Lucene search
+L

104 matches found

Positive Technologies
Positive Technologies
added 2026/03/05 12:0 a.m.11 views

PT-2026-23497

Incorrect Authorization vulnerability in hexpm hexpm/hexpm 'Elixir.HexpmWeb.API.OAuthController' module allows Privilege Escalation. An API key created with read-only permissions domain: "api", resource: "read" can be escalated to full write access under specific conditions. When exchanging a...

7CVSS6AI score0.00323EPSS
Exploits0References3
HackRead
HackRead
added 2026/01/29 3:0 p.m.8 views

This startup aims to solve crypto’s broken key management problem

Crypto security firm Sodot launches Exchange API Vault to stop API key theft, securing billions in assets while supporting low latency, high frequency trading...

5.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/09 10:17 a.m.12 views

CVE-2019-18933

In Zulip Server versions from 1.7.0 to before 2.0.7, a bug in the new user signup process meant that users who registered their account using social authentication e.g., GitHub or Google SSO in an organization that also allows password authentication could have their personal API key stolen by an...

9.8CVSS7.2AI score0.01352EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/01/06 6:47 p.m.14 views

Malicious code in testingpy (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 577f9c1cdb7d3ef0e010cc9e292142a11f3a84a9f1ed42f238a920e7e9617b35 Package clones a legitimate library and adds a hidden code that downloads a malicious script. The script then downloads an archive with malicious executable in...

7.6AI score
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/01/03 10:4 p.m.13 views

CVE-2025-64122

Insufficiently Protected Credentials vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Signature Spoofing by Key Theft.This issue affects Multi-Stack Controller MSC: through 2.5.1...

7.2CVSS7AI score0.00081EPSS
Exploits0References1
EUVD
EUVD
added 2026/01/03 12:31 a.m.10 views

EUVD-2025-206224

Insufficiently Protected Credentials vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Signature Spoofing by Key Theft.This issue affects Multi-Stack Controller MSC: through 2.5.1...

9.3CVSS6.5AI score0.0036EPSS
Exploits0References2
OSV
OSV
added 2026/01/02 10:15 p.m.5 views

CVE-2025-64122

Insufficiently Protected Credentials vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Signature Spoofing by Key Theft.This issue affects Multi-Stack Controller MSC: through 2.5.1...

5.5CVSS5.8AI score0.0036EPSS
Exploits0References1
NVD
NVD
added 2026/01/02 10:15 p.m.8 views

CVE-2025-64122

Insufficiently Protected Credentials vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Signature Spoofing by Key Theft.This issue affects Multi-Stack Controller MSC: through 2.5.1...

7.2CVSS0.00081EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/02 9:39 p.m.34 views

CVE-2025-64122 Nuvation Energy Multi-Stack Controller Private Key Stored on Device

Insufficiently Protected Credentials vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Signature Spoofing by Key Theft.This issue affects Multi-Stack Controller MSC: through 2.5.1...

7.2CVSS0.00081EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/02 9:39 p.m.2 views

CVE-2025-64122 Nuvation Energy Multi-Stack Controller Private Key Stored on Device

Insufficiently Protected Credentials vulnerability in Nuvation Energy Multi-Stack Controller MSC allows Signature Spoofing by Key Theft.This issue affects Multi-Stack Controller MSC: through 2.5.1...

7.2CVSS6.6AI score0.00081EPSS
Exploits0References1
CVE
CVE
added 2026/01/02 9:39 p.m.28 views

CVE-2025-64122

CVE-2025-64122 describes an Insufficiently Protected Credentials vulnerability in the Nuvation Energy Multi-Stack Controller (MSC) that enables Signature Spoofing via Key Theft. Affected product: MSC versions up to and including 2.5.1. Root cause and impact are limited to credentials protection a...

7.2CVSS6.6AI score0.00081EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/02 12:0 a.m.11 views

PT-2026-1137

Name of the Vulnerable Software and Affected Versions Nuvation Energy Multi-Stack Controller MSC versions through 2.5.1 Description A weakness exists in the Nuvation Energy Multi-Stack Controller MSC that allows Signature Spoofing by Key Theft due to insufficiently protected credentials. This cou...

9.3CVSS6.6AI score0.0036EPSS
Exploits0References4
HackRead
HackRead
added 2025/11/19 11:59 a.m.16 views

Cline Bot AI Agent Vulnerable to Data Theft and Code Execution

Mindgard reveals 4 critical security flaws in the popular Cline Bot AI coding agent. Learn how prompt injection can hijack the tool for API key theft and remote code execution...

8.6AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.11 views

EUVD-2019-8606

Malware in sbrugna...

9.8CVSS9.2AI score0.01352EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-0123

Malicious code in bioql PyPI...

6.5CVSS6.3AI score0.00282EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-2115

Malicious code in bioql PyPI...

5.7CVSS5.9AI score0.00546EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-6993

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.0139EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-3112

Malicious code in bioql PyPI...

8.7CVSS6.4AI score0.0066EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2024-25271

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00647EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-2195

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00926EPSS
Exploits0References4
Rows per page
Query Builder