before 10.0.17

Published: December 11, 2024

CVE-2024-47761

None

GLPI

Version(s): 0.80 - 10.0.16

Published: December 11, 2024

CVE-2024-48912

None

GLPI

Version(s): 0.80 - 10.0.16

Published: December 11, 2024

CVE-2024-53272

None

Habitica

Version(s): 5.28.5 and before

Published: December 12, 2024

CVE-2024-53273

None

Habitica

Version(s): before 5.28.5

Published: December 12, 2024

CVE-2024-53274

None

Habitica

Version(s): 5.28.5 and before

Published: December 12, 2024

CVE-2024-53845

None

ESPTouch

Version(s): before 5.3.2, before 5.2.4, before 5.1.6, before 5.0.8

Published: December 12, 2024

CVE-2024-55657

None

SiYuan

Version(s): before 3.1.16

Published: December 12, 2024

CVE-2024-55658

None

SiYuan

Version(s): before 3.1.16

Published: December 12, 2024

CVE-2024-55659

None

SiYuan

Version(s): before 3.1.16

Published: December 12, 2024

CVE-2024-55660

None

SiYuan

Version(s): before 3.1.16

Published: December 12, 2024

CVE-2024-55885

None

beego

Version(s): before 2.3.4

Published: December 12, 2024

CVE-2024-55890

None

D-Tale

Version(s): before 3.16.1

Published: December 13, 2024

CVE-2024-55946

None

Playloom Engine

Version(s): Beta v0.0.1

Published: December 13, 2024

CVE-2024-55949

None

MinIO

Version(s): < RELEASE.2024-12-13T22-19-12Z

Published: December 16, 2024

CVE-2024-55951

None

Metabase

Version(s): 1.52.0, 1.52.1, 1.52.2

Published: December 16, 2024

CVE-2024-56139

None

pdftools

Version(s): up to 0.5.0

Published: December 17, 2024

CVE-2024-55952

None

DataEase

Version(s): 1.18.27

Published: December 18, 2024

CVE-2024-55953

None

DataEase

Version(s): 1.18.27

Published: December 18, 2024

CVE-2024-52590

None

Misskey

Version(s): before 2024.11.0-alpha.3

Published: December 18, 2024

CVE-2024-52591

None

Misskey

Version(s): 2024.11.0-alpha.3

Published: December 18, 2024

CVE-2024-52592

None

Misskey

Version(s): 2024.11.0-alpha.3

Published: December 18, 2024

CVE-2024-52593

None

Misskey

Version(s): 2024.11.0-alpha.3

Published: December 18, 2024

CVE-2024-56145

None

Craft CMS

Version(s): 4.13.2, 5.5.2

Published: December 18, 2024

CVE-2024-56159

None

Astro

Version(s): 5.0.3 - 5.0.7, 5.0.8, 4.16.17 or older, 5.0.9, 4.16.18

Published: December 19, 2024

CVE-2024-56329

None

Laravel Jetstream Socialstream Package

Version(s): 6.2

Published: December 20, 2024

CVE-2024-56330

None

Stardust

Version(s): build up to 12/20/24

Published: December 20, 2024

CVE-2024-56333

None

Onyxia-API

Version(s): 4.2.0, 3.1.1, 2.8.2

Published: December 20, 2024

CVE-2024-55947

None

Gogs

Version(s): 0.13.1 and later

Published: December 23, 2024

CVE-2024-55950

None

Tabby terminal emulator

Version(s): < 1.0.216

Published: December 26, 2024

CVE-2024-56361

None

LGSL (Live Game Server List)

Version(s): before 7.0.0, 7.0.0

Published: December 26, 2024

CVE-2024-56516

None

free-one-api

Version(s): up to and including 1.0.1

Published: December 30, 2024

CVE-2024-56517

None

LGSL (Live Game Server List)

