110 matches found
Malicious code in nodepack-daemon (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b976e6ab638a52663d25f360bffec6706dc82991ad27c552788a5a4d785ff89f The package presents itself as the popular pino logger README badges, file layout mirroring pino's lib/proto.js, lib/redaction.js, lib/transport.js,...
MAL-2026-6746 Malicious code in typescript-util-core (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5f5a6bd9cf4dfc55c5c01859852cf26435e42d4b846384d08b80b7d609b27ad1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Dell Wireless 5932e and Qualcomm Snapdragon X62 Driver Package Installed
Binary data dellwireless5932efirmwareinstalled.nbin...
Malicious code in vite-plugin-reactjs-refresh (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4abf589cdec43e8ba609988d38155d5965b59ac6a83b1d251405fdf13629cdce Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4545 Malicious code in @monterosa-sdk/enmasse (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 795b70f3573a5b3e3d743147318ca12a1a0f5c77af1f7d584d82429855656fe3 Any computer that has this package installed or running should be considered...
SUSE SLES15 Security Update : kernel RT (Live Patch 2 for SLE 15 SP6) (SUSE-SU-2025:1059-1)
The remote SUSE Linux SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2025:1059-1 advisory. This update for the Linux Kernel 6.4.0-150600108 fixes one issue. The following security issue was fixed: - CVE-2024-57882: mptcp: fix TCP options...
Linux Distros Unpatched Vulnerability : CVE-2025-21830
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: landlock: Handle weird files A corrupted filesystem e.g. bcachefs might return weird files...
Linux Distros Unpatched Vulnerability : CVE-2022-49191
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mxser: fix xmitbuf leak in activate when LSR == 0xff When LSR is 0xff in -activate rather unlike, we return an error. Provided -shutdown is not called when...
Linux Distros Unpatched Vulnerability : CVE-2021-47659
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/plane: Move range check for formatcount earlier While the check for formatcount 64 in drmuniversalplaneinit shouldn't be hit it's a WARNON, in its current...
Linux Distros Unpatched Vulnerability : CVE-2024-28318
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gpac 2.3-DEV-rev921-g422b78ecf-master was discovered to contain a out of boundary write vulnerability via swfgetstring at scenemanager/swfparse.c:325...
MAL-2025-1144 Malicious code in lge-example (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 50473c9040c0e421b0ed196c99328de623d76a92ca2a5585abbb9e95c71e33c0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Fedora 40 : chromium (2025-82ba6b8dc5)
The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-82ba6b8dc5 advisory. Updated to 132.0.6834.159 Medium CVE-2025-0762: Use after free in DevTools Tenable has extracted the preceding description block directly from the...
MAL-2024-12145 Malicious code in do-not-install-this-plz (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware adc3e11ee2ba7ba338bcea114510c201b2b2f788a4d1bb7d938a3c823353772c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in firebase-simple-login (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 541b3c62a7c126ad171a84641ec64d4092d4673fad72c457090bbde0110a2fbc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-11946 Malicious code in byted-example (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 601d1b950741fa25c188fd49b91f64f95cd11170ccea1ac1e731ba8dee490ef6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Oracle Linux 8 / 9 : java-21-openjdk (ELSA-2024-8127)
The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-8127 advisory. 1:21.0.5.0.10-3.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:21.0.5.0.10-3 - Sync the copy of the portable specfile with the latest update -...
RHEL 8 : python-gevent (RHSA-2024:7785)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:7785 advisory. gevent is a coroutine-based Python networking library that uses greenlet to provide a high-level synchronous API on top of libevent event loop...
Fedora 40 : python3.11 (2024-985017d277)
The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-985017d277 advisory. Security fix for CVE-2024-8088 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus ha...
Fedora 39 : python3.6 (2024-a7af4e0ea2)
The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-a7af4e0ea2 advisory. Security fix for CVE-2024-6923 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
Fedora 39 : roundcubemail (2024-b60eb661a4)
The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-b60eb661a4 advisory. Version 1.6.8 - Managesieve: Protect special scripts in managesievekolabmaster mode - Fix newmailnotifier notification focus in Chrome 9467 - Fix...