MAL-2025-192893 Malicious code in fireeye-main (PyPI)

--- -= Per source details. Do not edit below this line.=-...

PT-2025-52848

Name of the Vulnerable Software and Affected Versions GNU Unrtf version 0.21.10 Description A stack overflow exists in the src/main.c component of the software. This allows attackers to cause a Denial of Service DoS by injecting a crafted input into the filename parameter. Recommendations At the...

CVE-2025-65410

A stack overflow in the src/main.c component of GNU Unrtf v0.21.10 allows attackers to cause a Denial of Service DoS via injecting a crafted input into the filename parameter...

CVE-2025-65410

GNU UnRTF, version 0.21.10, contains a stack overflow in src/main.c that can cause a Denial of Service when a crafted input is provided in the filename parameter. The CVE-2025-65410 issue is documented across multiple sources (NVD/ENISA OSV series) with a local attack vector targeting the filenam...

CVE-2025-15004

A vulnerability was identified in DedeCMS up to 5.7.118. This impacts an unknown function of the file /freelistmain.php. The manipulation of the argument orderby leads to sql injection. It is possible to initiate the attack remotely. The exploit is publicly available and might be used...

CVE-2025-15004

A vulnerability was identified in DedeCMS up to 5.7.118. This impacts an unknown function of the file /freelistmain.php. The manipulation of the argument orderby leads to sql injection. It is possible to initiate the attack remotely. The exploit is publicly available and might be used...

CVE-2025-15004

CVE-2025-15004 affects DedeCMS up to 5.7.118. The vulnerability is a SQL injection in the file /freelist_main.php caused by manipulating the orderby parameter, which can be exploited remotely. Public exploit code exists and is referenced across multiple feeds (e.g., PT-2025-52615, CNNVD, NVD). Re...

PT-2025-52615

Name of the Vulnerable Software and Affected Versions DedeCMS versions prior to 5.7.118 Description A flaw exists in DedeCMS that allows for SQL injection. The issue is due to the manipulation of the orderby argument in the /freelist main.php file. This can be exploited remotely. The exploit is...

CVE-2025-14817

The component com.transsion.tranfacmode.entrance.main.MainActivity in com.transsion.tranfacmode has no permission control and can be accessed by third-party apps which can construct intents to directly open adb debugging functionality without user interaction...

CVE-2025-14817

The component com.transsion.tranfacmode.entrance.main.MainActivity in com.transsion.tranfacmode has no permission control and can be accessed by third-party apps which can construct intents to directly open adb debugging functionality without user interaction...

CVE-2025-14714

An Authentication Bypass vulnerability existed where the application bundled an interpreter Python that inherits the Transparency, Consent, and Control TCC permissions granted by the user to the main application bundle By executing the bundled interpreter directly the attacker's scripts run with...

LibreOffice 安全漏洞

LibreOffice is an open source office software suite from The Document Foundation. A security vulnerability exists in LibreOffice versions 25.2 up to and including 25.2.4, which stems from the application's bundled interpreter inheriting TCC permissions from the main application, potentially leadi...

CVE-2025-36916

In PrepareWorkloadBuffers of gxpmainactor.cc, there is a possible double fetch due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

EUVD-2024-55349

Atcom 100M IP Phones firmware version 2.7.x.x contains an authenticated command injection vulnerability in the web configuration CGI script that allows attackers to execute arbitrary system commands. Attackers can inject shell commands through the 'cmd' parameter in webcgimain.cgi, enabling remot...

PT-2025-50974

Name of the Vulnerable Software and Affected Versions Atcom 100M IP Phones versions 2.7.x.x Description The software contains an authenticated command injection issue in the web configuration CGI script. This allows attackers to execute arbitrary system commands. The cmd parameter within the 'web...

CVE-2025-36916

CVE-2025-36916 affects code path in PrepareWorkloadBuffers of gxp_main_actor.cc, where a race condition can cause a double fetch. This permits local escalation of privilege with no extra execution privileges and no user interaction needed; exploitation is local. Connected documents corroborate th...

appscanstandard-integration:ibm-security-appscanstandard-scanner (>=1.0 <=2.8), au.com.versent.jenkins.plugins:ignore-committer-strategy (>=55.v51410e712e0c <=57.v0756db_b_f6926) +620 more potentially affected by CVE-2025-67635 via org.jenkins-ci.main:cli (>=2.0 <=2.528.2)

org.jenkins-ci.main:cli MAVEN version =2.0, =1.0, =55.v51410e712e0c, =4.1.0.506.v619d63bec9d8, =66.v12c841920f7d, =109.v2c51a117a7b4, =1.155.v3d884c1bdee1, =1.281.v331e3f5a05a9, =4050.v8ba69b587c39, =4050.v8ba69b587c39, =1.0.5, =2.0.0, =2.0, =1.0.2, =1.0.0, =1.0.6 and more Source cves: CVE-...

CVE-2021-47717

IntelliChoice eFORCE Software Suite 2.5.9 contains a username enumeration vulnerability that allows attackers to enumerate valid users by exploiting the 'ctl00$MainContent$UserName' POST parameter. Attackers can send requests with valid usernames to retrieve user information...

PT-2026-26126

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.18.0-rc1+ Description The Linux kernel contains a flaw within the RIVA NV3 arbitration code. A userspace program can trigger this code by calling the FBIOPUT VSCREENINFO ioctl on /dev/fb. The driver recalculate...

Malicious code in qt-main (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 bd1f92a69928dc8fa2a6a50cfd596c34802bc68fc28dd5dd8508fc24344bbec9 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...