CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AstraLinux•added 2026/05/03 11:59 p.m.•5 views

Astra Linux – Vulnerability in imagemagick

In the IntensityCompare function in /magick/quantize.c, there are calls to PixelPacketIntensity, which may return overflowing values to the caller when ImageMagick processes a crafted input file. To address this issue, the patch introduces and utilizes the ConstrainPixelIntensity function. This...

4.3CVSS6.5AI score0.01124EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux – Vulnerability in imagemagick

A flaw was discovered in ImageMagick, specifically in the MagickCore/statistic.c file. An attacker who submits a crafted file processed by ImageMagick could trigger undefined behavior, resulting in values that are outside the range of the type unsigned long. This likely leads to a disruption in t...

7.8CVSS7AI score0.01183EPSS

Tenable Nessus•added 2025/12/18 12:0 a.m.•2 views

Mozilla Firefox < 32.0

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 32.0. It is, therefore, affected by a vulnerability as referenced in the mfsa2014-69 advisory. - Apparent info leak caused by uninitialized memory with malformed GIFsCVE-2014-1564 CVE-2014-1564 Note that Nessus has...

4.3CVSS7.6AI score0.05465EPSS

Tenable Nessus•added 2025/12/18 12:0 a.m.•5 views

Mozilla Firefox ESR < 31.1

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 31.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2014-69 advisory. - Apparent info leak caused by uninitialized memory with malformed GIFsCVE-2014-1564 CVE-2014-1564 Note that Nessus...

4.3CVSS7.6AI score0.05465EPSS

MAL-2025-153868 Malicious code in bitha-69 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee392148df5ba5d95940d2cbf0e13ac25fad067861d14df8aa9e8084c1bf2751 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 4:47 p.m.•4 views

Malicious code in aril-69 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd2d76d8d1aa5a8f9a0c67da653040707d9f64f26dd38ab8570ffb4d407455c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 4:47 p.m.•4 views

Malicious code in billa-69 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9baca84631b912e299aae51b20af06205a4dd1c03b831828596b9f6b398bba96 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 4:47 p.m.•4 views

Malicious code in rita-69 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d5b564be55ea704321725a9f460e8bb074cc8021b01cb2b761a4c8dc5893c49 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 4:47 p.m.•6 views

Malicious code in kentung-69 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1630e8d30364b11fe31171b0442a0593613f7fab9cb95cb4394b828c8b43b17 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 4:47 p.m.•4 views

Malicious code in hariyono-69 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7238a87b665d91efd36f8b7ce6a4227ec9f91e09dd0d1a7902970c5f32c44b13 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-164943 Malicious code in rita-69 (npm)

MAL-2025-152511 Malicious code in alvira-69 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99aa83c171564e4b23259894939272d84aadc97086d7b7c4701399cf68af29bb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-154101 Malicious code in cinta-69 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b5dbb846799b5179c558dfbcc9188aefcfc4181fd55d7780caf8903601d53d68 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/12 4:47 p.m.•3 views

MAL-2025-157552 Malicious code in kentung-69 (npm)

OSSF Malicious Packages•added 2025/11/11 7:47 a.m.•5 views

Malicious code in annual_mockingbird_tan-69 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89f9d6d99f2b19a5f8e0fee93d44a119cfeeea86bf6c4a6bc85acea9e2e37b11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...