133 matches found
CVE-2026-24762 RustFS Logs Sensitive Credentials in Plaintext
RustFS is a distributed object storage system built in Rust. From versions alpha.13 to alpha.81, RustFS logs sensitive credential material access key, secret key, session token to application logs at INFO level. This results in credentials being recorded in plaintext in log output, which may be...
CVE-2026-24762
CVE-2026-24762 affects RustFS up to alpha.81, where the server logs sensitive credential material (access key, secret key, session token) at INFO level, causing plaintext credentials in logs accessible to log consumers and potentially leading to credential compromise. Root cause: logging ofSTS cr...
MiracleLinux 4 : firefox-3.6.24-3.0.1.AXS4, xulrunner-1.9.2.24-2.1.0.1.AXS4 (AXSA:2012-81:01)
The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-81:01 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. Security issues fixed with this release...
MiracleLinux 7 : kernel-3.10.0-1160.119.1.0.15.el7.AXS7 (AXSA:2025-10986:81)
"The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10986:81 advisory. ASoC: topology: Clean up route loading CVE-2024-41069 ASoC: topology: Fix references to freed memory CVE-2024-41069 drm/dpmst: Fix MST sideband...
Malicious code in billa-81 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ebfea760e615bca241fe40e722fe988405acbc72a40e46904325689dc3fdb4e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-157566 Malicious code in kentung-81 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08e6e0f3ab4fe7fe474dc5f1dbe8de81742477c6dce808f5b9cd8c2a8b3f093d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in rita-81 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b51f1f3796cfa6efff61001bc3a9c69cda60911f9da765108b644c4a11b2160 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in intan-81 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e6e9dbfde68f3917bce7ce2db51e99acd3ed47c95c614726c970984e416b132 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in alvino-81 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 35aadbec019ba9cf56b87ed1d77cc96747f76e1b343620c0929ea8fb767ac51d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cinta-81 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94e9d82544d0dc88fe6f894d55a076e4b55a6679634ab016ad3f60c5d9b552aa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in alvira-81 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d3bd7c630097e0dd14f8bfe908884975c75c66a45f666ec337e6929a8f8ad48b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-154115 Malicious code in cinta-81 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94e9d82544d0dc88fe6f894d55a076e4b55a6679634ab016ad3f60c5d9b552aa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-156595 Malicious code in intan-81 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e6e9dbfde68f3917bce7ce2db51e99acd3ed47c95c614726c970984e416b132 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-74501
Malicious code in latinelephantfuchsia-81 npm...
Malicious code in latin_elephant_fuchsia-81 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7fe7d5f846fbd69bb4d6291c01ce26c452b6a828915cb20faf3d1f63bfcb414c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-74435
Malicious code in narrowgophertomato-81 npm...
MAL-2025-110251 Malicious code in useless_barnacle_black-81 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56b0ff7f20dd81daed05f6501d86e606e0542f677bfdb0cb5454b14788167b9b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Mozilla Firefox < 144.0
The version of Firefox installed on the remote macOS or Mac OS X host is prior to 144.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-81 advisory. - Memory safety bug present in Firefox 143 and Thunderbird 143. This bug showed evidence of memory corruption...
EUVD-2005-1113
Malware in sbrugna...
EUVD-2019-4841
Malware in sbrugna...