Malicious code in sd-ccp-module-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 767cf50a9b0a16fd39e9fbbf533657ccbafe4120cb01d2c6da4c9fedc2cb342e The package sd-ccp-module-client was found to contain malicious code. Source: ghsa-malware...

Malicious code in sd-agent-toolbar-module-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ac2576939df07755f988257b0f663de717ddc355bc9604a690d0abf25b74d19 The package sd-agent-toolbar-module-client was found to contain malicious code. Source: ghsa-malware...

Malicious code in sd-conversation-history-module-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30c335176b96214a0cf97acfa97156cd4216c1aa6e764167f49cef0eaa89cc72 The package sd-conversation-history-module-client was found to contain malicious code. Source: ghsa-malware...

Malicious code in sd-cip-module-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dffd6baead2182a6d4f7487b352b9ccf3119af1299a5aaa68edbbc8a59d3de11 The package sd-cip-module-client was found to contain malicious code. Source: ghsa-malware...

EUVD-2026-3054

Malicious code in sd-navbar-module-client npm...

MAL-2026-305 Malicious code in sd-ccp-module-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 767cf50a9b0a16fd39e9fbbf533657ccbafe4120cb01d2c6da4c9fedc2cb342e The package sd-ccp-module-client was found to contain malicious code. Source: ghsa-malware...

MAL-2026-304 Malicious code in sd-agent-toolbar-module-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ac2576939df07755f988257b0f663de717ddc355bc9604a690d0abf25b74d19 The package sd-agent-toolbar-module-client was found to contain malicious code. Source: ghsa-malware...

MAL-2026-303 Malicious code in sd-active-conversation-module-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 278082132569830ff8cb8dd522f0e5284296ea09a1eebfbebffd95656cfe9c63 The package sd-active-conversation-module-client was found to contain malicious code. Source: ghsa-malware...

MAL-2026-308 Malicious code in sd-navbar-module-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff5eb5c5baa5e482655961b2dd4ced29ff771428c5870106e0a30cc916913908 The package sd-navbar-module-client was found to contain malicious code. Source: ghsa-malware...

MAL-2026-307 Malicious code in sd-conversation-history-module-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30c335176b96214a0cf97acfa97156cd4216c1aa6e764167f49cef0eaa89cc72 The package sd-conversation-history-module-client was found to contain malicious code. Source: ghsa-malware...

EUVD-2026-3056

Malicious code in sd-cip-module-client npm...

MAL-2026-309 Malicious code in sd-pdc-module-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bed2d91fb4db4325ed4d7b78f02cb681cc3ce2a9b5de740755a4fb868780d75f The package sd-pdc-module-client was found to contain malicious code. Source: ghsa-malware...

Dolibarr ERP CRM cross-site scripting vulnerabilities

Dolibarr ERP CRM is an open-source enterprise and sales management system developed by Dolibarr. Version 14.0.2 of Dolibarr ERP CRM contains a cross-site scripting vulnerability. This vulnerability stems from a storage-based cross-site scripting vulnerability in the ticket creation module, which...

CVE-2025-24531

In OpenSC pampkcs11 before 0.6.13, pamsmauthenticate wrongly returns PAMIGNORE in many error situations such as an error triggered by a smartcard before login, allowing authentication bypass...

CVE-2025-24531

In OpenSC pampkcs11 before 0.6.13, pamsmauthenticate wrongly returns PAMIGNORE in many error situations such as an error triggered by a smartcard before login, allowing authentication bypass...

CVE-2025-31510

In the portal in LemonLDAP::NG before 2.21.0, cross-site scripting XSS allows remote attackers to inject arbitrary web script or HTML into the login page via the tab parameter, for Choice authentication...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001012)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001012 advisory. The evmupdateevmxattr function in security/integrity/evm/evmcrypto.c in the Linux kernel before 3.7.5, when the Extended Verification Module EVM is enabled, allows...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004422)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004422 advisory. In the Linux kernel before 5.1.6, there is a use-after-free in serialirinitmodule in drivers/media/rc/serialir.c. Tenable has extracted the preceding description blo...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000662)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000662 advisory. The requestmodule function in kernel/kmod.c in the Linux kernel before 3.4 does not set a certain killable attribute, which allows local users to cause a denial of...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004272)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004272 advisory. gssmechfree in net/sunrpc/authgss/gssmechswitch.c in the rpcsecgsskrb5 implementation in the Linux kernel through 5.6.10 lacks certain domainrelease calls, leading t...