CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 81407cede8c4a0a29787867b0a52b7947864a775ff7efbe05ce00785ea6160a0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score

Exploits0References4

OSV•added 2025/10/07 12:16 a.m.•1 views

MAL-2025-47922 Malicious code in cryptodotjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e1cfa09b618dc51e1ed65556120fb823276eaaaa7a3e75a2c684da978cd11842 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score

Exploits0References1

OSSF Malicious Packages•added 2025/10/07 12:10 a.m.•2 views

Malicious code in @winstan/binston (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d5a456158c683cc4e3bd977ec81310c39b3cf491b14458ed49766c0f58805cec Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score

Exploits0References1

OSV•added 2025/10/07 12:10 a.m.•1 views

MAL-2025-47921 Malicious code in @winstan/vinston (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 701c8532f7235adb3a68d19af65d9a7b583be566885ae32b443bb5789e58ec84 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score

Exploits0References1

Packet Storm News•added 2025/10/07 12:0 a.m.•2 views

Code Agent Can Be an End-To-End System Hacker: Benchmarking Real-World Threats of Computer-Use Agent

Computer-use agent CUA frameworks, powered by large language models LLMs or multimodal LLMs MLLMs, are rapidly maturing as assistants that can perceive context, reason, and act directly within software environments. Among their most critical applications is operating system OS control. As CUAs in...

7AI score

Exploits0

Redos•added 2025/10/07 12:0 a.m.•2 views

ROS-20251007-04

A vulnerability in GLPI's computer hardware request, incident, and inventory system is related to a key-based authorization bypass. key authorization. Exploitation of the vulnerability could allow a remote intruder, compromise the system Vulnerability in the GLPI computer equipment request,...

6.5CVSS4.9AI score0.00239EPSS

Exploits0

OSV•added 2025/10/05 8:31 p.m.•1 views

MAL-2025-48084 Malicious code in vn-hrm (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9d7e7500ba0af4e9b2c0354a3820e7c28cc50ed3e9092db9e4c3c3cba3958234 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score

Exploits0References1

OSV•added 2025/10/04 3:44 p.m.•2 views

CVE-2023-53609 scsi: Revert "scsi: core: Do not increase scsi_device's iorequest_cnt if dispatch failed"

In the Linux kernel, the following vulnerability has been resolved: scsi: Revert "scsi: core: Do not increase scsidevice's iorequestcnt if dispatch failed" The "atomicinc&cmd-device-iorequestcnt" in scsiqueuerq would cause kernel panic because cmd-device may be freed after returning from...

5.5CVSS6.5AI score0.00116EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2025-18191

Malicious code in bioql PyPI...

4.3CVSS6.6AI score0.00274EPSS

Exploits0References7

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2023-58449

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.01595EPSS

Exploits0References1