CVE-2026-32281 vulnerabilities

Vulnerabilities for packages: redpanda, kubescape-operator, buildah, go-discover, nri-elasticsearch, opentelemetry-operator, crane, dask-gateway, cortex, rancher-telemetry, kube-state-metrics, oauth2-proxy, kubewatch, logstash-exporter, kubernetes-dashboard, aws-flb-kinesis, spegel, keda, dgraph,...

EUVD-2025-175710

Malicious code in virtualreality-algol-loglevel-nebula npm...

EUVD-2025-180383

Malicious code in apollo-nodejs-helmet-loglevel npm...

EUVD-2025-179513

Malicious code in cressida-jwt-loglevel-fetch npm...

EUVD-2025-177944

Malicious code in markdownlint-rollup-loglevel-toml npm...

EUVD-2025-179099

Malicious code in epimetheus-loglevel-membrane-solarnebula npm...

EUVD-2025-178033

Malicious code in loglevel-exobiology-eslint-config-rate-limiter npm...

EUVD-2025-176438

Malicious code in selenology-zenobia-loglevel-prettier-stylelint npm...

MAL-2025-187848 Malicious code in loglevel-event-resonance-umbriel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e7eec21520de8ed6c0a4d6cca52c2046b026e45372eab13e437e1cd2d38c4f32 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189017 Malicious code in quark-dorado-ethology-loglevel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9270626698c8706953e8ddc2fe61d99577497576cc954a81c95ae6ad4a0c625 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-179013

Malicious code in europa-loglevel-levels-async npm...

EUVD-2025-178032

Malicious code in loglevel-hyperion-bootstrap-mysql npm...

EUVD-2025-176246

Malicious code in spinner-spectron-electron-builder-loglevel npm...

EUVD-2025-178029

Malicious code in loglevel-testcafe-spectron-leda npm...

EUVD-2025-176194

Malicious code in stream-andromeda-proxima-loglevel npm...

EUVD-2025-179062

Malicious code in eris-sync-loglevel-dorado npm...

EUVD-2025-178034

Malicious code in loglevel-event-resonance-umbriel npm...

Malicious code in epimetheus-loglevel-membrane-solarnebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3882f96f6ba94008491b8b2d879161bdb319ae0eee595576b6f91e29c1b50df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-178030

Malicious code in loglevel-selenium-process-mongoose npm...

Malicious code in cressida-jwt-loglevel-fetch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c579391a28b717cc3bab01d83cefe0a9573ccb0c4b8dee4c27e98fcb9b1adac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...