Lucene search
+L

2513 matches found

OSV
OSV
added 2026/05/25 1:57 p.m.9 views

MAL-2026-4586 Malicious code in intl-ad-routing (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 07b57475540583a4a2af3fb2d790f066c2e77742a704b3e5048c118f82cc8185 [email protected] is a dependency-confusion squat targeting an internal @livingdesign/react namespace. On npm install, the package's preinstall...

5.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/25 8:54 a.m.14 views

Malicious code in auth0-internal-collector (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9cd9c4c46311fb401f00b6d79b338757ec70d4c666fcf65ab5ae95a90d686233 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.8AI score
Exploits0References1
Snyk
Snyk
added 2026/05/25 8:54 a.m.10 views

Malicious Package

Overview auth0-internal-collector is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS5.8AI score
Exploits0References2
OSV
OSV
added 2026/05/25 8:54 a.m.12 views

MAL-2026-4304 Malicious code in auth0-internal-collector (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9cd9c4c46311fb401f00b6d79b338757ec70d4c666fcf65ab5ae95a90d686233 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/23 2:17 a.m.15 views

Malicious code in dds-js-idl-types (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 68e8941c301603919022f1d67d311d576d5d5efcac7ed7cb0d3526cb71e829d6 On npm install, the package's postinstall.js runs whoami and reads os.hostname, os.platform, the current working directory, and CI-related environmen...

5.8AI score
Exploits0References2
OSV
OSV
added 2026/05/23 2:17 a.m.16 views

MAL-2026-4548 Malicious code in dds-js-idl-types (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 68e8941c301603919022f1d67d311d576d5d5efcac7ed7cb0d3526cb71e829d6 On npm install, the package's postinstall.js runs whoami and reads os.hostname, os.platform, the current working directory, and CI-related environmen...

5.8AI score
Exploits0References2
OSV
OSV
added 2026/05/21 10:8 a.m.14 views

RHSA-2026:19721 Red Hat Security Advisory: opentelemetry-collector security update

Bulletin has no description...

9.1CVSS6.8AI score0.01557EPSS
Exploits1References58
OSV
OSV
added 2026/05/21 10:8 a.m.16 views

RHSA-2026:19719 Red Hat Security Advisory: opentelemetry-collector security update

Bulletin has no description...

9.1CVSS6.8AI score0.01557EPSS
Exploits1References58
OSV
OSV
added 2026/05/21 10:8 a.m.14 views

RHSA-2026:19720 Red Hat Security Advisory: opentelemetry-collector security update

Bulletin has no description...

9.1CVSS6.8AI score0.01557EPSS
Exploits1References58
RedHat Linux
RedHat Linux
added 2026/05/20 5:1 p.m.26 views

Important: Red Hat Security Advisory: opentelemetry-collector security update

An update for opentelemetry-collector is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

9.1CVSS6.9AI score0.01557EPSS
Exploits1References9
RedHat Linux
RedHat Linux
added 2026/05/20 4:56 p.m.22 views

Important: Red Hat Security Advisory: opentelemetry-collector security update

An update for opentelemetry-collector is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

9.1CVSS6.9AI score0.01557EPSS
Exploits1References9
RedHat Linux
RedHat Linux
added 2026/05/20 4:45 p.m.24 views

Important: Red Hat Security Advisory: opentelemetry-collector security update

An update for opentelemetry-collector is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...

9.1CVSS6.9AI score0.01557EPSS
Exploits1References9
OSV
OSV
added 2026/05/20 10:10 a.m.13 views

RHSA-2026:19353 Red Hat Security Advisory: opentelemetry-collector security update

Bulletin has no description...

9.1CVSS6.8AI score0.01557EPSS
Exploits1References58
OSV
OSV
added 2026/05/20 10:9 a.m.11 views

RHSA-2026:19135 Red Hat Security Advisory: opentelemetry-collector security update

Bulletin has no description...

9.1CVSS7.2AI score0.01557EPSS
Exploits1References58
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in Linux 5.10

Ubuntu Linux 6.8 GA retains the legacy AFUNIX garbage collector, but the upstream commit 8594d9b85c07 "afunix: Do not call skbget for OOB skb" addresses this issue. When orphaned MSGOOB sockets reach unixgc, the garbage collector still calls kfreeskb, assuming that OOB SKBs hold two references...

7.1CVSS5.8AI score0.00146EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.11 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: netfilter: nftables: clone set element expression template The memcpy function breaks when using connlimit in set elements. Use nftexprclone to initialize the connlimit expression list; otherwise, the connlimit garbage collect...

5.5CVSS5.6AI score0.00232EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Firefox

If array shift operations are not used, the Garbage Collector may become confused regarding valid objects. This vulnerability affects Firefox versions less than 101...

4.3CVSS5.5AI score0.00346EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.16 views

Astra Linux – Vulnerability in Firefox and Thunderbird

Certain types of allocations lacked annotations that, if the Garbage Collector was in a specific state, could have led to memory corruption and potentially exploitable crashes. This vulnerability affects Firefox 106, Firefox ESR 102.4, and Thunderbird 102.4...

8.8CVSS7.2AI score0.0083EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/05/19 9:46 p.m.12 views

Important: Red Hat Security Advisory: opentelemetry-collector security update

An update for opentelemetry-collector is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.1CVSS6.9AI score0.01557EPSS
Exploits1References9
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/19 5:0 a.m.18 views

Malicious code in @starmind/collector-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 33a028c205d18a30d3ff150b1653336fefa0ac86a6e5242811b6fb2c3283af21 The package @starmind/collector-cli was found to contain malicious code. Source: ghsa-malware...

5.8AI score
Exploits0References4
Rows per page
Query Builder