2697 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-31212
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in dbus-broker before 31. It depends on c-uitl/c-shquote to parse the DBus service's Exec line. c-shquote contains a stack-based buffer...
Linux Distros Unpatched Vulnerability : CVE-2020-24361
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SNMPTT before 1.4.2 allows attackers to execute shell code via EXEC, PREXEC, or unknowntrapexec. CVE-2020-24361 Note that Nessus relies on the presence of the...
Linux Distros Unpatched Vulnerability : CVE-2022-1106
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - use after free in mrbvmexec in GitHub repository mruby/mruby prior to 3.2. CVE-2022-1106 Note that Nessus relies on the presence of the package as reported by t...
Picklescan missing detection when calling pytorch function torch.jit.unsupported_tensor_ops.execWrapper
Summary Using torch.jit.unsupportedtensorops.execWrapper function, which is a pytorch library function to execute remote pickle file. Details The attack payload executes in the following steps: First, the attacker craft the payload by calling to torch.jit.unsupportedtensorops.execWrapper function...
CVE-2011-10028
The RealNetworks RealArcade platform includes an ActiveX control InstallerDlg.dll, version 2.6.0.445 that exposes a method named Exec via the StubbyUtil.ProcessMgr COM object. This method allows remote attackers to execute arbitrary commands on a victim's Windows machine without proper validation...
CVE-2010-20059 FreeNAS < 0.7.2 rev 5543 exec_raw.php Arbitrary Command Execution
FreeNAS 0.7.2 prior to revision 5543 includes an unauthenticated command‐execution backdoor in its web interface. The execraw.php script exposes a cmd parameter that is passed directly to the underlying shell without sanitation...
PT-2025-34109 · Undefined · Undefined
The RealNetworks RealArcade platform includes an ActiveX control InstallerDlg.dll, version 2.6.0.445 that exposes a method named Exec via the StubbyUtil.ProcessMgr COM object. This method allows remote attackers to execute arbitrary commands on a victim's Windows machine without proper validation...
Linux Distros Unpatched Vulnerability : CVE-2023-39593
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insecure permissions in the sysexec function of MariaDB v10.5 allows authenticated attackers to execute arbitrary commands with elevated privileges. NOTE: this ...
os/exec: Unexpected paths returned from LookPath in os/exec
A path handling flaw has been discovered in the os/exec go package. If the PATH environment variable contains paths which are executables rather than just directories, passing certain strings to LookPath "", ".", and "..", can result in the binaries listed in the PATH being unexpectedly returned...
os/exec: Unexpected paths returned from LookPath in os/exec
A path handling flaw has been discovered in the os/exec go package. If the PATH environment variable contains paths which are executables rather than just directories, passing certain strings to LookPath "", ".", and "..", can result in the binaries listed in the PATH being unexpectedly returned...
Linux Distros Unpatched Vulnerability : CVE-2018-12034
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In YARA 3.7.1 and prior, parsing a specially crafted compiled rule file can cause an out of bounds read vulnerability in yrexecutecode in libyara/exec.c...
MAL-2025-19661 Malicious code in enif-version-exec-oauth (npm)
The package enif-version-exec-oauth was found to contain malicious code...
Malicious code in bpmn-exec (npm)
The package bpmn-exec was found to contain malicious code...
Malicious code in bunyan-exec-bootstrap-cz-conventional-changelog (npm)
The package bunyan-exec-bootstrap-cz-conventional-changelog was found to contain malicious code...
Malicious code in elara-eventhoriz-nightwatch-exec (npm)
The package elara-eventhoriz-nightwatch-exec was found to contain malicious code...
Malicious code in exec-concurrently-run-script-pm2 (npm)
The package exec-concurrently-run-script-pm2 was found to contain malicious code...
Malicious code in exec-less-request-cosmicweb (npm)
The package exec-less-request-cosmicweb was found to contain malicious code...
Malicious code in exec-mineralogy-command-nightwatch (npm)
The package exec-mineralogy-command-nightwatch was found to contain malicious code...
Malicious code in exec-thuban-australis-slidev (npm)
The package exec-thuban-australis-slidev was found to contain malicious code...
Malicious code in gacrux-iota-exec-shelljs (npm)
The package gacrux-iota-exec-shelljs was found to contain malicious code...