800 matches found
EUVD-2024-16250
Malicious code in bioql PyPI...
EUVD-2024-38283
Malicious code in bioql PyPI...
EUVD-2022-4268
Malicious code in bioql PyPI...
EUVD-2022-3533
Malicious code in bioql PyPI...
EUVD-2022-5512
Malicious code in bioql PyPI...
EUVD-2022-3396
Malicious code in bioql PyPI...
EUVD-2022-4654
Malicious code in bioql PyPI...
SUSE SLES12 Security Update : regionServiceClientConfigEC2 (SUSE-SU-2025:03170-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:03170-1 advisory. - Update to version 5.0.0. bsc1246995 - SLE 16 python-requests requires SSL v3 certificates. Update 2 region server certs to support SLE 16...
Security update for regionServiceClientConfigEC2
This update for regionServiceClientConfigEC2 contains the following fixes: Update to version 5.0.0. bsc1246995 SLE 16 python-requests requires SSL v3 certificates. Update 2 region server certs to support SLE 16 when it gets released. Update dependency to accomodate metadata binary package name...
SUSE SLES15 / openSUSE 15 Security Update : regionServiceClientConfigEC2 (SUSE-SU-2025:03118-1)
The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:03118-1 advisory. - Update to version 5.0.0. bsc1246995 - SLE 16 python-requests requires SSL v3 certificates. Update 2 region server certs to...
Security update for regionServiceClientConfigEC2
This update for regionServiceClientConfigEC2 contains the following fixes: Update to version 5.0.0. bsc1246995 SLE 16 python-requests requires SSL v3 certificates. Update 2 region server certs to support SLE 16 when it gets released. Update dependency to accomodate metadata binary package name...
SUSE-SU-2025:03118-1 Security update for regionServiceClientConfigEC2
This update for regionServiceClientConfigEC2 contains the following fixes: - Update to version 5.0.0. bsc1246995 + SLE 16 python-requests requires SSL v3 certificates. Update 2 region server certs to support SLE 16 when it gets released. - Update dependency to accomodate metadata binary package...
Linux Distros Unpatched Vulnerability : CVE-2015-1426
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Puppet Labs Facter 1.6.0 through 2.4.0 allows local users to obtains sensitive Amazon EC2 IAM instance metadata by reading a fact for an Amazon EC2 node...
Malicious code in node-pipeline-ec2 (npm)
The package node-pipeline-ec2 was found to contain malicious code...
MAL-2025-27638 Malicious code in node-pipeline-ec2 (npm)
The package node-pipeline-ec2 was found to contain malicious code...
Linux Distros Unpatched Vulnerability : CVE-2023-4237
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the Ansible Automation Platform. When creating a new keypair, the ec2key module prints out the private key directly to the standard output...
Malicious code in ec2-github-runner (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1c7ca0d5642601c1f68fbd89dabf82a89747d310ed0196ea76061981bed79fd3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5775 Malicious code in ec2-github-runner (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1c7ca0d5642601c1f68fbd89dabf82a89747d310ed0196ea76061981bed79fd3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2021-27099
In SPIRE before versions 0.8.5, 0.9.4, 0.10.2, 0.11.3 and 0.12.1, the "awsiid" Node Attestor improperly normalizes the path provided through the agent ID templating feature, which may allow the issuance of an arbitrary SPIFFE ID within the same trust domain, if the attacker controls the value of ...
CVE-2021-20077
Nessus Agent versions 7.2.0 through 8.2.2 were found to inadvertently capture the IAM role security token on the local host during initial linking of the Nessus Agent when installed on an Amazon EC2 instance. This could allow a privileged attacker to obtain the token...