Lucene search
+L

719 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-40738

Malicious code in bioql PyPI...

7.6CVSS6.6AI score0.00698EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-21536

Malicious code in bioql PyPI...

8.1CVSS7.5AI score0.00322EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2022-26698

Malicious code in bioql PyPI...

5.9CVSS6.9AI score0.00609EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-39622

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.02339EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-28885

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.0068EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-26806

Malicious code in bioql PyPI...

6.7CVSS7.4AI score0.00612EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-26807

Malicious code in bioql PyPI...

6.4CVSS7.3AI score0.00564EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-26809

Malicious code in bioql PyPI...

6.7CVSS6.9AI score0.00612EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-26808

Malicious code in bioql PyPI...

6.4CVSS7.3AI score0.00617EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-26805

Malicious code in bioql PyPI...

5.9CVSS6.9AI score0.0051EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-26810

Malicious code in bioql PyPI...

6.4CVSS7.2AI score0.00525EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/30 12:0 a.m.5 views

Finance.js 安全漏洞

Finance.js is a JavaScript library for financial calculations by Essam B. Individual Developer. A security vulnerability exists in Finance.js version 4.1.0, which stems from improper handling of the depth parameter of the IRR function and could lead to a denial of service attack...

7.5CVSS6.3AI score0.00403EPSS
Exploits0References4
CVE
CVE
added 2025/09/30 12:0 a.m.24 views

CVE-2025-56572

CVE-2025-56572 affects finance.js v4.1.0 and describes a Denial of Service via the seekZero() parameter or IRR depth parameter. Root cause is improper handling of recursion/iteration limits, leading to excessive CPU usage and potential application stalls or crashes. Reported in multiple sources (...

7.5CVSS6.5AI score0.00496EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/09/30 12:0 a.m.2 views

CVE-2025-56572

An issue in finance.js v.4.1.0 allows a remote attacker to cause a denial of service via the seekZero parameter...

6.5AI score0.00496EPSS
Exploits0References3
CVE
CVE
added 2025/09/30 12:0 a.m.60 views

CVE-2025-56571

Finance.js v4.1.0 is affected by a DoS via the IRR() function (depth parameter) and via seekZero(), causing excessive CPU usage that can stall or crash applications. The root cause is improper handling of recursion/iteration limits. Exploitation status is not detailed in the provided documents. R...

7.5CVSS6.5AI score0.00403EPSS
Exploits0References3Affected Software1
HackRead
HackRead
added 2025/09/22 4:31 p.m.4 views

Bitcoin continues to increase its institutional popularity

Not long ago, the mere idea that cryptocurrencies could ever be integrated into mainstream finance would have seemed…...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2025/09/10 8:0 a.m.8 views

Watch Out for Salty2FA: New Phishing Kit Targeting US and EU Enterprises

Phishing-as-a-Service PhaaS platforms keep evolving, giving attackers faster and cheaper ways to break into corporate accounts. Now, researchers at ANY.RUN has uncovered a new entrant: Salty2FA , a phishing kit designed to bypass multiple two-factor authentication methods and slip past traditiona...

7.5AI score
Exploits0
The Hacker News
The Hacker News
added 2025/09/03 10:16 a.m.7 views

AI-Driven Trends in Endpoint Security: What the 2025 Gartner® Magic Quadrant™ Reveals

Cyber threats and attacks like ransomware continue to increase in volume and complexity with the endpoint typically being the most sought after and valued target. With the rapid expansion and adoption of AI, it is more critical than ever to ensure the endpoint is adequately secured by a platform...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2025/09/02 4:39 p.m.9 views

Lazarus Group Expands Malware Arsenal With PondRAT, ThemeForestRAT, and RemotePE

The North Korea-linked threat actor known as the Lazarus Group has been attributed to a social engineering campaign that distributes three different pieces of cross-platform malware called PondRAT, ThemeForestRAT, and RemotePE. The attack, observed by NCC Group's Fox-IT in 2024, targeted an...

7.1AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.2 views

Malicious code in embedded-finance (npm)

The package embedded-finance was found to contain malicious code...

7AI score
Exploits0
Rows per page
Query Builder