MAL-2024-1406 Malicious code in @juiggitea/amet-beatae-voluptatum-cum (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 018bdb0bbe62400a03d4b073b8822218185c13453cff98fb6343d9e931958537 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-1505 Malicious code in co-pilot-auth_web (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d490be43502540c62a740310c0ab3d38a35220e7b32f029a0c7e79e191104015 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-1516 Malicious code in eslint-config-bragi (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 729e851afe55af274e357a46544f9bd048813b8ce8f08f586c4c9d0146faa3a3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

[SECURITY] Fedora 39 Update: snapshot-45.2-2.fc39

Take pictures and videos on your computer, tablet, or phone...

Exploit for CVE-2024-37705

Exploit-PoCs Proof of Concepts PoC and some meme vulnerb...

CVE-2024-33223

An issue in the component IOMap64.sys of ASUSTeK Computer Inc ASUS GPU TweakII v1.4.5.2 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests...

CVE-2024-33222

An issue in the component ATSZIO64.sys of ASUSTeK Computer Inc ASUS ATSZIO Driver v0.2.1.7 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests...

CVE-2024-33220

An issue in the component AslO364.sys of ASUSTeK Computer Inc AISuite3 v3.03.36 3.03.36 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests...

CVE-2024-33218

An issue in the component AsUpIO64.sys of ASUSTeK Computer Inc ASUS USB 3.0 Boost Storage Driver 5.30.20.0 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests...

CVE-2024-33221

An issue in the component AsusBSItf.sys of ASUSTeK Computer Inc ASUS BIOS Flash Driver v3.2.12.0 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests...

CVE-2024-33223

An issue in the component IOMap64.sys of ASUSTeK Computer Inc ASUS GPU TweakII v1.4.5.2 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests...

CVE-2024-33223

CVE-2024-33223 affects ASUS GPU TweakII v1.4.5.2; the issue lies in the IOMap64.sys component, enabling attackers to escalate privileges and execute arbitrary code by sending crafted IOCTL requests. Mitigation from PT-Security recommends disabling IOMap64.sys until a patch is available. Documenta...

CVE-2024-33222

An issue in the component ATSZIO64.sys of ASUSTeK Computer Inc ASUS ATSZIO Driver v0.2.1.7 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests...

CVE-2024-33219

An issue in the component AsIO64.sys of ASUSTeK Computer Inc ASUS SABERTOOTH X99 Driver v1.0.1.0 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests...

CVE-2024-33219

CVE-2024-33219 affects the AsIO64.sys component in ASUSTeK (ASUS) SABERTOOTH X99 Driver v1.0.1.0. The issue allows local privilege escalation and arbitrary code execution via specially crafted IOCTL requests, with a CVSS v3.1 base score of 7.8 (Impact: Confidentiality, Integrity, Availability Hig...

CVE-2024-33218

The CVE-2024-33218 entry concerns ASUSTeK Computer Inc.’s ASUS USB 3.0 Boost Storage Driver (version 5.30.20.0) and its AsUpIO64.sys component. The vulnerability allows attackers to escalate privileges and execute arbitrary code by sending crafted IOCTL requests, with local attack potential and h...

CVE-2024-33218

An issue in the component AsUpIO64.sys of ASUSTeK Computer Inc ASUS USB 3.0 Boost Storage Driver 5.30.20.0 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests...

The vulnerability of the Adobe Animate software for creating multimedia and computer animations, related to integer overflow, allows attackers to execute arbitrary code.

The vulnerability of the Adobe Animate software for creating multimedia and computer animations is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to execute arbitrary code...

ALSA-2024:3184 Moderate: grub2 security update

The grub2 packages provide version 2 of the Grand Unified Boot Loader GRUB, a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices. Security Fixes: grub2:...

MAL-2024-1380 Malicious code in tcm-app-migration-miles-react (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9025c83532f86e4420c8cd88f4f408a7857044b1f990a20c9a64fa0cc2ea902f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...