CVE-2025-11490

A vulnerability has been found in wonderwhy-er DesktopCommanderMCP up to 0.2.13. The affected element is the function extractBaseCommand of the file src/command-manager.ts of the component Absolute Path Handler. Such manipulation leads to os command injection. The attack may be performed from...

Command Injection

Overview @wonderwhy-er/desktop-commander is a MCP server for terminal operations and file editing Affected versions of this package are vulnerable to Command Injection via the extractBaseCommand function. An attacker can execute arbitrary operating system commands by supplying crafted input that ...

CVE-2025-11490

A vulnerability has been found in wonderwhy-er DesktopCommanderMCP up to 0.2.13. The affected element is the function extractBaseCommand of the file src/command-manager.ts of the component Absolute Path Handler. Such manipulation leads to os command injection. The attack may be performed from...

EUVD-2024-15937

Malicious code in bioql PyPI...

CVE-2024-0138

NVIDIA Base Command Manager contains a missing authentication vulnerability in the CMDaemon component. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering...

CVE-2024-0139

NVIDIA Base Command Manager and Bright Cluster Manager for Linux contain an insecure temporary file vulnerability. A successful exploit of this vulnerability might lead to denial of service...

CVE-2024-0139

NVIDIA Base Command Manager and Bright Cluster Manager for Linux contain an insecure temporary file vulnerability. A successful exploit of this vulnerability might lead to denial of service...

CVE-2024-0139

NVIDIA Base Command Manager and Bright Cluster Manager for Linux are affected by an insecure temporary file handling vulnerability. The issue impacts the CMdaemon component and may allow a local attacker to cause a denial of service (per CVSS: Local vector, High availability impact). Affected pro...

CVE-2024-0139

NVIDIA Base Command Manager and Bright Cluster Manager for Linux contain an insecure temporary file vulnerability. A successful exploit of this vulnerability might lead to denial of service...

PT-2024-15358 · Nvidia +1 · Nvidia Base Command Manager +1

Name of the Vulnerable Software and Affected Versions: NVIDIA Base Command Manager and Bright Cluster Manager for Linux affected versions not specified Description: The issue is related to an insecure temporary file vulnerability. A successful exploit of this vulnerability might lead to denial of...

NVIDIA Base Command Manager和NVIDIA Bright Cluster Manager 安全漏洞

NVIDIA Base Command Manager and NVIDIA Bright Cluster Manager are both products of NVIDIA Corporation.NVIDIA Base Command Manager is a base command manager.NVIDIA Bright Cluster Manager is a cluster manager. NVIDIA Bright Cluster Manager is a cluster manager. NVIDIA Bright Cluster Manager is a...

Security Bulletin: NVIDIA Base Command and Bright Cluster Managers - November 2024

NVIDIA has released a software update for NVIDIA Base Command and Bright Cluster Managers to address the security issues listed below. To protect your system, update the CMdaemon package on the head node and in software images. Go to NVIDIA Product Security...

CVE-2024-0138

NVIDIA Base Command Manager contains a missing authentication vulnerability in the CMDaemon component. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering...

NVIDIA Base Command Manager 安全漏洞

NVIDIA Base Command Manager is a base command manager from NVIDIA Corporation. A security vulnerability exists in NVIDIA Base Command Manager that stems from a lack of authentication, successful exploitation of which could lead to code execution, denial of service, privilege escalation, informati...

CVE-2024-0138

NVIDIA Base Command Manager contains a missing authentication vulnerability in the CMDaemon component. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering...

CVE-2024-0138

NVIDIA Base Command Manager contains a missing authentication vulnerability in the CMDaemon component. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering...

CVE-2024-0138

CVE-2024-0138 affects NVIDIA Base Command Manager, specifically the CMDaemon, with a missing authentication vulnerability. Exact impacts listed include code execution, denial of service, privilege escalation, information disclosure, and data tampering. The NVIDIA bulletin states affected versions...

PT-2024-8605 · Nvidia · Nvidia Base Command Manager

Name of the Vulnerable Software and Affected Versions: NVIDIA Base Command Manager affected versions not specified Description: The issue is related to a missing authentication vulnerability in the CMDaemon component. A successful exploit of this vulnerability might lead to code execution, denial...