Lucene search
K

603 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2026/04/16 12:44 a.m.7 views

Malicious code in terminal-formatter (npm)

terminal-formatter is a malicious npm package that when installed postinstall-hook or imported sends local env variables, files and bash history to https://ghostraper.top and registers a new ssh key in .ssh/authorizedkeys. --- -= Per source details. Do not edit below this line.=- Source:...

5.7AI score
Exploits0
OSV
OSV
added 2026/04/16 12:44 a.m.10 views

MAL-2026-2911 Malicious code in terminal-formatter (npm)

terminal-formatter is a malicious npm package that when installed postinstall-hook or imported sends local env variables, files and bash history to https://ghostraper.top and registers a new ssh key in .ssh/authorizedkeys. --- -= Per source details. Do not edit below this line.=- Source:...

5.7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/04/14 9:21 a.m.17 views

Malicious code in centralogger (npm)

dom-utils-lite and centralogger, with identical payloads. On npm install, a postinstall hook fetches the attacker’s SSH public key from a Supabase storage bucket, appends it to /.ssh/authorizedkeys, harvests the victim’s IP, username, and hostname, then uploads that metadata to the same Supabase...

5.7AI score
Exploits0References1
EUVD
EUVD
added 2026/04/10 12:30 a.m.7 views

EUVD-2026-21120

OpenClaw through 2026.2.22 contains a symlink traversal vulnerability in agents.create and agents.update handlers that use fs.appendFile on IDENTITY.md without symlink containment checks. Attackers with workspace access can plant symlinks to append attacker-controlled content to arbitrary files,...

7.1CVSS6.6AI score0.00324EPSS
Exploits1References3
EUVD
EUVD
added 2026/04/10 12:30 a.m.10 views

EUVD-2025-209397

A Key Exchange without Entity Authentication vulnerability in the SSH implementation of Juniper Networks Apstra allows a unauthenticated, MITM attacker to impersonate managed devices. Due to insufficient SSH host key validation an attacker can perform a machine-in-the-middle attack on the SSH...

8.7CVSS5.9AI score0.00303EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/09 9:32 p.m.3 views

CVE-2025-13914

A Key Exchange without Entity Authentication vulnerability in the SSH implementation of Juniper Networks Apstra allows a unauthenticated, MITM attacker to impersonate managed devices. Due to insufficient SSH host key validation an attacker can perform a machine-in-the-middle attack on the SSH...

8.7CVSS5.9AI score0.00303EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/09 9:27 p.m.4 views

CVE-2026-35632 OpenClaw <= 2026.2.22 - Symlink Traversal via IDENTITY.md appendFile in agents.create/update

OpenClaw through 2026.2.22 contains a symlink traversal vulnerability in agents.create and agents.update handlers that use fs.appendFile on IDENTITY.md without symlink containment checks. Attackers with workspace access can plant symlinks to append attacker-controlled content to arbitrary files,...

7.1CVSS6.5AI score0.00324EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/04/09 9:27 p.m.2 views

CVE-2026-35632

OpenClaw through 2026.2.22 contains a symlink traversal vulnerability in agents.create and agents.update handlers that use fs.appendFile on IDENTITY.md without symlink containment checks. Attackers with workspace access can plant symlinks to append attacker-controlled content to arbitrary files,...

7.1CVSS6.6AI score0.00324EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.9 views

PT-2026-31767

Name of the Vulnerable Software and Affected Versions OpenClaw versions through 2026.2.22 Description OpenClaw through version 2026.2.22 has a symlink traversal issue in the agents.create and agents.update handlers. These handlers use fs.appendFile on IDENTITY.md without proper symlink containmen...

7.1CVSS6.5AI score0.00324EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.7 views

PT-2026-31796

Name of the Vulnerable Software and Affected Versions Juniper Networks Apstra versions prior to 6.1.1 Description A Key Exchange without Entity Authentication issue exists in the SSH implementation of Juniper Networks Apstra. This allows an unauthenticated, man-in-the-middle MITM attacker to...

8.7CVSS5.8AI score0.00303EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/09 12:0 a.m.9 views

Juniper Networks Apstra 安全漏洞

Juniper Networks Apstra is a data center network automation and intent-driven management platform developed by Juniper Networks. Versions of Juniper Networks Apstra prior to 6.1.1 contained security vulnerabilities, which were due to insufficient SSH host key verification. These vulnerabilities...

