52 matches found
EUVD-2025-137037
Malicious code in imodiov-omfi-caa npm...
EUVD-2018-13430
Malware in sbrugna...
CVE-2018-20892
cPanel before 74.0.0 allows arbitrary zone file modifications because of incorrect CAA record handling SEC-439...
3s-smart Software Solutions CODESYS Control Operating System Command Injection Vulnerability
3s-smart Software Solutions CODESYS Control is a suite of industrial control program programming software from 3s-smart Software Solutions, Germany. An operating system command injection vulnerability exists in 3s-smart Software Solutions CODESYS Control versions prior to 4.11.0.0. The...
3yrs of CAA ASSURE assessments. What we’ve learned
Introduction Were now in our third year of CREST CAA ASSURE auditing and weve learned a lot. The Cyber Assessment Framework CAF is big, theres no denying that. It’s not something that you can complete overnight, it’s not something that requires minimal effort and can just be thrown at an auditor ...
SUSE CVE-2019-9022
An issue was discovered in PHP 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.2. dnsgetrecord misparses a DNS response, which can allow a hostile DNS server to cause PHP to misuse memcpy, leading to read operations going past the buffer allocated for DNS data. This affects phpparser...
CVE-2022-39165
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial of service. IBM X-Force ID: 235183...
CVE-2022-39165
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial of service. IBM X-Force ID: 235183...
CVE-2022-39165 IBM AIX denial of service
IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in CAA to cause a denial of service. IBM X-Force ID: 235183...
CVE-2022-39165
CVE-2022-39165 affects IBM AIX 7.1, 7.2, 7.3 and VIOS 3.1. It is a local, non-privileged user vulnerability in the CAA component that can cause a denial of service. The IBM security bulletin notes an impact of Availability (A) = High with Privileges Required = None and Local access. AIX/VIOS patc...
AIX : Multiple Vulnerabilities (IJ42938)
The version of AIX installed on the remote host is prior to APAR IJ42938. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ42938 advisory. - IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX NFS kernel...
AIX : Multiple Vulnerabilities (IJ43099)
The version of AIX installed on the remote host is prior to APAR IJ43099. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ43099 advisory. - IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX NFS kernel...
AIX : Multiple Vulnerabilities (IJ41975)
The version of AIX installed on the remote host is prior to APAR IJ41975. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ41975 advisory. - IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX NFS kernel...
AIX : Multiple Vulnerabilities (IJ43891)
The version of AIX installed on the remote host is prior to APAR IJ43891. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ43891 advisory. - IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX NFS kernel...
AIX 7.2 TL 5 : kernel (IJ43869)
https://vulners.com/cve/CVE-2022-39164 https://vulners.com/cve/CVE-2022-39164 IBM AIX could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to obtain root privileges. IBM AIX could allow a non-privileged local user to exploit a vulnerability in the AIX NFS kernel...
AIX 7.2 TL 5 : kernel (IJ43598)
https://vulners.com/cve/CVE-2022-39164 https://vulners.com/cve/CVE-2022-39164 IBM AIX could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to obtain root privileges. IBM AIX could allow a non-privileged local user to exploit a vulnerability in the AIX NFS kernel...
AIX : Multiple Vulnerabilities (IJ43072)
The version of AIX installed on the remote host is prior to APAR IJ43072. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ43072 advisory. - IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX NFS kernel...
AIX 7.2 TL 5 : kernel (IJ44116)
https://vulners.com/cve/CVE-2022-39164 https://vulners.com/cve/CVE-2022-39164 IBM AIX could allow a non-privileged local user to exploit a vulnerability in the AIX kernel to obtain root privileges. IBM AIX could allow a non-privileged local user to exploit a vulnerability in the AIX NFS kernel...
PT-2022-24787 · Ibm · Vios +1
Name of the Vulnerable Software and Affected Versions: IBM AIX versions 7.1 through 7.3 VIOS version 3.1 Description: The issue allows a non-privileged local user to exploit a vulnerability in the CAA or the AIX pfcdd kernel extension to cause a denial of service. Recommendations: For IBM AIX...
MAL-2022-6202 Malicious code in softomate-caa-module (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 37fc0a9f0d92e113a8543567f176482b40a2310ca6930700c78602b50ee5bd1b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...