231 matches found
EUVD-2014-2309
Malware in sbrugna...
EUVD-2021-28190
Malicious code in bioql PyPI...
EUVD-2021-28186
Malicious code in bioql PyPI...
CVE-2025-40757
A vulnerability has been identified in APOGEE PXC Series BACnet All versions, APOGEE PXC Series P2 Ethernet All versions, TALON TC Series BACnet All versions. Affected devices connected to the network allow unrestricted access to sensitive files, such as databases. This could allow an attacker to...
PT-2025-36680
Name of the Vulnerable Software and Affected Versions: APOGEE PXC Series BACnet affected versions not specified APOGEE PXC Series P2 Ethernet affected versions not specified TALON TC Series BACnet affected versions not specified Description: A vulnerability exists that allows unrestricted access ...
Malicious code in @zalastax/nolb-react-p2 (npm)
The package @zalastax/nolb-react-p2 was found to contain malicious code...
Malicious code in @zalastax/nolb-p2 (npm)
The package @zalastax/nolb-p2 was found to contain malicious code...
MAL-2025-12878 Malicious code in @zalastax/nolb-p2 (npm)
The package @zalastax/nolb-p2 was found to contain malicious code...
MAL-2025-13707 Malicious code in @zalastax/nolb-react-p2 (npm)
The package @zalastax/nolb-react-p2 was found to contain malicious code...
The vulnerability of the Thunderbird email client, related to incorrect processing of the p2-from header, allows attackers to perform spoofing attacks.
The vulnerability of the Thunderbird email client is related to the incorrect processing of the p2-from header. Exploiting this vulnerability allows a remote attacker to perform spoofing attacks...
CVE-2021-41037
In Eclipse p2, installable units are able to alter the Eclipse Platform installation and the local machine via touchpoints during installation. Those touchpoints can, for example, alter the command-line used to start the application, injecting things like agent or other settings that usually...
PT-2025-6198 · Unknown · Apogee Pxc Series +1
Name of the Vulnerable Software and Affected Versions: APOGEE PXC Series BACnet All versions APOGEE PXC Series P2 Ethernet All versions TALON TC Series BACnet All versions Description: A vulnerability has been identified in the affected devices, which contain a weak encryption mechanism based on ...
PT-2025-6199 · Unknown · Apogee Pxc Series +1
Name of the Vulnerable Software and Affected Versions: APOGEE PXC Series BACnet All versions APOGEE PXC Series P2 Ethernet All versions TALON TC Series BACnet All versions Description: A vulnerability has been identified that contains an out-of-bounds read in the memory dump function. This could...
com.google.appengine:jetty12-assembly (>=2.0.20 <=3.0.1), org.eclipse.jetty.ee9.demos:jetty-ee9-demo-embedded (>=12.0.0 <=12.0.29) +5 more potentially affected by CVE-2024-9823 via org.eclipse.jetty.ee9:jetty-ee9-servlets (>=12.0.0 <=12.0.29)
org.eclipse.jetty.ee9:jetty-ee9-servlets MAVEN version =12.0.0, =2.0.20, =12.0.0, =12.0.0, =12.0.0, =12.0.0, =12.0.12, =12.0.29 Source cves: CVE-2024-9823 Source advisory: OSV:GHSA-J26W-F9RQ-MR2Q...
BIT-MAGENTO-2024-45124
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and have a low impact on integrity...
BIT-MAGENTO-2024-45125
Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Incorrect Authorization vulnerability that could result in a security feature bypass. A low-privileged attacker could exploit this vulnerability to have a low impact on integrity. Exploitation of this...
GHSA-4F89-5CWM-RM5G Magento Open Source Information Exposure vulnerability
Magento Open Source versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Information Exposure vulnerability that could result in a security feature bypass. An admin attacker could leverage this vulnerability to have a low impact on confidentiality which may aid in furth...
GHSA-XC5P-773W-M3PM Magento Open Source Improper Authorization vulnerability
Magento Open Source versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and have a low impact on...
GHSA-J3MH-WX5F-2VHG Magento Open Source Information Exposure vulnerability
Magento Open Source versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Information Exposure vulnerability that could result in a security feature bypass. An admin attacker could leverage this vulnerability to have a low impact on confidentiality which may aid in furth...
Magento Open Source Improper Access Control vulnerability
Magento Open Source versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. A high-privileged attacker could leverage this vulnerability to bypass security measures and have a low impact ...