11 matches found
CVE-2026-30785
Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution', Use of Password Hash With Insufficient Computational Effort vulnerability in rustdesk-client RustDesk Client rustdesk, hbbcommon on Windows, MacOS, Linux Password security module, config encryption, machine U...
CVE-2026-30785
RustDesk Client (through version 1.4.5) is affected by CVE-2026-30785 due to a vulnerability described as Prototype Pollution and weak password hashing in the password_security, config, and machine-uid-related code paths (hbb_common and related modules). The issue can allow Retrieve Embedded Sens...
CVE-2026-30785 RustDesk Encrypts Local Passwords with World-Readable Machine ID and Fixed Zero Nonce (XSalsa20-Poly1305)
Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution', Use of Password Hash With Insufficient Computational Effort vulnerability in rustdesk-client RustDesk Client rustdesk, hbbcommon on Windows, MacOS, Linux Password security module, config encryption, machine U...
CVE-2026-30785 RustDesk Encrypts Local Passwords with World-Readable Machine ID and Fixed Zero Nonce (XSalsa20-Poly1305)
Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution', Use of Password Hash With Insufficient Computational Effort vulnerability in rustdesk-client RustDesk Client rustdesk, hbbcommon on Windows, MacOS, Linux Password security module, config encryption, machine U...
EUVD-2023-59828
Malicious code in bioql PyPI...
UBUNTU-CVE-2023-53256
In the Linux kernel, the following vulnerability has been resolved: firmware: armffa: Fix FFA device names for logical partitions Each physical partition can provide multiple services each with UUID. Each such service can be presented as logical partition with a unique combination of VM ID and...
CVE-2023-53256
CVE-2023-53256 resolves a Linux kernel issue in the firmware/arm_ffa path where device names for logical partitions could collide. The root cause was that the device name used by FFA partitions included only the VM ID, while UUIDs were kept in partition info, causing sysfs errors like “cannot cre...
PT-2025-37697
Name of the Vulnerable Software and Affected Versions: Linux Kernel affected versions not specified Description: The Linux kernel contains a flaw in the arm ffa firmware where the device naming scheme for logical partitions fails to uniquely identify multiple services within a physical partition...
PT-2023-18548 · Netdata +4 · Netdata +4
Name of the Vulnerable Software and Affected Versions: Netdata agent versions prior to 1.37 Netdata agent versions prior to 1.36.0-409 nightly Description: The issue affects Netdata Agents that expose their services to non-trusted users, particularly when the streaming feature is enabled, allowin...
CFME: bypass authorization by altering VM ID
It was found that the CloudForms did not properly apply permissions controls to VM IDs passed by users. A remote, authenticated attacker could use this flaw to execute arbitrary VMs on systems managed by CloudForms if they know the ID of the VM...
OpenJDK: Unique VMIDs (Libraries, 8001033)
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different...