2654 matches found
EUVD-2025-120242
Malicious code in xenos-run-script-weywot-exec npm...
Malicious code in exec-scorpius-toml-transform (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7daf0e843578606a660a5a5683f1243e6794785cedd068b8403e79e4357aa2cd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-113757
Malicious code in exec-mui-fornax-nodejs npm...
Malicious code in taurus-exec-javascript-repository (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cdedd5376e6fe1861b11be01534bfda0c690e573d66adc4218268940bdf545eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-113754
Malicious code in exec-nuxtjs-async-await npm...
EUVD-2025-116672
Malicious code in antares-perseus-indus-exec npm...
EUVD-2025-114489
Malicious code in development-exec-spawn-perseus npm...
MAL-2025-140809 Malicious code in cli-rimraf-callback-exec (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 507b5deb9e378a4729ae079af92904564d22a267bae8b21fe5e7db7342c1e2cf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140990 Malicious code in commitlint-jovian-exec-figures (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2a83712f940d043472046dfe7c051ea32c09b485d15a401d1e980e1167464e1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-120819
Malicious code in venus-exec-sagitta-ophiuchus npm...
EUVD-2025-124743
Malicious code in morgan-exec-uninstall-janus npm...
EUVD-2025-113750
Malicious code in exec-sass-loader-acamar-halley npm...
EUVD-2025-121841
Malicious code in solis-repository-envconfig-exec npm...
EUVD-2025-122555
Malicious code in rest-sqlite-exec-hugo npm...
Malicious code in dorado-chalk-canopus-exec (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9780f97be9dad27f3d893ac69914d86d4366e962fcb1202373b7f0fab22d148d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Linux Distros Unpatched Vulnerability : CVE-2025-40166
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/xe/guc: Check GuC running state before deregistering exec queue In normal operation, a registered exec queue is disabled and deregistered through the GuC, a...
PT-2025-46529
Name of the Vulnerable Software and Affected Versions Lite XL versions 2.1.8 and prior Description Lite XL is a lightweight, cross-platform text editor written in Lua and C, designed for extensibility via plugins and project-specific modules. The application executes project-level Lua modules and...
CVE-2025-12875
A weakness has been identified in mruby 3.4.0. This vulnerability affects the function aryfillexec of the file mrbgems/mruby-array-ext/src/array.c. Executing a manipulation of the argument start/length can lead to out-of-bounds write. The attack needs to be launched locally. The exploit has been...
UBUNTU-CVE-2025-12875
A weakness has been identified in mruby 3.4.0. This vulnerability affects the function aryfillexec of the file mrbgems/mruby-array-ext/src/array.c. Executing a manipulation of the argument start/length can lead to out-of-bounds write. The attack needs to be launched locally. The exploit has been...
CVE-2025-12875
A weakness has been identified in mruby 3.4.0. This vulnerability affects the function aryfillexec of the file mrbgems/mruby-array-ext/src/array.c. Executing a manipulation of the argument start/length can lead to out-of-bounds write. The attack needs to be launched locally. The exploit has been...