23 matches found
MAL-2026-3528 Malicious code in @uipath/aops-policy-tool (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e3ffa653b190d1fd6f355664623366bda5832396e46eb577a6da7e729d642ca5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001265)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001265 advisory. In the Linux kernel before 4.15, fs/ocfs2/aops.c omits use of a semaphore and consequently has a race condition for access to the extent tree during read operations ...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002080)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002080 advisory. In the Linux kernel before 4.9.3, fs/xfs/xfsaops.c allows local users to cause a denial of service system crash because there is a race condition between direct and...
EUVD-2021-20310
Malware in sbrugna...
EUVD-2024-22262
Malicious code in bioql PyPI...
AZL-67163 CVE-2025-39753 affecting package kernel for versions less than 6.6.104.2-1
In the Linux kernel, the following vulnerability has been resolved: gfs2: Set .migratefolio in gfs2rgrp,metaaops Clears up the warning added in 7ee3647243e5 "migrate: Remove call to -writepage" that occurs in various xfstests, causing "something found in dmesg" failures. 341.136573 gfs2metaaops...
UBUNTU-CVE-2025-39753
In the Linux kernel, the following vulnerability has been resolved: gfs2: Set .migratefolio in gfs2rgrp,metaaops Clears up the warning added in 7ee3647243e5 "migrate: Remove call to -writepage" that occurs in various xfstests, causing "something found in dmesg" failures. 341.136573 gfs2metaaops...
CVE-2021-33633
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in openEuler aops-ceres on Linux allows Command Injection. This vulnerability is associated with program files ceres/function/util.Py. This issue affects aops-ceres: from 1.3.0 through 1.4.1...
CVE-2024-24899
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in openEuler aops-zeus on Linux allows Command Injection. This vulnerability is associated with program files https://gitee.Com/openeuler/aops-zeus/blob/master/zeus/conf/constant.Py. This issue...
CVE-2024-24899
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in openEuler aops-zeus on Linux allows Command Injection. This vulnerability is associated with program files https://gitee.Com/openeuler/aops-zeus/blob/master/zeus/conf/constant.Py. This issue...
CVE-2024-24899 Command injection in aops-zeus
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in openEuler aops-zeus on Linux allows Command Injection. This vulnerability is associated with program files https://gitee.Com/openeuler/aops-zeus/blob/master/zeus/conf/constant.Py. This issue...
CVE-2024-24899 Command injection in aops-zeus
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in openEuler aops-zeus on Linux allows Command Injection. This vulnerability is associated with program files https://gitee.Com/openeuler/aops-zeus/blob/master/zeus/conf/constant.Py. This issue...
CVE-2024-24899
CVE-2024-24899 affects openEuler aops-zeus versions 1.2.0–1.4.0, exposing OS command injection via the zeus/conf/constant.py (constant.Py) handling. The root cause is improper neutralization of special elements in commands, enabling a potential attacker to inject commands and impact confidentiali...
PT-2024-20651 · Openeuler · Aops-Zeus +1
Name of the Vulnerable Software and Affected Versions: openEuler aops-zeus versions 1.2.0 through 1.4.0 Description: The issue is related to an Improper Neutralization of Special Elements used in an OS Command, also known as 'OS Command Injection', which allows Command Injection. This problem is...
aops-zeus 安全漏洞
aops-zeus is a host and user manager service for openEuler, which is the foundation of aops. A security vulnerability exists in openEuler aops-zeus from version 1.2.0 through 1.4.0, which stems from the presence of an operating system command injection issue...
CVE-2021-33633
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in openEuler aops-ceres on Linux allows Command Injection. This vulnerability is associated with program files ceres/function/util.Py. This issue affects aops-ceres: from 1.3.0 through 1.4.1...
CVE-2021-33633 Command Injection in aops-ceres
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in openEuler aops-ceres on Linux allows Command Injection. This vulnerability is associated with program files ceres/function/util.Py. This issue affects aops-ceres: from 1.3.0 through 1.4.1...
CVE-2021-33633 Command Injection in aops-ceres
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in openEuler aops-ceres on Linux allows Command Injection. This vulnerability is associated with program files ceres/function/util.Py. This issue affects aops-ceres: from 1.3.0 through 1.4.1...
OESA-2024-1293 aops-zeus security update
A host and user manager service which is the foundation of aops. Security Fixes: In aops-zeus software versions 1.2.01.4.1, there is a vulnerability in the plugin management command of the zeus/conf/constant file. Through this vulnerability, an attacker can implant arbitrary commands to be execut...
OESA-2024-1292 aops-zeus security update
A host and user manager service which is the foundation of aops. Security Fixes: In aops-zeus software versions 1.2.01.4.1, there is a vulnerability in the plugin management command of the zeus/conf/constant file. Through this vulnerability, an attacker can implant arbitrary commands to be execut...