Lucene search
K

97 matches found

vulnersOsv
vulnersOsv
added 2024/12/05 7:5 p.m.8 views

acir (>=0.44.0 <=0.46.0), age (>=0.9.0 <=0.9.3) +113 more potentially affected by unknown CVE via pprof (>=0.10.1 <=0.13.0)

pprof CARGO version =0.10.1, =0.44.0, =0.9.0, =0.4.2, =0.1.0, =0.3.0, =0.1.2, =0.1.0, =0.1.0, =0.1.0, =0.0.9, =0.1005.0, =0.44.0, =0.46.0 and more Source cves: unknown CVE Source advisory: OSV:GHSA-GW5W-5J7F-JMJJ...

5.7AI score
Exploits0
NVD
NVD
added 2024/10/24 7:15 p.m.25 views

CVE-2024-48139

A prompt injection vulnerability in the chatbox of Blackbox AI v1.3.95 allows attackers to access and exfiltrate all previous and subsequent chat data between the user and the AI assistant via a crafted message...

7.5CVSS0.00477EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/10/24 12:0 a.m.25 views

CVE-2024-48139

A prompt injection vulnerability in the chatbox of Blackbox AI v1.3.95 allows attackers to access and exfiltrate all previous and subsequent chat data between the user and the AI assistant via a crafted message...

0.00477EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/10/24 12:0 a.m.3 views

PT-2024-32998

Name of the Vulnerable Software and Affected Versions Blackbox AI version 1.3.95 Description A prompt injection issue in the chatbox allows attackers to access and exfiltrate all previous and subsequent chat data between the user and the AI assistant via a crafted message. Recommendations For...

7.5CVSS5.8AI score0.00477EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/10/24 12:0 a.m.12 views

CVE-2024-48139

A prompt injection vulnerability in the chatbox of Blackbox AI v1.3.95 allows attackers to access and exfiltrate all previous and subsequent chat data between the user and the AI assistant via a crafted message...

7.3AI score0.00477EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/10/24 12:0 a.m.5 views

Blackbox AI 安全漏洞

Blackbox AI is an AI coding assistant from Blackbox AI, Inc. that helps developers by providing real-time code completion, documentation, and debugging advice. A security vulnerability exists in Blackbox AI version v1.3.95, which stems from a prompt injection in a chat box that allows an attacker...

7.5CVSS7.3AI score0.00477EPSS
Exploits0References2
CVE
CVE
added 2024/10/24 12:0 a.m.67 views

CVE-2024-48139

CVE-2024-48139 describes a prompt-injection vulnerability in the chatbox of Blackbox AI v1.3.95 . The issue allows an attacker to access and exfiltrate all previous and subsequent chat data between the user and the AI assistant through a crafted message. Documents do not provide concrete remediat...

7.5CVSS7.1AI score0.00477EPSS
Exploits0References2
OSV
OSV
added 2024/06/15 12:0 a.m.19 views

OPENSUSE-SU-2024:12904-1 prometheus-blackbox_exporter-0.19.0-13.1 on GA media

These are all security issues fixed in the prometheus-blackboxexporter-0.19.0-13.1 package on the GA media of openSUSE Tumbleweed...

8.8CVSS8.2AI score0.01166EPSS
Exploits1References1
Openbugbounty
Openbugbounty
added 2023/12/19 6:20 p.m.5 views

gps-blackbox.de Improper Access Control vulnerability OBB-3818761

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
Wolfi
Wolfi
added 2023/10/25 9:17 p.m.179 views

GHSA-M425-MQ94-257G vulnerabilities

Vulnerabilities for packages: kubevela, src, terraform-provider-sendgrid, cortex, k3d, slsa-verifier, dgraph, kubescape, kubeflow, up, aactl, prometheus-blackbox-exporter, buildkitd, scorecard, falco, spark-operator...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2023/10/25 9:17 p.m.83 views

