12429 matches found
EUVD-2025-175848
Malicious code in uglify-parse-socket-new-error npm...
Malicious code in fork-omicron-socket-easy-array (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 09dec83f01fe45716ab73eaf8f7a24f32dbc73e07c2b87df02a03f006c0a81c9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-176690
Malicious code in report-water-view-cluster-socket npm...
EUVD-2025-176304
Malicious code in socket-mock-java-rho-spy npm...
EUVD-2025-176301
Malicious code in socket-uglify-notify-assert-encrypt npm...
EUVD-2025-180217
Malicious code in authenticate-function-scale-cloud-socket npm...
EUVD-2025-178288
Malicious code in java-socket-cluster-decode-catch npm...
Malicious code in socket-mock-java-rho-spy (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c73783490d318eb38b0f589f800124ffffafbe09192fd2fb01fc5ce1f82b4195 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in socket-table-grid-sigma-deserialize (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83c9f9e87cf6fb6b68b3cd8868d6ceb7436fee28ca2f0fa8ae049c3c30db6e5e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-175778
Malicious code in upsilon-socket-cluster-static-eta npm...
EUVD-2025-176306
Malicious code in socket-link-resolve-try-encrypt npm...
EUVD-2025-176477
Malicious code in secure-phi-web-yaml-socket npm...
smc: Use __sk_dst_get() and dst_dev_rcu() in in smc_clc_prfx_set().
...
PT-2025-49088
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contained a race condition within the mptcp schedule work function. Specifically, a use-after-free issue was identified where mptcp worker could execute before a referen...
Siemens SIMATIC S7-1500 Improper Input Validation (CVE-2018-19591)
In the GNU C Library aka glibc or libc6 through 2.28, attempting to resolve a crafted hostname via getaddrinfo leads to the allocation of a socket descriptor that is not closed. This is related to the ifnametoindex function. This plugin only works with Tenable.ot. Please visit...
PT-2025-46904
Name of the Vulnerable Software and Affected Versions Socket Firewall versions prior to 0.15.5 Description Socket Firewall is an HTTP/HTTPS proxy server designed to enforce security policies by blocking dangerous packages. Versions of Socket Firewall prior to 0.15.5 are susceptible to arbitrary...
Siemens SIMATIC S7-1500 Use After Free (CVE-2024-56600)
net: inet6: do not leave a dangling sk pointer in inet6create sockinitdata attaches the allocated sk pointer to the provided sock object. If inet6create fails later, the sk object is released, but the sock object retains the dangling sk pointer, which may cause use-after-free later. Clear the soc...
Socket Firewall 代码问题漏洞
Socket Firewall is a firewall software from Socket Open Source. A code issue vulnerability exists in Socket Firewall versions prior to 0.15.5 that stems from the possibility of executing arbitrary code when running in an untrusted project directory, which could lead to bypassing malicious packet...
Siemens SIMATIC S7-1500 Improper Handling of Exceptional Conditions (CVE-2024-53140)
In the Linux kernel, the following vulnerability has been resolved: netlink: terminate outstanding dump on socket close Netlink supports iterative dumping of data. It provides the families the following ops: - start - optional kicks off the dumping process - dump - actual dump helper, keeps getti...
CVE-2025-40186
CVE-2025-40186 – Linux kernel (TCP/Fast Open) : The issue occurs in tcp_conn_request() during processing of a TFO socket. If a listener is closed while a TFO request is being handled, inet_csk_reqsk_queue_add() may skip setting reqsk->sk and call inet_child_forget(), which leads to tcp_disconn...