EUVD-2025-11133

Malicious code in bioql PyPI...

EUVD-2025-11097

Malicious code in bioql PyPI...

Asymmetry Vulnerability and Physical Attacks on Online Map Construction for Autonomous Driving

High-definition maps provide precise environmental information essential for prediction and planning in autonomous driving systems. Due to the high cost of labeling and maintenance, recent research has turned to online HD map construction using onboard sensor data, offering wider coverage and mor...

Malicious code in scenes-testing (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ede91952fd4d242e34d4fdd634b5d10a0f0d16145af1bfbfe011b8c5c1d02501 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-6165 Malicious code in grafana-scenes-ml (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a9f05300f7b5b25cc847cea32bfd7f5e7f72a070edc80e219d4ec0c2e87116c7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in scenes-e2e (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b5cd330b48a21b8e14bf5680e109fce03486949f6eef75c9e430fa4fc318db74 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in scenes-core (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 39e4ea55e37dda98df207b010b0fd6e64dc467ed051fa91d18337a7ea9e46152 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in scenes-devtools (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7fcbc7d7a26ce0416a317318a71735a6e1c6c1af16ead4f04b8ce6a5ee6d4b08 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in grafana-scenes-ml (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a9f05300f7b5b25cc847cea32bfd7f5e7f72a070edc80e219d4ec0c2e87116c7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-6195 Malicious code in scenes-devtools (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7fcbc7d7a26ce0416a317318a71735a6e1c6c1af16ead4f04b8ce6a5ee6d4b08 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-5953 Malicious code in scenes-ml-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1c945347ba764d47a25e4a06c08fc0562576992fecb23b25905113a20289f0be Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in scenes-ml-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1c945347ba764d47a25e4a06c08fc0562576992fecb23b25905113a20289f0be Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2025-30514

Unauthenticated attackers can obtain restricted information about a user's smart device collections i.e., "scenes"...

CVE-2025-24315

Unauthenticated attackers can add devices of other users to their scenes or arbitrary scenes of other arbitrary users...

CVE-2025-31360

Unauthenticated attackers can trigger device actions associated with specific "scenes" of arbitrary users...

CVE-2025-31360

Unauthenticated attackers can trigger device actions associated with specific "scenes" of arbitrary users...

CVE-2025-30514

Unauthenticated attackers can obtain restricted information about a user's smart device collections i.e., "scenes"...

PT-2025-16507

Name of the Vulnerable Software and Affected Versions The product name cannot be determined. Description The issue allows unauthenticated attackers to add devices of other users to their scenes, or arbitrary scenes of other arbitrary users. Recommendations At the moment, there is no information...

SUSE CVE-2025-2753

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been classified as critical. Affected is the function SceneCombiner::MergeScenes of the file code/AssetLib/LWS/LWSLoader.cpp of the component LWS File Handler. The manipulation leads to out-of-bounds read. It is possible ...

End-to-End Encrypted Instagram and Messenger Chats: Why It Took Meta 7 Years

Mark Zuckerberg personally promised that the privacy feature would launch by default on Messenger and Instagram chat. WIRED goes behind the scenes of the company’s colossal effort to get it right...