EUVD-2018-2250

Malware in sbrugna...

EUVD-2025-18177

Malicious code in bioql PyPI...

Fedora 43 : python-uv-build / rust-gitui / rust-gstreamer / rust-ron / etc (2025-1311e4cd58)

The remote Fedora 43 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-1311e4cd58 advisory. Update rust-ron to 0.9. Update rust-zip to 2.6.1, fixing GHSA-94vh-gphv-8pm8. Tenable has extracted the preceding description block directly from the Fedora...

CVE-2025-49199

The backup ZIPs are not signed by the application, leading to the possibility that an attacker can download a backup ZIP, modify and re-upload it. This allows the attacker to disrupt the application by configuring the services in a way that they are unable to run, making the application unusable...

7-Zip bug could allow a bypass of a Windows security feature. Update now

A patch is available for a vulnerability in 7-Zip that could have allowed attackers to bypass the Mark-of-the-Web MotW security feature in Windows. The MotW is an attribute added to files by Windows when they have been sourced from an untrusted location, like the internet or a restricted zone. Th...

PT-2024-1636 · Unknown · Pixee Java Code Security Toolkit

Name of the Vulnerable Software and Affected Versions: Pixee Java Code Security Toolkit versions =1.1.1 Description: The issue is related to a partial-path traversal bypass vulnerability in the ZipSecurityisBelowCurrentDirectory function. This vulnerability allows attackers to "escape" into sibli...

SUSE-SU-2018:2386-1 Security update for perl-Archive-Zip

This update for perl-Archive-Zip fixes the following security issue: - CVE-2018-10860: Prevent directory traversal caused by not properly sanitizing paths while extracting zip files. An attacker able to provide a specially crafted archive for processing could have used this flaw to write or...

DLA-1467-1 ruby-zip - security update

Bulletin has no description...