Lucene search
K

12 matches found

OSV
OSV
added 2025/11/12 10:25 p.m.4 views

MAL-2025-184718 Malicious code in oloc-uyg-uhai (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b5bcb456768dbb8142c30a0597bc579807b2894fa19af4ad5e14d725a0033a89 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 4:29 a.m.6 views

Malicious code in aurora-tailwindcss-nodejs-lynx (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e29f2c221f11923d5f6b23ee57f3071b738e1689f470d3de977ae6470d6b4c9d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSV
added 2025/11/11 8:46 p.m.2 views

MAL-2025-127684 Malicious code in joko-gorengan46-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ffc4e5965adbca911f04f06d613485adc1043b7fbceda55a8dba6fa8b85acbc3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/11 7:44 a.m.3 views

MAL-2025-108537 Malicious code in sensible_wolf-appteadev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 36fba9d4ca2d6d39597eaf24979883eb5cbb2ef22e518e8d074932022ead4f2b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/11 7:16 a.m.2 views

MAL-2025-103493 Malicious code in hadianto-kue92-ruro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4803d1d938aba5cb876be1b8c970e5f55f9e3bec2209c256c878fc6ccb8a4e36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/11 5:18 a.m.3 views

Malicious code in fundamental_magpie_requirement (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca1cdae7529cbbebdedfd21006105d04c6da7f2baedcc23098f9fe32efb2f297 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/10 5:21 p.m.3 views

Malicious code in tiara-papeda90-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bbe7f85e0e95857ff510317ac87665e8b2314173715a5d089cb92c3424481696 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.3 views

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-40971)

f2fs: remove clear SBINLINECRYPT flag in defaultoptions In f2fsremount, SBINLINECRYPT flag will be clear and re-set. If create new file or open file during this gap, these files will not use inlinecrypt. Worse case, it may lead to data corruption if wrappedkeyv0 is enable. This plugin only works...

5.5CVSS6.9AI score0.003EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-24106

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Xpdf prior to 4.04, the DCT JPEG decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unkno...

7.8CVSS7.1AI score0.00292EPSS
Exploits0References3
OSV
OSV
added 2024/12/27 3:15 p.m.1 views

UBUNTU-CVE-2024-56585

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Fix sleeping in atomic context for PREEMPTRT Commit bab1c299f3945ffe79 "LoongArch: Fix sleeping in atomic context in setuptlbhandler" changes the gfp flag from GFPKERNEL to GFPATOMIC for allocpagesnode. However, for...

5.5CVSS6.5AI score0.00173EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2022/08/30 3:5 a.m.30 views

CVE-2022-24106

In Xpdf prior to 4.04, the DCT JPEG decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc...

7.8CVSS7.5AI score0.00292EPSS
Exploits0
securityvulns
securityvulns
added 2005/07/09 12:0 a.m.21 views

Multiple Bugzilla bug tracking system vulnerabilities

It's possible to change bug flag and, under rare condition to view private bugs by unprivileged user...

3AI score
Exploits0References1Affected Software1
Rows per page
Query Builder