97 matches found
acir (>=0.44.0 <=0.46.0), age (>=0.9.0 <=0.9.3) +113 more potentially affected by unknown CVE via pprof (>=0.10.1 <=0.13.0)
pprof CARGO version =0.10.1, =0.44.0, =0.9.0, =0.4.2, =0.1.0, =0.3.0, =0.1.2, =0.1.0, =0.1.0, =0.1.0, =0.0.9, =0.1005.0, =0.44.0, =0.46.0 and more Source cves: unknown CVE Source advisory: OSV:GHSA-GW5W-5J7F-JMJJ...
CVE-2024-48139
A prompt injection vulnerability in the chatbox of Blackbox AI v1.3.95 allows attackers to access and exfiltrate all previous and subsequent chat data between the user and the AI assistant via a crafted message...
CVE-2024-48139
A prompt injection vulnerability in the chatbox of Blackbox AI v1.3.95 allows attackers to access and exfiltrate all previous and subsequent chat data between the user and the AI assistant via a crafted message...
PT-2024-32998
Name of the Vulnerable Software and Affected Versions Blackbox AI version 1.3.95 Description A prompt injection issue in the chatbox allows attackers to access and exfiltrate all previous and subsequent chat data between the user and the AI assistant via a crafted message. Recommendations For...
CVE-2024-48139
A prompt injection vulnerability in the chatbox of Blackbox AI v1.3.95 allows attackers to access and exfiltrate all previous and subsequent chat data between the user and the AI assistant via a crafted message...
Blackbox AI 安全漏洞
Blackbox AI is an AI coding assistant from Blackbox AI, Inc. that helps developers by providing real-time code completion, documentation, and debugging advice. A security vulnerability exists in Blackbox AI version v1.3.95, which stems from a prompt injection in a chat box that allows an attacker...
CVE-2024-48139
CVE-2024-48139 describes a prompt-injection vulnerability in the chatbox of Blackbox AI v1.3.95 . The issue allows an attacker to access and exfiltrate all previous and subsequent chat data between the user and the AI assistant through a crafted message. Documents do not provide concrete remediat...
OPENSUSE-SU-2024:12904-1 prometheus-blackbox_exporter-0.19.0-13.1 on GA media
These are all security issues fixed in the prometheus-blackboxexporter-0.19.0-13.1 package on the GA media of openSUSE Tumbleweed...
gps-blackbox.de Improper Access Control vulnerability OBB-3818761
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
GHSA-M425-MQ94-257G vulnerabilities
Vulnerabilities for packages: kubevela, src, terraform-provider-sendgrid, cortex, k3d, slsa-verifier, dgraph, kubescape, kubeflow, up, aactl, prometheus-blackbox-exporter, buildkitd, scorecard, falco, spark-operator...
GHSA-M425-MQ94-257G vulnerabilities
Vulnerabilities for packages: terraform-provider-sendgrid, kubernetes-csi-livenessprobe, kubernetes-csi-livenessprobe-fips, dynamic-localpv-provisioner-fips, smarter-device-manager-fips, kubeflow-fips, prometheus-adapter-fips, timestamp-authority-fips, slsa-verifier, aws-efs-csi-driver-fips,...
CVE-2023-39325 vulnerabilities
Vulnerabilities for packages: prometheus-elasticsearch-exporter-fips, oauth2-proxy, chartmuseum, thanos-operator, prometheus-postgres-exporter, k8sgpt-operator, kpt, trust-manager, aws-efs-csi-driver-fips, terraform, bank-vaults-fips, memcached-exporter, aws-efs-csi-driver, nats,...
GHSA-QPPJ-FM5R-HXR3 vulnerabilities
Vulnerabilities for packages: gke-gcloud-auth-plugin, grype, bom, weaviate, pulumi, amass, secrets-store-csi-driver, newrelic-infrastructure-agent, flux-source-controller, gobuster, spark-operator, coredns, ip-masq-agent, src, cortex, rqlite, haproxy-ingress, skaffold, terraform-provider-azurerm,...
libqb: Buffer overflow in log_blackbox.c
logblackbox.c in libqb before 2.0.8 allows a buffer overflow via long log messages because the header size is not considered...
SUSE CVE-2023-39976
logblackbox.c in libqb before 2.0.8 allows a buffer overflow via long log messages because the header size is not considered...
AZL-27859 CVE-2023-39976 affecting package libqb 1.0.5-7
logblackbox.c in libqb before 2.0.8 allows a buffer overflow via long log messages because the header size is not considered...
PT-2023-8683 · Libqb +8 · Libqb +8
Name of the Vulnerable Software and Affected Versions: libqb versions prior to 2.0.8 Description: The issue is related to a buffer overflow in the log blackbox.c component of the libqb library. This occurs due to the lack of input size validation when copying data, allowing an attacker to...
SUSE-SU-2023:3122-1 Security update for SUSE Manager Client Tools
This update fixes the following issues: python-tornado: - Security fixes: CVE-2023-28370: Fixed an open redirect issue in the static file handler bsc1211741 kiwi-desc-saltboot: - Update to version 0.1.1687520761.cefb248 Add osimage cert package to bootstrap for SUSE Linux Enterprise 12 images...
DEBIAN-CVE-2023-26735
blackboxexporter v0.23.0 was discovered to contain an access control issue in its probe interface. This vulnerability allows attackers to detect intranet ports and services, as well as download resources. NOTE: this is disputed by third parties because authentication can be configured...
UBUNTU-CVE-2023-26735
DISPUTED blackboxexporter v0.23.0 was discovered to contain an access control issue in its probe interface. This vulnerability allows attackers to detect intranet ports and services, as well as download resources. NOTE: this is disputed by third parties because authentication can be configured...