Lucene search
K

8 matches found

OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-12080 Malicious code in @zalastax/nolb-jsof (npm)

The package @zalastax/nolb-jsof was found to contain malicious code...

7.2AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.3 views

Malicious code in @zalastax/nolb-jsof (npm)

The package @zalastax/nolb-jsof was found to contain malicious code...

7AI score
Exploits0
CISA
CISA
added 2021/04/15 12:0 a.m.14 views

NAME:WRECK DNS Vulnerabilities

Cybersecurity researchers from Forescout and JSOF have released a report on a set of nine vulnerabilities—referred to as NAME:WRECK—affecting Domain Name System DNS implementations. NAME:WRECK affects at least four common TCP/IP stacks—FreeBSD, IPNet, NetX, and Nucleus NET—that are used in Intern...

6.9AI score
Exploits0References3
Debian
Debian
added 2021/03/22 6:43 p.m.78 views

[SECURITY] [DLA 2604-1] dnsmasq security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2604-1 [email protected] https://www.debian.org/lts/security/ March 22, 2021 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package...

8.3CVSS8AI score0.86692EPSS
Exploits2
ATTACKERKB
ATTACKERKB
added 2020/12/21 12:0 a.m.576 views

Ripple20 Treck TCP/IP Stack Vulnerabilities

Treck IP stack implementations for embedded systems are affected by multiple vulnerabilities. This set of vulnerabilities was researched and reported by JSOF, who calls them Ripple20. A summary of JSOF’s research is here, along with a technical whitepaper. See the Rapid7 Analysis tab for further...

10CVSS6.8AI score0.36965EPSS
In wildExploits21References20
Rapid7 Blog
Rapid7 Blog
added 2020/10/29 1:59 p.m.229 views

Trick or Treat! What We Can Learn from the Spookiest Vulnerabilities of the Year

Spooky season is in full swing, and we’re not just talking about Halloween. Security vulnerabilities can range from tiny errors to large-scale gaps in protection, and all have different consequences. We put together a list of some of the scariest vulnerabilities of the year the tricks! and the...

10CVSS9.8AI score0.9981EPSS
Exploits185
The Hacker News
The Hacker News
added 2020/06/16 1:0 p.m.534 views

New Ripple20 Flaws Put Billions of Internet-Connected Devices at Risk of Hacking

The Department of Homeland Security and CISA ICS-CERT today issued a critical security advisory warning about over a dozen newly discovered vulnerabilities affecting billions of Internet-connected devices manufactured by many vendors across the globe. Dubbed "Ripple20," the set of 19...

10CVSS0.9AI score0.36965EPSS
Exploits8
CERT
CERT
added 2020/06/16 12:0 a.m.88 views

Treck IP stacks contain multiple vulnerabilities

Overview Treck IP stack implementations for embedded systems are affected by multiple vulnerabilities. This set of vulnerabilities was researched and reported by JSOF, who calls them Ripple20. Description Treck IP network stack software is designed for and used in a variety of embedded systems. T...

10CVSS8.5AI score0.36965EPSS
Exploits21References4
Rows per page
Query Builder