Lucene search
K

556 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2024/07/04 5:10 a.m.3 views

Malicious code in @zitterorg/placeat-nemo (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d530c8423e4aaf2b74b746404a5667c393703ad6c4c4f20762badfbe9ab64269 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/07/04 5:10 a.m.2 views

Malicious code in @zitterorg/nemo-distinctio (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1bb53da9b0e4f4835fd7e784ca3721e5e63d4194a150bb48d3ff7765638de927 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2024/06/15 12:0 a.m.3 views

OPENSUSE-SU-2024:12898-1 nemo-extension-warpinator-1.6.1-1.1 on GA media

These are all security issues fixed in the nemo-extension-warpinator-1.6.1-1.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS7AI score0.01238EPSS
Exploits1References1
OSV
OSV
added 2024/06/03 6:43 p.m.4 views

MAL-2024-1419 Malicious code in @juiggitea/cumque-nemo-quod (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a49efbe4e4279004e06685e2e27c50cf89e331267488d97cd6b492fa39fcca99 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
NVD
NVD
added 2024/04/05 7:15 p.m.12 views

CVE-2024-0081

NVIDIA NeMo framework for Ubuntu contains a vulnerability in tools/asrwebapp where an attacker may cause an allocation of resources without limits or throttling. A successful exploit of this vulnerability may lead to a server-side denial of service...

8.6CVSS8.4AI score0.00611EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2024/04/05 7:15 p.m.3 views

nemo-tts (=0.9.0) potentially affected by CVE-2024-0081 via nemo-asr (=0.9.0)

nemo-asr PYPI version =0.9.0 is affected by a known vulnerability. The following packages have a transitive dependency on nemo-asr and may be impacted: - nemo-tts =0.9.0 Source cves: CVE-2024-0081 Source advisory: OSV:PYSEC-2024-289...

8.6CVSS5.4AI score0.00611EPSS
Exploits0
PyPA
PyPA
added 2024/04/05 7:15 p.m.9 views

PYSEC-2024-289

NVIDIA NeMo framework for Ubuntu contains a vulnerability in tools/asrwebapp where an attacker may cause an allocation of resources without limits or throttling. A successful exploit of this vulnerability may lead to a server-side denial of service...

8.6CVSS5.8AI score0.00611EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/04/05 7:15 p.m.4 views

CVE-2024-0081

NVIDIA NeMo framework for Ubuntu contains a vulnerability in tools/asrwebapp where an attacker may cause an allocation of resources without limits or throttling. A successful exploit of this vulnerability may lead to a server-side denial of service...

7.5CVSS6.8AI score
Exploits0References1
OSV
OSV
added 2024/04/05 7:15 p.m.11 views

PYSEC-2024-289

NVIDIA NeMo framework for Ubuntu contains a vulnerability in tools/asrwebapp where an attacker may cause an allocation of resources without limits or throttling. A successful exploit of this vulnerability may lead to a server-side denial of service...

7.5CVSS5.8AI score0.00611EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/05 6:13 p.m.10 views

CVE-2024-0081

NVIDIA NeMo framework for Ubuntu contains a vulnerability in tools/asrwebapp where an attacker may cause an allocation of resources without limits or throttling. A successful exploit of this vulnerability may lead to a server-side denial of service...

8.6CVSS6.8AI score0.00611EPSS
Exploits0References1
CVE
CVE
added 2024/04/05 6:13 p.m.51 views

CVE-2024-0081

CVE-2024-0081 affects NVIDIA NeMo framework for Ubuntu, specifically the tools/asr_webapp component. The root cause is an improper/resource-allocation control that allows an attacker to cause unbounded allocation of resources, leading to server-side denial of service. Multiple connected sources c...

8.6CVSS6.8AI score0.00611EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/04/05 6:13 p.m.15 views

CVE-2024-0081

NVIDIA NeMo framework for Ubuntu contains a vulnerability in tools/asrwebapp where an attacker may cause an allocation of resources without limits or throttling. A successful exploit of this vulnerability may lead to a server-side denial of service...

8.6CVSS8.6AI score0.00611EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/05 12:0 a.m.6 views

NVIDIA NeMo 安全漏洞

NVIDIA NeMo is a toolkit for building new state-of-the-art conversational Ai models from NVIDIA. A security vulnerability exists in NVIDIA NeMo that stems from an improper allocation of resources, which can lead to a denial of service on the system...

8.6CVSS6.5AI score0.00611EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/04/05 12:0 a.m.7 views

PT-2024-15336 · Nvidia · Nvidia Nemo

Name of the Vulnerable Software and Affected Versions: NVIDIA NeMo framework for Ubuntu affected versions not specified Description: The NVIDIA NeMo framework for Ubuntu contains a vulnerability in tools/asr webapp where an attacker may cause an allocation of resources without limits or throttlin...

8.6CVSS6.7AI score0.00611EPSS
Exploits0References5
Veracode
Veracode
added 2023/02/03 2:42 a.m.24 views

Command Injection

nemo-appium is vulnerable to Command Injection. The vulnerability exists due to improper input sanitization in the module.exports.setup function of index.js, allowing an attacker to inject and execute malicious commands. To successfully exploit this vulnerability, appium-running 0.1.3 must be...

9.8CVSS9AI score0.02774EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2023/01/31 6:30 a.m.20 views

GHSA-C6RX-GXQV-VR5J nemo-appium vulnerable to OS Command Injection

Versions of the package nemo-appium before 0.0.9 are vulnerable to Command Injection due to improper input sanitization in the 'module.exports.setup' function. Note: In order to exploit this vulnerability appium-running 0.1.3 has to be installed as one of nemo-appium dependencies...

9.8CVSS8.7AI score0.02774EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2023/01/31 6:30 a.m.23 views

nemo-appium vulnerable to OS Command Injection

Versions of the package nemo-appium before 0.0.9 are vulnerable to Command Injection due to improper input sanitization in the 'module.exports.setup' function. Note: In order to exploit this vulnerability appium-running 0.1.3 has to be installed as one of nemo-appium dependencies...

9.8CVSS4.7AI score0.02774EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2023/01/31 5:15 a.m.17 views

CVE-2022-21129

Versions of the package nemo-appium before 0.0.9 are vulnerable to Command Injection due to improper input sanitization in the 'module.exports.setup' function. Note: In order to exploit this vulnerability appium-running 0.1.3 has to be installed as one of nemo-appium dependencies...

9.8CVSS7.1AI score
Exploits0References3
NVD
NVD
added 2023/01/31 5:15 a.m.18 views

CVE-2022-21129

Versions of the package nemo-appium before 0.0.9 are vulnerable to Command Injection due to improper input sanitization in the 'module.exports.setup' function. Note: In order to exploit this vulnerability appium-running 0.1.3 has to be installed as one of nemo-appium dependencies...

9.8CVSS8.2AI score0.02774EPSS
Exploits1References3
Prion
Prion
added 2023/01/31 5:15 a.m.17 views

Command injection

Versions of the package nemo-appium before 0.0.9 are vulnerable to Command Injection due to improper input sanitization in the 'module.exports.setup' function. Note: In order to exploit this vulnerability appium-running 0.1.3 has to be installed as one of nemo-appium dependencies...

7.5CVSS9.7AI score0.02774EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder