ae.teletronics.nlp:entityextraction (=1.3), ae.teletronics.nlp:w2vec (=1.0) +1722 more potentially affected by CVE-2025-54920 via org.apache.spark:spark-core_2.11 (>=1.2.0 <=2.4.8)

org.apache.spark:spark-core2.11 MAVEN version =1.2.0, =0.25-rc1, =0.25, =0.25, =0.0.25, =0.0.25, =0.0.25, =0.0.86, =local, =0.0.1, =0.42.1, =1.4.1, =1.4.3 - ai.grakn:grakn-dist =1.4.1 and more Source cves: CVE-2025-54920 Source advisory: OSV:GHSA-JWP6-CVJ8-FW65...

"Vcd2df" -- Leveraging Data Science Insights for Hardware Security Research

In this work, we hope to expand the universe of security practitioners of open-source hardware by creating a bridge from hardware design languages HDLs to data science languages like Python and R through novel libraries that convert VCD value change dump files into data frames, the expected input...

Spark Information Disclosure Vulnerability

Spark is a lightweight Java web framework that allows you to quickly create web applications with minimal effort. Spark before 2.7.2 suffers from an information disclosure vulnerability. A remote attacker can exploit the vulnerability to read unintended static files via various representations of...

Spark Arbitrary File Read Vulnerability

Spark is a miniature Java Web framework designed to let you create a Java Web application with minimal effort. An arbitrary file read vulnerability exists in Spark version 2.5, which can be exploited by an attacker to gain access to sensitive system information and launch further attacks...

Spark Directory Traversal Vulnerability

Spark is a set of lightweight framework for creating Web applications. A directory traversal vulnerability exists in Spark version 2.5. A remote attacker can leverage the directory traversal character in the URI '... /' in a URI to read arbitrary files...