30 matches found
MAL-2025-82752 Malicious code in zaki-rojak51-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa377e5c8a32efd4b4eac12c84e0af2ffc9c1f8080fc43fecf35ef8c5a862c43 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-75740 Malicious code in tomi-tapai3-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e5fc5da9066741998d6c7f7d6020ef3d50b58fbd4ecb5f8bb458d1b16db0a02b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in kurniawan-ketan6-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c5becd669f4aab32043c43fb590726cc8482df58459f2374957ab4652ff719cb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in indah-menjes11-remi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f133ca613e3722f329038bdff1c49116351376fbce57fbdf481a59b2ee89c79 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
CVE-2021-1083
NVIDIA vGPU software contains a vulnerability in the guest kernel mode driver and Virtual GPU Manager vGPU plugin, in which an input length is not validated, which may lead to information disclosure, tampering of data, or denial of service. This affects vGPU version 12.x prior to 12.2 and version...
PT-2025-1569 · Nvidia · Cuml +2
Name of the Vulnerable Software and Affected Versions: NVIDIA RAPIDS affected versions not specified Description: The issue is related to a deserialization of untrusted data in cuDF and cuML, which could lead to code execution, data tampering, denial of service, and information disclosure...
UBUNTU-CVE-2024-40638
GLPI is a free asset and IT management software package. An authenticated user can exploit multiple SQL injection vulnerabilities. One of them can be used to alter another user account data and take control of it. Upgrade to 10.0.17...
CVE-2023-44298
Dell PowerEdge platforms 16G Intel E5 BIOS and Dell Precision BIOS, version 1.4.4, contain active debug code security vulnerability. An unauthenticated physical attacker could potentially exploit this vulnerability, leading to information tampering, code execution, denial of service...
Apache Superset 安全漏洞
Apache Superset is a data visualization and data exploration platform from the Apache USA Foundation. An authorization issue vulnerability exists in Apache Superset versions prior to 2.1.2 that stems from the presence of incorrect authorization checks. An attacker could exploit this vulnerability...
Huawei ELLE-AL00B Buffer Overflow Vulnerability
The Huawei ELLE-AL00B is a smartphone from the Chinese company Huawei Huawei. A buffer overflow vulnerability exists in versions prior to Huawei ELLE-AL00B 9.1.0.222 C00E220R2P1, which can be exploited by an attacker to cause an anomaly in the handset by intercepting and tampering with data over ...