411 matches found
MAL-2026-3734 Malicious code in sol-coverage (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d6ac3d8c51b3f87a97b7b9724145b73d894fc4027da14122aea3eb6d51bfb671 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2026-28860
The issue was addressed with improved input validation. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. A local attacker may be able to modify the state of the...
MAL-2026-2642 Malicious code in chatbotloader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 78643cb5d37687c0eac0935734bac95f23c01b64ded6bb2f2f090542324042ac The package chatbotloader was found to contain malicious code. Source: ghsa-malware 88ccdb3c34d69b2e53f62caa6b7e61f32e7868fa5893d6fd6d09662189d10b34...
Microsoft Windows SSDP 竞争条件问题漏洞
Microsoft Windows SSDP is a simple service discovery provider developed by Microsoft Corporation. The Microsoft Windows SSDP Service has a vulnerability related to race conditions. Attackers can exploit this vulnerability to gain elevated privileges. The following products and versions are...
MAL-2026-1526 Malicious code in prefer-let (npm)
The package 'prefer-let' is part of the PhantomRaven supply chain attack campaign Wave 2. It uses a Remote Dynamic Dependency RDD technique: the published package appears benign but includes a URL-based dependency in package.json pointing to an attacker-controlled C2 server npm.jpartifacts.com...
Microsoft Windows Ancillary Function Driver for WinSock 资源管理错误漏洞
The Microsoft Windows Ancillary Function Driver for WinSock is a accessibility driver for Winsock developed by Microsoft Corporation. There is a resource management vulnerability present in the Microsoft Windows Ancillary Function Driver for WinSock. Attackers can exploit this vulnerability to ga...
MAL-2026-723 Malicious code in http-emailjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a9d03c741837fca8f8630f52d108b904dff1e056ff9b3bee73df663f691a59f The package http-emailjs was found to contain malicious code. Source: ghsa-malware cd9f06aa02e0e2ed77b3cedfb2e499b9f73530f95231f0fdc8dbeecc0bf2222a A...
MAL-2026-662 Malicious code in researchpoc (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ee8d68b9386bf55de2d3ed033493507ee88db166ae46345172ba93d938f3a27 The package researchpoc was found to contain malicious code. Source: ghsa-malware 912631f8dc76f3b4ddae075966fd902e7ab19c0799a0cd29b0c9ece7d79cd1ce An...
Malicious code in lumo-api-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab5d24591ceb311425ae395bd2b1bf7f82818bd6c7946d669a19c619462fd755 The package lumo-api-client was found to contain malicious code. Source: ghsa-malware da916419989a0707bcaa3fc59ba24e3ef90e2ec5df35aa6cc1e81f8d3cb82c6...
MAL-2026-412 Malicious code in connect-web (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7310f112bc55acc6b996816b40e9571269b53fa24468f9cd4766f3de0175a7f The package connect-web was found to contain malicious code. Source: ghsa-malware cd2c2fd9ae7a1a5387c2635150ed900d7dea7294e29dc1df20b9ccf00b7888ed An...
MAL-2026-185 Malicious code in yunxohang5 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 18b8411b8cd6fea01585a7c07048bb6880d2d0fe380b145a797bce43b1e96388 The package yunxohang5 was found to contain malicious code. Source: ghsa-malware bef3f7dd8a9554ed61db94960f012c42f81192bb019b989608cd9db4e50dfb78 Any...
CVE-2017-6738
The Simple Network Management Protocol SNMP subsystem of Cisco IOS and IOS XE Software contains multiple vulnerabilities that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload. An attacker could exploit these...
Malicious code in prime-one-table (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 686403bdb86cae7a644dd5bb861eacb91b0437d25b0cf1c367e04ab8a411cebe The package prime-one-table was found to contain malicious code. Source: ghsa-malware 637ced514205a8512ba9f365d6f93fbcbd2d45e2144a5cc076c4d14187da317...
Malicious code in stat-fns (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f5395e07a1f1a743d77d42495c7eaf08cb0ced22a0b0883b53b5adf78beef28a The package stat-fns was found to contain malicious code. Source: ghsa-malware 6c2e197e85b015babcf3a2073e3f76b980a3ae924a49a20d9c1648c610d7d3c0 Any...
Malicious code in asyncapi-preview (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ace11e1c5f0f9487098786e9c0a3b43a0491cd1a23d74b4a9dcfc67fc04c621a The package asyncapi-preview was found to contain malicious code. Source: ghsa-malware 6c99a62eec6b0d9e3b5e9e99c8cb5f10e3286c94fb0e7e44e25808892679a0...
Malicious code in mad-4.2.1.2.2.8 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 442b99f653fadc968f55dae809fcdc5561c7d6a38400322dd0b98b9c89cfc86a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in redirect-p8ris1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 04da7ed54a66a21cd724557550afeac1590a329330a33c3c0b5bbf897e250c0e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48085 Malicious code in webpack-loader-css-branch (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 229ffddcb27b696e6b64ac9e852913efc9cb7db2c9fbe5df5ec27be21dd18080 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
EUVD-2018-1002
Malware in sbrugna...
EUVD-2018-11671
Malware in sbrugna...