Code execution vulnerability in multiple Mozilla products (CNVD-2026-19985)

Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A code execution vulnerability exists in multiple Mozilla products due to...

Information Disclosure Vulnerability in Multiple Mozilla Products (CNVD-2026-19990)

Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. An information disclosure vulnerability exists in several Mozilla produc...

Elevation of Privilege Vulnerability in Multiple Mozilla Products (CNVD-2026-17001)

Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. An elevation of privilege vulnerability exists in several Mozilla...

Mozilla Firefox and Mozilla Thunderbird Denial of Service Vulnerability (CNVD-2026-16375)

Mozilla Firefox is an open source web browser.Mozilla Thunderbird is a set of e-mail client software separate from the Mozilla Application Suite. The software supports IMAP, POP mail protocols and HTML mail format. A denial of service vulnerability exists in Mozilla Firefox and Mozilla Thunderbir...

Mozilla Thunderbird Spoofing Vulnerability (CNVD-2026-16380)

Mozilla Thunderbird is the United States Mozilla Foundation's set of independent from the Mozilla Application Suite e-mail client software. The program supports IMAP, POP mail protocols and HTML mail format. A spoofing vulnerability exists in Mozilla Thunderbird, which can be exploited by attacke...

Multiple Mozilla Products Code Issue Vulnerabilities (CNVD-2026-19987)

Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A code issue vulnerability exists in several Mozilla products, which can...

Code execution vulnerability in multiple Mozilla products (CNVD-2026-19988)

Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A code execution vulnerability exists in multiple Mozilla products, whic...

Multiple Mozilla Products Resource Management Error Vulnerability (CNVD-2026-16998)

Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A resource management error vulnerability exists in multiple Mozilla...

Code execution vulnerability in multiple Mozilla products (CNVD-2026-17000)

Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A code execution vulnerability exists in multiple Mozilla products. The...

Unspecified Vulnerability in Mozilla Firefox and Mozilla Thunderbird

Mozilla Firefox is an open source web browser.Mozilla Thunderbird is a set of e-mail client software separate from the Mozilla Application Suite. The software supports IMAP, POP mail protocols and HTML mail format. A security vulnerability exists in Mozilla Firefox and Mozilla Thunderbird, which...

Mozilla Firefox and Mozilla Thunderbird Security Bypass Vulnerability (CNVD-2026-16378)

Mozilla Firefox is an open source web browser.Mozilla Thunderbird is a set of e-mail client software separate from the Mozilla Application Suite. The software supports IMAP, POP mail protocols and HTML mail format. A security bypass vulnerability exists in Mozilla Firefox and Mozilla Thunderbird...

Mozilla Thunderbird Information Disclosure Vulnerability (CNVD-2026-16381)

Mozilla Thunderbird is the United States Mozilla Foundation's set of independent from the Mozilla Application Suite e-mail client software. The program supports IMAP, POP mail protocols and HTML mail format. An information disclosure vulnerability exists in Mozilla Thunderbird, which can be...

Siemens SICAM 8 product suffers from an out-of-bounds write vulnerability

The SICAM A8000 RTU Remote Terminal Unit is a modular device for remote control and automation applications in all areas of energy supply.SICAM EGS Enhanced Grid Sensors is a gateway for local substations in the distribution network.The SICAM S8000 offers RTU functionality, PLCs, and communicatio...

Code execution vulnerability in multiple Mozilla products (CNVD-2026-17002)

Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A code execution vulnerability exists in several Mozilla products. The...

FreeBSD Buffer Overflow Vulnerability (CNVD-2026-16037)

FreeBSD is a set of Unix-like operating systems from the FreeBSD Foundation. A buffer overflow vulnerability exists in FreeBSD. The vulnerability stems from the routine to verify packet signatures in the RPCSECGSS implementation of kgssapi.ko not properly verifying data boundaries, which can be...

Unspecified Vulnerability in Apple macOS (CNVD-2026-16058)

Apple macOS is a specialized operating system developed by Apple for Mac computers. A security vulnerability exists in Apple macOS Sequoia prior to 15.7.4 and Tahoe prior to 26.3, which can be exploited by an attacker to cause an application to capture the user's screen...

IBM InfoSphere Information Server Encryption Issues Vulnerability

IBM InfoSphere Information Server is IBM's enterprise-class data integration platform for data quality management and information integration. A security vulnerability exists in IBM InfoSphere Information Server that stems from the manipulability of JSON server responses. An attacker can exploit...

