Lucene search
K

12962 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2026/02/05 8:16 a.m.10 views

Malicious code in conp-dats-editor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector adac2b3e811707a0113ec1484330ebada12a632966c81143eab49233e87cabbf The package conp-dats-editor was found to contain malicious code. Source: ossf-package-analysis...

5.4AI score
Exploits0
EUVD
EUVD
added 2026/02/05 12:31 a.m.4 views

EUVD-2024-55398

IBM Operations Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 and IBM SmartCloud Analytics – Log Analysis are vulnerable to a cross-site request forgery CSRF vulnerability that could allow an attacker to trick a trusted user into performing unauthorized actions...

4.3CVSS5.2AI score0.00128EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2026/02/05 12:0 a.m.3 views

Identifying Adversary Tactics and Techniques in Malware Binaries with an LLM Agent

Understanding TTPs Tactics, Techniques, and Procedures in malware binaries is essential for security analysis and threat intelligence, yet remains challenging in practice. Real-world malware binaries are typically stripped of symbols, contain large numbers of functions, and distribute malicious...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/02/05 12:0 a.m.5 views

Persistent Human Feedback, LLMs, and Static Analyzers for Secure Code Generation and Vulnerability Detection

Existing literature heavily relies on static analysis tools to evaluate LLMs for secure code generation and vulnerability detection. We reviewed 1,080 LLM-generated code samples, built a human-validated ground-truth, and compared the outputs of two widely used static security tools, CodeQL and...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/02/05 12:0 a.m.3 views

Semi-Device-Independent Quantum Random Number Generator Resistant to General Attacks

Quantum random number generators QRNGs produce true random numbers based on the inherent randomness of quantum theory, rendering them a foundational segment of quantum cryptography. Distinguished from trusted-device QRNGs whose security depends on characterized devices, semi-device-independent...

5.5AI score
Exploits0
NVD
NVD
added 2026/02/04 10:15 p.m.4 views

CVE-2024-40685

IBM Operations Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 and IBM SmartCloud Analytics – Log Analysis are vulnerable to a cross-site request forgery CSRF vulnerability that could allow an attacker to trick a trusted user into performing unauthorized actions...

4.3CVSS0.00128EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/04 9:12 p.m.4 views

CVE-2024-40685 IBM Operations Analytics - Log Analysis is affected by CSRF Token Replay Attack

IBM Operations Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 and IBM SmartCloud Analytics – Log Analysis are vulnerable to a cross-site request forgery CSRF vulnerability that could allow an attacker to trick a trusted user into performing unauthorized actions...

4.3CVSS5.2AI score0.00128EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/04 9:12 p.m.4 views

CVE-2024-40685

IBM Operations Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 and IBM SmartCloud Analytics – Log Analysis are vulnerable to a cross-site request forgery CSRF vulnerability that could allow an attacker to trick a trusted user into performing unauthorized actions...

4.3CVSS5.2AI score0.00128EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/02/04 9:12 p.m.9 views

CVE-2024-40685

CVE-2024-40685 affects IBM Operations Analytics – Log Analysis and IBM SmartCloud Analytics – Log Analysis. Connected sources confirm a CSRF vulnerability that could allow an attacker to trick a trusted user into performing unauthorized actions. Affected versions include IBM Operations Analytics ...

4.3CVSS5.2AI score0.00128EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/04 9:12 p.m.25 views

CVE-2024-40685 IBM Operations Analytics - Log Analysis is affected by CSRF Token Replay Attack

IBM Operations Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 and IBM SmartCloud Analytics – Log Analysis are vulnerable to a cross-site request forgery CSRF vulnerability that could allow an attacker to trick a trusted user into performing unauthorized actions...

4.3CVSS0.00128EPSS
Exploits0References1
OSV
OSV
added 2026/02/04 5:16 p.m.4 views

UBUNTU-CVE-2026-23092

In the Linux kernel, the following vulnerability has been resolved: iio: dac: ad3552r-hs: fix out-of-bound write in ad3552rhswritedatasource When simplewritetobuffer succeeds, it returns the number of bytes actually copied to the buffer. The code incorrectly uses 'count' as the index for null...

7.8CVSS5.9AI score0.00186EPSS
Exploits0References5
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/02/04 9:40 a.m.7 views

Malicious code in xpack-subscription-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2447449c96d24d0c693d9105d432d9818fa96fb0c408fb371a3dc15167960feb The package xpack-subscription-test was found to contain malicious code. Source: ghsa-malware...

5.9AI score
Exploits0References1
OSV
OSV
added 2026/02/04 9:21 a.m.6 views

MAL-2026-733 Malicious code in deuro-landing-page (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b21bff5e6829c4c257d34d4ad60dd2d5d85f4f6fc67fdffaf74c86bb600ff7cb The package deuro-landing-page was found to contain malicious code. Source: ossf-package-analysis...

5.4AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/02/04 5:25 a.m.7 views

Malicious code in partnerss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c370b0dbfdf4006f77ab698296da5eef2bb1a5ca43e91b932711518a3a0b8c5c The package partnerss was found to contain malicious code. Source: ossf-package-analysis...

5.3AI score
Exploits0
OSV
OSV
added 2026/02/04 5:25 a.m.4 views

MAL-2026-717 Malicious code in partnerss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c370b0dbfdf4006f77ab698296da5eef2bb1a5ca43e91b932711518a3a0b8c5c The package partnerss was found to contain malicious code. Source: ossf-package-analysis...

5.3AI score
Exploits0
GithubExploit
GithubExploit
added 2026/02/04 1:47 a.m.284 views

Exploit for CVE-2026-0828

💀 0xKern3lCrush-M4te-CVE-2026-0828 Windows BYOVD Research &...

8.7CVSS5.7AI score0.08963EPSS
Exploits9
CNNVD
CNNVD
added 2026/02/04 12:0 a.m.9 views

IBM Operations Analytics - Log Analysis 跨站请求伪造漏洞

IBM Operations Analytics – Log Analysis is a log analysis software developed by IBM. Versions 1.3.5.0 to 1.3.8.3 of IBM Operations Analytics – Log Analysis contain a cross-site request forgeing vulnerability. This vulnerability is due to a susceptibility to cross-site request forgery attacks, whi...

4.3CVSS5.7AI score0.00128EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/04 12:0 a.m.5 views

PT-2026-5866

Name of the Vulnerable Software and Affected Versions IBM Operations Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 IBM SmartCloud Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 Description The software is susceptible to a cross-site request forgery CSRF condition. Successfu...

4.3CVSS5.2AI score0.00128EPSS
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/02/03 9:30 p.m.10 views

Malicious code in incode-kyc-backend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57c3747164b70855673dc56ebec2fbfcd084909fe71fe4ded3b1e80d4c155f53 The package incode-kyc-backend was found to contain malicious code. Source: ghsa-malware...

5.4AI score
Exploits0References1
OSV
OSV
added 2026/02/03 4:22 p.m.2 views

MAL-2026-704 Malicious code in testing-package-xdsfdsfsc (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 128bcd8c35be8360c070b2fc3bbb64392b17fd5c576efdc7d99e2722d992bc44 The package testing-package-xdsfdsfsc was found to contain malicious code. Source: ghsa-malware...

5.9AI score
Exploits0References1
Rows per page
Query Builder