389 matches found
MAL-2025-163061 Malicious code in nokire-namiresan11 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a160842026bf01ee11d36662ecce79c2a4972a0a1e6f5bf1e0e3fcf3e4377375 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-163759 Malicious code in nudela-fofgaf-gafsaoai (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 149d11d07cb42c44c68724b356625f894e19c1785420c8ad147d4d9b5d351132 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-150082 Malicious code in @mipta1/iyuglk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d31e1024c003a1257f877dd0f043ab7f136693e35a48fefdea388993b6c3f6d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in musnisdr-nuyt-musast (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0eca39f3f5d5439c1e26d425ea03d1949b1b4b6095f366d33b837e5577c0af5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in bunyan-canopus-kinetic-carpo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d539cc7eb5c8f4faa4c7935908582514a5cabc02edcf4ca728eabe1cba80e500 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143879 Malicious code in javascript-indus-ceres-ophiuchus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 183d484945bde92944532e2b9af5c200b70e70bcd5879553d78a8deb2da8f18e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sass-loader-lacerta-axios-scripts (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ff96bb432e59f1814f6243a71d0cfdb66f94102ef9409c18ddc27145e2d95e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143167 Malicious code in halley-soap-cosmiconfig-axios (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 878f47aabf7c8d166e8bf83e6a92ca0f1d56d5ae5dbf7edab11cd99f50c7502d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-119230 Malicious code in classic_angelfish_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eca857d6e042050aa2966b9a92dc7dd82645ea818fee8ea4987d8cedfc217140 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
CVE-2025-30185
Summary : CVE-2025-30185 is an Intel UEFI reference-platform issue where active debugging code in Ring 0 could allow denial of service and privilege escalation. A system software adversary with privileged access and low attack complexity, via local access and without user interaction, could alter...
CVE-2025-30185
Active debug code for some Intel UEFI reference platforms within Ring 0: Kernel may allow a denial of service and escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable data alteration. This result may potentially occur via local...
Malicious code in territorial_louse_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4bea9ca11c5d1db830031d1127c9f322ef96b9c3c30bd4d9bb567a0fcb968686 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in yanti-telurtahu61-ruro (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea4a4dbe3d62126112925c808c1d031c5ae8d0955f87b31610f512c1e23ba166 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-103541 Malicious code in hanafi-martabak33-ruro (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c0a8f376b2b49641ec06dbc4805ae4990f236fcb3ee24d660b06b84951e622a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-103509 Malicious code in hadianto-saguer7-ruro (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 892d39cf8021e4293d5c1c395c83800bab592c6df72b7ca0984c5d4803a078dc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in voluntary_cougar_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0fa1f817e2540f37f7bd323c07139e0a38c79cb0b0142d03bcc6801ae4ed7e4a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in kresna-rojak80-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3cbbe92ce5dad2dd990db57074cbcfbc460f71da34cbb87b2d7eab98af2550bb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mahesa-nasicampur67-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bed365ef461aeb579962724a8c2c6946074f379ce2343603315fd18ec41b9376 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in manual_swordfish_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 052168301acc989b8c2c2253da18a2daecca9a74fd2df4abb1a2b4f702df6291 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-77663 Malicious code in dominant_basilisk_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3977b9342438c4a5e5fd54077c66f865b974521743e004b1b6a6f4e35f1f9a68 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...