Version(s): up to 6.2.1

Published: December 30, 2024

CVE-2024-56734

None

Better Auth

Version(s): < 1.1.6

Published: December 30, 2024

CVE-2024-56801

None

Tasklists plugin for GLPI

Version(s): < 2.0.4

Published: December 30, 2024

CVE-2024-56198

None

path-sanitizer npm package

Version(s): before 3.1.0

Published: December 31, 2024

CVE-2024-56802

None

Tapir

Version(s): 0.9.0, 0.9.1

Published: December 31, 2024

CVE-2024-56803

None

Ghostty

Version(s): 1.0.0

Published: December 31, 2024

CVE-2024-56320

None

GoCD

Version(s): before 24.5.0

Published: January 3, 2025

CVE-2024-56322

None

GoCD

Version(s): 16.7.0 through 24.4.0

Published: January 3, 2025

CVE-2024-56324

None

GoCD

Version(s): before 24.4.0

Published: January 3, 2025

CVE-2024-56408

None

PhpSpreadsheet

Version(s): before 3.7.0, before 2.3.5, before 2.1.6, before 1.29.7

Published: January 3, 2025

CVE-2024-56365

None

PhpSpreadsheet

Version(s): < 3.7.0, < 2.3.5, < 2.1.6, < 1.29.7

Published: January 3, 2025

CVE-2024-56366

None

PhpSpreadsheet

Version(s): < 3.7.0, < 2.3.5, < 2.1.6, < 1.29.7

Published: January 3, 2025

CVE-2024-56409

None

PhpSpreadsheet

Version(s): before 3.7.0, before 2.3.5, before 2.1.6, before 1.29.7

Published: January 3, 2025

CVE-2024-56513

None

Karmada

Version(s): before 1.12.0

Published: January 3, 2025

CVE-2024-56514

None

Karmada

Version(s): before 1.12.0

Published: January 3, 2025

CVE-2025-21609

None

SiYuan Note

Version(s): 3.1.18

Published: January 3, 2025

CVE-2024-56410

None

PhpSpreadsheet

Version(s): < 3.7.0, < 2.3.5, < 2.1.6, < 1.29.7

Published: January 3, 2025

CVE-2024-56411

None

PhpSpreadsheet

Version(s): before 3.7.0, before 2.3.5, before 2.1.6, before 1.29.7

Published: January 3, 2025

CVE-2024-56412

None

PhpSpreadsheet

Version(s): before 3.7.0, before 2.3.5, before 2.1.6, before 1.29.7

Published: January 3, 2025

CVE-2025-21604

None

LangChain4j-AIDeepin

Version(s): before 3.5.0

Published: January 6, 2025

CVE-2025-21617

None

Guzzle OAuth Subscriber

Version(s): before 0.8.1

Published: January 6, 2025

CVE-2025-22130

None

Soft Serve

Version(s): 0.8.2 and later

Published: January 8, 2025

CVE-2025-22136

None

Tabby (formerly Terminus)

Version(s): before 1.0.217

Published: January 8, 2025

CVE-2025-22139

None

WeGIA

Version(s): 3.2.8

Published: January 8, 2025

CVE-2025-22140

None

WeGIA

Version(s): 3.2.8

Published: January 8, 2025

CVE-2025-22141

None

WeGIA

Version(s): 3.2.8

Published: January 8, 2025

CVE-2025-22143

None

WeGIA

Version(s): 3.2.8

Published: January 8, 2025

CVE-2024-53995

None

SickChill

Version(s): before c7128a8946c3701df95c285810eb75b2de18bf82

Published: January 8, 2025

CVE-2025-22145

None

Carbon

Version(s): 3.8.4, 2.72.6

Published: January 8, 2025

CVE-2025-22149

None

JWK Set (JSON Web Key Set)

