30 matches found
EUVD-2014-2399
Malware in sbrugna...
EUVD-2014-2101
Malware in sbrugna...
EUVD-2020-28124
Malware in sbrugna...
EUVD-2011-4616
Malware in sbrugna...
EUVD-2023-32925
Malicious code in bioql PyPI...
EUVD-2023-25730
Malicious code in bioql PyPI...
EUVD-2023-43072
Malicious code in bioql PyPI...
CVE-2025-33136
CVE-2025-33136 affects IBM Aspera Faspex 5 (versions 5.0.0–5.0.12). The issue is due to improper protection of assumed immutable data (MAID), enabling an authenticated user to obtain sensitive information or perform unauthorized actions on behalf of another user. According to IBM’s advisory, reme...
Insights from the field: Key Findings from the ICIT report on Government Cloud Security
Wiz partnered with the Institute for Critical Infrastructure Technology ICIT publishing a report around findings from a survey given to federal and state agencies, highlighting the growing importance of cloud and AI technologies, and concerns around available resources and data protections...
DeepSeek found to be sharing user data with TikTok parent company ByteDance
A couple of weeks ago we reported on the concerns surrounding data collection and security at DeepSeek, the Chinese AI company which recently made headlines for shaking up the industry after seemingly appearing from nowhere to become top of the app download charts. Now South Korea’s Personal...
CVE-2025-21211 Secure Boot Security Feature Bypass Vulnerability
...
PT-2024-41143 · 7 Zip · 7-Zip
Name of the Vulnerable Software and Affected Versions: 7-Zip affected versions not specified Description: The issue is related to a flaw in the Mark-of-the-Web protection mechanism of 7-Zip, which can lead to data protection violations. Exploitation of this issue may allow an attacker to execute...
UBUNTU-CVE-2024-46675
In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: core: Prevent USB core invalid event buffer address access This commit addresses an issue where the USB core could access an invalid event buffer address during runtime suspend, potentially causing SMMU faults and othe...
CVE-2023-37192
Memory management and protection issues in Bitcoin Core v22 allows attackers to modify the stored sending address within the app's memory, potentially allowing them to redirect Bitcoin transactions to wallets of their own choosing...
Code injection
Memory management and protection issues in Bitcoin Core v22 allows attackers to modify the stored sending address within the app's memory, potentially allowing them to redirect Bitcoin transactions to wallets of their own choosing...
CVE-2023-37192
Memory management and protection issues in Bitcoin Core v22 allows attackers to modify the stored sending address within the app's memory, potentially allowing them to redirect Bitcoin transactions to wallets of their own choosing...
CVE-2023-37192
Bitcoin Core (v22) is affected by a memory management/protection issue that allows an attacker to modify the stored sending address in the application’s memory, potentially redirecting transactions to wallets of the attacker’s choosing. The vulnerability concerns the core wallet handling path and...
PT-2023-12446 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue concerns over 70 plugins and themes that are vulnerable to Cross-Site Request Forgery due to improperly implemented nonce protection that could be bypassed. Recommendation...
CVE-2021-32934 ThroughTek P2P SDK - Cleartext Transmission of Sensitive Information
The affected ThroughTek P2P products SDKs using versions before 3.1.5, any versions with nossl tag, device firmware not using AuthKey for IOTC conneciton, firmware using AVAPI module without enabling DTLS mechanism, and firmware using P2PTunnel or RDT module do not sufficiently protect data...
GHSA-JW8F-Q84G-R3VM phpBB vulnerable to sensitive information disclosure
Unspecified vulnerability in phpBB before 3.0.4 allows attackers to obtain sensitive information via unknown vectors related to the lack of password prompts for a private message that quotes a post in a password-protected forum...