30 matches found
EUVD-2020-6506
Malware in sbrugna...
EUVD-2020-20331
Malware in sbrugna...
EUVD-2021-26880
Malware in sbrugna...
EUVD-2021-7683
Malicious code in bioql PyPI...
EUVD-2022-32165
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2021-20188
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in podman before 1.7.0. File permissions for non-root users running in a privileged container are not correctly checked. This flaw can be abuse...
Linux Distros Unpatched Vulnerability : CVE-2021-20265
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the way memory resources were freed in the unixstreamrecvmsg function in the Linux kernel when a signal was pending. This flaw allows an...
TencentOS Server 3: hivex (TSSA-2022:0272)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0272 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...
CVE-2023-26548
The pgmng module has a vulnerability in serialization/deserialization. Successful exploitation of this vulnerability may affect availability...
CVE-2022-31759
AppLink has a vulnerability of accessing uninitialized pointers. Successful exploitation of this vulnerability may affect system availability...
Amazon Linux 2 : runc (ALASECS-2025-064)
The version of runc installed on the remote host is prior to 1.0.0-0.1.20200204.gitdc9208a. It is, therefore, affected by a vulnerability as referenced in the ALAS2ECS-2025-064 advisory. A flaw was found in runc. An attacker who controls the container image for two containers that share a volume...
Linux Distros Unpatched Vulnerability : CVE-2021-3478
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There's a flaw in OpenEXR's scanline input file functionality in versions before 3.0.0-beta. An attacker able to submit a crafted file to be processed by OpenEX...
Linux Distros Unpatched Vulnerability : CVE-2021-20299
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in OpenEXR's Multipart input file functionality. A crafted multi-part input file with no actual parts can trigger a NULL pointer dereference. T...
Medium: python3.9
Issue Overview: A flaw was found in python. In algorithms with quadratic time complexity using non-binary bases, when using inttext, a system could take 50ms to parse an int string with 100,000 digits and 5s for 1,000,000 digits float, decimal, int.frombytes, and int for binary bases 2, 4, 8, 16,...
SUSE CVE-2021-3501
A flaw was found in the Linux kernel in versions before 5.12. The value of internal.ndata, in the KVM API, is mapped to an array index, which can be updated by a user process at anytime which could lead to an out-of-bounds write. The highest threat from this vulnerability is to data integrity and...
SUSE CVE-2021-20297
A flaw was found in NetworkManager in versions before 1.30.0. Setting match.path and activating a profile crashes NetworkManager. The highest threat from this vulnerability is to system availability...
CVE-2022-38990
The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect system availability...
CVE-2021-21703
php-fpm has a vulnerability which may lead to local privilege escalation. This vulnerability is hard to exploit as the attack needs to escape the FPM sandbox mechanism. When a complete attack is achieved it may lead to risk for confidentiality, data integrity, and system availability...
UBUNTU-CVE-2021-3739
A NULL pointer dereference flaw was found in the btrfsrmdevice function in fs/btrfs/volumes.c in the Linux Kernel, where triggering the bug requires ‘CAPSYSADMIN’. This flaw allows a local attacker to crash the system or leak kernel internal information. The highest threat from this vulnerability...
XStream: Unsafe deserizaliation of com.sun.corba.se.impl.activation.ServerTableEntry
A flaw was found in xstream. A remote attacker, who has sufficient rights, can execute commands of the host by manipulating the processed input stream. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...