Lucene search
K

29 matches found

OSV
OSV
added 2020/05/12 1:15 a.m.21 views

CVE-2020-11071

SLPJS npm package slpjs before version 0.27.2, has a vulnerability where users could experience false-negative validation outcomes for MINT transaction operations. A poorly implemented SLP wallet could allow spending of the affected tokens which would result in the destruction of a user's minting...

8.6CVSS8.4AI score
Exploits0References2
Prion
Prion
added 2020/05/12 1:15 a.m.20 views

Input validation

In SLP Validate npm package slp-validate before version 1.2.1, users could experience false-negative validation outcomes for MINT transaction operations. A poorly implemented SLP wallet could allow spending of the affected tokens which would result in the destruction of a user's minting baton. Th...

5CVSS8.5AI score0.01036EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/05/12 12:45 a.m.35 views

CVE-2020-11072 False-negative validation results in MINT transactions with invalid baton

In SLP Validate npm package slp-validate before version 1.2.1, users could experience false-negative validation outcomes for MINT transaction operations. A poorly implemented SLP wallet could allow spending of the affected tokens which would result in the destruction of a user's minting baton. Th...

8.6CVSS8.6AI score0.01036EPSS
Exploits0References2
OSV
OSV
added 2020/05/12 12:39 a.m.58 views

GHSA-JC83-CPF9-Q7C6 False-negative validation results in MINT transactions with invalid baton

Impact Users could experience false-negative validation outcomes for MINT transaction operations. A poorly implemented SLP wallet could allow spending of the affected tokens which would result in the destruction of a user's minting baton. Patches npm package slpjs has been patched and published a...

8.6CVSS8.4AI score0.00932EPSS
Exploits0References3
pentestit
pentestit
added 2018/01/11 12:45 a.m.61 views

UPDATE: OWASP Dependency-Check 3.1.0

PenTestIT RSS Feed My first post about this open source OWASP project was about an older version. This post discusses the changes made to the open source software composition analysis utility in the latest release yesterday. This is the OWASP Dependency-Check 3.1.0! This release comes with...

7.2AI score
Exploits0
Prion
Prion
added 2017/03/14 10:59 p.m.19 views

Design/Logic Flaw

Sandbox detection evasion vulnerability in hardware appliances in McAfee now Intel Security Advanced Threat Defense MATD 3.4.2.32 and earlier allows attackers to detect the sandbox environment, then bypass proper malware detection resulting in failure to detect a malware file false-negative via...

4.3CVSS7.1AI score0.00734EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2017/03/14 10:0 p.m.51 views

CVE-2015-8986

CVE-2015-8986 is described as a sandbox-detection evasion vulnerability in McAfee/Intel Security Advanced Threat Defense (MATD) versions up to 3.4.2.32. The issue allows malware to detect the sandbox environment and bypass malware detection, resulting in false negatives. The available sources ide...

5.5CVSS5.5AI score0.00734EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2017/03/14 10:0 p.m.23 views

CVE-2015-8986

Sandbox detection evasion vulnerability in hardware appliances in McAfee now Intel Security Advanced Threat Defense MATD 3.4.2.32 and earlier allows attackers to detect the sandbox environment, then bypass proper malware detection resulting in failure to detect a malware file false-negative via...

5.5AI score0.00734EPSS
Exploits0References1
CheckPoint Security
CheckPoint Security
added 2013/10/02 9:0 p.m.14 views

When using Threat Emulation to scan mail content, some files encoded in MIME may be incorrectly decoded causing a 'False-Negative' result of the emulated file

...

1.7AI score
Exploits0Affected Software1
Rows per page
Query Builder