AFL-ICP: Enhancing Industrial Control Protocol Reliability Via Specification-Guided Fuzzing

Industrial Control Protocols ICPs are critical to the reliability and stability of industrial infrastructure, yet their security is fundamentally compromised by a specification-blindness bottleneck. Modern fuzzers, constrained by observation-driven inference, struggle to penetrate deep protocol...

CVE-2026-20082

A vulnerability in the handling of the embryonic connection limits in Cisco Secure Firewall Adaptive Security Appliance ASA Software could allow an unauthenticated, remote attacker to cause incoming TCP SYN packets to be dropped incorrectly. This vulnerability is due to improper handling of new,...

[Webinar] Securing Agentic AI: From MCPs and Tool Access to Shadow API Key Sprawl

AI agents are no longer just writing code. They are executing it. Tools like Copilot, Claude Code, and Codex can now build, test, and deploy software end-to-end in minutes. That speed is reshaping engineering—but it's also creating a security gap most teams don't see until something breaks. Behin...

EUVD-2021-18280

Malware in sbrugna...

EUVD-2023-40769

Malicious code in bioql PyPI...

EUVD-2023-12855

Malicious code in bioql PyPI...

EUVD-2022-27319

Malicious code in bioql PyPI...

MALF: A Multi-Agent LLM Framework for Intelligent Fuzzing of Industrial Control Protocols

Industrial control systems ICS are vital to modern infrastructure but increasingly vulnerable to cybersecurity threats, particularly through weaknesses in their communication protocols. This paper presents MALF Multi-Agent LLM Fuzzing Framework, an advanced fuzzing solution that integrates large...

CVE-2023-36839

An Improper Validation of Specified Quantity in Input vulnerability in the Layer-2 control protocols daemon l2cpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated adjacent attacker who sends specific LLDP packets to cause a Denial of ServiceDoS. This issue occurs when...

Input validation

An Improper Validation of Specified Quantity in Input vulnerability in the Layer-2 control protocols daemon l2cpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated adjacent attacker who sends specific LLDP packets to cause a Denial of ServiceDoS. This issue occurs when...

CVE-2023-36839

The CVE-2023-36839 issue affects Juniper Networks Junos OS and Junos OS Evolved. Affected component: Layer-2 control protocols daemon (l2cpd). Root cause: Improper validation of specified quantity in input, triggered by specific LLDP packets from an unauthenticated adjacent attacker, leading to a...

CVE-2023-36849

An Improper Check or Handling of Exceptional Conditions vulnerability in the Layer-2 control protocols daemon l2cpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated adjacent attacker to cause a Denial of Service DoS. When a malformed LLDP packet is received, l2cpd will...

Input validation

An Improper Check or Handling of Exceptional Conditions vulnerability in the Layer-2 control protocols daemon l2cpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated adjacent attacker to cause a Denial of Service DoS. When a malformed LLDP packet is received, l2cpd will...

CVE-2023-36849 Junos OS and Junos OS Evolved: The l2cpd will crash when a malformed LLDP packet is received

An Improper Check or Handling of Exceptional Conditions vulnerability in the Layer-2 control protocols daemon l2cpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated adjacent attacker to cause a Denial of Service DoS. When a malformed LLDP packet is received, l2cpd will...

PT-2023-6652 · Juniper Networks · Junos Evolved +1

Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS versions 21.4 through 21.4R3-S3 Juniper Networks Junos OS versions 22.1 through 22.1R3-S3 Juniper Networks Junos OS versions 22.2 through 22.2R2-S1, 22.2R3 Juniper Networks Junos OS versions 22.3 through 22.3R2 Junip...

CVE-2023-0857

Unintentional change of settings during initial registration of system administrators which uses control protocols. The affected Office / Small Office Multifunction Printers and Laser Printers may allow an attacker on the network segment to trigger unauthorized access to the product. :Satera...

Code injection

Unintentional change of settings during initial registration of system administrators which uses control protocols. The affected Office / Small Office Multifunction Printers and Laser Printers may allow an attacker on the network segment to trigger unauthorized access to the product. :Satera...

CVE-2023-0857

Unintentional change of settings during initial registration of system administrators which uses control protocols. The affected Office / Small Office Multifunction Printers and Laser Printers may allow an attacker on the network segment to trigger unauthorized access to the product. :Satera...

CVE-2023-0857

The CVE-2023-0857 issue affects Canon Office/Small Office Multifunction Printers and Laser Printers (Satera LBP660C/LBP620C/MF740C/MF640C; Color imageCLASS LBP660C/LBP620C/X LBP1127C/MF740C/MF640C/X MF1127C; i-SENSYS LBP660C/LBP620C/MF740C/MF640C; C1127P/C1127iF/C1127i) with firmware versions 11....

CVE-2022-22172

A Missing Release of Memory after Effective Lifetime vulnerability in the Layer-2 control protocols daemon l2cpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated adjacent attacker to cause a memory leak. Continued exploitation can lead to memory exhaustion and thereby a...