Lucene search
K

32 matches found

The Hacker News
The Hacker News
added 2025/11/04 10:49 a.m.5 views

Operation SkyCloak Deploys Tor-Enabled OpenSSH Backdoor Targeting Defense Sectors

Threat actors are leveraging weaponized attachments distributed via phishing emails to deliver malware likely targeting the defense sector in Russia and Belarus. According to multiple reports from Cyble and Seqrite Labs, the campaign is designed to deploy a persistent backdoor on compromised host...

7.5AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-0729

Malware in sbrugna...

7.5CVSS7.6AI score0.02613EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-3014

Malware in sbrugna...

7.5CVSS7.6AI score0.01161EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-0730

Malware in sbrugna...

7.5CVSS7.6AI score0.02176EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-23660

Malicious code in bioql PyPI...

8.7CVSS6.6AI score0.00322EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-38106

Malicious code in bioql PyPI...

5.9CVSS6.1AI score0.00461EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/08/08 12:29 a.m.16 views

CVE-2025-54872

onion-site-template is a complete, scalable tor hidden service self-hosting sample. Versions which include commit 3196bd89 contain a baked-in tor image if the secrets were copied from an existing onion domain. A website could be compromised if a user shared the baked-in image, or if someone were...

8.7CVSS6.3AI score0.00322EPSS
Exploits0References1
NVD
NVD
added 2025/08/06 12:15 a.m.7 views

CVE-2025-54872

onion-site-template is a complete, scalable tor hidden service self-hosting sample. Versions which include commit 3196bd89 contain a baked-in tor image if the secrets were copied from an existing onion domain. A website could be compromised if a user shared the baked-in image, or if someone were...

8.7CVSS0.00322EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/08/05 11:40 p.m.5 views

CVE-2025-54872 onion-site-template tor Secrets Baked Into Image

onion-site-template is a complete, scalable tor hidden service self-hosting sample. Versions which include commit 3196bd89 contain a baked-in tor image if the secrets were copied from an existing onion domain. A website could be compromised if a user shared the baked-in image, or if someone were...

8.7CVSS6.3AI score0.00322EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/08/05 11:40 p.m.10 views

CVE-2025-54872 onion-site-template tor Secrets Baked Into Image

onion-site-template is a complete, scalable tor hidden service self-hosting sample. Versions which include commit 3196bd89 contain a baked-in tor image if the secrets were copied from an existing onion domain. A website could be compromised if a user shared the baked-in image, or if someone were...

8.7CVSS0.00322EPSS
Exploits0References2
CVE
CVE
added 2025/08/05 11:40 p.m.19 views

CVE-2025-54872

The CVE-2025-54872 entry concerns onion-site-template, where versions including commit 3196bd89 embed a baked-in Tor image containing secrets copied from an onion domain. This creates a risk that a website could be compromised if the baked-in image is shared or if someone gains access to the user...

8.7CVSS6.4AI score0.00322EPSS
Exploits0References2
OSV
OSV
added 2025/08/05 11:40 p.m.9 views

CVE-2025-54872 onion-site-template tor Secrets Baked Into Image

onion-site-template is a complete, scalable tor hidden service self-hosting sample. Versions which include commit 3196bd89 contain a baked-in tor image if the secrets were copied from an existing onion domain. A website could be compromised if a user shared the baked-in image, or if someone were...

8.7CVSS6.7AI score0.00322EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/08/05 12:0 a.m.8 views

PT-2025-32004 · Unknown · Onion-Site-Template

Name of the Vulnerable Software and Affected Versions: onion-site-template versions including commit 3196bd89 Description: onion-site-template, a complete and scalable Tor hidden service self-hosting sample, contains a baked-in Tor image when secrets are copied from an existing onion domain. A...

8.7CVSS6.5AI score0.00322EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/23 2:1 a.m.11 views

CVE-2023-33982

Bramble Handshake Protocol BHP in Briar before 1.5.3 is not forward secure: eavesdroppers can decrypt network traffic between two accounts if they later compromise both accounts. NOTE: the eavesdropping is typically impractical because BHP runs over an encrypted session that uses the Tor hidden...

5.9CVSS6.9AI score0.00461EPSS
Exploits1References1
NVD
NVD
added 2023/05/24 6:15 p.m.18 views

CVE-2023-33982

Bramble Handshake Protocol BHP in Briar before 1.5.3 is not forward secure: eavesdroppers can decrypt network traffic between two accounts if they later compromise both accounts. NOTE: the eavesdropping is typically impractical because BHP runs over an encrypted session that uses the Tor hidden...

5.9CVSS5.8AI score0.00461EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/05/24 12:0 a.m.18 views

CVE-2023-33982

Bramble Handshake Protocol BHP in Briar before 1.5.3 is not forward secure: eavesdroppers can decrypt network traffic between two accounts if they later compromise both accounts. NOTE: the eavesdropping is typically impractical because BHP runs over an encrypted session that uses the Tor hidden...

6AI score0.00461EPSS
Exploits1References2
CVE
CVE
added 2023/05/24 12:0 a.m.52 views

CVE-2023-33982

Summary (CVE-2023-33982): Briar’s Bramble Handshake Protocol (BHP) in Briar versions prior to 1.5.3 is not forward secure. If an attacker later compromises both accounts, they can decrypt traffic between them. The vulnerability is tied to the BHP and is considered impractical to exploit in normal...

5.9CVSS5.7AI score0.00461EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/05/24 12:0 a.m.6 views

PT-2023-24616 · Briar · Briar

Name of the Vulnerable Software and Affected Versions: Briar versions prior to 1.5.3 Description: The issue affects the Bramble Handshake Protocol BHP in Briar, allowing eavesdroppers to decrypt network traffic between two accounts if they later compromise both accounts. However, the eavesdroppin...

5.9CVSS6.9AI score0.00461EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2023/05/24 12:0 a.m.9 views

CVE-2023-33982

Bramble Handshake Protocol BHP in Briar before 1.5.3 is not forward secure: eavesdroppers can decrypt network traffic between two accounts if they later compromise both accounts. NOTE: the eavesdropping is typically impractical because BHP runs over an encrypted session that uses the Tor hidden...

6.9AI score0.00461EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 5:20 a.m.4 views

SUSE CVE-2015-2929

The Hidden Service HS client implementation in Tor before 0.2.4.27, 0.2.5.x before 0.2.5.12, and 0.2.6.x before 0.2.6.7 allows remote servers to cause a denial of service assertion failure and application exit via a malformed HS descriptor...

7.5CVSS8.9AI score0.01161EPSS
Exploits0References3
Rows per page
Query Builder