14 matches found
CVE-2026-22696 dcap-qvl has Missing Verification for QE Identity
dcap-qvl implements the quote verification logic for DCAP Data Center Attestation Primitives. A vulnerability present in versions prior to 0.3.9 involves a critical gap in the cryptographic verification process within the dcap-qvl. The library fetches QE Identity collateral including qeidentity,...
PT-2026-4820
dcap-qvl implements the quote verification logic for DCAP Data Center Attestation Primitives. A vulnerability present in versions prior to 0.3.9 involves a critical gap in the cryptographic verification process within the dcap-qvl. The library fetches QE Identity collateral including qe identity,...
MAL-2025-23457 Malicious code in isv-upx-client (npm)
The package isv-upx-client was found to contain malicious code...
Malicious code in isv-buc-client (npm)
The package isv-buc-client was found to contain malicious code...
Malicious code in isv-buc-utils (npm)
The package isv-buc-utils was found to contain malicious code...
Malicious code in isv-upx-client (npm)
The package isv-upx-client was found to contain malicious code...
MAL-2025-23456 Malicious code in isv-buc-utils (npm)
The package isv-buc-utils was found to contain malicious code...
MAL-2025-23455 Malicious code in isv-buc-client (npm)
The package isv-buc-client was found to contain malicious code...
Announcing 2022 Microsoft Security Excellence Awards winners
Spirits soared at the Microsoft Security Excellence Awards on June 5, 2022. And is it any wonder? The celebration marked the first time that Microsoft executives and Microsoft Intelligent Security Association MISA members had gathered in person in more than two years so it was a special night for...
CVE-2021-44153
CVE-2021-44153 affects Reprise License Manager (RLM) 14.2. An admin user can enable an option while editing the license file to run arbitrary executables, demonstrated by the ISV entry using calc.exe. An attacker can exploit this to run a malicious binary on startup or when triggering the Reread/...
Visionary security partners to be honored at the very first Microsoft Security 20/20 event
Microsoft Security 20/20 is nearly here and our team is putting the final touches on what we think will be a memorable event. Microsoft Security 20/20 will put the spotlight on companies and individuals with a clear-eyed view of the security challenges we face and smart solutions to help solve...
Decade Long Partnership = Global Partner Innovation Award
Here at Trend Micro we highly value the relationships we’ve build with our partners, especially those that have spanned several years. However, it’s particularly gratifying when those partners choose to recognize our work with an award. So, excuse us while we toot our own horn’s for a bit...
[SECURITY] Fedora 18 Update: nas-1.9.3-4.fc18
In a nutshell, NAS is the audio equivalent of an X display server. The Network Audio System NAS was developed by NCD for playing, recording, and manipulating audio data over a network. Like the X Window System, it uses the client/server model to separate applications from the specific drivers tha...
Intel® Active Management Technology Software Development Kit Remote Code Execution
Summary: Intel® Active Management Technology Intel® AMT Software Development Kit SDK is the development framework for the independent software vendors ISVs to develop manageability applications that interact with Intel® AMT-enabled systems. Updated software which corrects a potential stack overfl...