185 matches found
CVE-2026-10880 Unauthenticated SQL Injection in Osnexus Quantastor
OSNexus QuantaStor SDS Manager is vulnerable to SQL injection in the login endpoint. The username field is not properly sanitized before being incorporated into a SQL query, allowing an unauthenticated remote attacker to bypass authentication and log in as an administrator without supplying a val...
CLSA-2026-1776078299 redis: Fix of CVE-2023-41056
CVE-2023-41056: fix possible corruption in sdsResize due to incorrect allocalreadyoptimal logic skipping sds type header update...
CLSA-2026-1775836571 redis: Fix of CVE-2023-41056
CVE-2023-41056: fix possible corruption in sdsResize...
CVE-2026-24814
Integer Overflow or Wraparound vulnerability in swoole swoole-src thirdparty/hiredis modules. This vulnerability is associated with program files sds.C. This issue affects swoole-src: before 6.0.2...
CVE-2026-24814
Integer Overflow or Wraparound vulnerability in swoole swoole-src thirdparty/hiredis modules. This vulnerability is associated with program files sds.C. This issue affects swoole-src: before 6.0.2...
CVE-2026-24814 A integer overflow in swoole/swoole-src
Integer Overflow or Wraparound vulnerability in swoole swoole-src thirdparty/hiredis modules. This vulnerability is associated with program files sds.C. This issue affects swoole-src: before 6.0.2...
CVE-2026-24814
CVE-2026-24814 is an Integer Overflow or Wraparound vulnerability in swoole-src (thirdparty/hiredis modules), associated with program files sds.C. Affected: swoole-src before 6.0.2. Root cause details and remediation are not specified in the provided documents; no exploit details are given. Monit...
EUVD-2026-4763
Integer Overflow or Wraparound vulnerability in swoole swoole-src thirdparty/hiredis modules. This vulnerability is associated with program files sds.C. This issue affects swoole-src: before 6.0.2...
PT-2026-4889
Integer Overflow or Wraparound vulnerability in swoole swoole-src thirdparty/hiredis modules. This vulnerability is associated with program files sds.C. This issue affects swoole-src: before 6.0.2...
CVE-2023-25366
In Siglent SDS 1104X-E SDS1xx4X-EV6.1.37R9.ADS, insecure SCPI interface discloses web password...
EUVD-2025-203507
Malicious code in sds-swissid-common npm...
Malicious code in sds-swissid-common (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dfba6a19220522fe10bbf564a1b96c3b7da5de600c03e1e683976b0c6cd36aeb The package sds-swissid-common was found to contain malicious code. Source: ghsa-malware...
MAL-2025-192582 Malicious code in sds-swissid-common (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dfba6a19220522fe10bbf564a1b96c3b7da5de600c03e1e683976b0c6cd36aeb The package sds-swissid-common was found to contain malicious code. Source: ghsa-malware...
MAL-2025-192581 Malicious code in sds-oauth-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f11edc1113892a2a7000ea8835ce5819da044898e6a4c24a8ce57f8c00d5f351 The package sds-oauth-client was found to contain malicious code. Source: ghsa-malware f7e9cce8e795bc77f5fa0dff91fc1a61fb00b989ced3e091d402dca108bf21...
Malicious Package
Overview sds-auth-ui is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorshi...
EUVD-2025-203508
Malicious code in sds-oauth-client npm...
Malicious code in sds-auth-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c30a562f838b9db64453d7276cc2e0f4f63c1810fed94fd3e672a90e00d720b1 The package sds-auth-ui was found to contain malicious code. Source: ghsa-malware 4ebd619fe42c2229ad69655d504fa4e869ba861d01647c67418e624e066e0db2 An...
Malicious Package
Overview sds-oauth-client is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in sds-oauth-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f11edc1113892a2a7000ea8835ce5819da044898e6a4c24a8ce57f8c00d5f351 The package sds-oauth-client was found to contain malicious code. Source: ghsa-malware f7e9cce8e795bc77f5fa0dff91fc1a61fb00b989ced3e091d402dca108bf21...
EUVD-2025-203505
Malicious code in sds-auth-ui npm...