EUVD-2025-204525

Malicious code in connections-api-hidden-runner PyPI...

MAL-2025-5374 Malicious code in callsign-async-runner (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 993c282c40085606e14525d46841a996c7a8dcd50109db7828093a3d60254942 Any computer that has this package installed or running should be considered...

MAL-2024-8072 Malicious code in dwt-runner (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 71538fff3798a2b42ad1f28f2cbd053e501b0e143b563f0334e005a1ed152e24 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Amazon Linux 2 : kernel (ALAS-2021-1600)

The version of kernel installed on the remote host is prior to 4.14.219-161.340. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2021-1600 advisory. 2024-05-23: CVE-2023-1390 was added to this advisory. A use-after-free flaw was found in kernel/trace/ringbuffer.c...

CVE-2021-3139

A flaw was found in the Linux kernel’s implementation of the Linux SCSI target host, where an authenticated attacker could write to any block on the exported SCSI device backing store. This flaw allows an authenticated attacker to send LIO block requests to the Linux system to overwrite data on t...

CVE-2020-28374

A flaw was found in the Linux kernel’s implementation of the Linux SCSI target host, where an authenticated attacker could write to any block on the exported SCSI device backing store. This flaw allows an authenticated attacker to send LIO block requests to the Linux system to overwrite data on t...