PT-2026-7587

A Time-of-check time-of-use TOCTOU race condition in the AMD Secure Processor ASP could allow an attacker to modify External Global Memory Interconnect Trusted Agent XGMI TA commands as they are processed potentially resulting in loss of confidentiality, integrity, or availability...

EUVD-2014-6146

Malware in sbrugna...

EUVD-2015-8127

Malware in sbrugna...

EUVD-2009-4083

Malware in sbrugna...

EUVD-2022-34513

Malicious code in bioql PyPI...

EUVD-2024-30754

Malicious code in bioql PyPI...

CVE-2025-52923

Sangfor aTrust through 2.4.10 allows users to modify the ExecStartPre command...

CVE-2025-52923

Sangfor aTrust through 2.4.10 allows users to modify the ExecStartPre command...

PT-2025-26534 · Sangfor · Sangfor Atrust

Name of the Vulnerable Software and Affected Versions: Sangfor aTrust versions through 2.4.10 Description: The issue allows users to modify the ExecStartPre command. Recommendations: For Sangfor aTrust versions through 2.4.10, consider restricting access to the ExecStartPre command to prevent...

Obfuscation: There Are Two Sides To Everything

How to detect and prevent attackers from using these various techniques Obfuscation is an important technique for protecting software that also carries risks, especially when used by malware authors. In this article, we examine obfuscation, its effects, and responses to it. What Is Obfuscation?...

CVE-2023-1257

An attacker with physical access to the affected Moxa UC Series devices can initiate a restart of the device and gain access to its BIOS. Command line options can then be altered, allowing the attacker to access the terminal. From the terminal, the attacker can modify the device’s authentication...

SUSE CVE-2015-8239

The SHA-2 digest support in the sudoers plugin in sudo after 1.8.7 allows local users with write permissions to parts of the called command to replace them before it is executed...

CVE-2022-33186

A vulnerability in Brocade Fabric OS software v9.1.1, v9.0.1e, v8.2.3c, v7.4.2j, and earlier versions could allow a remote unauthenticated attacker to execute on a Brocade Fabric OS switch commands capable of modifying zoning, disabling the switch, disabling ports, and modifying the switch IP...

Design/Logic Flaw

TOTOLINK A3002RU-V2.0.0 B20190814.1034 allows authenticated remote users to modify the system's 'Run Command'. An attacker can use this functionality to execute arbitrary OS commands on the router...

DEBIAN-CVE-2015-8239

The SHA-2 digest support in the sudoers plugin in sudo after 1.8.7 allows local users with write permissions to parts of the called command to replace them before it is executed...