2 matches found
Synthetics Recorder 1.4.15 Security Update (ESA-2026-16) - CVE-2025-6554 and CVE-2025-7657
Dependency on Vulnerable Third-Party Component in Synthetics Recorder Leading to Remote Code Execution Dependency on Vulnerable Third-Party Component CWE-1395 exists in the bundled Chromium browser in Elastic Synthetics Recorder that could allow an attacker to achieve remote code execution on a...
Malicious code in synthetics-recorder (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e132b465279df9b9432ece358404299922e0051907132baf848320447a551489 The OpenSSF Package Analysis project identified 'synthetics-recorder' @ 9.9.99 npm as malicious. It is considered malicious because: - The packa...