Lucene search
K

241 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/06/15 8:41 p.m.4 views

Security Bulletin: MongoDB Enterprised Advanced affected by: Time-of-check Time-of-use (TOCTOU) Race Condition (CVE-2026-22751)

Summary There are vulnerabilities in spring-security-core-6.5.9.jar used in MongoDB Enterprised Advanced for IBM, involving CVE-2026-22751. The vulnerability has been addressed. Vulnerability Details CVEID:CVE-2026-22751 DESCRIPTION: Vulnerability in Spring Spring Security. Applications that...

4.8CVSS5.2AI score0.00124EPSS
Exploits0Affected Software1
OSV
OSV
added 2026/06/11 4:15 p.m.9 views

SUSE-SU-2026:2380-1 Security update for hplip

This update for hplip fixes the following issues Update to HPLIP 3.26.4: Security issues: - CVE-2025-43023: weak code signing DSA key used to generate package signatures can lead to key spoofing and malicious software installation bsc1266031. - CVE-2026-8631: escalation of privileges and/or...

9.8CVSS6.3AI score0.01333EPSS
Exploits0References12
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/31 1:37 p.m.12 views

Security Bulletin: IBM InfoSphere Optim Archive Viewer is affected by a vulnerability in minimatch (CVE-2026-26996)

Summary A Regular Expression Denial of Service ReDoS vulnerability in the minimatch pattern matching library CVE-2026-26996 used by IBM InfoSphere Optim Archive Viewer has been addressed by upgrading the library to version 5.1.8. Vulnerability Details CVEID:CVE-2026-26996 DESCRIPTION: minimatch i...

8.7CVSS5.7AI score0.00519EPSS
Exploits1Affected Software1
Schneier on Security
Schneier on Security
added 2026/04/13 4:52 p.m.5 views

On Anthropic’s Mythos Preview and Project Glasswing

The cybersecurity industry is obsessing over Anthropic's new model, Claude Mythos Preview, and its effects on cybersecurity. Anthropic said that it is not releasing it to the general public because of its cyberattack capabilities, and has launched Project Glasswing to run the model against a whol...

5.8AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/02 2:34 p.m.6 views

Security Bulletin: Common Vulnerability fixed in latest releases of Cloudera Data Platform Private Cloud Base

Summary Common Vulnerability fixed in latest releases of Cloudera Data Platform Private Cloud Base Vulnerability Details CVEID:CVE-2021-23337 DESCRIPTION: Lodash versions prior to 4.17.21 are vulnerable to Command Injection via the template function. CWE:CWE-94: Improper Control of Generation of...

7.2CVSS6AI score0.2241EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/02/24 10:29 p.m.7 views

Security Bulletin: MongoDB Enterprised Advanced affected by: Allocation of Resources Without Limits or Throttling vulnerability (CVE-2025-8885)

Summary There is a vulnerability in bc-fips-1.0.2.5.jar used in MongoDB Enterprised Advanced for IBM, involving CVE-2025-8885. The vulnerability has/vulnerabilities have been addressed. Vulnerability Details CVEID:CVE-2025-8885 DESCRIPTION: Allocation of Resources Without Limits or Throttling...

6.3CVSS5.5AI score0.00505EPSS
Exploits0Affected Software1
Schneier on Security
Schneier on Security
added 2025/12/29 12:7 p.m.5 views

Are We Ready to Be Governed by Artificial Intelligence?

Artificial Intelligence AI overlords are a common trope in science-fiction dystopias, but the reality looks much more prosaic. The technologies of artificial intelligence are already pervading many aspects of democratic government, affecting our lives in ways both large and small. This has occurr...

6.8AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/29 8:35 a.m.4 views

Security Bulletin: CVE-2025-46801 - Pgpool-II Authentication Bypass

Summary Pgpool-II contains an authentication bypass vulnerability that can be exploited under certain conditions. If an attacker exploits the vulnerability they may be able to log in to the system as an arbitrary user, which could allow them to read or tamper with data in the database, and/or...

9.8CVSS9.3AI score0.00791EPSS
Exploits0Affected Software2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2005-2087

Malware in sbrugna...

5CVSS6.4AI score0.02628EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-4838

Malware in sbrugna...

9.3CVSS6.5AI score0.04868EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-9726

Malware in sbrugna...

7.5CVSS7.6AI score0.00926EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2006-2762

Malware in sbrugna...

2.6CVSS6.4AI score0.0122EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-47495

Malicious code in bioql PyPI...

5.9CVSS5.9AI score0.00147EPSS
Exploits0References3
Akamai Blog
Akamai Blog
added 2025/10/03 12:0 p.m.3 views

Identity-Centric Security: ICAM as a Mission Advantage

...

7AI score
Exploits0
Schneier on Security
Schneier on Security
added 2025/10/02 4:19 p.m.4 views

Daniel Miessler on the AI Attack/Defense Balance

His conclusion: Context wins Basically whoever can see the most about the target, and can hold that picture in their mind the best, will be best at finding the vulnerabilities the fastest and taking advantage of them. Or, as the defender, applying patches or mitigations the fastest. And if you’re...

7AI score
Exploits0
CNNVD
CNNVD
added 2025/09/29 12:0 a.m.3 views

IBM License Metric Tool 访问控制错误漏洞

The IBM License Metric Tool is a free tool from International Business Machines IBM that helps IBM Passport Advantage Software Upgrade and Support Services customers determine their Processor Value Unit PVU licensing needs. An Access Control Error vulnerability exists in IBM License Metric Tool...

4.3CVSS6.5AI score0.00222EPSS
Exploits0References1
OSV
OSV
added 2025/08/14 6:52 p.m.3 views

MAL-2025-32076 Malicious code in RentalAdvantage (npm)

The package RentalAdvantage was found to contain malicious code...

7.2AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/07/05 12:0 a.m.4 views

Quantum Protocols for Rabin Oblivious Transfer

Rabin oblivious transfer is the cryptographic task where Alice wishes to receive a bit from Bob but it may get lost with probability 1/2. In this work, we provide protocol designs which yield quantum protocols with improved security. Moreover, we provide a constant lower bound on any quantum...

6.7AI score
Exploits0
CNNVD
CNNVD
added 2025/06/25 12:0 a.m.3 views

Hexagon HxGN OnCall Dispatch Advantage 跨站脚本漏洞

Hexagon HxGN OnCall Dispatch Advantage is a software suite for event management and dispatch from Hexagon Sweden. A security vulnerability exists in Hexagon HxGN OnCall Dispatch Advantage that stems from a cross-site scripting vulnerability that could lead to the execution of arbitrary code...

4.6CVSS6.3AI score0.00249EPSS
Exploits0References4
Packet Storm News
Packet Storm News
added 2025/06/22 12:0 a.m.3 views

Quantum Machine Learning

The meteoric rise of artificial intelligence in recent years has seen machine learning methods become ubiquitous in modern science, technology, and industry. Concurrently, the emergence of programmable quantum computers, coupled with the expectation that large-scale fault-tolerant machines will...

6.8AI score
Exploits0
Rows per page
Query Builder