397 matches found
PT-2025-50979
Name of the Vulnerable Software and Affected Versions CISA Software Acquisition Guide Supplier Response Web Tool versions prior to 2025-12-11 Description The CISA Software Acquisition Guide Supplier Response Web Tool was susceptible to cross-site scripting through text fields. An attacker could...
Zoom Rooms Installed (macOS)
Binary data macoszoomroomsinstalled.nbin...
Smartbedded Meteobridge Web Detection
Binary data smartbeddedmeteobridgewebdetect.nbin...
Unraid Installed (Linux)
Binary data unraidnixinstalled.nbin...
Zoom Rooms Installed (Windows)
Binary data winzoomroomsinstalled.nbin...
JetBrains IntelliJ IDEA Plugins Installed (Windows)
Binary data jetbrainsintellijideapluginsenumwin.nbin...
Microsoft Windows 10 22H2 ESU Status Check
Binary data wmiwin1022h2esustatus.nbin...
Progress Telerik Document Processing Libraries Installed (Windows)
Binary data progresstelerikdocumentprocessinglibrarieswininstalled.nbin...
Photon OS 5.0: Linux PHSA-2025-5.0-0702
An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0702. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Gladinet Triofox Installed (Windows)
Binary data gladinettriofoxwininstalled.nbin...
(0Day) Digilent DASYLab DSB File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Digilent DASYLab. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DS...
CVE-2025-11918
Rockwell Automation Arena® suffers from a stack-based buffer overflow vulnerability. The specific flaw exists within the parsing of DOE files. Local attackers are able to exploit this issue to potentially execute arbitrary code on affected installations of Arena®. Exploiting the vulnerability...
Autodesk Installer Installed
Binary data autodeskinstallerinstalled.nbin...
Photon OS 4.0: Mc PHSA-2025-4.0-0902
An update of the mc package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0902. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid275319...
Photon OS 5.0: Vim PHSA-2025-5.0-0672
An update of the vim package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0672. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid27530...
MAL-2025-156609 Malicious code in inufgi-goa-jamufi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5949b8c5e7db9698c5c442aa992894c6e8a336d955593ddaf940e725367e9e4e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in okta-lupis76-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95e7cadc887c0d824e3a76de414c021f5dcc599bbedfeeea8203243234708f00 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-127412 Malicious code in informal_puma_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4387ff1a31187a1dd4943e2eb7c61f3df4e2b85b2f2a1d49617b0ffad7f16a02 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in relaxed_lamprey_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c41f0999be44cd85ab210e9515b5392afab6c3ee7b0fb315baac2293cbfcda80 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in delicious_rat_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fad8ec3c5a9733feb9d0402bbbae31d15cdbf513a7919ca838c60a56abcccc58 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...