GHSA-M425-MQ94-257G vulnerabilities

Vulnerabilities for packages: terraform-provider-sendgrid, kubernetes-csi-livenessprobe, kubernetes-csi-livenessprobe-fips, dynamic-localpv-provisioner-fips, smarter-device-manager-fips, kubeflow-fips, prometheus-adapter-fips, timestamp-authority-fips, slsa-verifier, aws-efs-csi-driver-fips,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2023/10/11 10:15 p.m.2958 views

CVE-2023-39325 vulnerabilities

Vulnerabilities for packages: prometheus-elasticsearch-exporter-fips, oauth2-proxy, chartmuseum, thanos-operator, prometheus-postgres-exporter, k8sgpt-operator, kpt, trust-manager, aws-efs-csi-driver-fips, terraform, bank-vaults-fips, memcached-exporter, aws-efs-csi-driver, nats,...

7.5CVSS6.7AI score0.03796EPSS
Exploits0
Wolfi
Wolfi
added 2023/10/10 9:28 p.m.43 views

GHSA-QPPJ-FM5R-HXR3 vulnerabilities

Vulnerabilities for packages: gke-gcloud-auth-plugin, grype, bom, weaviate, pulumi, amass, secrets-store-csi-driver, newrelic-infrastructure-agent, flux-source-controller, gobuster, spark-operator, coredns, ip-masq-agent, src, cortex, rqlite, haproxy-ingress, skaffold, terraform-provider-azurerm,...

6.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2023/10/10 3:36 p.m.4 views

libqb: Buffer overflow in log_blackbox.c

logblackbox.c in libqb before 2.0.8 allows a buffer overflow via long log messages because the header size is not considered...

9.8CVSS6AI score0.00984EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/08/09 2:7 a.m.4 views

SUSE CVE-2023-39976

logblackbox.c in libqb before 2.0.8 allows a buffer overflow via long log messages because the header size is not considered...

5.9CVSS7.4AI score0.00984EPSS
Exploits0References7
OSV
OSV
added 2023/08/08 6:15 a.m.9 views

AZL-27859 CVE-2023-39976 affecting package libqb 1.0.5-7

logblackbox.c in libqb before 2.0.8 allows a buffer overflow via long log messages because the header size is not considered...

9.8CVSS6.1AI score0.00984EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/08/08 12:0 a.m.3 views

PT-2023-8683 · Libqb +8 · Libqb +8

Name of the Vulnerable Software and Affected Versions: libqb versions prior to 2.0.8 Description: The issue is related to a buffer overflow in the log blackbox.c component of the libqb library. This occurs due to the lack of input size validation when copying data, allowing an attacker to...

10CVSS8AI score0.00984EPSS
Exploits0References62
OSV
OSV
added 2023/08/02 7:11 a.m.3 views

SUSE-SU-2023:3122-1 Security update for SUSE Manager Client Tools

This update fixes the following issues: python-tornado: - Security fixes: CVE-2023-28370: Fixed an open redirect issue in the static file handler bsc1211741 kiwi-desc-saltboot: - Update to version 0.1.1687520761.cefb248 Add osimage cert package to bootstrap for SUSE Linux Enterprise 12 images...

6.1CVSS6.5AI score0.01132EPSS
Exploits0References6
OSV
OSV
added 2023/04/26 12:15 a.m.3 views

DEBIAN-CVE-2023-26735

blackboxexporter v0.23.0 was discovered to contain an access control issue in its probe interface. This vulnerability allows attackers to detect intranet ports and services, as well as download resources. NOTE: this is disputed by third parties because authentication can be configured...

7.5CVSS7.3AI score0.00883EPSS
Exploits0References1
OSV
OSV
added 2023/04/26 12:15 a.m.5 views

UBUNTU-CVE-2023-26735

DISPUTED blackboxexporter v0.23.0 was discovered to contain an access control issue in its probe interface. This vulnerability allows attackers to detect intranet ports and services, as well as download resources. NOTE: this is disputed by third parties because authentication can be configured...

7.5CVSS5.8AI score0.00883EPSS
Exploits0References8
Rows per page
Query Builder