Medium: nvidia-gds-12-9

Issue Overview: NVIDIA nvJPEG library contains a vulnerability where an attacker can cause an out-of-bounds read by means of a specially crafted JPEG file. A successful exploit of this vulnerability might lead to information disclosure or denial of service. CVE-2025-23272 Affected Packages:...

EUVD-2015-7338

Malware in sbrugna...

EUVD-2018-7240

Malware in sbrugna...

EUVD-2014-3030

Malware in sbrugna...

EUVD-2014-3085

Malware in sbrugna...

Medium: libcufile-12-9

Issue Overview: NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the cuobjdump binary, where a failure to check the length of a buffer could allow a user to cause the tool to crash or execute arbitrary code by passing in a malformed ELF file. A successful exploit of this...

Medium: nvidia-gds-12-9

Issue Overview: NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the cuobjdump binary, where a failure to check the length of a buffer could allow a user to cause the tool to crash or execute arbitrary code by passing in a malformed ELF file. A successful exploit of this...

Low: nvidia-gds

Issue Overview: NVIDIA CUDA toolkit for all platforms contains a vulnerability in the cuobjdump binary, where a user could cause an out-of-bounds read by passing a malformed ELF file to cuobjdump. A successful exploit of this vulnerability might lead to a partial denial of service. CVE-2024-53870...

Low: nvidia-gds-12-8

Issue Overview: NVIDIA CUDA toolkit for all platforms contains a vulnerability in the cuobjdump binary, where a user could cause an out-of-bounds read by passing a malformed ELF file to cuobjdump. A successful exploit of this vulnerability might lead to a partial denial of service. CVE-2024-53870...

fprime-ci (=0.0.1a1), fprime-fpy (>=0.0.1a1 <=0.3.2) +1 more potentially affected by CVE-2024-55029 via fprime-gds (>=4.2.1 <=4.2.2a1)

fprime-gds PYPI version =4.2.1, =0.0.1a1, =0.1.0, =0.1.2 Source cves: CVE-2024-55029 Source advisory: SNYK:PYTHON-FPRIMEGDS-9749311...

Insecure Defaults

Overview fprime-gds is a F Prime Flight Software Ground Data System layer Affected versions of this package are vulnerable to Insecure Defaults by repeated invocation of sendcommand, which can overflow the queue and consume excessive memory. Remediation There is no fixed version for fprime-gds...

fprime-ci (=0.0.1a1), fprime-fpy (>=0.0.1a1 <=0.3.2) +1 more potentially affected by CVE-2024-55030 via fprime-gds (>=4.2.1 <=4.2.2a1)

fprime-gds PYPI version =4.2.1, =0.0.1a1, =0.1.0, =0.1.2 Source cves: CVE-2024-55030 Source advisory: SNYK:PYTHON-FPRIMEGDS-9749309...

Cross-site Scripting (XSS)

Overview fprime-gds is a F Prime Flight Software Ground Data System layer Affected versions of this package are vulnerable to Cross-site Scripting XSS by uploading a malicious Vue file as a cmdDisp.CMDNOOPSTRING in the Dashboard tab. Details Cross-site scripting or XSS is a code vulnerability tha...

fprime-ci (=0.0.1a1), fprime-fpy (>=0.0.1a1 <=0.3.2) +1 more potentially affected by CVE-2024-55028 via fprime-gds (>=4.2.1 <=4.2.2a1)

fprime-gds PYPI version =4.2.1, =0.0.1a1, =0.1.0, =0.1.2 Source cves: CVE-2024-55028 Source advisory: SNYK:PYTHON-FPRIMEGDS-9749306...

PT-2024-17610 · WordPress · Geodatasource Country Region Dropdown

Name of the Vulnerable Software and Affected Versions: GeoDataSource Country Region DropDown plugin for WordPress versions up to, and including, 1.0.1 Description: The issue is related to Stored Cross-Site Scripting via the plugin's 'gds-country-dropdown' shortcode due to insufficient input...

Malicious code in @gds-web-ui/sodalite (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-7076 Malicious code in @gds-web-ui/core (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in @gds-web-ui/core (npm)

--- -= Per source details. Do not edit below this line.=-...

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 7.7 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

Important: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 8.2 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...