174 matches found
WizOS: Powering Secured Image Adoption with AI
WizOS is now GA to help every organization reduce CVEs and build on a trusted foundation...
A Secured Intent-Based Networking (SIBN) with Data-Driven Time-Aware Intrusion Detection
While Intent-Based Networking IBN promises operational efficiency through autonomous and abstraction-driven network management, a critical unaddressed issue lies in IBN's implicit trust in the integrity of intent ingested by the network. This inherent assumption of data reliability creates a blin...
EUVD-2025-34841
Malicious code in usage-tracker-secured npm...
Malicious code in usage-tracker-secured (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f1b7a443b3167fff4524481ab0e2a965023fdb4379674c580d905e30aacc7f70 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48440 Malicious code in usage-tracker-secured (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f1b7a443b3167fff4524481ab0e2a965023fdb4379674c580d905e30aacc7f70 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
EUVD-2019-11139
Malware in sbrugna...
EUVD-2020-14923
Malware in sbrugna...
EUVD-2016-7002
Malware in sbrugna...
EUVD-2019-8901
Malware in sbrugna...
EUVD-2017-5694
Malware in sbrugna...
EUVD-2022-37412
Malicious code in bioql PyPI...
EUVD-2022-30471
Malicious code in bioql PyPI...
Malicious code in secured-ssh (npm)
The package secured-ssh was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2646cfd359028f95d25b02993d148c26f9a4f910b6ee2b382f6e5a38e30ca9a0 Any computer that has this package installed or running should be considered fully...
MAL-2025-47085 Malicious code in secured-ssh (npm)
The package secured-ssh was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2646cfd359028f95d25b02993d148c26f9a4f910b6ee2b382f6e5a38e30ca9a0 Any computer that has this package installed or running should be considered fully...
Malicious Package
Overview secured-ssh is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorshi...
WizOS Is Here: Transforming Container Security from the Image Up
WizOS is in public preview starting today, enabling Wiz customers to adopt and operationalize secured images at scale...
CVE-2024-48916
Ceph is a distributed object, block, and file storage platform. In versions 19.2.3 and below, it is possible to send an JWT that has "none" as JWT alg. And by doing so the JWT signature is not checked. The vulnerability is most likely in the RadosGW OIDC provider. As of time of publication, a kno...
CVE-2025-5198
A flaw was found in Stackrox, where it is vulnerable to Cross-site scripting XSS if the script code is included in a small subset of table cells. The only known potential exploit is if the script is included in the name of a Kubernetes “Role” object that is applied to a secured cluster. This obje...
CVE-2025-5198 Stackrox: xss in stackrox
A flaw was found in Stackrox, where it is vulnerable to Cross-site scripting XSS if the script code is included in a small subset of table cells. The only known potential exploit is if the script is included in the name of a Kubernetes “Role” object that is applied to a secured cluster. This obje...
CVE-2025-5198
CVE-2025-5198 describes a Cross-site Scripting (XSS) flaw in Stackrox where the vulnerability can be triggered if script code is placed in a small subset of table cells, specifically when contained in the name of a Kubernetes “Role” object applied to a secured cluster. The exploit would require c...