amf 缓冲区错误漏洞

AMF is a control plane function in the Aether SD-Core Project’s open-source 5G core network. Versions of AMF prior to 2.1.1 contained a buffer error vulnerability. This vulnerability originates from the PDUSessionResourceModifyIndication function in the /go/src/amf/ngap/handler.go file, and it...

Vibe Hacking: Two AI-Augmented Campaigns Target Government and Financial Sectors in Latin America

TrendAI™ Research has identified two emerging threat campaigns—SHADOW-AETHER-040 and SHADOW-AETHER-064—that use agentic AI to drive intrusion operations against government and financial organizations in Latin America, marking these among the first cases we have observed of AI agents executing...

Key Insights on SHADOW-AETHER-015 and Earth Preta from the 2025 MITRE ATT&CK Evaluation with Trend Vision One™

This blog discusses notable modern TTPs observed from SHADOW-AETHER-015 and Earth Preta, from Trend Research™ monitoring and Trend Vision One™ intelligence. These findings support the performance of TrendAI™ in the 2025 MITRE ATT&CK Evaluations...

Key Insights on SHADOW-AETHER-015 and Earth Preta from the 2025 MITRE ATT&CK Evaluation with TrendAI Vision One™

This blog discusses notable modern TTPs observed from SHADOW-AETHER-015 and Earth Preta, from TrendAI Research™ monitoring and TrendAI Vision One™ intelligence. These findings support the performance of TrendAI™ in the 2025 MITRE ATT&CK Evaluations...

UPF 安全漏洞

UPF is an open source user interface from the Aether SD-Core Project. A security vulnerability exists in UPF that originates from an out-of-bounds read while processing a PFCP session establishment request containing an empty or truncated IPv4 address field, which could result in a denial of...

UPF 安全漏洞

UPF is an open source user interface from the Aether SD-Core Project. A security vulnerability exists in UPF that originates from dereferencing a null pointer when processing a PFCP association setup request that lacks a recovery timestamp, which could result in a denial of service...

UPF 安全漏洞

UPF is an open source user interface from the Aether SD-Core Project. A security vulnerability exists in UPF that stems from dereferencing a null pointer when processing a PFCP association setup request that lacks a NodeID, which could lead to a denial of service...

UPF 安全漏洞

UPF is an open source user interface from the Aether SD-Core Project. A security vulnerability exists in UPF upf-epc-pfcpiface:version 2.1.3-dev, which stems from dereferencing a null pointer when processing a PFCP session establishment request that lacks an F-SEID, which could result in a denial...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

Malicious code in @postman/aether-icons (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cf4244dc3aeb4aeef61e6a25bf53dd406e67c8b3d33f710a91934f64a631ae69 The package @postman/aether-icons was found to contain malicious code. Source: ghsa-malware...

EUVD-2025-198687

Malicious code in @postman/aether-icons npm...

MAL-2025-190676 Malicious code in @postman/aether-icons (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cf4244dc3aeb4aeef61e6a25bf53dd406e67c8b3d33f710a91934f64a631ae69 The package @postman/aether-icons was found to contain malicious code. Source: ghsa-malware...

EUVD-2025-180491

Malicious code in aether-start-lepton-mdx npm...

EUVD-2025-176970

Malicious code in proxima-aether-quasar-xml npm...

EUVD-2025-178738

Malicious code in gemini-sagitta-cordelia-aether npm...

EUVD-2025-180497

Malicious code in aether-hologram-genomics-xanthus npm...

EUVD-2025-176210

Malicious code in steganography-aether-on-envconfig npm...

Malicious code in aether-dione-test-markdown-pdf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb259ccaf3d1c636e4a75212af3fb8173b2ac77a1199ddb3181a1018bcf258ac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189665 Malicious code in steganography-aether-on-envconfig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a82bcf9484d0efd576c49a8f70274e7b0f9d424b9ac8f7f2c024d1aa3911a92 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-178242

Malicious code in jupiter-aether-markdown-pdf-websockets npm...