Lucene search
K

7 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/19 3:13 p.m.8 views

Malicious code in @chunklab/hexparse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56ad779454aa221e4a3d5a13725428059b40edd7cd8a4329ef382348bc493013 Package advertises itself as a small hex/base64/endianness codec library, but every exported encode/decode function encodeHex, decodeHex,...

6AI score
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/03/05 12:0 a.m.7 views

PT-2026-23456

Name of the Vulnerable Software and Affected Versions RustDesk Server Pro versions through 1.7.5 RustDesk Server OSS versions through 1.1.15 Description The software contains a flaw related to insufficient restriction of excessive authentication attempts and the use of a password hash with...

8.2CVSS5.9AI score0.00225EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-25084

Malicious code in bioql PyPI...

8.1CVSS8AI score0.00521EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/07/28 3:15 p.m.5 views

CVE-2022-1805

When connecting to Amazon Workspaces, the SHA256 presented by AWS connection provisioner is not fully verified by Zero Clients. The issue could be exploited by an adversary that places a MITM Man in the Middle between a zero client and AWS session provisioner in the network. This issue is only...

8.1CVSS7.2AI score0.00521EPSS
Exploits0References2
OSV
OSV
added 2022/07/28 3:15 p.m.4 views

CVE-2022-1805

When connecting to Amazon Workspaces, the SHA256 presented by AWS connection provisioner is not fully verified by Zero Clients. The issue could be exploited by an adversary that places a MITM Man in the Middle between a zero client and AWS session provisioner in the network. This issue is only...

8.1CVSS5.8AI score0.00521EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/07/28 12:0 a.m.6 views

PT-2022-14126 · Teradici · Pcoip Zero Client

Name of the Vulnerable Software and Affected Versions: PCoIP Zero Client affected versions not specified Description: The issue arises when connecting to Amazon Workspaces, as the SHA256 presented by the AWS connection provisioner is not fully verified by Zero Clients. This could be exploited by ...

8.1CVSS7.7AI score0.00521EPSS
Exploits0References3
OSV
OSV
added 2015/03/14 6:44 p.m.11 views

MGASA-2015-0109 Updated flash-player-plugin package fixes security vulnerabilities

Adobe Flash Player 11.2.202.451 contains fixes to critical security vulnerabilities found in earlier versions that could cause a crash and potentially allow an attacker to take control of the affected system. This update resolves memory corruption vulnerabilities that could lead to code execution...

10CVSS10AI score0.71536EPSS
Exploits5References4
Rows per page
Query Builder