12 matches found
EUVD-2023-24834
Malicious code in bioql PyPI...
Malicious code in mmsdk-apml-schema (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware babf5466e67db91bc3f90a5ad7449859bd39b7ce9dfb72a73e1ad01d022f3a0f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3837 Malicious code in mmsdk-apml-schema (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware babf5466e67db91bc3f90a5ad7449859bd39b7ce9dfb72a73e1ad01d022f3a0f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in mmsdk-apml-htmlrendererr (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 35d7d1e7291969903946488e1ba191e23233d78f75808e9517ff90308f1b3d4f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-1580 Malicious code in mmsdk-apml-htmlrendererr (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 35d7d1e7291969903946488e1ba191e23233d78f75808e9517ff90308f1b3d4f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in mmsdk-apml-htmlrenderer (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ae0814f13d1d5f49711b30a6fe260c2bfb566047df1b02774e899421faf58c92 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-1579 Malicious code in mmsdk-apml-htmlrenderer (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ae0814f13d1d5f49711b30a6fe260c2bfb566047df1b02774e899421faf58c92 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2023-20655
In mmsdk, there is a possible escalation of privilege due to a parcel format mismatch. This could lead to local code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07203022; Issue ID: ALPS07203022...
Privilege escalation
In mmsdk, there is a possible escalation of privilege due to a parcel format mismatch. This could lead to local code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07203022; Issue ID: ALPS07203022...
CVE-2023-20655
In mmsdk, there is a possible escalation of privilege due to a parcel format mismatch. This could lead to local code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07203022; Issue ID: ALPS07203022...
CVE-2023-20655
CVE-2023-20655 stems from a parcel format mismatch in MediaTek’s mmsdk, enabling local privilege escalation and potential local code execution without extra privileges or user interaction. Severity is rated high (CVSSv3.1: 7.8; LOCAL attack, LOW complexity, HIGH impact on confidentiality, integri...
CVE-2023-20655
In mmsdk, there is a possible escalation of privilege due to a parcel format mismatch. This could lead to local code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07203022; Issue ID: ALPS07203022...