601 matches found
CVE-2020-37107
CVE-2020-37107 affects Core FTP LE 2.2. A denial-of-service arises by overwriting the account field with a large buffer; an attacker can craft a file with 20,000 repeated characters and paste it into the account field, causing the application to become unresponsive and require reinstallation. Pub...
PT-2026-6815
Name of the Vulnerable Software and Affected Versions Core FTP LE version 2.2 Description The application can be crashed by overwriting the account field with a large buffer, leading to a denial of service. An attacker can create a text file containing 20,000 repeated characters and paste it into...
CVE-2025-36938
In U-Boot of appenduint32le, there is a possible fault injection due to a logic error in the code. This could lead to physical escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2025-36938
In U-Boot of appenduint32le, there is a possible fault injection due to a logic error in the code. This could lead to physical escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
EUVD-2025-144757
Malicious code in apasih-le-poldoa npm...
Malicious code in apasih-le-poldoa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4204afb72c04ffcc8a191386168e049cffe551a49999fbf3bf1087cbb240fb57 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in le-front-monitor (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5fdbc40ddfb10ff80c7c6f7a4ef4e08786eaa26459865bfc0e9af58b1cb17e23 The package le-front-monitor was found to contain malicious code. Source: ghsa-malware 0624c63b44959a7b08101b1b63db58d0e06dff2ce6566dcfa5d4e672379a31...
MAL-2025-55019 Malicious code in le-front-monitor (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5fdbc40ddfb10ff80c7c6f7a4ef4e08786eaa26459865bfc0e9af58b1cb17e23 The package le-front-monitor was found to contain malicious code. Source: ghsa-malware 0624c63b44959a7b08101b1b63db58d0e06dff2ce6566dcfa5d4e672379a31...
EUVD-2025-44034
Malicious code in le-front-monitor npm...
Malicious Package
Overview le-front-monitor is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989610)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989610 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: fix null ptr deref on hcisyncconncompleteevt This event is just specified for SCO and...
CVE-2025-39982
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: Fix UAF in hciaclcreateconnsync This fixes the following UFA in hciaclcreateconnsync where a connection still pending is command submission conn-state == BTOPEN maybe freed, also since this also can happen wi...
AZL-68522 CVE-2025-39982 affecting package kernel for versions less than 6.6.112.1-1
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: Fix UAF in hciaclcreateconnsync This fixes the following UFA in hciaclcreateconnsync where a connection still pending is command submission conn-state == BTOPEN maybe freed, also since this also can happen wi...
EUVD-2007-6508
Malware in sbrugna...
EUVD-2019-11089
Malware in sbrugna...
EUVD-2020-14356
Malware in sbrugna...
EUVD-2003-0970
Malware in sbrugna...
EUVD-2014-6833
Malware in sbrugna...
EUVD-2020-3890
Malware in sbrugna...
AI Verger 代码问题漏洞
AI Verger is an AI chat tool open-sourced by Le Chatterie. A code issue vulnerability exists in AI Verger version 1.2.10 and earlier, which stems from incorrect manipulation of the parameter URLs in the file /src/main/services/mcp/oauth/provider.ts, which could lead to a deserialization attack...