Lucene search
+L

530 matches found

nessus
nessus
added 2026/04/21 12:0 a.m.7 views

Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011236)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011236 advisory. In the Linux kernel, the following vulnerability has been resolved: Input: imxsckey - fix memory corruption on unload This is supposed to be priv but we accidentally...

5.6AI score0.00171EPSS
Exploits0References4
nessus
nessus
added 2026/04/21 12:0 a.m.11 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-012991)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-012991 advisory. In the Linux kernel, the following vulnerability has been resolved: Input: imxsckey - fix memory corruption on unload This is supposed to be priv but we accidentally...

5.6AI score0.00171EPSS
Exploits0References4
snyk
snyk
added 2026/04/14 11:47 a.m.6 views

Malicious Package

Overview pt-sc-demo-app is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.8AI score
Exploits0References2
ossf
ossf
added 2026/04/12 9:41 p.m.7 views

Malicious code in pt-sc-demo-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08bb315a7617ec23d04aeb4d4518c1539efbeef21894d42401af06f0ec36fdb6 The package pt-sc-demo-app was found to contain malicious code. Source: ghsa-malware 755b0ca70d35b05cdaa098b0bd7a331c5f40f35f8d5bb0dcf56333ce7acce6e0...

5.8AI score
Exploits0References1
osv
osv
added 2026/04/12 9:41 p.m.5 views

MAL-2026-2567 Malicious code in pt-sc-demo-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08bb315a7617ec23d04aeb4d4518c1539efbeef21894d42401af06f0ec36fdb6 The package pt-sc-demo-app was found to contain malicious code. Source: ghsa-malware 755b0ca70d35b05cdaa098b0bd7a331c5f40f35f8d5bb0dcf56333ce7acce6e0...

5.8AI score
Exploits0References1
ossf
ossf
added 2026/04/12 9:36 p.m.10 views

Malicious code in pt-sc-logger (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 925a5c001d049ecefbe72bc5ba4090904c882bf13b6f97493387fe3ed04a661f The package pt-sc-logger was found to contain malicious code. Source: ghsa-malware deaf63bd8a081fcc49f46fdb9b4300abef500b33eba7034bbd8de142a60db3cd A...

5.8AI score
Exploits0References1
osv
osv
added 2026/04/12 9:36 p.m.5 views

MAL-2026-2568 Malicious code in pt-sc-logger (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 925a5c001d049ecefbe72bc5ba4090904c882bf13b6f97493387fe3ed04a661f The package pt-sc-logger was found to contain malicious code. Source: ghsa-malware deaf63bd8a081fcc49f46fdb9b4300abef500b33eba7034bbd8de142a60db3cd A...

5.8AI score
Exploits0References1
nessus
nessus
added 2026/04/07 12:0 a.m.4 views

Trane Tracer SC, Tracer SC+, and Tracer Concierge Use of a Broken or Risky Cryptographic Algorithm (CVE-2026-28252)

A Use of a Broken or Risky Cryptographic Algorithm vulnerability in Trane Tracer SC, Tracer SC+, and Tracer Concierge could allow an attacker to bypass authentication and gain root-level access to the device. This plugin only works with Tenable.ot. Please visit...

9.8CVSS5.8AI score0.00216EPSS
Exploits0References2
nessus
nessus
added 2026/04/07 12:0 a.m.6 views

Trane Tracer SC, Tracer SC+, and Tracer Concierge Use of Hard-Coded, Security-Relevant Constants (CVE-2026-28256)

A Use of Hard-coded, Security-relevant Constants vulnerability in Trane Tracer SC, Tracer SC+, and Tracer Concierge could allow an attacker to disclose sensitive information and take over accounts. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot fo...

9.8CVSS5.7AI score0.00266EPSS
Exploits0References2
nessus
nessus
added 2026/04/07 12:0 a.m.4 views

Trane Tracer SC, Tracer SC+, and Tracer Concierge Use of Hard-Coded Credentials (CVE-2026-28255)

A Use of Hard-coded Credentials vulnerability in Trane Tracer SC, Tracer SC+, and Tracer Concierge could allow an attacker to disclose sensitive information and take over accounts. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more informatio...

