99 matches found
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: HID: corsair-void: Update power supply values using a unified work handler. The function corsairvoidprocessreceiver can be called from an interrupt context. However, locking the batterymutex in this function caused a kernel panic...
Malicious code in ecto-corsair-flag-x9m4 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd1e74d04f91a92c7c0205e252bc0002095d0c1ce9b9e9390083d267422e8b10 On npm install, postinstall.js executes attacker logic gated by hostname and working-directory checks designed to fire only inside CTF-style containe...
MAL-2026-5686 Malicious code in ecto-corsair-flag-x9m4 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd1e74d04f91a92c7c0205e252bc0002095d0c1ce9b9e9390083d267422e8b10 On npm install, postinstall.js executes attacker logic gated by hostname and working-directory checks designed to fire only inside CTF-style containe...
Malicious Package
Overview ecto-corsair-whisper-6f3b9 is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...
Malicious Package
Overview ecto-corsair-flag-x9m4 is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this packag...
Malicious code in ecto-corsair-whisper-6f3b9 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8695ea17273c804f1a58e6c0b877de280f7472622065964245deb85cc62dae20 The package declares a postinstall lifecycle hook postinstall.js that runs automatically on npm install. The script shells out via curl to the EC2...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: HID: corsair-void: Added missing delayed work cancellation for headset status. The call to canceldelayedworksync was missed, resulting in a use-after-free in corsairvoidremove...
Malicious code in ecto-corsair-lwirz (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 77c3cc1d671c5749806f3787e8d2005f67db4d64f938987e404cea0a52ebac21 The package ecto-corsair-lwirz was found to contain malicious code...
MAL-2026-2352 Malicious code in ecto-corsair-lwirz (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 77c3cc1d671c5749806f3787e8d2005f67db4d64f938987e404cea0a52ebac21 The package ecto-corsair-lwirz was found to contain malicious code...
Malicious code in corsair-module (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c21d47c9d59d6abd121ee300ec8e6981d0fc22576fb01ca69c06633e5e46626 The package corsair-module was found to contain malicious code...
MAL-2026-2346 Malicious code in corsair-module (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c21d47c9d59d6abd121ee300ec8e6981d0fc22576fb01ca69c06633e5e46626 The package corsair-module was found to contain malicious code...
Malicious Package
Overview spectral-corsair-my-backdoor is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...
Malicious code in spectral-corsair-my-backdoor (npm)
Malicious package detected. Suspicious preinstall script exfiltrates data to a remote server. Multiple YARA rules and LLM analysis confirm. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0826a28f7948e68cdddd6260a01c3653a7f04deb2c9368054243ed47713ee353 The packa...
MAL-2026-1374 Malicious code in spectral-corsair-my-backdoor (npm)
Malicious package detected. Suspicious preinstall script exfiltrates data to a remote server. Multiple YARA rules and LLM analysis confirm. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0826a28f7948e68cdddd6260a01c3653a7f04deb2c9368054243ed47713ee353 The packa...
Malicious code in spectral-corsair-navigator (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4faab7d9e9e24067cf0a0ef23c529b2622cbb91b654a35430742ec584b827a54 The package spectral-corsair-navigator was found to contain malicious code. Source: ghsa-malware...
MAL-2026-1244 Malicious code in spectral-corsair-navigator (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4faab7d9e9e24067cf0a0ef23c529b2622cbb91b654a35430742ec584b827a54 The package spectral-corsair-navigator was found to contain malicious code. Source: ghsa-malware...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001175)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001175 advisory. drivers/hid/hid-corsair.c in the Linux kernel 4.9.x before 4.9.6 interacts incorrectly with the CONFIGVMAPSTACK option, which allows local users to cause a denial of...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002947)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002947 advisory. drivers/hid/hid-corsair.c in the Linux kernel 4.9.x before 4.9.6 interacts incorrectly with the CONFIGVMAPSTACK option, which allows local users to cause a denial of...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002541)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002541 advisory. drivers/hid/hid-corsair.c in the Linux kernel 4.9.x before 4.9.6 interacts incorrectly with the CONFIGVMAPSTACK option, which allows local users to cause a denial of...
CVE-2022-35860
Missing AES encryption in Corsair K63 Wireless 3.1.3 allows physically proximate attackers to inject and sniff keystrokes via 2.4 GHz radio transmissions...