296 matches found
EUVD-2024-46086
Malicious code in bioql PyPI...
EUVD-2025-23411
Malicious code in bioql PyPI...
EUVD-2025-9896
Malicious code in bioql PyPI...
EUVD-2023-45265
Malicious code in bioql PyPI...
EUVD-2021-34083
Malicious code in bioql PyPI...
EUVD-2025-7045
Malicious code in bioql PyPI...
EUVD-2024-54495
Malicious code in bioql PyPI...
EUVD-2025-6833
Malicious code in bioql PyPI...
EUVD-2022-39688
Malicious code in bioql PyPI...
EUVD-2022-38393
Malicious code in bioql PyPI...
EUVD-2024-3526
Malicious code in bioql PyPI...
EUVD-2022-7078
Malicious code in bioql PyPI...
EUVD-2023-2101
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2025-40779
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - If a DHCPv4 client sends a request with some specific options, and Kea fails to find an appropriate subnet for the client, the kea-dhcp4 process will abort with...
CBL Mariner 2.0 Security Update: xorg-x11-server / xorg-x11-server-Xwayland (CVE-2025-49180)
The version of xorg-x11-server / xorg-x11-server-Xwayland installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-49180 advisory. - A flaw was found in the RandR extension, where the...
CVE-2025-54796 Copyparty is vulnerable to Regex Denial of Service (ReDoS) attacks through "Recent Uploads" page
Copyparty is a portable file server. Versions prior to 1.18.9, the filter parameter for the "Recent Uploads" page allows arbitrary RegExes. If this feature is enabled which is the default, an attacker can craft a filter which deadlocks the server. This is fixed in version 1.18.9...
viewvc -- Arbitrary server filesystem content
cmpilato reports: The ViewVC standalone web server standalone.py is a script provided in the ViewVC distribution for the purposes of quickly testing a ViewVC configuration. This script can in particular configurations expose the contents of the host server's filesystem though a directory...
SUSE-SU-2025:02428-1 Security update for the Linux Kernel (Live Patch 48 for SLE 15 SP3)
This update for the Linux Kernel 5.3.18-15030059174 fixes several issues. The following security issues were fixed: - CVE-2024-53146: NFSD: Prevent a potential integer overflow bsc1234854. - CVE-2022-49465: blk-throttle: Set BIOTHROTTLED when bio has been throttled bsc1238920. - CVE-2024-53214:...
CVE-2025-6549
CVE-2025-6549 (Junos OS SRX, J-Web exposure) is an Incorrect Authorization vulnerability in the web server that can allow an unauthenticated, network-based attacker to reach the Juniper Web Device Manager (J-Web). It arises when Juniper Secure Connect (JSC) is enabled on specific interfaces or mu...
CVE-2025-6714
MongoDB Server's mongos component can become unresponsive to new connections due to incorrect handling of incomplete data. This affects MongoDB when configured with load balancer support. This issue affects MongoDB Server v6.0 prior to 6.0.23, MongoDB Server v7.0 prior to 7.0.20 and MongoDB Serve...