EUVD-2019-8861

Malware in sbrugna...

CVE-2019-19235

AsLdrSrv.exe in ASUS ATK Package before V1.0.0061 for Windows 10 notebook PCs could lead to unsigned code execution with no additional execution. The user must put an application at a particular path, with a particular file name...

Druid_task1 (=0.1.0), UWUWUW (>=0.13.2 <=0.13.4) +272 more potentially affected by unknown CVE via atk (>=0.14.0 <=0.9.0)

atk CARGO version =0.14.0, =0.13.2, =1.0.0, =0.2.0, =0.1.0, =0.1.2, =0.2.0, =0.21.0, =0.1.0, =0.1.0, =0.1.0, =0.1.2 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2024-0413...

BrewStillery (>=1.0.0 <=6.2.0), Druid_task1 (=0.1.0) +395 more potentially affected by unknown CVE via atk-sys (>=0.10.0 <=0.9.1)

atk-sys CARGO version =0.10.0, =1.0.0, =0.13.2, =1.0.0, =0.2.0, =0.1.0, =0.0.1, =0.1.2, =0.2.0, =0.6.0, =0.21.0, =0.30.1 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2024-0416...

Malicious code in tst-atk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2033e787504d86b9c1f6d2daf7a33c85b76d469c02750192e284c092fd69059e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

NewStart CGSL CORE 5.05 / MAIN 5.05 : atk Multiple Vulnerabilities (NS-SA-2023-0013)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has atk packages installed that are affected by multiple vulnerabilities: - GNOME Evolution through 3.28.2 is prone to OpenPGP signatures being spoofed for arbitrary messages using a specially crafted email that contains a vali...

Malicious Package

Overview vmw-atk is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...

Malicious code in vmw-atk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0b19932db9ddd83e47e8db2bfa9d4bb65d5d4ef19b7e632a168be191ee4cc54f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2023-941 Malicious code in vmw-atk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0b19932db9ddd83e47e8db2bfa9d4bb65d5d4ef19b7e632a168be191ee4cc54f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

SUSE CVE-2012-3378

The registerapplication function in atk-adaptor/bridge.c in GNOME at-spi2-atk 2.5.2 does not seed the random number generator and generates predictable temporary file names, which makes it easier for local users to create or truncate files via a symlink attack on a temporary socket file in...

new packages: atk

An update is available for atk. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Enterprise...

new packages: at-spi2-atk

An update is available for at-spi2-atk. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky...

ASUS HID Access Service 1.0.94.0 - (AsHidSrv.exe) Unquoted Service Path Vulnerability

Exploit Title: ASUS HID Access Service 1.0.94.0 - 'AsHidSrv.exe' Unquoted Service Path Exploit Author: Alejandra Sánchez Vendor Homepage: www.asus.com Version: 1.0.94.0 Tested on: Windows 10 Pro x64 es Description: ATK Hotkey 1.0.94.0 suffers from an unquoted search path issue impacting the servi...

ASUS HID Access Service 1.0.94.0 - &#039;AsHidSrv.exe&#039; Unquoted Service Path

Exploit Title: ASUS HID Access Service 1.0.94.0 - 'AsHidSrv.exe' Unquoted Service Path Date: 2020-05-19 Exploit Author: Alejandra Sánchez Vendor Homepage: www.asus.com Version: 1.0.94.0 Tested on: Windows 10 Pro x64 es Description: ATK Hotkey 1.0.94.0 suffers from an unquoted search path issue...

janatuerlich.at Cross Site Scripting vulnerability OBB-1341476

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Updated matio packages fix security vulnerability

Updated matio packages fix a security vulnerability: Multiple integer overflows exist in MATIO before 1.5.16, related to mat.c, mat4.c, mat5.c, mat73.c, and matvarstruct.c CVE-2019-13107. The matio package has been updated to version 1.5.16 to fix this issue. Also: - The scilab package has been...

CentOS 7 : evolution (RHSA-2020:1080)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1080 advisory. - GNOME Evolution through 3.28.2 is prone to OpenPGP signatures being spoofed for arbitrary messages using a specially crafted email that contains a...

evolution security and bug fix update

atk 2.28.1-2 - Remove patch to fix invalid unref at atkgobjectaccessibleobjectgonecb - Resolves: 1753123 evolution 3.28.5-8 - Update patch for RH bug 1686408 CVE-2018-15587: Reposition signature bar 3.28.5-7 - Add patch for RH bug 1686408 CVE-2018-15587: Reposition signature bar 3.28.5-6 - Add...

Unspecified Vulnerability in ASUS ATK Package

ASUS ATK Package is a software package from Asus Taiwan, China for installing drivers and software in ASUS computers. A security vulnerability exists in the AsLdrSrv.exe file in versions prior to ASUS ATK Package V1.0.0061 for Windows 10 notebook PCs. An attacker can exploit the vulnerability to...

CVE-2019-19235

AsLdrSrv.exe in ASUS ATK Package before V1.0.0061 for Windows 10 notebook PCs could lead to unsigned code execution with no additional execution. The user must put an application at a particular path, with a particular file name...