Lucene search
K

8 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/23 2:10 p.m.8 views

Malicious code in kdrive-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e7d5af5ddf22d4481fca4847a45189e6160a723341b32dcbb6bf51b49f53943 package.json declares a preinstall lifecycle script that auto-executes on npm install and runs wget -q -O-...

5.8AI score
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-5829

Malware in sbrugna...

5.8CVSS6.4AI score0.00582EPSS
Exploits0References4
NVD
NVD
added 2013/11/22 7:55 p.m.18 views

CVE-2013-5999

Kingsoft KDrive Personal before 1.21.0.1880 on Windows does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.8CVSS5.9AI score0.00582EPSS
Exploits0References3
Prion
Prion
added 2013/11/22 7:55 p.m.17 views

Information disclosure

Kingsoft KDrive Personal before 1.21.0.1880 on Windows does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.8CVSS6.4AI score0.00582EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2013/11/22 5:0 p.m.25 views

CVE-2013-5999

Kingsoft KDrive Personal before 1.21.0.1880 on Windows does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.9AI score0.00582EPSS
Exploits0References3
CVE
CVE
added 2013/11/22 5:0 p.m.47 views

CVE-2013-5999

Kingsoft KDrive Personal for Windows is affected by CVE-2013-5999 where the product fails to verify SSL server certificates, enabling potential MITM eavesdropping. Affected versions include 1.21.0.1878 and earlier, with the 1.21.0.1880 threshold mentioned in the CVE description; the root cause is...

5.8CVSS6.1AI score0.00582EPSS
Exploits0References3Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2013/11/22 8:39 a.m.3 views

KDrive Personal for Windows contains an issue where it fails to verify SSL server certificates

Overview KDrive Personal for Windows contains an issue where it fails to verify SSL server certificates. Yamano Yasuaki of NetAgent Co.,Ltd. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact A man-in-the-mindd...

5.8CVSS6.6AI score0.00582EPSS
Exploits0References5
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2013/11/22 12:0 a.m.28 views

JVN#97810280: KDrive Personal for Windows contains an issue where it fails to verify SSL server certificates

KDrive Personal for Windows contains an issue where it fails to verify SSL server certificates. Impact A man-in-the-middle attack may allow an attacker to eavesdrop on an encrypted communication. Solution Update the Software Update to the latest version according to the information provided by th...

5.8CVSS6.3AI score0.00582EPSS
Exploits0
Rows per page
Query Builder