Version(s): 0.5.0, 0.6.0

Published: January 9, 2025

CVE-2024-56511

None

DataEase

Version(s): before 2.10.4

Published: January 10, 2025

CVE-2025-22142

None

NamelessMC

Version(s): 2.1.3

Published: January 13, 2025

CVE-2025-22144

None

NamelessMC

Version(s): 2.1.3

Published: January 13, 2025

CVE-2025-23027

None

next-forge

Published: January 13, 2025

CVE-2025-22138

None

@codidact/qpixel

Published: January 13, 2025

CVE-2025-22613

None

WeGIA

Version(s): 3.2.6

Published: January 13, 2025

CVE-2025-22614

None

WeGIA

Version(s): 3.2.6

Published: January 13, 2025

CVE-2025-22615

None

WeGIA

Version(s): 3.2.6

Published: January 13, 2025

CVE-2025-22616

None

WeGIA

Version(s): 3.2.6

Published: January 13, 2025

CVE-2025-22617

None

WeGIA

Version(s): 3.2.7 and above

Published: January 13, 2025

CVE-2025-22618

None

WeGIA

Version(s): 3.2.6

Published: January 13, 2025

CVE-2025-22619

None

WeGIA

Version(s): 3.2.6

Published: January 13, 2025

CVE-2024-56323

None

OpenFGA

Version(s): 1.3.8, 1.8.2

Published: January 13, 2025

CVE-2025-23030

None

WeGIA

Version(s): 3.2.6

Published: January 14, 2025

CVE-2025-23031

None

WeGIA

Version(s): 3.2.6

Published: January 14, 2025

CVE-2025-23032

None

WeGIA

Version(s): 3.2.6

Published: January 14, 2025

CVE-2025-23033

None

WeGIA

Version(s): 3.2.6

Published: January 14, 2025

CVE-2025-23034

None

WeGIA

Version(s): 3.2.6 and earlier

Published: January 14, 2025

CVE-2025-23035

None

WeGIA

Version(s): 3.2.6

Published: January 14, 2025

CVE-2025-23036

None

WeGIA

Version(s): 3.2.7

Published: January 14, 2025

CVE-2025-23037

None

WeGIA

Version(s): 3.2.6

Published: January 14, 2025

CVE-2025-23038

None

WeGIA

Version(s): 3.2.6

Published: January 14, 2025

CVE-2024-53996

None

UNKNOWN

Published: January 14, 2025

CVE-2025-21607

None

Vyper Compiler

Published: January 14, 2025

CVE-2024-50349

None

Git

Version(s): v2.48.1, v2.47.1, v2.46.3, v2.45.3, v2.44.3, v2.43.6, v2.42.4, v2.41.3, v2.40.4

Published: January 14, 2025

CVE-2024-52006

None

Git

Version(s): v2.48.1, v2.47.1, v2.46.3, v2.45.3, v2.44.3, v2.43.6, v2.42.4, v2.41.3, v2.40.4

Published: January 14, 2025

CVE-2025-23042

None

Gradio

Version(s): 5.6.0

Published: January 14, 2025

CVE-2024-53263

None

Git LFS

Version(s): before 3.6.1

Published: January 14, 2025

CVE-2024-52005

None

Git

Published: January 15, 2025

CVE-2024-56136

None

Zulip Server

Version(s): 7.0, 8.0, 9.0, 9.1, 9.2, 9.3

Published: January 16, 2025

CVE-2025-21606

None

Stats macOS system monitor

Version(s): 2.11.21+

Published: January 17, 2025

CVE-2025-23202

None

Bible Module for ROBLOX

Version(s): 0.0.3

Published: January 17, 2025

CVE-2025-23205

None

nbgrader

Version(s): 0.9.5 and above

Published: January 17, 2025

CVE-2025-23206

None

AWS Cloud Development Kit (AWS CDK)

Version(s): 2.177.0

Published: January 17, 2025

CVE-2024-51738

None

Sunshine

Version(s): 0.23.1, before 2025.118.151840

Published: January 20, 2025

CVE-2025-22131

None

PhpSpreadsheet

Published: January 20, 2025

CVE-2025-23214

None

Cosmos

Version(s): 0.17.7

Published: January 20, 2025

CVE-2025-22605

None

Coolify

Version(s): 4.0.0-beta.18 - 4.0.0-beta.253

Published: January 24, 2025

CVE-2025-22606

None

Coolify

Version(s): 4.0.0-beta.358 and possibly earlier versions

Published: January 24, 2025

CVE-2025-22607

None

Coolify

Version(s): before 4.0.0-beta.361

Published: January 24, 2025

CVE-2025-22610

None

Coolify

Version(s): before 4.0.0-beta.361

Published: January 24, 2025

CVE-2025-24362

None

CodeQL Action

Version(s): >= 3.28.3, >= 2.20.3

CodeQL CLI

Version(s): >= 2.9.2, <= 2.20.2

Published: January 24, 2025

CVE-2025-24356

None

fastd

Version(s): before v23

Published: January 27, 2025

CVE-2025-24367

None

Cacti

Version(s): 1.2.29

Published: January 27, 2025

CVE-2025-24368

None

Cacti

Version(s): 1.2.29

Published: January 27, 2025

CVE-2025-24369

None

Anubis

Published: January 27, 2025

CVE-2025-23045

None

Computer Vision Annotation Tool (CVAT)

