MAL-2025-31879 Malicious code in readable-geodynamo-quasarjet-brane (npm)

The package readable-geodynamo-quasarjet-brane was found to contain malicious code...

MAL-2025-31950 Malicious code in redux-readable-reducer (npm)

The package redux-readable-reducer was found to contain malicious code...

MAL-2025-31880 Malicious code in readable-karma-elektra-norma (npm)

The package readable-karma-elektra-norma was found to contain malicious code...

MAL-2025-36752 Malicious code in tethys-hugo-dorado-readable (npm)

The package tethys-hugo-dorado-readable was found to contain malicious code...

MAL-2025-31881 Malicious code in readable-protractor-standard-postcss-loader (npm)

The package readable-protractor-standard-postcss-loader was found to contain malicious code...

MAL-2025-15583 Malicious code in bellatrix-dagda-readable-chalk (npm)

The package bellatrix-dagda-readable-chalk was found to contain malicious code...

CVE-2025-54882

Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. In versions 0.8.0 through 0.9.21 and 1.0.0-beta through 1.1.0, Himmelblau stores the cloud TGT received during logon in the Kerberos credential cache. The created credential cache collection and received credentials...

Linux Distros Unpatched Vulnerability : CVE-2023-6207

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ownership mismanagement led to a use-after-free in ReadableByteStreams This vulnerability affects Firefox 120, Firefox ESR 115.5.0, and Thunderbird 115.5...

Linux Distros Unpatched Vulnerability : CVE-2025-32803

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In some cases, Kea log files or lease files may be world-readable. This issue affects Kea versions 2.4.0 through 2.4.1, 2.6.0 through 2.6.2, and 2.7.0 through...

net: Fix TOCTOU issue in sk_is_readable()

...

CVE-2025-54882

CVE-2025-54882 affects Himmelblau, an interoperability suite for Microsoft Azure Entra ID and Intune. From the public records, versions 0.8.0 through 0.9.21 and 1.0.0-beta through 1.1.0 store the cloud TGT during logon in the Kerberos credential cache, and the created credential cache collection ...

SUSE CVE-2025-52900

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. The file access permissions for files uploaded to or created from File Browser are never explicitly set by the application. The same is true for the...

Large Language Model-Based Framework for Explainable Cyberattack Detection in Automatic Generation Control Systems

The increasing digitization of smart grids has improved operational efficiency but also introduced new cybersecurity vulnerabilities, such as False Data Injection Attacks FDIAs targeting Automatic Generation Control AGC systems. While machine learning ML and deep learning DL models have shown...

SUSE CVE-2025-38112

In the Linux kernel, the following vulnerability has been resolved: net: Fix TOCTOU issue in skisreadable sk-skprot-sockisreadable is a valid function pointer when sk resides in a sockmap. After the last skpsockput which usually happens when socket is removed from sockmap, sk-skprot gets restored...

AZL-64553 CVE-2025-38112 affecting package kernel for versions less than 6.6.96.1-1

In the Linux kernel, the following vulnerability has been resolved: net: Fix TOCTOU issue in skisreadable sk-skprot-sockisreadable is a valid function pointer when sk resides in a sockmap. After the last skpsockput which usually happens when socket is removed from sockmap, sk-skprot gets restored...

DEBIAN-CVE-2025-38112

In the Linux kernel, the following vulnerability has been resolved: net: Fix TOCTOU issue in skisreadable sk-skprot-sockisreadable is a valid function pointer when sk resides in a sockmap. After the last skpsockput which usually happens when socket is removed from sockmap, sk-skprot gets restored...

CVE-2025-52991

The Nix, Lix, and Guix package managers default to using temporary build directories in a world-readable and world-writable location. This allows standard users to deceive the package manager into using directories with pre-existing content, potentially leading to unauthorized actions or data...

UBUNTU-CVE-2025-52991

The Nix, Lix, and Guix package managers default to using temporary build directories in a world-readable and world-writable location. This allows standard users to deceive the package manager into using directories with pre-existing content, potentially leading to unauthorized actions or data...

CVE-2025-52900 File Browser has Insecure File Permissions

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. The file access permissions for files uploaded to or created from File Browser are never explicitly set by the application. The same is true for the...

SUSE CVE-2025-52991

The Nix, Lix, and Guix package managers default to using temporary build directories in a world-readable and world-writable location. This allows standard users to deceive the package manager into using directories with pre-existing content, potentially leading to unauthorized actions or data...