8.7CVSS5.8AI score0.00303EPSS
Exploits0References1
Metasploit
Metasploit
added 2026/04/02 7:1 p.m.91 views

Cisco Catalyst SD-WAN Controller Authentication Bypass

This module exploits an authentication bypass vulnerability CVE-2026-20127 in the Cisco Catalyst SD-WAN Controller vSmart. The vdaemon DTLS control-plane service fails to properly validate the verifystatus byte in CHALLENGEACKACK msgtype=10 messages. The vbondprocchallengeackack handler reads an...

10CVSS7.6AI score0.57793EPSS
Exploits9
Rapid7 Blog
Rapid7 Blog
added 2026/03/11 3:52 p.m.9 views

Rapid7 Analysis: CVE-2026-20127

CVE-2026-20127: Cisco Catalyst SD-WAN Authentication Bypass Overview On 25th February 2026, Cisco published an advisory for CVE-2026-20127, a critical authentication bypass vulnerability in the vdaemon service of Cisco Catalyst SD-WAN formerly Viptela. The flaw allows an unauthenticated, remote...

10CVSS8.8AI score0.57793EPSS
Exploits9
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/04 5:45 a.m.5 views

Security Bulletin: IBM Event Streams is vulnerable to a denial of service

Summary IBM Event Streams is vulnerable to a denial of service due to inefficient handling of slow SSH key exchanges CVE-2025-22869 Vulnerability Details CVEID:CVE-2025-22869 DESCRIPTION: SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients...

7.5CVSS7AI score0.00868EPSS
Exploits0Affected Software1
SUSE CVE
SUSE CVE
added 2026/02/20 12:24 a.m.7 views

SUSE CVE-2026-24126

Weblate is a web based localization tool. Prior to 5.16.0, the SSH management console did not validate the passed input while adding the SSH host key, which could lead to an argument injection to ssh-add. Version 5.16.0 fixes the issue. As a workaround, properly limit access to the management...

9.1CVSS5.8AI score0.00447EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2026/02/18 12:0 a.m.6 views

Nutanix AHV : Multiple Vulnerabilities (NXSA-AHV-10.3.1.3)

The version of AHV installed on the remote host is prior to AHV-10.3.1.3. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AHV-10.3.1.3 advisory. - A flaw was found in libssh versions built with OpenSSL versions older than 3.0, specifically in the sshkdf function...

8.8CVSS5.7AI score0.01279EPSS
Exploits2References5
IBM Security Bulletins
IBM Security Bulletins
added 2026/02/09 2:45 p.m.12 views

Security Bulletin: IBM Financial Transaction Manager is impacted by multiple vulnerabilities in RedHat Proxy for Kubernetes RBAC authorization

Summary IBM Financial Transaction Manager for RedHat OpenShift has addressed the following vulnerabilities. Vulnerability Details CVEID:CVE-2025-65637 DESCRIPTION: A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer to log a single-line payload larger th...

8.9CVSS5.7AI score0.03992EPSS
Exploits6Affected Software1
NVD
NVD
added 2026/02/05 5:16 p.m.6 views

CVE-2020-37136

ZOC Terminal 7.25.5 contains a denial of service vulnerability in the private key file input field that allows attackers to crash the application. Attackers can overwrite the private key file input with a 2000-byte buffer, causing the application to become unresponsive when attempting to create S...

7.5CVSS0.00361EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/05 4:13 p.m.28 views

CVE-2020-37136 ZOC Terminal v7.25.5 - 'Private key file' Denial of Service

ZOC Terminal 7.25.5 contains a denial of service vulnerability in the private key file input field that allows attackers to crash the application. Attackers can overwrite the private key file input with a 2000-byte buffer, causing the application to become unresponsive when attempting to create S...

7.5CVSS0.00361EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2026/02/04 7:27 a.m.374 views

Exploit for Path Traversal in Tuzitio Camaleon_Cms

CVE-2024-46987 Exploit - Camaleon CMS Path Traversal This too...

7.7CVSS5.5AI score0.1456EPSS
Exploits11
Rows per page
Query Builder