Lucene search
K

9 matches found

Positive Technologies
Positive Technologies
โ€ขadded 2026/04/05 12:0 a.m.โ€ข5 views

PT-2026-30464

๐Ÿšจ LIVE HIJACK ALERT โ€” CVE-2026-77777. CVSS 8.9. attacker feeds poisoned task output to CrewAI agent memory. future tasks execute attacker instructions as if they were original goals. investigating. ๐Ÿงต...

6AI score
Exploits0References1
Packet Storm News
Packet Storm News
โ€ขadded 2026/04/02 12:0 a.m.โ€ข161 views

Poison Once, Exploit Forever: Environment-Injected Memory Poisoning Attacks on Web Agents

Memory makes LLM-based web agents personalized, powerful, yet exploitable. By storing past interactions to personalize future tasks, agents inadvertently create a persistent attack surface that spans websites and sessions. While existing security research on memory assumes attackers can directly...

5.8AI score
Exploits0
vulnersOsv
vulnersOsv
โ€ขadded 2026/02/10 10:20 p.m.โ€ข5 views

agent-builder (>=0.0.2 <=0.1.7), agent-memory-layer (>=0.1.0 <=0.1.1) +63 more potentially affected by CVE-2026-26013 via langchain-openai (>=1.0.0 <=1.1.7)

langchain-openai PYPI version =1.0.0, =0.0.2, =0.1.0, =0.1.0, =0.1.0, =3.0.3, =0.0.48, =0.0.54, =0.1.2, =0.1.0, =0.1.0, =0.9.0 and more Source cves: CVE-2026-26013 Source advisory: SNYK:PYTHON-LANGCHAINOPENAI-15263095...

3.7CVSS5.7AI score0.00379EPSS
Exploits0
OSV
OSV
โ€ขadded 2026/01/22 12:10 p.m.โ€ข5 views

SUSE-SU-2026:0215-1 Security update for gpg2

This update for gpg2 fixes the following issues: - CVE-2025-68973: Fix possible memory corruption in the armor parser gpg.fail/memcpybsc1255715. - Avoid potential downgrade to SHA1 in 3rd party key signatures gpg.fail/sha1 bsc1256246. - Error out on unverified output for non-detached signatures...

7.8CVSS5.8AI score0.00129EPSS
Exploits1References7
RedhatCVE
RedhatCVE
โ€ขadded 2025/05/22 10:43 p.m.โ€ข5 views

CVE-2022-28946

An issue in the component ast/parser.go of Open Policy Agent v0.39.0 causes the application to incorrectly interpret every expression, causing a Denial of Service DoS via triggering out-of-range memory access...

7.5CVSS7.3AI score0.0095EPSS
Exploits0References1
Packet Storm News
Packet Storm News
โ€ขadded 2025/03/11 12:0 a.m.โ€ข4 views

A Practical Memory Injection Attack against LLM Agents

In this whitepaper, the authors propose a novel Memory INJection Attack, MINJA, that enables the injection of malicious records into the memory bank by only interacting with the agent via queries and output observations...

7.4AI score
Exploits0
ATTACKERKB
ATTACKERKB
โ€ขadded 2022/06/16 10:15 p.m.โ€ข2 views

CVE-2022-33751

CA Automic Automation 12.2 and 12.3 contain an insecure memory handling vulnerability in the Automic agent that could allow a remote attacker to potentially access sensitive data...

7.5CVSS5.8AI score0.01178EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
โ€ขadded 2018/06/15 7:5 a.m.โ€ข22 views

Security Bulletin: IBM WebSphere MQ Heap storage leak on error path could lead to denial of service (CVE-2016-0260)

Summary Heap storage allocated on an error path is not deallocated by queue manager agents, a malicious user could use an application to repeatedly cause the queue manager to execute this error path and eventually exhaust storage for the agent, thereby causing a denial of service. Vulnerability...

7.5CVSS0.7AI score0.01259EPSS
Exploits0Affected Software1
Kitploit
Kitploit
โ€ขadded 2018/04/17 12:35 p.m.โ€ข46 views

GPG Reaper - Obtain/Steal/Restore GPG Private Keys From Gpg-Agent Cache/Memory

Obtain/Steal/Restore GPG Private Keys from gpg-agent cache/memory This POC demonstrates method for obtaining GPG private keys from gpg-agent memory under Windows. Normally this should be possible only within 10 minutes time frame --default-cache-ttl value. Unfortunately housekeeping function whic...

7.5AI score
Exploits0References9
Rows per page
Query Builder