Lucene search
+L

6 matches found

OSV
OSV
added 2026/07/06 8:3 a.m.4 views

PYSEC-2026-986 Type confusion leading to `CHECK`-failure based denial of service in TensorFlow

Impact The macros that TensorFlow uses for writing assertions e.g., CHECKLT, CHECKGT, etc. have an incorrect logic when comparing sizet and int values. Due to type conversion rules, several of the macros would trigger incorrectly. Patches We have patched the issue in GitHub commit...

5.5CVSS5.9AI score0.00386EPSS
Exploits1References13
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/25 6:11 p.m.15 views

Malicious code in @service-suppliers/suppliers (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a79ca8ef6257be2fbac9c361b969d9e63ce6a833e42dafa4b558e1f805276502 On npm install, scripts/postinstall.js performs two attacker-benefit actions against the installer. First, it scrapes installer-side credentials: it...

5.8AI score
Exploits0References2
OSV
OSV
added 2026/05/25 6:7 p.m.15 views

MAL-2026-4435 Malicious code in @service-suppliers/fetch_suppliers_action_saga (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a3ebab0ad45763f2a27f43a1f97a820409b215589a45b5f3928b169ffc062bb The postinstall script scripts/postinstall.js performs three independent installer-harm actions on npm install. 1 It enumerates process.env for...

5.9AI score
Exploits0References2
Circl
Circl
added 2025/05/13 3:55 p.m.3 views

GHSA-QPV8-G6QV-RF8P

creationtimestamp| type| source ---|---|--- 2025-05-13 15:55:04+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114501334070497265...

7.3AI score
Exploits0References1
Atlassian
Atlassian
added 2014/07/29 4:12 a.m.31 views

Escape or filter script tags in "all activity" panel

We've got an external report about a third party plugin: quote From: Vincent Ollivier Date: 29 July 2014 13:12 Subject: JIRA 6.2.5 / JEditor XSS Vulnerability To: [email protected] Hi, Sorry for the email, I couldn't find the correct project to report this security issue. There's an XSS in...

6.1AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2013/09/19 6:17 a.m.18 views

Implement clickjacking protection on https://answers.atlassian.com/

We received an external security report from Monendra Sahu that https://answers.atlassian.com/ is vulnerable to clickjacking|http://en.wikipedia.org/wiki/Clickjacking. This can be fixed by sending a X-Frame-Options header with a value of SAMEORIGIN. This will prevent answers from being displayed ...

1.8AI score
Exploits0Affected Software1
Rows per page
Query Builder