PT-2024-37817 · Provd +2 · Provd +2

Name of the Vulnerable Software and Affected Versions: provd versions prior to 0.1.5 Description: An issue was discovered in provd with a setuid binary, which allows a local attacker to escalate their privilege. Recommendations: For versions prior to 0.1.5, update to version 0.1.5 or later to...

Ignite Realtime Openfire Admin Console Detection

Binary data openfiredetect.nbin...

Hierarchical Data Format HDF5 File Detection for Linux/UNIX

Binary data detectmodelfileshdf5.nbin...

Moderate: Red Hat Security Advisory: OpenShift Virtualization 4.15.3 Images security update

Red Hat OpenShift Virtualization release 4.15.3 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which giv...

NextChat / ChatGPT Next Detection

Binary data 701474.prm...

H2O Flow Detection

Binary data 701473.prm...

ZenML Detection

Binary data 701476.prm...

Ray Dashboard Detection

Binary data 701475.prm...

EulerOS Virtualization 2.10.0 : shim (EulerOS-SA-2024-1993)

According to the versions of the shim package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP...

ssh: Prefix truncation attack on Binary Packet Protocol (BPP)

A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure ...

Mattermost Desktop Installed (Windows)

Binary data mattermostdesktopwininstalled.nbin...

CVE-2024-37202

Missing Authorization vulnerability in BinaryCarpenter Ultimate Custom Add To Cart Button Ajax For WooCommerce by Binary Carpenter custom-add-to-cart-button-for-woocommerce.This issue affects Ultimate Custom Add To Cart Button Ajax For WooCommerce by Binary Carpenter: from n/a through = 1.222.17...

CVE-2024-37202 WordPress Ultimate Custom Add To Cart Button (Ajax) For WooCommerce by Binary Carpenter plugin <= 1.222.16 - Broken Access Control to XSS vulnerability

Missing Authorization vulnerability in BinaryCarpenter Ultimate Custom Add To Cart Button Ajax For WooCommerce by Binary Carpenter allows Cross-Site Scripting XSS.This issue affects Ultimate Custom Add To Cart Button Ajax For WooCommerce by Binary Carpenter: from n/a through 1.222.16...

CVE-2024-37202 WordPress Ultimate Custom Add To Cart Button (Ajax) For WooCommerce by Binary Carpenter plugin <= 1.222.17 - Broken Access Control to XSS vulnerability

Missing Authorization vulnerability in BinaryCarpenter Ultimate Custom Add To Cart Button Ajax For WooCommerce by Binary Carpenter custom-add-to-cart-button-for-woocommerce.This issue affects Ultimate Custom Add To Cart Button Ajax For WooCommerce by Binary Carpenter: from n/a through = 1.222.17...

60 New Malicious Packages Uncovered in NuGet Supply Chain Attack

Threat actors have been observed publishing a new wave of malicious packages to the NuGet package manager as part of an ongoing campaign that began in August 2023, while also adding a new layer of stealth to evade detection. The fresh packages, about 60 in number and spanning 290 versions,...

org.bouncycastle: Importing an EC certificate with crafted F2m parameters may lead to Denial of Service

A vulnerability was found in Bouncy Castle. An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy Castle Java BC Java. Importing an EC certificate with crafted F2m parameters can lead to excessive CPU consumption during the evaluation of the curve parameters...

Malicious code in sap-binary (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0872d7b9c61b4123fb88fd6052aac33d85bfb970597dc0fc3be4dab630bc4c57 The OpenSSF Package Analysis project identified 'sap-binary' @ 0.0.0 npm as malicious. It is considered malicious because: - The package...

MAL-2024-7619 Malicious code in sap-binary (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0872d7b9c61b4123fb88fd6052aac33d85bfb970597dc0fc3be4dab630bc4c57 The OpenSSF Package Analysis project identified 'sap-binary' @ 0.0.0 npm as malicious. It is considered malicious because: - The package...

Ruby Programming Language Installed (Linux)

Binary data rubynixinstalled.nbin...

Microsoft Azure Kinect SDK Installed (Windows)

Binary data microsoftazurekinectsdkwininstalled.nbin...