15490 matches found
CVE-2024-31586
A Cross Site Scripting XSS vulnerability exists in Computer Laboratory Management System version 1.0. This vulnerability allows a remote attacker to execute arbitrary code via the Borrower Name, Department, and Remarks parameters...
Linux kernel security vulnerabilities
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel has a security vulnerability that stems from a security issue in scsi bfa...
Internet Computer Protocol Launches Walletless Verified Credentials for Public Trust
Internet Computer Protocol ICP introduces Verified Credentials VCs, a walletless solution enhancing data sharing privacy. Unveiled at DICE 2024, VCs help combat bots and fake accounts on social media, ensuring secure and efficient verification...
Malicious code in rb-fare-breakup (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 25a5d54730dc9f0fde2c00fc22012602258fa2002141d77e8c09f61347a82e33 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in logo-stylee (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d393decd83d9e9777b1412a8994e72ccb1fdccc3a8157a431f4e72fe8553e717 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-1639 Malicious code in stylee-logo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b57b986ab11403a14ac18370067dd40fc0a3deca0e7580b55605078ea441e720 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Ricoh Streamline NX PC Client Security Vulnerability
Ricoh Streamline NX PC Client is a document management PC client application from Ricoh Japan. A security vulnerability exists in Ricoh Streamline NX PC Client version 3.7.2 and earlier versions, which stems from the use of hard-coded credentials...
Ricoh Streamline NX PC Client Security Vulnerability
Ricoh Streamline NX PC Client is a document management PC client application from Ricoh Japan. A security vulnerability exists in Ricoh Streamline NX PC Client that originates from a vulnerability that allows an attacker to tamper with arbitrary files on the PC where the product is installed...
MAL-2024-1623 Malicious code in corraldev-activationsvc (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 783e4eb475d74b1b4adc4aa4851393ded5ef222b3779734a8b1e4fe125605c6d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Ukraine Police Arrest Suspect Linked to LockBit and Conti Ransomware Groups
The Cyber Police of Ukraine has announced the arrest of a local man who is suspected to have offered their services to LockBit and Conti ransomware groups. The unnamed 28-year-old native of the Kharkiv region allegedly specialized in the development of crypters to encrypt and obfuscate malicious...
MAL-2024-1608 Malicious code in legacyreact-aws-s3-typescript (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 60942b87c6d2334d09d059276cc2d838002e2e0f5093e53fc6819e1972e02282 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-1604 Malicious code in @yashorg/frontend-logger (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ff07f4f96c73a58bf8e1069d844465549fbe1c2a9dd169ef994b1124c5a143e3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
PT-2024-27348 · Microsoft +1 · Azure Blob Storage +1
Name of the Vulnerable Software and Affected Versions: Computer Vision Annotation Tool CVAT versions 2.1.0 through 2.14.3 Description: The issue allows an attacker with a CVAT account to exploit a feature by specifying custom endpoint URLs for cloud storages based on Amazon S3 and Azure Blob...
CVAT Security Vulnerabilities
CVAT is an interactive video and image annotation tool for computer vision. A security vulnerability exists in CVAT Computer Vision Annotation Tool version 2.1.0 through versions prior to 2.14.3. An attacker can exploit the vulnerability to obtain sensitive information...
CVAT Security Vulnerabilities
CVAT is an interactive video and image annotation tool for computer vision. A security vulnerability exists in CVAT version 2.2.0 through versions prior to 2.14.3. An attacker exploiting this vulnerability could obtain media files, annotations, settings, and other information from any project,...
Malicious code in v2-core (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 51e0286004b6b184a7ae2c0a7110095cd51122ae1c9ccc69db8d1bfd7380dfed Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-1598 Malicious code in ozon-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e6a05e800a141f7c456358b5d20b4e3cebc65f9d0229d0024fae5b1e51ed1e51 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in core-webpack (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6b8224957c90ee66ed3cc6af4e8b300d5eb082f8368f94b725e53bbfed9ccbf2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-1593 Malicious code in ato-z-web-identity-components-app-cdk-adp-wrapper (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c33c62d31d74de8fa6a7a3911507ce9a8d513bccb45ff1b51b7fbb9068920d3e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-1594 Malicious code in atoz-attendance-app (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ff390162beebf06ba564766a3ffc0a06c520792994c16cba3ea0d97ea64d1f29 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...