Lucene search
K

125 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-0308

Malware in sbrugna...

5.4CVSS5.8AI score0.00686EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-38188

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.0118EPSS
Exploits1References3
Packet Storm News
Packet Storm News
added 2025/06/04 12:0 a.m.3 views

Gradient Inversion Attacks on Parameter-Efficient Fine-Tuning

Federated learning FL allows multiple data-owners to collaboratively train machine learning models by exchanging local gradients, while keeping their private data on-device. To simultaneously enhance privacy and training efficiency, recently parameter-efficient fine-tuning PEFT of large-scale...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/04/28 12:0 a.m.4 views

DeeCLIP: a Robust and Generalizable Transformer-Based Framework for Detecting AI-Generated Images

This paper introduces DeeCLIP, a novel framework for detecting AI-generated images using CLIP-ViT and fusion learning. Despite significant advancements in generative models capable of creating highly photorealistic images, existing detection methods often struggle to generalize across different...

7AI score
Exploits0
NVD
NVD
added 2024/07/22 4:15 p.m.25 views

CVE-2024-39686

Bert-VITS2 is the VITS2 Backbone with multilingual bert. User input supplied to the datadir variable is used directly in a command executed with subprocess.runcmd, shell=True in the bertgen function, which leads to arbitrary command execution. This affects fishaudio/Bert-VITS2 2.3 and earlier...

9.8CVSS0.0118EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/07/22 3:21 p.m.38 views

CVE-2024-39688 fishaudio/Bert-VITS2 Limited File Write in webui_preprocess.py generate_config function

Bert-VITS2 is the VITS2 Backbone with multilingual bert. User input supplied to the datadir variable is concatenated with other folders and used to open a new file in the generateconfig function, which leads to a limited file write. The issue allows for writing /config/config.json file in arbitra...

6.5CVSS0.00501EPSS
Exploits1References3
CVE
CVE
added 2024/07/22 3:13 p.m.44 views

CVE-2024-39685

Bert-VITS2 (fishaudio) vulnerability CVE-2024-39685 affects version 2.3 and earlier of the Bert-VITS2 backbone. The root cause is that user input to the data_dir variable is used directly in a subprocess.run(cmd, shell=True) call within the resample function, enabling arbitrary command execution....

9.8CVSS7.3AI score0.01116EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2024/07/22 3:13 p.m.14 views

CVE-2024-39685 fishaudio/Bert-VITS2 Command Injection in webui_preprocess.py resample function

Bert-VITS2 is the VITS2 Backbone with multilingual bert. User input supplied to the datadir variable is used directly in a command executed with subprocess.runcmd, shell=True in the resample function, which leads to arbitrary command execution. This affects fishaudio/Bert-VITS2 2.3 and earlier...

9.8CVSS7.3AI score0.01116EPSS
Exploits1References5
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 12:29 p.m.2 views

Malicious code in backbone-input-view (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSV
OSV
added 2024/06/25 12:29 p.m.5 views

MAL-2024-1804 Malicious code in backbone-input-view (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2023/10/23 2:17 p.m.66 views

Important: Red Hat Security Advisory: Red Hat AMQ Streams 2.2.2 release and security update

Red Hat AMQ Streams 2.2.2 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.5CVSS7AI score0.99999EPSS
Exploits19References3
RedHat Linux
RedHat Linux
added 2023/10/20 4:14 p.m.62 views

Important: Red Hat Security Advisory: Red Hat AMQ Streams 2.5.1 release and security update

Red Hat AMQ Streams 2.5.1 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.5CVSS7AI score0.99999EPSS
Exploits19References3
RedHat Linux
RedHat Linux
added 2023/09/14 9:51 a.m.36 views

Important: Red Hat Security Advisory: Red Hat AMQ Streams 2.5.0 release and security update

Red Hat AMQ Streams 2.5.0 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.8CVSS7.3AI score0.99615EPSS
Exploits13References19
Talos Blog
Talos Blog
added 2023/08/24 12:2 p.m.94 views

Lazarus Group exploits ManageEngine vulnerability to deploy QuiteRAT

Cisco Talos discovered the North Korean state-sponsored actor Lazarus Group targeting internet backbone infrastructure and healthcare entities in Europe and the United States. This is the third documented campaign attributed to this actor in less than a year, with the actor reusing the same...

7.5CVSS10AI score0.99753EPSS
Exploits15
RedHat Linux
RedHat Linux
added 2023/03/14 6:47 p.m.50 views

Moderate: Red Hat Security Advisory: Red Hat AMQ Streams 2.2.1 release and security update

Red Hat AMQ Streams 2.2.1 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

8.8CVSS6.7AI score0.95302EPSS
Exploits9References2
RedHat Linux
RedHat Linux
added 2023/01/17 11:47 a.m.81 views

Moderate: Red Hat Security Advisory: Red Hat AMQ Streams 2.3.0 release and security update

Red Hat AMQ Streams 2.3.0 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.5CVSS6.7AI score0.02824EPSS
Exploits4References9
RedHat Linux
RedHat Linux
added 2022/10/05 2:30 p.m.103 views

Important: Red Hat Security Advisory: Red Hat AMQ Streams 2.2.0 release and security update

Red Hat AMQ Streams 2.2.0 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.7CVSS7AI score0.1158EPSS
Exploits2References7
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 9:13 p.m.2 views

Malicious code in backbone-typescripts-accessor-generator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3840c75337cd1b91f11c859547a44c49050af6f3caf764fac6335dd47ab75829 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2022/06/20 9:13 p.m.4 views

MAL-2022-1448 Malicious code in backbone-typescripts-accessor-generator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3840c75337cd1b91f11c859547a44c49050af6f3caf764fac6335dd47ab75829 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:9 p.m.5 views

Malicious code in grunt-backbone-typescript-accessor-generator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 115b154824bd13959e78a37c9aedd1573687c0ae5c3e7cc352e68c9a751984c3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
Rows per page
Query Builder