8 matches found
EUVD-2020-29742
Malware in sbrugna...
EUVD-2025-11512
Malicious code in bioql PyPI...
PT-2025-16942 Β· Google Β· Google Cloud Platform
Name of the Vulnerable Software and Affected Versions: Google Cloud Platform affected versions not specified Description: The issue allows an attacker with knowledge of creating user accounts during VM deployment on Google Cloud Platform GCP using the OS Login feature to login via SSH, gaining...
CVE-2023-40660
A flaw was found in OpenSC packages that allow a potential PIN bypass. When a token/card is authenticated by one process, it can perform cryptographic operations in other processes when an empty zero-length pin is passed. This issue poses a security risk, particularly for OS logon/screen unlock a...
Authentication Bypass
libopensc.so is vulnerable to Authentication Bypass. The vulnerability exists in the scpkcs15verifypin function of pkcs15-pin.c when a token or card is plugged into the system and authenticated by one process, but can be utilized for cryptographic operations by another process when an empty,...
CVE-2020-8903
A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Using their membership to the "adm" group, users with this role are able to read the DHCP XID from th...
CVE-2020-8903
Removed by vendor...
CVE-2020-8907
CVE-2020-8907 affects Google Cloud Platformβs guest-oslogin (versions between 20190304 and 20200507). A user with only the roles/compute.osLogin role can escalate to root by using their membership in the docker group to run docker, mount the host OS, and modify the host filesystem (including /etc...