Host Active Directory Configuration (Linux)

Binary data hostadconfiglinux.nbin...

ProjectSend Detection

Binary data projectsendprojectsenddetect.nbin...

BeyondTrust Remote Support Unsupported Version Detection

Binary data beyondtrustremotesupportunsupported.nbin...

Beyondtrust Remote Support Detection

Binary data beyondtrustremotesupportdetect.nbin...

BeyondTrust Privileged Remote Access Detection

Binary data beyondtrustprivilegedremoteaccessdetect.nbin...

Malicious code in solaraexecutor (npm)

This package uses obfuscation to hide that its downloading a malicious binary from an attacker-controlled domain --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b8807e1265b0c39afd3a6507559deb211f67d9a559b8094aecea14d18f30dcf7 Any computer that has this package...

Malicious code in xeno.dll (npm)

This package uses obfuscation to hide that its downloading a malicious binary from an attacker-controlled domain --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8903fab539c0352f278ee3116807f48f52403f7e26b855fe9d68c3328012200d Any computer that has this package...

The vulnerability of the amdtee component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the amdtee component in the Linux operating system’s kernel is related to the assignment of the NULL pointer in the copytabinary function. Exploiting this vulnerability can allow an attacker to cause a service failure...

CVE-2024-53241

In the Linux kernel, the following vulnerability has been resolved: x86/xen: don't do PV iret hypercall through hypercall page Instead of jumping to the Xen hypercall page for doing the iret hypercall, directly code the required sequence in xen-asm.S. This is done in preparation of no longer usin...

Dell Integrated Remote Access Controller (iDRAC) OS Detection

Binary data dellidracdetect.nbin...

Dell Integrated Remote Access Controller (iDRAC) Hardware Detection

Binary data dellidracdevicedetect.nbin...

CVE-2024-53256 Rizin has a command injection via RzBinInfo bclass due legacy code

Rizin is a UNIX-like reverse engineering framework and command-line toolset. rizin.c still had an old snippet of code which suffered a command injection due the usage of rzcorecmdf to invoke the command m which was removed in v0.1.x. A malicious binary defining bclass part of RzBinInfo is execute...

GO-2024-3344 Malicious plugin names, recipients, or identities causing arbitrary binary execution in filippo.io/age

Malicious plugin names, recipients, or identities causing arbitrary binary execution in filippo.io/age...

Ivanti Security Controls Installed (Windows)

Binary data ivantisecuritycontrolsdetectwin.nbin...

CVE-2024-56327

CVE-2024-56327 concerns pyrage (Python bindings for age). The underlying age crate is affected per GHSA-4fg7-vxc8-qx5w; pyrage versions before 1.2.0 lack plugin support and are stated as not affected. The advisory notes that the issue is addressed in pyrage 1.2.3; update to 1.2.3 or later. No pub...

CVE-2024-56327 Malicious plugin names, recipients, or identities can cause arbitrary binary execution in pyrage

pyrage is a set of Python bindings for the rage file encryption library age in Rust. pyrage uses the Rust age crate for its underlying operations, and age is vulnerable to GHSA-4fg7-vxc8-qx5w. All details of GHSA-4fg7-vxc8-qx5w are relevant to pyrage for the versions specified in this advisory. S...

CVE-2024-56327 Malicious plugin names, recipients, or identities can cause arbitrary binary execution in pyrage

pyrage is a set of Python bindings for the rage file encryption library age in Rust. pyrage uses the Rust age crate for its underlying operations, and age is vulnerable to GHSA-4fg7-vxc8-qx5w. All details of GHSA-4fg7-vxc8-qx5w are relevant to pyrage for the versions specified in this advisory. S...

GHSA-47H8-JMP3-9F28 pyrage vulnerable to malicious plugin names, recipients, or identities causing arbitrary binary execution

pyrage uses the Rust age crate for its underlying operations, and age is vulnerable to GHSA-4fg7-vxc8-qx5w. All details of GHSA-4fg7-vxc8-qx5w are relevant to pyrage for the versions specified in this advisory. See GHSA-4fg7-vxc8-qx5w for full details. Versions of pyrage before 1.2.0 lack plugin...

CVE-2024-45819

PVH guests have their ACPI tables constructed by the toolstack. The construction involves building the tables in local memory, which are then copied into guest memory. While actually used parts of the local memory are filled in correctly, excess space that is being allocated is left with its prio...

Important: xstream

Issue Overview: XStream is vulnerable to a Denial of Service attack due to stack overflow from a manipulated binary input stream. XStream provides a BinaryStreamDriver with an own optimized serialization format. The format uses ids for string values as deduplication. The mapping for these ids are...