IBM InfoSphere Information Server Cross-Site Scripting Vulnerability (CNVD-2026-16879)

IBM InfoSphere Information Server is IBM's enterprise-class data integration platform for data quality governance, data integration and master data management. A security vulnerability exists in IBM InfoSphere Information Server that stems from improper validation of HOST header input. An attacke...

IBM InfoSphere Information Server Information Disclosure Vulnerability (CNVD-2026-16742)

IBM InfoSphere Information Server is IBM's enterprise-class data integration platform for data quality management and ETL processing. An information disclosure vulnerability exists in IBM InfoSphere Information Server that stems from a query string of an HTTP GET request that could expose sensiti...

Apple macOS Integer Overflow Vulnerability

Apple macOS is a specialized operating system developed by Apple for Mac computers. An integer overflow vulnerability exists in Apple macOS, which can be exploited by an attacker to cause heap corruption when processing malicious strings...

Unspecified Vulnerability in Apple macOS (CNVD-2026-19677)

Apple macOS is a specialized operating system developed by Apple for Mac computers. Apple macOS has a security vulnerability that can be exploited by an attacker to cause a sandboxed process to bypass sandboxing restrictions...

Apple macOS Denial of Service Vulnerability (CNVD-2026-19032)

Apple macOS is a specialized operating system developed by Apple for Mac computers. A denial of service vulnerability exists in Apple macOS, which can be exploited by an attacker to cause an application to cause an unexpected system termination...

Denial of Service Vulnerability in Multiple Apple Products (CNVD-2026-19045)

Apple iOS is an operating system developed for mobile devices.Apple macOS is a specialized operating system developed for Mac computers.Apple iPadOS is an operating system for iPad tablets. A denial of service vulnerability exists in multiple Apple products, which is caused by improper input...

Unspecified Vulnerability in Apple macOS (CNVD-2026-19034)

Apple macOS is a specialized operating system developed by Apple for Mac computers. Apple macOS has a security vulnerability that stems from a logging issue that can be exploited by an attacker to cause an application to access sensitive user data...

Apple macOS Information Disclosure Vulnerability (CNVD-2026-19033)

Apple macOS is a specialized operating system developed by Apple for Mac computers. Apple macOS suffers from an information disclosure vulnerability that can be exploited by an attacker to cause an application to access sensitive user data...

Unspecified vulnerability in Apple macOS Tahoe (CNVD-2026-19040)

Apple macOS Tahoe is an operating system from the American company Apple. Apple macOS Tahoe contains a security vulnerability that can be exploited by attackers to cause an application to access sensitive user data...

Unspecified vulnerability in Apple macOS Tahoe (CNVD-2026-19042)

Apple macOS Tahoe is an operating system from the American company Apple. Apple macOS Tahoe contains a security vulnerability that can be exploited by attackers to cause an application to access protected user data...

Unspecified vulnerability in Apple macOS Tahoe (CNVD-2026-19043)

Apple macOS Tahoe is an operating system from the American company Apple. Apple macOS Tahoe contains a security vulnerability that can be exploited by attackers to cause an application to bypass Gatekeeper checks...

HCL Aftermarket DPC Cross-Site Scripting Vulnerability

HCL Aftermarket DPC is a digital spare parts and aftermarket management platform for HCL India. HCL Aftermarket DPC suffers from a cross-site scripting vulnerability that stems from the application's lack of effective filtering and escaping of user-supplied data, which can be exploited by an...

IBM Concert Code Issue Vulnerability (CNVD-2026-16136)

IBM Concert is IBM's collaborative application lifecycle management platform. An information disclosure vulnerability exists in IBM Concert that stems from the program failing to properly clear buffer resources. An attacker could exploit the vulnerability to access sensitive information in memory...

Multiple Apple Products Cross-Border Access Vulnerability

Apple iOS is an operating system developed for mobile devices. apple tvOS is an operating system for smart TVs. apple iPadOS is an operating system for iPad tablets. An out-of-bounds access vulnerability exists in multiple Apple products, which can be exploited by an attacker to terminate a proce...

Unspecified Vulnerability in Apple macOS (CNVD-2026-19648)

Apple macOS is a specialized operating system developed by Apple for Mac computers. A security vulnerability exists in Apple macOS, which stems from improper handling of temporary files, and can be exploited by an attacker to cause an application to access sensitive user data...

Apple macOS Tahoe Heap Buffer Overflow Vulnerability

Apple macOS Tahoe is an operating system from the American company Apple. Apple macOS Tahoe suffers from a heap buffer overflow vulnerability that can be exploited by attackers to cause memory corruption and unexpected application termination...

