MAL-2025-39170 Malicious code in whiskey-7vn-project (npm)

The package whiskey-7vn-project was found to contain malicious code...

CVE-2023-39170

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it's a duplicate of CVE-2023-39169...

CVE-2023-39170

CVE-2023-39170 entry is rejected/not used and does not represent an active vulnerability.

CVE-2023-39170

...

EnBw SENEC Legacy Storage Box Default Credentials

Advisory ID: Ph0s-2023-004 Product: EnBw - SENEC legacy storage box: V1-V3 Manufacturer: SENEC - a part of EnBw Affected Versions: Firmware: all as of 2023-06-19 Tested Versions: current Vulnerability Type: CWE-1392: Use of Default Credentials Risk Level: CVSS v3.1 Vector:...

Amazon Linux 2023 : libdwarf, libdwarf-devel, libdwarf-static (ALAS2023-2023-093)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-093 advisory. A double-free vulnerability was found in libdwarf's dwarfexpandframeinstructions function of the dwarfframe.c file. A carefully crafted object file could cause the 'dwarfdump' utility to do a double fre...

SUSE CVE-2022-39170

libdwarf 0.4.1 has a double free in dwarfexecframeinstr in dwarfframe.c...

CVE-2022-39170

creationtimestamp| type| source ---|---|--- 2022-09-02 07:38:45+00:00| seen| https://t.me/cibsecurity/49220...

CVE-2022-39170

libdwarf 0.4.1 has a double free in dwarfexecframeinstr in dwarfframe.c...

UBUNTU-CVE-2022-39170

libdwarf 0.4.1 has a double free in dwarfexecframeinstr in dwarfframe.c...

CVE-2022-39170

Summary: CVE-2022-39170 affects libdwarf. A double-free in the function _dwarf_exec_frame_instr (dwarf_frame.c) can lead to a crash or denial of service as described in vendor advisories. Connected sources indicate affected package libdwarf and remediation via updated packages (e.g., libdwarf 0.5...

CVE-2022-39170

libdwarf 0.4.1 has a double free in dwarfexecframeinstr in dwarfframe.c...

CVE-2021-39170

creationtimestamp| type| source ---|---|--- 2021-09-01 18:35:03+00:00| seen| https://t.me/cibsecurity/28161...

CVE-2021-39170 Improper Encoding or Escaping of Output in Asset Metadata Component

Pimcore is an open source data & experience management platform. Prior to version 10.1.2, an authenticated user could add XSS code as a value of custom metadata on assets. There is a patch for this issue in Pimcore version 10.1.2. As a workaround, users may apply the patch manually...

BlackBerry Unified Endpoint Manager Cross-Site Scripting Vulnerability (CNVD-2019-39170)

BlackBerry Unified Endpoint Manager UEM is a unified endpoint management solution from BlackBerry Canada. The solution is used to manage endpoint devices and view their access.A security vulnerability exists in BlackBerry UEM. An attacker could exploit this vulnerability to make changes to UEM...