15 matches found
PT-2026-44410
When Calico is configured with the Azure IPAM plugin, the Calico CNI binary mutates the incoming CNI configuration to attach subnet information before delegating to the IPAM plugin. After mutating, the Azure IPAM helper logs the entire unmarshaled configuration map stdinData at INFO level to...
CVE-2026-45371
SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, SiYuan publish-mode Reader can mutate Conf and SQL index via 8 ungated APIs. POST /api/graph/getGraph, POST /api/graph/getLocalGraph, POST /api/sync/setSyncInterval, POST /api/storage/updateRecentDocViewTime, POST...
CVE-2026-42433
OpenClaw before 2026.4.10 contains an authorization bypass vulnerability allowing operator.write message-tool paths to access Matrix profile persistence requiring admin-level authority. Attackers can exploit insufficient access controls to mutate persistent profile configuration through non-owner...
BIT-RCLONE-2026-41176 Rclone: Unauthenticated options/set allows runtime auth bypass, leading to sensitive operations and command execution
Rclone is a command-line program to sync files and directories to and from different cloud storage providers. The RC endpoint options/set is exposed without AuthRequired: true, but it can mutate global runtime configuration, including the RC option block itself. Starting in version 1.45.0 and pri...
crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security TLS session resumption when certificate authority CA settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing ...
CVE-2025-68121 Unexpected session resumption in crypto/tls
During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed handshake, the resumed handshake may succeed when it should have failed. This may happen when a user calls Config.Clone and mutates the...
Malicious code in item-at-labieagyeyoka (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 07c42678231158933a01b86a9c14491f5c68ed58c8190444c13145a064a39ce2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-155077 Malicious code in fini-savio-lisa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 41159fafa0c9f93712093609d10a65718e8d0aa07f7c6805a3ab4a0d8a59edc4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-139399 Malicious code in antares-config-mutation-jekyll (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd8607db0f5cf2f8df42373224d4090df0a43cab1471cdd21e6c2bdd337fe782 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-137867 Malicious code in vina-tomat80-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec2719f567e2d35367b32bfdc421ac684e7ba6a8dcec70986b25070acd7d99b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in eka-lutis7-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8818813423499766961104cca2e3e4612aa51ad3a4b75ce965694acbc1a008f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in printed_damselfly_0xrequest (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c10abf6fbbda61bb5ff3d8ef196fa4541be8de71638d8acb8045c2babaf4407 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-93213 Malicious code in amateur_carp_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90b9b6413c748b3558dd07a6830fbd00cf4c3d5b8a03410320caaae9eab4e9f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-94031 Malicious code in diplomatic_quail_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 267977ceea1ea234c5c8b8d123596e66ca0c766b841ede86023bc1dfed7891e7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in rude-brown-giraffe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 474b2e2f1329ddf5df1564ddd561454e5c86fff96a87098c4dffc880ecef285d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...