Lucene search
K

25 matches found

Snyk
Snyk
added 2026/06/06 9:0 p.m.9 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Shai-Hulud / Miasma software supply chain campaign, a large scale operation that has affected numerous packages across open source ecosystems. The malicio...

9.8CVSS5.7AI score
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/04/17 10:12 p.m.12 views

OpenClaw: Workspace provider auth choices could auto-enable untrusted provider plugins

Summary Workspace provider auth choices could auto-enable untrusted provider plugins. Affected Packages / Versions - Package: openclaw - Ecosystem: npm - Affected versions: = 2026.4.9 Impact Non-interactive onboarding could select a provider auth choice shadowed by an untrusted workspace plugin,...

8.8CVSS5.7AI score0.00381EPSS
Exploits0References6Affected Software1
RedHat Linux
RedHat Linux
added 2026/03/23 5:29 p.m.8 views

Important: Red Hat Security Advisory: Red Hat Hardened Images RPM Release

Red Hat Hardened Images RPM Release Red Hat Hardened Images RPM Release...

8.2CVSS6.5AI score0.0218EPSS
Exploits2References4
OSV
OSV
added 2025/11/11 8:11 p.m.4 views

MAL-2025-123552 Malicious code in theoretical_horse_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a10dd82fd3f56db830a6e929d284ad975dd4a605d4ebf338bfcd9a1e01bcf95 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/11 7:47 a.m.4 views

MAL-2025-112231 Malicious code in racial_turtle_azure-88 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12c1f16bc7a7baf79284744d7e22af19925bc788679de13b8dfb14f83e5c77cc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
Amazon
Amazon
added 2025/11/10 12:0 a.m.8 views

Important: kernel-livepatch-6.1.150-174.273

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net/sched: Fix backlog accounting in qdiscdequeueinternal CVE-2025-39677 In the Linux kernel, the following vulnerability has been resolved: dmaengine: qcom: bamdma: Fix DT error handling for num-channels/ees...

7.8CVSS7.8AI score0.00144EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/10/22 12:0 a.m.2 views

Photon OS 5.0: Linux PHSA-2025-5.0-0648

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0648. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

7.8CVSS7.4AI score0.00239EPSS
Exploits0References2
OSV
OSV
added 2025/10/13 12:0 a.m.3 views

OPENSUSE-SU-2025:15626-1 exim-4.98.2-4.1 on GA media

These are all security issues fixed in the exim-4.98.2-4.1 package on the GA media of openSUSE Tumbleweed...

6.9CVSS5.8AI score0.00157EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.5 views

Malicious code in release-it-exobiology-fork-aether (npm)

The package release-it-exobiology-fork-aether was found to contain malicious code...

7AI score
Exploits0
Photon
Photon
added 2025/07/08 12:0 a.m.6 views

Important Photon OS Security Update - PHSA-2025-5.0-0555

Updates of 'git' packages of Photon OS have been released...

8.6CVSS7.5AI score0.02775EPSS
Exploits9
Photon
Photon
added 2025/07/01 12:0 a.m.4 views

Low Photon OS Security Update - PHSA-2025-4.0-0826

Updates of 'spdlog' packages of Photon OS have been released...

4.8CVSS8.9AI score0.00202EPSS
Exploits1
Photon
Photon
added 2025/06/12 12:0 a.m.3 views

Important Photon OS Security Update - PHSA-2025-5.0-0534

Updates of 'python3-setuptools' packages of Photon OS have been released...

8.8CVSS10AI score0.01479EPSS
Exploits4
Photon
Photon
added 2025/03/26 12:0 a.m.8 views

Important Photon OS Security Update - PHSA-2025-5.0-0490

Updates of 'postgresql14', 'postgresql13', 'postgresql15', 'libxslt' packages of Photon OS have been released...

8.1CVSS7.2AI score0.89472EPSS
Exploits14
Photon
Photon
added 2025/03/24 12:0 a.m.16 views

Important Photon OS Security Update - PHSA-2025-5.0-0487

Updates of 'libarchive', 'kubernetes' packages of Photon OS have been released...

5.9AI score
Exploits0
Photon
Photon
added 2025/02/20 12:0 a.m.7 views

Important Photon OS Security Update - PHSA-2025-4.0-0758

Updates of 'libtasn1', 'openssl', 'emacs' packages of Photon OS have been released...

7.1CVSS6.4AI score0.00584EPSS
Exploits0
Photon
Photon
added 2025/02/07 12:0 a.m.8 views

Important Photon OS Security Update - PHSA-2025-4.0-0751

Updates of 'perl-Data-Validate-IP' packages of Photon OS have been released...

7.5CVSS10AI score0.02191EPSS
Exploits1
Photon
Photon
added 2025/01/29 12:0 a.m.5 views

Important Photon OS Security Update - PHSA-2025-4.0-0745

Updates of 'python-idna', 'git-lfs', 'python3-idna' packages of Photon OS have been released...

7.5CVSS6.9AI score0.01386EPSS
Exploits1
Oracle linux
Oracle linux
added 2024/09/04 12:0 a.m.365 views

libndp security update

1.2-10.0.1 - Increasing release number as per Oracle package release policy...

8.1CVSS6.7AI score0.01165EPSS
Exploits0
Amazon
Amazon
added 2024/01/08 12:0 a.m.9 views

Medium: ansible-core

Issue Overview: The upstream bug report describes this issue as follows: A flaw was found in Ansible, where a user's controller is vulnerable to template injection when internal templating operations may errantly remove the unsafe designation from template data. CVE-2023-5764 Affected Packages:...

7.8CVSS7AI score0.00539EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/04/27 12:0 a.m.12 views

Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2023-1649)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.55367EPSS
Exploits20References2
Rows per page
Query Builder