Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2024/10/09 6:25 p.m.8 views

CVE-2024-47833 Session Cookie without Secure and HTTPOnly flags in taipy

Taipy is an open-source Python library for easy, end-to-end application development for data scientists and machine learning engineers. In affected versions session cookies are served without Secure and HTTPOnly flags. This issue has been addressed in release version 4.0.0 and all users are advis...

6.3CVSS6.6AI score0.00085EPSS
Exploits1References3
CVE
CVEadded 2024/10/09 6:25 p.m.48 views

CVE-2024-47833

Taipy (Python library) is affected by a vulnerability where session cookies are served without Secure and HTTPOnly flags in affected versions prior to 4.0.0. The issue is documented across multiple sources (CVE record, Red Hat, OSV, GitHub GHSA advisory) and is explicitly addressed in release 4.0...

6.5CVSS6.4AI score0.00085EPSS
Exploits1References1Affected Software1
Wiz blog
Wiz blogadded 2024/01/11 3:6 p.m.27 views

Wiz extends its AI-SPM offering to OpenAI platform

Wiz becomes the first CNAPP to provide AI security for OpenAI, allowing data scientists and developers to detect and mitigate risk in their OpenAI organization with a new OpenAI SaaS connector...

7.3AI score
Exploits0
Wiz blog
Wiz blogadded 2023/08/02 2:20 p.m.16 views

Wiz helps organizations innovate with AI securely and responsibly, launching support for Google Cloud Vertex AI

Wiz protects AI infrastructure against cloud attacks, allowing data scientists and engineers to focus on deploying more AI applications...

6.9AI score
Exploits0
Securelist
Securelistadded 2021/10/28 2:20 p.m.13 views

How we took part in MLSEC and (almost) won

This summer Kaspersky experts took part in the Machine Learning Security Evasion Competition MLSEC — a series of trials testing contestants ability to create and attack machine learning models. The event is comprised of two main challenges — one for attackers, and the other for defenders. The...

6.7AI score
Exploits0
Imperva Blog
Imperva Blogadded 2021/07/27 3:12 p.m.56 views

Machine Learning Testing for Data Scientists

In one software development project after another, it has been proven that testing saves time. Does this hold true for machine learning projects? Should data scientists write tests? Will it make their work better and/or faster? We believe the answer is YES! In this post we describe a full...

8.1AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protectionadded 2020/12/17 10:0 p.m.33 views

Collaborative innovation on display in Microsoft’s insider risk management strategy

The disrupted work environment, in which enterprises were forced to find new ways to enable their workforce to work remotely, changed the landscape for operations as well as security. One of the top areas of concern is managing insider risks, a complex undertaking even before the pandemic, and ev...

0.3AI score
Exploits0
Rows per page
Query Builder