21 matches found
Malicious code in viaduct-ziggurat-z3f1 (npm)
The package viaduct-ziggurat-z3f1 was found to contain malicious code...
MAL-2025-38291 Malicious code in viaduct-kayak-t196 (npm)
The package viaduct-kayak-t196 was found to contain malicious code...
MAL-2025-19981 Malicious code in evergreen-viaduct-pqpx (npm)
The package evergreen-viaduct-pqpx was found to contain malicious code...
Malicious code in viaduct-kayak-t196 (npm)
The package viaduct-kayak-t196 was found to contain malicious code...
MAL-2025-38293 Malicious code in viaduct-ziggurat-z3f1 (npm)
The package viaduct-ziggurat-z3f1 was found to contain malicious code...
MAL-2025-38292 Malicious code in viaduct-quebec-p85e (npm)
The package viaduct-quebec-p85e was found to contain malicious code...
Malicious code in elderberry-viaduct-qj17 (npm)
The package elderberry-viaduct-qj17 was found to contain malicious code...
Malicious code in xray-viaduct-s4mo (npm)
The package xray-viaduct-s4mo was found to contain malicious code...
Malicious code in ginger-viaduct-jse0 (npm)
The package ginger-viaduct-jse0 was found to contain malicious code...
Malicious code in strawberry-viaduct-rk25 (npm)
The package strawberry-viaduct-rk25 was found to contain malicious code...
Malicious code in evergreen-viaduct-pqpx (npm)
The package evergreen-viaduct-pqpx was found to contain malicious code...
MAL-2025-21421 Malicious code in ginger-viaduct-jse0 (npm)
The package ginger-viaduct-jse0 was found to contain malicious code...
MAL-2025-39977 Malicious code in xray-viaduct-s4mo (npm)
The package xray-viaduct-s4mo was found to contain malicious code...
Malicious code in viaduct-quebec-p85e (npm)
The package viaduct-quebec-p85e was found to contain malicious code...
MAL-2025-34070 Malicious code in strawberry-viaduct-rk25 (npm)
The package strawberry-viaduct-rk25 was found to contain malicious code...
MAL-2025-19367 Malicious code in elderberry-viaduct-qj17 (npm)
The package elderberry-viaduct-qj17 was found to contain malicious code...
GO-2022-0512 DoS in KubeEdge's Websocket Client in package Viaduct in github.com/kubeedge/kubeedge
DoS in KubeEdge's Websocket Client in package Viaduct in github.com/kubeedge/kubeedge...
Design/Logic Flaw
KubeEdge is an open source system for extending native containerized application orchestration capabilities to hosts at Edge. Prior to versions 1.11.1, 1.10.2, and 1.9.4, a large response received by the viaduct WSClient can cause a DoS from memory exhaustion. The entire body of the response is...
DoS in KubeEdge's Websocket Client in package Viaduct
Impact A large response received by the viaduct WSClient can cause a DoS from memory exhaustion. The entire body of the response is being read into memory which could allow an attacker to send a request that returns a response with a large body. The consequence of the exhaustion is that the proce...
GHSA-6WVC-6PWW-QR4R DoS in KubeEdge's Websocket Client in package Viaduct
Impact A large response received by the viaduct WSClient can cause a DoS from memory exhaustion. The entire body of the response is being read into memory which could allow an attacker to send a request that returns a response with a large body. The consequence of the exhaustion is that the proce...