237 matches found
EUVD-2019-7469
Malware in sbrugna...
EUVD-2021-2000
Malware in sbrugna...
EUVD-2010-0556
Malware in sbrugna...
EUVD-2014-2926
Malware in sbrugna...
EUVD-2019-5259
Malware in sbrugna...
EUVD-2016-7764
Malware in sbrugna...
EUVD-2013-5446
Malware in sbrugna...
EUVD-2024-52172
Malicious code in bioql PyPI...
EUVD-2025-20494
Malicious code in bioql PyPI...
EUVD-2024-19587
Malicious code in bioql PyPI...
CVE-2025-55049
CVE-2025-55049: Use of a default cryptographic key (CWE-1394) with a root cause of hard-coded/public key in affected components. Concrete detail in sources identifies Baicells NEUTRINO430 LTE base stations as affected; other entries confirm the vulnerability name. Exploitation status is not provi...
CVE-2025-9604
A vulnerability was identified in coze-studio up to 0.2.4. The impacted element is an unknown function of the file backend/domain/plugin/encrypt/aes.go. The manipulation of the argument AuthSecretKey/StateSecretKey/OAuthTokenSecretKey leads to use of hard-coded cryptographic key . It is possible ...
Medium: cni-plugins
Issue Overview: Calling Verify with a VerifyOptions.KeyUsages that contains ExtKeyUsageAny unintentionally disabledpolicy validation. This only affected certificate chains which contain policy graphs, which are rather uncommon. CVE-2025-22874 Proxy-Authorization and Proxy-Authenticate headers...
Linux Distros Unpatched Vulnerability : CVE-2024-45159
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Mbed TLS 3.x before 3.6.1. With TLS 1.3, when a server enables optional authentication of the client, if the client-provided...
Linux Distros Unpatched Vulnerability : CVE-2025-22874
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Calling Verify with a VerifyOptions.KeyUsages that contains ExtKeyUsageAny unintentionally disabledpolicy validation. This only affected certificate chains whic...
Medium: ecs-init
Issue Overview: Calling Verify with a VerifyOptions.KeyUsages that contains ExtKeyUsageAny unintentionally disabledpolicy validation. This only affected certificate chains which contain policy graphs, which are rather uncommon. CVE-2025-22874 Proxy-Authorization and Proxy-Authenticate headers...
dirty_sock
dirtysock: Linux Privilege Escalation via snapd In January 2019, current versions of Ubuntu Linux were found to be vulnerable to local privilege escalation due to a bug in the snapd API. This repository contains the original exploit POC, which is being made available for research and education. F...
Siemens SICAM TOOLBOX II Trust Management Issue Vulnerability
Siemens SICAM TOOLBOX II is an engineering software from Siemens, Germany. A trust management issue vulnerability exists in Siemens SICAM TOOLBOX II that stems from a failure to check the extended key usage attribute of a device certificate, which could be exploited by an attacker to cause a...
Usage of ExtKeyUsageAny disables policy validation in crypto/x509
...
Medium: runc
Issue Overview: Calling Verify with a VerifyOptions.KeyUsages that contains ExtKeyUsageAny unintentionally disabledpolicy validation. This only affected certificate chains which contain policy graphs, which are rather uncommon. CVE-2025-22874 Proxy-Authorization and Proxy-Authenticate headers...