Lucene search
K

700 matches found

EUVD
EUVD
added 2025/11/12 4:29 a.m.2 views

EUVD-2025-115282

Malicious code in cluster-geckodriver-child-process-sails npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/12 4:29 a.m.3 views

EUVD-2025-123743

Malicious code in phoebe-sagitta-gridsome-child-process npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/12 4:29 a.m.1 views

EUVD-2025-115352

Malicious code in child-process-registry-chai-nashira npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/12 4:29 a.m.2 views

EUVD-2025-115356

Malicious code in child-process-metalsmith-sadr-nextjs npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/12 4:29 a.m.2 views

EUVD-2025-116534

Malicious code in arcturus-dependencies-transport-child-process npm...

6.6AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 4:29 a.m.3 views

Malicious code in grus-child-process-server-inquirer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b28413cef90aca4f8fabcb9fcb9cc4c3737e32a1247520c569f1d849bef559a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/11/12 4:29 a.m.2 views

EUVD-2025-114609

Malicious code in deimos-lint-staged-child-process-sedna npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/12 4:29 a.m.5 views

EUVD-2025-115354

Malicious code in child-process-miranda-enif-nightwatch npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/12 4:29 a.m.3 views

EUVD-2025-113562

Malicious code in fomalhaut-pyxis-child-process-terser npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/12 4:29 a.m.2 views

EUVD-2025-114564

Malicious code in deneb-kaus-child-process-nightmare npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/12 4:29 a.m.2 views

EUVD-2025-113992

Malicious code in equinox-child-process-deneb-changelog npm...

6.6AI score
Exploits0
OSV
OSV
added 2025/11/12 4:29 a.m.1 views

MAL-2025-148874 Malicious code in uglify-js-hexo-zenobia-child-process (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 934967d7940b8009db69a6f57f4813c107293a76d651412f11a90960aed262c3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/11/12 4:29 a.m.3 views

EUVD-2025-115353

Malicious code in child-process-prettier-stylelint-draco-vuepress npm...

6.6AI score
Exploits0
OSV
OSV
added 2025/11/12 4:29 a.m.1 views

MAL-2025-140747 Malicious code in child-process-framework-metalsmith-celeste (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 849be0aae93e5cfbd3e6a735ee71094677ea146394d513afeaba71ce013d555d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
CNVD
CNVD
added 2025/10/31 12:0 a.m.4 views

Mozilla Firefox Code Execution Vulnerability (CNVD-2025-26886)

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. Mozilla Firefox suffers from a code execution vulnerability that is caused by the use of a WebGPU internal release triggered by an infected child process. An attacker could exploit the vulnerability to...

9.8CVSS7.9AI score0.00308EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/28 2:6 p.m.5 views

CVE-2025-12380 Use-after-free in WebGPU internals triggered from a compromised child process

Starting with Firefox 142, it was possible for a compromised child process to trigger a use-after-free in the GPU or browser process using WebGPU-related IPC calls. This may have been usable to escape the child process sandbox. This vulnerability was fixed in Firefox 144.0.2...

0.00308EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2025/10/28 2:6 p.m.4 views

CVE-2025-12380

Starting with Firefox 142, it was possible for a compromised child process to trigger a use-after-free in the GPU or browser process using WebGPU-related IPC calls. This may have been usable to escape the child process sandbox. This vulnerability was fixed in Firefox 144.0.2...

9.8CVSS7.3AI score0.00308EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/28 12:0 a.m.5 views

Figma Developer MCP < 0.6.3 RCE (GHSA-gxw4-4fc5-9gr5)

The remote host has a version of figma-developer-mcp prior to 0.6.3. A command injection vulnerability exists in the figma-developer-mcp MCP Server. The vulnerability is caused by the unsanitized use of input parameters within a call to childprocess.exec, enabling an attacker to inject arbitrary...

8CVSS7.2AI score0.07417EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/28 12:0 a.m.4 views

Mozilla Firefox 安全漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. Mozilla Firefox suffers from a code execution vulnerability that is caused by the use of a WebGPU internal release triggered by an infected child process. An attacker could exploit the vulnerability to...

9.8CVSS7.8AI score0.00308EPSS
Exploits0References2
Mozilla
Mozilla
added 2025/10/28 12:0 a.m.8 views

Security Vulnerabilities fixed in Firefox 144.0.2 — Mozilla

Starting with Firefox 142, it was possible for a compromised child process to trigger a use-after-free in the GPU or browser process using WebGPU-related IPC calls. This may have been usable to escape the child process sandbox...

9.8CVSS6.9AI score0.00308EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder