EUVD-2020-29222

Malware in sbrugna...

EUVD-2024-40869

Malicious code in bioql PyPI...

EUVD-2022-41559

Malicious code in bioql PyPI...

CVE-2022-39013

Under certain conditions an authenticated attacker can get access to OS credentials. Getting access to OS credentials enables the attacker to modify system data and make the system unavailable leading to high impact on confidentiality and low impact on integrity and availability of the applicatio...

CVE-2024-44105

Cleartext transmission of sensitive information in the management console of Ivanti Workspace Control before version 2025.2 10.19.0.0 allows a local authenticated attacker to obtain OS credentials...

CVE-2024-44105

Cleartext transmission of sensitive information in the management console of Ivanti Workspace Control before version 2025.2 10.19.0.0 allows a local authenticated attacker to obtain OS credentials...

CVE-2024-44105

Cleartext transmission of sensitive information in the management console of Ivanti Workspace Control before version 2025.2 10.19.0.0 allows a local authenticated attacker to obtain OS credentials...

CVE-2024-44105

Cleartext transmission of sensitive information in the management console of Ivanti Workspace Control before version 2025.2 10.19.0.0 allows a local authenticated attacker to obtain OS credentials...

CVE-2024-44105

Cleartext transmission of sensitive information in the management console of Ivanti Workspace Control before version 2025.2 10.19.0.0 allows a local authenticated attacker to obtain OS credentials...

CVE-2024-44105

CVE-2024-44105 affects Ivanti Workspace Control: cleartext transmission of sensitive OS credentials in the management console. Affected: Workspace Control 2024.3 (10.18.x.x and below); vulnerability arises in the management console, enabling a local authenticated attacker to obtain OS credentials...

SAP BusinessObjects Business Intelligence Platform 4.2 < 4.2 SP9 P10 / 4.3 < 4.3 SP2 P6 Multiple Vulnerabilities

The version of SAP BusinessObjects Business Intelligence Platform installed on the remote Windows host is prior to 4.2 SP9 P10, 4.3 SP2 P6 or 4.3 SP3. It is, therefore, affected by multiple vulnerabilities: - Under certain conditions an authenticated attacker can get access to OS credentials...

CVE-2022-39013

Under certain conditions an authenticated attacker can get access to OS credentials. Getting access to OS credentials enables the attacker to modify system data and make the system unavailable leading to high impact on confidentiality and low impact on integrity and availability of the applicatio...

Design/Logic Flaw

Under certain conditions an authenticated attacker can get access to OS credentials. Getting access to OS credentials enables the attacker to modify system data and make the system unavailable leading to high impact on confidentiality and low impact on integrity and availability of the applicatio...

CVE-2022-39013

CVE-2022-39013 is associated with SAP BusinessObjects Business Intelligence Platform. Multiple connected sources confirm that, under certain conditions, an authenticated attacker can access operating system credentials, enabling modification of system data and potential unavailability. The affect...

PT-2022-24669 · Sap Se +1 · Sap Businessobjects Business Intelligence Platform

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue allows an authenticated attacker to access OS credentials under certain conditions. This access enables the attacker to modify system data and potentially make the system...

CVE-2022-39013

Under certain conditions an authenticated attacker can get access to OS credentials. Getting access to OS credentials enables the attacker to modify system data and make the system unavailable leading to high impact on confidentiality and low impact on integrity and availability of the applicatio...

Detecting and preventing LSASS credential dumping attacks

Obtaining user operating system OS credentials from a targeted device is among threat actors’ primary goals when launching attacks because these credentials serve as a gateway to various objectives they can achieve in their target organization’s environment, such as lateral movement. One techniqu...

UAParser.js 1.0.0 Embedded Malware

According to its self-reported version number, UAParjser.js is 0.7.29, 0.8.0 or 1.0.0. Therefore, it may be affected by an embedded malicious code vulnerability due to an hijack in the maintainer's NPM account led to including an embedded malicious crypto minor in this package. Specifically, the...

UAParser.js 0.7.29 Embedded Malware

According to its self-reported version number, UAParjser.js is 0.7.29, 0.8.0 or 1.0.0. Therefore, it may be affected by an embedded malicious code vulnerability due to an hijack in the maintainer's NPM account led to including an embedded malicious crypto minor in this package. Specifically, the...

UAParser.js 0.8.0 Embedded Malware

According to its self-reported version number, UAParjser.js is 0.7.29, 0.8.0 or 1.0.0. Therefore, it may be affected by an embedded malicious code vulnerability due to an hijack in the maintainer's NPM account led to including an embedded malicious crypto minor in this package. Specifically, the...