15487 matches found
MAL-2025-3672 Malicious code in @johndeere-tech/eslint-plugin-timbercloud-custom-rules (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 61308d7848e55b8e455ca17307d037a12cbcb121760bacc64d9f8b574c08861d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3675 Malicious code in @klarna-travel-platform/travel-booking-shared-types (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f013426be635a2310d1320cacca5b4ce5067f6686d76993ed1ea4ef590315037 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in create-krnl-app (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 211459e94c3ff6a3713ee7a8327fdef67b1eaac62530f22c658dad263fa901db Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3680 Malicious code in create-krnl-app (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 211459e94c3ff6a3713ee7a8327fdef67b1eaac62530f22c658dad263fa901db Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3693 Malicious code in outline-shadowsocksconfig (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ac9c30589865091fb269aa3d3071ffe0d15ca8b8a8848e0363d338514f8b89ca Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3687 Malicious code in graphalgo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d5d170316b7d69234c298baf1d1364ae3207e2f0774c87782a648d4c492920bc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3692 Malicious code in orvyn (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cd01e3d586f0edf229980ae5ae7260dfec26f727da9ac8379a5ff20a4972b45a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3683 Malicious code in fluenceenergy (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 284d05a8d0a82cbe67dd78663f9b75503f5d9ab1d9aa990f6c6c800c07ca409b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3685 Malicious code in framer-motion-ext (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c0d106ab331c0898de25fe772017b00559c67c1738cb04dfa7c3a93c3005bdb8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
SMB to HTTP relay version of Get NAA Creds
This module creates an SMB server and then relays the credentials passed to it to SCCM's HTTP server aka Management Point to gain an authenticated connection. Once authenticated it then attempts to retrieve the Network Access Accounts, if configured, from the SCCM server. This requires a computer...
CVE-2025-21468 Out-of-bounds Write in Computer Vision
Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer...
CVE-2025-21467 Out-of-bounds Write in Computer Vision
Memory corruption while reading the FW response from the shared queue...
CVE-2025-21467 Out-of-bounds Write in Computer Vision
Memory corruption while reading the FW response from the shared queue...
CVE-2025-21462 Out-of-bounds Write in Computer Vision
Memory corruption while processing an IOCTL request, when buffer significantly exceeds the command argument limit...
Malicious code in slimdx (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c2f226420f343b927fbc14d4e38eba517fc139753e2d5a7006cc0a251cdc8b0c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3647 Malicious code in slimdx (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c2f226420f343b927fbc14d4e38eba517fc139753e2d5a7006cc0a251cdc8b0c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in psalm (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5d26bf3019de08d180b77c247eccead3652df56189c359c26006236d5ae54aa0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in reactotron-mobx (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6abab59ec03274fee4d2b17fe9dd59071456e1952398803ef43e080a6915bd7d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in internal-company-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6546fa1cf98f708a73bf9fbfdaeeef7667dc18db200c8b221c4e61a1507d02a3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3614 Malicious code in babel-plugin-some-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2ef77aeb30aa83ff02708a8b79fc182591838ee0f280c48d729eca82e9a60bb4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...