Malicious code in ve-hemi-rewards (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8252216c6621e6391775d34f5e32815ab8c2a830df080fed52113b4cf855aa1 On npm install, the package's preinstall lifecycle invokes postinstall.js, which collects hostname, username, and current working directory, then...

MAL-2026-5785 Malicious code in ve-hemi-rewards (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8252216c6621e6391775d34f5e32815ab8c2a830df080fed52113b4cf855aa1 On npm install, the package's preinstall lifecycle invokes postinstall.js, which collects hostname, username, and current working directory, then...

CVE-2026-40618

When an SSL profile is configured on a virtual server on BIG-IP Virtual Edition VE without Intel QuickAssist Technology QAT or on BIG-IP hardware platforms with the database variable crypto.hwacceleration set to disabled, undisclosed traffic can cause the Traffic Management Microkernel TMM to...

PT-2026-40650

Name of the Vulnerable Software and Affected Versions BIG-IP Virtual Edition VE affected versions not specified BIG-IP hardware platforms affected versions not specified Description Undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate when an SSL profile is configured...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: x86/tdx: Panics occur in cases of incorrect configurations involving access to “private” memory, resulting in a VE exception. All normal kernel memory is considered “TDX private memory”. This includes everything, from kernel...

homelab-security

Cybersecurity Home Lab A personal home lab built for hands-on...

agentiq-semantic-kernel (>=1.0.0 <=1.1.0a20250428), agixt (>=1.1.76b0 <=1.3.71) +9 more potentially affected by CVE-2026-25592 via semantic-kernel (>=0.2.9.dev0 <=1.35.3)

semantic-kernel PYPI version =0.2.9.dev0, =1.0.0, =1.1.76b0, =1.1.0, =0.1.1, =0.1.0, =0.3.0, =1.2.0, =0.2.0, =0.0.1, =1.0.0, =1.0.9 Source cves: CVE-2026-25592 Source advisory: OSV:GHSA-2WW3-72RP-WPP4...

Terraform / OpenTofu Provider for Proxmox VE 安全漏洞

Terraform/OpenTofu Provider for Proxmox VE is a software developed by Pavel Boldyrev. Versions of Terraform/OpenTofu Provider for Proxmox VE prior to 0.93.1 contained security vulnerabilities. These vulnerabilities stemmed from insecure sudoer lines in the SSH configuration files, which could lea...

CVE-2025-61656

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation VisualEditor. This vulnerability is associated with program files src/ce/ve.Ce.ClipboardHandler.Js. This issue affects VisualEditor: from before 1.39.14, 1.43.4, 1.44.1...

Malicious Package

Overview ve-hemi-actions is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

Malicious code in ve-hemi-actions (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1ce1c8c14c652c22fede3ed26692b173255af2cebbbfe34e91d78ade7b5f9eb The package ve-hemi-actions was found to contain malicious code. Source: ghsa-malware 13edaf6e255d735724b90e45ce9e8ab5c1d6e0f0474ca23ed567341e4a08183...

EUVD-2025-37264

Malicious code in ve-hemi-actions npm...

MAL-2025-49273 Malicious code in ve-hemi-actions (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1ce1c8c14c652c22fede3ed26692b173255af2cebbbfe34e91d78ade7b5f9eb The package ve-hemi-actions was found to contain malicious code. Source: ghsa-malware 13edaf6e255d735724b90e45ce9e8ab5c1d6e0f0474ca23ed567341e4a08183...

EUVD-2019-9315

Malware in sbrugna...

EUVD-2009-3049

Malware in sbrugna...

EUVD-2009-3048

Malware in sbrugna...

EUVD-2014-4087

Malware in sbrugna...

EUVD-2025-27408

Malicious code in bioql PyPI...

CVE-2025-41064 Incorrect authentication in GTT´s group OpenSIAC

Incorrect authentication vulnerability in OpenSIAC, which could allow an attacker to impersonate a person using Cl@ve as an authentication method...

Fixing Restore Failures Due to QEMU Machine Version

Challenge When attempting to restore a VM with a QEMU version lower than 10 and disks in QCOW2 format to a Proxmox VE v9 node, the following error occurs: 16.09.2025 10:25:28 Error Linux-8.0 : Failed to reach the hypervisor. Error output: storage for 'local-LVM:vm-42-disk-1.qcow2' is configured...