Lucene search
K

5 matches found

curl security advisories
curl security advisories
added 2026/06/24 8:0 a.m.5 views

wrong STARTTLS connection reuse

A vulnerability exists where a new transfer that uses STARTTLS to upgrade the connection might reuse an existing live connection even though the TLS configuration mismatches so it should not...

8.1CVSS5.9AI score0.0052EPSS
Exploits1References1Affected Software2
EUVD
EUVD
added 2025/11/12 4:29 a.m.1 views

EUVD-2025-122240

Malicious code in sass-loader-quasar-transport-upgrade npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/12 4:29 a.m.3 views

EUVD-2025-121124

Malicious code in transport-upgrade-google-package npm...

6.6AI score
Exploits0
OSV
OSV
added 2025/11/12 4:29 a.m.2 views

MAL-2025-147682 Malicious code in sass-loader-quasar-transport-upgrade (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f20c0ab48c9f324f56d5d61c41b6df53b2f9637aa4732f761ac74b9eda2b6ba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
Snyk
Snyk
added 2022/05/24 4:44 p.m.2 views

Improper Removal of Sensitive Information Before Storage or Transfer

Overview Affected versions of this package are vulnerable to Improper Removal of Sensitive Information Before Storage or Transfer via the rest.AnonymousClientConfig method that does not effectively clear service account credentials loaded using rest.InClusterConfig. An attacker can gain...

9.2CVSS7.1AI score0.01492EPSS
Exploits0References2
Rows per page
Query Builder