12 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-53521
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: ses: Fix slab-out-of-bounds in sesintfremove A fix for: BUG: KASAN: slab-out-of-bounds in sesintfremove+0x23f/0x270 ses Read of size 8 at addr...
EUVD-2014-6308
Malware in sbrugna...
CVE-2025-54043
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YayCommerce SMTP for Amazon SES smtp-amazon-ses allows SQL Injection.This issue affects SMTP for Amazon SES: from n/a through = 1.9...
Unintended Scope Exposure
SES is vulnerable to unintended scope exposure. The vulnerability is due to improper isolation due to top-level let, const, or class bindings in...
4337-snap (>=0.1.0 <=0.1.1), @0xpolygonid/snap-example (=1.0.0-beta.9) +547 more potentially affected by CVE-2025-32792 via ses (>=0.0.1 <=1.11.0)
ses NPM version =0.0.1, =0.1.0, =1.0.1-beta.0, =1.0.0, =1.6.3, =0.0.1, =19.0.0, =0.1.0, =0.1.0-beta, =0.2.3, =0.2.2, =0.1.2, =0.4.16-dev-23c942c.0, =0.4.16-dev.0 and more Source cves: CVE-2025-32792 Source advisory: OSV:GHSA-H9W6-F932-GQ62...
GHSA-H9W6-F932-GQ62 ses's global contour bindings leak into Compartment lexical scope
Impact Web pages and web extensions using ses and the Compartment API to evaluate third-party code in an isolated execution environment that have also elsewhere used const, let, and class bindings in the top-level scope of a tag will have inadvertently revealed these bindings in the lexical scope...
PT-2025-17316 · Ses · Ses
Name of the Vulnerable Software and Affected Versions: SES versions prior to 1.12.0 Description: The issue arises when using the SES and Compartment API to evaluate third-party code in an isolated environment. In versions prior to 1.12.0, top-level let, const, and class bindings in tags are...
4337-snap (>=0.1.0 <=0.1.1), @0xpolygonid/snap-example (=1.0.0-beta.9) +322 more potentially affected by CVE-2023-39532 via ses (>=0.18.4 <=0.18.5)
ses NPM version =0.18.4, =0.1.0, =1.0.1-beta.0, =1.0.0, =1.6.3, =0.2.3, =0.2.2, =0.3.3-20230923T000433-dev-63b1fb6.0, =0.4.3-20230923T000433-dev-63b1fb6.0, =0.10.4-20230923T000433-dev-63b1fb6.0, =0.16.3-20230923T000433-dev-63b1fb6.0, =0.10.4-mainnet1B-dev-b0c1f78.0, =0.16.2-mainnet1B-dev-b0c1f78....
SES Input Validation Error Vulnerability
SES is a JavaScript environment for securely executing arbitrary programs in Compartments. An input validation error vulnerability exists in SES, which stems from a security flaw in the confinement of guest applications that could be exploited by an attacker to steal information or execute...
django-ses-sns-tracker (=1.1.5), speedpycom (=0.1.5) +1 more potentially affected by CVE-2023-33185 via django-ses (>=0.7.1 <=2.6.1)
django-ses PYPI version =0.7.1, =11.0.0, =14.4.0 Source cves: CVE-2023-33185 Source advisory: OSV:GHSA-QG36-9JXH-FJ25...
@agoric/access-token (>=0.4.16-dev-23c942c.0 <=0.4.16-dev.0), @agoric/assert (>=0.1.0 <=0.3.15-dev.2) +79 more potentially affected by unknown CVE via ses (>=0.0.1 <=0.15.24)
ses NPM version =0.0.1, =0.4.16-dev-23c942c.0, =0.1.0, =1.2.0, =1.3.0, =0.1.0, =0.10.8, =0.2.0, =1.5.1, =0.5.6-dev-f662032.0, =0.5.3, =0.1.1, =0.0.9, =0.1.2, =0.3.0, =0.5.30-dev-fe997f2.0 and more Source cves: unknown CVE Source advisory: OSV:GHSA-WHPX-Q3RQ-W8JC...
4337-snap (>=0.1.0 <=0.1.1), @0xpolygonid/snap-example (=1.0.0-beta.9) +530 more potentially affected by unknown CVE via ses (>=0.0.1 <=0.5.3)
ses NPM version =0.0.1, =0.1.0, =1.0.1-beta.0, =1.0.0, =1.6.3, =0.0.1, =0.1.0, =0.1.0-beta, =0.2.3, =0.2.2, =0.1.2, =0.4.16-dev-23c942c.0, =0.1.0, =0.3.15-dev.2 and more Source cves: unknown CVE Source advisory: OSV:GHSA-6JG8-7333-554W...