North Korea-linked APT targets Job Seekers with macOS malware
The North Korea-linked Lazarus Group has been observed targeting job seekers with macOS malware working also on Intel and M1...
Node.js @uc-maps/tile-layers.react module code execution |
NAME Node.js @uc-maps/tile-layers.react module code execution Platforms Affected:Node.js @uc-maps/tile-layers.reactRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @uc-maps/tile-layers.react module could allow a remote attacker...
Node.js @bigid-ui/components module code execution | CVE-2022-2335
NAME Node.js @bigid-ui/components module code execution Platforms Affected:Node.js @bigid-ui/componentsRisk Level:9.8Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION Node.js @bigid-ui/components module could allow a remote...
Cockpit security bypass | CVE-2022-2818
NAME Cockpit security bypass Platforms Affected:Cockpit Cockpit 2.2.1Risk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Cockpit could allow a remote attacker to bypass security...
Apple macOS code execution | CVE-2022-22630
NAME Apple macOS code execution Platforms Affected:Apple macOS Monterey 12.3Risk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Apple macOS could allow a remote attacker...
Vim buffer overflow | CVE-2022-2819
NAME Vim buffer overflow Platforms Affected:Vim Vim 9.0.0210Risk Level:7.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Vim is vulnerable to a heap-based buffer...
Node.js @uc-maps/provider-google.react module code execution |
NAME Node.js @uc-maps/provider-google.react module code execution Platforms Affected:Node.js @uc-maps/provider-google.reactRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @uc-maps/provider-google.react module could allow a remote attacker...
WWBN AVideo cross-site scripting | CVE-2022-32770
NAME WWBN AVideo cross-site scripting Platforms Affected:WWBN AVideo 11.6 WWBN AVideo dev master commit 3f7c0364Risk Level:9.6Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION WWBN AVideo...
Node.js lznfjbhurpjsqmr module code execution |
NAME Node.js lznfjbhurpjsqmr module code execution Platforms Affected:Node.js lznfjbhurpjsqmrRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js lznfjbhurpjsqmr module could allow a remote attacker...
Node.js node-dvnr module code execution |
NAME Node.js node-dvnr module code execution Platforms Affected:Node.js node-dvnrRisk Level:9.8Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION Node.js node-dvnr module could allow a remote...
Node.js @epc-infra/aurora-stack module code execution |
NAME Node.js @epc-infra/aurora-stack module code execution Platforms Affected:Node.js @epc-infra/aurora-stackRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @epc-infra/aurora-stack module could allow a remote attacker...
Node.js stripe-identity-react-native module code execution |
NAME Node.js stripe-identity-react-native module code execution Platforms Affected:Node.js stripe-identity-react-nativeRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js stripe-identity-react-native module could allow a remote attacker...
Eyes of Network web application cross-site scripting | CVE-2022-38357
NAME Eyes of Network web application cross-site scripting Platforms Affected:Eyes of Network web applicationRisk Level:7.3Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Eyes of Network...
Vim denial of service | CVE-2022-2816
NAME Vim denial of service Platforms Affected:Vim Vim 9.0.0210Risk Level:7.8Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION Vim is vulnerable to a...
Node.js ot-performance module code execution |
NAME Node.js ot-performance module code execution Platforms Affected:Node.js ot-performanceRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js ot-performance module could allow a remote attacker...
Node.js @epc-infra/dns-stack module code execution |
NAME Node.js @epc-infra/dns-stack module code execution Platforms Affected:Node.js @epc-infra/dns-stackRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @epc-infra/dns-stack module could allow a remote attacker...
Node.js tempus-core-services module code execution |
NAME Node.js tempus-core-services module code execution Platforms Affected:Node.js tempus-core-servicesRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js tempus-core-services module could allow a remote attacker...
Node.js pancake-cake-vault module code execution |
NAME Node.js pancake-cake-vault module code execution Platforms Affected:Node.js pancake-cake-vaultRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js pancake-cake-vault module could allow a remote attacker...
Node.js @s3p-js-deep-purple/utils module code execution |
NAME Node.js @s3p-js-deep-purple/utils module code execution Platforms Affected:Node.js @s3p-js-deep-purple/utilsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @s3p-js-deep-purple/utils module could allow a remote attacker...
WWBN AVideo cross-site scripting | CVE-2022-28712
NAME WWBN AVideo cross-site scripting Platforms Affected:WWBN AVideo 11.6 WWBN AVideo dev master commit 3f7c0364Risk Level:9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION WWBN AVideo...
Node.js @epc-infra/edge-stack module code execution |
NAME Node.js @epc-infra/edge-stack module code execution Platforms Affected:Node.js @epc-infra/edge-stackRisk Level:9.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION Node.js @epc-infra/edge-stack module could allow a remote attacker...
Node.js @epc-apps/api-outages module code execution |
NAME Node.js @epc-apps/api-outages module code execution Platforms Affected:Node.js @epc-apps/api-outagesRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @epc-apps/api-outages module could allow a remote attacker...
Vim code execution | CVE-2022-2817
NAME Vim code execution Platforms Affected:Vim Vim 9.0.0210Risk Level:7.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Vim could allow a remote attacker to...
Node.js bsc-library module code execution |
NAME Node.js bsc-library module code execution Platforms Affected:Node.js bsc-libraryRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js bsc-library module could allow a remote attacker...
