92 matches found
EUVD-2002-1996
Malware in sbrugna...
EUVD-2021-27006
Malware in sbrugna...
EUVD-2020-23316
Malware in sbrugna...
EUVD-2010-4072
Malware in sbrugna...
EUVD-2019-16745
Malware in sbrugna...
EUVD-2003-0887
Malware in sbrugna...
EUVD-2018-3784
Malware in sbrugna...
EUVD-2002-1614
Malware in sbrugna...
EUVD-2025-24606
Malicious code in bioql PyPI...
CVE-2025-46818
Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lua script to manipulate different LUA objects and potentially run their own code in the context of another user. The problem exists in all versions o...
Malicious code in view-user-code-proxy-emulate (npm)
The package view-user-code-proxy-emulate was found to contain malicious code...
MAL-2025-38374 Malicious code in view-user-code-proxy-emulate (npm)
The package view-user-code-proxy-emulate was found to contain malicious code...
CVE-2025-54187
CVE-2025-54187 applies to Substance3D Painter versions up to 11.0.2, which are affected by an out-of-bounds write vulnerability that could allow arbitrary code execution under the current user. Exploitation requires user interaction: a victim must open a malicious file. Affected vendors list Adob...
CVE-2025-33092
IBM Db2 for Linux 12.1.0, 12.1.1, and 12.1.2 is vulnerable to a stack-based buffer overflow in db2fm, caused by improper bounds checking. A local user could overflow the buffer and execute arbitrary code on the system...
CVE-2025-33112
IBM AIX 7.3 and IBM VIOS 4.1.1 Perl implementation could allow a non-privileged local user to exploit a vulnerability to execute arbitrary code due to improper neutralization of pathname input...
CVE-2025-42993
Summary: CVE-2025-42993 affects SAP S/4HANA (Enterprise Event Enablement). A missing authorization check allows an attacker with access to Inbound Binding Configuration to create an RFC destination and assign a high-privilege user, enabling code execution under that user’s privileges. Impact is l...
CVE-2025-0161
IBM Security Verify Access Appliance (Affecting 10.0.0.0–10.0.9.0 and 11.0.0.0) is vulnerable to local code execution due to improper restrictions on code generation (CWE-94). The IBM Security Bulletin details that a local user could exploit this to execute arbitrary code. Remediation is to upgra...
Mageia: Security Advisory (MGASA-2024-0397)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gogs allows deletion of internal files
Impact Unprivileged user accounts can execute arbitrary commands on the Gogs instance with the privileges of the account specified by RUNUSER in the configuration. It allows attackers to access and alter any users' code hosted on the same instance. Patches Deletion of .git files has been prohibit...
RHEL 6 : spamassassin (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - spamassassin: Local user code injection in the meta rule syntax CVE-2018-11781 - A denial of service...