5 matches found
CVE-2026-10557
CVE-2026-10557 concerns the Yarbo Android/iOS mobile applications, where hard-coded MQTT broker credentials are embedded in the application binary and identical across all users/devices. These credentials are extractable via APK decompilation and provide access to cloud MQTT brokers carrying real...
EUVD-2023-34351
Malicious code in bioql PyPI...
Malicious code in gatsby-delphinus-command-publish (npm)
The package gatsby-delphinus-command-publish was found to contain malicious code...
MAL-2025-21205 Malicious code in gatsby-delphinus-command-publish (npm)
The package gatsby-delphinus-command-publish was found to contain malicious code...
UBUNTU-CVE-2022-22941
An issue was discovered in SaltStack Salt in versions before 3002.8, 3003.4, 3004.1. When configured as a Master-of-Masters, with a publisheracl, if a user configured in the publisheracl targets any minion connected to the Syndic, the Salt Master incorrectly interpreted no valid targets as valid,...