13065 matches found
EUVD-2025-81000
Malicious code in overwhelminghornet0xrequest npm...
Malicious code in accessible_puma_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65f7a22a4e0a93c060afad76526a3969ba09d3974ba949a9676030f01eb8f31b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in zaki-kue68-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0341ece14fdd3d891304993e85493eb380f6a93c8c7f8d49e453aa03a1648c04 The package zaki-kue68-sluey was found to contain malicious code...
Malicious code in supxmlparser (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3875bc6e2e97cfd10a8d926b80d7a78ac31781bad91e61e5960eadd34d87f56 The package supxmlparser was found to contain malicious code...
MINI-562M-4W66-38GM
Bulletin has no description...
MAL-2025-49210 Malicious code in epic-ui-toolkit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d70949be3dd1355e16392906c6422a9ddb025a8bddeecd89cf7911365e43670e The package epic-ui-toolkit was found to contain malicious code...
MAL-2025-49032 Malicious code in prefer-arrow (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bd4c923d3d6c399e77c6af5aa1cbd1e4712cb7bd89045f7ad31667227e6e3bd8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MINI-X2C7-QP7V-3GQ6
Bulletin has no description...
MAL-2025-48701 Malicious code in ldhemrdhs60152 (npm)
The package ldhemrdhs60152 was found to contain malicious code. --- -= Per source details. Do not edit below this line.=-...
MAL-2025-48672 Malicious code in dhqr92004 (npm)
The package dhqr92004 was found to contain malicious code. --- -= Per source details. Do not edit below this line.=-...
MAL-2025-48711 Malicious code in ldhemrdhs92011 (npm)
The package ldhemrdhs92011 was found to contain malicious code. --- -= Per source details. Do not edit below this line.=-...
MAL-2025-48808 Malicious code in circuit-runtime (npm)
--- -= Per source details. Do not edit below this line.=-...
Security update for openssl-1_1-livepatches
This update for openssl-11-livepatches fixes the following issues: CVE-2025-9230: incorrect check of key size can lead to out-of-bounds read and write in RFC 3211 KEK unwrap bsc1250410. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...
Malicious code in shiprocket-invoice-export (npm)
The package communicates with a domain associated with malicious activity...
Malicious code in yugabyte_cloud (npm)
The package yugabytecloud was found to contain malicious code...
MAL-2025-48490 Malicious code in didirce (npm)
The package didirce was found to contain malicious code. --- -= Per source details. Do not edit below this line.=-...
BIT-REDIS-2025-32023 Redis allows out of bounds writes in hyperloglog commands leading to RCE
Redis is an open source, in-memory database that persists on disk. From 2.8 to before 8.0.3, 7.4.5, 7.2.10, and 6.2.19, an authenticated user may use a specially crafted string to trigger a stack/heap out of bounds write on hyperloglog operations, potentially leading to remote code execution. The...
MAL-2025-48505 Malicious code in sb_wm_integrator (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...
EUVD-2015-9102
Malware in sbrugna...
EUVD-2016-2187
Malware in sbrugna...