128 matches found
Astra Linux - уязвимость в uriparser
A issue was discovered in uriparser through 0.9.7. The ComposeQueryEngine in UriQuery.c has an integer overflow due to long keys or values, resulting in a buffer overflow...
CVE-2026-1763 Enervista UR Setup DLL Hijacking
Vulnerability in GE Vernova Enervista UR Setup on Windows.This issue affects Enervista: 8.6 and previous versions...
CVE-2026-1763
Vulnerability in GE Vernova Enervista UR Setup on Windows.This issue affects Enervista: 8.6 and previous versions...
CVE-2026-1762 Enervista UR Setup Directory Traversal Vulnerability
A vulnerability in GE Vernova Enervista UR Setup on Windows allows File Manipulation.This issue affects Enervista: 8.6 and prior versions...
CVE-2026-1762 Enervista UR Setup Directory Traversal Vulnerability
A vulnerability in GE Vernova Enervista UR Setup on Windows allows File Manipulation.This issue affects Enervista: 8.6 and prior versions...
PT-2026-7466
Name of the Vulnerable Software and Affected Versions GE Vernova Enervista versions prior to 8.6 Description A security issue exists in GE Vernova Enervista UR Setup on Windows. The issue affects versions prior to 8.6. Recommendations Update to a version newer than 8.6...
CVE-2021-27418
GE UR firmware versions prior to version 8.1x supports web interface with read-only access. The device fails to properly validate user input, making it possible to perform cross-site scripting attacks, which may be used to send a malicious script. Also, UR Firmware web server does not perform HTM...
CVE-2021-27430
GE UR bootloader binary Version 7.00, 7.01 and 7.02 included unused hardcoded credentials. Additionally, a user with physical access to the UR IED can interrupt the boot sequence by rebooting the UR...
CVE-2021-27422
GE UR firmware versions prior to version 8.1x web server interface is supported on UR over HTTP protocol. It allows sensitive information exposure without authentication...
CVE-2021-27426
GE UR IED firmware versions prior to version 8.1x with “Basic” security variant does not allow the disabling of the “Factory Mode,” which is used for servicing the IED by a “Factory” user...
CVE-2021-27428
GE UR IED firmware versions prior to version 8.1x supports upgrading firmware using UR Setup configuration tool – Enervista UR Setup. This UR Setup tool validates the authenticity and integrity of firmware file before uploading the UR IED. An illegitimate user could upgrade firmware without...
Malicious code in uaragifa-afat-ur (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5cd95e0c2a71b40ecc2a65c34bc9cd71455c4e4b5ad60c5130b0f297f252a2de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in juris-qeupss-ur (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9655f219ca2fbbe34419f1a39682833576b4ba61d4fc20adbbde7325adff30d5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-147306
Malicious code in uaragifa-afat-ur npm...
Malicious code in juris-qass-ur (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5b0ecbb87742dccf895b9e5939033468572320cfa804ca057e58a4f91aca4aab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-147297
Malicious code in uaragifa-afati-ur npm...
MAL-2025-157121 Malicious code in juris-qass-ur (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5b0ecbb87742dccf895b9e5939033468572320cfa804ca057e58a4f91aca4aab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2021-14178
Malware in sbrugna...
EUVD-2021-14182
Malware in sbrugna...
EUVD-2021-14174
Malware in sbrugna...