38 matches found
RLSA-2026:8842 Important: delve security update
Delve is a debugger for the Go programming language. The goal of the project is to provide a simple, full featured debugging tool for Go. Delve should be easy to invoke and easy to use. Chances are if you're using a debugger, things aren't going your way. With that in mind, Delve should stay out ...
EUVD-2009-0372
Malware in sbrugna...
EUVD-2024-2192
Malicious code in bioql PyPI...
NVIDIA NVDebug 路径遍历漏洞
NVIDIA NVDebug is a debugging and diagnostic tool from NVIDIA Corporation. NVIDIA NVDebug suffers from a path traversal vulnerability that originates from the ability to potentially cause a file to be written to a restricted component, which could lead to information disclosure, denial of service...
PT-2025-36971
Name of the Vulnerable Software and Affected Versions: NVIDIA NVDebug affected versions not specified Description: The NVIDIA NVDebug tool contains an issue that may allow an actor to write files to restricted components. A successful exploit of this issue may lead to information disclosure, deni...
MacVim 安全漏洞
MacVim is a text editor in the MacVim open source. A security vulnerability exists in MacVim that stems from improper authorization of the debugging tool and could lead to a local attacker reading or modifying process memory...
Invoice Ninja 安全漏洞
Invoice Ninja is an Invoice Ninja open source application with invoice, quote, project and time tracking capabilities. A security vulnerability exists in Invoice Ninja versions prior to 5.0.175, which stems from improper authorization of the debugging tool and could allow a local attacker to read...
CVE-2024-48970
The ventilator's microcontroller lacks memory protection. An attacker could connect to the internal JTAG interface and read or write to flash memory using an off-the-shelf debugging tool, which could disrupt the function of the device and/or cause unauthorized information disclosure...
BIT-HUBBLE-RELAY-2024-37307 Cilium leaks sensitive information in cilium-bugtool
Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Starting in version 1.13.0 and prior to versions 1.13.7, 1.14.12, and 1.15.6, the output of cilium-bugtool can contain sensitive data when the tool is run with the --envoy-dump flag set against Cilium...
CVE-2024-37307 Cilium leaks sensitive information in cilium-bugtool
Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Starting in version 1.13.0 and prior to versions 1.13.7, 1.14.12, and 1.15.6, the output of cilium-bugtool can contain sensitive data when the tool is run with the --envoy-dump flag set against Cilium...
The vulnerability of the programming and debugging tool for PLC applications, MULTIPROG, integrated with the operating system ProConOS/ProConOS eCLR, arises from the loading of code without checking its integrity. This allows attackers to compromise the integrity of the protected information.
The vulnerability of the MULTIPROG programming and debugging tool for PLC applications, integrated with the ProConOS/ProConOS eCLR operating system, lies in the loading of code without checking its integrity. Exploiting this vulnerability allows an attacker to compromise the integrity of the...
Intel SDP Tool Security Vulnerability
Intel SDP Tool is a server debugging and configuration tool from Intel Corporation USA. A security vulnerability exists in IntelR SDP Tool versions prior to 1.4, which stems from incorrect default privileges. An attacker can exploit the vulnerability to elevate privileges...
Secomea SiteManager 安全漏洞
Secomea SiteManager is a software application from Secomea, Denmark. It provides a remote maintenance function for industrial equipment. A security vulnerability exists in Secomea SiteManager that stems from a debugging tool that allows logged-in administrators to modify the system state in an...
Exploit for CVE-2020-15368
How to exploit a vulnerable windows driver Exploit and Proof...
tomcat: XSS in SSI printenv
The SSI printenv command in Apache Tomcat 9.0.0.M1 to 9.0.0.17, 8.5.0 to 8.5.39 and 7.0.0 to 7.0.93 echoes user provided data without escaping and is, therefore, vulnerable to XSS. SSI is disabled by default. The printenv command is intended for debugging and is unlikely to be present in a...
DLL Hijacking Vulnerability in Weinview EasyWatch
EasyWatch is a tool for debugging or remote monitoring. Weinview EasyWatch suffers from a DLL hijacking vulnerability that can be exploited by attackers to execute malicious code...
CVE-2009-0368
OpenSC before 0.11.7 allows physically proximate attackers to bypass intended PIN requirements and read private data objects via a 1 low level APDU command or 2 debugging tool, as demonstrated by reading the 4601 or 4701 file with the opensc-explorer or opensc-tool program...
CocoaDebug - iOS Debugging Tool
iOS Debugging Tool Shake to hide or show the black bubble. support both device and simulator Long press the black bubble to show UIDebuggingInformationOverlay. Apple's Private API, support iOS 10/11/12 Application memory usage and FPS. List all print and NSLog messages which have been written by...
CVE-2018-14335
An issue was discovered in H2 1.4.197. Insecure handling of permissions in the backup function allows attackers to read sensitive files outside of their permissions via a symlink to a fake database file...
Synaptics Says Claims of a Keylogger in HP Laptops are False
Synaptics said reports that claim hundreds of HP laptops contain a secret keylogger made by the company are inaccurate. In a statement released Wednesday, the company said its software was being mischaracterized as a keylogger. It also said it would remove the debugging component from production...