44 matches found
Malicious code in arc-diag-util (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95f08d97107d726a6ae90afbf8e354b84a7e13d4a236bc8766180a362cc8344c On npm install, the package's postinstall hook runs id to capture the installer's uid/gid/group identity and opens a raw TCP socket to...
CVE-2026-43007
The CVE-2026-43007 entry relates to the Linux kernel accel/qaic component. Root cause: when a DBC is released, QAIC sends QAIC_TRANS_DEACTIVATE_FROM_DEV and resources are freed via decode_deactivate() in qaic_manage_ioctl() context. If the initiating user process terminates before the deactivatio...
EUVD-2018-15711
Malware in sbrugna...
EUVD-2021-16229
Malware in sbrugna...
CVE-2025-21459 Buffer Over-read in WLAN Host Communication
Transient DOS while parsing per STA profile in ML IE...
CVE-2025-21435 Buffer Over-read in WLAN Host Communication
Transient DOS may occur while parsing extended IE in beacon...
CVE-2025-21435
CVE-2025-21435 : Qualcomm WLAN/ Snapdragon component vulnerability causing a transient Denial-of-Service while parsing extended Information Elements in a beacon. The issue is described as a transient DoS that can occur during beacon IE parsing; exploitation status is not detailed in the provided ...
CVE-2024-45571
CVE-2024-45571 affects Qualcomm WLAN components. The issue is memory corruption that occurs when stopping the WLAN interface after processing a WMI command, enabling local attacker with low privileges and no user interaction to impact confidentiality, integrity, and availability (all High). No pu...
CVE-2024-45571 Use After Free in WLAN Host Communication
Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface...
CVE-2024-33063 Integer Overflow or Wraparound in WLAN Host Communication
Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater than the ML IE inside which this element is present...
CVE-2024-33068 Use After Free in WLAN Host Communication
Transient DOS while parsing fragments of MBSSID IE from beacon frame...
CVE-2024-33068 Use After Free in WLAN Host Communication
Transient DOS while parsing fragments of MBSSID IE from beacon frame...
CVE-2024-51407
CVE-2024-51407 affects Floodlight SDN OpenFlow Controller, version 1.2. The issue allows local hosts to construct false broadcast ports, causing inter-host communication anomalies. Documented CVSS v3.1 base score is 6.2 (Medium) with local attack vector, no user interaction, and high impact on av...
Floodlight OpenFlow Controller 安全漏洞
Floodlight OpenFlow Controller OSS is a Java-based open source enterprise SDN controller from Floodlight Open Source. A security vulnerability exists in Floodlight OpenFlow Controller version 1.2 that stems from allowing local hosts to construct fake broadcast ports, which can lead to abnormal...
CVE-2024-38397 Buffer Over-read in WLAN Host Communication
Transient DOS while parsing probe response and assoc response frame...
CVE-2024-38397 Buffer Over-read in WLAN Host Communication
Transient DOS while parsing probe response and assoc response frame...
CVE-2024-33073 Buffer Over-read in WLAN Host Communication
Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE...
CVE-2024-33071 Buffer Over-read in WLAN Host Communication
Transient DOS while parsing the MBSSID IE from the beacons when IE length is 0...
CVE-2024-33070 Buffer Over-read in WLAN Host Communication
Transient DOS while parsing ESP IE from beacon/probe response frame...
CVE-2024-33064 Buffer Over-read in WLAN Host Communication
Information disclosure while parsing the multiple MBSSID IEs from the beacon...