193 matches found
CVE-2025-62514
Parsec is a cloud-based application for cryptographically secure file sharing. In versions on the 3.x branch prior to 3.6.0, libparseccrypto, a component of the Parsec application, does not check for weak order point of Curve25519 when compiled with its RustCrypto backend. In practice this means ...
CVE-2025-62514 `libparsec_crypto` does not check for weak order point of curve 25519
Parsec is a cloud-based application for cryptographically secure file sharing. In versions on the 3.x branch prior to 3.6.0, libparseccrypto, a component of the Parsec application, does not check for weak order point of Curve25519 when compiled with its RustCrypto backend. In practice this means ...
CVE-2025-62514 `libparsec_crypto` does not check for weak order point of curve 25519
Parsec is a cloud-based application for cryptographically secure file sharing. In versions on the 3.x branch prior to 3.6.0, libparseccrypto, a component of the Parsec application, does not check for weak order point of Curve25519 when compiled with its RustCrypto backend. In practice this means ...
EUVD-2025-206513
Parsec is a cloud-based application for cryptographically secure file sharing. In versions on the 3.x branch prior to 3.6.0, libparseccrypto, a component of the Parsec application, does not check for weak order point of Curve25519 when compiled with its RustCrypto backend. In practice this means ...
CVE-2025-62514 `libparsec_crypto` does not check for weak order point of curve 25519
Parsec is a cloud-based application for cryptographically secure file sharing. In versions on the 3.x branch prior to 3.6.0, libparseccrypto, a component of the Parsec application, does not check for weak order point of Curve25519 when compiled with its RustCrypto backend. In practice this means ...
CVE-2025-62514
Parsec is a cloud-based application for cryptographically secure file sharing. In versions on the 3.x branch prior to 3.6.0, libparseccrypto, a component of the Parsec application, does not check for weak order point of Curve25519 when compiled with its RustCrypto backend. In practice this means ...
CVE-2025-62514
Parsec’s 3.x web component libparsec_crypto (RustCrypto backend) does not verify weak order points for Curve25519 in versions before 3.6.0. An attacker in a MITM could supply weak order points to both parties during Diffie-Hellman, increasing the chance that both ends derive the same shared key a...
PT-2026-5304
Name of the Vulnerable Software and Affected Versions Parsec versions prior to 3.6.0 Description Parsec is a cloud-based application for cryptographically secure file sharing. In versions on the 3.x branch prior to 3.6.0, the libparsec crypto component does not check for weak order points of...
parsec-cloud security vulnerability
Parsec-Cloud is a file sharing tool developed by Scille. Versions of Parsec-Cloud prior to 3.6.0 contained security vulnerabilities. These vulnerabilities stemmed from the lack of checks on weak points in the Curve25519 algorithm by the libparseccrypto component, which could lead to...
OPENSUSE-SU-2025:20175-1 Security update for mariadb
This update for mariadb fixes the following issues: - Update to 11.8.5: CVE-2025-13699: Fixed Directory Traversal Remote Code Execution Vulnerability bsc1254313 Other fixes: - Add %license tags to license files bsc1252162 - Add INSTALLDOCREADMEDIR cmake flag to install readme and license files -...
SUSE-SU-2026:20018-1 Security update for mariadb
This update for mariadb fixes the following issues: - Update to 11.8.5: CVE-2025-13699: Fixed Directory Traversal Remote Code Execution Vulnerability bsc1254313 Other fixes: - Add %license tags to license files bsc1252162 - Add INSTALLDOCREADMEDIR cmake flag to install readme and license files -...
Malicious Package
Overview ts-parsec-repo is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
MAL-2025-188567 Malicious code in parsec-barnard-indus-vuepress (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector acf67cd6c7d272b18c189b6a696b3683ce668ba0405360dd3850a0a83726854d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in parsec-barnard-indus-vuepress (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector acf67cd6c7d272b18c189b6a696b3683ce668ba0405360dd3850a0a83726854d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in parsec-oauth-jsonp-eslint-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e65d8b51f1ca029d90bb2f910e5f3d92bdc1573cc4f996ae4858417ff3dfd2b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-177391
Malicious code in package-eventhoriz-gammarayburst-parsec npm...
EUVD-2025-177508
Malicious code in nuxtjs-ionosphere-parsec-cosmology npm...
EUVD-2025-179553
Malicious code in cosmiconfig-fermiparadox-parsec-forever npm...
EUVD-2025-178807
Malicious code in futurology-fermiparadox-parsec-publish npm...
MAL-2025-188374 Malicious code in nuxtjs-ionosphere-parsec-cosmology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7fc3f9da4423ef958a565eaf87c9128d968bf1ebf01edc912b405a408b76df87 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...