Lucene search
+L

99 matches found

ossf
ossf
added 2026/06/12 2:32 p.m.15 views

Malicious code in ecto-corsair-flag-x9m4 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd1e74d04f91a92c7c0205e252bc0002095d0c1ce9b9e9390083d267422e8b10 On npm install, postinstall.js executes attacker logic gated by hostname and working-directory checks designed to fire only inside CTF-style containe...

5.7AI score
Exploits0References2
snyk
snyk
added 2026/06/12 2:32 p.m.13 views

Malicious Package

Overview ecto-corsair-flag-x9m4 is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this packag...

9.8CVSS5.4AI score
Exploits0References2
snyk
snyk
added 2026/06/12 2:32 p.m.10 views

Malicious Package

Overview ecto-corsair-whisper-6f3b9 is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS5.4AI score
Exploits0References2
osv
osv
added 2026/06/12 2:32 p.m.11 views

MAL-2026-5686 Malicious code in ecto-corsair-flag-x9m4 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd1e74d04f91a92c7c0205e252bc0002095d0c1ce9b9e9390083d267422e8b10 On npm install, postinstall.js executes attacker logic gated by hostname and working-directory checks designed to fire only inside CTF-style containe...

5.7AI score
Exploits0References2
ossf
ossf
added 2026/06/11 12:40 p.m.14 views

Malicious code in ecto-corsair-whisper-6f3b9 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8695ea17273c804f1a58e6c0b877de280f7472622065964245deb85cc62dae20 The package declares a postinstall lifecycle hook postinstall.js that runs automatically on npm install. The script shells out via curl to the EC2...

5.5AI score
Exploits0References27
astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: HID: corsair-void: Update power supply values using a unified work handler. The function corsairvoidprocessreceiver can be called from an interrupt context. However, locking the batterymutex in this function caused a kernel panic...

5.5CVSS5.9AI score0.00159EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: HID: corsair-void: Added missing delayed work cancellation for headset status. The call to canceldelayedworksync was missed, resulting in a use-after-free in corsairvoidremove...

7.8CVSS6.2AI score0.0021EPSS
Exploits0References2
ossf
ossf
added 2026/03/24 3:43 p.m.10 views

Malicious code in ecto-corsair-lwirz (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 77c3cc1d671c5749806f3787e8d2005f67db4d64f938987e404cea0a52ebac21 The package ecto-corsair-lwirz was found to contain malicious code...

5.9AI score
Exploits0
osv
osv
added 2026/03/24 3:43 p.m.7 views

MAL-2026-2352 Malicious code in ecto-corsair-lwirz (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 77c3cc1d671c5749806f3787e8d2005f67db4d64f938987e404cea0a52ebac21 The package ecto-corsair-lwirz was found to contain malicious code...

5.8AI score
Exploits0
ossf
ossf
added 2026/03/24 3:41 p.m.16 views

Malicious code in corsair-module (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c21d47c9d59d6abd121ee300ec8e6981d0fc22576fb01ca69c06633e5e46626 The package corsair-module was found to contain malicious code...

5.9AI score
Exploits0
osv
osv
added 2026/03/24 3:41 p.m.4 views

MAL-2026-2346 Malicious code in corsair-module (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c21d47c9d59d6abd121ee300ec8e6981d0fc22576fb01ca69c06633e5e46626 The package corsair-module was found to contain malicious code...

5.8AI score
Exploits0
snyk
snyk
added 2026/03/16 12:6 a.m.2 views

Malicious Package

Overview spectral-corsair-my-backdoor is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS5.8AI score
Exploits0References2
ossf
ossf
added 2026/03/12 6:9 p.m.9 views

Malicious code in spectral-corsair-my-backdoor (npm)

Malicious package detected. Suspicious preinstall script exfiltrates data to a remote server. Multiple YARA rules and LLM analysis confirm. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0826a28f7948e68cdddd6260a01c3653a7f04deb2c9368054243ed47713ee353 The packa...

5.8AI score
Exploits0References3
osv
osv
added 2026/03/12 6:9 p.m.6 views

MAL-2026-1374 Malicious code in spectral-corsair-my-backdoor (npm)

Malicious package detected. Suspicious preinstall script exfiltrates data to a remote server. Multiple YARA rules and LLM analysis confirm. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0826a28f7948e68cdddd6260a01c3653a7f04deb2c9368054243ed47713ee353 The packa...

5.8AI score
Exploits0References3
ossf
ossf
added 2026/03/05 3:5 p.m.8 views

Malicious code in spectral-corsair-navigator (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4faab7d9e9e24067cf0a0ef23c529b2622cbb91b654a35430742ec584b827a54 The package spectral-corsair-navigator was found to contain malicious code. Source: ghsa-malware...

5.8AI score
Exploits0References1
osv
osv
added 2026/03/05 3:5 p.m.10 views

MAL-2026-1244 Malicious code in spectral-corsair-navigator (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4faab7d9e9e24067cf0a0ef23c529b2622cbb91b654a35430742ec584b827a54 The package spectral-corsair-navigator was found to contain malicious code. Source: ghsa-malware...

5.8AI score
Exploits0References1
astralinux
astralinux
added 2026/01/27 5:1 a.m.7 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: hwmon: corsair-cpro Validates the size of the received input buffer. Add bufferrecvsize to store the size of the received bytes. Validate bufferrecvsize in sendusbcmd...

7.8CVSS6.1AI score0.00153EPSS
Exploits0References3
nessus
nessus
added 2026/01/16 12:0 a.m.9 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001175)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001175 advisory. drivers/hid/hid-corsair.c in the Linux kernel 4.9.x before 4.9.6 interacts incorrectly with the CONFIGVMAPSTACK option, which allows local users to cause a denial of...

7.8CVSS6.5AI score0.00448EPSS
Exploits0References9
nessus
nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002541)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002541 advisory. drivers/hid/hid-corsair.c in the Linux kernel 4.9.x before 4.9.6 interacts incorrectly with the CONFIGVMAPSTACK option, which allows local users to cause a denial of...

7.8CVSS6.5AI score0.00448EPSS
Exploits0References9
nessus
nessus
added 2026/01/15 12:0 a.m.5 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002947)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002947 advisory. drivers/hid/hid-corsair.c in the Linux kernel 4.9.x before 4.9.6 interacts incorrectly with the CONFIGVMAPSTACK option, which allows local users to cause a denial of...

7.8CVSS6.5AI score0.00448EPSS
Exploits0References9
Rows per page
Query Builder