CVE-2026-35533 mise has a local settings bypass config trust checks

mise manages dev tools like node, python, cmake, and terraform. From 2026.2.18 through 2026.4.5, mise loads trust-control settings from a local project .mise.toml before the trust check runs. An attacker who can place a malicious .mise.toml in a repository can make that same file appear trusted a...

EUVD-2008-1597

Malware in sbrugna...

EUVD-2007-6644

Malware in sbrugna...

CVE-2022-39286 Execution with Unnecessary Privileges in JupyterApp

Jupyter Core is a package for the core common functionality of Jupyter projects. Jupyter Core prior to version 4.11.2 contains an arbitrary code execution vulnerability in jupytercore that stems from jupytercore executing untrusted files in CWD. This vulnerability allows one user to run code as...

Updated spamassassin packages fix security vulnerability

In Apache SpamAssassin before 3.4.5, malicious rule configuration .cf files can be configured to run system commands without any output or errors. With this, exploits can be injected in a number of scenarios. In addition to upgrading to SA version 3.4.5, users should only use update channels or 3...

OSSEC 2.7 <= 2.8.1 - Local Root Escalation Vulnerability

Exploit for linux platform in category local exploits Fix for CVE-2015-3222 which allows for root escalation via syscheck - https://github.com/ossec/ossec-hids/releases/tag/2.8.2 Affected versions: 2.7 - 2.8.1 Beginning is OSSEC 2.7 d88cf1c9 a feature was added to syscheck, which is the daemon th...

CVE-2008-1596

Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the trustchkblockwrite function, which might allow local users to modify trusted files, related to missing checks in the TSDFILESLOCK policy for modifications performed via hard links, a different vulnerability than...

CVE-2007-6680

Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the trustchkblockwrite function, which might allow local users to modify trusted files, related to an error in the support for links in the TSDFILESLOCK policy...

Code injection

Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the trustchkblockwrite function, which might allow local users to modify trusted files, related to an error in the support for links in the TSDFILESLOCK policy...

CVE-2007-6680

Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the trustchkblockwrite function, which might allow local users to modify trusted files, related to an error in the support for links in the TSDFILESLOCK policy...