26 matches found
MINI-5PVQ-GMQX-4CP4
Bulletin has no description...
MINI-6G25-6JPC-M8M6
Bulletin has no description...
EUVD-2012-5013
Malware in sbrugna...
EUVD-2025-10992
Malicious code in bioql PyPI...
MAL-2025-6756 Malicious code in reference-library (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...
Malicious code in reference-library (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...
Randextract: a Reference Library to Test and Validate Privacy Amplification Implementations
Quantum cryptographic protocols do not rely only on quantum-physical resources, they also require reliable classical communication and computation. In particular, the secrecy of any quantum key distribution protocol critically depends on the correct execution of the privacy amplification step. Th...
CVE-2025-1292
Out-Of-Bounds Write in TPM2 Reference Library in Google ChromeOS 122.0.6261.132 stable on Cr50 Boards allows an attacker with root access to gain persistence and bypass operating system verification via exploiting the NVRead functionality during the Challenge-Response process...
CVE-2025-1122
Out-Of-Bounds Write in TPM2 Reference Library in Google ChromeOS 15753.50.0 stable on Cr50 Boards allows an attacker with root access to gain persistence and Bypass operating system verification via exploiting the NVRead functionality during the Challenge-Response process...
CVE-2025-1122
CVE-2025-1122 affects Google ChromeOS (ChromeOS, TPM2 Reference Library) on Cr50-based devices. The connected PT-2025-16388 entry provides concrete details: Out-of-Bounds Write in the TPM2 Reference Library, exploitable by a user with root access to gain persistence and bypass OS verification via...
CVE-2025-1292 TPM2 Out-Of-Bounds Write Leading to Potential Operating System Verification Bypass in ChromeOS
Out-Of-Bounds Write in TPM2 Reference Library in Google ChromeOS 122.0.6261.132 stable on Cr50 Boards allows an attacker with root access to gain persistence and bypass operating system verification via exploiting the NVRead functionality during the Challenge-Response process...
PT-2025-16388 · Google +1 · Google Chrome +1
Name of the Vulnerable Software and Affected Versions: Google ChromeOS version 122.0.6261.132 Description: The issue is related to an Out-Of-Bounds Write in the TPM2 Reference Library, allowing an attacker with root access to gain persistence and bypass operating system verification. This is...
MAL-2024-4629 Malicious code in Rimworld.Reference.Libary (NuGet)
--- -= Per source details. Do not edit below this line.=-...
SUSE CVE-2012-5090
Unspecified vulnerability in the Oracle Agile PLM for Process component in Oracle Supply Chain Products Suite 5.2.2 and 6.1.0.0 allows remote authenticated users to affect confidentiality via unknown vectors related to Document Reference Library...
CVE-2022-30852
Known v1.3.1 was discovered to contain an Insecure Direct Object Reference IDOR...
virtualreferencelibrary.ca XSS vulnerability
Open Bug Bounty ID: OBB-457348 Description| Value ---|--- Affected Website:| virtualreferencelibrary.ca Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS...
ironmountain.ch XSS vulnerability
Vulnerable URL: http://www.ironmountain.ch/de/Knowledge-Center/Reference-Library/Search-Result.aspx?topic=%22%3E%3Csvg/onload=window.onerror=alert;throw/OPENBUGBOUNTY/%3E0=teubieni Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS...
Libpng PNG Reference Library Patches Memory Corruption Vulnerabilities
Two memory corruption vulnerabilities in the PNG reference library, libpng, have been patched, but the scope of software affected by the bug isn’t as wide as initially reported. The vulnerabilities, addressed in libpng 1.0.64, 1.2.54, 1.4.17, 1.5.24, and 1.6.19, allow for an attacker to write...
CVE-2012-5090
Unspecified vulnerability in the Oracle Agile PLM for Process component in Oracle Supply Chain Products Suite 5.2.2 and 6.1.0.0 allows remote authenticated users to affect confidentiality via unknown vectors related to Document Reference Library...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Agile PLM for Process component in Oracle Supply Chain Products Suite 5.2.2 and 6.1.0.0 allows remote authenticated users to affect confidentiality via unknown vectors related to Document Reference Library...