Lucene search
K

9 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 4:29 a.m.3 views

Malicious code in flare-markdown-nuxtjs-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bad6874c7e2400099e1265a13d17d1878923c6efc8c4f2ab254726f668d03798 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSV
added 2025/11/11 3:48 a.m.3 views

MAL-2025-77496 Malicious code in dewanto-donat12-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3e11133101c41868495c3aa81963be0ec8784d42294333a0b5f52bffb6209e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
CNNVD
CNNVD
added 2023/04/06 12:0 a.m.6 views

MediaTek 芯片安全漏洞

MediaTek chips are a variety of chips from MediaTek, a Chinese company called MediaTek. A security vulnerability exists in the MediaTek chips, which stems from a mismatch in the package format and could potentially lift rights...

7.8CVSS7.3AI score0.00086EPSS
Exploits0References2
CNVD
CNVD
added 2022/10/11 12:0 a.m.36 views

Multiple MediaTek chips telephony elevation of privilege vulnerability

MediaTek chips are a variety of chips from MediaTek, a Chinese company called MediaTek. An elevation of privilege vulnerability exists in several MediaTek chips telephony, which stems from a mismatch in the package format and can be exploited by an attacker to conduct elevation of privilege...

7.8CVSS7.6AI score0.00099EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/10/03 12:0 a.m.5 views

MediaTek 芯片代码问题漏洞

MediaTek chips are a variety of chips from MediaTek, a Chinese company called MediaTek. An elevation of privilege vulnerability exists in several MediaTek chips telephony, which stems from a mismatch in the package format and can be exploited by an attacker to conduct elevation of privilege...

7.8CVSS7AI score0.00099EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/10/03 12:0 a.m.6 views

MediaTek 芯片代码问题漏洞

MediaTek chips are a variety of chips from MediaTek, a Chinese company called MediaTek. An elevation of privilege vulnerability exists in a number of MediaTek chipsims, which stems from a mismatch in the package format, and can be exploited by an attacker to gain elevation of privilege...

7.8CVSS7.2AI score0.00138EPSS
Exploits0References3
Debian
Debian
added 2015/11/26 6:18 p.m.56 views

[SECURITY] [DSA 3407-1] dpkg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3407-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 26, 2015 https://www.debian.org/security/faq -...

7.5CVSS2.3AI score0.05035EPSS
Exploits0
OSV
OSV
added 2007/04/13 6:19 p.m.7 views

CVE-2007-2027

Untrusted search path vulnerability in the addfilenametostring function in intl/gettext/loadmsgcat.c for Elinks 0.11.1 allows local users to cause Elinks to use an untrusted gettext message catalog .po file in a "../po" directory, which can be leveraged to conduct format string attacks...

6AI score
Exploits0References14
securityvulns
securityvulns
added 2004/04/15 12:0 a.m.39 views

[Full-Disclosure] [SECURITY] [DSA 485-1] New ssmtp packages fix format string vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 485-1 [email protected] http://www.debian.org/security/ Matt Zimmerman April 14th, 2004 http://www.debian.org/security/faq -...

5CVSS0.3AI score0.03504EPSS
Exploits0
Rows per page
Query Builder