Lucene search
+L

10 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-31323

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.00385EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/05/23 3:32 a.m.5 views

CVE-2023-27574

ShadowsocksX-NG 1.10.0 signs with com.apple.security.get-task-allow entitlements because of CODESIGNINGINJECTBASEENTITLEMENTS...

9.8CVSS6.9AI score0.00385EPSS
Exploits0References1
nvd
nvd
added 2023/03/03 10:15 p.m.26 views

CVE-2023-27574

ShadowsocksX-NG 1.10.0 signs with com.apple.security.get-task-allow entitlements because of CODESIGNINGINJECTBASEENTITLEMENTS...

9.8CVSS9.5AI score0.00385EPSS
Exploits0References2
prion
prion
added 2023/03/03 10:15 p.m.14 views

Code injection

ShadowsocksX-NG 1.10.0 signs with com.apple.security.get-task-allow entitlements because of CODESIGNINGINJECTBASEENTITLEMENTS...

7.5CVSS9.4AI score0.00385EPSS
Exploits0References2Affected Software1
cve
cve
added 2023/03/03 12:0 a.m.60 views

CVE-2023-27574

ShadowsocksX-NG 1.10.0 is affected by CVE-2023-27574 due to CODE_SIGNING_INJECT_BASE_ENTITLEMENTS that causes signing with com.apple.security.get-task-allow entitlements. The CVSSv3.1 base score is 9.8 (CRITICAL) with network attack vector, no user interaction, and impact to confidentiality, inte...

9.8CVSS9.4AI score0.00385EPSS
Exploits0References2Affected Software1
cnnvd
cnnvd
added 2023/03/03 12:0 a.m.5 views

ShadowsocksX-NG 安全漏洞

ShadowsocksX-NG is an open source encrypted transport protocol based on the Socks5 proxy by shadowsocks, which can also refer to various development packages that implement this protocol. A security vulnerability exists in ShadowsocksX-NG version 1.10.0, which stems from the use of...

9.8CVSS8.3AI score0.00385EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2023/03/03 12:0 a.m.4 views

CVE-2023-27574

ShadowsocksX-NG 1.10.0 signs with com.apple.security.get-task-allow entitlements because of CODESIGNINGINJECTBASEENTITLEMENTS...

7.2AI score0.00385EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2023/03/03 12:0 a.m.6 views

PT-2023-21217 · Unknown · Shadowsocksx-Ng

Name of the Vulnerable Software and Affected Versions: ShadowsocksX-NG version 1.10.0 Description: The issue arises from ShadowsocksX-NG 1.10.0 being signed with com.apple.security.get-task-allow entitlements due to CODE SIGNING INJECT BASE ENTITLEMENTS. Recommendations: For ShadowsocksX-NG versi...

9.8CVSS9.2AI score0.00385EPSS
Exploits0References6
osv
osv
added 2023/03/03 12:0 a.m.19 views

CVE-2023-27574

ShadowsocksX-NG 1.10.0 signs with com.apple.security.get-task-allow entitlements because of CODESIGNINGINJECTBASEENTITLEMENTS...

9.8CVSS7.2AI score0.00385EPSS
Exploits0References4
cvelist
cvelist
added 2023/03/03 12:0 a.m.31 views

CVE-2023-27574

ShadowsocksX-NG 1.10.0 signs with com.apple.security.get-task-allow entitlements because of CODESIGNINGINJECTBASEENTITLEMENTS...

9.7AI score0.00385EPSS
Exploits0References2
Rows per page
Query Builder