44 matches found
Malicious code in arc-diag-util (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95f08d97107d726a6ae90afbf8e354b84a7e13d4a236bc8766180a362cc8344c On npm install, the package's postinstall hook runs id to capture the installer's uid/gid/group identity and opens a raw TCP socket to...
CVE-2026-43007
The CVE-2026-43007 entry relates to the Linux kernel accel/qaic component. Root cause: when a DBC is released, QAIC sends QAIC_TRANS_DEACTIVATE_FROM_DEV and resources are freed via decode_deactivate() in qaic_manage_ioctl() context. If the initiating user process terminates before the deactivatio...
EUVD-2018-15711
Malware in sbrugna...
EUVD-2021-16229
Malware in sbrugna...
CVE-2025-21459 Buffer Over-read in WLAN Host Communication
Transient DOS while parsing per STA profile in ML IE...
CVE-2025-21435 Buffer Over-read in WLAN Host Communication
Transient DOS may occur while parsing extended IE in beacon...
CVE-2025-21435
CVE-2025-21435 : Qualcomm WLAN/ Snapdragon component vulnerability causing a transient Denial-of-Service while parsing extended Information Elements in a beacon. The issue is described as a transient DoS that can occur during beacon IE parsing; exploitation status is not detailed in the provided ...
CVE-2024-45571
CVE-2024-45571 affects Qualcomm WLAN components. The issue is memory corruption that occurs when stopping the WLAN interface after processing a WMI command, enabling local attacker with low privileges and no user interaction to impact confidentiality, integrity, and availability (all High). No pu...
CVE-2024-45571 Use After Free in WLAN Host Communication
Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface...
CVE-2024-33063 Integer Overflow or Wraparound in WLAN Host Communication
Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater than the ML IE inside which this element is present...
CVE-2024-33068 Use After Free in WLAN Host Communication
Transient DOS while parsing fragments of MBSSID IE from beacon frame...
CVE-2024-33068 Use After Free in WLAN Host Communication
Transient DOS while parsing fragments of MBSSID IE from beacon frame...
Floodlight OpenFlow Controller 安全漏洞
Floodlight OpenFlow Controller OSS is a Java-based open source enterprise SDN controller from Floodlight Open Source. A security vulnerability exists in Floodlight OpenFlow Controller version 1.2 that stems from allowing local hosts to construct fake broadcast ports, which can lead to abnormal...
CVE-2024-51407
CVE-2024-51407 affects Floodlight SDN OpenFlow Controller, version 1.2. The issue allows local hosts to construct false broadcast ports, causing inter-host communication anomalies. Documented CVSS v3.1 base score is 6.2 (Medium) with local attack vector, no user interaction, and high impact on av...
CVE-2024-38397 Buffer Over-read in WLAN Host Communication
Transient DOS while parsing probe response and assoc response frame...
CVE-2024-38397 Buffer Over-read in WLAN Host Communication
Transient DOS while parsing probe response and assoc response frame...
CVE-2024-33073 Buffer Over-read in WLAN Host Communication
Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE...
CVE-2024-33071 Buffer Over-read in WLAN Host Communication
Transient DOS while parsing the MBSSID IE from the beacons when IE length is 0...
CVE-2024-33070 Buffer Over-read in WLAN Host Communication
Transient DOS while parsing ESP IE from beacon/probe response frame...
CVE-2024-33064 Buffer Over-read in WLAN Host Communication
Information disclosure while parsing the multiple MBSSID IEs from the beacon...