32 matches found
Malicious code in elf-stats-candystriped-saddlebag-217 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9657e790dc73d7cf085238caa5803a3b821f0f118116d1f7b54b76d8699b0e26 The package elf-stats-candystriped-saddlebag-217 was found to contain malicious code...
Malicious code in elf-stats-glittering-marshmallow-217 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c1186083237190f85db3246ab8c84681e053349350324494d5f6dc5cc774b04 The package elf-stats-glittering-marshmallow-217 was found to contain malicious code...
MAL-2025-192060 Malicious code in elf-stats-glittering-marshmallow-217 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c1186083237190f85db3246ab8c84681e053349350324494d5f6dc5cc774b04 The package elf-stats-glittering-marshmallow-217 was found to contain malicious code...
Amazon Linux 2023 : cuda-nvprune-12 (ALAS2023NVIDIA-2025-217)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023NVIDIA-2025-217 advisory. NVIDIA nvJPEG library contains a vulnerability where an attacker can cause an out-of-bounds read by means of a specially crafted JPEG file. A successful exploit of this vulnerability might lead to...
Google Chrome Security Update (stable-channel-update-for-desktop_9-2024-01) - Windows
Google Chrome is prone to a data validation vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome";...
Amazon Linux 2023 : perl-Pod-Perldoc (ALAS2023-2023-217)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-217 advisory. HTTP::Tiny 0.082, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuration where users must opt in to verify certificates. CVE-2023-31486 Tenable has...
Debian: Security Advisory (DLA-217-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux 2022 : ncurses (ALAS2022-2022-217)
The version of ncurses installed on the remote host is prior to 6.2-4.20200222. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-217 advisory. - An issue was discovered in ncurses through v6.2-1. nccaptoinfo in captoinfo.c has a heap-based buffer overflow...
93-39-91-217.ip75.fastwebnet.it Cross Site Scripting vulnerability OBB-2378270
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Wrong rebuild cache logic
Lines of code Vulnerability details Impact Currently, many core operations like NestedFactory.create, NestedFactory.swapTokenForTokens are dependent on the assumption that the cache is well synced before these functions are executed however this may not necessarily be the case. Proof of Concept T...
Design/Logic Flaw
cPanel before 62.0.17 allows self XSS in the WHM cPAddons showsecurity interface SEC-217...
CVE-2017-18456
cPanel before 62.0.17 allows self XSS in the WHM cPAddons showsecurity interface SEC-217...
iw-217.com XSS vulnerability
Open Bug Bounty ID: OBB-548374 Description| Value ---|--- Affected Website:| iw-217.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Fedora 26 : xen (2017-5c6a9b07a3)
xen: various flaws 1463247 blkif responses leak backend stack data XSA-216 page transfer may allow PV guest to elevate privilege XSA-217 Races in the grant table unmap code XSA-218 x86: insufficient reference counts during shadow emulation XSA-219 x86: PKRU and BND leakage between vCPU-s XSA-220...
openSUSE Security Update : xen (openSUSE-2017-799)
This update for xen fixes several issues. These security issues were fixed : - CVE-2017-10912: Page transfer might have allowed PV guest to elevate privilege XSA-217, bsc1042882 - CVE-2017-10913 CVE-2017-10914: Races in the grant table unmap code allowed for informations leaks and potentially...
CVE-2017-10912
Xen through 4.8.x mishandles page transfer, which allows guest OS users to obtain privileged host OS access, aka XSA-217...
CVE-2017-10912
Xen through 4.8.x mishandles page transfer, which allows guest OS users to obtain privileged host OS access, aka XSA-217...
Design/Logic Flaw
Xen through 4.8.x mishandles page transfer, which allows guest OS users to obtain privileged host OS access, aka XSA-217...
CVE-2017-10912
Xen through 4.8.x mishandles page transfer, which allows guest OS users to obtain privileged host OS access, aka XSA-217...
CVE-2017-10912
Xen through 4.8.x mishandles page transfer, which allows guest OS users to obtain privileged host OS access, aka XSA-217...