Malicious code in @signetai/signet-memory-openclaw (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b16e55a5379336a0ab822ee9fe70b20023e452595f41cfe2624464aadb73d390 On plugin load, register invokes installFetchSanitizer dist/index.js:14420-14463 which monkey-patches globalThis.fetch. For requests to...

MAL-2026-4445 Malicious code in @signetai/signet-memory-openclaw (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b16e55a5379336a0ab822ee9fe70b20023e452595f41cfe2624464aadb73d390 On plugin load, register invokes installFetchSanitizer dist/index.js:14420-14463 which monkey-patches globalThis.fetch. For requests to...

Improper Verification of Cryptographic Signature

Overview bsv-sdk is an A Ruby library for interacting with the BSV Blockchain — keys, scripts, transactions, and more. Affected versions of this package are vulnerable to Improper Verification of Cryptographic Signature in the acquirecertificate function. An attacker can persist forged certificat...

EUVD-2022-30869

Malicious code in bioql PyPI...

EUVD-2022-3152

Malicious code in bioql PyPI...

uberAgent is unable to read encrypted credentials stored in Windows Credential Store

Customer is attempting to store encrypted credentials in the Windows Credentials Store as described in the uberAgent documentation https://docs.citrix.com/en-us/uberagent/7-3-1/uxm-features-configuration/username-and-configuration-setting-encryption-2.html, but uberAgent is unable to read the...

IBM Aspera Faspex Elevation of Privilege Vulnerability

IBM Aspera is a set of fast file transfer and streaming solutions built on the IBM FASP protocol from International Business Machines IBM. The IBM Aspera Faspex elevation of privilege vulnerability, which stems from an insecure credential store, can be exploited by an attacker to elevate privileg...

IBM Aspera 安全漏洞

IBM Aspera is a set of fast file transfer and streaming solutions built on the IBM FASP protocol from International Business Machines IBM. The IBM Aspera Faspex elevation of privilege vulnerability, which stems from an insecure credential store, can be exploited by an attacker to elevate privileg...

VMware Workstation 安全漏洞

VMware Workstation is a set of virtual machine software from VMware. The software provides the ability to run multiple virtual machines with different operating systems at the same time. A security vulnerability exists in VMware Workstation that originates from an unprotected credential store tha...

CVE-2022-26308

Pandora FMS v7.0NG.760 and below allows an improper access control in Configuration Credential store where a user with the role of Operator Write could create, delete, view existing keys which are outside the intended role...

UBUNTU-CVE-2022-26308

Pandora FMS v7.0NG.760 and below allows an improper access control in Configuration Credential store where a user with the role of Operator Write could create, delete, view existing keys which are outside the intended role...

CVE-2022-26308

Pandora FMS v7.0NG.760 and below allows an improper access control in Configuration Credential store where a user with the role of Operator Write could create, delete, view existing keys which are outside the intended role...

Improper access control

Pandora FMS v7.0NG.760 and below allows an improper access control in Configuration Credential store where a user with the role of Operator Write could create, delete, view existing keys which are outside the intended role...

CVE-2022-26308 Improper Access Control in Configuration (Credential store)

Pandora FMS v7.0NG.760 and below allows an improper access control in Configuration Credential store where a user with the role of Operator Write could create, delete, view existing keys which are outside the intended role...

PT-2022-17776 · Unknown · Pandora Fms

Name of the Vulnerable Software and Affected Versions: Pandora FMS versions 7.0NG.760 and below Description: The issue allows an improper access control in Configuration Credential store where a user with the role of Operator Write could create, delete, view existing keys which are outside the...

Artica Pandora FMS 安全漏洞

Artica Pandora FMS is a monitoring system from the Spanish company Artica. The system monitors networks, servers, virtual infrastructures, applications, etc. in a visual way. A security vulnerability exists in Artica Pandora FMS that stems from Pandora FMS v7.0NG.760 and lower allows incorrect...

GHSA-895M-WW55-59VW Exposure of Sensitive Information to an Unauthorized Actor in Apache Hadoop

The YARN NodeManager in Apache Hadoop 2.6.x before 2.6.5 and 2.7.x before 2.7.3 can leak the password for credential store provider used by the NodeManager to YARN Applications...

Exposure of Sensitive Information to an Unauthorized Actor in Apache Hadoop

The YARN NodeManager in Apache Hadoop 2.6.x before 2.6.5 and 2.7.x before 2.7.3 can leak the password for credential store provider used by the NodeManager to YARN Applications...

CVE-2022-26308

Pandora FMS v7.0NG.760 and below allows an improper access control in Configuration Credential store where a user with the role of Operator Write could create, delete, view existing keys which are outside the intended role...

at.salzburgresearch.nodekeeper:nodekeeper-java (>=1.0 <=1.2), com.baidu.beidou:navi-rpc (=1.1.0) +85 more potentially affected by CVE-2017-5637 via org.apache.zookeeper:zookeeper (>=3.4.0 <=3.4.1)

org.apache.zookeeper:zookeeper MAVEN version =3.4.0, =1.0, =1.0.0.RELEASE, =1.0.0.RELEASE, =1.0.0.RELEASE, =0.13, =0.13, =0.13, =0.16, =0.13, =0.15, =0.13, =0.15, =0.17 and more Source cves: CVE-2017-5637 Source advisory: OSV:GHSA-7CWJ-J333-X7F7...