Version(s): 2.26.0

Published: January 28, 2025

CVE-2025-24800

None

ismp-grandpa crate

Version(s): 15.0.1

Published: January 28, 2025

CVE-2025-24884

None

kube-audit-rest

Version(s): 1.0.16

Published: January 29, 2025

CVE-2025-24883

None

go-ethereum

Version(s): 1.14.13

Published: January 30, 2025

CVE-2025-23215

None

PMD

Published: January 31, 2025

CVE-2025-24898

None

rust-openssl

Version(s): 0.10.70

Published: February 3, 2025

CVE-2025-24370

None

Django-Unicorn

Version(s): 0.62.0

Published: February 3, 2025

CVE-2025-24899

None

reNgine

Version(s): 2.2.0

Published: February 3, 2025

CVE-2025-24959

None

zx

Version(s): 8.3.2

Published: February 3, 2025

CVE-2025-24961

None

S3Proxy

Version(s): 2.6.0

Published: February 3, 2025

CVE-2025-24962

None

reNgine

Published: February 3, 2025

CVE-2025-23210

None

phpoffice/phpspreadsheet

Version(s): 3.9.0, 2.3.7, 2.1.8, 1.29.9

Published: February 3, 2025

CVE-2025-24371

None

CometBFT

Version(s): 1.0.1, 0.38.17

Published: February 3, 2025

CVE-2025-24971

None

DumpDrop

Version(s): before 4ff8469d

Published: February 4, 2025

CVE-2025-24966

None

reNgine

Version(s): up to 2.2.0

Published: February 4, 2025

CVE-2025-24967

None

reNgine

Version(s): up to 2.20

Published: February 4, 2025

CVE-2025-24803

None

Mobile Security Framework (MobSF)

Version(s): 4.3.1

Published: February 5, 2025

CVE-2025-24804

None

Mobile Security Framework (MobSF)

Version(s): 4.3.1

Published: February 5, 2025

CVE-2025-24805

None

Mobile Security Framework (MobSF)

Version(s): 4.3.1

Published: February 5, 2025

CVE-2025-23217

None

mitmweb

Version(s): 11.1.1 and below

Published: February 6, 2025

CVE-2025-24980

None

pimcore/admin-ui-classic-bundle

Version(s): 1.7.4

Published: February 7, 2025

CVE-2025-24031

None

PAM-PKCS#11

Version(s): 0.6.12 and prior

Published: February 10, 2025

CVE-2025-24032

None

PAM-PKCS#11

Version(s): up to 0.6.13

Published: February 10, 2025

CVE-2025-25188

None

Hickory DNS

Version(s): 0.8.0 - 0.24.2

Published: February 10, 2025

CVE-2025-25189

None

ZOO-Project

Version(s): before commit 7a5ae1a

Published: February 10, 2025

CVE-2025-25190

None

ZOO-Project Web Processing Service (WPS) Server

Version(s): prior to commit 7a5ae1a

Published: February 10, 2025

CVE-2025-24976

None

Distribution

Version(s): 3.0.0-beta.1 - 3.0.0-rc.2

Published: February 11, 2025

CVE-2025-25202

None

Ash Authentication

Version(s): 4.1.0 - 4.4.8

Published: February 11, 2025

CVE-2025-25184

None

Rack

Version(s): < 2.2.11, < 3.0.12, < 3.1.11

Published: February 12, 2025

CVE-2025-25200

None

Koa

Version(s): 0.21.2, 1.7.1, 2.15.4, 3.0.0-alpha.3

Published: February 12, 2025

CVE-2025-25295

None

Label Studio

Version(s): 1.0.0 - 1.0.9

Published: February 14, 2025

CVE-2025-25304

None

Vega

Version(s): <5.26.0

vega-selections

Version(s): <5.4.2

Published: February 14, 2025

CVE-2025-25300

None

smartbanner.js

Version(s): before 1.14.1

Published: February 18, 2025

CVE-2025-26620

None

Duende.AccessTokenManagement

Published: February 18, 2025

CVE-2025-21608

None

Meshtastic

Version(s): 2.5.19

Published: February 18, 2025

CVE-2025-25284

None

ZOO-Project

Published: February 18, 2025

CVE-2025-26623

None

Exiv2

Version(s): 0.28.0 - 0.28.4

Published: February 18, 2025

CVE-2025-26605

None

WeGIA Web Manager

Version(s): 3.2.13

Published: February 18, 2025

CVE-2025-26624

None

Rufus

Version(s): 4.6.2208, before 4.6.2208

Published: February 18, 2025

CVE-2025-24965

None

crun

Version(s): 1.20

Published: February 19, 2025

CVE-2025-24806

None

Authelia

Version(s): 4.38.19, 4.39.0

Published: February 19, 2025

CVE-2025-25196

None

OpenFGA

Version(s): < v1.8.4, Helm chart < openfga-0.2.22, docker < v.1.8.4

Published: February 19, 2025

CVE-2025-26618

None

OTP (Open Telecom Platform)

