81887 matches found
MAL-2026-2217 Malicious code in @rexorg/config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a10d1a86c535852318ad135eca1236f436ad942657df6107d1e1e8a117faf42 The package @rexorg/config was found to contain malicious code. Source: ghsa-malware d3c7f7c6129d24b5a4ee9f95be492524854c16742b8b538f33972fea399c64f5...
CVE-2026-33222
CVE-2026-33222 relates to an authorization bypass in NATS JetStream via its Management API. The GitHub advisory states that users with JetStream admin API access to restore one stream could restore to other stream names, potentially exposing or corrupting data that should have been protected. Aff...
MAL-2026-2200 Malicious code in json-lucide (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12d05056fbe7eca08a66d7297aac2b03763073361f0cb33c238a4463f64a0867 The package json-lucide was found to contain malicious code. Source: ghsa-malware 30298bc83e4bdadd246cfdec7006f865348448a5147e0a8258cd4d4feaf7b27f An...
MAL-2026-2198 Malicious code in omaronsec (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ff0bfae46cd199f9de68fa7a40d0f579cd8918783db054a2eb83c8cf047424f The package omaronsec was found to contain malicious code. Source: ghsa-malware 67e67c70590c02b44ced517d12ded441ebcd7e80617a6818d06ad836620910f6 Any...
Malicious code in tailwind-compile (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0bbf65c7619b6b53280e5b8466ad34ab144b9e6f1da1ab9a80fc621001cc380e The package tailwind-compile was found to contain malicious code. Source: ghsa-malware c6dd40384bf67bcd86f55c070ba74b522d8a9531dec334d4604f0b3737cd96...
MAL-2026-2195 Malicious code in super-alias (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 10ee12ec5ce74c0899ed60e17d1baf7095efc7ab305e51d4fcf20db72306621f The package super-alias was found to contain malicious code. Source: ghsa-malware 2c8c29e0ebca0170c77383154e5c6f2fe5280412fea18d255b496b94ae0aac5f An...
MAL-2026-2193 Malicious code in @sixcore/baileys (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1286e85f8b045ceb430500873b6a172bc5bef2193da8d53ec25183e7a4984cd8 The package @sixcore/baileys was found to contain malicious code. Source: ghsa-malware 4d631c0d901cd4ee9e33f1b24f2a7e067cb4369c7813ce8d46e7e7f0e2217a...
Malicious code in @sixcore/baileys (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1286e85f8b045ceb430500873b6a172bc5bef2193da8d53ec25183e7a4984cd8 The package @sixcore/baileys was found to contain malicious code. Source: ghsa-malware 4d631c0d901cd4ee9e33f1b24f2a7e067cb4369c7813ce8d46e7e7f0e2217a...
Malicious code in super-alias (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 10ee12ec5ce74c0899ed60e17d1baf7095efc7ab305e51d4fcf20db72306621f The package super-alias was found to contain malicious code. Source: ghsa-malware 2c8c29e0ebca0170c77383154e5c6f2fe5280412fea18d255b496b94ae0aac5f An...
Malicious code in changelog-utils-logger (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 766b0a70c145b6eea78f6d7852be0ff75da958b1c0f465aa5108a1acabb5e9b2 The package changelog-utils-logger was found to contain malicious code. Source: ghsa-malware...
MAL-2026-2192 Malicious code in changelog-utils-wrapper (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bec9a644e6b7c6be0e1e95ad8690cf8c19568061865f8e185552431e09fbb38c The package changelog-utils-wrapper was found to contain malicious code. Source: ghsa-malware...
Malicious code in ts-bign (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a068fd0715cfd570ef64c7f6d249383560483880d19fb75a94ac4997a742c70 The package ts-bign was found to contain malicious code. Source: ghsa-malware 6e364f088c15924f92d8290e79ca278120b3d8778345dcad0aad75e821d352e0 Any...
MAL-2026-2188 Malicious code in levex-refa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ba11828b57921035328d22b68ebf7ecb28dde3cedc4b58f874cf39c14583c5e0 The package levex-refa was found to contain malicious code. Source: ghsa-malware 5ce255ba60f9db881f821e9c9268a5c70e002212b5b0df88b274878592d4696d Any...
Malicious code in levex-refa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ba11828b57921035328d22b68ebf7ecb28dde3cedc4b58f874cf39c14583c5e0 The package levex-refa was found to contain malicious code. Source: ghsa-malware 5ce255ba60f9db881f821e9c9268a5c70e002212b5b0df88b274878592d4696d Any...
MAL-2026-2190 Malicious code in ts-bign (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a068fd0715cfd570ef64c7f6d249383560483880d19fb75a94ac4997a742c70 The package ts-bign was found to contain malicious code. Source: ghsa-malware 6e364f088c15924f92d8290e79ca278120b3d8778345dcad0aad75e821d352e0 Any...
Malicious code in simple-util-kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c4e97df136a9f8721793e4556b53f908cb10a6df1b2febf5edd3d9d8ef7ab2c7 The package simple-util-kit was found to contain malicious code. Source: ghsa-malware ade2d906419f8d8a97dff43ed8530e27612faa88503c6696838b30f201d5e6c...
CVE-2026-23370
In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: Don't hex dump plaintext password data setnewpassword hex dumps the entire buffer, which contains plaintext password data, including current and new passwords. Remove the hex dump to avoid leaking...
CVE-2026-23305 accel/rocket: fix unwinding in error path in rocket_probe
In the Linux kernel, the following vulnerability has been resolved: accel/rocket: fix unwinding in error path in rocketprobe When rocketcoreinit fails as could be the case with EPROBEDEFER, we need to properly unwind by decrementing the counter we just incremented and if this is the first core we...
MAL-2026-2166 Malicious code in @shennmine/baileys (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 117bf59d9266fc8bf77b63821d64778d3d9c7c57cd93c2c95a8b1718e879f14c The package @shennmine/baileys was found to contain malicious code. Source: ghsa-malware...
Malicious code in @shennmine/libsignal-node (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 04f4d27219071c7adbcedd56c54f0ca559b3d3651e6203b38d5170bb0e239f66 The package @shennmine/libsignal-node was found to contain malicious code. Source: ghsa-malware...