954 matches found
CVE-2024-2659
A command injection vulnerability was identified in SMM/SMM2 and FPC that could allow an authenticated user with elevated privileges to execute system commands when performing a specific administrative function...
EUVD-2025-204483
Malicious code in yt-smm npm...
MAL-2025-192657 Malicious code in yt-smm (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3641ecf42237a55c9fb81c4368aa7b83a42d2110a64a733f45d27005cf38dc26 The package yt-smm was found to contain malicious code. Source: ghsa-malware b4d96978cd4e109ed8b360f551af24fd1621dd659f63a490c9de077b587f607b Any...
EUVD-2025-204486
Malicious code in smm-youtube npm...
Malicious code in yt-smm (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3641ecf42237a55c9fb81c4368aa7b83a42d2110a64a733f45d27005cf38dc26 The package yt-smm was found to contain malicious code. Source: ghsa-malware b4d96978cd4e109ed8b360f551af24fd1621dd659f63a490c9de077b587f607b Any...
Malicious code in smm-youtube (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4dd42b2e1f7dbb24d9031965f83d092b8bb933a52d57fd41846f2434b3ec007 The package smm-youtube was found to contain malicious code. Source: ghsa-malware df910dbfab34e87cf538e77e445f1e2d6add23671c18dd9ecead9e25f2aca789 An...
Malicious Package
Overview yt-smm is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...
MAL-2025-192639 Malicious code in smm-youtube (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4dd42b2e1f7dbb24d9031965f83d092b8bb933a52d57fd41846f2434b3ec007 The package smm-youtube was found to contain malicious code. Source: ghsa-malware df910dbfab34e87cf538e77e445f1e2d6add23671c18dd9ecead9e25f2aca789 An...
Insyde InsydeH2O 安全漏洞
Insyde InsydeH2O is a new EFI/UEFI specification from Insyde China. It is intended to replace the traditional BIOS Basic Input/Output System. A security vulnerability exists in Insyde InsydeH2O, which stems from unchecked output buffers and could lead to arbitrary code execution and SMM memory...
CVE-2025-35968
CVE-2025-35968 is an Intel Slim Bootloader UEFI firmware vulnerability described as a protection mechanism failure that could allow privilege escalation. The issue can be exploited by a local attacker with privileged access and high attack complexity, without user interaction, potentially impacti...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989806)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989806 advisory. In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Forcibly leave nested virt when SMM state is toggled Forcibly leave nested virtualizati...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988824)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988824 advisory. In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Immediately reset the MMU context when the SMM flag is cleared Immediately reset the MM...
EUVD-2018-7946
Malware in sbrugna...
EUVD-2020-5231
Malware in sbrugna...
EUVD-2020-29208
Malware in sbrugna...
EUVD-2020-26570
Malware in sbrugna...
EUVD-2020-19852
Malware in sbrugna...
EUVD-2018-7953
Malware in sbrugna...
EUVD-2021-13123
Malware in sbrugna...
EUVD-2019-15723
Malware in sbrugna...