Lucene search
K

765 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-21810

Malicious code in bioql PyPI...

8.8CVSS7.7AI score0.00106EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2024-18212

Malicious code in bioql PyPI...

4.3CVSS5AI score0.00322EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-49456

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00115EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-51007

Malicious code in bioql PyPI...

6.3CVSS5AI score0.00206EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-21813

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.00118EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-21078

Malicious code in bioql PyPI...

6.7CVSS6.6AI score0.00157EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2024-18122

Malicious code in bioql PyPI...

5.8CVSS6.6AI score0.00391EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-27673

Malicious code in bioql PyPI...

4.1CVSS6.6AI score0.00162EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-30795

Malicious code in bioql PyPI...

6.8CVSS6.6AI score0.00304EPSS
Exploits1References4
NVD
NVD
added 2025/09/30 11:15 p.m.6 views

CVE-2025-24525

Keysight Ixia Vision has an issue with hardcoded cryptographic material which may allow an attacker to intercept or decrypt payloads sent to the device via API calls or user authentication if the end user does not replace the TLS certificate that shipped with the device. Remediation is available ...

8.7CVSS0.00242EPSS
Exploits0References4
Snyk
Snyk
added 2025/09/17 8:23 p.m.2 views

Missing Encryption of Sensitive Data

Overview Affected versions of this package are vulnerable to Missing Encryption of Sensitive Data via the DownloadTinyFile function. An attacker can intercept and modify file downloads by performing a man-in-the-middle attack on network traffic, potentially causing peers to receive malicious file...

6.9CVSS6.6AI score0.0013EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/09 8:45 p.m.2 views

Embedded Malicious Code

Overview duckdb is a Node.js API for DuckDB, the "SQLite for Analytics". The API for this client is somewhat compliant to the SQLite Node.js client for easier transition and transition you must eventually. Affected versions of this package are vulnerable to Embedded Malicious Code. This package...

9.8CVSS6.8AI score0.00349EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/08 2:26 p.m.1 views

Embedded Malicious Code

Overview proto-tinker-wc is a prototype app written in Stencil and Tailwind, deployed via NPM and Vercel. Affected versions of this package are vulnerable to Embedded Malicious Code. This package version contains malicious code that monitors network traffic when run in a browser and targets crypt...

9.8CVSS7AI score
Exploits0References2
NVD
NVD
added 2025/08/26 8:15 p.m.4 views

CVE-2025-55443

Telpo MDM 1.4.6 thru 1.4.9 for Android contains sensitive administrator credentials and MQTT server connection details IP/port that are stored in plaintext within log files on the device's external storage. This allows attackers with access to these logs to: 1. Authenticate to the MDM web platfor...

9.1CVSS0.00226EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2003-1307

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The modphp module for the Apache HTTP Server allows local users with write access to PHP scripts to send signals to the server's process group and use the...

4.3CVSS5.6AI score0.01603EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/08/14 12:0 a.m.10 views

PT-2025-33277 · Unknown · Runtime Event System

Name of the Vulnerable Software and Affected Versions: runtime event system affected versions not specified Description: A security issue in the runtime event system allows unauthenticated connections to receive a reusable API token. This token is broadcasted over a WebSocket and can be intercept...

8.5CVSS6AI score0.0015EPSS
Exploits0References3
Packet Storm News
Packet Storm News
added 2025/07/21 12:0 a.m.2 views

Realistic Vulnerabilities of Decoy-State Quantum Key Distribution

We analyze realistic vulnerabilities of decoy-state quantum key distribution QKD arising from the combination of laser damage attack LDA and unambiguous state discrimination USD. While decoy-state QKD is designed to protect against photon-number-splitting and beam-splitting attacks by accurately...

7.1AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/07/19 7:51 p.m.9 views

CVE-2025-7433

A local privilege escalation vulnerability in Sophos Intercept X for Windows with Central Device Encryption 2025.1 and older allows arbitrary code execution...

8.8CVSS7.9AI score0.00106EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/19 7:51 p.m.4 views

CVE-2024-13972

A vulnerability related to registry permissions in the Intercept X for Windows updater prior to Core Agent version 2024.3.2 can lead to a local user gaining SYSTEM level privileges during a product upgrade...

8.8CVSS7.3AI score0.00127EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/19 6:58 p.m.6 views

CVE-2025-7472

A local privilege escalation vulnerability in the Intercept X for Windows installer prior version 1.22 can lead to a local user gaining system level privileges, if the installer is run as SYSTEM...

7.5CVSS6.5AI score0.00118EPSS
Exploits0References1
Rows per page
Query Builder