53 matches found
Inspektor Gadget 安全漏洞
Inspektor Gadget is a set of tools and frameworks developed by Inspektor Gadget Inc. based on eBPF. Inspektor Gadget has a security vulnerability that arises from the string fields generated by eBPF events in list output mode. These strings are rendered onto the terminal without clearing control...
CVE-2011-0189
The default configuration of Terminal in Apple Mac OS X 10.6 before 10.6.7 uses SSH protocol version 1 within the New Remote Connection dialog, which might make it easier for man-in-the-middle attackers to spoof SSH servers by leveraging protocol vulnerabilities...
EUVD-2019-13055
Malware in sbrugna...
EUVD-2020-23706
Malware in sbrugna...
EUVD-2011-2188
Malware in sbrugna...
EUVD-2022-47636
Malicious code in bioql PyPI...
EUVD-2023-35200
Malicious code in bioql PyPI...
OESA-2025-1579 screen security update
Screen is a full-screen window manager that multiplexes a physical terminal between several processes,typically interactive shells. Security Fixes: For a short time they PTY is set to mode 666, allowing any user on the system to connect to the screen session.CVE-2025-46802 A minor information lea...
CVE-2025-46803
The default mode of pseudo terminals PTYs allocated by Screen was changed from 0620 to 0622, thereby allowing anyone to write to any Screen PTYs in the system...
CVE-2025-30370
A flaw was found in jupyterlab-git. On many platforms, a third party can create a Git repository under a name that includes a shell command substitution string in the syntax $. These directory names are allowed in macOS and a majority of Linux distributions. If a user starts jupyter-lab in a pare...
Arbitrary File Download Vulnerability in Terminal Advanced Threat Detection and Response System of Beijing Qixingchen Information Security Technology Co.
Terminal advanced threat detection and response system is to help quickly build a new generation of terminal security protection system. Beijing Qixingchen Information Security Technology Co., Ltd Terminal Advanced Threat Detection and Response System has an arbitrary file download vulnerability,...
gitoxide-core does not neutralize special characters for terminals
Summary The gix and ein commands write pathnames and other metadata literally to terminals, even if they contain characters terminals treat specially, including ANSI escape sequences. This sometimes allows an untrusted repository to misrepresent its contents and to alter or concoct error messages...
CVE-2021-31314
File upload vulnerability in ejinshan v8+ terminal security system allows attackers to upload arbitrary files to arbitrary locations on the server...
CVE-2021-31314
File upload vulnerability in ejinshan v8+ terminal security system allows attackers to upload arbitrary files to arbitrary locations on the server...
CVE-2021-31314
File upload vulnerability in ejinshan v8+ terminal security system allows attackers to upload arbitrary files to arbitrary locations on the server...
CVE-2021-31314
The CVE-2021-31314 entry concerns ejinshan v8+ terminal security system and is a file upload vulnerability that allows an attacker to upload arbitrary files to arbitrary locations on the server. The NVD/Red Hat/CNNVD entries corroborate an unrestricted file upload issue affecting ejinshan v8+; th...
ejinshan Security Breach
ejinshan is a terminal security management system of China Falcon Security ejinshan company for localized environment, which can fully manage linux system. A security vulnerability exists in ejinshan v8+, which allows an attacker to upload arbitrary files to any location on the server...
OPENSUSE-SU-2023:0306-1 Security update for rxvt-unicode
This update for rxvt-unicode fixes the following issues: - Update to version 9.31: CVE-2022-4170 boo1206069 - implement a fix for CVE-2022-4170 reported and analyzed by David Leadbeater. While present in version 9.30, it should not be exploitable. It is exploitable in versions 9.25 and 9.26, at...
Sensitive Terraform Output Values Printed At Info Logging Level In Kitchen-Terraform
Summary Kitchen-Terraform v7.0.0 introduced a regression which caused all Terraform output values, including sensitive values, to be printed at the info logging level during the kitchen converge action. Prior to v7.0.0, the output values were printed at the debug level to avoid writing sensitive...
CVE-2022-46387
ConEmu through 220807 and Cmder before 1.3.21 report the title of the terminal, including control characters, which allows an attacker to change the title and then execute it as commands...