ownCloud < 10.15.2 Phar Stream Wrapper Vulnerability

ownCloud is prone to a phar stream wrapper vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:owncloud:owncloud"; if...

Exploit for CVE-2025-66478

Check for CVE-2025-66478 Checks if your NextJS server is vulne...

USN-7909-2 linux-intel-iot-realtime, linux-realtime vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S39...

GHSA-2FJW-WHXM-9V4Q libnftnl has Heap-based Buffer Overflow in nftnl::Batch::with_page_size (nftnl-rs)

A heap-buffer-overflow vulnerability exists in the Rust wrapper for libnftnl, triggered via the nftnl::Batch::withpagesize constructor. When a small or malformed page size is provided, the underlying C code allocates an insufficient buffer, leading to out-of-bounds writes during batch...

libnftnl has Heap-based Buffer Overflow in nftnl::Batch::with_page_size (nftnl-rs)

A heap-buffer-overflow vulnerability exists in the Rust wrapper for libnftnl, triggered via the nftnl::Batch::withpagesize constructor. When a small or malformed page size is provided, the underlying C code allocates an insufficient buffer, leading to out-of-bounds writes during batch...

EUVD-2025-199256

Malicious code in solomon-v3-ui-wrapper npm...

MAL-2025-191429 Malicious code in solomon-v3-ui-wrapper (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbc1913e7f746026b2bdfcb099e4e6cc55dd56a41c2a5cf50bfc9e9ce075b75e The package solomon-v3-ui-wrapper was found to contain malicious code. Source: ghsa-malware...

Malicious code in solomon-v3-ui-wrapper (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbc1913e7f746026b2bdfcb099e4e6cc55dd56a41c2a5cf50bfc9e9ce075b75e The package solomon-v3-ui-wrapper was found to contain malicious code. Source: ghsa-malware...

kinvey-flex-scripts (>=0.1.8 <=0.5.0) potentially affected by unknown CVE via kinvey-cli-wrapper (>=0.0.2 <=0.3.0)

kinvey-cli-wrapper NPM version =0.0.2, =0.1.8, =0.5.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-191118...

Malicious code in kinvey-cli-wrapper (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0cd908bc42e771527ecff3b0ef336122eb8d484f23f0402f511ca30dcb7b37dc The package kinvey-cli-wrapper was found to contain malicious code. Source: ghsa-malware...

EUVD-2025-199129

Malicious code in kinvey-cli-wrapper npm...

MAL-2025-191118 Malicious code in kinvey-cli-wrapper (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0cd908bc42e771527ecff3b0ef336122eb8d484f23f0402f511ca30dcb7b37dc The package kinvey-cli-wrapper was found to contain malicious code. Source: ghsa-malware...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

EUVD-2025-198870

Malicious code in @ensdomains/name-wrapper npm...

Malicious code in @ensdomains/name-wrapper (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0cfefd8b0b2d182a283e0934b365d98833a12639552eab96ebe6b69572c15c0d The package @ensdomains/name-wrapper was found to contain malicious code. Source: ghsa-malware...

MAL-2025-190807 Malicious code in @ensdomains/name-wrapper (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0cfefd8b0b2d182a283e0934b365d98833a12639552eab96ebe6b69572c15c0d The package @ensdomains/name-wrapper was found to contain malicious code. Source: ghsa-malware...

CVE-2025-64182

A memory-safety vulnerability has been identified in the Python bindings of OpenEXR, where improper checks on image channels and attribute stealing operations may result in buffer overflow when processing crafted EXR files or Python objects. An attacker supplying a malicious EXR file or crafted...

GO-2025-4119 AWS Advanced Go Wrapper: Privilege Escalation in Aurora PostgreSQL Instance in github.com/aws/aws-advanced-go-wrapper/awssql

AWS Advanced Go Wrapper: Privilege Escalation in Aurora PostgreSQL Instance in github.com/aws/aws-advanced-go-wrapper/awssql...

EUVD-2025-180214

AWS Advanced NodeJS Wrapper: Privilege Escalation in Aurora PostgreSQL instance...