Malicious code in @diotoborg/provident-eligendi-porro (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d9ce2bec0d76f7958679507cc49b1f3faf235c63fe8b497a422e9abd18c56155 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in @diotoborg/nisi-suscipit-vel (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1ae1ff99e54a2fe8ce6f015abff8fb97a03e741752b0265d31b4d36bfc6d5dea Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8700 Malicious code in @diotoborg/voluptatibus-impedit (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f899aca45c84128990918b2b6dd9dd004f1c68c1247ccbe88cd9e4d2bd4641ed Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in @diotoborg/dolorem-possimus (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 594648a6e233b1180f89cb194e6ddf0cebf9f265ae0f11b2b6d13533ccfc1d52 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-7701 Malicious code in bootstrapcloud (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9f67dc77b28b090be63a2162c508d3a69afe89f50c88f5310aaac6b7a8ddc8ff Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in stylesheeet (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7e689b39fcbd1dcf313116508aacf3c6f500651a7b60d276583e09895a98324e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-7231 Malicious code in @zitterorg/incidunt-suscipit (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d4a388cde8bfdb2884b7cf2b08de2671f74c3813a18b004b53c27829e7fb6d57 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in vue-webviews (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1a4cb498523fdac707f6db2f94f8c3478545fcec92545e4a59dff966b9cbaa87 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-1431 Malicious code in @juiggitea/eos-inventore-nulla-ab (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 74fbeaf3c7af8f0bbe206779c2e65ff8f8eae602e5b1212a02e3d42dd8291c30 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in @juiggitea/amet-cupiditate-fugiat (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 94f62fe064c189896bbcb72c87b6e37c6191013d4fa827ee24a85ba9abbcfc14 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2024-34146

A flaw was found in the Jenkins Git server Plugin, involving inadequate permission validation for reading Git repositories over SSH. Through the manipulation of crafted requests, a malicious actor can attain unauthorized read access to a Git repository over SSH. Subsequently, they could utilize...

MAL-2024-1235 Malicious code in @lbnqduy11805/special-palm-tree (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6778e7c9334a7e067c8f10c134b7e24480404907e9ca6d5d4b1be43c81c8c563 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-1219 Malicious code in @lbnqduy11805/ideal-octo-spork (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 37f1d31208ac8ecb349535fc04273dfeb84c17d325344aac63719c89ed0c2da5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2024-30661

CVE-2024-30661 is rejected/not used and does not represent an active vulnerability entry.

MAL-2024-1181 Malicious code in shelllib (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fe0f8a310e6c94039b69ac79b41e0121fe70d0ec0dcc2d27627ab66084b35148 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2024-29440

The connected PT-2024-22898 entry describes a vulnerability affecting ROS2 Humble Hawksbill, specifically versions where ROS VERSION is 2 and ROS PYTHON VERSION is 3. Affected component(s) are ROS2 nodes exposed remotely; the issue is an unauthorized access vulnerability that could allow a malici...

MAL-2024-1099 Malicious code in frosmo-react (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 49ad426e0403cbb83406507bc9ee1c54e3c62183174858cd77bd8d4f0d52cbd3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2024-1618

A search path or unquoted item vulnerability in Faronics Deep Freeze Server Standard, which affects versions 8.30.020.4627 and earlier. This vulnerability affects the DFServ.exe file. An attacker with local user privileges could exploit this vulnerability to replace the legitimate DFServ.exe...

Code injection

A search path or unquoted item vulnerability in Faronics Deep Freeze Server Standard, which affects versions 8.30.020.4627 and earlier. This vulnerability affects the DFServ.exe file. An attacker with local user privileges could exploit this vulnerability to replace the legitimate DFServ.exe...

Malicious code in jaas-jwt (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9e138921f13c1e6284e20c35908236f156dedf323860b924ccdfda713eb03b8a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...