6 matches found
MAL-2025-36672 Malicious code in test-mlw2-yogis-runts (npm)
The package test-mlw2-yogis-runts was found to contain malicious code...
CVE-2023-36672
An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that traffic to the local network is sent in plaintext outside the VPN tunnel even if the local network is using a non-RFC1918 IP subnet. This allows an...
CVE-2023-36672
An issue was discovered in the Clario VPN client through 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that traffic to the local network is sent in plaintext outside the VPN tunnel even if the local network is using a non-RFC1918 IP subnet. This allows an...
CVE-2023-36672
creationtimestamp| type| source ---|---|--- 2023-08-09 12:30:33+00:00| seen| https://t.me/kasperskyb2b/793...
CVE-2023-36672
CVE-2023-36672 concerns the Clario VPN client for macOS (versions up to 5.9.1.1662). The issue is that the client insecurely configures the operating system so that traffic destined for the local network is sent in plaintext outside the VPN tunnel even when the local network uses a non-RFC1918 su...
CVE-2022-36672
CVE-2022-36672 affects Novel-Plus (v3.6.2) where a hard-coded JWT key is located in the project config file, enabling attackers to create custom user sessions. The NVD entry cites a critical impact (CVSS 3.1: 9.8; NETWORK, LOW complexity, NONE privileges required, with HIGH confidentiality, integ...