CVE-2025-61729 vulnerabilities

Vulnerabilities for packages: helm-operator, nvidia-container-toolkit, opensearch-k8s-operator, kubescape, harbor, terraform-mcp-server, kube-state-metrics, sftpgo-plugin-pubsub, aws-nuke, spire-server, harbor-cli, sftpgo-plugin-eventsearch, grafana-operator, openbao-k8s, jitsucom-bulker,...

EUVD-2020-23857

Malware in sbrugna...

EUVD-2020-23858

Malware in sbrugna...

EUVD-2023-40295

Malicious code in bioql PyPI...

EUVD-2023-56619

Malicious code in bioql PyPI...

EUVD-2022-2049

Malicious code in bioql PyPI...

EUVD-2023-40294

Malicious code in bioql PyPI...

Malicious code in @malware-test-duras-knive-bogey-relic/test-mlw3-duras-knive-bogey-relic (npm)

The package @malware-test-duras-knive-bogey-relic/test-mlw3-duras-knive-bogey-relic was found to contain malicious code...

Malicious code in test-mlw2-relic-epoxy (npm)

The package test-mlw2-relic-epoxy was found to contain malicious code...

MAL-2025-36411 Malicious code in test-mlw2-taxed-relic (npm)

The package test-mlw2-taxed-relic was found to contain malicious code...

MAL-2025-36106 Malicious code in test-mlw2-relic-epoxy (npm)

The package test-mlw2-relic-epoxy was found to contain malicious code...

Malicious code in test-mlw2-taxed-relic (npm)

The package test-mlw2-taxed-relic was found to contain malicious code...

CVE-2023-51939

An issue in the cpbbssig function in relic/src/cp/reliccpbbs.c of Relic relic-toolkit 0.6.0 allows a remote attacker to obtain sensitive information and escalate privileges via the cpbbssig function...

CVE-2023-36326

Integer Overflow vulnerability in RELIC before commit 34580d840469361ba9b5f001361cad659687b9ab, allows attackers to execute arbitrary code, cause a denial of service, and escalate privileges when calling realloc function in bngrow function...

CVE-2020-36316

In RELIC before 2021-04-03, there is a buffer overflow in PKCS1 v1.5 signature verification because garbage bytes can be present...

CVE-2020-36315

In RELIC before 2020-08-01, RSA PKCS1 v1.5 signature forgery can occur because certain checks of the padding and of the first two bytes are inadequate. NOTE: this requires that a low public exponent such as 3 is being used. The product, by default, does not generate RSA keys with such a low numbe...

Malicious code in new-relic-browser (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b484734422b24dacf15c15aabdc6a98a5b34da6281c42feab2eea60be6bd36f9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-7976 Malicious code in new-relic-browser (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b484734422b24dacf15c15aabdc6a98a5b34da6281c42feab2eea60be6bd36f9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2024-24788 vulnerabilities

Vulnerabilities for packages: nats-server, kubescape, opentelemetry-collector-fips, kube-state-metrics-fips, caddy, oras, prometheus-redis-exporter, mc, extism, kubernetes, timestamp-authority-fips, go, cert-manager-fips, harbor, mkcert, addon-resizer-fips, kubernetes-dashboard-fips, go-md2man,...

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: rabbitmq-cluster-operator, wire-go, helm-operator, s5cmd, terraform-docs, eksctl, aws-load-balancer-controller, newrelic-fluent-bit-output, delve, rqlite, cert-exporter, trillian, kubeadm-bootstrap-controller, kyverno-policy-reporter-kyverno-plugin,...