416 matches found
EUVD-2018-2802
Malware in sbrugna...
Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-386095)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-386095 advisory. In the Linux kernel, the following vulnerability has been resolved: mptcp: handle consistently DSS corruption Bugged peer implementation can send corrupted DSS...
EUVD-2023-56414
Malicious code in bioql PyPI...
EUVD-2022-48304
Malicious code in bioql PyPI...
EUVD-2022-48305
Malicious code in bioql PyPI...
EUVD-2025-23642
Malicious code in bioql PyPI...
iframe Security Exposed: The Blind Spot Fueling Payment Skimmer Attacks
Think payment iframes are secure by design? Think again. Sophisticated attackers have quietly evolved malicious overlay techniques to exploit checkout pages and steal credit card data by bypassing the very security policies designed to stop them. Download the complete iframe security guide here...
MAL-2025-11235 Malicious code in @zalastax/nolb-dss (npm)
The package @zalastax/nolb-dss was found to contain malicious code...
Malicious code in @zalastax/nolb-dss (npm)
The package @zalastax/nolb-dss was found to contain malicious code...
CVE-2025-8585
A vulnerability, which was classified as critical, has been found in libav up to 12.3. Affected by this issue is the function main of the file /avtools/avconv.c of the component DSS File Demuxer. The manipulation leads to double free. Attacking locally is a requirement. The exploit has been...
SUSE CVE-2025-8585
A vulnerability, which was classified as critical, has been found in libav up to 12.3. Affected by this issue is the function main of the file /avtools/avconv.c of the component DSS File Demuxer. The manipulation leads to double free. Attacking locally is a requirement. The exploit has been...
UBUNTU-CVE-2025-8585
A vulnerability, which was classified as critical, has been found in libav up to 12.3. Affected by this issue is the function main of the file /avtools/avconv.c of the component DSS File Demuxer. The manipulation leads to double free. Attacking locally is a requirement. The exploit has been...
CVE-2025-8585 libav DSS File Demuxer avconv.c main double free
A vulnerability, which was classified as critical, has been found in libav up to 12.3. Affected by this issue is the function main of the file /avtools/avconv.c of the component DSS File Demuxer. The manipulation leads to double free. Attacking locally is a requirement. The exploit has been...
CVE-2025-8585 libav DSS File Demuxer avconv.c main double free
A vulnerability, which was classified as critical, has been found in libav up to 12.3. Affected by this issue is the function main of the file /avtools/avconv.c of the component DSS File Demuxer. The manipulation leads to double free. Attacking locally is a requirement. The exploit has been...
CVE-2025-8585 libav DSS File Demuxer avconv.c main double free
A vulnerability, which was classified as critical, has been found in libav up to 12.3. Affected by this issue is the function main of the file /avtools/avconv.c of the component DSS File Demuxer. The manipulation leads to double free. Attacking locally is a requirement. The exploit has been...
CVE-2025-8585
CVE-2025-8585 affects libav up to 12.3, targeting the DSS File Demuxer component. The vulnerability is in the main() function of /avtools/avconv.c, where a double-free condition is triggered. Local attacker access is required, and public exploit information has been disclosed. The issue allegedly...
Libav 资源管理错误漏洞
Libav is a cross-platform audio and video recording and conversion solution from the Libav team that includes a libavcodec encoder. A resource management error vulnerability exists in libav 12.3 and earlier versions, which stems from a double release of function main in file /avtools/avconv.c in...
Ensure PCI 4.0 Readiness with File Integrity Monitoring for Containers
Compliance isn’t optional. But it’s never been more complex. The rise of containers has revolutionized modern infrastructure—enabling faster innovation and greater scalability. But with this transformation comes a new wave of compliance challenges. PCI DSS 4.0 introduces stricter requirements for...
CVE-2023-51717
Dataiku DSS before 11.4.5 and 12.4.1 has Incorrect Access Control that could lead to a full authentication bypass...
CVE-2023-24045
In Dataiku DSS 11.2.1, an attacker can download other Dataiku files that were uploaded to the myfiles section by specifying the target username in a download request...