24 matches found
MAL-2026-5051 Malicious code in @tc-core/provider-service (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware addb58e3e730bb8adc78d7f15f7d35857ec0c6944ec4ba1827fbf87902debe97 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
org.apache.hugegraph:hg-pd-dist (=1.5.0), org.apache.hugegraph:hg-pd-service (=1.5.0) +1 more potentially affected by CVE-2025-26866 via org.apache.hugegraph:hg-pd-core (=1.5.0)
org.apache.hugegraph:hg-pd-core MAVEN version =1.5.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.hugegraph:hg-pd-core and may be impacted: - org.apache.hugegraph:hg-pd-dist =1.5.0 - org.apache.hugegraph:hg-pd-service =1.5.0 -...
Malicious code in babel-preset-kinvey-flex-service (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95227fb68cd76580469df042e11e087ac694eaf2d50c6ac95514edcaee6056a4 The package babel-preset-kinvey-flex-service was found to contain malicious code. Source: ghsa-malware...
EUVD-2011-4873
Malware in sbrugna...
EUVD-2014-0044
Malware in sbrugna...
EUVD-2022-15615
Malicious code in bioql PyPI...
EUVD-2022-15362
Malicious code in bioql PyPI...
Malicious code in kentico-kontent-angular-http-service (npm)
The package kentico-kontent-angular-http-service was found to contain malicious code...
MAL-2025-7965 Malicious code in @frozen-team-qa/user-service (npm)
The package @frozen-team-qa/user-service was found to contain malicious code...
MAL-2025-7959 Malicious code in @frozen-team-qa/positions-service (npm)
The package @frozen-team-qa/positions-service was found to contain malicious code...
Malicious code in wm-service (npm)
The package wm-service was found to contain malicious code...
MAL-2025-7953 Malicious code in @frozen-team-qa/notes-service (npm)
The package @frozen-team-qa/notes-service was found to contain malicious code...
MAL-2025-7963 Malicious code in @frozen-team-qa/subscriptions-service (npm)
The package @frozen-team-qa/subscriptions-service was found to contain malicious code...
CVE-2022-29583
servicewindows.go in the kardianos service package for Go omits quoting that is sometimes needed for execution of a Windows service executable from the intended directory. NOTE: this finding could not be reproduced by its original reporter or by others...
Ubuntu: Security Advisory (USN-7520-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Linux Distros Unpatched Vulnerability : CVE-2022-25927
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Versions of the package ua-parser-js from 0.7.30 and before 0.7.33, from 0.8.1 and before 1.0.33 are vulnerable to Regular Expression Denial of Service ReDoS vi...
Linux Distros Unpatched Vulnerability : CVE-2016-8602
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The .sethalftone5 function in psi/zht2.c in Ghostscript before 9.21 allows remote attackers to cause a denial of service application crash or possibly execute...
Linux Distros Unpatched Vulnerability : CVE-2016-7516
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a denial of service out-of-bounds read via a crafted VIFF file...
openSUSE: Security Advisory for curl (SUSE-SU-2022:2327-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2022-29583
servicewindows.go in the kardianos service package for Go omits quoting that is sometimes needed for execution of a Windows service executable from the intended directory. NOTE: this finding could not be reproduced by its original reporter or by others...