677 matches found
EUVD-2021-12386
Malware in sbrugna...
EUVD-2017-5833
Malware in sbrugna...
EUVD-2020-23177
Malware in sbrugna...
EUVD-2022-28190
Malicious code in bioql PyPI...
EUVD-2022-28189
Malicious code in bioql PyPI...
EUVD-2023-47243
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2017-0535
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An information disclosure vulnerability in the HTC sound codec driver could enable a local malicious application to access data outside of its permission levels...
EulerOS 2.0 SP10 : screen (EulerOS-SA-2025-2113)
According to the versions of the screen package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : For a short time they PTY is set to mode 666, allowing any user on the system to connect to the screen session.CVE-2025-46802 A minor information...
SUSE CVE-2025-4598
A vulnerability was found in systemd-coredump. This flaw allows an attacker to force a SUID process to crash and replace it with a non-SUID binary to access the original's privileged process coredump, allowing the attacker to read sensitive data, such as /etc/shadow content, loaded by the origina...
AZL-66704 CVE-2025-4598 affecting package kernel for versions less than 5.15.186.1-1
A vulnerability was found in systemd-coredump. This flaw allows an attacker to force a SUID process to crash and replace it with a non-SUID binary to access the original's privileged process coredump, allowing the attacker to read sensitive data, such as /etc/shadow content, loaded by the origina...
GNU Screen 安全漏洞
Gnu Screen is a terminal multiplexing tool developed by the GNU project that allows users to create multiple virtual terminal sessions in the same physical terminal and supports session resumption, window switching and multi-user sharing. Gnu Screen suffers from a competitive condition...
CVE-2023-21361
In Bluetooth, there is a possibility of code-execution due to a use after free. This could lead to paired device escalation of privilege in the privileged Bluetooth process with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2021-25444
An IV reuse vulnerability in keymaster prior to SMR AUG-2021 Release 1 allows decryption of custom keyblob with privileged process...
CVE-2021-1027
In setTransactionState of SurfaceFlinger, there is possible arbitrary code execution in a privileged process due to improper casting. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
CVE-2021-25490
A keyblob downgrade attack in keymaster prior to SMR Oct-2021 Release 1 allows attacker to trigger IV reuse vulnerability with privileged process...
firefox: thunderbird: Privilege escalation in Firefox Updater
A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the...
Mozilla Thunderbird < 138.0
The version of Thunderbird installed on the remote Windows host is prior to 138.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-31 advisory. - Memory safety bugs present in Firefox 137, Thunderbird 137, Firefox ESR 128.9, and Thunderbird 128.9. Some of thes...
Linux Distros Unpatched Vulnerability : CVE-2024-45339
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When logs are written to a widely-writable directory the default, an unprivileged attacker may predict a privileged process's log file path and pre-create a...
CVE-2025-22225
VMware ESXi contains an arbitrary write vulnerability. A malicious actor with privileges within the VMX process may trigger an arbitrary kernel write leading to an escape of the sandbox...
Linux Distros Unpatched Vulnerability : CVE-2017-0627
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An information disclosure vulnerability in the kernel UVC driver could enable a local malicious application to access data outside of its permission levels. Thi...