MAL-2026-2782 Malicious code in mybibilabu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1f49ab3b78aaf319666bfc7008613ceadd875063cc4ec3074236dc31bafdb94 The package mybibilabu was found to contain malicious code...

CGA-2782-969J-VMFQ

Bulletin has no description...

CVE-2026-2782

creationtimestamp| type| source ---|---|--- 2026-02-25 00:02:19+00:00| seen| https://bsky.app/profile/slackers.it/post/3mfnevrqegb2o 2026-02-28 02:01:55+00:00| seen| https://bsky.app/profile/slackers.it/post/3mfv4yg5pzm2o...

DEBIAN-CVE-2026-2782

Privilege escalation in the Netmonitor component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

CVE-2026-2782

Privilege escalation in the Netmonitor component. This vulnerability affects Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

Oracle Linux 9 : nodejs:22 (ELSA-2026-2782)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2782 advisory. - Resolves: CVE-2022-25883 - Resolves: CVE-2021-35065 - Rebase to 2.0.20 Resolves: CVE-2022-3517 - Resolves CVE-2020-28469 Tenable has extracted the...

MiracleLinux 4 : rh-mysql56-mysql-5.6.40-1.AXS4 (AXSA:2018-2997:02)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2018-2997:02 advisory. mysql: Server: Replication unspecified vulnerability CPU Apr 2018 CVE-2018-2755 mysql: Server: Security: Privileges unspecified vulnerability CPU Ap...

MiracleLinux 7 : rh-mysql56-mysql-5.6.40-1.el7 (AXSA:2018-3000:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2018-3000:02 advisory. mysql: Server: Replication unspecified vulnerability CPU Apr 2018 CVE-2018-2755 mysql: Server: Security: Privileges unspecified vulnerability CPU Ap...

RHSA-2024:2782

creationtimestamp| type| source ---|---|--- 2025-10-28 01:48:58+00:00| seen| Telegram/TWC611g1kpQWhhVSnnH-pqNMpkbePvAv8JckRZWnIpiDYFU...

CGA-78PR-84W2-2782

Bulletin has no description...

CVE-2024-2782

creationtimestamp| type| source ---|---|--- 2025-08-03 09:00:06+00:00| published-proof-of-concept| Telegram/k9l6whAFym9ZbJh5WMNbuyJuC8dcnnMOMGxizovh2wCYo8 2025-08-05 21:02:21+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lvom743f4v2n 2025-09-16 21:02:31+00:00| seen|...

CVE-2023-2782

Sensitive information disclosure due to improper authorization. The following products are affected: Acronis Cyber Infrastructure ACI before build 5.3.1-38...

CVE-2022-2782

In affected versions of Octopus Server it is possible for a session token to be valid indefinitely due to improper validation of the session token parameters...

CVE-2019-2782

Vulnerability in the Oracle Payments component of Oracle E-Business Suite subcomponent: File Transmission. Supported versions that are affected are 12.1.1 - 12.1.3 and 12.2.3 - 12.2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Orac...

CVE-2013-2782

Schneider Electric Trio J-Series License Free Ethernet Radio with firmware 3.6.0 through 3.6.3 uses the same AES encryption key across different customers' installations, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging knowledge of this key...

CVE-2025-2782

The WatchGuard Terminal Services Agent on Windows does not properly configure directory permissions when installed in a non-default directory. This could allow an authenticated local attacker to escalate to SYSTEM privileges on a vulnerable system. This issue affects Terminal Services Agent: from...

CVE-2025-2782

creationtimestamp| type| source ---|---|--- 2025-03-29 02:07:17+00:00| seen| https://t.me/cvedetector/21492 2025-03-31 13:31:18+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9643...

Advisory ROSA-SA-2025-2782

Software: c-ares 1.13.0 OS: ROSA Virtualization 3.0 packageevrstring: c-ares-1.13.0-11.rv30 CVE-ID: CVE-2024-25629 BDU-ID: 2024-01708 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the aresreadline function of the C-ares asynchronous DNS query library is related to an operation exceeding buffer...

Amazon Linux 2 : libglvnd (ALAS-2025-2782)

The version of libglvnd installed on the remote host is prior to 1.0.1-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2782 advisory. libglxproto.c in OpenGL libglvnd bb06db5a was discovered to contain a segmentation violation via the function glXGetDrawableScreen...

Linux Distros Unpatched Vulnerability : CVE-2016-2782

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The treoattach function in drivers/usb/serial/visor.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service NULL...