GHSA-XVQR-69V8-F3GV vulnerabilities

Vulnerabilities for packages: step-fips, falcoctl-fips, wire-go, helm-operator, secrets-store-csi-driver-provider-aws-fips, request-1279-14, mig-parted-fips, cloud-provider-gcp-cloud-controller-manager-fips, velero-plugin-for-gcp-fips, amazon-vpc-cni-plugins-fips, cert-manager-istio-csr,...

CVE-2025-68119 vulnerabilities

Vulnerabilities for packages: step-fips, falcoctl-fips, wire-go, helm-operator, secrets-store-csi-driver-provider-aws-fips, request-1279-14, mig-parted-fips, cloud-provider-gcp-cloud-controller-manager-fips, velero-plugin-for-gcp-fips, amazon-vpc-cni-plugins-fips, cert-manager-istio-csr,...

Many Hands Make Light Work: An LLM-Based Multi-Agent System for Detecting Malicious PyPI Packages

Malicious code in open-source repositories such as PyPI poses a growing threat to software supply chains. Traditional rule-based tools often overlook the semantic patterns in source code that are crucial for identifying adversarial components. Large language models LLMs show promise for software...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004445)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004445 advisory. A flaw was found in the Routing decision classifier in the Linux kernel's Traffic Control networking subsystem in the way it handled changing of classification...

Behavioral Analytics for Continuous Insider Threat Detection in Zero-Trust Architectures

Insider threats are a particularly tricky cybersecurity issue, especially in zero-trust architectures ZTA where implicit trust is removed. Although the rule of thumb is never trust, always verify, attackers can still use legitimate credentials and impersonate the standard user activity. In...

PT-2026-8212

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the networking scheduler cls u32 where the skb header pointer function does not fully validate negative offset values. This can lead to...

CVE-2025-13708 Tencent NeuralNLP-NeuralClassifier _load_checkpoint Deserialization of Untrusted Data Remote Code Execution Vulnerability

Tencent NeuralNLP-NeuralClassifier loadcheckpoint Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Tencent NeuralNLP-NeuralClassifier. User interaction is required to exploit th...

LLM-Based Vulnerable Code Augmentation: Generate or Refactor?

Vulnerability code-bases often suffer from severe imbalance, limiting the effectiveness of Deep Learning-based vulnerability classifiers. Data Augmentation could help solve this by mitigating the scarcity of under-represented CWEs. In this context, we investigate LLM-based augmentation for...

Improving the Identification of Real-World Malware's DNS Covert Channels Using Locality Sensitive Hashing

Nowadays, malware increasingly uses DNS-based covert channels in order to evade detection and maintain stealthy communication with its command-and-control servers. While prior work has focused on detecting such activity, identifying specific malware families and their behaviors from captured...

Synthetic Data: AI'S New Weapon against Android Malware

The ever-increasing number of Android devices and the accelerated evolution of malware, reaching over 35 million samples by 2024, highlight the critical importance of effective detection methods. Attackers are now using Artificial Intelligence to create sophisticated malware variations that can...

Siemens SIMATIC and SCALANCE Use After Free (CVE-2023-4128)

A use-after-free vulnerability in net/sched/clsfw.c in classifiers clsfw, clsu32, and clsroute in the Linux Kernel allows a local attacker to perform a local privilege escalation due to incorrect handling of the existing filter, leading to a kernel information leak. This plugin only works with...

MAL-2025-190491 Malicious code in form-classifier (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aee6a6945bad04a1ec3fbe89e2cbe5013625ba025601a3df6678a125761d3b55 The package form-classifier was found to contain malicious code...

EUVD-2025-175355

Malicious code in form-classifier npm...

Malicious code in form-classifier (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aee6a6945bad04a1ec3fbe89e2cbe5013625ba025601a3df6678a125761d3b55 The package form-classifier was found to contain malicious code...

BLADE: Behavior-Level Anomaly Detection Using Network Traffic in Web Services

With their widespread popularity, web services have become the main targets of various cyberattacks. Existing traffic anomaly detection approaches focus on flow-level attacks, yet fail to recognize behavior-level attacks, which appear benign in individual flows but reveal malicious purpose using...

GHSA-CXQ7-XW9V-RCV3 vulnerabilities

Vulnerabilities for packages: gostatsd, helm-set-status, smarter-device-manager, protoc-gen-go, cluster-proportional-autoscaler, cloud-sql-proxy, kubernetes-csi-external-snapshotter, prometheus-blackbox-exporter, kbld, prometheus-adapter, secrets-store-csi-driver-provider-aws, extism,...

GHSA-FRHW-MQJ2-WXW2 vulnerabilities

Vulnerabilities for packages: gostatsd, helm-set-status, smarter-device-manager, protoc-gen-go, cluster-proportional-autoscaler, cloud-sql-proxy, kubernetes-csi-external-snapshotter, prometheus-blackbox-exporter, kbld, prometheus-adapter, secrets-store-csi-driver-provider-aws, extism,...

GHSA-9GCR-GP5F-JW27 vulnerabilities

Vulnerabilities for packages: falcoctl-fips, wire-go, velero-plugin-for-microsoft-azure, velero-plugin-for-csi, secrets-store-csi-driver-provider-aws-fips, prometheus-podman-exporter, cloud-provider-gcp-cloud-controller-manager-fips, falcosidekick-fips, kubernetes-dashboard-auth-fips,...

GHSA-CXQ7-XW9V-RCV3 vulnerabilities

Vulnerabilities for packages: falcoctl-fips, wire-go, velero-plugin-for-microsoft-azure, velero-plugin-for-csi, secrets-store-csi-driver-provider-aws-fips, prometheus-podman-exporter, cloud-provider-gcp-cloud-controller-manager-fips, falcosidekick-fips, kubernetes-dashboard-auth-fips,...

Siemens SIMATIC Devices Out-of-bounds Read (CVE-2023-42755)

A flaw was found in the IPv4 Resource Reservation Protocol RSVP classifier in the Linux kernel. The xprt pointer may go beyond the linear part of the skb, leading to an out-of-bounds read in the rsvpclassify function. This issue may allow a local user to crash the system and cause a denial of...