2883 matches found
EUVD-2017-0843
Malware in sbrugna...
EUVD-2017-0887
Malware in sbrugna...
EUVD-2018-18007
Malware in sbrugna...
PT-2025-41183
Name of the Vulnerable Software and Affected Versions Liferay Portal affected versions not specified REDAXO CMS affected versions not specified Description An information disclosure issue exists in Liferay Portal. A stored cross-site scripting issue exists in REDAXO CMS. Recommendations At the...
PT-2025-41182
🟠 ClearML Path Traversal Vulnerability CVE-2025-45403 Moderate https://t.co/AwPuWdbUZK...
RLSA-2025:9635 Moderate: weldr-client security update
Command line utility to control osbuild-composer Security Fixes: net/http: Request smuggling due to acceptance of invalid chunked data in net/http CVE-2025-22871 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer t...
RLSA-2025:7160 Moderate: bootc security update
Bootable container system Security Fixes: rust-openssl: rust openssl ssl::selectnextproto use after free CVE-2025-24898 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE pages listed in the References...
RLSA-2025:9106 Moderate: git-lfs security update
Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: net/http: Request smuggling due to acceptance of invalid chunked data in net/http CVE-2025-22871...
EUVD-2024-40396
Malicious code in bioql PyPI...
EUVD-2024-26211
Malicious code in bioql PyPI...
EUVD-2022-53121
Malicious code in bioql PyPI...
EUVD-2024-40406
Malicious code in bioql PyPI...
EUVD-2022-53128
Malicious code in bioql PyPI...
RLSA-2025:10677 Moderate: golang security update
The golang packages provide the Go programming language compiler. Security Fixes: net/http: Sensitive headers not cleared on cross-origin redirect in net/http CVE-2025-4673 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...
SUSE CVE-2025-9231
Issue summary: A timing side-channel which could potentially allow remote recovery of the private key exists in the SM2 algorithm implementation on 64 bit ARM platforms. Impact summary: A timing side-channel in SM2 signature computations on 64 bit ARM platforms could allow recovering the private...
AZL-68082 CVE-2025-9230 affecting package edk2 for versions less than 20240524git3e722403cd16-10
Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. Impact summary: This out-of-bounds read may trigger a crash which leads to Denial of Service for an application. The out-of-bounds write can cause a...
CVE-2025-9230
Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. Impact summary: This out-of-bounds read may trigger a crash which leads to Denial of Service for an application. The out-of-bounds write can cause a...
ALPINE-CVE-2025-9231
Issue summary: A timing side-channel which could potentially allow remote recovery of the private key exists in the SM2 algorithm implementation on 64 bit ARM platforms. Impact summary: A timing side-channel in SM2 signature computations on 64 bit ARM platforms could allow recovering the private...
CVE-2025-9231
CVE-2025-9231 describes a timing side-channel in OpenSSL’s SM2 implementation on 64-bit ARM, which could allow remote recovery of the private key under a custom provider scenario. OpenSSL TLS with SM2 certificates is not common, but the issue is considered Moderate. Connected advisories show affe...
CVE-2025-9231
Issue summary: A timing side-channel which could potentially allow remote recovery of the private key exists in the SM2 algorithm implementation on 64 bit ARM platforms. Impact summary: A timing side-channel in SM2 signature computations on 64 bit ARM platforms could allow recovering the private...