7841 matches found
UBUNTU-CVE-2025-39746
In the Linux kernel, the following vulnerability has been resolved: wifi: ath10k: shutdown driver when hardware is unreliable In rare cases, ath10k may lose connection with the PCIe bus due to some unknown reasons, which could further lead to system crashes during resuming due to watchdog timeout...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from local variables being passed to the requestirq function, which could lead to a post-release reuse issue...
Linux Distros Unpatched Vulnerability : CVE-2023-1296
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HashiCorp Nomad and Nomad Enterprise 1.4.0 up to 1.5.0 did not correctly enforce deny policies applied to a workload's variables. Fixed in 1.4.6 and 1.5.1...
Improper Input Validation
Overview datahihi1/tiny-env is a simple environment variable loader for PHP applications Affected versions of this package are vulnerable to Improper Input Validation in the parsing of environment variable values. An attacker can cause applications to process unintended characters or comment text...
CVE-2025-58758 TinyEnv: Missing .env file not required — may cause unexpected behavior
TinyEnv is an environment variable loader for PHP applications. In versions 1.0.1, 1.0.2, 1.0.9, and 1.0.10, TinyEnv did not require the .env file to exist when loading environment variables. This could lead to unexpected behavior where the application silently ignores missing configuration,...
Directory Traversal
Copier is vulnerable to Directory Traversal. The vulnerability is due to safe templates being able to write files outside the destination path using Jinja filters and configuration variables...
Malicious code in amzn-sagemaker-studio (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a557d275cca7627fa4d3e2c72f0fc9b78fc5ac70aa87a0ab586f1abf9f8777a6 Package exfiltrates the environment variables during the import --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaig...
MAL-2025-191680 Malicious code in amzn-sagemaker-studio (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a557d275cca7627fa4d3e2c72f0fc9b78fc5ac70aa87a0ab586f1abf9f8777a6 Package exfiltrates the environment variables during the import --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaig...
Malicious npm Packages Impersonate Flashbots, Steal Ethereum Wallet Keys
A new set of four malicious packages have been discovered in the npm package registry with capabilities to steal cryptocurrency wallet credentials from Ethereum developers. "The packages masquerade as legitimate cryptographic utilities and Flashbots MEV infrastructure while secretly exfiltrating...
AMD多款产品 安全漏洞
AMD Graphics Driver and others are products of UltraMed Semiconductor AMD.AMD Graphics Driver is an integrated graphics driver.AMD Embedded Processors are a series of embedded high-performance GPUs.AMD Client Processors are processors designed for client devices such as AMD Client Processors are...
MAL-2025-44052 Malicious code in dotenv-parse-variables-mira-nova-ophiuchus (npm)
The package dotenv-parse-variables-mira-nova-ophiuchus was found to contain malicious code...
MAL-2025-44463 Malicious code in gravitationalwave-corvus-dotenv-parse-variables-xo (npm)
The package gravitationalwave-corvus-dotenv-parse-variables-xo was found to contain malicious code...
MAL-2025-44056 Malicious code in dotenv-parse-variables-typeorm-spectron-fusion (npm)
The package dotenv-parse-variables-typeorm-spectron-fusion was found to contain malicious code...
Malicious code in cygnus-dotenv-parse-variables-pm2-sequelize (npm)
The package cygnus-dotenv-parse-variables-pm2-sequelize was found to contain malicious code...
Malicious code in dotenv-parse-variables-mira-nova-ophiuchus (npm)
The package dotenv-parse-variables-mira-nova-ophiuchus was found to contain malicious code...
Malicious code in gravitationalwave-corvus-dotenv-parse-variables-xo (npm)
The package gravitationalwave-corvus-dotenv-parse-variables-xo was found to contain malicious code...
Malicious code in equinox-rate-limiter-auriga-dotenv-parse-variables (npm)
The package equinox-rate-limiter-auriga-dotenv-parse-variables was found to contain malicious code...
Malicious code in dotenv-parse-variables-oauth-pavo-meteor (npm)
The package dotenv-parse-variables-oauth-pavo-meteor was found to contain malicious code...
Malicious code in dotenv-parse-variables-playwright-pyxis-geochronology (npm)
The package dotenv-parse-variables-playwright-pyxis-geochronology was found to contain malicious code...
Malicious code in style-loader-impulse-acamar-dotenv-parse-variables (npm)
The package style-loader-impulse-acamar-dotenv-parse-variables was found to contain malicious code...