479 matches found
Malicious code in harmony-common (npm)
The package harmony-common was found to contain malicious code...
Malicious code in unicorn-fjjjr-evjto-harmony-project (npm)
The package unicorn-fjjjr-evjto-harmony-project was found to contain malicious code...
MAL-2025-19573 Malicious code in ember-x2dls-1ovc2-harmony-project (npm)
The package ember-x2dls-1ovc2-harmony-project was found to contain malicious code...
Malicious code in harmony-uww9b-qqxzw-lunar-project (npm)
The package harmony-uww9b-qqxzw-lunar-project was found to contain malicious code...
MAL-2025-39629 Malicious code in xenon-6kho4-eb6jz-harmony-project (npm)
The package xenon-6kho4-eb6jz-harmony-project was found to contain malicious code...
Malicious code in harmony-runtime (npm)
The package harmony-runtime was found to contain malicious code...
MAL-2025-15043 Malicious code in aura-harmony-wud000-project (npm)
The package aura-harmony-wud000-project was found to contain malicious code...
CVE-2025-3831
Log files uploaded during troubleshooting by the Harmony SASE agent may have been accessible to unauthorized parties...
CVE-2025-3831
Log files uploaded during troubleshooting by the Harmony SASE agent may have been accessible to unauthorized parties...
CVE-2025-3831 Exposed SFTP server
Log files uploaded during troubleshooting by the Harmony SASE agent may have been accessible to unauthorized parties...
CVE-2025-3831 Exposed SFTP server
Log files uploaded during troubleshooting by the Harmony SASE agent may have been accessible to unauthorized parties...
CVE-2025-3831
CVE-2025-3831 affects Check Point Harmony SASE agent. The root cause was a shared SFTP key embedded in the software with read/list permissions, granting broader access than intended to log files uploaded during troubleshooting. This could allow unauthorized parties to access logs (potentially inc...
PT-2025-32673 · Check Point · Harmony Sase Agent
Name of the Vulnerable Software and Affected Versions: Harmony SASE agent affected versions not specified Description: Log files uploaded during troubleshooting by the Harmony SASE agent may have been accessible to unauthorized parties. Recommendations: At the moment, there is no information abou...
Check Point Harmony SASE 安全漏洞
Check Point Harmony SASE is a Secure Access Service edge application from Check Point Israel. A security vulnerability exists in Check Point Harmony SASE that stems from improper log file access control, which could lead to information disclosure...
CVE-2025-27128
in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in tcb through use after free...
CVE-2025-24298
in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in tcb through use after free...
CVE-2025-24298
in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in tcb through use after free...
CVE-2025-25212 pasteboard has an improper input vulnerability
in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through improper input...
CVE-2025-25212 pasteboard has an improper input vulnerability
in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through improper input...
CVE-2025-25212
CVE-2025-25212 affects OpenHarmony, with versions v5.0.3 and earlier vulnerable to local DoS due to improper input handling. The issue is a local-attack vector, leading to denial of service as described in multiple sources (e.g., PT-2025-32508). The most concrete remediation is to upgrade to Open...