Lucene search
K

6 matches found

OSV
OSV
added 2026/06/20 8:55 a.m.13 views

MAL-2026-6236 Malicious code in query-profile (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e5505d198ffea0cc608cbcd89e3d8fbe236f4d4ac532425b0e042c52bf87efe This package's metadata and README openly declare it as a dependency-confusion proof-of-concept that registers a PyPI name referenced in Apple's...

6.2AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/10 10:38 p.m.11 views

Malicious code in icinga (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fbedb312e9cfe0f5cc7783487adc963f142ebcaefa0fb9305a9a535f373b052d PyPI package 'icinga' at version 99.1.0 is a dependency-confusion / typosquat lure against the Icinga monitoring project. It ships no real...

5.7AI score
Exploits0References3
RedHat Linux
RedHat Linux
added 2022/02/15 10:20 a.m.4 views

Mozilla: Drag and dropping an image could have resulted in the dropped object being an executable

The Mozilla Foundation Security Advisory describes this flaw as: If a user was convinced to drag and drop an image to their desktop or other folder, the resulting object could have been changed into an executable script, which would have run arbitrary code after the user clicked it...

8.8CVSS7.5AI score0.00926EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2022/02/14 8:50 a.m.2 views

Mozilla: Drag and dropping an image could have resulted in the dropped object being an executable

The Mozilla Foundation Security Advisory describes this flaw as: If a user was convinced to drag and drop an image to their desktop or other folder, the resulting object could have been changed into an executable script, which would have run arbitrary code after the user clicked it...

8.8CVSS7.5AI score0.00926EPSS
Exploits1References6
CNVD
CNVD
added 2020/12/14 12:0 a.m.3 views

Microsoft Visual Studio Code Execution Vulnerability

Microsoft Visual Studio is a family of development tool suites from Microsoft, and a fundamentally complete set of development tools that includes most of the tools needed throughout the software lifecycle.Git for Visual Studio is one of the Git Distributed Version Control Git for Visual Studio i...

7.8CVSS7.8AI score0.02881EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2020/08/11 12:0 a.m.2 views

PT-2020-3829 · Microsoft · Windows Speech Runtime +1

Name of the Vulnerable Software and Affected Versions: Windows Speech Runtime affected versions not specified Description: The issue is related to the improper handling of memory by the Windows Speech Runtime, which can lead to an elevation of privilege. To exploit this, an attacker must first ga...

7.8CVSS7.7AI score0.01003EPSS
Exploits0References5
Rows per page
Query Builder