Lucene search
K

4 matches found

Snyk
Snyk
added 2022/08/05 8:8 a.m.3 views

Malicious Package

Overview discount-package-js is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this packa...

9.8CVSS7.1AI score
Exploits0References3
OpenVAS
OpenVAS
added 2019/01/12 12:0 a.m.21 views

openSUSE: Security Advisory for discount (openSUSE-SU-2019:0019-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.5CVSS5.5AI score0.01785EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2018/09/09 12:0 a.m.17 views

Debian: Security Advisory (DLA-1499-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.5AI score0.01785EPSS
Exploits2References3
Debian
Debian
added 2018/09/08 8:46 p.m.23 views

[SECURITY] [DLA 1499-1] discount security update

Package : discount Version : 2.1.7-1+deb8u1 CVE ID : CVE-2018-11468 CVE-2018-11503 CVE-2018-11504 CVE-2018-12495 Debian Bug : 901912 Several heap-based buffer over-reads were found in discount, an implementation of the Markdown markup language in C, that allowed remote attackers to cause a...

5.5CVSS5.8AI score0.01785EPSS
Exploits2
Rows per page
Query Builder