Lucene search
K

143 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-0797

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00633EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2017-9274

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A shell command injection in the obs-service-sourcevalidator before 0.7 could be used to execute code as the packager when checking RPM SPEC files with specific...

9.3CVSS7.8AI score0.02326EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.2 views

Malicious code in @zalastax/nolb-packager (npm)

The package @zalastax/nolb-packager was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.0 views

MAL-2025-12917 Malicious code in @zalastax/nolb-packager (npm)

The package @zalastax/nolb-packager was found to contain malicious code...

7.2AI score
Exploits0
vulnersOsv
vulnersOsv
added 2025/07/16 12:30 p.m.11 views

org.glassfish.main.distributions:glassfish (>=4.0 <=4.0-b90), org.glassfish.main.distributions:web (>=4.0 <=4.0-b90) +4 more potentially affected by CVE-2024-10032 via org.glassfish.main.admingui:console-cluster-plugin (>=4.0 <=7.0.25)

org.glassfish.main.admingui:console-cluster-plugin MAVEN version =4.0, =4.0, =4.0, =6.2.5, =4.1, =4.1, =4.0, =5.0 Source cves: CVE-2024-10032 Source advisory: OSV:GHSA-62G9-99M7-W8WV...

6.1CVSS5.8AI score0.00205EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 3:44 a.m.6 views

CVE-2023-30759

The driver installation package created by Printer Driver Packager NX v1.0.02 to v1.1.25 fails to detect its modification and may spawn an unexpected process with the administrative privilege. If a non-administrative user modifies the driver installation package and runs it on the target PC, an...

8.4CVSS7AI score0.00144EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/03/03 5:21 p.m.4 views

Malicious code in timify-packager (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 440654aa8c74a2e41a533db2f19a6979cd5863485d40295a5d007fec08638c6d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSV
added 2025/03/03 5:21 p.m.5 views

MAL-2025-2015 Malicious code in timify-packager (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 440654aa8c74a2e41a533db2f19a6979cd5863485d40295a5d007fec08638c6d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7.2AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 7:58 a.m.7 views

CVE-2024-29900

Electron Packager bundles Electron-based application source code with a renamed Electron executable and supporting files into folders ready for distribution. A random segment of 1-10kb of Node.js heap memory allocated either side of a known buffer will be leaked into the final executable. This...

7.5CVSS6.8AI score0.00633EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/12/16 10:40 a.m.5 views

Malicious code in clean-packager (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 262c927312d80c4f09dc74bcc93a7036c67a0e3c831d802ce8cbebc21b37e4b5 During installation, the package collects quite extensive information about the host and has no other purpose. To avoid detection, the real code is put in a ZI...

7.4AI score
Exploits0References1
OSV
OSV
added 2024/12/16 10:40 a.m.7 views

MAL-2025-907 Malicious code in clean-packager (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 262c927312d80c4f09dc74bcc93a7036c67a0e3c831d802ce8cbebc21b37e4b5 During installation, the package collects quite extensive information about the host and has no other purpose. To avoid detection, the real code is put in a ZI...

7.3AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 12:44 p.m.1 views

Malicious code in grunt-frontend-packager (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSV
OSV
added 2024/06/25 12:44 p.m.5 views

MAL-2024-2441 Malicious code in grunt-frontend-packager (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
OSV
OSV
added 2024/03/29 8:16 p.m.14 views

GHSA-34H3-8MW4-QW57 @electron/packager's build process memory potentially leaked into final executable

Impact A random segment of 1-10kb of Node.js heap memory allocated either side of a known buffer will be leaked into the final executable. This memory could contain sensitive information such as environment variables, secrets files, etc. Patches This issue is patched in 18.3.1 Workarounds No...

7.5CVSS7.3AI score0.00633EPSS
Exploits0References4
NVD
NVD
added 2024/03/29 4:15 p.m.50 views

CVE-2024-29900

Electron Packager bundles Electron-based application source code with a renamed Electron executable and supporting files into folders ready for distribution. A random segment of 1-10kb of Node.js heap memory allocated either side of a known buffer will be leaked into the final executable. This...

7.5CVSS7.5AI score0.00633EPSS
Exploits0References2
OSV
OSV
added 2024/03/29 3:15 p.m.33 views

CVE-2024-29900 @electron/packager's build process memory potentially leaked into final executable

Electron Packager bundles Electron-based application source code with a renamed Electron executable and supporting files into folders ready for distribution. A random segment of 1-10kb of Node.js heap memory allocated either side of a known buffer will be leaked into the final executable. This...

7.5CVSS7.5AI score0.00633EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/03/29 3:15 p.m.41 views

CVE-2024-29900 @electron/packager's build process memory potentially leaked into final executable

Electron Packager bundles Electron-based application source code with a renamed Electron executable and supporting files into folders ready for distribution. A random segment of 1-10kb of Node.js heap memory allocated either side of a known buffer will be leaked into the final executable. This...

7.5CVSS7.7AI score0.00633EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/03/29 3:15 p.m.12 views

CVE-2024-29900 @electron/packager's build process memory potentially leaked into final executable

Electron Packager bundles Electron-based application source code with a renamed Electron executable and supporting files into folders ready for distribution. A random segment of 1-10kb of Node.js heap memory allocated either side of a known buffer will be leaked into the final executable. This...

7.5CVSS6.8AI score0.00633EPSS
Exploits0References2
CVE
CVE
added 2024/03/29 3:15 p.m.68 views

CVE-2024-29900

The CVE-2024-29900 entry concerns the Electron Packager project. Affected component: the bundling/packaging process used to create distributable Electron apps, specifically within @electron/packager. Root cause: a memory leak where a random segment of ~1–10 kB of Node.js heap memory allocated on ...

7.5CVSS7.4AI score0.00633EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/03/29 12:0 a.m.6 views

Electron Packager 安全漏洞

Electron is a personal developer of a user to write cross-platform desktop application JavaScript framework. The framework is based on nodejs and Chromium and enables the writing of cross-platform desktop applications using HTML and CSS. A security vulnerability exists in Electron Packager versio...

7.5CVSS7.4AI score0.00633EPSS
Exploits0References3
Rows per page
Query Builder