Version(s): 27.2.4, 26.2.5.9, 25.3.2.18

Published: February 20, 2025

CVE-2025-25299

None

CKEditor 5

Version(s): 44.2.1

Published: February 20, 2025

CVE-2025-27088

None

oxyno-zeta/s3-proxy

Version(s): 4.18.1

Published: February 20, 2025

CVE-2025-27144

None

Go JOSE

Version(s): 4.0.5

Published: February 24, 2025

CVE-2025-27135

None

RAGFlow

Version(s): 0.15.1 and prior

Published: February 25, 2025

CVE-2025-27154

None

Spotipy

Version(s): 2.25.1 and later

Published: February 27, 2025

CVE-2025-27414

None

MinIO

Version(s): RELEASE.2024-06-06T09-36-42Z - RELEASE.2025-02-28T09-55-16Z

Published: February 28, 2025

CVE-2025-27416

None

UNKNOWN

Published: March 1, 2025

CVE-2025-27417

None

WeGIA

Version(s): 3.2.16

Published: March 3, 2025

CVE-2025-27418

None

WeGIA

Version(s): 3.2.16

Published: March 3, 2025

CVE-2025-27420

None

WeGIA

Version(s): 3.2.16

Published: March 3, 2025

CVE-2025-25302

None

Rembg

Version(s): 2.0.57 and earlier

Published: March 3, 2025

CVE-2025-25303

None

MouseTooltipTranslator Chrome extension

Published: March 3, 2025

CVE-2025-27498

None

aes-gcm

Version(s): 0.4.3

Published: March 3, 2025

CVE-2025-27111

None

Rack

Version(s): 2.2.12, 3.0.13, 3.1.11

Published: March 4, 2025

CVE-2025-27510

None

conda-forge-metadata

Published: March 4, 2025

CVE-2025-27497

None

OpenDJ

Version(s): before 4.9.3

Published: March 5, 2025

CVE-2025-27515

None

Laravel

Version(s): 11.44.1, 12.1.1

Published: March 5, 2025

CVE-2025-27517

None

Volt

Version(s): 1.0.0 - 1.6.9

Published: March 5, 2025

CVE-2025-27516

None

Jinja

Version(s): before 3.1.6

Published: March 5, 2025

CVE-2025-24796

None

Collabora Online

Version(s): 24.04.12.4, 23.05.19, 22.05.25 and later

Published: March 6, 2025

CVE-2025-25191

None

Group-Office

Version(s): before 6.8.100

Published: March 6, 2025

CVE-2025-27509

None

fleet

Version(s): 4.64.2, 4.63.2, 4.62.4, 4.58.1

Published: March 6, 2025

CVE-2025-27600

None

FastGPT

Version(s): 4.9.0

Published: March 6, 2025

CVE-2025-27152

None

axios

Version(s): 1.8.2

Published: March 7, 2025

CVE-2025-27518

None

Cognita

Published: March 7, 2025

CVE-2025-27519

None

Cognita

Published: March 7, 2025

CVE-2025-27597

None

Vue I18n

Published: March 7, 2025

CVE-2025-22603

None

AutoGPT

Version(s): beta-v0.4.2, before autogpt-platform-beta-v0.4.2

Published: March 10, 2025

CVE-2025-27136

None

LocalS3

Version(s): < 1.21

Published: March 10, 2025

CVE-2025-27403

None

Ratify

Ratify

Published: March 11, 2025

CVE-2025-27617

None

Pimcore

Pimcore

Published: March 11, 2025

CVE-2025-27101

None

Opal

Version(s): < 5.1.1

Published: March 11, 2025

CVE-2025-27792

None

Opal

Version(s): before 5.1.1

Published: March 11, 2025

CVE-2025-25291

None

Ruby

Saml

Published: March 12, 2025

CVE-2025-25292

None

Ruby-Saml

Ruby-Saml

Published: March 12, 2025

CVE-2025-25293

None

Ruby-Saml

Ruby-Saml

