Lucene search
+L

32 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2025/12/03 3:59 p.m.6 views

Malicious code in elf-stats-candystriped-saddlebag-217 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9657e790dc73d7cf085238caa5803a3b821f0f118116d1f7b54b76d8699b0e26 The package elf-stats-candystriped-saddlebag-217 was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/12/03 3:59 p.m.7 views

Malicious code in elf-stats-glittering-marshmallow-217 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c1186083237190f85db3246ab8c84681e053349350324494d5f6dc5cc774b04 The package elf-stats-glittering-marshmallow-217 was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/12/03 3:59 p.m.1 views

MAL-2025-192060 Malicious code in elf-stats-glittering-marshmallow-217 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c1186083237190f85db3246ab8c84681e053349350324494d5f6dc5cc774b04 The package elf-stats-glittering-marshmallow-217 was found to contain malicious code...

6.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/10/15 12:0 a.m.4 views

Amazon Linux 2023 : cuda-nvprune-12 (ALAS2023NVIDIA-2025-217)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023NVIDIA-2025-217 advisory. NVIDIA nvJPEG library contains a vulnerability where an attacker can cause an out-of-bounds read by means of a specially crafted JPEG file. A successful exploit of this vulnerability might lead to...

5.7CVSS5.4AI score0.00141EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/01/11 12:0 a.m.22 views

Google Chrome Security Update (stable-channel-update-for-desktop_9-2024-01) - Windows

Google Chrome is prone to a data validation vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome";...

5.3CVSS5.4AI score0.00429EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/06/28 12:0 a.m.29 views

Amazon Linux 2023 : perl-Pod-Perldoc (ALAS2023-2023-217)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-217 advisory. HTTP::Tiny 0.082, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuration where users must opt in to verify certificates. CVE-2023-31486 Tenable has...

8.1CVSS7AI score0.01742EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.19 views

Debian: Security Advisory (DLA-217-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.03256EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/12/09 12:0 a.m.35 views

Amazon Linux 2022 : ncurses (ALAS2022-2022-217)

The version of ncurses installed on the remote host is prior to 6.2-4.20200222. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-217 advisory. - An issue was discovered in ncurses through v6.2-1. nccaptoinfo in captoinfo.c has a heap-based buffer overflow...

8.8CVSS6.8AI score0.03231EPSS
Exploits2References5
Openbugbounty
Openbugbounty
added 2022/02/19 8:12 a.m.16 views

93-39-91-217.ip75.fastwebnet.it Cross Site Scripting vulnerability OBB-2378270

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Code423n4
Code423n4
added 2022/02/10 12:0 a.m.10 views

Wrong rebuild cache logic

Lines of code Vulnerability details Impact Currently, many core operations like NestedFactory.create, NestedFactory.swapTokenForTokens are dependent on the assumption that the cache is well synced before these functions are executed however this may not necessarily be the case. Proof of Concept T...

6.6AI score
Exploits0
Prion
Prion
added 2019/08/02 5:15 p.m.15 views

Design/Logic Flaw

cPanel before 62.0.17 allows self XSS in the WHM cPAddons showsecurity interface SEC-217...

4.3CVSS6AI score0.00647EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/08/02 4:29 p.m.22 views

CVE-2017-18456

cPanel before 62.0.17 allows self XSS in the WHM cPAddons showsecurity interface SEC-217...

6AI score0.00647EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2018/01/27 9:11 p.m.9 views

iw-217.com XSS vulnerability

Open Bug Bounty ID: OBB-548374 Description| Value ---|--- Affected Website:| iw-217.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/07/17 12:0 a.m.62 views

Fedora 26 : xen (2017-5c6a9b07a3)

xen: various flaws 1463247 blkif responses leak backend stack data XSA-216 page transfer may allow PV guest to elevate privilege XSA-217 Races in the grant table unmap code XSA-218 x86: insufficient reference counts during shadow emulation XSA-219 x86: PKRU and BND leakage between vCPU-s XSA-220...

10CVSS7AI score0.0367EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2017/07/10 12:0 a.m.256 views

openSUSE Security Update : xen (openSUSE-2017-799)

This update for xen fixes several issues. These security issues were fixed : - CVE-2017-10912: Page transfer might have allowed PV guest to elevate privilege XSA-217, bsc1042882 - CVE-2017-10913 CVE-2017-10914: Races in the grant table unmap code allowed for informations leaks and potentially...

10CVSS6.9AI score0.04544EPSS
Exploits0References22
RedhatCVE
RedhatCVE
added 2017/07/07 2:53 p.m.37 views

CVE-2017-10912

Xen through 4.8.x mishandles page transfer, which allows guest OS users to obtain privileged host OS access, aka XSA-217...

10CVSS6.2AI score0.02668EPSS
Exploits0References2
NVD
NVD
added 2017/07/05 1:29 a.m.18 views

CVE-2017-10912

Xen through 4.8.x mishandles page transfer, which allows guest OS users to obtain privileged host OS access, aka XSA-217...

10CVSS8.3AI score0.02668EPSS
Exploits0References6
Prion
Prion
added 2017/07/05 1:29 a.m.24 views

Design/Logic Flaw

Xen through 4.8.x mishandles page transfer, which allows guest OS users to obtain privileged host OS access, aka XSA-217...

10CVSS9.1AI score0.02668EPSS
Exploits0References6Affected Software1
UbuntuCve
UbuntuCve
added 2017/07/05 1:29 a.m.31 views

CVE-2017-10912

Xen through 4.8.x mishandles page transfer, which allows guest OS users to obtain privileged host OS access, aka XSA-217...

10CVSS7.2AI score0.02668EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2017/07/05 1:0 a.m.27 views

CVE-2017-10912

Xen through 4.8.x mishandles page transfer, which allows guest OS users to obtain privileged host OS access, aka XSA-217...

10CVSS6.2AI score0.02668EPSS
Exploits0
Rows per page
Query Builder