Lucene search
K

4 matches found

Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.16 views

PT-2026-24744

Striae is a firearms examiner's comparison companion. A high-severity integrity bypass vulnerability existed in Striae's digital confirmation workflow prior to v3.0.0. Hash-only validation trusted manifest hash fields that could be modified together with package content, allowing tampered...

8.2CVSS5.8AI score0.00118EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/11/14 5:0 p.m.4 views

nodejs: integrity checks according to policies can be circumvented

When the Node.js policy feature checks the integrity of a resource against a trusted manifest, the application can intercept the operation and return a forged checksum to node's policy implementation, thus effectively disabling the integrity check...

7.5CVSS7.3AI score0.01107EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/10/18 4:26 p.m.6 views

nodejs: integrity checks according to policies can be circumvented

When the Node.js policy feature checks the integrity of a resource against a trusted manifest, the application can intercept the operation and return a forged checksum to node's policy implementation, thus effectively disabling the integrity check...

7.5CVSS7.3AI score0.01107EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/10/17 1:0 a.m.2 views

SUSE CVE-2023-38552

When the Node.js policy feature checks the integrity of a resource against a trusted manifest, the application can intercept the operation and return a forged checksum to the node's policy implementation, thus effectively disabling the integrity check. Impacts: This vulnerability affects all user...

6.5CVSS7.8AI score0.01107EPSS
Exploits0References13
Rows per page
Query Builder