48 matches found
CVE-2026-32146 Improper Path Validation in Git Dependency Handling Allows Arbitrary File System Modification
Improper path validation vulnerability in the Gleam compiler's handling of git dependencies allows arbitrary file system modification during dependency download. Dependency names from gleam.toml and manifest.toml are incorporated into filesystem paths without sufficient validation or confinement ...
EUVD-2026-21680
Improper path validation vulnerability in the Gleam compiler's handling of git dependencies allows arbitrary file system modification during dependency download. Dependency names from gleam.toml and manifest.toml are incorporated into filesystem paths without sufficient validation or confinement ...
CVE-2026-32146 Improper Path Validation in Git Dependency Handling Allows Arbitrary File System Modification
Improper path validation vulnerability in the Gleam compiler's handling of git dependencies allows arbitrary file system modification during dependency download. Dependency names from gleam.toml and manifest.toml are incorporated into filesystem paths without sufficient validation or confinement ...
CVE-2026-32146
CVE-2026-32146 is an improper path validation flaw in the Gleam compiler’s handling of git dependencies during dependency download. Attacker-controlled paths (via relative traversal like ../ or absolute paths) can target filesystem locations outside the intended dependency directory, enabling del...
AZL-77976 CVE-2026-24834 affecting package kata-containers 3.19.1.kata2-4
Kata Containers is an open source project focusing on a standard implementation of lightweight Virtual Machines VMs that perform like containers. In versions prior to 3.27.0, an issue in Kata with Cloud Hypervisor allows a user of the container to modify the file system used by the Guest micro VM...
CVE-2026-24834
CVE-2026-24834 affects Kata Containers before 3.27.0. A flaw in the interaction with Cloud Hypervisor allows a container user to modify the Guest micro VM’s filesystem, potentially achieving arbitrary code execution as root inside the VM. The host and other containers/VMs on the same host are not...
Light & Wonder Deck Mate 安全漏洞
Light & Wonder Deck Mate is an automated licensing device from Light & Wonder, UK. A security vulnerability exists in Light & Wonder Deck Mate that stems from a lack of secure boot chain validation and runtime integrity validation, which could allow a physically accessible attacker to modify or...
EUVD-2015-3795
Malware in sbrugna...
EUVD-2019-16177
Malware in sbrugna...
EUVD-2025-2017
Malicious code in bioql PyPI...
EUVD-2025-11287
Malicious code in bioql PyPI...
EUVD-2024-0280
Malicious code in bioql PyPI...
EUVD-2025-27626
Malicious code in bioql PyPI...
EUVD-2024-25076
Malicious code in bioql PyPI...
CVE-2025-43491
A vulnerability in the Poly Lens Desktop application running on the Windows platform might allow modifications to the filesystem, which might lead to SYSTEM level privileges being granted...
CVE-2025-43491
A vulnerability in the Poly Lens Desktop application running on the Windows platform might allow modifications to the filesystem, which might lead to SYSTEM level privileges being granted...
CVE-2025-43491
A vulnerability in the Poly Lens Desktop application running on the Windows platform might allow modifications to the filesystem, which might lead to SYSTEM level privileges being granted...
CVE-2025-43491 Poly Lens Desktop Application – Privilege Escalation
A vulnerability in the Poly Lens Desktop application running on the Windows platform might allow modifications to the filesystem, which might lead to SYSTEM level privileges being granted...
CVE-2025-43491
CVE-2025-43491 concerns HP Poly Lens Desktop on Windows, where a flaw may allow modifying the filesystem and could grant SYSTEM-level privileges. The available connected documents consistently describe a filesystem-modification path to privilege escalation but do not provide concrete exploit deta...
PT-2025-36958
Name of the Vulnerable Software and Affected Versions: Poly Lens Desktop affected versions not specified Description: A flaw in the Poly Lens Desktop application on Windows may permit filesystem modifications, potentially granting SYSTEM level privileges. Recommendations: At the moment, there is ...