MAL-2025-3205 Malicious code in wormhole-messenger-solana (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3533c227d2e503f88e2ae202b9433a6a7a89000b952c2875242b1834dbd32089 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

2025-04 Cumulative Update for Microsoft server operating system, version 22H2 for x64-based Systems (KB5055526)

Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer...

Malicious code in mtw-capacitor-usb-hid (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d4323a3f80bc8e5ceadb75f1584e0dc478b1a9ed7980736609421a432bd35f50 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in nucleus-form (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ef4a82fababc58d4330f2cc60c17200d50ca1501934c59e081fd469d18282173 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2025-21447 Improper Validation of Array Index in Computer Vision

Memory corruption may occur while processing device IO control call for session control...

MAL-2025-3167 Malicious code in xnil-server (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3080465273f9e03487710425237b11d198e0659208bd5ea0c2c561d43ce54590 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3154 Malicious code in jito-encryption (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3b021845dd618989c11d0735ce9f7a8657d0bf81baea82ce70c5d300191bc9ce Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3147 Malicious code in byted-midas (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c6dc2f04495ba96914b9d781f935e6e0b4e6e610e7b15cf3b603079b0895b9df Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3168 Malicious code in zhilian-js-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1ec576642e5bf8ec161e2f79362ec779bf0fc68660c3bd28136bf39f317b9341 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3159 Malicious code in nusign (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e5abb5aed02d3e6ddea2218e353719dd67a4a00bdc801c4347a7ed49f8f08a1c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in frosty-umbrella (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 20d7f515fb78bec30163c3692d2c0c01dfd49d5027dd597d31294aba1c7e57e5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3153 Malicious code in htps-curl (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b0d98378afd76f3698f358b5925693d03adcca121b546d6d32022b5263e919e5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in goodluckforu (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5854033dc24355896c6c0234a43876ea5cc4b241157df788bec8a3186a995a7e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3165 Malicious code in shiroisthebest (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1e179d4c7188e5eef682908b39cf158311b927536dbae3793020d6d668fb834e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in legacy-actuator-support (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d36c556dbf86cb7f6c937329b814614f149810c3959d22139e4f53b29edee481 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3164 Malicious code in search-benchmark-frontend (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 83090fc7978d15e4a0ee6c1d633d8998d6b7ce00f6c0ec85ec1e6297d679517e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3140 Malicious code in ac-async-helpers (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 18c30e40062c879e036cecb106668987fc0ac36f72dbc91dc345436419e79176 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Web 3.0 Requires Data Integrity

If you've ever taken a computer security class, you've probably learned about the three legs of computer security--confidentiality, integrity, and availability--known as the CIA triad. When we talk about a system being secure, that's what we're referring to. All are important, but to different...

Malicious code in adult-content-detection-aws (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 04c7da4fcfb4de71b19452af0a573b825658e46880b543cb625a25552b249fd1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in skills-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5ddd68a5caf984495eb4aae051d0bdd1bbfb4f1b8163b0dcb86fd996e7f24b16 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...