Unspecified vulnerability in Apple macOS Tahoe (CNVD-2026-19036)

Apple macOS Tahoe is an operating system from the American company Apple. A security vulnerability exists in Apple macOS Tahoe, which can be exploited by an attacker to cause a document to be written to a temporary file when using Print Preview...

IBM Concert Encryption Problem Vulnerability (CNVD-2026-16880)

IBM Concert is an enterprise-class collaboration and project management software from IBM. A security vulnerability exists in IBM Concert versions 1.0.0 through 2.2.0 that stems from fixed authentication information embedded in the software. An attacker could exploit the vulnerability to obtain...

Linux kernel memory misreference vulnerability (CNVD-2026-16038)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A memory misreference vulnerability exists in the Linux kernel. The vulnerability stems from a mix-up in the instruction responsible for freeing memory. An attacker could explo...

IBM Concert Encryption Problem Vulnerability (CNVD-2026-16134)

IBM Concert is IBM's collaborative application lifecycle management platform. A security vulnerability exists in IBM Concert that originates when the program transmits data in clear text. An attacker could exploit the vulnerability to intercept and obtain sensitive information via man-in-the-midd...

Unspecified Vulnerability in Apple macOS Tahoe (CNVD-2026-19035)

Apple macOS Tahoe is an operating system from the American company Apple. A security vulnerability exists in Apple macOS Tahoe, which stems from a directory path resolution issue that can be exploited by attackers to cause an application to access sensitive user data...

IBM InfoSphere Information Server Code Issue Vulnerability (CNVD-2026-16137)

IBM InfoSphere Information Server is IBM's enterprise-class data integration platform for integrating, cleansing, and managing data from disparate sources. A security vulnerability exists in IBM InfoSphere Information Server that stems from the system failing to adequately validate the target of ...

Code Issue Vulnerability in Multiple Mozilla Products (CNVD-2026-19984)

Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A code issue vulnerability exists in multiple Mozilla products that is...

IBM Concert Access Control Error Vulnerability (CNVD-2026-16128)

IBM Concert is a new tool from International Business Machines IBM Inc. that uses generative AI to help manage complex cloud-native applications. An Access Control Error vulnerability exists in IBM Concert 2.2.0 and prior versions. The vulnerability stems from a lack of functional-level access...

Unspecified vulnerability in Apple macOS Tahoe (CNVD-2026-19041)

Apple macOS Tahoe is an operating system from the American company Apple. A security vulnerability exists in Apple macOS Tahoe, which can be exploited by an attacker to access protected portions of the file system...

Unspecified Vulnerability in Apple macOS (CNVD-2026-19683)

Apple macOS is a specialized operating system developed by Apple for Mac computers. Apple macOS has a security vulnerability that can be exploited by attackers to cause applications to access sensitive user data...

Mozilla Firefox and Mozilla Thunderbird Resource Management Error Vulnerability (CNVD-2026-16377)

Mozilla Firefox is an open source web browser.Mozilla Thunderbird is a set of e-mail client software separate from the Mozilla Application Suite. The software supports IMAP, POP mail protocols and HTML mail format. A resource management error vulnerability exists in Mozilla Firefox and Mozilla...

Unspecified Vulnerability in Apple macOS Tahoe (CNVD-2026-19038)

Apple macOS Tahoe is an operating system from the American company Apple. A security vulnerability exists in Apple macOS Tahoe, which can be exploited by an attacker to cause an application with root privileges to delete protected system files...

Denial of Service Vulnerability in Siemens SICAM 8 Products

The SICAM A8000 RTU Remote Terminal Unit is a modular device for remote control and automation applications in all areas of energy supply.SICAM EGS Enhanced Grid Sensors is a gateway for local substations in the distribution network.The SICAM S8000 offers RTU functionality, PLCs, and communicatio...

IBM InfoSphere Information Server Server Side Request Forgery Vulnerability

IBM InfoSphere Information Server is IBM's enterprise-class data integration platform for data quality management and information integration. IBM InfoSphere Information Server suffers from a server-side request forgery SSRF vulnerability that stems from the system failing to adequately validate...

Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15855)

Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...

Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15846)

Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to disclose sensitive information when using specially crafted EMF files...

Unspecified vulnerability in Discourse (CNVD-2026-17265)

Discourse is Discourse open source set of open source community discussion platform. The platform includes features such as community , e-mail and chat rooms . Discourse suffers from a security vulnerability that can be exploited by an attacker to disclose restricted post action counts to...