239 matches found
CVE-2025-22475
Dell PowerProtect DD, versions prior to DDOS 8.3.0.0, 7.10.1.50, and 7.13.1.10 contains a use of a Cryptographic Primitive with a Risky Implementation vulnerability. A remote attacker could potentially exploit this vulnerability, leading to Information tampering...
CVE-2025-22475
The CVE-2025-22475 entry describes a vulnerability in Dell PowerProtect DD where, in versions prior to DDOS 8.3.0.0, 7.10.1.50, and 7.13.1.10, a use of a cryptographic primitive with a risky implementation could allow a remote attacker to tamper information. A Dell security update (DSA-2025-022) ...
CVE-2025-22475
Dell PowerProtect DD, versions prior to DDOS 8.3.0.0, 7.10.1.50, and 7.13.1.10 contains a use of a Cryptographic Primitive with a Risky Implementation vulnerability. A remote attacker could potentially exploit this vulnerability, leading to Information tampering...
PT-2025-3838 · Apple · Swift Asn.1
Name of the Vulnerable Software and Affected Versions: Swift ASN.1 affected versions not specified Description: The issue is caused by a confusion in the ASN.1 library, which assumes that certain objects can only be provided in either constructed or primitive forms. This can trigger a...
PT-2024-41059 · Google · Gson
Name of the Vulnerable Software and Affected Versions: Gson affected versions not specified Description: A security exception occurs due to a crash in the com.google.gson.internal.bind.TypeAdapters$28.write function, which is related to the com.google.gson.JsonElement.isJsonPrimitive and...
CVE-2024-39719
CVE-2024-39719 affects Ollama up to version 0.3.14. The vulnerability arises in the /api/create CreateModel path handling, where querying a non-existent path triggers server error messages that disclose file existence, enabling an attacker to probe for files on the server. Public documentation ac...
Exploit for Incorrect Conversion between Numeric Types in Linux Linux_Kernel
CVE-2022-2639 using pipe primitive CVE-2022-2639https://...
Malicious code in primitive-ivory-sole (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-9779 Malicious code in primitive-ivory-sole (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-7904 Malicious code in @bingads-webui-react/primitive-utilities (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ff052dbe83f6d9ca607174f02e7041d3d73e86c4e7bc0fe7c885c34f3011ab72 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @bingads-webui-react/primitive-utilities (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ff052dbe83f6d9ca607174f02e7041d3d73e86c4e7bc0fe7c885c34f3011ab72 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2024-37137
Dell Key Trust Platform, v3.0.6 and prior, contains Use of a Cryptographic Primitive with a Risky Implementation vulnerability. A local privileged attacker could potentially exploit this vulnerability, leading to privileged information disclosure...
CVE-2024-37137
Dell Key Trust Platform, v3.0.6 and prior, contains Use of a Cryptographic Primitive with a Risky Implementation vulnerability. A local privileged attacker could potentially exploit this vulnerability, leading to privileged information disclosure...
CVE-2024-37137
Dell Key Trust Platform, v3.0.6 and prior, contains Use of a Cryptographic Primitive with a Risky Implementation vulnerability. A local privileged attacker could potentially exploit this vulnerability, leading to privileged information disclosure...
CVE-2024-37137
Dell Key Trust Platform, v3.0.6 and prior, contains Use of a Cryptographic Primitive with a Risky Implementation vulnerability. A local privileged attacker could potentially exploit this vulnerability, leading to privileged information disclosure...
CVE-2024-37137
Dell Key Trust Platform, v3.0.6 and earlier, contains a vulnerability described as Use of a Cryptographic Primitive with a Risky Implementation. The CVE-2024-37137 entry indicates a local privileged attacker could potentially obtain privileged information due to this insecure cryptographic usage....
BIT-TENSORFLOW-2022-23566 Out of bounds write in Tensorflow
Tensorflow is an Open Source Machine Learning Framework. TensorFlow is vulnerable to a heap OOB write in Grappler. The setoutput function writes to an array at the specified index. Hence, this gives a malicious user a write primitive. The fix will be included in TensorFlow 2.8.0. We will also...
Atlassian Jira Service Management Data Center and Server 4.20.x < 4.20.27 / 5.4.x < 5.4.11 (JSDSERVER-14751)
The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-14751 advisory. - In FasterXML jackson-databind before 2.14.0-rc1, resource exhaustion can occur because of a lack of ...
Limited functionality due to Primitive's balance being decreased before it is called
Lines of code Vulnerability details Impact In the current implementation, the balance of a primitive is decreased burned before it is called. This requires the primitive to hold outputAmount of outputToken before a transaction, which severely restricts the functionality it can provide and has no...
SUSE-SU-2023:4386-1 Security update for salt
This update for salt fixes the following issues: Security issues fixed: - CVE-2023-34049: arbitrary code execution via symlink attack bsc1215157 Bugs fixed: - Fix optimizationorder opt to prevent testsuite fails - Improve salt.utils.json.findjson to avoid fails bsc1213293 - Use salt-call from sal...