44 matches found
EUVD-2019-15213
Malware in sbrugna...
EUVD-2024-25260
Malicious code in bioql PyPI...
A Cybersecurity AI Agent Selection and Decision Support Framework
This paper presents a novel, structured decision support framework that systematically aligns diverse artificial intelligence AI agent architectures, reactive, cognitive, hybrid, and learning, with the comprehensive National Institute of Standards and Technology NIST Cybersecurity Framework CSF...
CERTFR-2025-ACT-031
creationtimestamp| type| source ---|---|--- 2025-07-28 12:14:19+00:00| seen| https://bsky.app/profile/cert-fr.bsky.social/post/3luzkxm7f3t27 2025-07-28 12:42:40+00:00| seen| https://bsky.app/profile/infosecfr.skyfleet.blue/post/3luzmkc5u432w...
MAL-2025-5941 Malicious code in node-mongodb-logger (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0ac7ad5072828933069aa01c5de1ac1780566e205e1866722a012b7fa73c900b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5928 Malicious code in jsonlis-conf (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fce7376d51c7762ca92d6e8e883d0149c250a44d92fcdea76667d07c5b584dff Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5717 Malicious code in pogomap (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 346daf8a2d0c74a0583577fb5a7a813715159cc2783cee412ed8064813f0f20b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5488 Malicious code in airbnb-location-suggester (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2737604ff441534b7aeae22ee55636471142cccc2d6e2bbd4895a8f640c30aa1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5070 Malicious code in zora-logger (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware feca2e7f9d5aafeaafed7175bed1bc94f57e9d037a6427f54219d5a59ecca0a3 Any computer that has this package installed or running should be considered...
MAL-2025-4923 Malicious code in ac-mvc-cid (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 110e255563acbb72629ba03afd504713dfd8fbbdcd576258dde5d481975ac5ca Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4498 Malicious code in react_code_format (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 361ad03064f5e32012ed273f2a774a1528ef81284235b9757bb2947671dff09b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4310 Malicious code in chromastore (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9a59b1936571bdd8582f622ffd82b766107c586ec1797e8bd3babb518d16dc79 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4398 Malicious code in seacloud-database (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2727a30c94e296fcc61f82a43c5fb3d025fc2323aa7d99a8825994b2989bf2a3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3985 Malicious code in babel-loader-fs (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1700e85206eea0c06ca2bedd5155e402644feb176d29155bb5194ebaa3096336 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3814 Malicious code in ai_challenge (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cac3284458d7620929c88bceb52c6a1050042e2974e32bf76827af876c55b4be Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Vulnerabilities fixed in Keycloak
Red Hat has fixed vulnerabilities in Keycloak. The vulnerabilities include an issue where JWT tokens with long expiration times can cause infinite growth in the cache, resulting in an OutOfMemoryError and a Denial-of-Service for legitimate users. In addition, verification of trust store...
MAL-2025-3650 Malicious code in typescript-plugin-some-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c8d085d197d92c4b2e513d151403cdf29607fd2b87e7e6cce26231dd6a222e76 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3038 Malicious code in @hongfangze/cryptography (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware db133f41e9415e6a6e70862c87024ca08903312e01ae76b9d2968cab187e79a5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2749 Malicious code in contactbookmgmtserv (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4411a3fb5e56778179c647fb703b28d332d7b0f719ac7746b763317322a9a49a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2773 Malicious code in macos-relese (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 398aca8803a64fcc22bd99f0a9ded72acd13a096dc268e6a30cabb2828066c62 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...