Malicious code in amateur_carp_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90b9b6413c748b3558dd07a6830fbd00cf4c3d5b8a03410320caaae9eab4e9f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

CVE-2020-13537

An exploitable local privilege elevation vulnerability exists in the file system permissions of Moxa MXView series 3.1.8 installation. Depending on the vector chosen, an attacker can either add code to a script or replace a binary.By default MXViewService, which starts as a NT SYSTEM authority us...