Malicious code in axp-product-ducks (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 5285fb9646b0435fb4ae3204b5975277243e149fc95c187c5c65e2fa0609389e The OpenSSF Package Analysis project identified 'axp-product-ducks' @ 30.0.0 npm as malicious. It is considered malicious because: - The package...

Malicious code in axp-api-middleware (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-1795 Malicious code in axp-api-middleware (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious Package

Overview axp-shared-scripts is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this packag...

Malicious Package

Overview axp-base is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...

Malicious Package

Overview axp-utility-belt is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package...

Malicious code in axp-utility-belt (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 432021c8e0da8798e3783329a5a3ff6ec980b17267c665dc0c93d2e001a0e6a1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-1214 Malicious code in axp-utility-belt (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 432021c8e0da8798e3783329a5a3ff6ec980b17267c665dc0c93d2e001a0e6a1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-1212 Malicious code in axp-base (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 70a5f3aa5db3120296ea6ab090412c4520f66f6e1d1de1a451c12db3aeec6cc0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in axp-shared-scripts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1243d32b86a0aa2de720684a5c34da376dfc41b2180e7ae70811a21c0b54f3b5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in axp-base (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 70a5f3aa5db3120296ea6ab090412c4520f66f6e1d1de1a451c12db3aeec6cc0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-1213 Malicious code in axp-shared-scripts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1243d32b86a0aa2de720684a5c34da376dfc41b2180e7ae70811a21c0b54f3b5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Cisco Security Advisory: Cisco Application Extension Platform Privilege Escalation Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco Application Extension Platform Privilege Escalation Vulnerability Advisory ID: cisco-sa-20100609-axp Revision 1.0 For Public Release 2010 June 09 1600 UTC GMT...

CVE-2010-1572

Unspecified vulnerability in the tech support diagnostic shell in Cisco Application Extension Platform AXP 1.1 and 1.1.5 allows local users to obtain sensitive configuration information and gain administrator privileges via unspecified API calls...

Design/Logic Flaw

Unspecified vulnerability in the tech support diagnostic shell in Cisco Application Extension Platform AXP 1.1 and 1.1.5 allows local users to obtain sensitive configuration information and gain administrator privileges via unspecified API calls...

CVE-2010-1572

CVE-2010-1572 affects Cisco Application Extension Platform (AXP) versions 1.1 and 1.1.5 (upgraded from 1.1) on Cisco ISRs. A privilege escalation exists in the tech support diagnostic shell: an authenticated AXP user can use the API to execute commands and obtain complete administrative access, r...

CVE-2010-1572

Unspecified vulnerability in the tech support diagnostic shell in Cisco Application Extension Platform AXP 1.1 and 1.1.5 allows local users to obtain sensitive configuration information and gain administrator privileges via unspecified API calls...

High Risk Vulnerability in L-Soft's LISTSERV Server

Peter Winter-Smith of NGSSoftware has discovered a number of vulnerabilities in L-Soft's LISTSERV list management system. The worst of these carries a high risk rating. Affected versions include: - LISTSERV version 14.3, including LISTSERV Lite and HPO - LISTSERV version 1.8e, including LISTSERV...

CVE-1999-1315

CVE-1999-1315 affects DECnet/OSI on OpenVMS prior to 5.8 running on DEC Alpha AXP and VAX/VMS. The vulnerability allows local users to gain privileges or cause a denial of service. The connected documents confirm the affected environment but do not provide detailed root cause, specific vulnerable...

CVE-1999-1312

OpenVMS OpenVMS VAX 5.0–5.5-2 and OpenVMS AXP V1.0 contain a page-management vulnerability that can let an unprivileged user gain full system privileges. An early MACRO-32 exploit was reported; Digital/HP-era advisories recommended upgrading to newer releases (V6.0 and/or V1.5) or applying the st...