Lucene search
K

39 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 4 days ago9 views

Malicious code in paperclip2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6fbcfc445b1a599943dac3ca0691633629c6804037b38fcf6113062f6add848 package.json declares a postinstall lifecycle script that runs node -e code opening a TCP connection to 185.112.147.174:7007 and piping the socket to...

6.5AI score
Exploits0References2
OSV
OSV
added 4 days ago6 views

MAL-2026-6755 Malicious code in paperclip2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6fbcfc445b1a599943dac3ca0691633629c6804037b38fcf6113062f6add848 package.json declares a postinstall lifecycle script that runs node -e code opening a TCP connection to 185.112.147.174:7007 and piping the socket to...

6.5AI score
Exploits0References2
Circl
Circl
added 2025/12/01 4:44 p.m.4 views

CVE-2025-7007

creationtimestamp| type| source ---|---|--- 2025-12-01 16:44:57+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115645316824283167 2025-12-01 18:05:34+00:00| seen| https://gist.github.com/Darkcrai86/4fdadccda8f5d89228fd614d4d617305...

7.5CVSS5.7AI score0.00094EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-7007

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00744EPSS
Exploits1References5
OSV
OSV
added 2025/08/14 6:52 p.m.1 views

MAL-2025-7007 Malicious code in 3sfe (npm)

The package 3sfe was found to contain malicious code...

7.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 6:29 p.m.5 views

CVE-2021-29255

MicroSeven MYM71080i-B 2.0.5 through 2.0.20 devices send admin credentials in cleartext to pnp.microseven.com TCP port 7007. An attacker on the same network as the device can capture these credentials...

7.5CVSS7AI score0.00554EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2024/09/24 12:0 a.m.38 views

Ubuntu: Security Advisory (USN-7007-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.02701EPSS
Exploits4References4
OpenVAS
OpenVAS
added 2024/09/16 12:0 a.m.37 views

Ubuntu: Security Advisory (USN-7007-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.02701EPSS
Exploits4References4
Tenable Nessus
Tenable Nessus
added 2024/09/13 12:0 a.m.204 views

Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-7007-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7007-1 advisory. Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use...

9.8CVSS7AI score0.02701EPSS
Exploits4References218
Circl
Circl
added 2024/07/25 8:15 p.m.8 views

CVE-2024-7007

creationtimestamp| type| source ---|---|--- 2024-07-25 20:15:41+00:00| seen| https://t.me/cvedetector/1633...

9.8CVSS4.8AI score0.00641EPSS
Exploits0References1
Circl
Circl
added 2024/03/15 6:26 p.m.5 views

CVE-2023-7007

creationtimestamp| type| source ---|---|--- 2024-03-15 18:26:58+00:00| seen| https://t.me/ctinow/209009 2024-03-15 18:27:17+00:00| seen| https://t.me/ctinow/209024...

8.2CVSS5.8AI score0.00391EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/03/15 5:8 p.m.29 views

CVE-2023-7007 CVE-2023-7007

Sciener server does not validate connection requests from the GatewayG2, allowing an impersonation attack that provides the attacker the unlockKey field...

6.8AI score0.00391EPSS
Exploits0References1
CVE
CVE
added 2024/03/15 5:8 p.m.66 views

CVE-2023-7007

CVE-2023-7007 affects Sciener server behavior where connection requests from GatewayG2 are not validated, enabling impersonation and potential access to the unlockKey field. The vulnerability is triggered by an attacker who can pose as GatewayG2 to established connections, potentially facilitatin...

8.2CVSS6.8AI score0.00391EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/01/24 8:23 p.m.3 views

Malicious code in wlwz-2312-7007 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 054324edaf863762b0676dc56bb6ef9b8dfa5f3798e0f9815e1e4e01946d9f33 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2024/01/24 8:23 p.m.5 views

MAL-2024-807 Malicious code in wlwz-2312-7007 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 054324edaf863762b0676dc56bb6ef9b8dfa5f3798e0f9815e1e4e01946d9f33 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.36 views

Rocky Linux 9 : java-1.8.0-openjdk (RLSA-2022:7007)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:7007 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are...

5.3CVSS6.1AI score0.02376EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2023/08/02 12:0 a.m.18 views

Moxa EDS-G516E and EDS-510E Series Ethernet Switches Stack-Based Buffer Overflow (CVE-2020-7007)

In Moxa EDS-G516E Series firmware, Version 5.2 or lower, the attacker may execute arbitrary codes or target the device, causing it to go out of service. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C...

10CVSS8.6AI score0.0272EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2022/01/03 12:0 a.m.286 views

Backdoor.Win32.SilentSpy.10 Authentication Bypass / Command Execution

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/a7ce38e60cf08f2b234f34043b87e701.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.SilentSpy.10 Vulnerability: Authentication Bypass Command Execution Description: The...

0.7AI score
Exploits0
Cvelist
Cvelist
added 2021/03/26 5:27 p.m.15 views

CVE-2021-29255

MicroSeven MYM71080i-B 2.0.5 through 2.0.20 devices send admin credentials in cleartext to pnp.microseven.com TCP port 7007. An attacker on the same network as the device can capture these credentials...

7.8AI score0.00554EPSS
Exploits1References2
CNNVD
CNNVD
added 2021/03/26 12:0 a.m.3 views

MicroSeven MYM71080i-B 安全漏洞

The MicroSeven MYM71080i-B is a camera firmware from MicroSeven, USA. A security vulnerability exists in MicroSeven MYM71080i-B 2.0.5 through 2.0.20, which originates from sending administrative credentials in clear text to pnp.microseven.com TCP port 7007...

7.5CVSS7.3AI score0.00554EPSS
Exploits1References3
Rows per page
Query Builder