MAL-2025-65181 Malicious code in rudi-keraktelor77-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 82b14b695a821777a820ec90f8fd71b9f6c4a0cc7447ca85bcb43d1908030627 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-62956 Malicious code in fauzi-klanting95-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b646f6ae7dd7850c26f8d4951778ea148eab745f46d8742a45c7ebc39c9613f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-63267 Malicious code in hadianto-kembang70-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc691ca9220f567add7a9e3aa34f9f92ce6d95c7c434078755af0f0a5df4af50 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

QNAP Systems Photo Station 安全漏洞

QNAP Systems Photo Station is an online photo album from China-based QNAP Systems, Inc. It is used to organize multimedia content photos and videos on Qnap Nas. A security vulnerability exists in QNAP Systems Photo Station versions 5.4.1 and 5.2.7 that stems from a security issue related to the X...

Intel CIP 安全漏洞

Intel CIP is an optional program from Intel designed to improve products by collecting performance data from users' computers. Intel CIP suffers from an information disclosure vulnerability that stems from a protection mechanism failure, which can be exploited by an attacker to cause information...

Intel CIP 输入验证错误漏洞

Intel CIP is an optional program from Intel designed to improve products by collecting performance data from users' computers. Intel CIP suffers from an input validation error vulnerability that stems from improper input validation, which can be exploited by an attacker to cause elevation of...

Intel CIP 代码问题漏洞

Intel CIP is an optional program from Intel designed to improve products by collecting performance data from users' computers. Intel CIP has a code issue vulnerability that stems from an unrestricted upload of dangerous types of files, which can be exploited by attackers to cause data tampering...

Intel CIP 安全漏洞

Intel CIP is an optional program from Intel designed to improve products by collecting performance data from users' computers. Intel CIP suffers from an information disclosure vulnerability that stems from mismanagement of privileges, which can be exploited by an attacker to cause information...

RHEL 10 : kernel (RHSA-2025:20095)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:20095 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: xen: Xen hypercall page unsa...

Intel CIP 代码问题漏洞

Intel CIP is an optional program from Intel designed to improve products by collecting performance data from users' computers. Intel CIP suffers from an elevation of privilege vulnerability that stems from an uncontrolled search path, which can be exploited by an attacker to cause elevation of...

Intel CIP 安全漏洞

Intel CIP is an optional program from Intel designed to improve products by collecting performance data from users' computers. Intel CIP suffers from an elevation of privilege vulnerability that stems from a protection mechanism failure, which can be exploited by an attacker to cause an elevation...

KLA90057 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, bypass security restrictions, execute arbitrary code, read local files, cause denial of service. Below is a...

Intel CIP 访问控制错误漏洞

Intel CIP is an optional program from Intel designed to improve products by collecting performance data from users' computers. Intel CIP suffers from an Improper Access Control vulnerability that can be exploited by an attacker to cause information disclosure...

Intel CIP 访问控制错误漏洞

Intel CIP is an optional program from Intel designed to improve products by collecting performance data from users' computers. Intel CIP suffers from an Improper Access Control vulnerability that can be exploited by an attacker to cause information disclosure...

PT-2025-46462

Name of the Vulnerable Software and Affected Versions Customer Experience Improvement Program CEIP affected versions not specified Description An improper access control issue exists within the Customer Experience Improvement Program CEIP. This allows a local attacker who is already authorized to...

Malicious code in relevant_snail_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8530f82c79c35f789c4ae4aef136cc40ea96e89e645ec4ad4654ba98ffb44359 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-61242 Malicious code in scientific_termite_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09c2fb2be8421d3a2efe974c826275e0bebc6ba12585bcf6b4b34a7d09c844f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-59716 Malicious code in yuni-liwet34-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c98e93a1f787a03f2dbc98b4cb22175919567c537210238e2afe4753ab819f30 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tuti-sasag60-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f8cfe78e65c3d0bb3b3ee1572dd610053a0a2c151fbc1260227d2e026de5e37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in wati-rawon7-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector beda998d3c80a7463c05c091a2bc2d9697cf5a5f9e229687f6e755098b24b233 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...