OpenStack Neutron before 2014.2.4 (juno) and 2015.1.x before 2015.1.1 (kilo), when using the IP…

Connect2id Nimbus JOSE+JWT before v7.9 can throw various uncaught exceptions while parsing a JW…

It is possible to configure Apache CXF to use the com.sun.net.ssl implementation via 'System.se…

A Denial of Service flaw was discovered in Elasticsearch. Using this vulnerability, an unauthen…

jsoup is a Java library for working with HTML. Those using jsoup versions prior to 1.14.2 to pa…

The MCP Python SDK, called `mcp` on PyPI, is a Python implementation of the Model Context Proto…

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serializat…

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serializat…

Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and JRockit R28.3.5, …

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Scripting)…

qemu-nbd in QEMU (aka Quick Emulator) does not ignore SIGPIPE, which allows remote attackers to…

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries)…

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries)…

A vulnerability has been identified in SINUMERIK 808D V4.7 (All versions), SINUMERIK 808D V4.8 …

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Scripting)…

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java S…

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serializat…

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JAXP). Sup…

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JAXP). Sup…

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security).…

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Concurrenc…

ReadXWDImage in coders/xwd.c in the XWD image parsing component of ImageMagick 7.0.8-41 Q16 all…

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Scripting)…

gnome-shell 3.22 through 3.24.1 mishandles extensions that fail to reload, which can lead to le…

Valve's Game Networking Sockets prior to version v1.2.0 improperly handles inlined statistics m…

In OSIsoft PI System multiple products and versions, a remote, unauthenticated attacker could c…

Engine.IO is the implementation of transport-based cross-browser/cross-device bi-directional co…

A vulnerability has been identified in SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUM…

A CWE-248: Uncaught Exception vulnerability exists in Modicon M580 (firmware versions prior to …

Http-proxy is a proxying library. Because of the way errors are handled in versions before 0.7.…

A vulnerability has been identified in SIMATIC CP 443-1 OPC UA (All versions), SIMATIC ET 200SP…

A CWE-248: Uncaught Exception vulnerability exists in Modicon M580 (firmware version prior to V…

A vulnerability has been identified in SIMATIC ET 200SP Open Controller (incl. SIPLUS variants)…

Podium is a library for building micro frontends. @podium/layout is a module for building a Pod…

A CWE-248: Uncaught Exception vulnerability exists Modicon M580 (firmware version prior to V2.9…

A vulnerability has been identified in All other SIPROTEC 5 device types with CPU variants CP30…

Visual Components (owned by KUKA) is a robotic simulator that allows simulating factories and r…

A user authorized to perform database queries may cause denial of service by issuing a speciall…

Engine.IO is the implementation of transport-based cross-browser/cross-device bi-directional co…

Logstash versions prior to 2.3.3, when using the Netflow Codec plugin, a remote attacker crafti…