7020 matches found
CVE-2025-61303
Hatching Triage Sandbox Windows 10 build 2004 2025-08-14 and Windows 10 LTSC 20212025-08-14 contains a vulnerability in its Windows behavioral analysis engine that allows a submitted malware sample to evade detection and cause denial-of-analysis. The vulnerability is triggered when a sample...
EUVD-2025-35102
Hatching Triage Sandbox Windows 10 build 2004 2025-08-14 and Windows 10 LTSC 20212025-08-14 contains a vulnerability in its Windows behavioral analysis engine that allows a submitted malware sample to evade detection and cause denial-of-analysis. The vulnerability is triggered when a sample...
CVE-2025-61303
Hatching Triage Sandbox Windows 10 build 2004 2025-08-14 and Windows 10 LTSC 20212025-08-14 contains a vulnerability in its Windows behavioral analysis engine that allows a submitted malware sample to evade detection and cause denial-of-analysis. The vulnerability is triggered when a sample...
Exploit for Deserialization of Untrusted Data in Google Android
Project Documentation Official QQ Group: 745307987 Although P...
CVE-2025-61303
CVE-2025-61303 concerns a vulnerability in the Windows behavioral analysis engine used by Hatching Triage Sandbox (Windows 10 build 2004 and Windows 10 LTSC 2021). The issue arises when a sample recursively spawns a very large number of child processes, producing an extreme log volume and exhaust...
Security Bulletin: IBM MQ is vulnerable to Slowloris attack which is a type of denial-of-service (DoS) (CVE-2025-36128)
Summary IBM MQ is vulnerable to Slowloris attack which is a type of denial-of-service DoS. Vulnerability Details CVEID:CVE-2025-36128 DESCRIPTION: IBM MQ is vulnerable to a denial of service, caused by improper enforcement of the timeout on individual read operations. By conducting slowloris-type...
367-HW1
It is an educational repository for a Reverse Engineering + Bina...
netty-codec-http: Netty is vulnerable to request smuggling due to incorrect parsing of chunk extensions
A flaw in Netty’s HTTP/1.1 chunked encoding parser allows newline LF characters in chunk extensions to be incorrectly treated as the end of the chunk-size line instead of requiring the proper CRLF sequence. This discrepancy can be exploited in rare cases where a reverse proxy interprets the same...
netty-codec-http: Netty is vulnerable to request smuggling due to incorrect parsing of chunk extensions
A flaw in Netty’s HTTP/1.1 chunked encoding parser allows newline LF characters in chunk extensions to be incorrectly treated as the end of the chunk-size line instead of requiring the proper CRLF sequence. This discrepancy can be exploited in rare cases where a reverse proxy interprets the same...
netty-codec-http: Netty is vulnerable to request smuggling due to incorrect parsing of chunk extensions
A flaw in Netty’s HTTP/1.1 chunked encoding parser allows newline LF characters in chunk extensions to be incorrectly treated as the end of the chunk-size line instead of requiring the proper CRLF sequence. This discrepancy can be exploited in rare cases where a reverse proxy interprets the same...
RMPocalypse: Single 8-Byte Write Shatters AMD's SEV-SNP Confidential Computing
Chipmaker AMD has released fixes to address a security flaw dubbed RMPocalypse that could be exploited to undermine confidential computing guarantees provided by Secure Encrypted Virtualization with Secure Nested Paging SEV-SNP. The attack, per ETH Zürich researchers Benedict Schlüter and Shweta...
AMD CVE-2025-0033: RMP Corruption During SNP Initialization
Microsoft is aware of AMD-SB-3020 | CVE-2025-0033 disclosed by AMD on October 13, 2025. CVE-2025-0033 is a vulnerability in AMD EPYC processors using Secure Encrypted Virtualization – Secure Nested Paging SEV-SNP. It involves a race condition during Reverse Map Table RMP initialization that could...
Malicious code in mcp-runcmd-server (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 2e5608c421ba44a3a2e20b924bd3399d6452dba66e7aea10a0fcdc8044f5a996 Package starts a reverse shell to a hardcoded location --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign:...
MAL-2025-191788 Malicious code in mcp-runcmd-server (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 2e5608c421ba44a3a2e20b924bd3399d6452dba66e7aea10a0fcdc8044f5a996 Package starts a reverse shell to a hardcoded location --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign:...
PT-2025-41795
Name of the Vulnerable Software and Affected Versions AMD EPYC and EPYC Embedded series processors versions prior to BIOS updates from OEM partners AMD EPYC processors using Secure Encrypted Virtualization – Secure Nested Paging SEV-SNP affected versions not specified Description A critical issue...
SEV-SNP RMP Initialization Vulnerability
Summary Researchers from ETHz reported that a malicious hypervisor could corrupt the Reverse Map Table RMP during Secure Nested Paging SNP initialization. AMD reproduced the issue and determined it is due to a race condition that can occur while the AMD Secure Processor ASP is initializing the RM...
Vlang-Pentest-Framework
🔥 Vlang Pentest Framework ██╗ ██╗██████╗ ███████╗███╗...
netty-codec-http: Netty is vulnerable to request smuggling due to incorrect parsing of chunk extensions
A flaw in Netty’s HTTP/1.1 chunked encoding parser allows newline LF characters in chunk extensions to be incorrectly treated as the end of the chunk-size line instead of requiring the proper CRLF sequence. This discrepancy can be exploited in rare cases where a reverse proxy interprets the same...
UBUNTU-CVE-2023-53653
In the Linux kernel, the following vulnerability has been resolved: media: amphion: fix REVERSEINULL issues reported by coverity null-checking of a pointor is suggested before dereferencing it...
CVE-2023-53653 media: amphion: fix REVERSE_INULL issues reported by coverity
In the Linux kernel, the following vulnerability has been resolved: media: amphion: fix REVERSEINULL issues reported by coverity null-checking of a pointor is suggested before dereferencing it...