MAL-2025-36060 Malicious code in test-mlw2-pyats-carex (npm)

The package test-mlw2-pyats-carex was found to contain malicious code...

CVE-2024-36060

EnGenius EnStation5-AC A8J-ENS500AC 1.0.0 devices allow blind OS command injection via shell metacharacters in the Ping and Speed Test parameters...

CVE-2024-36060

creationtimestamp| type| source ---|---|--- 2024-10-30 20:02:52+00:00| seen| https://t.me/cvedetector/9443...

Adobe Media Encoder < 15.4 Multiple Vulnerabilities (APSB21-43) (macOS)

The version of Adobe Media Encoder installed on the remote macOS host is prior to 15.4. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB21-43 advisory. - Adobe Media Encoder version 15.2 and earlier is affected by a memory corruption vulnerability when parsing a...

CVE-2021-36060

Adobe Media Encoder 15.2 and earlier is affected by an out-of-bounds read in MPEG file parsing, enabling memory disclosure and potential bypass of ASLR. Exploitation requires user interaction (victim opens a crafted file). Affected version: 15.2 and earlier; remediation per APSB21-43 is to update...

CVE-2021-36060 Adobe Media Encoder MPEG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

Adobe Media Encoder version 15.2 and earlier is affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victi...

CVE-2022-36060

creationtimestamp| type| source ---|---|--- 2023-03-29 00:39:59+00:00| seen| https://t.me/cibsecurity/60938...

CVE-2022-36060

matrix-react-sdk is a Matrix chat protocol SDK for React Javascript. Events sent with special strings in key places can temporarily disrupt or impede the matrix-react-sdk from functioning properly, such as by causing room or event tile crashes. The remainder of the application can appear...

CVE-2022-36060 Prototype pollution in matrix-react-sdk

matrix-react-sdk is a Matrix chat protocol SDK for React Javascript. Events sent with special strings in key places can temporarily disrupt or impede the matrix-react-sdk from functioning properly, such as by causing room or event tile crashes. The remainder of the application can appear...

CVE-2022-36060

CVE-2022-36060 concerns prototype pollution in matrix-react-sdk. Connected sources describe that, in certain configurations, specially crafted strings in data sent to the SDK could modify Object.prototype, disrupting normal rendering of rooms/events and potentially causing denial of service or lo...

CVE-2022-36060 Prototype pollution in matrix-react-sdk

matrix-react-sdk is a Matrix chat protocol SDK for React Javascript. Events sent with special strings in key places can temporarily disrupt or impede the matrix-react-sdk from functioning properly, such as by causing room or event tile crashes. The remainder of the application can appear...

matrix-react-skin (>=0.0.1 <=0.0.2), vector-web (=0.3.0) potentially affected by CVE-2022-36060 via matrix-react-sdk (>=0.0.1 <=0.2.0)

matrix-react-sdk NPM version =0.0.1, =0.0.1, =0.0.2 - vector-web =0.3.0 Source cves: CVE-2022-36060 Source advisory: OSV:GHSA-2X9C-QWGF-94XR...

FreeBSD : Matrix clients -- several vulnerabilities (e4d93d07-297a-11ed-95f8-901b0e9408dc)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the e4d93d07-297a-11ed-95f8-901b0e9408dc advisory. - Thunderbird users who use the Matrix chat protocol were vulnerable to a denial-of-service...