EUVD-2020-4906

Malware in sbrugna...

EUVD-2024-41612

Malicious code in bioql PyPI...

EUVD-2024-30726

Malicious code in bioql PyPI...

CVE-2025-22028

In the Linux kernel, the following vulnerability has been resolved: media: vimc: skip .sstream for stopped entities Syzbot reported 1 a warning prompted by a check in callsstream that checks whether .sstream operation is warranted for unstarted or stopped subdevs. Add a simple fix in...

CVE-2024-45807 oghttp2 crash on OnBeginHeadersForStream in envoy

Envoy is a cloud-native high-performance edge/middle/service proxy. Envoy's 1.31 is using oghttp as the default HTTP/2 codec, and there are potential bugs around stream management in the codec. To resolve this Envoy will switch off the oghttp2 by default. The impact of this issue is that envoy wi...

Envoy 安全漏洞

Envoy is an Enphase open source gateway program for connecting smart home devices. A security vulnerability exists in Envoy version 1.31, which stems from a flaw in the HTTP/2 codec around stream management that can cause Envoy to crash...

Unauthorized Access Vulnerability in Lean Value Stream Management System (LVS) at Hangzhou Gila Technology Co.

Hangzhou Gila Technology Co., Ltd. is an enterprise network service provider, is committed to providing customized solutions based on the needs of the enterprise network, to create a cloud service cloud network platform. An unauthorized access vulnerability exists in the Lean Value Stream...

xmpp-info NSE Script

Connects to XMPP server port 5222 and collects server information such as: supported auth mechanisms, compression methods, whether TLS is supported and mandatory, stream management, language, support of In-Band registration, server capabilities. If possible, studies server vendor. Script Argument...