Lucene search
+L

222 matches found

ATTACKERKB
ATTACKERKB
added 2026/01/22 9:2 p.m.4 views

CVE-2025-22234

The fix applied in CVE-2025-22228 inadvertently broke the timing attack mitigation implemented in DaoAuthenticationProvider. This can allow attackers to infer valid usernames or other authentication behavior via response-time differences under certain configurations...

7.4CVSS5.4AI score0.00568EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/01/22 9:2 p.m.449 views

CVE-2025-22234

CVE-2025-22234 is associated with Spring Security’s timing-attack mitigation in DaoAuthenticationProvider. The described issue states that the fix applied in CVE-2025-22228 accidentally broke the mitigation, enabling an attacker to infer usernames or authentication behavior via response-time diff...

5.3CVSS5.5AI score0.00402EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/12/04 12:0 a.m.16 views

A Novel Trust-Based DDoS Cyberattack Detection Model for Smart Business Environments

As the frequency and complexity of Distributed Denial-of-Service DDoS attacks continue to increase, the level of threats posed to Smart Internet of Things SIoT business environments have also increased. These environments generally have several interconnected SIoT systems and devices that are...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2003-0300

Malware in sbrugna...

5CVSS6.4AI score0.01291EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2018-20757

Malware in sbrugna...

7.5CVSS7.6AI score0.01279EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2019-9403

Malware in sbrugna...

5.3CVSS5.6AI score0.00993EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-35807

Malicious code in bioql PyPI...

5.3CVSS5.6AI score0.00799EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-51840

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00709EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.15 views

EUVD-2025-20213

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00371EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-15683

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.01378EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2025-7268

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00297EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-54603

Malicious code in bioql PyPI...

5.3CVSS6.3AI score0.00267EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2023-34875

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.00836EPSS
Exploits1References3
The Hacker News
The Hacker News
added 2025/10/02 11:0 a.m.6 views

How to Close Threat Detection Gaps: Your SOC's Action Plan

Running a SOC often feels like drowning in alerts. Every morning, dashboards light up with thousands of signals; some urgent, many irrelevant. The job is to find the real threats fast enough to keep cases from piling up, prevent analyst burnout, and maintain client or leadership confidence. The...

6.9AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2025/09/17 10:47 a.m.5 views

Security Bulletin: Multiple vulnerabilities in IBM SDK, Java technology affect IBM Tivoli Composite Application Manager for Transactions (Response Time)

Summary IBM SDK, Java Technology Edition is used by IBM Tivoli Composite Application Manager for Transactions Response Time CVE-2025-50106, CVE-2025-30749, CVE-2025-30761, CVE-2025-30754 Vulnerability Details CVEID:CVE-2025-50106 DESCRIPTION: Vulnerability in the Oracle Java SE, Oracle GraalVM fo...

8.1CVSS6.1AI score0.01058EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/09/17 10:41 a.m.19 views

Security Bulletin: Multiple vulnerabilities in IBM SDK, Java technology affect IBM Tivoli Composite Application Manager for Transactions (Response Time)

Summary IBM SDK, Java Technology Edition is used by IBM Tivoli Composite Application Manager for Transactions Response Time CVE-2025-21587, CVE-2025-30698, CVE-2025-4447 Vulnerability Details CVEID:CVE-2025-21587 DESCRIPTION: An unspecified vulnerability in Java SE related to the Server: DDL...

7.8CVSS6.6AI score0.00784EPSS
Exploits0Affected Software1
Packet Storm News
Packet Storm News
added 2025/07/23 12:0 a.m.18 views

Quantifying the ROI of Cyber Threat Intelligence: a Data-Driven Approach

The valuation of Cyber Threat Intelligence CTI remains a persistent challenge due to the problem of negative evidence: successful threat prevention results in non-events that generate minimal observable financial impact, making CTI expenditures difficult to justify within traditional cost-benefit...

6.9AI score
Exploits0
HackRead
HackRead
added 2025/07/16 12:24 p.m.7 views

Cut Response Time with This Free, Powerful Threat Intelligence Service

Disclosure: This article was provided by ANY.RUN. The information and analysis presented are based on their research and findings...

7.1AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/07/09 10:22 a.m.9 views

CVE-2025-6386

The parisneo/lollms repository is affected by a timing attack vulnerability in the authenticateuser function within the lollmsauthentication.py file. This vulnerability allows attackers to enumerate valid usernames and guess passwords incrementally by analyzing response time differences. The...

7.5CVSS7.3AI score0.00371EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2025/07/07 12:30 p.m.9 views

Lord of Large Language Models vulnerable to Observable Discrepancy attack via authenticate_user function

The parisneo/lollms repository is affected by a timing attack vulnerability in the authenticateuser function within the lollmsauthentication.py file. This vulnerability allows attackers to enumerate valid usernames and guess passwords incrementally by analyzing response time differences. The...

7.5CVSS7.4AI score0.00371EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder