2318 matches found
Malicious code in cloud-pc-templates (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 044178c5b07f16ba0681f534724c7bcac3c8f39832484c7a3ac51d43a69cd803 The ai login CLI subcommands loginMode huggingface, ollamacloud, ollamalocal each download a proxy script from a mutable refs/heads/main branch of a...
MAL-2026-4528 Malicious code in cloud-pc-templates (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 044178c5b07f16ba0681f534724c7bcac3c8f39832484c7a3ac51d43a69cd803 The ai login CLI subcommands loginMode huggingface, ollamacloud, ollamalocal each download a proxy script from a mutable refs/heads/main branch of a...
MAL-2026-4071 Malicious code in @antv/my-f2-pc (npm)
Part of the Mini Shai-Hulud supply chain attack campaign in which a threat actor compromised the npm account atool and published 631 malicious versions across 314 npm packages in an automated 22-minute burst. Each malicious version injects a preinstall hook that executes a 498KB obfuscated Bun...
Malicious code in @antv/g6-pc (npm)
Part of the Mini Shai-Hulud supply chain attack campaign in which a threat actor compromised the npm account atool and published 631 malicious versions across 314 npm packages in an automated 22-minute burst. Each malicious version injects a preinstall hook that executes a 498KB obfuscated Bun...
MAL-2026-3991 Malicious code in @antv/g6-pc (npm)
Part of the Mini Shai-Hulud supply chain attack campaign in which a threat actor compromised the npm account atool and published 631 malicious versions across 314 npm packages in an automated 22-minute burst. Each malicious version injects a preinstall hook that executes a 498KB obfuscated Bun...
@antv/g6 (>=4.1.0 <=4.1.12-beta.3), @antv/graphin (>=2.0.0 <=2.0.1) +1 more potentially affected by unknown CVE via @antv/g6-pc (>=0.0.1 <=0.0.9)
@antv/g6-pc NPM version =0.0.1, =4.1.0, =2.0.0, =2.0.9, =2.0.10 Source cves: unknown CVE Source advisory: SNYK:JS-ANTVG6PC-16754458...
@antv/g6 (>=4.1.0 <=4.1.16), @antv/g6-pc (>=0.0.1 <=0.1.3) +5 more potentially affected by unknown CVE via @antv/g6-element (>=0.0.1 <=0.0.9)
@antv/g6-element NPM version =0.0.1, =4.1.0, =0.0.1, =2.0.0, =2.0.6, =0.0.1, =0.0.1, =0.0.3 - motif-jupyter =0.0.1-beta.5 Source cves: unknown CVE Source advisory: SNYK:JS-ANTVG6ELEMENT-16755033...
@antv/g6 (>=4.1.0 <=4.1.16), @antv/g6-pc (>=0.0.1 <=0.1.3) +5 more potentially affected by unknown CVE via @antv/g6-plugin (>=0.0.1 <=0.0.9)
@antv/g6-plugin NPM version =0.0.1, =4.1.0, =0.0.1, =2.0.0, =2.0.6, =0.0.1, =0.0.1, =0.0.3 - motif-jupyter =0.0.1-beta.5 Source cves: unknown CVE Source advisory: SNYK:JS-ANTVG6PLUGIN-16754983...
MINI-PC8W-72PF-CHXH
Bulletin has no description...
MINI-QPHV-48PC-W94P
Bulletin has no description...
MINI-PCWX-MC94-FPCW
Bulletin has no description...
MINI-PC7V-2GRJ-4X3M
Bulletin has no description...
MINI-PCWC-J7PC-64HJ
Bulletin has no description...
MINI-PC74-MJ93-Q6J2
Bulletin has no description...
MINI-M93Q-4PC2-4545
Bulletin has no description...
CVE-2026-8248
A vulnerability was detected in Open5GS up to 2.7.7. The affected element is the function updateauthorizedpccruleandqos of the file /src/smf/npcf-handler.c of the component SMF. The manipulation results in denial of service. The attack may be launched remotely. The exploit is now public and may b...
EUVD-2026-28340
A remote denial-of-service vulnerability exists in the ZTE Cloud PC client uSmartview, which may lead to memory corruption and remote denial of service...
EUVD-2026-28329
ZTE Cloud PC client uSmartView contains a DLL hijacking vulnerability; since uSmartViewServiceAgent.exe runs with SYSTEM privileges, successful hijacking enables local arbitrary code execution, privilege escalation, and memory corruption.contains a DLL hijacking vulnerability; since...
CVE-2026-44406
ZTE Cloud PC client uSmartView contains a DLL hijacking vulnerability; since uSmartViewServiceAgent.exe runs with SYSTEM privileges, successful hijacking enables local arbitrary code execution, privilege escalation, and memory corruption.contains a DLL hijacking vulnerability; since...
CVE-2026-44407 Remote Denial of Service Vulnerability Exists in ZTE Cloud PC Client uSmartview
A remote denial-of-service vulnerability exists in the ZTE Cloud PC client uSmartview, which may lead to memory corruption and remote denial of service...