Lucene search
K

7841 matches found

OSV
OSV
added 2025/09/11 5:15 p.m.2 views

UBUNTU-CVE-2025-39746

In the Linux kernel, the following vulnerability has been resolved: wifi: ath10k: shutdown driver when hardware is unreliable In rare cases, ath10k may lose connection with the PCIe bus due to some unknown reasons, which could further lead to system crashes during resuming due to watchdog timeout...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References23
CNNVD
CNNVD
added 2025/09/11 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from local variables being passed to the requestirq function, which could lead to a post-release reuse issue...

5.5CVSS5.9AI score0.00119EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-1296

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HashiCorp Nomad and Nomad Enterprise 1.4.0 up to 1.5.0 did not correctly enforce deny policies applied to a workload's variables. Fixed in 1.4.6 and 1.5.1...

5.3CVSS5.6AI score0.0054EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/09 9:1 p.m.1 views

Improper Input Validation

Overview datahihi1/tiny-env is a simple environment variable loader for PHP applications Affected versions of this package are vulnerable to Improper Input Validation in the parsing of environment variable values. An attacker can cause applications to process unintended characters or comment text...

6.5CVSS6.8AI score0.00194EPSS
Exploits0References2
OSV
OSV
added 2025/09/09 7:50 p.m.4 views

CVE-2025-58758 TinyEnv: Missing .env file not required — may cause unexpected behavior

TinyEnv is an environment variable loader for PHP applications. In versions 1.0.1, 1.0.2, 1.0.9, and 1.0.10, TinyEnv did not require the .env file to exist when loading environment variables. This could lead to unexpected behavior where the application silently ignores missing configuration,...

5.1CVSS6.5AI score0.00173EPSS
Exploits0References4
Veracode
Veracode
added 2025/09/08 8:57 a.m.5 views

Directory Traversal

Copier is vulnerable to Directory Traversal. The vulnerability is due to safe templates being able to write files outside the destination path using Jinja filters and configuration variables...

6.9CVSS6.8AI score0.00244EPSS
Exploits0References4Affected Software1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/07 4:39 p.m.3 views

Malicious code in amzn-sagemaker-studio (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 a557d275cca7627fa4d3e2c72f0fc9b78fc5ac70aa87a0ab586f1abf9f8777a6 Package exfiltrates the environment variables during the import --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaig...

7AI score
Exploits0References1
OSV
OSV
added 2025/09/07 4:39 p.m.1 views

MAL-2025-191680 Malicious code in amzn-sagemaker-studio (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 a557d275cca7627fa4d3e2c72f0fc9b78fc5ac70aa87a0ab586f1abf9f8777a6 Package exfiltrates the environment variables during the import --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaig...

6.9AI score
Exploits0References1
The Hacker News
The Hacker News
added 2025/09/06 6:42 a.m.5 views

Malicious npm Packages Impersonate Flashbots, Steal Ethereum Wallet Keys

A new set of four malicious packages have been discovered in the npm package registry with capabilities to steal cryptocurrency wallet credentials from Ethereum developers. "The packages masquerade as legitimate cryptographic utilities and Flashbots MEV infrastructure while secretly exfiltrating...

7.4AI score
Exploits0
CNNVD
CNNVD
added 2025/09/06 12:0 a.m.3 views

AMD多款产品 安全漏洞

AMD Graphics Driver and others are products of UltraMed Semiconductor AMD.AMD Graphics Driver is an integrated graphics driver.AMD Embedded Processors are a series of embedded high-performance GPUs.AMD Client Processors are processors designed for client devices such as AMD Client Processors are...

2.8CVSS6.4AI score0.0013EPSS
Exploits0References3
OSV
OSV
added 2025/09/05 5:10 p.m.4 views

MAL-2025-44052 Malicious code in dotenv-parse-variables-mira-nova-ophiuchus (npm)

The package dotenv-parse-variables-mira-nova-ophiuchus was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/09/05 5:10 p.m.4 views

MAL-2025-44463 Malicious code in gravitationalwave-corvus-dotenv-parse-variables-xo (npm)

The package gravitationalwave-corvus-dotenv-parse-variables-xo was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/09/05 5:10 p.m.4 views

MAL-2025-44056 Malicious code in dotenv-parse-variables-typeorm-spectron-fusion (npm)

The package dotenv-parse-variables-typeorm-spectron-fusion was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/05 5:10 p.m.4 views

Malicious code in cygnus-dotenv-parse-variables-pm2-sequelize (npm)

The package cygnus-dotenv-parse-variables-pm2-sequelize was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/05 5:10 p.m.2 views

Malicious code in dotenv-parse-variables-mira-nova-ophiuchus (npm)

The package dotenv-parse-variables-mira-nova-ophiuchus was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/05 5:10 p.m.7 views

Malicious code in gravitationalwave-corvus-dotenv-parse-variables-xo (npm)

The package gravitationalwave-corvus-dotenv-parse-variables-xo was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/05 5:10 p.m.4 views

Malicious code in equinox-rate-limiter-auriga-dotenv-parse-variables (npm)

The package equinox-rate-limiter-auriga-dotenv-parse-variables was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/05 5:10 p.m.5 views

Malicious code in dotenv-parse-variables-oauth-pavo-meteor (npm)

The package dotenv-parse-variables-oauth-pavo-meteor was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/05 5:10 p.m.6 views

Malicious code in dotenv-parse-variables-playwright-pyxis-geochronology (npm)

The package dotenv-parse-variables-playwright-pyxis-geochronology was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/05 5:10 p.m.5 views

Malicious code in style-loader-impulse-acamar-dotenv-parse-variables (npm)

The package style-loader-impulse-acamar-dotenv-parse-variables was found to contain malicious code...

7AI score
Exploits0
Rows per page
Query Builder