Published: March 12, 2025

CVE-2025-24974

None

Dataease

Dataease

Published: March 13, 2025

CVE-2025-27103

None

Dataease

Dataease

Published: March 13, 2025

CVE-2025-27107

None

Minecraft

Integrated Scripting

Published: March 13, 2025

CVE-2025-27138

None

Dataease

Dataease

Published: March 13, 2025

CVE-2025-29776

None

Azle

Azle

Published: March 14, 2025

CVE-2025-29774

None

Nodejs

Xml-Crypto

Published: March 14, 2025

CVE-2025-29775

None

Xml-Crypto

Xml-Crypto

Published: March 14, 2025

CVE-2025-29779

None

Post-Quantum Secure Feldman

Verifiable Secret Sharing

Published: March 14, 2025

CVE-2025-29780

None

Feldman

Feldman Vss

Published: March 14, 2025

CVE-2025-29771

None

Htmlsanitizer

Htmlsanitizer

Published: March 14, 2025

CVE-2025-29782

None

Wegia

Wegia

Published: March 14, 2025

CVE-2025-27102

None

Obiba

Agate

Published: March 17, 2025

CVE-2025-29787

None

Rust

Zip

Published: March 17, 2025

CVE-2025-27512

None

Fedora

Coreos

Published: March 17, 2025

CVE-2025-29909

None

*

Cryptolib

Published: March 17, 2025

CVE-2025-29910

None

Cryptolib

Cryptolib

Published: March 17, 2025

CVE-2025-29911

None

Cryptolib

Cryptolib

Published: March 17, 2025

CVE-2025-29912

None

Cryptolib

Cryptolib

Published: March 17, 2025

CVE-2025-29913

None

Cryptolib

Cryptolib

Published: March 17, 2025

CVE-2025-21619

None

Glpi

Glpi

Published: March 18, 2025

CVE-2025-29790

None

Contao

Contao

Published: March 18, 2025

CVE-2025-29907

None

Parallax

Jspdf

Published: March 18, 2025

CVE-2025-29930

None

Impresscms

Imfaq

Published: March 18, 2025

CVE-2024-23338

None

*

*

Published: March 28, 2025

Tag: security-advisories@github.com

Vulnerabilities

CVE-2024-32962

CVE-2024-29895

CVE-2024-32888

CVE-2024-36412

CVE-2024-37902

CVE-2024-39911

CVE-2024-40628

CVE-2024-40629

CVE-2024-42467

CVE-2024-42479

CVE-2024-42489

CVE-2024-42472

CVE-2024-47875

CVE-2024-56799

CVE-2025-22609

CVE-2025-22612

CVE-2025-24786

CVE-2025-26615

CVE-2023-25574

CVE-2025-29783

CVE-2025-30364

CVE-2025-30367

CVE-2024-37301

CVE-2024-38369

CVE-2024-39915

CVE-2024-39700

CVE-2024-41110

CVE-2024-37906

CVE-2024-37901

CVE-2024-45798

CVE-2024-46986

CVE-2024-51478

CVE-2024-51482

CVE-2024-55662

CVE-2024-55877

CVE-2025-22133

CVE-2025-22611

CVE-2025-23211

CVE-2025-24016

CVE-2024-32017

CVE-2024-34706

CVE-2024-36108

CVE-2024-36404

CVE-2024-39914

CVE-2024-40624

CVE-2024-39907

CVE-2024-39685

CVE-2024-39686

CVE-2024-41112

CVE-2024-41113

CVE-2024-41114

CVE-2024-41115

CVE-2024-41116

CVE-2024-41117

CVE-2024-41119

CVE-2024-41120

CVE-2024-41660

CVE-2024-42469

CVE-2024-38530

CVE-2024-43360

CVE-2024-43399

CVE-2024-43404

CVE-2024-42361

CVE-2024-43782

CVE-2024-45307

CVE-2024-45390

CVE-2024-45595

CVE-2024-45409

CVE-2024-46997

CVE-2024-47078

CVE-2024-47608

CVE-2024-47167

CVE-2023-27584

CVE-2024-46983

CVE-2024-46984

CVE-2024-49368

CVE-2024-52297

CVE-2024-49369