EUVD-2015-1470

Malware in sbrugna...

CVE-2023-46942

Lack of authentication in NPM's package @evershop/evershop before version 1.0.0-rc.8, allows remote attackers to obtain sensitive information via improper authorization in GraphQL endpoints...

DEBIAN-CVE-2015-1330

unattended-upgrades before 0.86.1 does not properly authenticate packages when the 1 force-confold or 2 force-confnew dpkg options are enabled in the DPkg::Options:: apt configuration, which allows remote man-in-the-middle attackers to upload and execute arbitrary packages via unspecified vectors...

UBUNTU-CVE-2015-1330

unattended-upgrades before 0.86.1 does not properly authenticate packages when the 1 force-confold or 2 force-confnew dpkg options are enabled in the DPkg::Options:: apt configuration, which allows remote man-in-the-middle attackers to upload and execute arbitrary packages via unspecified vectors...

CVE-2012-0944

Apt daemon (Aptdaemon) versions 0.43 and earlier on Ubuntu 11.04, 11.10, and 12.04 LTS do not authenticate packages when a transaction is not simulated, enabling a remote attacker to install arbitrary packages via a man-in-the-middle attack. The vulnerability is caused by insufficient authenticat...