Astra Linux - уязвимость в busybox

A use-after-free vulnerability was discovered in BusyBox v.1.36.1 through a malicious awk pattern in the awk.c copyvar function...

CVE-2026-26157 affecting package busybox for versions less than 1.36.1-22

CVE-2026-26157 affecting package busybox for versions less than 1.36.1-22. A patched version of the package is available...

CVE-2026-26158 affecting package busybox for versions less than 1.36.1-22

CVE-2026-26158 affecting package busybox for versions less than 1.36.1-22. A patched version of the package is available...

CVE-2026-26157 affecting package busybox for versions less than 1.35.0-17

CVE-2026-26157 affecting package busybox for versions less than 1.35.0-17. A patched version of the package is available...

Linux Distros Unpatched Vulnerability : CVE-2026-26158

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in BusyBox. This vulnerability allows an attacker to modify files outside of the intended extraction directory by crafting a malicious tar...

CVE-2026-26158 Busybox: busybox: arbitrary file modification and privilege escalation via unvalidated tar archive entries

A flaw was found in BusyBox. This vulnerability allows an attacker to modify files outside of the intended extraction directory by crafting a malicious tar archive containing unvalidated hardlink or symlink entries. If the tar archive is extracted with elevated privileges, this flaw can lead to...

Siemens SCALANCE and RUGGEDCOM Use After Free (CVE-2023-42365)

A use-after-free vulnerability was discovered in BusyBox v.1.36.1 via a crafted awk pattern in the awk.c copyvar function. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'...

Azure Linux 3.0 Security Update: busybox (CVE-2023-42366)

The version of busybox installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-42366 advisory. - A heap-buffer-overflow was discovered in BusyBox v.1.36.1 in the nexttoken function at awk.c:1159...

Huawei EulerOS: Security Advisory for busybox (EulerOS-SA-2026-1042)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP13 : busybox (EulerOS-SA-2025-2516)

According to the versions of the busybox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In netstat in BusyBox through 1.37.0, local users can launch of network application with an argv0 containing an ANSI terminal escape sequence,...

BusyBox 安全漏洞

BusyBox is a suite of applications containing several linux commands and tools by the individual developer Denis Vlasenko in Ukraine. A security vulnerability exists in BusyBox 1.3.7 and earlier versions, which stems from the acceptance of C0 control bytes such as raw CR and LF in the target of a...

Unspecified Vulnerability in Azure Access Technology BLU-IC2 and Azure Access Technology BLU-IC4 (CNVD-2025-29091)

The Azure Access Technology BLU-IC2 and Azure Access Technology BLU-IC4 are both networked access controllers from Azure Access Technology, USA. Azure Access Technology BLU-IC2 and Azure Access Technology BLU-IC4 have a security vulnerability that stems from a dependency on a vulnerable third-par...

EUVD-2014-9455

Malware in sbrugna...

EUVD-2017-7737

Malware in sbrugna...

EUVD-2019-15320

Malware in sbrugna...

EUVD-2018-1898

Malware in sbrugna...

EUVD-2023-46819

Malicious code in bioql PyPI...

EUVD-2023-43510

Malicious code in bioql PyPI...

EUVD-2022-32836

Malicious code in bioql PyPI...

EulerOS 2.0 SP10 : busybox (EulerOS-SA-2025-2091)

According to the versions of the busybox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue in the CPIO command of Busybox v1.33.2 allows attackers to execute a directory traversal.CVE-2023-39810 Tenable has extracted the precedi...