7820 matches found
PT-2022-18405 ยท Red Hat ยท Podman
Name of the Vulnerable Software and Affected Versions: podman versions prior to the version fixed via RHSA-2020:5056 Description: The issue could possibly allow an attacker to gain access to sensitive information stored in environment variables, such as those defined by environment variable...
Reentrancy in repayLoan
Lines of code Vulnerability details Reentrancy in repayLoan Impact token.safeTransferFrom is called and after that state with the value is calcualted, if token can be a wrong or compromised contract this would lead to a clasic reentrancy attack that would transfer more from the balance than...
Malicious code in free-net-vpn2 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 918a0f985a93815d37d9480f97dd5203b78834142904ae50550bd431ca52c05b Security researchers at Check Point Research discovered a malicious package called free-net-vpn2 that targets environment variables. PyPI has since remov...
MAL-2022-7424 Malicious code in free-net-vpn2 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 918a0f985a93815d37d9480f97dd5203b78834142904ae50550bd431ca52c05b Security researchers at Check Point Research discovered a malicious package called free-net-vpn2 that targets environment variables. PyPI has since remov...
MAL-2022-7423 Malicious code in free-net-vpn (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a7c578ebbd5b9dea94fedafe257ab0b885731b9f32789b9d9a2708193ef03995 Security researchers at Check Point Research discovered a malicious package called free-net-vpn that targets environment variables. PyPI has since remove...
Malicious code in free-net-vpn (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a7c578ebbd5b9dea94fedafe257ab0b885731b9f32789b9d9a2708193ef03995 Security researchers at Check Point Research discovered a malicious package called free-net-vpn that targets environment variables. PyPI has since remove...
Check the return of .call when sending Ether
Lines of code Vulnerability details Impact It's considered a best practice to always check the return of the transaction when sending Ether with .call, since it's possible for a tx failure due to external factors out of the contract control. Currently, the contract emits an event with the result...
PYSEC-2022-252
The deep-translator project on PyPI was taken over via user account compromise via a phishing attack and a new malicious release made which contained code which some environment variables and downloaded and ran malware at install time...
PYSEC-2022-251
The spam project on PyPI was taken over via user account compromise via a phishing attack and a new malicious release made which contained code which some environment variables and downloaded and ran malware at install time...
PYSEC-2022-250
The exotel project on PyPI was taken over via user account compromise via a phishing attack and a new malicious release made which contained code which some environment variables and downloaded and ran malware at install time...
PYSEC-2022-250
The exotel project on PyPI was taken over via user account compromise via a phishing attack and a new malicious release made which contained code which some environment variables and downloaded and ran malware at install time...
PYSEC-2022-251
The spam project on PyPI was taken over via user account compromise via a phishing attack and a new malicious release made which contained code which some environment variables and downloaded and ran malware at install time...
Ubuntu: Security Advisory (USN-4442-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
podman: Security regression of CVE-2020-14370 due to source code management issue
The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman missing the fix for CVE-2020-14370, which was previously fixed via RHSA-2020:5056. This issue could possibly allow an attacker to gain access to sensitive...
CVE-2022-2739
The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman missing the fix for CVE-2020-14370, which was previously fixed via RHSA-2020:5056. This issue could possibly allow an attacker to gain access to sensitive...
CVE-2022-1901
In affected versions of Octopus Deploy it is possible to unmask sensitive variables by using variable preview...
CVE-2022-1901
In affected versions of Octopus Deploy it is possible to unmask sensitive variables by using variable preview...
CVE-2022-1901
In affected versions of Octopus Deploy it is possible to unmask sensitive variables by using variable preview...
Code injection
In affected versions of Octopus Deploy it is possible to unmask sensitive variables by using variable preview...
CVE-2022-1901
In affected versions of Octopus Deploy it is possible to unmask sensitive variables by using variable preview...