Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Vulnrichment
Vulnrichmentadded 2026/04/02 6:59 p.m.0 views

CVE-2026-34760 vLLM: Downmix Implementation Differences as Attack Vectors Against Audio AI Models

vLLM is an inference and serving engine for large language models LLMs. From version 0.5.5 to before version 0.18.0, Librosa defaults to using numpy.mean for mono downmixing tomono, while the international standard ITU-R BS.775-4 specifies a weighted downmixing algorithm. This discrepancy results...

5.9CVSS5.8AI score0.00075EPSS
Exploits0References4
OSV
OSVadded 2026/03/27 12:14 p.m.1 views

BIT-GITLAB-2026-1724 Missing Authentication for Critical Function in GitLab

GitLab has remediated an issue in GitLab EE affecting all versions from 18.5 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 that could have allowed an unauthenticated user to access API tokens of self-hosted AI models due to improper access control...

7.5CVSS5.9AI score0.00028EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/03/26 5:0 p.m.1 views

CVE-2026-1724

GitLab has remediated an issue in GitLab EE affecting all versions from 18.5 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 that could have allowed an unauthenticated user to access API tokens of self-hosted AI models due to improper access control...

7.5CVSS5.8AI score0.00028EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/03/25 4:34 p.m.0 views

CVE-2026-1724 Missing Authentication for Critical Function in GitLab

GitLab has remediated an issue in GitLab EE affecting all versions from 18.5 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 that could have allowed an unauthenticated user to access API tokens of self-hosted AI models due to improper access control...

6.8CVSS5.9AI score0.00028EPSS
Exploits0References3
CVE
CVEadded 2026/03/25 4:34 p.m.10 views

CVE-2026-1724

Summary: CVE-2026-1724 concerns GitLab Enterprise Edition where an improper access control vulnerability could allow an unauthenticated user to access API tokens for self-hosted AI models. The issue affects GitLab versions 18.5 up to 18.8.7, 18.9 up to 18.9.3, and 18.10 up to 18.10.1. Root cause ...

7.5CVSS5.8AI score0.00028EPSS
Exploits0References3Affected Software1
The Hacker News
The Hacker Newsadded 2025/12/10 11:54 a.m.10 views

Webinar: How Attackers Exploit Cloud Misconfigurations Across AWS, AI Models, and Kubernetes

Cloud security is changing. Attackers are no longer just breaking down the door; they are finding unlocked windows in your configurations, your identities, and your code. Standard security tools often miss these threats because they look like normal activity. To stop them, you need to see exactly...

6.9AI score
Exploits0
Rows per page
Query Builder