4641 matches found
Security Bulletin: Multiple Vulnerabilities in IBM Decision Optimization for Cloud Pak for Data (CVE-2025-6493, CVE-2025-55163 and CVE-2025-58754)
Summary Multiple Vulnerabilities were addressed in IBM Decision Optimization for Cloud Pak for Data version 5.2.2. Vulnerability Details CVEID:CVE-2025-55163 DESCRIPTION: Netty is an asynchronous, event-driven network application framework. Prior to versions 4.1.124.Final and 4.2.4.Final, Netty i...
TencentOS Server 4: grafana (TSSA-2025:0747)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0747 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...
Security Bulletin: URI Handling Vulnerability Causes Unbounded Memory Allocation (DoS)
Summary Axios is a promise based HTTP client for the browser and Node.js. When Axios prior to versions 0.30.2 and 1.12.0 runs on Node.js and is given a URL with the data: scheme, it does not perform HTTP. Instead, its Node http adapter decodes the entire payload into memory Buffer/Blob and return...
Security Bulletin: IBM Security SOAR is using a component with a known vulnerability (CVE-2025-58754)
Summary IBM Security SOAR uses an older version of axios that may be identified and exploited. Updates for supported versions have been released which address this issue. Vulnerability Details CVEID:CVE-2025-58754 DESCRIPTION: Axios is a promise based HTTP client for the browser and Node.js. When...
EUVD-2025-179135
Malicious code in enif-axios-schema-biotechnology npm...
EUVD-2025-178673
Malicious code in graviton-command-global-axios npm...
EUVD-2025-180170
Malicious code in axios-astro-html-webpack-plugin-algol npm...
Malicious code in dactyl-loopback-axios-lacerta (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94ef9b4077e3c6ce19e631255d57d1edaaaa35e2479ccaad486e1d3e0d6f9a3d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-175900
Malicious code in transhumanism-registry-nucleosynthesis-axios npm...
EUVD-2025-177543
Malicious code in non-blocking-luna-axios-pegasus npm...
EUVD-2025-177457
Malicious code in on-eigenstate-eslint-plugin-axios npm...
EUVD-2025-180166
Malicious code in axios-string-kinetic-xenon npm...
Malicious code in graviton-command-global-axios (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 845414344cf37948a469b18b04fe8781a6a8a9e6b92f158967769b81e803f446 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-180169
Malicious code in axios-envconfig-antimatter-xenos npm...
EUVD-2025-180069
Malicious code in biohacking-axios-pegasus-sirius npm...
EUVD-2025-178911
Malicious code in filament-axios-node-config-jasmine npm...
EUVD-2025-175480
Malicious code in xml-oberon-axios-neuromorphic npm...
Malicious code in bulma-titan-axios-ariel (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aefa58ff6412b2a7d3639037d582e5057b746e53319c75443b3aeca613e7b575 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-176443
Malicious code in selenium-neptunology-nucleosynthesis-axios npm...
EUVD-2025-180119
Malicious code in bellatrix-axios-spica-geoarchaeology npm...