Lucene search
K

3 matches found

The Hacker News
The Hacker News
added 2023/11/03 6:3 a.m.94 views

48 Malicious npm Packages Found Deploying Reverse Shells on Developer Systems

A new set of 48 malicious npm packages have been discovered in the npm repository with capabilities to deploy a reverse shell on compromised systems. "These packages, deceptively named to appear legitimate, contained obfuscated JavaScript designed to initiate a reverse shell on package install,"...

7.1AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/07/20 12:0 a.m.4 views

The vulnerability of the SmmEntryPoint function in open-source development environments for UEFI EDK2 allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the SmmEntryPoint function in open-source development environments for UEFI EDK2 relates to writing beyond the buffer boundaries. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

10CVSS6.8AI score0.00971EPSS
Exploits0References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2022/11/22 12:0 a.m.5 views

The vulnerability of open-source development environments for UEFI EDK2, related to deficiencies in authentication procedures, allows attackers to gain access to confidential data.

The vulnerability of open-source development environments for UEFI EDK2 is related to deficiencies in authentication procedures. Exploiting this vulnerability allows a remote attacker to gain access to confidential data...

6.8CVSS6.7AI score0.01366EPSS
Exploits0References8Affected Software3
Rows per page
Query Builder