121 matches found
EUVD-2026-20991
dde-control-center is the control panel of DDE, the Deepin Desktop Environment. plugin-deepinid is a plugin in dde-control-center, which provides the deepinid cloud service. Prior to 6.1.80, plugin-deepinid is configured to skip TLS certificate verification when fetching the user's avatar from...
CVE-2026-35207 deepinid plugin in dde-control-center is configured to skip TLS certificate verification when downloading avatar from remote server
dde-control-center is the control panel of DDE, the Deepin Desktop Environment. plugin-deepinid is a plugin in dde-control-center, which provides the deepinid cloud service. Prior to 6.1.80, plugin-deepinid is configured to skip TLS certificate verification when fetching the user's avatar from...
CVE-2026-35207
In dde-control-center (Deepin Desktop Environment), the plugin-deepinid insecurely skipped TLS certificate verification when fetching user avatars from openapi.deepin.com and similar providers. Prior to version 6.1.80, this allowed a (MITM) attacker to intercept traffic, potentially replace the a...
CVE-2026-35207 deepinid plugin in dde-control-center is configured to skip TLS certificate verification when downloading avatar from remote server
dde-control-center is the control panel of DDE, the Deepin Desktop Environment. plugin-deepinid is a plugin in dde-control-center, which provides the deepinid cloud service. Prior to 6.1.80, plugin-deepinid is configured to skip TLS certificate verification when fetching the user's avatar from...
PT-2026-31675
dde-control-center is the control panel of DDE, the Deepin Desktop Environment. plugin-deepinid is a plugin in dde-control-center, which provides the deepinid cloud service. Prior to 6.1.80, plugin-deepinid is configured to skip TLS certificate verification when fetching the user's avatar from...
dde-control-center 信任管理问题漏洞
dde-control-center is a control center for a deep desktop environment, open-sourced by Wuhan Deepin Technology Co.,Ltd. Versions of dde-control-center prior to 6.1.80 contained a trust management vulnerability. This vulnerability stemmed from the plugin-deepinid plugin skipping TLS certificate...
CVE-2025-23222
An issue was discovered in Deepin dde-api-proxy through 1.0.19 in which unprivileged users can access D-Bus services as root. Specifically, dde-api-proxy runs as root and forwards messages from arbitrary local users to legacy D-Bus methods in the actual D-Bus services, and the actual D-Bus servic...
Unity Linux 20.1060e / 20.1070e Security Update: dde-daemon (UTSA-2025-991247)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991247 advisory. dde-daemonDBus Tenable has extracted the preceding description block directly from the Unity Linux security advisory. Note that Nessus has not tested for this issue...
Unity Linux 20.1060a / 20.1070a Security Update: dde-daemon (UTSA-2025-991248)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991248 advisory. dde-daemonDBus Tenable has extracted the preceding description block directly from the Unity Linux security advisory. Note that Nessus has not tested for this issue...
PT-2025-46584
Name of the Vulnerable Software and Affected Versions Apache OpenOffice versions through 4.1.15 Description Apache OpenOffice contains a missing authorization check when handling external links within documents. Specifically, Calc spreadsheets with Dynamic Data Exchange DDE links to external file...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: dde-daemon (UTSA-2025-986195)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986195 advisory. desktop-toggle5.13.84-1x8664 3 Tenable has extracted the preceding description block directly from the Unity Linux security advisory. Note that Nessus has not tested...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: dde-daemon (UTSA-2025-986194)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986194 advisory. desktop-toggle5.13.84-1x8664 1 Tenable has extracted the preceding description block directly from the Unity Linux security advisory. Note that Nessus has not tested...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: dde-daemon (UTSA-2025-986193)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986193 advisory. default-file-manager5.13.84-1x8664 1 Tenable has extracted the preceding description block directly from the Unity Linux security advisory. Note that Nessus has not...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: dde-daemon (UTSA-2025-986196)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986196 advisory. desktop-toggle5.13.84-1aarch64 1 Tenable has extracted the preceding description block directly from the Unity Linux security advisory. Note that Nessus has not test...
EUVD-2018-4222
Malware in sbrugna...
EUVD-2017-16627
Malware in sbrugna...
EUVD-2001-0927
Malware in sbrugna...
Unity Linux 20.1060a / 20.1070a Security Update: dde-daemon (UTSA-2025-986267)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986267 advisory. dde-daemonDBus Tenable has extracted the preceding description block directly from the Unity Linux security advisory. Note that Nessus has not tested for this issue...
Unity Linux 20.1060e / 20.1070e Security Update: dde-daemon (UTSA-2025-986271)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986271 advisory. dde-daemonDBus Tenable has extracted the preceding description block directly from the Unity Linux security advisory. Note that Nessus has not tested for this issue...
EUVD-2025-3151
Malicious code in bioql PyPI...