143 matches found
Electron Packager 安全漏洞
Electron is a personal developer of a user to write cross-platform desktop application JavaScript framework. The framework is based on nodejs and Chromium and enables the writing of cross-platform desktop applications using HTML and CSS. A security vulnerability exists in Electron Packager versio...
Malicious code in update-packager (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 594a5a70a75839b33f042d76c062a1d1d643b28f842472e9f5b0f95962aeb78f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-8518 Malicious code in update-packager (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 594a5a70a75839b33f042d76c062a1d1d643b28f842472e9f5b0f95962aeb78f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2023-30759
The driver installation package created by Printer Driver Packager NX v1.0.02 to v1.1.25 fails to detect its modification and may spawn an unexpected process with the administrative privilege. If a non-administrative user modifies the driver installation package and runs it on the target PC, an...
CVE-2023-30759
The driver installation package created by Printer Driver Packager NX v1.0.02 to v1.1.25 fails to detect its modification and may spawn an unexpected process with the administrative privilege. If a non-administrative user modifies the driver installation package and runs it on the target PC, an...
Privilege escalation
The driver installation package created by Printer Driver Packager NX v1.0.02 to v1.1.25 fails to detect its modification and may spawn an unexpected process with the administrative privilege. If a non-administrative user modifies the driver installation package and runs it on the target PC, an...
CVE-2023-30759
The driver installation package created by Printer Driver Packager NX v1.0.02 to v1.1.25 fails to detect its modification and may spawn an unexpected process with the administrative privilege. If a non-administrative user modifies the driver installation package and runs it on the target PC, an...
CVE-2023-30759
CVE-2023-30759 affects Ricoh Printer Driver Packager NX, versions 1.0.02–1.1.25. The issue is failure to detect modifications to the driver installation package (CWE-345), which may allow a non‑administrative user to modify and run the package to execute an arbitrary program with administrative p...
PT-2023-22959 · Unknown · Printer Driver Packager Nx
Name of the Vulnerable Software and Affected Versions: Printer Driver Packager NX versions 1.0.02 through 1.1.25 Description: The issue arises when the driver installation package created by Printer Driver Packager NX fails to detect its modification, potentially spawning an unexpected process wi...
Printer Driver Packager NX creates driver installation packages without modification detection
Overview Printer Driver Packager NX provided by Ricoh Company, Ltd. is a tool to create driver installation packages. A driver installation package is used to install and configure printer drivers on the target PCs. The installation and configuration of printer drivers require an administrative...
Ricoh Printer Driver Packager NX 数据伪造问题漏洞
Ricoh Printer Driver Packager NX is a tool for IT managers at Ricoh Japan to customize and package printer drivers. A security vulnerability exists in Ricoh Printer Driver Packager NX versions v1.0.02 through v1.1.25, which originated when administrator privileges are required for the installatio...
GPAC MP4Box 安全漏洞
GPAC MP4Box is multimedia packager. It is mainly used to work with ISOBMF files e.g. MP4, 3GP, but can also be used to import/export media from container files such as AVI, MPG, MKV, MPEG-2 TS, etc. A security vulnerability exists in GPAC MP4Box version 2.1-DEV-rev593-g007bf61a0, which stems from...
GPAC MP4Box 缓冲区错误漏洞
GPAC MP4Box is multimedia packager. It is mainly used to work with ISOBMF files e.g. MP4, 3GP but can also be used to import/export media from container files such as AVI, MPG, MKV, MPEG-2 TS. A security vulnerability exists in GPAC MP4Box version 2.1-DEV-rev649-ga8f438d20, which stems from a...
GPAC MP4Box 安全漏洞
GPAC MP4Box is multimedia packager. It is mainly used to work with ISOBMF files e.g. MP4, 3GP but can also be used to import/export media from container files such as AVI, MPG, MKV, MPEG-2 TS. A security vulnerability exists in GPAC MP4Box version 2.1-DEV-rev574-g9d5bb184b, which stems from a...
GPAC MP4Box 代码问题漏洞
GPAC MP4Box is multimedia packager. It is mainly used to work with ISOBMF files e.g. MP4, 3GP but can also be used to import/export media from container files such as AVI, MPG, MKV, MPEG-2 TS. A code issue vulnerability exists in GPAC MP4box version 2.1-DEV-rev574-g9d5bb184b, which stems from a...
GPAC MP4Box 安全漏洞
GPAC MP4Box is multimedia packager. It is mainly used to work with ISOBMF files e.g. MP4, 3GP, but can also be used to import/export media from container files such as AVI, MPG, MKV, MPEG-2 TS, etc. A security vulnerability exists in GPAC MP4Box version 2.1-DEV-rev574-g9d5bb184b, which stems from...
GPAC MP4Box 安全漏洞
GPAC MP4Box is multimedia packager. It is mainly used to work with ISOBMF files e.g. MP4, 3GP, but can also be used to import/export media from container files such as AVI, MPG, MKV, MPEG-2 TS, etc. A security vulnerability exists in GPAC MP4Box version 2.1-DEV-rev505-gb9577e6ad-master, which ste...
GPAC MP4Box 安全漏洞
GPAC MP4Box is multimedia packager. It is mainly used to work with ISOBMF files e.g. MP4, 3GP, but can also be used to import/export media from container files such as AVI, MPG, MKV, MPEG-2 TS, etc. A security vulnerability exists in GPAC MP4Box version 2.1-DEV-rev574-g9d5bb184b, which stems from...
Malicious code in socless_integration_packager (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5f8a00449ce9f5cfa113613780b17aa8f8f97ef62e54fc652d2e49eaf0988072 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in brave-core-crx-packager (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9d659bff6641ae2eba134b7096de9c5134287f99bb6aad5396c9f30be533d099 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...