EUVD-2026-3260

Malicious code in internallibv355 npm...

EUVD-2025-201112

Malicious code in elf-stats-sprucey-fireplace-355 npm...

MAL-2025-192284 Malicious code in elf-stats-sprucey-fireplace-355 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 164ecc7e7d859834f4c5c8e0da6104968a639d74eb7f89af69b1e593e4a01207 The package elf-stats-sprucey-fireplace-355 was found to contain malicious code...

Malicious code in elf-stats-sprucey-fireplace-355 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 164ecc7e7d859834f4c5c8e0da6104968a639d74eb7f89af69b1e593e4a01207 The package elf-stats-sprucey-fireplace-355 was found to contain malicious code...

MAL-2025-192247 Malicious code in elf-stats-holly-wishlist-355 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 41e0c429b06d32a3305146696361a2e24fc3e07803892f5b678f3a3de638e102 The package elf-stats-holly-wishlist-355 was found to contain malicious code...

EUVD-2025-201035

Malicious code in elf-stats-holly-wishlist-355 npm...

Malicious code in elf-stats-holly-wishlist-355 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 41e0c429b06d32a3305146696361a2e24fc3e07803892f5b678f3a3de638e102 The package elf-stats-holly-wishlist-355 was found to contain malicious code...

Amazon Linux 2 : kernel, --advisory ALAS2-2025-3053 (ALAS-2025-3053)

The version of kernel installed on the remote host is prior to 4.14.355-280.706. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-3053 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: libsas: Fix use-after-free bug in...

EUVD-2017-4248

Malware in sbrugna...

Security update for bind

This update for bind fixes the following issues: Update to release 9.18.33 Security Fixes: CVE-2024-11187: Fixes CPU exhaustion caused by many records in the additional section bsc1236596 CVE-2024-12705: Fixes multiple issues in DNS-over-HTTPS implementation when under heavy query load bsc1236597...

Westermo MRD-305-DIN, MRD-315, MRD-355, and MRD-455 Use of Hard-Coded Cryptographic Key (CVE-2016-5816)

A Use of Hard-Coded Cryptographic Key issue was discovered in MRD-305-DIN versions older than 1.7.5.0, and MRD-315, MRD-355, MRD-455 versions older than 1.7.5.0. The device utilizes hard-coded private cryptographic keys that may allow an attacker to decrypt traffic from any other source. This...

Westermo MRD-305-DIN, MRD-315, MRD-355, and MRD-455 Cross-Site Request Forgery (CVE-2017-12703)

A Cross-Site Request Forgery CSRF issue was discovered in Westermo MRD-305-DIN versions older than 1.7.5.0, and MRD-315, MRD-355, MRD-455 versions older than 1.7.5.0. The application does not verify whether a request was intentionally provided by the user, making it possible for an attacker to...

Amazon Linux 2023 : libwebp, libwebp-devel, libwebp-java (ALAS2023-2023-355)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-355 advisory. With a specially crafted WebP lossless file, libwebp may write data out of bounds to the heap. The ReadHuffmanCodes function allocates the HuffmanCode buffer with a size that comes from an array of...

CVE-2022-43376

A CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability exists that could cause code and session manipulation when malicious code is inserted into the browser. Affected Products: NetBotz 4 - 355/450/455/550/570 V4.7.0 and prior...

CVE-2022-43376

CVE-2022-43376 is a Cross-site Scripting (CWE-79) vulnerability in Schneider Electric NetBotz NetBotz 4 series (versions 4.7.0 and prior; affected models include 355/450/455/550/570). The issue arises from improper neutralization of input during web page generation, enabling code and session mani...

Fresenius Kabi Agilia Connect Infusion System (Update A)

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Fresenius Kabi Equipment: Agilia Connect Infusion System Vulnerabilities: Uncontrolled Resource Consumption, Use of a Broken or Risky Cryptographic Algorithm, Insufficiently Protected Credentials,...

SUSE: Security Advisory (SUSE-SU-2020:3615-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : xen (SUSE-SU-2020:3612-1)

This update for xen fixes the following issues : bsc1178963 - VUL-0: xen: stack corruption from XSA-346 change XSA-355 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format...

SUSE-SU-2020:3611-1 Security update for xen

This update for xen fixes the following issues: - bsc1178963 - VUL-0: xen: stack corruption from XSA-346 change XSA-355...

Fedora 33 : xen (2020-d71fa5f0b9)

stack corruption from XSA-346 change XSA-355 ---- Information leak via power sidechannel XSA-351 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...