581 matches found
@frontmcp/adapters (>=0.5.0 <=0.8.0), @frontmcp/plugin-approval (>=0.7.1 <=0.8.0) +9 more potentially affected by CVE-2026-25533 via enclave-vm (>=1.0.3 <=2.7.0)
enclave-vm NPM version =1.0.3, =0.5.0, =0.7.1, =0.7.1, =0.7.1, =0.7.1, =0.7.1, =0.5.0, =0.5.0, =0.5.0, =0.6.1, =0.8.0 - frontmcp =0.5.0 Source cves: CVE-2026-25533 Source advisory: SNYK:JS-ENCLAVEVM-15248348...
PT-2026-6650
Name of the Vulnerable Software and Affected Versions Payload versions prior to 3.73.0 Description Payload is a free and open source headless content management system. Prior to version 3.73.0, user input was directly embedded into SQL queries without proper escaping when querying JSON or richTex...
cn.datask:dat-adapter-duckdb (>=0.6.1 <=0.7.1), cn.datask:dat-adapter-mysql (>=0.6.1 <=0.7.1) +158 more potentially affected by CVE-2026-25526 via com.hubspot.jinjava:jinjava (>=2.8.0 <=2.8.2)
com.hubspot.jinjava:jinjava MAVEN version =2.8.0, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.7.0, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.6.1, =0.7.1 and more Source cves: CVE-2026-25526 Source advisory: OSV:GHSA-GJX9-J8F8-7J74...
LoRA As Oracle
Backdoored and privacy-leaking deep neural networks pose a serious threat to the deployment of machine learning systems in security-critical settings. Existing defenses for backdoor detection and membership inference typically require access to clean reference models, extensive retraining, or...
@frontmcp/adapters (>=0.5.0 <=0.6.3), @frontmcp/plugins (>=0.5.0 <=0.6.3) +4 more potentially affected by CVE-2026-22686 via enclave-vm (=1.0.3)
enclave-vm NPM version =1.0.3 is affected by a known vulnerability. The following packages have a transitive dependency on enclave-vm and may be impacted: - @frontmcp/adapters =0.5.0, =0.5.0, =0.5.0, =0.5.0, =0.6.1, =0.6.3 - frontmcp =0.5.0 Source cves: CVE-2026-22686 Source advisory:...
CVE-2025-68790 net/mlx5: Fix double unregister of HCA_PORTS component
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix double unregister of HCAPORTS component Clear hcadevcomcomp in device's private data after unregistering it in LAG teardown. Otherwise a slightly lagging second pass through mlx5unloadone might try to unregister it...
CVE-2021-33059
Improper input validation in the IntelR Administrative Tools for IntelR Network Adapters driver for Windows before version 1.4.0.15, may allow a privileged user to potentially enable escalation of privilege via local access...
CVE-2021-0006
Improper conditions check in firmware for IntelR Ethernet Adapters 800 Series Controllers and associated adapters before version 1.5.4.0 may allow a privileged user to potentially enable denial of service via local access...
CVE-2021-0008
Uncontrolled resource consumption in firmware for IntelR Ethernet Adapters 800 Series Controllers and associated adapters before version 1.5.3.0 may allow privileged user to potentially enable denial of service via local access...
CVE-2021-0009
Out-of-bounds read in the firmware for IntelR Ethernet Adapters 800 Series Controllers and associated adapters before version 1.5.3.0 may allow an unauthenticated user to potentially enable denial of service via adjacent access...
CVE-2021-33146
Improper input validation in some IntelR Ethernet Adapters and IntelR Ethernet Controller I225 Manageability firmware may allow an unauthenticated user to potentially enable information disclosure via network access...
CVE-2021-33142
Improper input validation in some IntelR Ethernet Adapters and IntelR Ethernet Controller I225 Manageability firmware may allow a privileged user to potentially enable denial of service via local access...
CVE-2021-33158
Improper neutralization in some IntelR Ethernet Adapters and IntelR Ethernet Controller I225 Manageability firmware may allow a privileged user to potentially enable escalation of privilege via local access...
balify (=0.0.2), cognee (>=0.1.15 <=0.5.2.dev0) +45 more potentially affected by CVE-2025-68481 via fastapi-users (>=10.2.1 <=14.0.2)
fastapi-users PYPI version =10.2.1, =0.1.15, =0.1.2, =0.2.0, =0.1.0, =0.1.0, =0.1.0, =0.2.0, =0.2.1 - cognee-community-vector-adapter-redis =0.1.0 - cognee-community-vector-adapter-valkey =0.1.1 - cognee-community-vector-adapter-weaviate =0.1.0 and more Source cves: CVE-2025-68481 Source advisory...
Malicious code in ctosec-appsec-wb-xray-adapters (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 71bd5cbfd64c9f4eec926fb0345f7a31ed5a012dfcf6182a0a550c2d3ad93240 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
CVE-2025-36461 Dell ControlVault3 ControlVault WBDI Driver Broadcom Storage Adapter out-of-bounds write vulnerability
Multiple out-of-bounds read and write vulnerabilities exist in the ControlVault WBDI Driver Broadcom Storage Adapter functionality of Dell ControlVault3 prior to 5.15.14.19 and Dell ControlVault3 Plus prior to 6.2.36.47. A specially crafted WinBioControlUnit call can lead to memory corruption. An...
EUVD-2019-6258
Malware in sbrugna...
EUVD-2018-17198
Malware in sbrugna...
EUVD-2021-2626
Malware in sbrugna...
EUVD-2005-4620
Malware in sbrugna...