1474 matches found
EUVD-2025-179371
Malicious code in decrypt-xml-compress-moon-file npm...
EUVD-2025-180316
Malicious code in array-upsilon-decrypt-container-object npm...
EUVD-2025-179724
Malicious code in class-debug-private-decrypt-slow npm...
EUVD-2025-179373
Malicious code in decrypt-info-meta-table-big npm...
EUVD-2025-178900
Malicious code in final-uglify-decrypt-enum-data npm...
EUVD-2025-178451
Malicious code in import-abstract-nu-private-decrypt npm...
EUVD-2025-179374
Malicious code in decrypt-import-info-optimize-authorize npm...
Malicious code in delta-encrypt-decrypt-process-hot (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47be4747508a9978698f14c3a6e3c22e2b2fd3bfe34ece2ef5c5445dfc296dbe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186511 Malicious code in decrypt-xml-compress-moon-file (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd29dfb05cee6c5ddaf5d6fc7511c903cc2572f128025c139bb45606c8a4d1af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186509 Malicious code in decrypt-info-meta-table-big (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be4883bdd1cd22e99353350c8cdb2c98e0bd344ac3801dc0999b5d205d66f663 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-179372
Malicious code in decrypt-sun-mock-rain-debug npm...
MAL-2025-188826 Malicious code in private-easy-string-decrypt-meta (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ae8f5ebf1c13bf1a1e8aa5ca2740eee87baa6e70ae9e6675a45d077559c16a9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Lexmark Printers Disclosure of Information (CVE-2019-1559)
A vulnerability in the TLS protocol in Lexmark devices has been identified that can be exploited by a âMan In The Middleâ attacker to decrypt data in the TLS stream. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503882; scriptversion"1.3";...
CVE-2025-63675
cryptidy through 1.2.4 allows code execution via untrusted data because pickle.loads is used. This occurs in aesdecryptmessage in symmetricencryption.py...
Deserialization of Untrusted Data
Overview cryptidy is a Python high level library for symmetric & asymmetric encryption Affected versions of this package are vulnerable to Deserialization of Untrusted Data via the aesdecryptmessage function. An attacker can execute arbitrary code by supplying crafted data that is deserialized...
CVE-2025-63675
cryptidy through 1.2.4 allows code execution via untrusted data because pickle.loads is used. This occurs in aesdecryptmessage in symmetricencryption.py...
CVE-2025-63675
cryptidy through 1.2.4 allows code execution via untrusted data because pickle.loads is used. This occurs in aesdecryptmessage in symmetricencryption.py...
CVE-2025-63675
cryptidy through 1.2.4 allows code execution via untrusted data because pickle.loads is used. This occurs in aesdecryptmessage in symmetricencryption.py...
PT-2025-44585
Name of the Vulnerable Software and Affected Versions cryptidy versions through 1.2.4 Description The software allows code execution due to the use of pickle.loads with untrusted data. This issue occurs within the aes decrypt message function located in the symmetric encryption.py file...
UBUNTU-CVE-2025-40019
In the Linux kernel, the following vulnerability has been resolved: crypto: essiv - Check ssize for decryption and in-place encryption Move the ssize check to the start in essivaeadcrypt so that it's also checked for decryption and in-place encryption...