Lucene search
+L

1099 matches found

ossf
ossf
added 2026/07/02 9:22 p.m.7 views

Malicious code in ue-python-tools (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66a6d9d874ce102a9ac674f8f713472a473007dc3d51adb869c5198afc708751 On import uepythontools, the package spawns a background thread that issues an HTTP POST to http://109.123.247.172/pypi carrying a JSON payload...

6.1AI score
Exploits0References2
osv
osv
added 2026/06/25 9:16 a.m.3 views

UBUNTU-CVE-2026-53226

In the Linux kernel, the following vulnerability has been resolved: gpio: rockchip: fix generic IRQ chip leak on remove The driver allocates domain generic chips using irqallocdomaingenericchips during probe. However, on driver remove/teardown, the generic chips are not automatically freed when t...

5.5CVSS5.7AI score0.00122EPSS
Exploits0References6
ossf
ossf
added 2026/06/15 5:40 p.m.11 views

Malicious code in intel-ai-safety-explainer (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 7561bb0b816a4521b6de43bce01afa55516a7201b6daa7696de4924623557f90 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

5.6AI score
Exploits0References1
ossf
ossf
added 2026/06/15 5:38 p.m.12 views

Malicious code in gigl-core (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 28903f76bed2e89a18c9c276d62c95bb089a091020f89f35f7d2800ef6a3bce3 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

5.6AI score
Exploits0References1
githubexploit
githubexploit
added 2026/06/08 4:59 p.m.78 views

Exploit for Improper Access Control in Apple Ipad_Os

CVE-2024-0258 Research Technical research notes, reverse engi...

8.6CVSS7.6AI score0.00263EPSS
Exploits1
githubexploit
githubexploit
added 2026/06/07 5:19 p.m.112 views

HackTheBox

HackTheBox — Writeups, Tooling & Exploitation Pipelines A wor...

10CVSS7.6AI score0.99562EPSS
Exploits395
osv
osv
added 2026/06/05 4:10 a.m.7 views

MINI-GPC8-F373-2JPF

Bulletin has no description...

2.5CVSS5.7AI score0.00231EPSS
Exploits1
osv
osv
added 2026/06/03 3:49 p.m.2 views

CVE-2026-46250 MIPS: Work around LLVM bug when gp is used as global register variable

In the Linux kernel, the following vulnerability has been resolved: MIPS: Work around LLVM bug when gp is used as global register variable On MIPS, currentthreadinfo is defined as global register variable locating in $gp, and is simply assigned with new address during kernel relocation. This...

7.3CVSS6.5AI score0.00128EPSS
Exploits0References11
osv
osv
added 2026/06/02 1:36 p.m.16 views

MAL-2026-5167 Malicious code in jules-test-utils (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 30c3ca1fa1b7237661d28aada477f7316b7e696a55e2c92c4dee200f291140f4 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

5.9AI score
Exploits0References1
debiancve
debiancve
added 2026/05/27 12:17 p.m.10 views

CVE-2026-45939

In the Linux kernel, the following vulnerability has been resolved: gpib: Fix memory leak in niusbinit In niusbinit, if niusbsetupinit fails, the function returns -EFAULT without freeing the allocated writes buffer, leading to a memory leak. Additionally, niusbsetupinit returns 0 on failure, whic...

5.5CVSS5.8AI score0.00121EPSS
Exploits0
ubuntucve
ubuntucve
added 2026/05/27 12:0 a.m.12 views

CVE-2026-45939

In the Linux kernel, the following vulnerability has been resolved: gpib: Fix memory leak in niusbinit In niusbinit, if niusbsetupinit fails, the function returns -EFAULT without freeing the allocated writes buffer, leading to a memory leak. Additionally, niusbsetupinit returns 0 on failure, whic...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References2
osv
osv
added 2026/05/26 1:1 a.m.12 views

MAL-2026-4482 Malicious code in arnext (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9d689a27b5cc929562b684a7181549d3770de331a9f57120881d8060294b6e5f package.json declares "preinstall": "./vendor/setup", which runs a 976,568-byte Linux ELF binary on every npm install. The package's stated purpose i...

6.1AI score
Exploits0References3
astralinux
astralinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: GPIB: LPVOUSB – fixed a memory leak that occurred when USB devices were disconnected. The driver iterates over the registered USB interfaces during GPIB attachment and takes a reference to their USB devices until a match is found...

5.5CVSS6AI score0.00121EPSS
Exploits0References1
ossf
ossf
added 2026/05/20 12:39 a.m.14 views

Malicious code in @mcpassure/mcp-anvisa-bulario (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e846cabb7b5077244737d7a465e944ebe7635db46cc55e7e5736eeda47d30938 dist/bootstrap.js references a hardcoded URL on pub-046c52795b9445cd9f5cc5cb21b9d59f.r2.dev — an anonymous Cloudflare R2 bucket — and calls fetch...

5.9AI score
Exploits0References10
osv
osv
added 2026/05/16 11:58 a.m.62 views

CLSA-2026-1778932682 python3: Fix of CVE-2024-4032

CVE-2024-4032: update ipaddress module to reflect latest IANA Special-Purpose Address Registries...

7.5CVSS5.8AI score0.01034EPSS
Exploits0References1
githubexploit
githubexploit
added 2026/05/13 8:29 p.m.149 views

Rcon-Bruteforce

RCON Scanner & Exploitation Toolkit ⚠️ EDUCATIONAL PURPOSE...

10CVSS7.9AI score0.99999EPSS
Exploits354
osv
osv
added 2026/05/13 4:17 p.m.8 views

UBUNTU-CVE-2026-8367

aria2c accepts a server certificate with incorrect Extended Key Usage EKU. If the attackers compromise a certificate with the associated private key issued for a different purpose, they may be able to reuse it for TLS server authentication...

4.8CVSS5.8AI score0.0011EPSS
Exploits0References4
debiancve
debiancve
added 2026/05/06 11:27 a.m.7 views

CVE-2026-43181

In the Linux kernel, the following vulnerability has been resolved: gpio: sysfs: fix chip removal with GPIOs exported over sysfs Currently if we export a GPIO over sysfs and unbind the parent GPIO controller, the exported attribute will remain under /sys/class/gpio because once we remove the pare...

5.5CVSS5.7AI score0.00126EPSS
Exploits0
susecve
susecve
added 2026/05/06 1:43 a.m.12 views

SUSE CVE-2026-31760

In the Linux kernel, the following vulnerability has been resolved: gpib: lpvousb: fix memory leak on disconnect The driver iterates over the registered USB interfaces during GPIB attach and takes a reference to their USB devices until a match is found. These references are never released which...

5.7AI score0.00121EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2026/05/06 12:0 a.m.17 views

PT-2026-37521

In the Linux kernel, the following vulnerability has been resolved: gpio: sysfs: fix chip removal with GPIOs exported over sysfs Currently if we export a GPIO over sysfs and unbind the parent GPIO controller, the exported attribute will remain under /sys/class/gpio because once we remove the pare...

5.8AI score0.00126EPSS
Exploits0References4
Rows per page
Query Builder