Malicious code in hytm-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cb22528f4b73bb053a055547c46308bd7c90ae86bd831c417e640a4204cd1ece Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-3742 Malicious code in hytm-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cb22528f4b73bb053a055547c46308bd7c90ae86bd831c417e640a4204cd1ece Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-1189 Malicious code in awesomeypescriptxoader (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0d5a948a553c5251cdff015a140d7b5bf901fdf5f4f2c15e1b12374ca9a8a707 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Hackers Using Bumblebee Loader to Compromise Active Directory Services

The malware loader known as Bumblebee is being increasingly co-opted by threat actors associated with BazarLoader, TrickBot, and IcedID in their campaigns to breach target networks for post-exploitation activities. "Bumblebee operators conduct intensive reconnaissance activities and redirect the...

UPX 安全漏洞

UPX is a portable and extensible executable compression program. A security vulnerability exists in UPX version 3.96, which stems from a Segmentaation error found in the invertptdynamic function of plxelf.cpp, where an attacker utilizes a crafted input file to allow invalid access to a memory...

vulkan bug fix and enhancement update

An update is available for shaderc, glslang, spirv-tools, vulkan-loader, vulkan-headers, vulkan-validation-layers, vulkan-tools. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

The vulnerability of the New Horizon Data Systems loader for Windows operating systems allows a hacker to circumvent existing security restrictions.

The vulnerability of the New Horizon Data Systems driver for Windows operating systems is related to security configuration errors. Exploiting this vulnerability could allow a hacker to circumvent existing security restrictions...

Malicious Package

Overview test-loader-utils is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package...

CERT/CC: CVE-2022-34301 Eurosoft Boot Loader Bypass

...

CVE-2022-34927

MilkyTracker v1.03.00 was discovered to contain a stack overflow via the component LoaderXM::load. This vulnerability is triggered when the program is supplied a crafted XM module file...

MilkyTracker 缓冲区错误漏洞

MilkyTracker is an application that plays MOD format files and arranges music. A security vulnerability exists in MilkyTracker v1.03.00, which originates when an attacker provides a crafted XM module file to the LoaderXM::load component, allowing the attacker to take control of the execution flow...

vulkan bug fix and enhancement update

An update is available for spirv-tools, vulkan-loader, vulkan-headers, vulkan-validation-layers, vulkan-tools. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Th...

The vulnerability of the Alpha7 PC Loader software arises from buffer overflows in the stack, allowing attackers to execute arbitrary code.

The vulnerability of the Alpha7 PC Loader software arises from buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code...

Gootkit Loader’s Updated Tactics and Fileless Delivery of Cobalt Strike

Gootkit has been known to use fileless techniques to drop Cobalt Strike and other malicious payloads. Insights from a recent attack reveal updates in its tactics...

Veritas NetBackup 安全漏洞

Veritas NetBackup is a storage service from Veritas, Inc. that is used to provide backup and recovery capabilities for enterprise environments. The software supports ransomware detection and backup protection of environmental data such as metadata and virtual environments. A security vulnerabilit...

The vulnerability of the njs_default_module_loader function in the njs interpreter of the nginx server allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the njsdefaultmoduleloader function /src/njs/src/njsmodule.c in the njs interpreter of the nginx server is caused by an overflow of the stack buffer. Exploiting this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and accessibility of...

CosmicStrand: the discovery of a sophisticated UEFI firmware rootkit

Introduction Rootkits are malware implants which burrow themselves in the deepest corners of the operating system. Although on paper they may seem attractive to attackers, creating them poses significant technical challenges and the slightest programming error has the potential to completely cras...

Malicious code in deere-ui-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7725207eb16ca91b143878f1ad8a3f812ddff6d027faf84aa0c9ce6b7424fa0a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-2408 Malicious code in deere-ui-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7725207eb16ca91b143878f1ad8a3f812ddff6d027faf84aa0c9ce6b7424fa0a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Remote Code Execution (RCE)

org.grails, grails-databinding is vulnerable to remote code execution. The vulnerability exists in the isOkToBind function of SimpleDataBinder.groovy, allowing an attacker to execute code by gaining access to the class loader...