Exploit for Protection Mechanism Failure in N8N

N8Scape: CVE-2025-68668 Breakdown This is my personal writeup...

MAL-2026-979 Malicious code in home-robot (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f5296b22d674fc768fb08662c83b8de3fd07455f6fc2d4f7b433319551cb808e Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

SME-App-exe-

!PyQ...

[SECURITY] Fedora 42 Update: python-uv-build-0.10.2-1.fc42

This package is a slimmed down version of uv containing only the build backend...

[SECURITY] Fedora 42 Update: uv-0.10.2-1.fc42

An extremely fast Python package and project manager, written in Rust. Highlights: =E2=80=A2 A single tool to replace pip, pip-tools, pipx, poetry, pyenv, twi ne, virtualenv, and more. =E2=80=A2 10-100x faster than pip. =E2=80=A2 Provides comprehensive project management, with a universal lockf...

[SECURITY] Fedora 42 Update: python-pyasn1-0.6.2-1.fc42

This is an implementation of ASN.1 types and codecs in the Python programming language...

[SECURITY] Fedora 43 Update: python3.13-3.13.12-1.fc43

Python 3.13 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.13 package provides the "python3.13" executable:...

[SECURITY] Fedora 43 Update: python-pyasn1-0.6.2-1.fc43

This is an implementation of ASN.1 types and codecs in the Python programming language...

openSUSE 16 Security Update : python313 (openSUSE-SU-2026:20254-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20254-1 advisory. Update to version 3.13.12. Security issues fixed: - CVE-2025-11468: header injection when folding a long comment in an email header containing...

openSUSE 16 Security Update : python-Authlib (openSUSE-SU-2026:20257-1)

The remote openSUSE 16 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2026:20257-1 advisory. Changes in python-Authlib: - CVE-2025-68158: Fixed 1-click account takeover in applications that use the Authlib library bsc1256414 Tenable has extracte...

Fedora 42 : python-pyasn1 (2026-ddafe1357a)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-ddafe1357a advisory. Update for python-pyasn1-0.6.2-1.fc42. Changelog Thu Feb 05 2026 Simon Pichugin - 0.6.2-1 - Update to 0.6.2 - Fixed continuation octet limits in...

Fedora 42 : python-uv-build / rust-ambient-id / uv (2026-086a367966)

The remote Fedora 42 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2026-086a367966 advisory. Update uv and python-uv-build to 0.10.2. There are some minor breaking changes in uv; most users should not have to change anything. See...

Fedora 43 : python3.13 (2026-6ee987bce2)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-6ee987bce2 advisory. Update to 3.13.12 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested...

Fedora 43 : python-pyasn1 (2026-0179c9b8ac)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-0179c9b8ac advisory. Update for python-pyasn1-0.6.2-1.fc43. Changelog Thu Feb 05 2026 Simon Pichugin - 0.6.2-1 - Update to 0.6.2 - Fixed continuation octet limits in...

Remote Code Execution (RCE)

agpt Platform is vulnerable to Remote Code Execution RCE. The vulnerability is due to improper validation in block execution endpoints that allow execution of disabled blocks by UUID without checking the disabled flag, which allows an authenticated attacker to execute the BlockInstallationBlock,...

abadpour (>=6.13.1 <=7.24.1), abcli (>=9.273.1 <=9.572.1) +751 more potentially affected by CVE-2026-2033 via mlflow-skinny (>=3.0.0 <=3.8.0)

mlflow-skinny PYPI version =3.0.0, =6.13.1, =9.273.1, =2.0.0, =0.1.0, =0.1.0, =0.4.4, =0.3.0, =0.1.0, =1.0.0, =0.1.0, =0.20.9, =0.21.10 and more Source cves: CVE-2026-2033 Source advisory: SNYK:PYTHON-MLFLOWSKINNY-16698157...

abadpour (>=6.13.1 <=7.24.1), abcli (>=9.273.1 <=9.572.1) +762 more potentially affected by CVE-2026-2635 via mlflow-skinny (>=2.6.0 <=3.9.0rc0)

mlflow-skinny PYPI version =2.6.0, =6.13.1, =9.273.1, =2.0.0, =0.1.0, =0.1.0, =0.4.4, =0.3.0, =0.1.0, =1.0.0, =1.1.0, =0.1.0, =0.20.9, =0.21.10 and more Source cves: CVE-2026-2635 Source advisory: SNYK:PYTHON-MLFLOWSKINNY-16698156...

SUSE SLES15 / openSUSE 15 Security Update : python (SUSE-SU-2026:0590-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0590-1 advisory. - CVE-2026-0672: Fixed a HTTP header injection via user-controlled cookie values and parameters when using http.cookies.Morsel...

UBUNTU-CVE-2026-27025

pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes and large memory consumption. This requires parsing the /ToUnicode entry of a font with unusually large values, for example during text...

CVE-2026-26030

Semantic Kernel, Microsoft's semantic kernel Python SDK, has a remote code execution vulnerability in versions prior to 1.39.4, specifically within the InMemoryVectorStore filter functionality. The problem has been fixed in version python-1.39.4. Users should upgrade this version or higher. As a...