849 matches found
CVE-2025-13428
A vulnerability exists in the SecOps SOAR server. The custom integrations feature allowed an authenticated user with an "IDE role" to achieve Remote Code Execution RCE in the server. The flaw stemmed from weak validation of uploaded Python package code. An attacker could upload a package containi...
CVE-2025-13428 RCE in SecOps SOAR server via user-provided Python packages
A vulnerability exists in the SecOps SOAR server. The custom integrations feature allowed an authenticated user with an "IDE role" to achieve Remote Code Execution RCE in the server. The flaw stemmed from weak validation of uploaded Python package code. An attacker could upload a package containi...
CVE-2025-13428 RCE in SecOps SOAR server via user-provided Python packages
A vulnerability exists in the SecOps SOAR server. The custom integrations feature allowed an authenticated user with an "IDE role" to achieve Remote Code Execution RCE in the server. The flaw stemmed from weak validation of uploaded Python package code. An attacker could upload a package containi...
CVE-2025-13428
CVE-2025-13428 affects the SecOps SOAR server. The vulnerability arises from weak validation of uploaded Python package code in custom integrations, allowing an authenticated user with an IDE role to achieve Remote Code Execution (RCE) via a malicious setup.py during installation. Impact is serve...
Vulnerabilities identified in PCIe Integrity and Data Encryption (IDE) protocol specification
Overview PCI Express Integrity and Data Encryption PCIe IDE, introduced in the PCIe 6.0 standard, provides link-level encryption and integrity protection for data transferred across PCIe connections. Several issues were identified in the IDE specification that could allow an attacker with local...
PT-2025-50217
Name of the Vulnerable Software and Affected Versions PCI Express PCIe Integrity and Data Encryption IDE specification affected versions not specified Description The PCI Express PCIe Integrity and Data Encryption IDE specification contains insufficient guidance regarding Transaction Layer Packet...
KLA90816 ACE vulnerability in Microsoft Copilot Plugin
A remote code execution vulnerability was found in Microsoft Copilot Studio. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2025-64671 Related products GitHub-Copilot-Plugin CVE list CVE-2025-64671 critical KB list Solution Install necessary...
Researcher Uncovers 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE Attacks
Over 30 security vulnerabilities have been disclosed in various artificial intelligence AI-powered Integrated Development Environments IDEs that combine prompt injection primitives with legitimate features to achieve data exfiltration and remote code execution. The security shortcomings have been...
CVE-2025-63848
Stored cross site scripting xss vulnerability in SWISH prolog thru 2.2.0 allowing attackers to execute arbitrary code via crafted web IDE notebook...
EUVD-2025-198293
Stored cross site scripting xss vulnerability in SWISH prolog thru 2.2.0 allowing attackers to execute arbitrary code via crafted web IDE notebook...
MAL-2025-190598 Malicious code in @ra-ide/udt-frontend (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 43e7622a4fb5f78043c8f52ad78fb036d26fa8ae041f8d2d21f82d4620894e14 The package @ra-ide/udt-frontend was found to contain malicious code. Source: ossf-package-analysis...
EUVD-2025-198321
Malicious code in @ra-ide/udt-frontend npm...
Malicious code in @ra-ide/extension-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a7aa2bba6ddffad751c19fd8291861f53b9994814f0cecb8925b7c2d5c87ae5 The package @ra-ide/extension-ui was found to contain malicious code. Source: ossf-package-analysis...
MAL-2025-190591 Malicious code in @ra-ide/extension-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a7aa2bba6ddffad751c19fd8291861f53b9994814f0cecb8925b7c2d5c87ae5 The package @ra-ide/extension-ui was found to contain malicious code. Source: ossf-package-analysis...
EUVD-2025-198322
Malicious code in @ra-ide/extension-ui npm...
Malicious code in @ra-ide/system (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ce07a8994cd7d28965c3fdec8cba35203da851f19964d8ae6e2be5f754a8132 The package @ra-ide/system was found to contain malicious code. Source: ossf-package-analysis...
EUVD-2025-198323
Malicious code in @ra-ide/system npm...
MAL-2025-190596 Malicious code in @ra-ide/system (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ce07a8994cd7d28965c3fdec8cba35203da851f19964d8ae6e2be5f754a8132 The package @ra-ide/system was found to contain malicious code. Source: ossf-package-analysis...
MAL-2025-190593 Malicious code in @ra-ide/logix-frontend (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d0e9dbec30cd8b41d8e4b83527959c2b2e24abd51fcdd958e18ead57f3b4bf0 The package @ra-ide/logix-frontend was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in @ra-ide/logix-frontend (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d0e9dbec30cd8b41d8e4b83527959c2b2e24abd51fcdd958e18ead57f3b4bf0 The package @ra-ide/logix-frontend was found to contain malicious code. Source: ossf-package-analysis...