CVE-2025-61729 vulnerabilities

Vulnerabilities for packages: rancher-machine, kapp-controller, apisix-ingress-controller, s5cmd, nvidia-container-toolkit, grafana-operator, gitsign, http-echo, sftpgo-plugin-pubsub, metrics-server, promxy, tailscale, kafkaexporter, regclient, temporal-server, kube-vip, spegel, incert, kubescape...

EUVD-2020-23857

Malware in sbrugna...

EUVD-2020-23858

Malware in sbrugna...

EUVD-2023-56619

Malicious code in bioql PyPI...

EUVD-2023-40294

Malicious code in bioql PyPI...

EUVD-2023-40295

Malicious code in bioql PyPI...

EUVD-2022-2049

Malicious code in bioql PyPI...

Malicious code in test-mlw2-taxed-relic (npm)

The package test-mlw2-taxed-relic was found to contain malicious code...

MAL-2025-36411 Malicious code in test-mlw2-taxed-relic (npm)

The package test-mlw2-taxed-relic was found to contain malicious code...

Malicious code in @malware-test-duras-knive-bogey-relic/test-mlw3-duras-knive-bogey-relic (npm)

The package @malware-test-duras-knive-bogey-relic/test-mlw3-duras-knive-bogey-relic was found to contain malicious code...

Malicious code in test-mlw2-relic-epoxy (npm)

The package test-mlw2-relic-epoxy was found to contain malicious code...

MAL-2025-36106 Malicious code in test-mlw2-relic-epoxy (npm)

The package test-mlw2-relic-epoxy was found to contain malicious code...

CVE-2023-51939

An issue in the cpbbssig function in relic/src/cp/reliccpbbs.c of Relic relic-toolkit 0.6.0 allows a remote attacker to obtain sensitive information and escalate privileges via the cpbbssig function...

CVE-2023-36326

Integer Overflow vulnerability in RELIC before commit 34580d840469361ba9b5f001361cad659687b9ab, allows attackers to execute arbitrary code, cause a denial of service, and escalate privileges when calling realloc function in bngrow function...

CVE-2020-36316

In RELIC before 2021-04-03, there is a buffer overflow in PKCS1 v1.5 signature verification because garbage bytes can be present...

CVE-2020-36315

In RELIC before 2020-08-01, RSA PKCS1 v1.5 signature forgery can occur because certain checks of the padding and of the first two bytes are inadequate. NOTE: this requires that a low public exponent such as 3 is being used. The product, by default, does not generate RSA keys with such a low numbe...

Malicious code in new-relic-browser (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b484734422b24dacf15c15aabdc6a98a5b34da6281c42feab2eea60be6bd36f9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-7976 Malicious code in new-relic-browser (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b484734422b24dacf15c15aabdc6a98a5b34da6281c42feab2eea60be6bd36f9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2024-24788 vulnerabilities

Vulnerabilities for packages: rekor-fips, cilium, thanos, kyverno-policy-reporter-ui, prometheus-mysqld-exporter, ghaudit, harbor-scanner-trivy-fips, prometheus-mongodb-exporter, overmind, prometheus-adapter, prometheus-alertmanager-fips, wireguard-go, wavefront-collector-for-kubernetes,...

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: go-md2man, nri-rabbitmq, ferretdb, ctop, dex, prometheus-operator, pulumi-language-yaml, rqlite, s5cmd, pombump, grafana-operator, gcsfuse, pulumi, kubevela, timoni, http-echo, cri-tools, flux-image-reflector-controller, mage, minio, nri-elasticsearch, nri-redis,...