346 matches found
PT-2025-48768
A container privilege escalation flaw was found in certain CodeReady Workspaces images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected container, even as a...
CVE-2025-12779
Improper handling of the authentication token in the Amazon WorkSpaces client for Linux, versions 2023.0 through 2024.8, may expose the authentication token for DCV-based WorkSpaces to other local users on the same client machine. Under certain circumstances, a local user may be able to extract...
EUVD-2025-37961
Improper handling of the authentication token in the Amazon WorkSpaces client for Linux, versions 2023.0 through 2024.8, may expose the authentication token for DCV-based WorkSpaces to other local users on the same client machine. Under certain circumstances, a local user may be able to extract...
CVE-2025-12779
Improper handling of the authentication token in the Amazon WorkSpaces client for Linux, versions 2023.0 through 2024.8, may expose the authentication token for DCV-based WorkSpaces to other local users on the same client machine. Under certain circumstances, a local user may be able to extract...
CVE-2025-12779
Improper handling of the authentication token in the Amazon WorkSpaces client for Linux, versions 2023.0 through 2024.8, may expose the authentication token for DCV-based WorkSpaces to other local users on the same client machine. Under certain circumstances, a local user may be able to extract...
CVE-2025-12779
The CVE-2025-12779 issue affects the Amazon WorkSpaces client for Linux (versions 2023.0 through 2024.8). The vulnerability arises from improper handling of the authentication token, which may allow a local user to expose another local user’s DCV-based WorkSpaces token from a shared client machin...
CVE-2025-12779
Improper handling of the authentication token in the Amazon WorkSpaces client for Linux, versions 2023.0 through 2024.8, may expose the authentication token for DCV-based WorkSpaces to other local users on the same client machine. Under certain circumstances, a local user may be able to extract...
PT-2025-45164
Name of the Vulnerable Software and Affected Versions Amazon WorkSpaces client for Linux versions 2023.0 through 2024.8 Description A flaw in the handling of the authentication token within the Amazon WorkSpaces client for Linux may allow exposure of the authentication token for DCV-based...
Amazon WorkSpaces 安全漏洞
Amazon WorkSpaces is a fully managed persistent desktop virtualization service from Amazon.com, Inc. that lets your users access the data, applications, and resources they need anytime, anywhere, from any supported device. A security vulnerability exists in Amazon WorkSpaces version 2024.8 and...
Insecure Session Handling
github.com/coder/coder is vulnerable to Insecure Session Handling. The vulnerability is due to stale session tokens in prebuilt workspaces, allowing attackers to reuse them to gain unauthorized access...
EUVD-2020-6509
Malware in sbrugna...
EUVD-2016-6406
Malware in sbrugna...
EUVD-2017-18302
Malware in sbrugna...
EUVD-2019-15903
Malware in sbrugna...
EUVD-2017-18303
Malware in sbrugna...
EUVD-2017-18305
Malware in sbrugna...
EUVD-2021-9302
Malicious code in bioql PyPI...
EUVD-2022-25084
Malicious code in bioql PyPI...
EUVD-2021-30549
Malicious code in bioql PyPI...
EUVD-2025-27069
Malicious code in bioql PyPI...