Lucene search
+L

638 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-2680

Malware in sbrugna...

8.1CVSS8AI score0.02425EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414586)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414586 advisory. A flaw null pointer dereference in the Nitro Enclaves kernel driver was found in the way that Enclaves VMs forces closures on the enclave file descriptor. A local us...

7.2CVSS7AI score0.00301EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-35262

Malicious code in bioql PyPI...

7.8CVSS6.6AI score0.00258EPSS
Exploits1References3
GithubExploit
GithubExploit
added 2025/09/26 4:38 p.m.652 views

Exploit for CVE-2025-55817

This is a PoC exploit for CVE-2025-55817, a Stored Cross Site Sc...

5.7AI score
Exploits1
OSV
OSV
added 2025/09/05 5:10 p.m.2 views

MAL-2025-42965 Malicious code in @trp-ta-nitro/secrets-nodejs (npm)

The package @trp-ta-nitro/secrets-nodejs was found to contain malicious code...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2021-3543

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw null pointer dereference in the Nitro Enclaves kernel driver was found in the way that Enclaves VMs forces closures on the enclave file descriptor. A loc...

7.2CVSS6.9AI score0.00301EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2021-46927

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: nitroenclaves: Use getuserpagesunlocked call to handle mmap assert After commit 5b78ed24e8e...

5.5CVSS5.3AI score0.00149EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.3 views

Malicious code in nitro-components (npm)

The package nitro-components was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-27565 Malicious code in nitro-components (npm)

The package nitro-components was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.3 views

MAL-2025-9567 Malicious code in @trp-ta-nitro/auth-browser-js (npm)

The package @trp-ta-nitro/auth-browser-js was found to contain malicious code...

7.2AI score
Exploits0
Amazon
Amazon
added 2025/07/10 12:0 a.m.5 views

Medium: runc

Issue Overview: Proxy-Authorization and Proxy-Authenticate headers persisted on cross-origin redirects potentially leaking sensitive information. CVE-2025-4673 Affected Packages: runc Note: This advisory is applicable to Amazon Linux 2 - Nitro-enclaves Extra. Visit this page to learn more about...

6.8CVSS7AI score0.0056EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/07/03 12:0 a.m.2 views

SUSE SLES15: aws-nitro-enclaves-binaryblobs-upstream / aws-nitro-enclaves-cli / etc (SUSE-SU-SUSE-RU-2025:02204-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-SUSE-RU-2025:02204-1 advisory. - Fix idna accepts Punycode labels that do not produce any non-ASCII when decoded bsc1243859 - Update to version 1.4....

8.8CVSS5.8AI score0.00201EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/07/03 12:0 a.m.4 views

SUSE SLES15: aws-nitro-enclaves-binaryblobs-upstream / aws-nitro-enclaves-cli / etc (SUSE-SU-SUSE-RU-2025:02203-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-SUSE-RU-2025:02203-1 advisory. - Fix idna accepts Punycode labels that do not produce any non-ASCII when decoded bsc1243859 - Update to version 1.4.2 - Update...

8.8CVSS5.8AI score0.00201EPSS
Exploits1References4
OSV
OSV
added 2025/07/02 1:42 p.m.3 views

SUSE-RU-2025:02204-1 Recommended update for aws-nitro-enclaves-cli

This update for aws-nitro-enclaves-cli fixes the following issues: - Fix idna accepts Punycode labels that do not produce any non-ASCII when decoded bsc1243859 - Update to version 1.4.2 - Update aws-nitro-enclaves-sdk-bootstrap to version f718dea6 - Update to version 1.3.3git0.afb7264 - Update...

8.8CVSS6.9AI score0.00201EPSS
Exploits1References3
OSV
OSV
added 2025/07/02 1:42 p.m.9 views

SUSE-RU-2025:02203-1 Recommended update for aws-nitro-enclaves-cli

This update for aws-nitro-enclaves-cli fixes the following issues: - Fix idna accepts Punycode labels that do not produce any non-ASCII when decoded bsc1243859 - Update to version 1.4.2 - Update aws-nitro-enclaves-sdk-bootstrap to version f718dea6 - Update to version 1.3.3git0.afb7264 - Update...

8.8CVSS6.9AI score0.00201EPSS
Exploits1References3
Amazon
Amazon
added 2025/06/23 12:0 a.m.5 views

Important: amazon-ecr-credential-helper

Issue Overview: The net/http package accepted data in the chunked transfer encoding containing an invalid chunk-size line terminated by a bare LF. When used in conjunction with a server or proxy which incorrectly interprets a bare LF in a chunk extension as part of the extension, this could permi...

9.1CVSS6.9AI score0.00778EPSS
Exploits0
Amazon
Amazon
added 2025/06/23 12:0 a.m.3 views

Important: runc

Issue Overview: The net/http package accepted data in the chunked transfer encoding containing an invalid chunk-size line terminated by a bare LF. When used in conjunction with a server or proxy which incorrectly interprets a bare LF in a chunk extension as part of the extension, this could permi...

9.1CVSS6.9AI score0.00778EPSS
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/06/22 3:31 p.m.2 views

Malicious code in nitro-contracts (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fcfdc095311c01986f57ec3730d8e3600f3c83ffb5fc23c500a51eed38ea048d Any computer that has this package installed or running should be considered...

6.8AI score
Exploits0References1
OSV
OSV
added 2025/06/22 3:31 p.m.5 views

MAL-2025-5233 Malicious code in nitro-contracts (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fcfdc095311c01986f57ec3730d8e3600f3c83ffb5fc23c500a51eed38ea048d Any computer that has this package installed or running should be considered...

7AI score
Exploits0References1
Amazon
Amazon
added 2025/06/11 12:0 a.m.4 views

Important: containerd

Issue Overview: The net/http package accepted data in the chunked transfer encoding containing an invalid chunk-size line terminated by a bare LF. When used in conjunction with a server or proxy which incorrectly interprets a bare LF in a chunk extension as part of the extension, this could permi...

9.1CVSS6.9AI score0.00778EPSS
Exploits0
Rows per page
Query Builder