7909 matches found
MAL-2025-191640 Malicious code in install-all-setup (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 519885ab1e79055139dd279d8e9bf603b4f1d0c0f3f6d3c90231c934f26bbb60 Package downloads and runs an obfuscated bat file, which executes malicious activity according to VirusTotal results. --- Category: MALICIOUS - The campaign ha...
EUVD-2024-55044
Potential privilege escalation issue in Revenera InstallShield version 2023 R1 running a renamed Setup.exe on Windows. When a local administrator executes a renamed Setup.exe, the MPR.dll may get loaded from an insecure location and can result in a privilege escalation. The issue has been fixed i...
CVE-2024-14012
Potential privilege escalation issue in Revenera InstallShield version 2023 R1 running a renamed Setup.exe on Windows. When a local administrator executes a renamed Setup.exe, the MPR.dll may get loaded from an insecure location and can result in a privilege escalation. The issue has been fixed i...
CVE-2024-14012 Potential Privilege Escalation in Revenera InstallShield 2023 R1
Potential privilege escalation issue in Revenera InstallShield version 2023 R1 running a renamed Setup.exe on Windows. When a local administrator executes a renamed Setup.exe, the MPR.dll may get loaded from an insecure location and can result in a privilege escalation. The issue has been fixed i...
CVE-2024-14012 Potential Privilege Escalation in Revenera InstallShield 2023 R1
Potential privilege escalation issue in Revenera InstallShield version 2023 R1 running a renamed Setup.exe on Windows. When a local administrator executes a renamed Setup.exe, the MPR.dll may get loaded from an insecure location and can result in a privilege escalation. The issue has been fixed i...
CVE-2024-14012
CVE-2024-14012 describes a privilege elevation in Revenera InstallShield 2023 R1 on Windows when a local administrator runs a renamed Setup.exe, causing MPR.dll to be loaded from an insecure location. The vulnerability is caused by the loader path for MPR.dll and can lead to elevated privileges. ...
PT-2025-44308
Name of the Vulnerable Software and Affected Versions Revenera InstallShield versions prior to 2023 R2 Description A privilege escalation issue exists in Revenera InstallShield version 2023 R1 when running a renamed Setup.exe on Windows. If a local administrator executes a renamed Setup.exe, the...
CVE-2025-40080
In the Linux kernel, the following vulnerability has been resolved: nbd: restrict sockets to TCP and UDP Recently, syzbot started to abuse NBD with all kinds of sockets. Commit cf1b2326b734 "nbd: verify socket is supported during setup" made sure the socket supported a shutdown method. Explicitel...
30-week-binary-exploitation-cve-program-generated-by-AI
\ 30-Week Binary Exploitation & CVE Analysis Program for Embed...
AZL-68879 CVE-2025-40080 affecting package kernel for versions less than 6.6.112.1-2
In the Linux kernel, the following vulnerability has been resolved: nbd: restrict sockets to TCP and UDP Recently, syzbot started to abuse NBD with all kinds of sockets. Commit cf1b2326b734 "nbd: verify socket is supported during setup" made sure the socket supported a shutdown method. Explicitel...
EUVD-2025-36448
In the Linux kernel, the following vulnerability has been resolved: nbd: restrict sockets to TCP and UDP Recently, syzbot started to abuse NBD with all kinds of sockets. Commit cf1b2326b734 "nbd: verify socket is supported during setup" made sure the socket supported a shutdown method. Explicitel...
SUSE CVE-2025-52099
DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2025-29088. Reason: This record is a duplicate of CVE-2025-29088. Notes: All CVE users should reference CVE-2025-29088 instead of this record. All references and descriptions in this record have been removed to prevent accidental usage...
kernel: mm: swap: fix potential buffer overflow in setup_clusters()
In the Linux kernel, the following vulnerability has been resolved: mm: swap: fix potential buffer overflow in setupclusters In setupswapmap, we only ensure badpages are in range 0, lastpage. As maxpages might be = maxpages. Only call incclusterinfopage for badpage which is maxpages to fix the...
Malicious code in python3-autopep8 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 36e35b782ec2e15a96c4b7c9d9eb5bacbbf3ded26b6b3ee72f2f698b1622c241 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2025-191844 Malicious code in python3-autopep8 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 36e35b782ec2e15a96c4b7c9d9eb5bacbbf3ded26b6b3ee72f2f698b1622c241 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in statsapi (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 5c59dd2732ec529321670e500c8b732a5641b361029fd435277a6f110d4c5286 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2025-191878 Malicious code in statsapi (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 5c59dd2732ec529321670e500c8b732a5641b361029fd435277a6f110d4c5286 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
SUSE CVE-2025-50950
Audiofile v0.3.7 was discovered to contain a NULL pointer dereference via the ModuleState::setup function...
EUVD-2025-35887
Integer Overflow vulnerability in SQLite SQLite3 v.3.50.0 allows a remote attacker to cause a denial of service via the setupLookaside function...
EUVD-2025-35864
D-Link DIR600L Ax FW116WWb01 was discovered to contain a buffer overflow via the curTime parameter in the function formLanSetupRouterSettings...