Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-0012

Malware in sbrugna...

8.8CVSS8.6AI score0.01971EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 6:40 p.m.6 views

CVE-2021-3840

A dependency confusion vulnerability was reported in the Antilles open-source software prior to version 1.0.1 that could allow for remote code execution during installation due to a package listed in requirements.txt not existing in the public package index PyPi. MITRE classifies this weakness as...

8.8CVSS7.5AI score0.01971EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/03/17 3:43 a.m.3 views

Malicious code in antilles-portal (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 56d8dfc3b79fa6493ab5f345589e54b0de205521c295c640001fda619a215e99 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2025/03/17 3:43 a.m.1 views

MAL-2025-2454 Malicious code in antilles-portal (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 56d8dfc3b79fa6493ab5f345589e54b0de205521c295c640001fda619a215e99 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Openbugbounty
Openbugbounty
added 2023/06/17 8:54 p.m.9 views

antilles-legales.fr Cross Site Scripting vulnerability OBB-3439580

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/09/19 3:58 p.m.6 views

antilles-info-tourisme.com Cross Site Scripting vulnerability OBB-2935056

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
CNVD
CNVD
added 2021/11/16 12:0 a.m.15 views

Lenovo Antilles has unspecified vulnerabilities

Lenovo Antilles is an open-source infrastructure management software for high performance computing Hpc from Lenovo, China. A security vulnerability exists in versions of Antilles open-source software prior to 1.0.1, which stems from the non-existence of packages listed in requirements.txt in the...

8.8CVSS3.8AI score0.01971EPSS
Exploits0References1
NVD
NVD
added 2021/11/12 10:15 p.m.9 views

CVE-2021-3840

A dependency confusion vulnerability was reported in the Antilles open-source software prior to version 1.0.1 that could allow for remote code execution during installation due to a package listed in requirements.txt not existing in the public package index PyPi. MITRE classifies this weakness as...

8.8CVSS0.01971EPSS
Exploits0References1
OSV
OSV
added 2021/11/12 10:15 p.m.11 views

CVE-2021-3840

A dependency confusion vulnerability was reported in the Antilles open-source software prior to version 1.0.1 that could allow for remote code execution during installation due to a package listed in requirements.txt not existing in the public package index PyPi. MITRE classifies this weakness as...

8.8CVSS8.9AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2021/11/12 10:15 p.m.2 views

CVE-2021-3840

A dependency confusion vulnerability was reported in the Antilles open-source software prior to version 1.0.1 that could allow for remote code execution during installation due to a package listed in requirements.txt not existing in the public package index PyPi. MITRE classifies this weakness as...

8.8CVSS7.7AI score0.01971EPSS
Exploits0References2
PyPA
PyPA
added 2021/11/12 10:15 p.m.7 views

PYSEC-2021-840

A dependency confusion vulnerability was reported in the Antilles open-source software prior to version 1.0.1 that could allow for remote code execution during installation due to a package listed in requirements.txt not existing in the public package index PyPi. MITRE classifies this weakness as...

8.8CVSS8AI score0.01971EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/11/12 10:15 p.m.12 views

Type confusion

A dependency confusion vulnerability was reported in the Antilles open-source software prior to version 1.0.1 that could allow for remote code execution during installation due to a package listed in requirements.txt not existing in the public package index PyPi. MITRE classifies this weakness as...

6.8CVSS8.9AI score0.01971EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2021/11/12 10:15 p.m.19 views

PYSEC-2021-840

A dependency confusion vulnerability was reported in the Antilles open-source software prior to version 1.0.1 that could allow for remote code execution during installation due to a package listed in requirements.txt not existing in the public package index PyPi. MITRE classifies this weakness as...

8.8CVSS2.4AI score0.01971EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/11/12 10:5 p.m.17 views

CVE-2021-3840

A dependency confusion vulnerability was reported in the Antilles open-source software prior to version 1.0.1 that could allow for remote code execution during installation due to a package listed in requirements.txt not existing in the public package index PyPi. MITRE classifies this weakness as...

8.8CVSS9.2AI score0.01971EPSS
Exploits0References1
CVE
CVE
added 2021/11/12 10:5 p.m.71 views

CVE-2021-3840

CVE-2021-3840 : A dependency confusion flaw in the Antilles open-source software prior to 1.0.1 could allow remote code execution during installation when a package listed in requirements.txt does not exist in PyPI. The issue is categorized as CWE-427 (Uncontrolled Search Path Element) where a pr...

8.8CVSS8.8AI score0.01971EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2021/11/12 12:0 a.m.4 views

Antilles 代码问题漏洞

Lenovo Antilles is an open-source infrastructure management software for high performance computing Hpc from Lenovo, China. A security vulnerability exists in versions of Antilles open-source software prior to 1.0.1, which stems from the non-existence of packages listed in requirements.txt in the...

8.8CVSS5.8AI score0.01971EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2021/11/03 5:36 p.m.29 views

Antilles Dependency Confusion Vulnerability

Potential Impact: Remote code execution. Scope of Impact: Open-source project specific. Summary Description: A dependency confusion vulnerability was reported in the Antilles open-source software prior to version 1.0.1 that could allow for remote code execution during installation due to a packag...

8.8CVSS8.9AI score0.01971EPSS
Exploits0References5Affected Software1
Openbugbounty
Openbugbounty
added 2020/05/05 3:49 p.m.9 views

guadeloupe.franceantilles.fr Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1156514 Security Researcher ark1nar Helped patch 106 vulnerabilities Received 3 Coordinated Disclosure badges Received 1 recommendations , a holder of 3 badges for responsible and coordinated disclosure, found a security vulnerability affecting guadeloupe.franceantilles.fr...

0.1AI score
Exploits0
xssed
xssed
added 2008/11/11 12:0 a.m.7 views

Unfixed XSS vulnerability at www.yellowpages-caribbean.com

Security researcher xylitol, has submitted on 11/11/2008 a cross-site-scripting XSS vulnerability affecting www.yellowpages-caribbean.com, which at the time of submission ranked 491902 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/07/2009...

Exploits0References1
Rows per page
Query Builder