RHEL 9 : open-vm-tools (RHSA-2025:17452)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:17452 advisory. The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414577)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414577 advisory. A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB virtual machine control block provided by t...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414651)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414651 advisory. An issue was discovered in Linux: KVM through Improper handling of VMIO|VMPFNMAP vmas in KVM can bypass RO checks and can lead to pages being freed while still...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986409)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986409 advisory. In the Linux kernel, the following vulnerability has been resolved: powerpc/64s: Fix crashes when toggling entry flush barrier The entry flush mitigation can be...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414589)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414589 advisory. A flaw was found in the Linux kernel in versions before 5.12. The value of internal.ndata, in the KVM API, is mapped to an array index, which can be updated by a use...

RHEL 8 : open-vm-tools (RHSA-2025:17509)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:17509 advisory. The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987286)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987286 advisory. In the Linux kernel, the following vulnerability has been resolved: ARM: davinci: da850-evm: Avoid NULL pointer dereference With newer versions of GCC, there is a...

PT-2025-40992

Name of the Vulnerable Software and Affected Versions Time Machine affected versions not specified Description A path traversal issue exists in the Time Machine functionality because of inadequate input validation of two parameters. An authenticated user with limited privileges can potentially...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414492)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414492 advisory. A flaw was found in KVM. When updating a guest's page table entry, vmpgoff was improperly used as the offset to get the page's pfn. As vaddr and vmpgoff are...

RHEL 8 : open-vm-tools (RHSA-2025:17511)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:17511 advisory. The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization...

How we trained an ML model to detect DLL hijacking

DLL hijacking is a common technique in which attackers replace a library called by a legitimate process with a malicious one. It is used by both creators of mass-impact malware, like stealers and banking Trojans, and by APT and cybercrime groups behind targeted attacks. In recent years, the numbe...

Detecting DLL hijacking with machine learning: real-world cases

Introduction Our colleagues from the AI expertise center recently developed a machine-learning model that detects DLL-hijacking attacks. We then integrated this model into the Kaspersky Unified Monitoring and Analysis Platform SIEM system. In a separate article, our colleagues shared how the mode...

RLSA-2025:12187 Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Large branch table could lead to truncated instruction CVE-2025-8028 firefox: thunderbird: Memory safety bugs CVE-2025-8035 firefox: thunderbird: Incorrect URL stripping in CSP reports CVE-2025-80...

RLSA-2025:6993 Moderate: openssh security update

OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fixes: openssh: Machine-in-the-middle attack if VerifyHostKeyDNS is enabled CVE-2025-26465 For more...

Pilot Contamination Attacks Detection with Machine Learning for Multi-User Massive MIMO

Massive multiple-input multiple-output MMIMO is essential to modern wireless communication systems, like 5G and 6G, but it is vulnerable to active eavesdropping attacks. One type of such attack is the pilot contamination attack PCA, where a malicious user copies pilot signals from an authentic us...

EUVD-2024-0182

Malicious code in bioql PyPI...

EUVD-2022-0318

Malicious code in bioql PyPI...

EUVD-2023-41185

Malicious code in bioql PyPI...

EUVD-2021-6571

Malicious code in bioql PyPI...

EUVD-2022-6837

Malicious code in bioql PyPI...