9.8CVSS5.8AI score0.00288EPSS
Exploits0References2
nessus
nessus
added 2026/04/07 12:0 a.m.4 views

Trane Tracer SC, Tracer SC+, and Tracer Concierge Memory Allocation with Excessive Size Value (CVE-2026-28253)

A Memory Allocation with Excessive Size Value vulnerability in Trane Tracer SC, Tracer SC+, and Tracer Concierge could allow an unauthenticated attacker to cause a denial-of-service condition This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

8.7CVSS5.8AI score0.00307EPSS
Exploits0References2
nessus
nessus
added 2026/04/07 12:0 a.m.5 views

Trane Tracer SC, Tracer SC+, and Tracer Concierge Missing Authorization (CVE-2026-28254)

A Missing Authorization vulnerability in Trane Tracer SC, Tracer SC+, and Tracer Concierge could allow an unauthenticated attacker to access sensitive information through unprotected APIs. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

7.5CVSS5.8AI score0.00268EPSS
Exploits0References2
packetstormnews
packetstormnews
added 2026/04/06 12:0 a.m.6 views

ShieldNet: Network-Level Guardrails against Emerging Supply-Chain Injections in Agentic Systems

Existing research on LLM agent security mainly focuses on prompt injection and unsafe input/output behaviors. However, as agents increasingly rely on third-party tools and MCP servers, a new class of supply-chain threats has emerged, where malicious behaviors are embedded in seemingly benign tool...

5.9AI score
Exploits0
osv
osv
added 2026/03/30 4:59 p.m.4 views

CVE-2025-49010 OpenSC: Stack-buffer-overflow WRITE in GET RESPONSE

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow write in GET RESPONSE. The attack requires crafted USB device or smart card that wou...

3.8CVSS5.8AI score0.0013EPSS
Exploits0References4
debiancve
debiancve
added 2026/03/28 11:58 a.m.5 views

CVE-2018-25222

SC v7.16 contains a stack-based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying oversized input that exceeds buffer boundaries. Attackers can craft malicious input strings exceeding 1052 bytes to overwrite the instruction pointer and execute...

8.6CVSS6.3AI score0.00141EPSS
Exploits0
cnnvd
cnnvd
added 2026/03/28 12:0 a.m.10 views

SC 缓冲区错误漏洞

SC is a software developed by SC OpenSource. Version 7.16 of SC contains a buffer overflow vulnerability, which stems from a stack buffer overflow. This vulnerability could allow local attackers to execute arbitrary code...

8.6CVSS6.5AI score0.00141EPSS
Exploits0References2
redhatcve
redhatcve
added 2026/03/26 3:8 p.m.8 views

CVE-2026-28254

A Missing Authorization vulnerability in Trane Tracer SC, Tracer SC+, and Tracer Concierge could allow an unauthenticated attacker to access sensitive information through unprotected APIs...

6.9CVSS5.8AI score0.00268EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/03/26 2:59 p.m.5 views

CVE-2026-28255

A Use of Hard-coded Credentials vulnerability in Trane Tracer SC, Tracer SC+, and Tracer Concierge could allow an attacker to disclose sensitive information and take over accounts...

8.2CVSS5.7AI score0.00288EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/03/26 2:59 p.m.6 views

CVE-2026-28253

A Memory Allocation with Excessive Size Value vulnerability in Trane Tracer SC, Tracer SC+, and Tracer Concierge could allow an unauthenticated attacker to cause a denial-of-service condition...

8.7CVSS5.8AI score0.00307EPSS
Exploits0References1
openvas
openvas
added 2026/03/23 12:0 a.m.6 views

Trane Tracer SC / SC+ Devices Detection Consolidation

Consolidation of Trane Tracer SC / SC+ Devices detections. SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

5.8AI score
Exploits0References2
Rows per page
Query Builder