53 matches found
CVE-2022-26843
Insufficient visual distinction of homoglyphs presented to user in the IntelR oneAPI DPC++/C++ Compiler before version 2022.1 for IntelR oneAPI Toolkits before version 2022.2 may allow an unauthenticated user to potentially enable escalation of privilege via network access...
14 Malicious NuGet Packages Found Stealing Crypto Wallets and Ad Data
ReversingLabs discovers 14 malicious NuGet packages, including Netherеum.All, using homoglyphs and fake downloads to steal crypto wallets and Google Ads data...
CVE-2025-55129
HackerOne community member Kassem S.kassems94 has reported that username handling in Revive Adserver was still vulnerable to impersonation attacks after the fix for CVE-2025-52672, via several alternate techniques. Homoglyphs based impersonation has been independently reported by other HackerOne...
EUVD-2025-200129
HackerOne community member Kassem S.kassems94 has reported that username handling in Revive Adserver was still vulnerable to impersonation attacks after the fix for CVE-2025-52672, via several alternate techniques. Homoglyphs based impersonation has been independently reported by other HackerOne...
EUVD-2019-16353
Malware in sbrugna...
EUVD-2012-0616
Malware in sbrugna...
EUVD-2022-31393
Malicious code in bioql PyPI...
MAL-2025-22519 Malicious code in homoglyphs (npm)
The package homoglyphs was found to contain malicious code...
Malicious code in homoglyphs (npm)
The package homoglyphs was found to contain malicious code...
Mozilla: Bypass of Restricted Keyword "Mozilla" in Display Name Field via Unicode Homoglyphs on addons.allizom.org
A restricted keyword bypass vulnerability was discovered on the Firefox Add-ons platform that allowed an attacker to register a display name visually identical to "Mozilla" by using a Unicode homoglyph character. This circumvented the intended restriction and could have been used to impersonate...
CVE-2019-6795
An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It has Insufficient Visual Distinction of Homoglyphs Presented to a User. IDN homographs and RTLO characters are rendered to unicode, which could be used for social...
60 New Malicious Packages Uncovered in NuGet Supply Chain Attack
Threat actors have been observed publishing a new wave of malicious packages to the NuGet package manager as part of an ongoing campaign that began in August 2023, while also adding a new layer of stealth to evade detection. The fresh packages, about 60 in number and spanning 290 versions,...
Malicious Python Package Uses Unicode Trickery to Evade Detection and Steal Data
A malicious Python package on the Python Package Index PyPI repository has been found to use Unicode as a trick to evade detection and deploy an info-stealing malware. The package in question, named onyxproxy, was uploaded to PyPI on March 15, 2023, and comes with capabilities to harvest and...
Malicious Python Package Uses Unicode Trickery to Evade Detection and Steal Data
A malicious Python package on the Python Package Index PyPI repository has been found to use Unicode as a trick to evade detection and deploy an info-stealing malware. The package in question, named onyxproxy, was uploaded to PyPI on March 15, 2023, and comes with capabilities to harvest and...
CVE-2022-26843
Insufficient visual distinction of homoglyphs presented to user in the IntelR oneAPI DPC++/C++ Compiler before version 2022.1 for IntelR oneAPI Toolkits before version 2022.2 may allow an unauthenticated user to potentially enable escalation of privilege via network access...
Input validation
Insufficient visual distinction of homoglyphs presented to user in the IntelR oneAPI DPC++/C++ Compiler before version 2022.1 for IntelR oneAPI Toolkits before version 2022.2 may allow an unauthenticated user to potentially enable escalation of privilege via network access...
CVE-2022-26843
Insufficient visual distinction of homoglyphs presented to user in the IntelR oneAPI DPC++/C++ Compiler before version 2022.1 for IntelR oneAPI Toolkits before version 2022.2 may allow an unauthenticated user to potentially enable escalation of privilege via network access...
CVE-2022-26843
CVE-2022-26843 affects Intel® oneAPI Toolkits, specifically the Intel® oneAPI DPC++/C++ Compiler prior to 2022.1 and related toolkits prior to 2022.2. Root cause: insufficient visual distinction of homoglyphs presented to the user, which may allow an unauthenticated user to escalate privileges vi...
CVE-2022-26843
Insufficient visual distinction of homoglyphs presented to user in the IntelR oneAPI DPC++/C++ Compiler before version 2022.1 for IntelR oneAPI Toolkits before version 2022.2 may allow an unauthenticated user to potentially enable escalation of privilege via network access...
PT-2023-12890 · Intel · Intel Oneapi Dpc++/C++ Compiler +1
Name of the Vulnerable Software and Affected Versions: IntelR oneAPI DPC++/C++ Compiler versions prior to 2022.1 IntelR oneAPI Toolkits versions prior to 2022.2 Description: The issue is related to insufficient visual distinction of homoglyphs presented to the user, which may allow an...