32 matches found
CVE-2026-6781
CVE-2026-6781 is a denial-of-service vulnerability in the Mozilla Firefox/Thunderbird Audio/Video: Playback component. The issue is fixed in Firefox 150 and Thunderbird 150. Affected products are Firefox and Thunderbird; the root cause is described only as a DoS in the playback component, with no...
Important: Red Hat Security Advisory: firefox security update
An update for firefox is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update as...
FOCA: Multimodal Malware Classification Via Hyperbolic Cross-Attention
In this work, we introduce FOCA, a novel multimodal framework for malware classification that jointly leverages audio and visual modalities. Unlike conventional Euclidean-based fusion methods, FOCA is the first to exploit the intrinsic hierarchical relationships between audio and visual...
EUVD-2023-52297
Malicious code in bioql PyPI...
EUVD-2025-14327
Malicious code in bioql PyPI...
Investigating Vulnerabilities and Defenses against Audio-Visual Attacks: a Comprehensive Survey Emphasizing Multimodal Models
Multimodal large language models MLLMs, which bridge the gap between audio-visual and natural language processing, achieve state-of-the-art performance on several audio-visual tasks. Despite the superior performance of MLLMs, the scarcity of high-quality audio-visual training data and computation...
CVE-2025-4536
A vulnerability has been found in Gosuncn Technology Group Audio-Visual Integrated Management Platform 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /sysmgr/user/listByPage. The manipulation leads to information disclosure. The attack can b...
CVE-2025-4536
A vulnerability has been found in Gosuncn Technology Group Audio-Visual Integrated Management Platform 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /sysmgr/user/listByPage. The manipulation leads to information disclosure. The attack can b...
CVE-2025-4536 Gosuncn Technology Group Audio-Visual Integrated Management Platform listByPage information disclosure
A vulnerability has been found in Gosuncn Technology Group Audio-Visual Integrated Management Platform 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /sysmgr/user/listByPage. The manipulation leads to information disclosure. The attack can b...
CVE-2025-4536 Gosuncn Technology Group Audio-Visual Integrated Management Platform listByPage information disclosure
A vulnerability has been found in Gosuncn Technology Group Audio-Visual Integrated Management Platform 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /sysmgr/user/listByPage. The manipulation leads to information disclosure. The attack can b...
CVE-2025-4536
CVE-2025-4536 affects Gosuncn Technology Group Audio-Visual Integrated Management Platform 1.0. The root cause is an incorrect operation/handling of the file /sysmgr/user/listByPage, enabling information disclosure. The vulnerability can be exploited remotely, and public disclosures exist. Vendor...
PT-2025-20658 · Gosuncn Technology · Gosuncn Technology Group Audio-Visual Integrated Management Platform
Name of the Vulnerable Software and Affected Versions: Gosuncn Technology Group Audio-Visual Integrated Management Platform version 1.0 Description: A critical vulnerability has been found in the Gosuncn Technology Group Audio-Visual Integrated Management Platform, affecting an unknown...
PT-2025-20657 · Gosuncn Technology · Gosuncn Technology Group Audio-Visual Integrated Management Platform
Name of the Vulnerable Software and Affected Versions: Gosuncn Technology Group Audio-Visual Integrated Management Platform version 4.0 Description: A problematic issue was found in the Configuration File Handler component, specifically in the /config/config.properties file, leading to informatio...
Gosuncn Audio-Visual Integrated Management Platform 访问控制错误漏洞
Gosuncn Audio-Visual Integrated Management Platform is an intelligent audio-video convergence management platform from China's Gosuncn, which supports multi-protocol device access and AI analysis. An access control error vulnerability exists in Gosuncn Audio-Visual Integrated Management Platform...
Gosuncn Audio-Visual Integrated Management Platform 安全漏洞
Gosuncn Audio-Visual Integrated Management Platform is an intelligent audio-video convergence management platform from China Gosuncn Gosuncn, supporting multi-protocol device access and AI analysis. A security vulnerability exists in Gosuncn Audio-Visual Integrated Management Platform version 1.0...
On-Device Watermarking: a Socio-Technical Imperative for Authenticity in the Age of Generative AI
As generative AI models produce increasingly realistic output, both academia and industry are focusing on the ability to detect whether an output was generated by an AI model or not. Many of the research efforts and policy discourse are centered around robust watermarking of AI outputs. While...
The vulnerability of the `gf_opus_parse_packet_header` function in the `media_tools/av_parsers.c` file, implemented by the MP4Box packaging tool for the GPAC multimedia platform, allows a hacker to cause a service failure.
The vulnerability of the gfopusparsepacketheader function in the mediatools/avparsers.c file, belonging to the MP4Box packaging tool of the GPAC multimedia platform, is related to the lack of checks for division by zero. Exploiting this vulnerability could allow a remote attacker to cause service...
Format string
wire-avs provides Audio, Visual, and Signaling AVS functionality sure the secure messaging software Wire. Prior to versions 9.2.22 and 9.3.5, a remote format string vulnerability could potentially allow an attacker to cause a denial of service or possibly execute arbitrary code. The issue has bee...
MGASA-2022-0437 Updated freerdp packages fix security vulnerability
FreeRDP based clients on unix systems using /parallel command line switch might read uninitialized data and send it to the server the client is currently connected to. CVE-2022-39282 All FreeRDP based clients when using the /video command line switch might read uninitialized data, decode it as...
CVE-2021-41193
wire-avs is the audio visual signaling AVS component of Wire, an open-source messenger. A remote format string vulnerability in versions prior to 7.1.12 allows an attacker to cause a denial of service or possibly execute arbitrary code. The issue has been fixed in wire-avs 7.1.12. There are...