116 matches found
MAL-2026-5640 Malicious code in ecto-corsair-whisper-6f3b9 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8695ea17273c804f1a58e6c0b877de280f7472622065964245deb85cc62dae20 The package declares a postinstall lifecycle hook postinstall.js that runs automatically on npm install. The script shells out via curl to the EC2...
Astra Linux – Vulnerability in librabbitmq
A vulnerability was discovered in the C AMQP client library also known as rabbitmq-c for RabbitMQ in versions up to 0.13.0. credentials can only be entered via the command line e.g., for amqp-publish or amqp-consume, and therefore they are visible to local attackers who can list processes along...
K000158931: BIG-IP Edge Client for Windows vulnerability CVE-2026-20730
Security Advisory Description A vulnerability exists in BIG-IP Edge Client and browser VPN clients on Windows that may allow attackers to gain access to sensitive information. CVE-2026-20730 Impact An attacker with local access could exploit this vulnerability to list processes and obtain session...
EUVD-2026-2776
MTPutty 1.0.1.21 contains a sensitive information disclosure vulnerability that allows local attackers to view SSH connection passwords through Windows PowerShell process listing. Attackers can run a PowerShell command to retrieve the full command line of MTPutty processes, exposing plaintext SSH...
CVE-2021-47759 MTPutty 1.0.1.21 - SSH Password Disclosure
MTPutty 1.0.1.21 contains a sensitive information disclosure vulnerability that allows local attackers to view SSH connection passwords through Windows PowerShell process listing. Attackers can run a PowerShell command to retrieve the full command line of MTPutty processes, exposing plaintext SSH...
CVE-2021-47759
MTPutty 1.0.1.21 contains a sensitive information disclosure vulnerability that allows local attackers to view SSH connection passwords through Windows PowerShell process listing. Attackers can run a PowerShell command to retrieve the full command line of MTPutty processes, exposing plaintext SSH...
PT-2026-3035
MTPutty 1.0.1.21 contains a sensitive information disclosure vulnerability that allows local attackers to view SSH connection passwords through Windows PowerShell process listing. Attackers can run a PowerShell command to retrieve the full command line of MTPutty processes, exposing plaintext SSH...
CVE-2023-25722
A credential-leak issue was discovered in related Veracode products before 2023-03-27. Veracode Scan Jenkins Plugin before 23.3.19.0, when configured for remote agent jobs, invokes the Veracode Java API Wrapper in a manner that allows local users with OS-level access of the Jenkins remote to...
CVE-2018-25146 Microhard Systems IPn4G 1.1.0 Service Control Denial of Service
Microhard Systems IPn4G 1.1.0 contains an undocumented vulnerability that allows authenticated attackers to list and manipulate running system processes. Attackers can send arbitrary signals to kill background processes and system services through a hidden feature, potentially causing service...
CVE-2018-25146 Microhard Systems IPn4G 1.1.0 Service Control Denial of Service
Microhard Systems IPn4G 1.1.0 contains an undocumented vulnerability that allows authenticated attackers to list and manipulate running system processes. Attackers can send arbitrary signals to kill background processes and system services through a hidden feature, potentially causing service...
EUVD-2019-4818
Malware in sbrugna...
EUVD-2015-0260
Malware in sbrugna...
EUVD-2015-0174
Malware in sbrugna...
EUVD-2010-0156
Malware in sbrugna...
EUVD-2003-1369
Malware in sbrugna...
EUVD-2018-0236
Malware in sbrugna...
EUVD-2013-0032
Malware in sbrugna...
EUVD-2014-8765
Malware in sbrugna...
EUVD-2022-4870
Malicious code in bioql PyPI...
EUVD-2022-2578
Malicious code in bioql PyPI...