15435 matches found
Malicious code in @hashicorp-internal/vault-reporting (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 85e2c508de22734977cac24ec430b5cfece85e6367f577df76caa740b5594eb7 The package @hashicorp-internal/vault-reporting was found to contain malicious code. Source: ghsa-malware...
CVE-2020-37142
10-Strike Network Inventory Explorer 8.54 contains a structured exception handler buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting SEH records. Attackers can craft a malicious payload targeting the 'Computer' parameter during the 'Add' function to trigg...
CVE-2020-37142
10-Strike Network Inventory Explorer 8.54 contains a structured exception handler buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting SEH records. Attackers can craft a malicious payload targeting the 'Computer' parameter during the 'Add' function to trigg...
CVE-2020-37142
10-Strike Network Inventory Explorer 8.54 contains a structured exception handler buffer overflow in the Add function that allows an attacker to execute arbitrary code by overwriting SEH records. A malicious payload targeting the Computer parameter can trigger remote code execution. Connected sou...
EUVD-2020-31036
10-Strike Network Inventory Explorer 8.54 contains a structured exception handler buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting SEH records. Attackers can craft a malicious payload targeting the 'Computer' parameter during the 'Add' function to trigg...
CVE-2020-37142 10-Strike Network Inventory Explorer 8.54 - 'Add' Local Buffer Overflow (SEH)
10-Strike Network Inventory Explorer 8.54 contains a structured exception handler buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting SEH records. Attackers can craft a malicious payload targeting the 'Computer' parameter during the 'Add' function to trigg...
MAL-2026-756 Malicious code in cat-retail-app (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28595a83aef3c3c9726d6ab0fc4b4d761a0a0c9f12ac91d4d84bda7135d46786 The package cat-retail-app was found to contain malicious code. Source: ghsa-malware b05f145df7999baec69425a057fe9a33c6a65726ca898c89b80cb23526f54bae...
MAL-2026-750 Malicious code in dspmobile (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dcd390d34dbfd7246c65b551f8b71dfaba4b78fa438e818cab41a0ea35716c21 The package dspmobile was found to contain malicious code. Source: ghsa-malware 73466b34e7f0da321f410baa9db15370fbf0563af429ef587315608e3507f2b6 Any...
Malicious code in dspmobile (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dcd390d34dbfd7246c65b551f8b71dfaba4b78fa438e818cab41a0ea35716c21 The package dspmobile was found to contain malicious code. Source: ghsa-malware 73466b34e7f0da321f410baa9db15370fbf0563af429ef587315608e3507f2b6 Any...
SUSE CVE-2026-23110
In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...
ROS-20260205-73-0031
A vulnerability in the scsi.c component of the Linux operating system is related to an operation exceeding buffer boundaries in memory. Exploitation of the vulnerability allows an attacker to cause a denial of service...
ROS-20260205-73-0032
A vulnerability in the iscsi component of the Linux operating system kernel is related to pointer dereferencing errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
PT-2026-6584
Name of the Vulnerable Software and Affected Versions 10-Strike Network Inventory Explorer version 8.54 Description The software contains a structured exception handler buffer overflow that allows for arbitrary code execution by overwriting SEH records. An attacker can trigger this by crafting a...
Malicious code in react-vite-sync (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9f5300073ebcda0869cf258bc5c567c6afc40942b14d14a97bfeaa2eaff1b9c The package react-vite-sync was found to contain malicious code. Source: ghsa-malware 971cc1d747c2d072e4a3cc272143be37bbd2162968dfd682012890e87cda562...
MAL-2026-747 Malicious code in react-vite-sync (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9f5300073ebcda0869cf258bc5c567c6afc40942b14d14a97bfeaa2eaff1b9c The package react-vite-sync was found to contain malicious code. Source: ghsa-malware 971cc1d747c2d072e4a3cc272143be37bbd2162968dfd682012890e87cda562...
MAL-2026-748 Malicious code in web3-chain-sync (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8092971594fb2e6c9a5748ec492ca88c9a8cc396917b314f09e5c3c85e0d130 The package web3-chain-sync was found to contain malicious code. Source: ghsa-malware a73489541e1d91e9e98d8ee52b10cc423ddd5b990bee23731cfa78e9bce3be0...
Malicious code in @msecscc/gaia (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 35c005bdb108aca2e4bc9842086fa98dd73b442764e4e7814fd6e7a9fa7010dd The package @msecscc/gaia was found to contain malicious code. Source: ghsa-malware 5186ac1e518b181d1e03469aa042d8dddefbe3345b3c85d5b795ed329e5c3a73...
Malicious code in mdp-client-web (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3bae22cc58ac4c2a2b449514ef62c82fde3dd2d6d0d5697b3689f16c8583e62b The package mdp-client-web was found to contain malicious code. Source: ghsa-malware 070c26f2080c516dd8c197674dcc76a911d4dfb62242027e1d50a04c4536f0b2...
CVE-2026-23110
In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...
CVE-2026-23059
In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Sanitize payload size to prevent member overflow In qla27xxcopyfpinpkt and qla27xxcopymultiplepkt, the framesize reported by firmware is used to calculate the copy length into item-iocb. However, the iocb member is...