Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel

CVE-2026-31431 "Copy Fail" — XCP-ng Laboratory Detector A saf...

Gray-Box Poisoning of Continuous Malware Ingestion Pipelines

Modern malware detection pipelines rely on continuous data ingestion and machine learning to counter the high volume of novel threats. This work investigates a realistic gray-box poisoning threat model targeting these pipelines. Using the secmlmalware framework, we generate problem-space...

Rayhunter IMSI Catcher Detector

Rayhunter is a project for detecting IMSI catchers, also known as cell-site simulators or stingrays. It was first designed to run on a cheap mobile hotspot called the Orbic RC400L, but thanks to community efforts, it can support some other devices as well. It's also designed to be as easy to...

Tracing the Dynamics of Refusal: Exploiting Latent Refusal Trajectories for Robust Jailbreak Detection

Representation Engineering typically relies on static refusal vectors derived from terminal representations. We move beyond this paradigm, demonstrating that refusal is a dynamic and sparse process rather than a localized outcome. Using Causal Tracing, we uncover the Refusal Trajectory-a persiste...

GHSA-VC24-J8C5-2VW4 OpenTelemetry.Resources.Azure has an unbounded HTTP response body read

Summary OpenTelemetry.Resources.Azure reads unbounded HTTP response bodies from the Azure VM remote instance metadata service endpoint into memory. This would allow an attacker-controlled endpoint or one acting as a Man-in-the-Middle MitM to cause excessive memory allocation and possible process...

cve_2026_31431

CVE-2026-31431 "Copy Fail" Toolkit Detector and proof-of-co...

PT-2026-37115

Name of the Vulnerable Software and Affected Versions OpenTelemetry.Resources.Azure versions prior to 1.15.0-beta.2 Description The AzureVmMetaDataRequestor function makes HTTP requests to the Azure VM instance metadata service and reads the response body into memory without a size limit. An...

net_exploit_detector

netexploitdetector.py Behavioral network exploit detector f...

i18next-http-middleware: HTTP response splitting and DoS via unsanitised Content-Language header

Summary Versions of i18next-http-middleware prior to 3.9.3 wrote user-controlled language values into the Content-Language response header after passing them through utils.escape, which is an HTML-entity encoder that does not strip carriage return, line feed, or other control characters. When the...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013684)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013684 advisory. In the Linux kernel, the following vulnerability has been resolved: bootmem: remove the vmemmap pages from kmemleak in putpagebootmem The vmemmap pages is marked by...

CVE-2026-40179 vulnerabilities

Vulnerabilities for packages: keda, telegraf, jaeger, mcp-grafana, datadog-agent, certificate-transparency, mc, cloud-sql-proxy, minio, node-problem-detector, trillian, karma, minio-operator, prometheus, minio-object-browser, splunk-otel-collector, istio, loki, prometheus-pushgateway...

GHSA-VFFH-X6R8-XX99 vulnerabilities

Vulnerabilities for packages: keda, telegraf, jaeger, mcp-grafana, datadog-agent, certificate-transparency, mc, cloud-sql-proxy, minio, node-problem-detector, trillian, karma, minio-operator, prometheus, minio-object-browser, splunk-otel-collector, istio, loki, prometheus-pushgateway...

web-pentest-tool

🛡️ AutoPenTest — Automated Penetration Testing Tool ⚠️ DI...

GHSA-7MR4-XJXG-34G6 vulnerabilities

Vulnerabilities for packages: flannel, slsa-verifier, vexctl, vault-benchmark, docker-machine-driver-harvester, xeol, argo-rollouts, cue, kubescape-operator, aws-node-termination-handler, crossplane-provider-azure-authorization, ingress-nginx-controller, cluster-api-provider-vsphere,...

Exploit for CVE-2026-35616

CVE-2026-35616 - FortiClient EMS Vulnerability Detector !Py...

ML Defender (ARGus NDR): An Open-Source Embedded ML NIDS for Botnet and Anomalous Traffic Detection in Resource-Constrained Organizations

Ransomware and DDoS attacks disproportionately impact hospitals, schools, and small organizations that cannot afford enterprise security solutions. We present ML Defender aRGus NDR, an open-source network intrusion detection system built in C++20, deployable on commodity hardware at approximately...

From Component Manipulation to System Compromise: Understanding and Detecting Malicious MCP Servers

The model context protocol MCP standardizes how LLMs connect to external tools and data sources, enabling faster integration but introducing new attack vectors. Despite the growing adoption of MCP, existing MCP security studies classify attacks by their observable effects, obscuring how attacks...

CLEANSTART-2026-KR58137 Security fixes for CVE-2025-68121, CVE-2026-25679, CVE-2026-27137, CVE-2026-27138, CVE-2026-27139, CVE-2026-27142, ghsa-6v2p-p543-phr9 applied in versions: 0.8.19-r0, 0.8.19-r1, 0.8.19-r2

Multiple security vulnerabilities affect the node-problem-detector package. These issues are resolved in later releases. See references for individual vulnerability details...

Numerical Security Framework for Quantum Key Distribution with Bypass Channels

Satellite based quantum key distribution QKD aims to establish secure key exchange over long distances despite significant technological challenges. To alleviate some of these challenges, Ghalaii et al. PRX Quantum 4, 040320 2023 proposed that any airborne eavesdropper up to a certain size can be...

Energy-Time Attack on Detectors in Quantum Key Distribution

Quantum key distribution is unbreakable in theory but may be hacked via imperfections in its hardware implementations. While many imperfections have been mitigated by countermeasures and advanced security proofs, several remain unsolved. One of these is a superlinear behaviour in single-photon...