320 matches found
EUVD-2024-0376
Malicious code in bioql PyPI...
EUVD-2021-8646
Malicious code in bioql PyPI...
EUVD-2024-17679
Malicious code in bioql PyPI...
EUVD-2021-30792
Malicious code in bioql PyPI...
EUVD-2022-26203
Malicious code in bioql PyPI...
EUVD-2023-2115
Malicious code in bioql PyPI...
EUVD-2024-25301
Malicious code in bioql PyPI...
EUVD-2024-3596
Malicious code in bioql PyPI...
EUVD-2022-51478
Malicious code in bioql PyPI...
EUVD-2024-0028
Malicious code in bioql PyPI...
EUVD-2024-42187
Malicious code in bioql PyPI...
EUVD-2025-0174
Malicious code in bioql PyPI...
EUVD-2024-45051
Malicious code in bioql PyPI...
EUVD-2021-28476
Malicious code in bioql PyPI...
EUVD-2025-0031
Malicious code in bioql PyPI...
PT-2025-30442 · Dagster · Dagster
Name of the Vulnerable Software and Affected Versions: Dagster version 1.10.14 Description: A local file inclusion issue exists in the dagster. grpc.impl.get notebook data function. Attackers with access to the gRPC server can read arbitrary files by providing path traversal sequences in the...
CBL Mariner 2.0 Security Update: ansible (CVE-2023-5115)
The version of ansible installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-5115 advisory. - An absolute path traversal attack exists in the Ansible automation platform. This flaw allows an attacker to...
Azure Linux 3.0 Security Update: ansible (CVE-2023-5115)
The version of ansible installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-5115 advisory. - An absolute path traversal attack exists in the Ansible automation platform. This flaw allows an attacker to...
Security Bulletin: IBM watsonx Orchestrate Cartridge affected by vulnerability in spring-webflux-5.3.27.jar
Summary IBM watsonx Orchestrate Cartridge contains a vulnerable version of spring-webflux-5.3.27.jar Vulnerability Details CVEID:CVE-2024-38819 DESCRIPTION: Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks...
Dagster vulnerable to Path Traversal attack through its /logs endpoint
Directory Traversal vulnerability in dagster-webserver Dagster thru 1.5.10 allows remote attackers to obtain sensitive information via crafted request to the /logs endpoint. This may be restricted to certain file names that start with a dot '.'...