Malicious code in ctfxmlflgcheck (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 96c9132a189fafbc7ceddc628c9c59a2b9a82a6225d714f90b167e9ead0d2df5 The package ctfxmlflgcheck was found to contain malicious code. Source: ghsa-malware f63a449906d3cc26b3649aef217acb2fa01373b30b1dfe3f7f3923b6811d785a...

MAL-2025-192629 Malicious code in flagstealerfinal (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64b9cc9bb0bafe61901221efe8e6c9359eef4061151cc1a35544721addc6b8f2 The package flagstealerfinal was found to contain malicious code. Source: ghsa-malware eecc837f74a9e474ce6f056e83fc505b9f1126d18a96a5eb879def906682fd...

Malicious code in flagstealerfinal (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64b9cc9bb0bafe61901221efe8e6c9359eef4061151cc1a35544721addc6b8f2 The package flagstealerfinal was found to contain malicious code. Source: ghsa-malware eecc837f74a9e474ce6f056e83fc505b9f1126d18a96a5eb879def906682fd...

CVAT.ai CVAT 安全漏洞

CVAT.ai CVAT is an open source data processing tool from CVAT.ai. A security vulnerability exists in CVAT.ai CVAT versions 2.8.1 through 2.52.0 that originates from an attacker being able to retrieve the contents of any file system directory accessible by the CVAT server, potentially leading to a...

CVE-2025-67789

An issue was discovered in DriveLock 24.1 before 24.1.6, 24.2 before 24.2.7, and 25.1 before 25.1.5. Authenticated users can retrieve the computer count of other DriveLock tenants via the DriveLock API...

SUSE CVE-2025-68316

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix invalid probe error return value After DME Link Startup, the error return value is set to the MIPI UniPro GenericErrorCode which can be 0 SUCCESS or 1 FAILURE. Upon failure during driver probe, the error code...

CVE-2025-67789

An issue was discovered in DriveLock 24.1 before 24.1.6, 24.2 before 24.2.7, and 25.1 before 25.1.5. Authenticated users can retrieve the computer count of other DriveLock tenants via the DriveLock API...

EUVD-2025-203953

An issue was discovered in DriveLock 24.1 before 24.1.6, 24.2 before 24.2.7, and 25.1 before 25.1.5. Authenticated users can retrieve the computer count of other DriveLock tenants via the DriveLock API...

CVE-2025-67789

An issue was discovered in DriveLock 24.1 before 24.1.6, 24.2 before 24.2.7, and 25.1 before 25.1.5. Authenticated users can retrieve the computer count of other DriveLock tenants via the DriveLock API...

PT-2025-51898

Name of the Vulnerable Software and Affected Versions DriveLock versions 24.1 through 24.1.5 DriveLock versions 24.2 through 24.2.6 DriveLock versions 25.1 through 25.1.4 Description An issue exists where authenticated users can obtain the computer count for other DriveLock tenants through the...

DriveLock 安全漏洞

DriveLock is an endpoint security and data protection platform from DriveLock Germany. A security vulnerability exists in DriveLock versions prior to 24.1.6, 24.2.7, and 25.1.5, which stems from an authenticated user being able to retrieve the number of computers of other tenants via the DriveLoc...

EUVD-2025-203672

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix a regression triggered by scsihostbusy Commit 995412e23bb2 "blk-mq: Replace tags-lock with SRCU for tag iterators" introduced the following regression: Call trace: srcureadlock+0x30/0x80 P...

Malicious code in tailwind-variables (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50a9b7a9c02e83e0b4145dc9caaa9d04b407a199ae5d54b9f544f91397980966 The package tailwind-variables was found to contain malicious code. Source: ghsa-malware...

Malicious code in tailwind-stylecss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 10c71a662da2f505a840efadd0fae8fc82d44fe869c688fc1a5f4b7bf4d0a517 The package tailwind-stylecss was found to contain malicious code. Source: ghsa-malware...

MAL-2025-192599 Malicious code in tailwind-stylecss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 10c71a662da2f505a840efadd0fae8fc82d44fe869c688fc1a5f4b7bf4d0a517 The package tailwind-stylecss was found to contain malicious code. Source: ghsa-malware...

Malicious code in bigmathlib (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29e535ed570f999285684c4f2a79ce262d460a98329790e34f433542070b9298 The package bigmathlib was found to contain malicious code. Source: ghsa-malware d73c91abd6a323d119e598928fc613100786424177806e36bb5ebd15f666de3e Any...

Malicious code in dubbo-js-private-workspace (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5d7718e849fa01a112b317438650757b783681fbb3361ec73154005719f6f892 The package dubbo-js-private-workspace was found to contain malicious code. Source: ghsa-malware...

MAL-2025-192595 Malicious code in smart-utils-alice (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2de5b916487c66ac49dea93a8859097db125ab6c1b8ea18a72bd3f72cdcfaff6 The package smart-utils-alice was found to contain malicious code. Source: ghsa-malware...

Malicious code in elf-stats-aurora-cocoa-911 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ce406834ac9b9cfddc78cc4259b1887fcbd907c2a007295cd47528f8f92deae The package elf-stats-aurora-cocoa-911 was found to contain malicious code. Source: ghsa-malware...

MAL-2025-192585 Malicious code in betterjsloggin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de0ccde11f9011e9a5b0f96421a9d3088ed2f2604afdfc4f24d3753497729a06 The package betterjsloggin was found to contain malicious code. Source: ghsa-malware 9474602fb42d55f04ad6c25502fa73adc2f3313def621342428ea0b2f13c3d28...