Nixpkgs Security Tracker

Login with GitHub

Suggestions search

All statuses
Filter by:
With package: python313Packages.aionanoleaf

Found 7 matching suggestions

Dismissed
Permalink CVE-2025-55251
updated 1 month ago by @mweinelt Activity log
  • Created automatic suggestion 1 month ago
  • @mweinelt dismissed 1 month ago
HCL AION is affected by an Unrestricted File Upload vulnerability

HCL AION is affected by an Unrestricted File Upload vulnerability. This can allow malicious file uploads, potentially resulting in unauthorized code execution or system compromise.

Affected products

AION
  • ==2

Matching in nixpkgs

Package maintainers

not packaged
Dismissed
Permalink CVE-2025-55250
updated 1 month ago by @mweinelt Activity log
  • Created automatic suggestion 1 month ago
  • @mweinelt dismissed 1 month ago
HCL AION is affected by a Technical Error Disclosure vulnerability

HCL AION version 2 is affected by a Technical Error Disclosure vulnerability. This can expose sensitive technical details, potentially resulting in information disclosure or aiding further attacks.

Affected products

AION
  • ==2

Matching in nixpkgs

Package maintainers

Not packaged
Dismissed
Permalink CVE-2025-55249
updated 1 month ago by @mweinelt Activity log
  • Created automatic suggestion 1 month ago
  • @mweinelt dismissed 1 month ago
HCL AION is affected by a Missing Security Response Headers vulnerability.

HCL AION is affected by a Missing Security Response Headers vulnerability. The absence of standard security headers may weaken the application’s overall security posture and increase its susceptibility to common web-based attacks.

Affected products

AION
  • ==2

Matching in nixpkgs

Package maintainers

not packaged
Dismissed
Permalink CVE-2025-52659
updated 1 month ago by @mweinelt Activity log
  • Created automatic suggestion 1 month ago
  • @mweinelt dismissed 1 month ago
HCL AION is affected by a Cacheable HTTP Response vulnerability

HCL AION version 2 is affected by a Cacheable HTTP Response vulnerability. This may lead to unintended storage of sensitive or dynamic content, potentially resulting in unauthorized access or information disclosure.

Affected products

AION
  • ==2

Matching in nixpkgs

Package maintainers

not packaged
Dismissed
Permalink CVE-2025-52661
updated 1 month ago by @mweinelt Activity log
  • Created automatic suggestion 1 month ago
  • @mweinelt dismissed 1 month ago
HCL AION version 2 is affected by a JWT Token …

HCL AION version 2 is affected by a JWT Token Expiry Too Long vulnerability. This may increase the risk of token misuse, potentially resulting in unauthorized access if the token is compromised.

Affected products

AION
  • ==2

Matching in nixpkgs

Package maintainers

not packaged
Dismissed
Permalink CVE-2025-52660
updated 1 month ago by @mweinelt Activity log
  • Created automatic suggestion 1 month ago
  • @mweinelt dismissed 1 month ago
HCL AION is affected by an Host Header Injection vulnerability

HCL AION is affected by an Unrestricted File Upload vulnerability. This can allow malicious file uploads, potentially resulting in unauthorized code execution or system compromise.

Affected products

AION
  • ==2

Matching in nixpkgs

Package maintainers

Not packaged
Untriaged
Permalink CVE-2024-5742
created 5 months ago
Nano: running `chmod` and `chown` on the filename allows malicious user to replace the emergency file with a malicious symlink to a root-owned file

A vulnerability was found in GNU Nano that allows a possible privilege escalation through an insecure temporary file. If Nano is killed while editing, a file it saves to an emergency file with the permissions of the running user provides a window of opportunity for attackers to escalate privileges through a malicious symlink.

Affected products

nano
  • *

Matching in nixpkgs

pkgs.nano

Small, user-friendly console text editor

  • nixos-unstable -

pkgs.nanomq

Ultra-lightweight and blazing-fast MQTT broker for IoT edge

  • nixos-unstable -

pkgs.nanopb

Protocol Buffers with small code size

pkgs.nanorc

Improved Nano Syntax Highlighting Files

pkgs.nanodbc

Small C++ wrapper for the native C ODBC API

  • nixos-unstable -

pkgs.nanomsg

Socket library that provides several common communication patterns

  • nixos-unstable -

pkgs.nanotts

Speech synthesizer commandline utility that improves pico2wave, included with SVOX PicoTTS

pkgs.nanobench

Simple, fast, accurate single-header microbenchmarking functionality for C++11/14/17/20

  • nixos-unstable -

pkgs.nanoemoji

Wee tool to build color fonts

  • nixos-unstable -

pkgs.nanoflann

Header only C++ library for approximate nearest neighbor search

  • nixos-unstable -

pkgs.fusee-nano

Minimalist re-implementation of the Fusée Gelée exploit

pkgs.nano-wallet

Wallet for Nano cryptocurrency

  • nixos-unstable -

pkgs.nanovna-saver

Tool for reading, displaying and saving data from the NanoVNA

  • nixos-unstable -

pkgs.nanoboyadvance

Cycle-accurate Nintendo Game Boy Advance emulator

  • nixos-unstable -

pkgs.python312Packages.pynanoleaf

Python3 wrapper for the Nanoleaf API, capable of controlling both Nanoleaf Aurora and Nanoleaf Canvas

  • nixos-unstable -

pkgs.python313Packages.pynanoleaf

Python3 wrapper for the Nanoleaf API, capable of controlling both Nanoleaf Aurora and Nanoleaf Canvas

  • nixos-unstable -

Package maintainers