CVE-2026-7785 A-G-U-P-T-A wireshark-mcp pyshark_mcp.py quick_capture os command injection

A security flaw has been discovered in A-G-U-P-T-A wireshark-mcp edaf604416fbc94a201b4043092d4a1b09a12275/400c3da70074f22f3cce7ccb65304cafc7089c89. This affects the function quickcapture of the file pysharkmcp.py. The manipulation results in os command injection. The attack may be launched...

CVE-2026-7785

CVE-2026-7785 affects A-G-U-P-T-A wireshark-mcp: the vulnerable component is the function quick_capture in pyshark_mcp.py, with an underlying issue leading to an OS command injection. The description indicates the issue can be triggered remotely and that a public exploit may exist. There are no v...

CVE-2026-7785 A-G-U-P-T-A wireshark-mcp pyshark_mcp.py quick_capture os command injection

A security flaw has been discovered in A-G-U-P-T-A wireshark-mcp edaf604416fbc94a201b4043092d4a1b09a12275/400c3da70074f22f3cce7ccb65304cafc7089c89. This affects the function quickcapture of the file pysharkmcp.py. The manipulation results in os command injection. The attack may be launched...

CVE-2026-7785

A security flaw has been discovered in A-G-U-P-T-A wireshark-mcp edaf604416fbc94a201b4043092d4a1b09a12275/400c3da70074f22f3cce7ccb65304cafc7089c89. This affects the function quickcapture of the file pysharkmcp.py. The manipulation results in os command injection. The attack may be launched...

CVE-2026-5408

A flaw was found in Wireshark. A remote attacker could exploit a vulnerability in the BT-DHT protocol dissector, leading to a crash. This denial of service DoS vulnerability could prevent the application from processing network traffic, impacting its availability. Mitigation To mitigate this...

CVE-2026-5657

A flaw was found in Wireshark. An attacker could trigger a crash in the iLBC internet Low Bitrate Codec component by processing a specially crafted network packet. This vulnerability could lead to a denial of service, preventing the Wireshark application from functioning. Mitigation To mitigate...

CVE-2026-6527

A flaw was found in Wireshark, a network protocol analyzer. A local user could be affected by this vulnerability if they open a specially crafted capture file containing malformed ASN.1 PER Abstract Syntax Notation One Packed Encoding Rules protocol data. This could lead to a crash of the Wiresha...

CVE-2026-5655

A flaw was found in Wireshark. A local user could be tricked into opening a specially crafted capture file containing Session Description Protocol SDP data. Processing this malicious data could lead to a crash in the SDP protocol dissector, resulting in a denial of service for the application...

CVE-2026-6532

A flaw was found in Wireshark. A local user could exploit a crash in the Kismet protocol dissector by enticing a victim to open a specially crafted capture file. This vulnerability leads to a denial of service, making the application unavailable. Mitigation To mitigate this issue, users should...

CVE-2026-6534

A flaw was found in Wireshark. A remote attacker could exploit this vulnerability by crafting a malicious USB Human Interface Device HID protocol packet. This could lead to an infinite loop in the dissector, causing a denial of service DoS condition, making the application unresponsive. Mitigatio...

PT-2026-36936

A security flaw has been discovered in A-G-U-P-T-A wireshark-mcp edaf604416fbc94a201b4043092d4a1b09a12275/400c3da70074f22f3cce7ccb65304cafc7089c89. This affects the function quick capture of the file pyshark mcp.py. The manipulation results in os command injection. The attack may be launched...

Astra Linux – Vulnerability in Chromium

The use of “after free” in Media Capture in Google Chrome before version 120.0.6099.62 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption through those interactions. Chromium security severity: Medium...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: media: cx88: A null-ptr-deref bug was fixed in the bufferprepare function. When the driver calls cx88riscbuffer to prepare the buffer, the function call may fail, resulting in an empty buffer and a null-ptr-deref later in the...

Astra Linux – Vulnerability in Wireshark

The DOCSIS dissector crash in Wireshark 4.2.0 allows for denial of service through packet injection or malicious capture files...

Astra Linux – Vulnerability in Wireshark

Uncontrolled recursion in the Bluetooth DHT dissector in Wireshark versions 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows for denial of service through packet injection or crafted capture files...

Astra Linux – Vulnerability in Wireshark

The column handling in Wireshark versions 4.4.0 to 4.4.6 and 4.2.0 to 4.2.12 allows for denial of service through packet injection or malicious capture files...

Astra Linux – Vulnerability in libpcap

The sf-pcapng.c file in libpcap before version 1.9.1 does not properly validate the PHB header length before allocating memory...

Malicious code in bxiucnxcb (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 136aa3924314879404ede1d7153b71b042b3fa55468f0aa1c534e6a18b79e37c During import, the package automatically downloads and executes code that first acts as an infostealer and then starts code acting as a RAT. It connects with a...

ctf-scripts

CTF Scripts Kumpulan script otomatisasi dan template eksploit...

CVE-2026-41016 Apache Airflow Providers SMTP: No certificate validation on SMTP STARTTLS connections in SMTP provider

Apache Airflow's SMTP provider SmtpHook called Python's smtplib.SMTP.starttls without an SSL context, so no certificate validation was performed on the TLS upgrade. A man-in-the-middle between the Airflow worker and the SMTP server could present a self-signed certificate, complete the STARTTLS...