EUVD-2025-28638

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2020-28638

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - askpassword in Tomb 2.0 through 2.7 returns a warning when pinentry-curses is used and $DISPLAY is non- empty, causing affected users' files to be encrypted wit...

CVE-2020-28638

askpassword in Tomb 2.0 through 2.7 returns a warning when pinentry-curses is used and $DISPLAY is non-empty, causing affected users' files to be encrypted with "tomb W Detected DISPLAY, but only pinentry-curses is found." as the encryption key...

CVE-2023-28638

creationtimestamp| type| source ---|---|--- 2023-03-28 00:38:11+00:00| seen| Telegram/LFqF2cYQedpVGFHFEbDFi3cF2cB2PCUxDZOKzPQqUzhwZq4...

CVE-2023-28638 Stack references to locations outside buffers may become invalid if they exist during a GC compaction in Snappier

Snappier is a high performance C implementation of the Snappy compression algorithm. This is a buffer overrun vulnerability that can affect any user of Snappier 1.1.0. In this release, much of the code was rewritten to use byte references rather than pointers to pinned buffers. This change...

CVE-2022-28638

An isolated local disclosure of information and potential isolated local arbitrary code execution vulnerability that could potentially lead to a loss of confidentiality, integrity, and availability were discovered in HPE Integrated Lights-Out 5 iLO 5 in Version: 2.71. Hewlett Packard Enterprise h...

CVE-2022-28638

CVE-2022-28638 affects HP Integrated Lights-Out 5 (iLO 5) versions up to 2.71. The issue is described as an isolated local disclosure of information and potential local arbitrary code execution, potentially impacting confidentiality, integrity, and availability. Hewlett Packard Enterprise has iss...

CVE-2021-28638

creationtimestamp| type| source ---|---|--- 2021-08-20 22:23:38+00:00| seen| https://t.me/cibsecurity/27654...

CVE-2021-28638

CVE-2021-28638 affects Adobe Acrobat Reader DC/Classic/Continuous in various older builds (Reader DC 2021.005.20054 and earlier; 2020.004.30005 and earlier; 2017.011.30197 and earlier) and is a heap-based buffer overflow in PDF parsing. An unauthenticated attacker could achieve arbitrary code exe...

Adobe Acrobat DC Continuous Security Update (APSB21-51) - Windows

The host is missing an important security update according to Adobe August update. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...

Adobe Acrobat 2017 Security Update (APSB21-51) - Windows

The host is missing an important security update according to Adobe August update. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Adobe Acrobat < 2017.011.30199 / 2020.004.30006 / 2021.005.20058 Multiple Vulnerabilities (APSB21-51)

The version of Adobe Acrobat installed on the remote Windows host is a version prior to 2017.011.30199, 2020.004.30006, or 2021.005.20058. It is, therefore, affected by multiple vulnerabilities. - Acrobat Reader DC versions 2021.005.20054 and earlier, 2020.004.30005 and earlier and 2017.011.30197...

CVE-2020-28638

creationtimestamp| type| source ---|---|--- 2020-11-14 00:33:57+00:00| seen| https://t.me/cibsecurity/16328...

CVE-2020-28638

askpassword in Tomb 2.0 through 2.7 returns a warning when pinentry-curses is used and $DISPLAY is non-empty, causing affected users' files to be encrypted with "tomb W Detected DISPLAY, but only pinentry-curses is found." as the encryption key...

CVE-2020-28638

askpassword in Tomb 2.0 through 2.7 returns a warning when pinentry-curses is used and $DISPLAY is non-empty, causing affected users' files to be encrypted with "tomb W Detected DISPLAY, but only pinentry-curses is found." as the encryption key...

CVE-2020-28638

askpassword in Tomb 2.0 through 2.7 returns a warning when pinentry-curses is used and $DISPLAY is non-empty, causing affected users' files to be encrypted with "tomb W Detected DISPLAY, but only pinentry-curses is found." as the encryption key...

CVE-2020-28638

askpassword in Tomb 2.0 through 2.7 returns a warning when pinentry-curses is used and $DISPLAY is non-empty, causing affected users' files to be encrypted with "tomb W Detected DISPLAY, but only pinentry-curses is found." as the encryption key...

CVE-2020-28638

The CVE-2020-28638 entry concerns Tomb 2.0–2.7. When pinentry-curses is used and $DISPLAY is non-empty, a warning is produced and affected files are encrypted using the literal string "tomb {W] Detected DISPLAY, but only pinentry-curses is found." as the encryption key. The provided connected doc...

Google Android Media Framework Remote Code Execution Vulnerability (CNVD-2019-28638)

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. Media Framework is one of the multimedia development frameworks. A remote code execution vulnerability exists in Media Framework in Android. An attacker can exploit this vulnerability t...

Unfixed XSS vulnerability at gazeta.ua

Security researcher Dark.Man, has submitted on 29/08/2009 a cross-site-scripting XSS vulnerability affecting gazeta.ua, which at the time of submission ranked 28638 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 26/09/2009. It is currently...