MAL-2025-36372 Malicious code in test-mlw2-sulks-proms (npm)

The package test-mlw2-sulks-proms was found to contain malicious code...

CVE-2021-36372

In Apache Ozone versions prior to 1.2.0, Initially generated block tokens are persisted to the metadata database and can be retrieved with authenticated users with permission to the key. Authenticated users may use them even after access is revoked...

CVE-2020-36372

Stack overflow vulnerability in parseplusminus Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service DoS via a crafted file...

CVE-2022-36372

Improper buffer restrictions in some IntelR NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access...

CVE-2024-36372

creationtimestamp| type| source ---|---|--- 2024-05-29 18:53:28+00:00| seen| https://t.me/DARKSPOTTEAM/581 2024-05-29 18:53:28+00:00| seen| Telegram/DASdBAzdyFqiCt-TEWD5i84DOJh0xCyfOR9Q3VL29Y 2024-06-05 05:59:45+00:00| seen| https://t.me/ZeroEthicalCourse/320...

CVE-2024-36372

In JetBrains TeamCity before 2023.05.6 reflected XSS on the subscriptions page was possible...

CVE-2022-36372

creationtimestamp| type| source ---|---|--- 2023-08-11 07:29:30+00:00| seen| https://t.me/cibsecurity/68294...

CVE-2022-36372

Improper buffer restrictions in some IntelR NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access...

CVE-2022-36372

The CVE-2022-36372 entry concerns Intel® NUC BIOS firmware with improper buffer restrictions that may allow a privileged local user to escalate privileges. Affected component: Intel NUC BIOS firmware; root cause: improper buffer handling restrictions in the BIOS, enabling elevation of privilege v...

CVE-2022-36372

Improper buffer restrictions in some IntelR NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access...

CVE-2021-36372

In Apache Ozone versions prior to 1.2.0, Initially generated block tokens are persisted to the metadata database and can be retrieved with authenticated users with permission to the key. Authenticated users may use them even after access is revoked...

CVE-2021-36372 Original block tokens are persisted and can be retrieved

In Apache Ozone versions prior to 1.2.0, Initially generated block tokens are persisted to the metadata database and can be retrieved with authenticated users with permission to the key. Authenticated users may use them even after access is revoked...

CVE-2021-36372

Apache Ozone (versions prior to 1.2.0) contains a token handling flaw: initially generated block tokens are persisted in the metadata database and can be retrieved by authenticated users with permission to the key, allowing use of tokens even after access is revoked. This is described across mult...

CVE-2020-36372

Stack overflow vulnerability in parseplusminus Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service DoS via a crafted file...

CVE-2020-36372

CVE-2020-36372 is a stack overflow vulnerability in Cesanta MJS 1.20.1 affecting the parse_plus_minus function. The provided connected documents consistently describe a DoS condition exploitable via crafted files. No explicit remediation, patch version, or exploit details are present in the suppl...