Flock Safety The Bravo Compute Box 安全漏洞

Flock Safety The Bravo Compute Box is an edge computing device from Flock Safety USA. A security vulnerability exists in Flock Safety The Bravo Compute Box BRAVO00.00local20241017 version, which stems from the acceptance of the default Thundercomm TurboX 6490 Firehose loader, which could lead to ...

HTB

It is an...

Spectral Masking and Interpolation Attack (SMIA): a Black-Box Adversarial Attack against Voice Authentication and Anti-Spoofing Systems

Voice Authentication Systems VAS use unique vocal characteristics for verification. They are increasingly integrated into high-security sectors such as banking and healthcare. Despite their improvements using deep learning, they face severe vulnerabilities from sophisticated threats like deepfake...

CVE-2025-52548 Enabling SSH and Shellinabox on the vulnerable machine

E3 Site Supervisor Control firmware version 2.31F01 contains a hidden API call in the application services that enables SSH and Shellinabox, which exist but are disabled by default. An attacker with admin access to the application services can utilize this API to enable remote access to the...

Linux Distros Unpatched Vulnerability : CVE-2019-20167

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function sencParse in...

Linux Distros Unpatched Vulnerability : CVE-2020-23931

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in gpac before 1.0.1. The abstboxread function in boxcodeadobe.c has a heap- based buffer over-read. CVE-2020-23931 Note that Nessus...

Linux Distros Unpatched Vulnerability : CVE-2019-20168

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a use-after-free in the function gfisomboxdumpex in isomedia/boxfuncs.c...

Linux Distros Unpatched Vulnerability : CVE-2018-21017

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GPAC 0.7.1 has a memory leak in dinfRead in isomedia/boxcodebase.c. CVE-2018-21017 Note that Nessus relies on the presence of the package as reported by the...

Malicious code in item-box (npm)

The package item-box was found to contain malicious code...

MAL-2025-42015 Malicious code in item-box (npm)

The package item-box was found to contain malicious code...

MAL-2025-41812 Malicious code in editor-script-box (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d7f28dd5b9539646b395ebc2f66ec29862ccab627cf31e631994ef0ac494ba70 The OpenSSF Package Analysis project identified 'editor-script-box' @ 10.0.1 npm as malicious. It is considered malicious because: - The package...

Malicious code in editor-script-box (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d7f28dd5b9539646b395ebc2f66ec29862ccab627cf31e631994ef0ac494ba70 The OpenSSF Package Analysis project identified 'editor-script-box' @ 10.0.1 npm as malicious. It is considered malicious because: - The package...

CVE-2025-48318

Cross-Site Request Forgery CSRF vulnerability in shen2 多说社会化评论框 duoshuo allows Cross Site Request Forgery.This issue affects 多说社会化评论框: from n/a through = 1.2...

CVE-2025-48318

CVE-2025-48318 affects the WordPress plugin 多说社会化评论框 (versions

MAL-2025-41497 Malicious code in @twork-data-services/invest-box-account (npm)

--- -= Per source details. Do not edit below this line.=-...

PT-2025-35006

Cross-Site Request Forgery CSRF vulnerability in shen2 多说社会化评论框 allows Cross Site Request Forgery. This issue affects 多说社会化评论框: from n/a through 1.2...

Linux Distros Unpatched Vulnerability : CVE-2021-33361

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Memory leak in the afraboxread function in MP4Box in GPAC 1.0.1 allows attackers to read memory via a crafted file. CVE-2021-33361 Note that Nessus relies on th...

Linux Distros Unpatched Vulnerability : CVE-2021-32270

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in gpac through 20200801. A NULL pointer dereference exists in the function vwidboxdel located in boxcodebase.c. It allows an attacker t...

Linux Distros Unpatched Vulnerability : CVE-2021-31255

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in the abstboxread function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file...

Linux Distros Unpatched Vulnerability : CVE-2022-45204

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GPAC v2.1-DEV-rev428-gcb8ae46c8-master was discovered to contain a memory leak via the function dimCboxread at isomedia/boxcode3gpp.c. CVE-2022-45204 Note that...