48 matches found
Azure File Sync Agent v18.3 Release – August 2025 (KB5063613)
Security Update for Azure File Sync agent version 18.3.0.0. For more details, see the associated Microsoft Knowledge Base article...
PT-2025-30428 · Chaindesk · Chaindesk
Name of the Vulnerable Software and Affected Versions: Chaindesk versions through 2025-05-26 Description: A stored Cross-Site Scripting XSS vulnerability exists in the agent chat component. An attacker can execute arbitrary client-side scripts by creating an AI agent with a system prompt designed...
ATAG: AI-Agent Application Threat Assessment with Attack Graphs
Evaluating the security of multi-agent systems MASs powered by large language models LLMs is challenging, primarily because of the systems' complex internal dynamics and the evolving nature of LLM vulnerabilities. Traditional attack graph AG methods often lack the specific capabilities to model...
CVE-2024-52926
Delinea Privilege Manager before 12.0.2 mishandles the security of the Windows agent...
Open Challenges in Multi-Agent Security: Towards Secure Systems of Interacting AI Agents
Whitepaper called Open Challenges In Multi-Agent Security: Towards Secure Systems Of Interacting AI Agents...
PT-2025-18388 · Elastic · Endpoint Security +1
Name of the Vulnerable Software and Affected Versions: Elastic Agent and Elastic Security Endpoint affected versions not specified Description: Exposure of sensitive information to local unauthorized actors can lead to loss of confidentiality and impersonation of Endpoint to the Elastic Stack. Th...
CVE-2025-27937
Quick Agent V3 and Quick Agent V2 contain an issue with improper limitation of a pathname to a restricted directory 'Path Traversal'. If exploited, an arbitrary file in the affected product may be obtained by a remote attacker who can log in to the product...
SUSE-SU-2025:1143-1 Security update for google-guest-agent
This update for google-guest-agent fixes the following issues: - CVE-2024-45337: golang.org/x/crypto/ssh: Fixed misuse of ServerConfig.PublicKeyCallback leading to authorization bypass bsc1234563. Other fixes: - Updated to version 20250327.01 bsc1239763, bsc1239866 Remove error messages from...
CVE-2025-24864
Incorrect access permission of a specific folder issue exists in RemoteView Agent for Windows versions prior to v8.1.5.2. If this vulnerability is exploited, a non-administrative user on the remote PC may execute an arbitrary OS command with LocalSystem privilege...
Delinea Privilege Manager 安全漏洞
Delinea Privilege Manager is a cloud-based software from Delinea. A security vulnerability exists in Delinea Privilege Manager versions prior to 12.0.2 that stems from incorrectly handling the security of the Windows agent...
Medium: amazon-ssm-agent
Issue Overview: An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request's headers exceed...
OPENSUSE-SU-2024:12104-1 keylime-agent-6.4.0-1.1 on GA media
These are all security issues fixed in the keylime-agent-6.4.0-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:12212-1 zabbix-agent-4.0.42-1.1 on GA media
These are all security issues fixed in the zabbix-agent-4.0.42-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:13068-1 zabbix-agent-6.0.19-1.1 on GA media
These are all security issues fixed in the zabbix-agent-6.0.19-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:11934-1 zabbix-agent-4.0.39-1.1 on GA media
These are all security issues fixed in the zabbix-agent-4.0.39-1.1 package on the GA media of openSUSE Tumbleweed...
PT-2023-5314 · Acronis · Acronis Agent
Name of the Vulnerable Software and Affected Versions: Acronis Agent versions prior to build 32047 Description: The issue is related to insufficient authentication procedure in the backup and recovery software, which may allow an attacker to access confidential information. Specifically, it...
SUSE-SU-2023:2326-1 Security update for amazon-ssm-agent
This update of amazon-ssm-agent fixes the following issues: - rebuild the package with the go 1.19 security release bsc1200441...
SUSE-SU-2023:1815-1 Security update for amazon-ssm-agent
This update for amazon-ssm-agent fixes the following issue: - rebuilt using go1.19.7 to fix bugs and security issues...
CVE-2023-27593 cilium-agent container can access the host via `hostPath` mount
Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.11.15, 1.12.8, and 1.13.1, an attacker with access to a Cilium agent pod can write to /opt/cni/bin due to a hostPath mount of that directory in the agent pod. By replacing the CNI binary...
Trellix Agent 安全漏洞
Trellix Agent is a client component of FireEye USA Trellix, Inc. provides secure communication between McAfee ePolicy Orchestrator McAfee ePO and hosted products. A security vulnerability exists in versions of Trellix Agent prior to V35.31.22, which stems from the fact that it allows a local user...