Lucene search
K

984 matches found

Packet Storm News
Packet Storm News
added 2025/11/19 12:0 a.m.6 views

TopoReformer: Mitigating Adversarial Attacks Using Topological Purification in OCR Models

Adversarially perturbed images of text can cause sophisticated OCR systems to produce misleading or incorrect transcriptions from seemingly invisible changes to humans. Some of these perturbations even survive physical capture, posing security risks to high-stakes applications such as document...

6.6AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/11/16 12:0 a.m.8 views

T2I-Based Physical-World Appearance Attack against Traffic Sign Recognition Systems in Autonomous Driving

Traffic Sign Recognition TSR systems play a critical role in Autonomous Driving AD systems, enabling real-time detection of road signs, such as STOP and speed limit signs. While these systems are increasingly integrated into commercial vehicles, recent research has exposed their vulnerability to...

6.9AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2025/11/15 11:30 a.m.14 views

A Major Leak Spills a Chinese Hacking Contractor’s Tools and Targets

Plus: State-sponsored AI hacking is here, Google hosts a CBP face recognition app, and more of the week’s top security news...

7AI score
Exploits0
Cvelist
Cvelist
added 2025/11/11 5:59 p.m.6 views

CVE-2025-59509 Windows Speech Recognition Information Disclosure Vulnerability

...

5.5CVSS0.00541EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/11 5:59 p.m.2 views

CVE-2025-59509 Windows Speech Recognition Information Disclosure Vulnerability

...

5.5CVSS5.4AI score0.00541EPSS
Exploits0References1
CVE
CVE
added 2025/11/11 5:59 p.m.22 views

CVE-2025-59509

CVE-2025-59509 affects Windows Speech, with the issue described as insertion of sensitive information into data sent by Windows Speech. The impact is local disclosure of information to an authorized attacker. The Connected documents confirm Windows-related fixes and hotpatch updates, but do not p...

5.5CVSS5AI score0.00541EPSS
Exploits0References1Affected Software10
Cvelist
Cvelist
added 2025/11/11 5:59 p.m.7 views

CVE-2025-59508 Windows Speech Recognition Elevation of Privilege Vulnerability

...

7CVSS0.00241EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/11 5:59 p.m.2 views

CVE-2025-59508 Windows Speech Recognition Elevation of Privilege Vulnerability

...

7CVSS6.6AI score0.00241EPSS
Exploits0References1
CVE
CVE
added 2025/11/11 5:59 p.m.22 views

CVE-2025-59508

CVE-2025-59508 is reported in Windows Speech as a race-condition in concurrent execution on a shared resource, enabling local privilege escalation for an authorized attacker. The connected NCSC advisory lists Windows Speech CVE-2025-59508 with an impact of obtaining increased rights. Public detai...

7CVSS5.4AI score0.00241EPSS
Exploits0References1Affected Software12
Microsoft CVE
Microsoft CVE
added 2025/11/11 8:0 a.m.4 views

Windows Speech Recognition Information Disclosure Vulnerability

Insertion of sensitive information into sent data in Windows Speech allows an authorized attacker to disclose information locally...

5.5CVSS5.2AI score0.00541EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/11/11 8:0 a.m.3 views

Windows Speech Recognition Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Speech allows an authorized attacker to elevate privileges locally...

7CVSS5.6AI score0.00241EPSS
Exploits0
Packet Storm News
Packet Storm News
added 2025/11/09 12:0 a.m.10 views

A Visual Perception-Based Tunable Framework and Evaluation Benchmark for H.265/HEVC ROI Encryption

ROI selective encryption, as an efficient privacy protection technique, encrypts only the key regions in the video, thereby ensuring security while minimizing the impact on coding efficiency. However, existing ROI-based video encryption methods suffer from insufficient flexibility and lack of a...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/11/05 12:0 a.m.9 views

Smartphone User Fingerprinting on Wireless Traffic

Due to the openness of the wireless medium, smartphone users are susceptible to user privacy attacks, where user privacy information is inferred from encrypted Wi-Fi wireless traffic. Existing attacks are limited to recognizing mobile apps and their actions and cannot infer the smartphone user...

6.5AI score
Exploits0
Vulnrichment
Vulnrichment
added 2025/11/04 6:43 p.m.5 views

CVE-2025-12108 Missing Authentication for Critical Function Survision License Plate Recognition Camera

The Survision LPR Camera system does not enforce password protection by default. This allows access to the configuration wizard immediately without a login prompt or credentials check...

9.3CVSS6.6AI score0.0044EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/04 6:43 p.m.29 views

CVE-2025-12108 Missing Authentication for Critical Function Survision License Plate Recognition Camera

The Survision LPR Camera system does not enforce password protection by default. This allows access to the configuration wizard immediately without a login prompt or credentials check...

9.3CVSS0.0044EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/04 12:0 a.m.17 views

Survision LPR Camera 访问控制错误漏洞

Survision LPR Camera is a license plate recognition camera from Survision France. An access control error vulnerability exists in Survision LPR Camera that stems from password protection not being enforced by default, which could lead to unauthorized access...

9.3CVSS6.7AI score0.0044EPSS
Exploits0References2
Malwarebytes
Malwarebytes
added 2025/11/03 3:30 p.m.7 views

Would you sext ChatGPT? (Lock and Code S06E22)

This week on the Lock and Code podcast … In the final, cold winter months of the year, ChatGPT could be heating up. On October 14, OpenAI CEO Sam Altman said that the "restrictions" that his company previously placed on their flagship product, ChatGPT, would be removed, allowing, perhaps, for...

7AI score
Exploits0
CVE
CVE
added 2025/10/30 2:12 p.m.22 views

CVE-2025-43027

CVE-2025-43027 affects Genetec Security Center, with a critical issue in the ALPR Manager role that could allow an attacker to gain administrative access to the system. Public descriptions cite a base score of 9.8 (CVSS v3.1) and network, unauthenticated, no-user-interaction exploitability, causi...

9.8CVSS6.7AI score0.0033EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2025/10/30 12:0 a.m.9 views

CyberNER: A Harmonized STIX Corpus for Cybersecurity Named Entity Recognition

Extracting structured intelligence via Named Entity Recognition NER is critical for cybersecurity, but the proliferation of datasets with incompatible annotation schemas hinders the development of comprehensive models. While combining these resources is desirable, we empirically demonstrate that...

7AI score
Exploits0
Positive Technologies
Positive Technologies
added 2025/10/30 12:0 a.m.4 views

PT-2025-44402

Name of the Vulnerable Software and Affected Versions Genetec Security Center affected versions not specified Description A critical severity issue has been identified in the ALPR Manager role of Security Center that could allow attackers to gain administrative access to the Genetec Security Cent...

9.8CVSS6.7AI score0.0033EPSS
Exploits0References8
Rows per page
Query Builder