Malicious code in dmn-editor-envelope (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cea2a6739abd5713f936e329c35aab9e44e6296aa0998b622c48217a3c1fbd50 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8917 Malicious code in ibm-strings (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9d299d0b8d9bf7cc9c318e385566c4f1c9c972374224f38ac12d8fb90612dbdb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8904 Malicious code in rokihfds (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7fad727b92f69c33ce99be8084a48ca2fcbbee267db6893b3bcd1a875612cf94 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8910 Malicious code in zama1.js (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2afbc5173ad05196006544f59dceeb925749886b3658d14e9fe6ef4fc721c4b7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in temp928546 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9ce0eef84654ac11c5ab26063df541ecb6b38f4ee9d29996ad53f8af13363339 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8906 Malicious code in temp928546 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9ce0eef84654ac11c5ab26063df541ecb6b38f4ee9d29996ad53f8af13363339 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2024-8110

Denial of Service DoS vulnerability has been found in Dual-redundant Platform for Computer. If a computer on which the affected product is installed receives a large number of UDP broadcast packets in a short period, occasionally that computer may restart. If both the active and standby computers...

CVE-2024-8110

Yokogawa Dual-redundant Platform for Computer (PC2CKM) is affected for versions R1.01.00–R2.03.00. CVE-2024-8110 describes an UNCHECKED RETURN VALUE (CWE-252) DoS: receiving a high volume of UDP broadcast packets may cause a restart, potentially making both active and standby units fail simultane...

CVE-2024-8110

Denial of Service DoS vulnerability has been found in Dual-redundant Platform for Computer. If a computer on which the affected product is installed receives a large number of UDP broadcast packets in a short period, occasionally that computer may restart. If both the active and standby computers...

MAL-2024-8893 Malicious code in latam-xp-analytics-plugin-bloomreach (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 46687ff096af514b5081dc4a34a83f209ca1ad61f07606c88537ffc54f3054ca Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2024-40862

A privacy issue was addressed by removing sensitive data. This issue is fixed in Xcode 16. An attacker may be able to determine the Apple ID of the owner of the computer...

Yokogawa Dual-redundant Platform for Computer 安全漏洞

Yokogawa Dual-redundant Platform for Computer is a dual-redundant platform for computers from Yokogawa Electric Yokogawa, Japan. A security vulnerability exists in Yokogawa Dual-redundant Platform for Computer versions R1.01.00 through R2.03.00, which originates from a denial of service DoS that...

Apple Xcode 安全漏洞

Apple Xcode is a set of integrated development environments provided to developers by Apple Inc. in the United States, which is primarily used to develop applications for Mac OS X and iOS. A security vulnerability exists in Apple Xcode version 16, which stems from the fact that an attacker may be...

CVE-2024-40862

CVE-2024-40862 pertains to an Apple Xcode security issue where an attacker could determine the Apple ID of the computer owner. All connected documents identify this as a privacy flaw that was addressed by removing sensitive data and fixes are available in Xcode 16. The vulnerability is described ...

MAL-2024-8878 Malicious code in awsspeedtest (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 012aacebbb501da70ce895c4dc900a4784e35649b9eacbacf304f5aff9f913a7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Command Execution Vulnerability in FW Next Generation Firewall of Shanghai Bingfeng Computer Network Technology Co.

Shanghai Bingfeng Computer Network Technology Co., Ltd. specializes in the research and development and sales of VPN, firewall, Internet behavior management and other network security products, and is committed to providing China's network communication operators and enterprises and institutions...

CVE-2024-6259

BT: HCI: advextreport Improper discarding in advextreport...

PT-2024-30295 · Automationdirect · Directlogic H2-Dm1E +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue concerns a session hijacking attack targeting the application layer's control mechanism. This mechanism manages authenticated sessions between...

Eaton Foreseer EPMS 安全漏洞

Eaton Foreseer EPMS is a highly customizable web-based software platform from Eaton Corporation. A security vulnerability exists in Eaton Foreseer EPMS prior to version 7.8.600, which arises from a key used to encrypt server configurations that is insecurely stored on the host computer and can be...

MAL-2024-8872 Malicious code in quickread (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f630b92e6f63b18cbb46723f537d664a3aa6d2871a8d3add8834ec33f9d9e40f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...