22 matches found
Detecting Cybersecurity Threats by Integrating Explainable AI with SHAP Interpretability and Strategic Data Sampling
The critical need for transparent and trustworthy machine learning in cybersecurity operations drives the development of this integrated Explainable AI XAI framework. Our methodology addresses three fundamental challenges in deploying AI for threat detection: handling massive datasets through...
PenTiDef: Enhancing Privacy and Robustness in Decentralized Federated Intrusion Detection Systems against Poisoning Attacks
The increasing deployment of Federated Learning FL in Intrusion Detection Systems IDS introduces new challenges related to data privacy, centralized coordination, and susceptibility to poisoning attacks. While significant research has focused on protecting traditional FL-IDS with centralized...
CVE-2023-29930
An issue was found in Genesys CIC Polycom phone provisioning TFTP Server all version allows a remote attacker to execute arbitrary code via the login crednetials to the TFTP server configuration page...
AI-Powered Hybrid Intrusion Detection Framework for Cloud Security Using Novel Metaheuristic Optimization
Cybersecurity poses considerable problems to Cloud Computing CC, especially regarding Intrusion Detection Systems IDSs, facing difficulties with skewed datasets and suboptimal classification model performance. This study presents the Hybrid Intrusion Detection System HyIDS, an innovative IDS that...
MeLeMaD: Adaptive Malware Detection Via Chunk-Wise Feature Selection and Meta-Learning
Confronting the substantial challenges of malware detection in cybersecurity necessitates solutions that are both robust and adaptable to the ever-evolving threat environment. The paper introduces Meta Learning Malware Detection MeLeMaD, a novel framework leveraging the adaptability and...
Evaluating MCC for Low-Frequency Cyberattack Detection in Imbalanced Intrusion Detection Data
In many real-world network environments, several types of cyberattacks occur at very low rates compared to benign traffic, making them difficult for intrusion detection systems IDS to detect reliably. This imbalance causes traditional evaluation metrics, such as accuracy, to often overstate model...
EUVD-2025-28812
Malicious code in bioql PyPI...
CVE-2023-29930
An issue was found in Genesys CIC Polycom phone provisioning TFTP Server all version allows a remote attacker to execute arbitrary code via the login crednetials to the TFTP server configuration page...
Code injection
An issue was found in Genesys CIC Polycom phone provisioning TFTP Server all version allows a remote attacker to execute arbitrary code via the login crednetials to the TFTP server configuration page...
CVE-2023-29930
An issue was found in Genesys CIC Polycom phone provisioning TFTP Server all version allows a remote attacker to execute arbitrary code via the login crednetials to the TFTP server configuration page...
PT-2023-22483 · Genesys · Genesys Cic Polycom Phone Provisioning Tftp Server
Name of the Vulnerable Software and Affected Versions: Genesys CIC Polycom phone provisioning TFTP Server affected versions not specified Description: An issue was found that allows a remote attacker to execute arbitrary code via the login credentials to the TFTP server configuration page...
CVE-2023-29930
An issue was found in Genesys CIC Polycom phone provisioning TFTP Server all version allows a remote attacker to execute arbitrary code via the login crednetials to the TFTP server configuration page...
CVE-2023-29930
Genesys CIC Polycom phone provisioning TFTP Server is affected (all versions) per CVE-2023-29930. The vulnerability allegedly allows remote code execution through login credentials to the TFTP server configuration page. The Connected documents corroborate the issue description but do not provide ...
cicglobal.cn Cross Site Scripting vulnerability OBB-1203380
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
Unauthorized Access Vulnerability in CIC Information Technology Co.
CIC Shengshi Information Technology Co., Ltd. is a professional and comprehensive media company integrating enterprise planning, website construction, advertisement production, information release, network promotion, film and television production and advertisement information consulting. There i...
Remote code execution
In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center CIC Versions 4.X and 5.X, CARESCAPE Central Station CSCS Versions 1.X, the affected products utilize a weak encryption scheme for remote desktop control, which may allow an...
Siemens SIMATIC S7-300 CPU
1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION : Exploitable remotely/low skill level to exploit Vendor : Siemens Equipment : SIMATIC S7-300 CPU Vulnerability : Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could crash the device being accessed, resulting...
cic-ctic.unam.mx XSS vulnerability
Open Bug Bounty ID: OBB-61282 Description| Value ---|--- Affected Website:| cic-ctic.unam.mx Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
cic-ctic.unam.mx XSS vulnerability
Open Bug Bounty ID: OBB-61281 Description| Value ---|--- Affected Website:| cic-ctic.unam.mx Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
cic-ctic.unam.mx XSS vulnerability
Open Bug Bounty ID: OBB-61280 Description| Value ---|--- Affected Website:| cic-ctic.unam.mx Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...