83 matches found
Malicious Package
Overview backup2-asd is a malicious package. This package is part of a malicious npm campaign that abused the registry to distribute ad-supported web proxy applications disguised as educational websites. The package contains web assets intended to bypass network restrictions and generate...
AZL-74400 CVE-2025-71075 affecting package kernel for versions less than 6.6.121.1-1
In the Linux kernel, the following vulnerability has been resolved: scsi: aic94xx: fix use-after-free in device removal path The asdpciremove function fails to synchronize with pending tasklets before freeing the asdha structure, leading to a potential use-after-free vulnerability. When a device...
CVE-2025-71075
In the Linux kernel, the following vulnerability has been resolved: scsi: aic94xx: fix use-after-free in device removal path The asdpciremove function fails to synchronize with pending tasklets before freeing the asdha structure, leading to a potential use-after-free vulnerability. When a device...
CVE-2025-71075
In the Linux kernel, the following vulnerability has been resolved: scsi: aic94xx: fix use-after-free in device removal path The asdpciremove function fails to synchronize with pending tasklets before freeing the asdha structure, leading to a potential use-after-free vulnerability. When a device...
PT-2026-2596
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s aic94xx SCSI driver where the asd pci remove function does not properly synchronize with pending tasklets before freeing the asd ha structure. This ca...
Linux Distros Unpatched Vulnerability : CVE-2025-71075
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: aic94xx: fix use-after-free in device removal path The asdpciremove function fails to synchronize with pending tasklets before freeing the asdha structure...
MAL-2025-160947 Malicious code in munisdr-nserf-asd (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 40a2900e020fbf43847045e73244418ae18b59189795e46ffadc8af3e71a505d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in asd-nufgttr-nutry (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fdb6a039e3aabfbed5a52d6e84645d64686cfd1f9c2883cf61d837d99628e4f3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in asd-nuttr-sssda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb46c94c2bafd5273e87086efe9d69ae6f031258319eb491675cd3ffee42338e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in munya-mipta-asd (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31866d009f41f1bd165c356409be795693654f917be4830e3fe683c48b33e1d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in asd-nutr-sdf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 75f4e9ddda9764c9e595a56661f22272f2307c6f8d623940df1f9fd21e55f7ca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-14887 Malicious code in asd-tt (npm)
The package asd-tt was found to contain malicious code...
Malicious code in asd-tt (npm)
The package asd-tt was found to contain malicious code...
CVE-2024-46960
The CVE-2024-46960 issue impacts the Android app ASD com.rocks.video.downloader (HD Video Downloader All Format) up to version 7.0.129. The vulnerability exists in the com.rocks.video.downloader.MainBrowserActivity component and allows an attacker to execute arbitrary JavaScript code, enabling po...
CVE-2024-46960
The ASD com.rocks.video.downloader aka HD Video Downloader All Format application through 7.0.129 for Android allows an attacker to execute arbitrary JavaScript code via the com.rocks.video.downloader.MainBrowserActivity component...
ASD Dev Video Player HD Video Downloader 安全漏洞
ASD Dev Video Player HD Video Downloader is a video downloader from ASD Dev Video Player, Inc. A security vulnerability exists in ASD Dev Video Player HD Video Downloader version 7.0.129 and earlier, which originates from a vulnerability that allows attackers to execute arbitrary JavaScript code...
CVE-2024-46960
The ASD com.rocks.video.downloader aka HD Video Downloader All Format application through 7.0.129 for Android allows an attacker to execute arbitrary JavaScript code via the com.rocks.video.downloader.MainBrowserActivity component...
Malicious code in test-test-asd-1 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f6284e15edda08ed04fabd1d9f958e5455bc0a60f3127b35f9f49ea8ee36a49c Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2024-11722 Malicious code in test-test-asd-1 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f6284e15edda08ed04fabd1d9f958e5455bc0a60f3127b35f9f49ea8ee36a49c Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Unchecked redeemUnderlying failure allows burning asD without redeeming NOTE, breaking peg.
Lines of code Vulnerability details Impact The burn function does not validate the return code from redeemUnderlying. This means if redeeming fails, asD tokens could be burned without redeeming the underlying NOTE, breaking 1:1 peg. Attacker burns asD tokens and receives NOTE, but contract fails ...